last executing test programs:

11m17.951732382s ago: executing program 32 (id=71):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000100), 0x2, 0x4fd, &(0x7f0000000b00)="$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")
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.time_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28011, r0, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0xfffffffffffffff5, 0x0, {0x7, 0x29, 0xfffffffc, 0x7448348, 0xc0be, 0x2, 0xf296, 0x2e64, 0x0, 0x0, 0x10, 0x7}}, 0x50)

11m0.347742165s ago: executing program 33 (id=129):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r1=>0x0)
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0xfd8b, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448cb, 0x0)

10m58.342781542s ago: executing program 3 (id=135):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, 0x0})
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
listen(r0, 0xa)
socket$netlink(0x10, 0x3, 0x8000000004)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x380470a, &(0x7f0000000a00)={[{@quota}, {@bsdgroups}, {@lazytime}, {@errors_remount}, {@jqfmt_vfsv1}, {@oldalloc}, {@stripe={'stripe', 0x3d, 0x5}}]}, 0x2, 0x46b, &(0x7f0000000580)="$eJzs3M1vFOUfAPDvzLbw+/HWivgColaJsfGlpQWVgxeNJh4wmugB9VTbQgiFGloTIUSqMXgxMSR6Vo8m/gXevBj1ZGLiSe+GhCgX0FPNzM5Ad9ltt3TZrd3PJxl4nn2e7TzfPvPMPDPPbgPoWUPZP0nEtoj4LSIGqtnaCkPV/65dOTf595Vzk0ksLr72Z5LXu3rl3GRZtXzf1iIznEakHyXFTmrNnTl7YmJmZvp0kR+dP/nO6NyZs08ePzlxbPrY9KnxQ4cOHhh75unxp9oSZxbX1T3vz+7d/dIbF1+ePHLx7R+/ydq7rShfGsct2XTzS0NZ4H8t5urLHon/r2l36832Jemkr4sNYVUqEZF1V38+/geiEjc6byBe/LCrjQNuq+zatLl58cIisIEl0e0WAN1RXuiz+99y69DUY124/Fz1BiiL+1qxVUv6Ii3q9Nfd37bTUEQcWfjni2yLdjyHAABYwSeTnx+OJxrN/9K4e0m9HcUaymBE3BEROyPizojYFRF3ReR174mIe1e5//qloZvnP+mlWwqsRdn879libat2/lfO/mKwUuS25/H3J0ePz0zvL34nw9G/OcuPLbOP71745dNmZUvnf9mW7b+cCxbtuNRX94BuamJ+Ip+UtsHlDyL29DWKP7m+EpBExO6I2LO6H72jTBx/7Ou9zSqtHP8y2rDOtPhVxKPV/l+IuvhLyfLrk6P/i5np/aPlUXGzn36+8Gqz/a8p/jbI+n9L7fFflHx5pkgMvrV0vXYuVr1yeeH3j5ve09zq8b8peT0/H5XLru9NzM+fHovYlBzO8zWvj994b5kv62fxD+9rPP53Fu/J+v++iMgO4vsj4oGIeLBo+0MR8XBE7Fsm/h+eb162Hvp/quH57/rxP5jU9P/qE5UT33/bbP+t9f/BPDVcvJKf/1bQagPX8rsDAACA/4o0/wx8ko5cT6fpyEj1M/y7Yks6Mzs3//jR2XdPTVU/Kz8Y/Wn5pGtgyfPQsWSh+InV/HjxrLgsP1A8N/6sEnl+ZHJ2ZqrLsUOv29pk/Gf+qHS7dcBt12gdbbzBF9qAjad+/Ke12fOvdLIxQEf5vjb0rhXGf9qpdgCd5/oPvavR+D9fl7cWABuT6z/0LuMfepfxD72rbvxX4tdutQTooLV8r1+ilxORrotmtJRo/e9B3O7Em+ujGS0kun1mAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaI9/AwAA//9sbvBf")
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x887008, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000004200)={0x2020}, 0x2020)

10m57.830028678s ago: executing program 3 (id=137):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, 0x0}], 0x1, 0x38, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
socket$packet(0x11, 0xa, 0x300)
syz_open_dev$sndpcmc(0x0, 0x0, 0x0)
setsockopt$inet_udp_encap(0xffffffffffffffff, 0x11, 0x64, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000200)={0x1, 0x0, [{0x4b564d01, 0x0, 0x9}]})
r3 = syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000280), 0x1, 0x78f, &(0x7f00000007c0)="$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")
openat(r3, &(0x7f00000000c0)='./file0\x00', 0x2000, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cpuset.memory_pressure\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x40a7013, r4, 0x92a4a000)
ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f00000003c0)={'sit0\x00', 0x0})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10m57.350789931s ago: executing program 3 (id=139):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000840)={0x24, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="00220f000000540b4550182195"], 0x0}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x200021)

10m57.079135415s ago: executing program 34 (id=139):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000840)={0x24, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="00220f000000540b4550182195"], 0x0}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x200021)

10m53.18663456s ago: executing program 35 (id=147):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_PKTINFO(r0, 0x10e, 0x3, 0x0, 0x0)
quotactl$Q_SETINFO(0xffffffff80000601, &(0x7f0000000040)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000000)={0x80000a, 0x4000000000005, 0x0, 0xa})

10m2.025764922s ago: executing program 36 (id=245):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x2010004, &(0x7f00000000c0)={[{@nobh}, {@jqfmt_vfsv0}, {@minixdf}]}, 0x3, 0x4f8, &(0x7f0000000800)="$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")
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
rename(&(0x7f0000000600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

9m8.161096623s ago: executing program 37 (id=397):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c0001006272696467"], 0x3c}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001500)=@newqdisc={0x70, 0x24, 0xe0b, 0x70bd25, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x9}, {0xffff, 0xffff}, {0xfff1}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x40, 0x2, {{0x1fb, 0x4, 0x0, 0x5, 0xfffffffd, 0x8}, [@TCA_NETEM_ECN={0x8, 0x7, 0x1}, @TCA_NETEM_LOSS={0x1c, 0x5, 0x0, 0x1, [@NETEM_LOSS_GI={0x18, 0x1, {0x80000001, 0x7, 0x8, 0x6, 0xd99d}}]}]}}}]}, 0x70}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendto$packet(r0, &(0x7f00000002c0)="44c33b69ebc9e05e9bdec0c288a8", 0xe, 0x830, &(0x7f0000000440)={0x11, 0x0, r3, 0x1, 0x2, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x28}}, 0x14)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x46, &(0x7f0000000540)=0x85, 0x4)

8m49.300389038s ago: executing program 38 (id=443):
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
userfaultfd(0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$inet(0x2, 0x3, 0x8d)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
listen(0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
pipe(&(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = socket$inet6(0xa, 0x1, 0x0)
vmsplice(r4, &(0x7f0000000240)=[{&(0x7f0000001340)="e6", 0xfffffeff}], 0x1, 0x0)
splice(r3, 0x0, r5, 0x0, 0x5947, 0xc)

8m18.951562112s ago: executing program 39 (id=574):
pipe(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
vmsplice(r1, &(0x7f00000000c0)=[{0x0}, {&(0x7f0000000080)}], 0x2, 0x0)
recvmmsg(r3, &(0x7f0000001440)=[{{&(0x7f0000000280)=@un=@abs, 0x0, &(0x7f0000001400)=[{&(0x7f0000001480)=""/1}, {&(0x7f0000000300)=""/102}, {&(0x7f0000000380)=""/4096}, {&(0x7f0000001380)=""/111}]}}], 0x700, 0x40002002, 0x0)
write$binfmt_misc(r2, &(0x7f0000000040), 0xffc1)
setsockopt$sock_int(r3, 0x1, 0x10, &(0x7f0000000180)=0x55b7, 0x4)
splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0)

7m48.854738063s ago: executing program 9 (id=677):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x80)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x1, 0x3000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION2(r1, 0x40a0ae49, &(0x7f0000000000)={0x10201, 0x6, 0xe000, 0x2000, &(0x7f00002c6000/0x2000)=nil, 0xfff})

7m48.398670903s ago: executing program 8 (id=679):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000580)={[{@max_batch_time={'max_batch_time', 0x3d, 0x4}}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@block_validity}, {@errors_remount}, {@nombcache}]}, 0x1, 0x44f, &(0x7f0000000640)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
mount$nfs4(0x0, 0x0, &(0x7f0000001a00), 0x10080, &(0x7f0000001a80)=ANY=[])
keyctl$set_reqkey_keyring(0xe, 0x3)
r1 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0x0)
r2 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x60})
ioctl$SNDRV_PCM_IOCTL_REWIND(r1, 0xc0844123, 0x0)
r3 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000009c0)={0x0, 0x0, 0x0, 0x1, 0x2b1e}, 0x0)
dup(r3)
ioctl$EVIOCGMTSLOTS(r3, 0x8040450a, &(0x7f0000001180)=""/4096)

7m48.243928767s ago: executing program 9 (id=680):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f00000000c0)=r2, 0x4)
sendmsg$unix(r1, &(0x7f00000006c0)={0x0, 0xfffffffffffffe96, 0x0, 0x0, 0x0, 0x0, 0x20000001}, 0x40000)

7m47.846610962s ago: executing program 8 (id=682):
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0xfd8b, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x1000000)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x110)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000280), 0x42, 0x0)
getpid()
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x8c51, &(0x7f0000000840)=ANY=[@ANYBLOB="666d61736b3d30303030303030303030303030303030303030303237342c756e695f786c6174653d312c726f6469722c73686f72746e616d653d77696e6e742c757466383d312c636865636b3d6e6f726d616c2c756e695f786c6174653d312c6e6f6e752717623b3ba4ccfc4e6d7461696c3d302c756e27be000000000000302c757466383d31feffffffffff74653d302c756e695f786c6174653d312c79686f70746e616d653d6e6f7765722c726f6469722c73686f72746e616d653d6c6f7765722c6572726f72733d72656d6f786e742d7249cb8dbe24de96f642219c428502a423b6da8dcc383f1a8f90cfaa2a48e6e11ad2feaa1778df860f58af90ce648f1670606f1f9d512bb5a5c264a16c5c1205edf62d82869e57e430184166ea2f57a00f2366803612cd596b00"/314], 0xf5, 0x2f4, &(0x7f0000000240)="$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")
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0xca02})
ioctl$BINDER_ENABLE_ONEWAY_SPAM_DETECTION(0xffffffffffffffff, 0x40046210, 0x0)
r1 = openat$ppp(0xffffffffffffff9c, 0x0, 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f00000000c0))
ioctl$PPPIOCSNPMODE(r1, 0x4004743c, &(0x7f0000000480)={0x29})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a37f2", 0x14, 0x2c, 0x0, @remote, @local, {[], {{0x3a00, 0x4e23, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
preadv(r0, &(0x7f0000000340)=[{&(0x7f0000000000)=""/30, 0x1e}], 0x1, 0x8, 0x2)

7m47.781778178s ago: executing program 9 (id=683):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e23, @loopback}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000001c0)=0x327, 0x4)
connect$inet(r0, &(0x7f0000001bc0)={0x2, 0x4e23, @loopback}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080)=0xf, 0x4)
sendto(r0, &(0x7f0000000740)="50fbdf12a30d7a48b2c5c84948f3426077a9f0ca1475183db3bf52a6b2cdb77ef9af2a603a3e78adff59fbb22bae1b2443011fd801251bcef8f165533aac58c7556dd51edc5a6865d4e29f0bbd0ed602050000000000002944de604d849a1e", 0x5f, 0x4008044, 0x0, 0x0)

7m47.625639142s ago: executing program 9 (id=684):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x380470a, &(0x7f0000000a00)={[{@quota}, {@bsdgroups}, {@lazytime}, {@errors_remount}, {@jqfmt_vfsv1}, {@oldalloc}, {@stripe={'stripe', 0x3d, 0x5}}]}, 0x2, 0x46b, &(0x7f0000000580)="$eJzs3M1vFOUfAPDvzLbw+/HWivgColaJsfGlpQWVgxeNJh4wmugB9VTbQgiFGloTIUSqMXgxMSR6Vo8m/gXevBj1ZGLiSe+GhCgX0FPNzM5Ad9ltt3TZrd3PJxl4nn2e7TzfPvPMPDPPbgPoWUPZP0nEtoj4LSIGqtnaCkPV/65dOTf595Vzk0ksLr72Z5LXu3rl3GRZtXzf1iIznEakHyXFTmrNnTl7YmJmZvp0kR+dP/nO6NyZs08ePzlxbPrY9KnxQ4cOHhh75unxp9oSZxbX1T3vz+7d/dIbF1+ePHLx7R+/ydq7rShfGsct2XTzS0NZ4H8t5urLHon/r2l36832Jemkr4sNYVUqEZF1V38+/geiEjc6byBe/LCrjQNuq+zatLl58cIisIEl0e0WAN1RXuiz+99y69DUY124/Fz1BiiL+1qxVUv6Ii3q9Nfd37bTUEQcWfjni2yLdjyHAABYwSeTnx+OJxrN/9K4e0m9HcUaymBE3BEROyPizojYFRF3ReR174mIe1e5//qloZvnP+mlWwqsRdn879libat2/lfO/mKwUuS25/H3J0ePz0zvL34nw9G/OcuPLbOP71745dNmZUvnf9mW7b+cCxbtuNRX94BuamJ+Ip+UtsHlDyL29DWKP7m+EpBExO6I2LO6H72jTBx/7Ou9zSqtHP8y2rDOtPhVxKPV/l+IuvhLyfLrk6P/i5np/aPlUXGzn36+8Gqz/a8p/jbI+n9L7fFflHx5pkgMvrV0vXYuVr1yeeH3j5ve09zq8b8peT0/H5XLru9NzM+fHovYlBzO8zWvj994b5kv62fxD+9rPP53Fu/J+v++iMgO4vsj4oGIeLBo+0MR8XBE7Fsm/h+eb162Hvp/quH57/rxP5jU9P/qE5UT33/bbP+t9f/BPDVcvJKf/1bQagPX8rsDAACA/4o0/wx8ko5cT6fpyEj1M/y7Yks6Mzs3//jR2XdPTVU/Kz8Y/Wn5pGtgyfPQsWSh+InV/HjxrLgsP1A8N/6sEnl+ZHJ2ZqrLsUOv29pk/Gf+qHS7dcBt12gdbbzBF9qAjad+/Ke12fOvdLIxQEf5vjb0rhXGf9qpdgCd5/oPvavR+D9fl7cWABuT6z/0LuMfepfxD72rbvxX4tdutQTooLV8r1+ilxORrotmtJRo/e9B3O7Em+ujGS0kun1mAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaI9/AwAA//9sbvBf")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(0x0, &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000004200)={0x2020}, 0x2020)

7m47.202638609s ago: executing program 9 (id=686):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x210000000013, 0x0, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000200)='./file0\x00', 0xa00010, &(0x7f0000000840)=ANY=[@ANYBLOB='nodecompose,decompose,nobarrier,gid=', @ANYRESHEX=0xee01, @ANYBLOB="2c6e6c733d69736f383835392d310000000072726965722c00bcd0f0b5c4e2957974ff5d7ea3c3dcee087e4983684e8a4c4e4e87b134e30ce77162b12885b964b3506ff3eae0f3599447b17861d19be78079e5dd7bdc7f1eb36e31ac14de48349767164f5f6431bbdeaef96a4f2bce64b5cfa76ce3a2c4302374bc5535d7e2eb8dfb2e5d58a37b7e37836597c21f51bcdf6df4cad825cfd9ef5ee9e89e04b15cd3cea9e152d67b9a7eedc5dfe6d85a3ce7c342da8cc969b552197cb8bcc4a1009f38f4a85b7c742101ba5bc03115feca2b994c699812"], 0x6, 0x635, &(0x7f0000000c80)="$eJzs3c1rHOcdB/DvrFZryQVHSezELYGKGNJSUVsvKK16iVtK0SGUkB56FrYcC6+VIClFCaWo79BTD/kD0oNuPRV6N6Tn9parjoFCLznppjKzs9LaWil6s1ZqPx/z7PM888w888xvZ2Zndi0mwP+t+Yk0n6TI/MTb62V9a3OmvbU5c6Vubicpy42k2clSLCfFZ8nddFK+Xk6s5y8OWs8nS3Pvfv7l1hedWrNO1fyNw5Y7mo06ZTzJUJ0/o/Wn4/Q33CmU/dzr398xFLtbWAbsVjdwMGg7+2wcZ/FTHrfARVB0Pjf3GUuuJhmprwNSnx0a5zu6s3essxwAAABcUi9sZzvruTbocQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMBlUj//v6hTo1seT9F9/n+rnpa6fKk9GfQAAAAAAAAAAOAMfHM721nPtW59p6h+83+9qlyvXr+WD7OaxazkdtazkLWsZSVTScZ6OmqtL6ytrUwdYcnpvktOn8/2AgAAAAAAAMD/qN9kfu/3fwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGKShOi86xaJO17vlsTSaSUaStMr5NpJ/dcuXRNFv4pPzHwcAAACcysgJlnlhO9tZz7Vufaeo7vlfqe6XR/JhlrOWpaylncXcr++hy7v+xtbmTHtrc+Zxmfb3+8P/HGsYVY+7X0P0W/PNao7RPMhSNeV27lWDuZ9GtWTpZnc8/cf163JMxVu1I47sfp2XK/vzQd8iDMRYFZHh3YhM1mMro/Hi4ZH4yneneeiaptLY/ebn+nOI+dU6L7fnDxcz5o1UkZju2fteOTwSybf+/tefP2wvP3r4YHXi4mzSCT27T8z0ROLVSx2J5jHnn6wicWO3Pp+f5GeZyHjeyUqW8ossZC2L2anbF+r9uXwdOzxSd5+qvfNVI2nV70vnLHqUMY3nx1VpIa9Xy17LUoq8n/tZzJvVv+lM5XuZzWzmet7hGweOu9q26qhvHO+ov/XtujCa5I91Pmidj9Qyri/2xLX3nDtWtfVO2YvSS2d/bmx+oy6U6/htnV8Mz0ZiqicSLx8eib9Ux8Zqe/nRysOFDw7of+OZ+ht1Xu5xv79QnxLl/vJSRuozydN7R9n28u5Z5ul4tepfXDptjX1tN6q2ougeqT898Eht1ddw+3uartpe7ds2U7Xd7Gl76nor76e9ez0EwAV29TtXW6P/Hv3n6Kejvxt9OPr2yI+ufP/Ka60M/2P4B83JoTcarxV/y6f51d79PwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcHKrH338aKHdXlzpX2gc3HS2haJ+kM95rEth0IXuQwRP3eHdC7E5l7owlKRfU/0WneThosClcGft8Qd3Vj/6+LtLjxfeW3xvcXl4dnZucm72zZk7D5bai5Od10GPEnge9j70+7cXF+oBmwAAAAAAAAAAAECO9vc2O/X//zvxXxoMehsBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAy21+Is0nKTI1eXuyrG9tzrTL1C3vzdlM0mgkxS+T4rPkbjopYz3dFW8dsJ5Plube/fzLrS/2+mpW85ed1vkpbNQp40mG6vys+rt36v6K3S0sA3arGzgYtP8GAAD//+IHAOM=")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x4c4ac000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000440)={0x900, 0x0, &(0x7f0000000400)={&(0x7f00000000c0)={0x2, 0xa, 0xfc, 0x0, 0x7, 0x0, 0x70bd28, 0x25dfdbfe, [@sadb_x_filter={0x5, 0x1a, @in=@empty, @in=@rand_addr=0x64010100, 0x2c, 0x30}]}, 0x38}}, 0x40408c0)
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x1000, 0x0, 0x0)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETSW2(r4, 0x402c542c, &(0x7f0000000040)={0x9, 0x8, 0x8001, 0x7, 0xe, "00000000001a00f5ff7d0d00751400", 0x8, 0x3})
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000140)=0xd)

7m46.623658171s ago: executing program 9 (id=688):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x24040084)
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)=@newqdisc={0x34, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r7, {0xffff}, {0xffff, 0xffff}, {0x2, 0xa}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x0)
r9 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=@newqdisc={0x30, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r10, {}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000000c0)=@newqdisc={0x40, 0x28, 0x4ee4e6a52ff56541, 0x5001, 0xfffffdfb, {0x0, 0x0, 0x0, r3, {0xffff}, {0xffff, 0xffff}, {0xe, 0x1}}, [@qdisc_kind_options=@q_etf={{0x8}, {0x14, 0x2, @TCA_ETF_PARMS={0x10, 0x1, {0x7, 0xb}}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x400dc}, 0x4000080)

7m46.001638726s ago: executing program 40 (id=688):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x24040084)
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)=@newqdisc={0x34, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r7, {0xffff}, {0xffff, 0xffff}, {0x2, 0xa}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x0)
r9 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=@newqdisc={0x30, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r10, {}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000000c0)=@newqdisc={0x40, 0x28, 0x4ee4e6a52ff56541, 0x5001, 0xfffffdfb, {0x0, 0x0, 0x0, r3, {0xffff}, {0xffff, 0xffff}, {0xe, 0x1}}, [@qdisc_kind_options=@q_etf={{0x8}, {0x14, 0x2, @TCA_ETF_PARMS={0x10, 0x1, {0x7, 0xb}}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x400dc}, 0x4000080)

7m45.993053986s ago: executing program 8 (id=690):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000580)={[{@max_batch_time={'max_batch_time', 0x3d, 0x4}}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@block_validity}, {@errors_remount}, {@nombcache}]}, 0x1, 0x44f, &(0x7f0000000640)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
mount$nfs4(0x0, 0x0, &(0x7f0000001a00), 0x10080, &(0x7f0000001a80)=ANY=[])
keyctl$set_reqkey_keyring(0xe, 0x3)
r1 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0x0)
r2 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x60})
ioctl$SNDRV_PCM_IOCTL_REWIND(r1, 0xc0844123, 0x0)
r3 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000009c0)={0x0, 0x0, 0x0, 0x1, 0x2b1e}, 0x0)
dup(r3)
ioctl$EVIOCGMTSLOTS(r3, 0x8040450a, &(0x7f0000001180)=""/4096)

7m45.17059389s ago: executing program 8 (id=694):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x380470a, &(0x7f0000000a00)={[{@quota}, {@bsdgroups}, {@lazytime}, {@errors_remount}, {@jqfmt_vfsv1}, {@oldalloc}, {@stripe={'stripe', 0x3d, 0x5}}]}, 0x2, 0x46b, &(0x7f0000000580)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(0x0, &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000004200)={0x2020}, 0x2020)

7m43.902159663s ago: executing program 8 (id=697):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x10000}, [@call={0x85, 0x0, 0x0, 0x7b}, @printk={@lx, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x72}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x75, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0xa4}, [@initr0]}, 0x0}, 0x94)
sendmsg$inet(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x20000000)

7m42.626764575s ago: executing program 8 (id=700):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e23, @loopback}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000001c0)=0x327, 0x4)
connect$inet(r0, &(0x7f0000001bc0)={0x2, 0x4e23, @loopback}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080)=0xf, 0x4)
sendto(r0, &(0x7f0000000740)="50fbdf12a30d7a48b2c5c84948f3426077a9f0ca1475183db3bf52a6b2cdb77ef9af2a603a3e78adff59fbb22bae1b2443011fd801251bcef8f165533aac58c7556dd51edc5a6865d4e29f0bbd0ed602050000000000002944de604d849a1e", 0x5f, 0x4008044, 0x0, 0x0)

7m42.220646862s ago: executing program 41 (id=700):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e23, @loopback}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000001c0)=0x327, 0x4)
connect$inet(r0, &(0x7f0000001bc0)={0x2, 0x4e23, @loopback}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080)=0xf, 0x4)
sendto(r0, &(0x7f0000000740)="50fbdf12a30d7a48b2c5c84948f3426077a9f0ca1475183db3bf52a6b2cdb77ef9af2a603a3e78adff59fbb22bae1b2443011fd801251bcef8f165533aac58c7556dd51edc5a6865d4e29f0bbd0ed602050000000000002944de604d849a1e", 0x5f, 0x4008044, 0x0, 0x0)

7m22.777586847s ago: executing program 3 (id=689):
r0 = socket(0x10, 0x2, 0x0)
syz_mount_image$udf(&(0x7f0000000080), &(0x7f00000000c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x4040, &(0x7f00000015c0)=ANY=[], 0x2, 0xc2d, &(0x7f00000001c0)="$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")
write(r0, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
recvmmsg(r0, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})
creat(&(0x7f0000002640)='./bus\x00', 0x44)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x301400, 0x0)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x49)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x7a00, 0x0, 0x3)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x20)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
getdents64(r2, &(0x7f0000000f80)=""/4096, 0x1000)

7m21.683467445s ago: executing program 3 (id=754):
r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
lseek(r0, 0x851, 0x1)

7m20.701138022s ago: executing program 3 (id=759):
r0 = syz_open_dev$vcsn(&(0x7f0000000080), 0x1, 0x180)
syz_io_uring_setup(0x6cce, &(0x7f00000000c0)={0x0, 0xb0a3, 0x2, 0x3, 0xba, 0x0, r0}, &(0x7f00000001c0), 0x0)
syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0x8149, 0x0, 0x2, 0xbfdffffc}, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$rdma_cm(0xffffff9c, &(0x7f0000000d00), 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
memfd_create(&(0x7f0000000580)='\x103q}2\x9a\xce\xaf\x03\xdfy[\xd9\xffR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1d\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc5\x1d\xe7jDf\x87@\x8fg\x15RJw\x82\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd9DC\x9fF\x9c[M=\xe0^\xa8\xed)\xe8Z\xe8\x99&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xcb\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7g\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05', 0x0)
socket(0x28, 0x801, 0x0)
socket(0xa, 0x1, 0x0)
userfaultfd(0x80001)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0x14, &(0x7f0000000080)=0xfff, 0x4)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
getpeername$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r1, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r3, 0x2f000000}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x36}], 0x1}}], 0x1, 0x0)

7m19.205508164s ago: executing program 42 (id=759):
r0 = syz_open_dev$vcsn(&(0x7f0000000080), 0x1, 0x180)
syz_io_uring_setup(0x6cce, &(0x7f00000000c0)={0x0, 0xb0a3, 0x2, 0x3, 0xba, 0x0, r0}, &(0x7f00000001c0), 0x0)
syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0x8149, 0x0, 0x2, 0xbfdffffc}, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$rdma_cm(0xffffff9c, &(0x7f0000000d00), 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
memfd_create(&(0x7f0000000580)='\x103q}2\x9a\xce\xaf\x03\xdfy[\xd9\xffR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1d\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc5\x1d\xe7jDf\x87@\x8fg\x15RJw\x82\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd9DC\x9fF\x9c[M=\xe0^\xa8\xed)\xe8Z\xe8\x99&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xcb\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7g\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05', 0x0)
socket(0x28, 0x801, 0x0)
socket(0xa, 0x1, 0x0)
userfaultfd(0x80001)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0x14, &(0x7f0000000080)=0xfff, 0x4)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
getpeername$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r1, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r3, 0x2f000000}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x36}], 0x1}}], 0x1, 0x0)

7m9.292490264s ago: executing program 7 (id=785):
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
openat$comedi(0xffffffffffffff9c, 0x0, 0x400, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8c}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000600)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_ctr_aes256\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, 0x0, 0x0)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x40)

7m2.293634736s ago: executing program 7 (id=795):
r0 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_buf(r0, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18)
setsockopt$inet6_opts(r0, 0x29, 0x36, &(0x7f0000000280)=ANY=[], 0x18)

7m1.810827548s ago: executing program 7 (id=796):
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000040)={0x6, 0x6, 0x0, 0x1, 0x5, 0xfff})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x14, 0x2a, 0x107, 0xfffffffd, 0x0, {0x1, 0x7c}}, 0x14}, 0x1, 0x0, 0x0, 0x4048011}, 0x8010)

7m1.782967791s ago: executing program 7 (id=797):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x380470a, &(0x7f0000000a00)={[{@quota}, {@bsdgroups}, {@lazytime}, {@errors_remount}, {@jqfmt_vfsv1}, {@oldalloc}, {@stripe={'stripe', 0x3d, 0x5}}]}, 0x2, 0x46b, &(0x7f0000000580)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000004200)={0x2020}, 0x2020)

7m1.549684191s ago: executing program 7 (id=798):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[], 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x2, &(0x7f0000000680)={0x3, 0x3, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000010000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000500000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000001c0)={r1, 0xffffffffffffffff, 0x60000000}, 0xc)

7m0.89059571s ago: executing program 7 (id=800):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000580)={[{@max_batch_time={'max_batch_time', 0x3d, 0x4}}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@block_validity}, {@errors_remount}, {@nombcache}]}, 0x1, 0x44f, &(0x7f0000000640)="$eJzs28tvG8UfAPDvrpP219cvoSqPPoBAQVQ8kiYtpQcuIJA4gIQEh3IMSVqVug1qgkSrCAJC5YgqcUcckfgLOMEFASckrnBHlSoUIbVwMlp7N7Ed23nUiaH+fKRtZ3bXnfl6drwzO90A+tZI9kcSsTcifo2IoVq28YSR2l+3lxam/lpamEqiUnnjj6R63q2lhani1OJze4rMQET6SRKHW5Q7d+XqhclyeeZynh+bv/ju2NyVq8+cvzh5bubczKWJ06dPnhh/7tTEs12JM4vr1qEPZo8cfOWt669Nnbn+9o9fJ0X8TXF0yUing49XKl0urrf21aWTgR5WhA0p1bppDFb7/1CUYqXxhuLlj3taOWBLVSqVyn3tDy9WgLtYEr2uAdAbxY0+m//mW3Hr34bRR+/dfKE2Acpiv51vtSMDkebnDDbNb7tpJCLOLP79RbbFRp9DpFtUKQDgrvZtNv55umH8l48/0qh/LvT/fA1lOCLuiYj9EXEqIg5ExL0R1XPvj4gHWhWStC+/eZFk9fgnvbHp4NYhG/89n69tNY7/lgdXw6U8t68a/2By9nx55nj+nRyLwZ1ZfrxDGd+99Mtn7Y7Vj/+yLSu/GAvm9bgxsLPxM9OT85N3EnO9mx9FHBpoFX+yvBKQNd/BiDi0yTLOP/nVkSJ9uNR4bO34O+jCOlPly4gnau2/GE3xF5LO65Nj/4vyzPGx4qpY7aefr73ervw7ir8Lsvbf3fL6X45/OKlfr53beBnXfvu07Zxms9f/juTNhn3vT87PXx6P2JG8Wqt0/f6JpvMmVs7P4j92tHX/3x8r38Th7PpPIx6MiIci4uG87o9ExKMRcbRD/D+8+Ng7HeP/s138Ozv8q92RxT/d0P7FD1+79l9J7IjmPa0TpQvff9NQ6HBT/Gu2/8lq6li+Zz2/f+up1+auZgAAAPjvySb7eyNJR5fTaTo6Wvs//Adid1qenZt/6uzse5ema+8IDMdgWjzpGqp7HjqeT+uL/ERT/kT+3Pjz0q5qfnRqtjzd6+Chz+1p0/8zv5d6XTtgy3lfC/qX/g99q/49AKDPuP9D/2rR/3f1oh7A9mt1//+wB/UAtl9T/7fsB33E/B/6l/4P/Uv/h740tyvWfkleQmJVItJ/RTUktijR618mAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA7vgnAAD//wW66qg=")
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
lseek(r1, 0x4, 0x1)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
mount$nfs4(0x0, &(0x7f00000019c0)='.\x00', &(0x7f0000001a00), 0x10080, &(0x7f0000001a80)=ANY=[])
keyctl$set_reqkey_keyring(0xe, 0x3)
r3 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0x0)
r4 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x60})
ioctl$SNDRV_PCM_IOCTL_REWIND(r3, 0xc0844123, &(0x7f00000000c0)=0x812)

7m0.497383285s ago: executing program 43 (id=800):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000580)={[{@max_batch_time={'max_batch_time', 0x3d, 0x4}}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@block_validity}, {@errors_remount}, {@nombcache}]}, 0x1, 0x44f, &(0x7f0000000640)="$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")
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
lseek(r1, 0x4, 0x1)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
mount$nfs4(0x0, &(0x7f00000019c0)='.\x00', &(0x7f0000001a00), 0x10080, &(0x7f0000001a80)=ANY=[])
keyctl$set_reqkey_keyring(0xe, 0x3)
r3 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0x0)
r4 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x60})
ioctl$SNDRV_PCM_IOCTL_REWIND(r3, 0xc0844123, &(0x7f00000000c0)=0x812)

7m0.113651439s ago: executing program 1 (id=760):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x10000}, [@call={0x85, 0x0, 0x0, 0x7b}, @printk={@lx, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x72}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000180), 0x4)
sendmsg$inet(r1, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x20000000)

6m59.909958967s ago: executing program 1 (id=803):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = dup(r0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @empty, 0x3}], 0x1c)
sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000440)={0x0, 0x18, 0xfa00, {0x2, 0x0, 0x2, 0x6}}, 0x20)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r2, 0xffffffffffffffff, 0x0)

6m59.118696928s ago: executing program 1 (id=804):
pipe2(&(0x7f0000000040)={<r0=>0xffffffffffffffff}, 0x0)
vmsplice(r0, &(0x7f0000000080)=[{&(0x7f00000013c0)="01", 0x1}], 0x1, 0x6)

6m59.017493566s ago: executing program 1 (id=805):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x380470a, &(0x7f0000000a00)={[{@quota}, {@bsdgroups}, {@lazytime}, {@errors_remount}, {@jqfmt_vfsv1}, {@oldalloc}, {@stripe={'stripe', 0x3d, 0x5}}]}, 0x2, 0x46b, &(0x7f0000000580)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000004200)={0x2020}, 0x2020)

6m58.657103438s ago: executing program 1 (id=806):
syz_emit_ethernet(0xb1, &(0x7f0000000000)={@link_local, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "081f20", 0x7b, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, [{0x0, 0x9, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96489269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac150"}, {0x19, 0x1, "020000000400000126000400"}, {0x18, 0x1, "0033e4756e009263e712da"}, {0x18, 0x1, "45976e75e433"}]}}}}}}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000002c0)={0xc, 0x0, &(0x7f0000000740)=[@free_buffer], 0x0, 0x0, 0x0})
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan0\x00'})
r4 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'sit0\x00'})

6m52.742791643s ago: executing program 1 (id=824):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB], 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x2, &(0x7f0000000680)={0x3, 0x3, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000010000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000500000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000001c0)={r1, 0xffffffffffffffff, 0x60000000}, 0xc)

6m51.602225854s ago: executing program 44 (id=824):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB], 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x2, &(0x7f0000000680)={0x3, 0x3, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000010000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000500000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000001c0)={r1, 0xffffffffffffffff, 0x60000000}, 0xc)

3m47.51881641s ago: executing program 4 (id=1411):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)

3m47.505698771s ago: executing program 4 (id=1412):
socket(0x10, 0x3, 0x0)
syz_emit_ethernet(0x33, &(0x7f00000000c0)={@remote, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @val={@val={0x88a8, 0x6, 0x1}, {0x8100, 0x5, 0x0, 0x4}}, {@arp={0x806, @generic={0x104, 0x6000, 0x6, 0x5, 0x4, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x17}, "eb782f7cc2", @empty, "155b31d8"}}}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f066bbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount$9p_virtio(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x8c, 0x0)
io_setup(0x3, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000800)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}])
ioctl$IOC_PR_PREEMPT(0xffffffffffffffff, 0x40046109, &(0x7f0000000040)={0xd0, 0xfffffffffffffffe, 0x1000000})
ioctl$vim2m_VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc044560f, &(0x7f0000000080)=@mmap={0x0, 0x2, 0x4, 0x0, 0x7, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "10110401"}})
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000000c0)='debugfs\x00', 0x1214040, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)={[{@xino_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4, 0x80)
getdents64(r3, &(0x7f0000000400)=""/4096, 0x1000)

3m45.065149207s ago: executing program 4 (id=1415):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x3, &(0x7f0000001900)=ANY=[@ANYBLOB="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", @ANYRES32=0x0], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
r4 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_IO(r4, 0x2285, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
write$sndseq(r5, &(0x7f0000000180)=[{0x0, 0x47, 0xd, 0x0, @tick, {0x40, 0xff}, {0x10, 0x9}, @note={0xa, 0x8, 0xb0, 0x9, 0x3}}, {0x0, 0x0, 0x0, 0x0, @tick=0x46f, {}, {0x80, 0x1}, @connect={{0x40, 0x7}, {0x80, 0xf6}}}], 0x38)
read$snapshot(r5, 0x0, 0xffffffbf)
socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), r6)
sendmsg$WG_CMD_SET_DEVICE(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000840)=ANY=[@ANYBLOB="e01000", @ANYRES16=r7, @ANYBLOB="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", @ANYRES32, @ANYBLOB="240003"], 0x10e0}}, 0x0)
read$FUSE(r5, 0x0, 0x0)
r8 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r8, 0x89f3, &(0x7f0000000080)={'ip6gre0\x00', &(0x7f0000000100)={'syztnl1\x00', 0x0, 0x29, 0x1, 0x3, 0x6, 0x6, @loopback, @local, 0x8, 0x7827, 0x3, 0x8}})
socket$inet_mptcp(0x2, 0x1, 0x106)
close_range(r3, 0xffffffffffffffff, 0x0)

3m42.249873437s ago: executing program 4 (id=1420):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)

3m41.838635603s ago: executing program 4 (id=1422):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
syz_open_dev$sndpcmc(&(0x7f00000000c0), 0x1, 0x1cb8c0)
r0 = getpid()
syz_pidfd_open(r0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141102)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r2, &(0x7f0000000140)={0x28, 0x0, 0x2710, @local}, 0x10)
listen(r2, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, &(0x7f0000000080)={0x28, 0x0, 0x2710}, 0x10)
accept4(r2, 0x0, 0x0, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000080), 0x80081, 0x0)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
pselect6(0x40, &(0x7f00000001c0)={0xa00, 0x300, 0x100000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000005}, 0x0, 0x0)

3m40.448047316s ago: executing program 4 (id=1425):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4f22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x3, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb}}, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r3, 0x2000012, 0xe, 0x0, &(0x7f0000000280)="63ec33c9e9b98600000000000000", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50)

3m24.918595911s ago: executing program 45 (id=1425):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4f22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x3, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb}}, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r3, 0x2000012, 0xe, 0x0, &(0x7f0000000280)="63ec33c9e9b98600000000000000", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50)

16.819626921s ago: executing program 0 (id=2013):
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x8, 0x0, 0xb45, 0x9, 0x200008, 0x2, 0x3}, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5452, 0x0)
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10)
bind$inet(r0, 0x0, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000000d80), 0x36f, 0x20102, 0x0)

15.81862508s ago: executing program 0 (id=2019):
socket(0x10, 0x3, 0x0)
syz_emit_ethernet(0x33, &(0x7f00000000c0)={@remote, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @val={@val={0x88a8, 0x6, 0x1}, {0x8100, 0x5, 0x0, 0x4}}, {@arp={0x806, @generic={0x104, 0x6000, 0x6, 0x5, 0x4, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x17}, "eb782f7cc2", @empty, "155b31d8"}}}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f066bbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount$9p_virtio(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x8c, 0x0)
io_setup(0x3, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000800)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}])
ioctl$IOC_PR_PREEMPT(0xffffffffffffffff, 0x40046109, &(0x7f0000000040)={0xd0, 0xfffffffffffffffe, 0x1000000})
ioctl$vim2m_VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc044560f, &(0x7f0000000080)=@mmap={0x0, 0x2, 0x4, 0x0, 0x7, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "10110401"}})
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000000c0)='debugfs\x00', 0x1214040, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)={[{@xino_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4, 0x80)
getdents64(r3, &(0x7f0000000400)=""/4096, 0x1000)

9.746541267s ago: executing program 5 (id=2043):
r0 = openat$nci(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
write$nci(r0, &(0x7f0000000400)=@NCI_OP_RF_DISCOVER_MAP_RSP, 0x4)
read$nci(r0, &(0x7f0000000500)=""/100, 0x64)
write$nci(r0, &(0x7f0000000580)=@NCI_OP_CORE_SET_CONFIG_RSP, 0x5)
read$nci(r0, &(0x7f00000005c0)=""/100, 0x64)
read$nci(r0, &(0x7f0000000680)=""/100, 0x64)
write$nci(r0, &(0x7f0000000740)=@NCI_OP_RF_DISCOVER_NTF={0x1, 0x0, 0x3, 0x3, 0x0, @b={0x0, 0x1, 0x1, 0x1, {0x1, "aa"}}}, 0xa)
sendmsg$NFC_CMD_ACTIVATE_TARGET(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000800)={0x2c, r2, 0x1, 0x123, 0x234, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r1}, @NFC_ATTR_TARGET_INDEX={0x8}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x1}]}, 0x2c}}, 0x0)

8.567401251s ago: executing program 5 (id=2045):
syz_open_dev$swradio(0x0, 0x0, 0x2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
write$P9_RGETLOCK(r0, &(0x7f0000000640)=ANY=[], 0x200002e6)
fcntl$setpipe(r0, 0x407, 0x7000000)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0xf2de1000)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
setrlimit(0x9, &(0x7f0000000080)={0x8606, 0xffff})
io_setup(0x8f0, &(0x7f0000002400))

8.537077464s ago: executing program 2 (id=2046):
r0 = fsopen(&(0x7f0000000200)='hugetlbfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', 0x0, 0x15e)
r2 = fanotify_init(0xf00, 0x0)
fanotify_mark(r2, 0x105, 0x5000003a, r1, 0x0)

8.335512422s ago: executing program 0 (id=2047):
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x8, 0x0, 0xb45, 0x9, 0x200008, 0x2, 0x3}, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5452, 0x0)
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x20102, 0x0)

8.269966888s ago: executing program 2 (id=2048):
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
socket$inet6(0xa, 0x3, 0x4)
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000100), 0x200, 0x0)
ppoll(&(0x7f0000000080)=[{r0, 0x8108}, {r0, 0x441}], 0x2, 0x0, 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000640)=0x10)
mmap$dsp(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x100000b, 0x8012, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x0, 0x0)
openat$adsp1(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = openat$vmci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r2, 0x7a7, &(0x7f0000000040)=0x90000)
socket$nl_rdma(0x10, 0x3, 0x14)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r6=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32=r6, @ANYBLOB="00000000000000001c001a800800028008000200080000003e120000080002001040e5"], 0x44}}, 0x0)
r7 = socket(0x10, 0x3, 0x0)
sendmmsg(r7, &(0x7f0000000000), 0x4000000000001f2, 0x0)

8.062106556s ago: executing program 0 (id=2049):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = io_uring_setup(0x5e4b, &(0x7f0000000040)={0x0, 0x4b70, 0x20, 0x0, 0x1c4})
io_uring_register$IORING_REGISTER_CLOCK(r0, 0x1d, &(0x7f0000000000)={0x1}, 0x0)
mmap(&(0x7f00004e9000/0x2000)=nil, 0x2000, 0x3000002, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000880)={"84ca18eaa852b1a3bb3e80fe4eee1e4efbe55b52637d7e57c6f18b1d38286e1e4f37d997fe32fe60b40690718c3efe462c935f0d40f1aeeffa2cf8101f28571b6dfc5560095636dd10ace18ee9c6b5b854d8d974d1c26b1a3b9900a365d717934bb0a489f0cebb1597f4e2bb5cfd0c5629f0a6a86e104c0b6c74dd41f07312910c778d23ee7e0c3a8c94ed8226925f0f05f288604684d76c58a0c09601ce1f11a06333743f6997026ef3edbcb9f3adc11f921bc91f7f9e8715fb886e1ff8544885de0da0b5fcd763e5539dd92ae1a27b5cda25329f8577cec548db45330209382208cd9e77998ccd3eb075cdf236c2166b13b7caf92272da52deb450f8544e3a4b95f3dead6c76ccd8943dff073a601d53b43d9394a9552ab9f78023b2b6b3db61d3d8ed662359066df8f0d398307ba15450c47bb2b97fd48f8e4a59c997b7d15d790978d3352ec552310bd219e72f997b04cc0d8c7afb392a36cc9b17fb5ab09647fc59984c2ee3a882d102cfe3bf29aeab03813d822cb9b1997876e0e603a099aed4dad75b83669b90dd808302b7c0bf5f88d020aa3d9beba2374670572ad0de5e4c78067e74f96a2baa3ec401520e7e4c2ff4cdb809b16d376fa622ebee5db6b8670ed68706e179b58de0aaaa3e43fb5d2a45582196aaf3aa232151aafbf7265d7c339a4f3b9d3f942aae8a4397db047abad9dfa7cd220a105e6d8faf25ff9312228b287db69b0f4f50b092f80e4336a2e327ba613f221e1fc859305b1b0b04c450952852653e200e6bd0293a1e1921b1292fa09dfba00cae70a01b590189f6a391fd4445abeea55e9c54d9f975227021d08b1861b8279edf51612e238cb36494ef745f3e1eb778ab341a8a36495695f29a60d717a4f5d534a00a2a3d020e61884201b33ce2e1c0420a05b5de2d3034f8bc14cc864b7d9394a1fda8db1e24bd14bf912656874e47cd30210c25107ea9b8d21d3b7198b0936acf0f15db949dbf22d51fc289cda1a550f3cba42e42184e5d61d61f2293735557f67d54bc3b4aba898119c3645c233ee02c4ab4b1b900e9aebdc2b772bb933d002a2b7ca954373e37eefa4377a93b16f8cd17613d714592afdc410ac705cb9798be70a8e64193214342992392c42475bbf9f33ad2d678e62af6f01b9f202a86fc549ed233724021ef50a0c82c6b3a51817c63d6dd706d9dae6e8b1fb61ffdcd59af94a92733c1b763007ef78e2d90bbdcde589b8f40e067a127841eb469d8aff8cee7d03d11ab2a6ddf0184301e11eec507393aa6df565e2503f5bb3210726f0b9bd49c6caf8ba93e709049fb4c9eaf9f66bae4d8749a2989214c0c2290b2841368481d67d5a6c6a6126b696a554132656c9ef3d4054349c2a312a1ef427f3b1ec6d3b2a8cfdbc722373932a2892f0333d879800b7cfaa94259a2c301ff48c575279da1de8198"})
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
recvmmsg(0xffffffffffffffff, &(0x7f00000033c0)=[{{&(0x7f0000000500)=@xdp, 0x80, &(0x7f0000000480)=[{0x0}, {0x0}, {&(0x7f0000000340)=""/48, 0x30}, {0x0}, {&(0x7f0000000680)=""/122, 0x7a}], 0x5}}, {{&(0x7f0000002100)=@l2tp={0x2, 0x0, @loopback}, 0x80, &(0x7f0000003280), 0x0, &(0x7f00000032c0)=""/201, 0xc9}, 0xfff}], 0x2, 0x2, 0x0)
openat$6lowpan_control(0xffffffffffffff9c, 0x0, 0x2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
syz_80211_join_ibss(&(0x7f0000000140)='wlan1\x00', &(0x7f0000000180)=@default_ibss_ssid, 0x6, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x110, &(0x7f00000001c0)=0x1, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000004c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x19, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1, 0x1, {0x6}})
io_uring_enter(0xffffffffffffffff, 0x6e2, 0xc5fb, 0x1, 0x0, 0x0)
syz_emit_ethernet(0x7e, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaac6eb9947e4e408004500007000000000fe00900100ac1414aa0bba90780300589f45000000000000000089000000000000e0000001862a00000003020d5e000000ff00000000000000054eb8a600129606053d0006ff00800000b61af93a9383fbffac1414007f000001e0000001e0000002000000000000"], 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000100), 0x141802, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
connect$x25(r2, &(0x7f0000000200), 0x12)
getsockopt$inet_sctp_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000100), &(0x7f0000000140)=0xe)

7.852660364s ago: executing program 0 (id=2050):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x80000, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x2}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000002c0)=@newtfilter={0x90, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, 0x0, {0xd, 0x5}, {}, {0x7, 0x3}}, [@filter_kind_options=@f_matchall={{0xd}, {0x5c, 0x2, [@TCA_MATCHALL_ACT={0x58, 0x2, [@m_ife={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x8, 0x8, 0x1, 0xa, 0x3}, 0x1}}, @TCA_IFE_METALST={0xc, 0x6, [@IFE_META_PRIO={0x8, 0x3, @val=0x7fffff7f}]}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}]}, 0x90}, 0x1, 0x0, 0x0, 0x404c000}, 0x24000000)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r4)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
r5 = socket$kcm(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$kcm(r5, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, r6, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000140)='\r', 0x5dc}], 0x1}, 0x4)

7.597480727s ago: executing program 6 (id=2051):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r0 = syz_open_dev$dvb_frontend(&(0x7f00000002c0), 0x0, 0x2)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
syz_io_uring_setup(0x23d, &(0x7f0000000680)={0x0, 0x425e5, 0x10100, 0x3, 0x202e0}, &(0x7f0000000180), &(0x7f00000001c0))
read$dsp(r1, &(0x7f0000000280)=""/79, 0x4f)
ioctl$FE_GET_EVENT(r0, 0x80286f4e, &(0x7f0000000000)={0x0, {0x0, 0x0, @ofdm}})
ioctl$FE_GET_EVENT(r0, 0x80286f4e, &(0x7f0000000080)={0x0, {0x0, 0x0, @qam}})

6.487077255s ago: executing program 6 (id=2052):
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001000000"], 0x48)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
readv(r2, &(0x7f00000000c0)=[{&(0x7f0000000000)=""/123, 0x7b}], 0x1)

5.654693899s ago: executing program 5 (id=2053):
r0 = openat$nci(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
write$nci(r0, &(0x7f0000000400)=@NCI_OP_RF_DISCOVER_MAP_RSP, 0x4)
read$nci(r0, &(0x7f0000000500)=""/100, 0x64)
write$nci(r0, &(0x7f0000000580)=@NCI_OP_CORE_SET_CONFIG_RSP, 0x5)
read$nci(r0, &(0x7f00000005c0)=""/100, 0x64)
read$nci(r0, &(0x7f0000000680)=""/100, 0x64)
write$nci(r0, &(0x7f0000000740)=@NCI_OP_RF_DISCOVER_NTF={0x1, 0x0, 0x3, 0x3, 0x0, @b={0x0, 0x1, 0x1, 0x1, {0x1, "aa"}}}, 0xa)
sendmsg$NFC_CMD_ACTIVATE_TARGET(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000800)={0x2c, r2, 0x1, 0x123, 0x234, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r1}, @NFC_ATTR_TARGET_INDEX={0x8}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x1}]}, 0x2c}}, 0x0)

5.509442272s ago: executing program 2 (id=2054):
socket$inet_sctp(0x2, 0x1, 0x84)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
fsetxattr$security_capability(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mount$fuse(0x0, 0x0, 0x0, 0x280449c, 0x0)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, 0x0, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, 0x0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)

5.507581322s ago: executing program 6 (id=2055):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0], 0x1})
ioctl$KVM_CAP_MEMORY_FAULT_INFO(r0, 0x4068aea3, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANE(r2, 0xc02064b6, 0x0)
ioctl$DRM_IOCTL_MODE_ATOMIC(r2, 0xc03864bc, 0x0)
syz_io_uring_setup(0x810, 0x0, &(0x7f0000000100), &(0x7f0000000140))
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='highspeed', 0x9)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r3, &(0x7f00000000c0), 0xffffffffffffffef, 0x0, 0x0, 0x0)
recvfrom$inet(r3, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
socket$inet_tcp(0x2, 0x1, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x10})
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0)
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, &(0x7f0000000080)={{&(0x7f0000800000/0x800000)=nil, 0x800000}, 0x1})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

4.444350756s ago: executing program 5 (id=2056):
socket$packet(0x11, 0x3, 0x300)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000007d40)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000003c0)={r0}, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x3, 0x4, &(0x7f0000000440)=@framed={{0x18, 0x2, 0x0, 0x0, 0x75, 0x0, 0x0, 0x0, 0x40002}, [@call={0x85, 0x0, 0x0, 0x18}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
socket$inet6(0xa, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x8000000004)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_open_dev$dri(&(0x7f0000000140), 0x2, 0x0)
openat$panthor(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x42800)
socket$igmp6(0xa, 0x3, 0x2)
socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_mptcp(0xa, 0x1, 0x106)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/power/pm_test', 0x42, 0x0)
ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000000)={0x4000000, {0x2, 0x4e28, @private=0xa010100}, {0x2, 0x0, @local}, {0x2, 0x4e24, @rand_addr=0x64010102}, 0x7b3, 0x0, 0x0, 0x0, 0xfff8, 0x0, 0x4, 0xc, 0xfffc})
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYRES32, @ANYRES16=0x0, @ANYRES8=r1], 0x1c}, 0x1, 0x0, 0x0, 0x20000844}, 0x48885)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='L', 0x1, 0x7ffffffe)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r2, &(0x7f0000000000), 0xd)

4.306176859s ago: executing program 6 (id=2057):
r0 = syz_open_dev$video(&(0x7f0000000100), 0x3, 0x2000)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = syz_open_dev$dvb_frontend(&(0x7f0000000000), 0x0, 0x40002)
ioctl$FE_DISEQC_SEND_MASTER_CMD(r2, 0x40076f3f, &(0x7f0000000040)={'\x00', 0xfffffffffffffe09})
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0x6, 0xfa11, 0xffffffff}, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r5 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
ioctl$SNDCTL_DSP_SPEED(r5, 0xc0045002, &(0x7f0000000080)=0x3ff)
write$dsp(r5, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)
r6 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r6, 0x107, 0xd, &(0x7f0000000380)=@req3={0x10000, 0x100000001, 0x10000, 0x1, 0x0, 0x1}, 0x1c)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, 0x0)
bind$packet(r6, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x4, 0x6, @remote}, 0x14)
sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8801}, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000002c0)={@local, @broadcast, @void, {@ipv4={0x800, @tipc={{0x5, 0x4, 0x0, 0x3c, 0x40, 0x67, 0x0, 0x3, 0x6, 0x0, @rand_addr=0x64010100, @local}, @payload_mcast={{{{{{0x2c, 0x0, 0x0, 0x0, 0x0, 0xb, 0x1, 0x2, 0x5, 0x0, 0x1, 0x1, 0x0, 0x1, 0x800, 0x1, 0x1, 0x4e21, 0x4e22}, 0x1}, 0x3}, 0x1}}}}}}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_open_dev$vcsa(0x0, 0x100000001, 0x202001)
socket$nl_xfrm(0x10, 0x3, 0x6)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000800)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000000380)=ANY=[@ANYBLOB="020101090800000000170006ffffff00030006001000000002000000e0000009f9ff0f0005000000030005007217440502000000e0000001"], 0x40}}, 0x0)
sendmsg$key(r7, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x9, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0xe, @in={0x2, 0x0, @multicast1=0xe0000009}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x50}}, 0x0)
ioctl$VIDIOC_S_FMT(r0, 0xc0cc5605, &(0x7f00000025c0)={0x1, @vbi={0x8, 0x449, 0x47524247, 0x0, [0x4, 0x3], [0x40, 0x2], 0x13a}})

4.246610434s ago: executing program 5 (id=2058):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = io_uring_setup(0x5e4b, &(0x7f0000000040)={0x0, 0x4b70, 0x20, 0x0, 0x1c4})
io_uring_register$IORING_REGISTER_CLOCK(r0, 0x1d, &(0x7f0000000000)={0x1}, 0x0)
mmap(&(0x7f00004e9000/0x2000)=nil, 0x2000, 0x3000002, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000880)={"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"})
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
recvmmsg(0xffffffffffffffff, &(0x7f00000033c0)=[{{&(0x7f0000000500)=@xdp, 0x80, &(0x7f0000000480)=[{0x0}, {0x0}, {&(0x7f0000000340)=""/48, 0x30}, {0x0}, {&(0x7f0000000680)=""/122, 0x7a}], 0x5}}, {{&(0x7f0000002100)=@l2tp={0x2, 0x0, @loopback}, 0x80, &(0x7f0000003280), 0x0, &(0x7f00000032c0)=""/201, 0xc9}, 0xfff}], 0x2, 0x2, 0x0)
openat$6lowpan_control(0xffffffffffffff9c, 0x0, 0x2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
syz_80211_join_ibss(&(0x7f0000000140)='wlan1\x00', &(0x7f0000000180)=@default_ibss_ssid, 0x6, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x110, &(0x7f00000001c0)=0x1, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000004c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x19, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1, 0x1, {0x6}})
io_uring_enter(0xffffffffffffffff, 0x6e2, 0xc5fb, 0x1, 0x0, 0x0)
syz_emit_ethernet(0x7e, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaac6eb9947e4e408004500007000000000fe00900100ac1414aa0bba90780300589f45000000000000000089000000000000e0000001862a00000003020d5e000000ff00000000000000054eb8a600129606053d0006ff00800000b61af93a9383fbffac1414007f000001e0000001e0000002000000000000"], 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000100), 0x141802, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
connect$x25(r2, &(0x7f0000000200), 0x12)
getsockopt$inet_sctp_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000100), &(0x7f0000000140)=0xe)

3.704660532s ago: executing program 2 (id=2059):
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r0 = socket(0x400000000010, 0x3, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xf}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x6, 0x3, 0xc06a2f6, 0x1, 0x7}, 0x6, 0x0, 0xa, 0x4, 0x6, 0x8, 0x18, 0x9, 0x3, 0x4, {0x0, 0x2, 0x9, 0x800, 0x8704, 0x27000000}}}}]}, 0x78}}, 0x0)
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000016c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r5, {0x0, 0x4}, {}, {0x8, 0xf}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8, 0x1, {0xfff0, 0xa}}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000010}, 0x20000000)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
close(r6)
socket$unix(0x1, 0x1, 0x0)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r7 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r7, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r7, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r5, 0xc}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000180)="27030200590214000600002fb96dbcf706e10500000086ddffff1144ee163cd4b8bf", 0x22}, {&(0x7f0000000c00)="4307ed2e", 0x4}], 0x2}, 0x4)

980.712723ms ago: executing program 6 (id=2060):
syz_open_dev$vim2m(&(0x7f0000000000), 0x8000000000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480))
openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
syz_clone(0x8021000, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x0)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
socket$can_raw(0x1d, 0x3, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r0 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x48240)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r1=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r1], &(0x7f0000000180), 0x0, &(0x7f00000001c0)=[0x7fffffff], 0x0, 0x4})

906.59832ms ago: executing program 5 (id=2061):
syz_open_dev$swradio(0x0, 0x0, 0x2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
write$P9_RGETLOCK(r0, &(0x7f0000000640)=ANY=[], 0x200002e6)
fcntl$setpipe(r0, 0x407, 0x7000000)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0xf2de1000)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
setrlimit(0x9, &(0x7f0000000080)={0x8606, 0xffff})
io_setup(0x8f0, &(0x7f0000002400))

822.969537ms ago: executing program 2 (id=2062):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$pokeuser(0x6, r0, 0xfc, 0x6000003f)

756.708003ms ago: executing program 0 (id=2063):
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001000000"], 0x48)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
readv(r2, &(0x7f00000000c0)=[{&(0x7f0000000000)=""/123, 0x7b}], 0x1)

58.751845ms ago: executing program 2 (id=2064):
r0 = openat$nci(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
write$nci(r0, &(0x7f0000000400)=@NCI_OP_RF_DISCOVER_MAP_RSP, 0x4)
read$nci(r0, &(0x7f0000000500)=""/100, 0x64)
write$nci(r0, &(0x7f0000000580)=@NCI_OP_CORE_SET_CONFIG_RSP, 0x5)
read$nci(r0, &(0x7f00000005c0)=""/100, 0x64)
read$nci(r0, &(0x7f0000000680)=""/100, 0x64)
write$nci(r0, &(0x7f0000000740)=@NCI_OP_RF_DISCOVER_NTF={0x1, 0x0, 0x3, 0x3, 0x0, @b={0x0, 0x1, 0x1, 0x1, {0x1, "aa"}}}, 0xa)
sendmsg$NFC_CMD_ACTIVATE_TARGET(r1, &(0x7f0000000780)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000800)={0x2c, r2, 0x1, 0x123, 0x234, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_TARGET_INDEX={0x8}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x1}]}, 0x2c}}, 0x0)

0s ago: executing program 6 (id=2065):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0], 0x1})
ioctl$KVM_CAP_MEMORY_FAULT_INFO(r0, 0x4068aea3, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANE(r2, 0xc02064b6, 0x0)
ioctl$DRM_IOCTL_MODE_ATOMIC(r2, 0xc03864bc, 0x0)
syz_io_uring_setup(0x810, 0x0, &(0x7f0000000100), &(0x7f0000000140))
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='highspeed', 0x9)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r3, &(0x7f00000000c0), 0xffffffffffffffef, 0x0, 0x0, 0x0)
recvfrom$inet(r3, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
socket$inet_tcp(0x2, 0x1, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x10})
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0)
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, &(0x7f0000000080)={{&(0x7f0000800000/0x800000)=nil, 0x800000}, 0x1})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

kernel console output (not intermixed with test programs):

175511][ T9496] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  371.219208][ T9496] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  371.241883][ T9496] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  371.253390][ T9496] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  371.272033][ T9496] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  371.354462][ T9496] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  371.470192][ T9496] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  372.021144][ T9354] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  372.048205][ T9354] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  372.070060][ T9354] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  372.092802][ T9354] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  372.114375][ T9034] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.254263][   T23] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  372.308903][ T9354] 8021q: adding VLAN 0 to HW filter on device bond0
[  372.414284][ T9523] mkiss: ax0: crc mode is auto.
[  372.418132][ T9354] 8021q: adding VLAN 0 to HW filter on device team0
[  372.464711][   T23] usb 3-1: Using ep0 maxpacket: 8
[  372.472538][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  372.479984][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  372.485988][   T23] usb 3-1: config index 0 descriptor too short (expected 301, got 45)
[  372.504412][   T23] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  372.527608][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  372.534851][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  372.546878][   T23] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  372.584194][   T23] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  372.623733][   T23] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  372.660809][   T23] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  372.694218][   T51] Bluetooth: hci0: command 0x0c1a tx timeout
[  372.700493][   T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  372.968574][ T9538] binder: 9534:9538 ioctl c0306201 0 returned -14
[  373.046907][   T23] usb 3-1: usb_control_msg returned -32
[  373.055416][   T23] usbtmc 3-1:16.0: can't read capabilities
[  373.094656][   T51] Bluetooth: hci1: command 0x0c1a tx timeout
[  373.254656][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[  373.350364][   T51] Bluetooth: hci2: command 0x0c1a tx timeout
[  373.428816][ T9548] loop7: detected capacity change from 0 to 512
[  373.437523][ T9548] EXT4-fs: Ignoring removed oldalloc option
[  373.464558][ T9548] EXT4-fs (loop7): 1 truncate cleaned up
[  373.471540][ T9548] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  373.562694][ T9354] 8021q: adding VLAN 0 to HW filter on device batadv0
[  373.628313][ T6458] EXT4-fs error (device loop7): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=0, rec_len=0, size=1024 fake=0
[  373.660270][ T6458] EXT4-fs (loop7): Remounting filesystem read-only
[  373.807373][ T9354] veth0_vlan: entered promiscuous mode
[  373.833692][ T9354] veth1_vlan: entered promiscuous mode
[  373.893411][ T9081] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  373.928595][ T9354] veth0_macvtap: entered promiscuous mode
[  374.023646][ T9354] veth1_macvtap: entered promiscuous mode
[  374.046779][ T9354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  374.062093][ T9354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  374.074441][ T9354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  374.085848][ T9354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  374.100094][ T9354] batman_adv: batadv0: Interface activated: batadv_slave_0
[  374.122171][ T9354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  374.139500][ T9354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  374.149875][ T9354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  374.167111][ T9354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  374.179418][ T9354] batman_adv: batadv0: Interface activated: batadv_slave_1
[  374.201452][ T9354] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  374.217117][ T9354] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  374.228308][ T9354] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  374.255478][ T9354] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  374.415050][ T3463] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.546370][ T3463] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.679684][ T3463] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.730737][ T2938] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  374.755174][ T2938] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  374.817976][ T3463] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.897321][ T2938] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  374.927834][ T2938] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  375.063539][ T6528] usb 3-1: USB disconnect, device number 2
[  375.180562][   T51] Bluetooth: hci1: command 0x0c1a tx timeout
[  375.335951][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[  375.424298][   T51] Bluetooth: hci2: command 0x0c1a tx timeout
[  375.531324][ T5088] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  375.549618][ T5088] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  375.569172][ T5088] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  375.589583][ T5088] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  375.598046][ T5088] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  375.605807][ T5088] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  375.908506][ T9594] vhci_hcd: Failed attach request for unsupported USB speed: super-speed-plus
[  376.291075][ T9604] loop1: detected capacity change from 0 to 512
[  376.309622][ T9604] EXT4-fs: Ignoring removed oldalloc option
[  376.373924][ T9604] EXT4-fs (loop1): 1 truncate cleaned up
[  376.383333][ T9604] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  376.520176][ T9354] EXT4-fs error (device loop1): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=0, rec_len=0, size=1024 fake=0
[  376.548610][ T9354] EXT4-fs (loop1): Remounting filesystem read-only
[  377.058830][ T9587] chnl_net:caif_netlink_parms(): no params data found
[  377.414799][ T5088] Bluetooth: hci3: command 0x0c1a tx timeout
[  377.485666][ T3463] hsr_slave_0: left promiscuous mode
[  377.493822][ T3463] hsr_slave_1: left promiscuous mode
[  377.638250][ T3463] veth1_macvtap: left promiscuous mode
[  377.665296][ T5088] Bluetooth: hci0: command tx timeout
[  377.665422][ T3463] veth0_macvtap: left promiscuous mode
[  377.692244][ T3463] veth1_vlan: left promiscuous mode
[  377.702873][ T3463] veth0_vlan: left promiscuous mode
[  378.038093][ T5088] Bluetooth: hci3: Invalid handle: 0x30c9 > 0x0eff
[  379.765919][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  379.772325][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  379.784063][   T51] Bluetooth: hci0: command tx timeout
[  381.133099][ T9662] loop2: detected capacity change from 0 to 128
[  381.185440][ T5765] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  381.532172][ T3463] bond0 (unregistering): Released all slaves
[  381.682174][ T9587] bridge0: port 1(bridge_slave_0) entered blocking state
[  381.717867][ T9587] bridge0: port 1(bridge_slave_0) entered disabled state
[  381.732142][ T9587] bridge_slave_0: entered allmulticast mode
[  381.741638][ T9587] bridge_slave_0: entered promiscuous mode
[  381.803423][ T9587] bridge0: port 2(bridge_slave_1) entered blocking state
[  381.835445][ T9587] bridge0: port 2(bridge_slave_1) entered disabled state
[  381.842803][ T9587] bridge_slave_1: entered allmulticast mode
[  381.856146][ T9587] bridge_slave_1: entered promiscuous mode
[  381.905006][   T51] Bluetooth: hci0: command tx timeout
[  381.970301][ T9587] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  382.007451][ T9587] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  382.108159][ T9587] team0: Port device team_slave_0 added
[  382.136595][ T9587] team0: Port device team_slave_1 added
[  382.167950][ T9354] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  382.962590][ T9587] batman_adv: batadv0: Adding interface: batadv_slave_0
[  383.052757][ T9587] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  383.111804][ T9587] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  383.230511][ T9587] batman_adv: batadv0: Adding interface: batadv_slave_1
[  383.266981][ T9587] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  383.305664][ T9587] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  383.398807][ T9587] hsr_slave_0: entered promiscuous mode
[  383.429740][ T9587] hsr_slave_1: entered promiscuous mode
[  383.437663][ T9587] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  383.464257][ T9587] Cannot create hsr debugfs directory
[  383.663726][ T3463] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  383.693769][ T9699] loop4: detected capacity change from 0 to 512
[  383.717938][ T9699] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  383.804134][ T9699] EXT4-fs (loop4): 1 truncate cleaned up
[  383.811734][ T9699] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  383.970965][ T3463] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  384.004370][   T51] Bluetooth: hci0: command tx timeout
[  384.062448][ T9709] loop2: detected capacity change from 0 to 128
[  384.176727][ T7041] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  384.289235][ T3463] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  384.390028][ T5088] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  384.408040][ T5088] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  384.429232][ T5088] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  384.438782][ T5088] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  384.446979][ T5088] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  384.456453][ T5088] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  384.484510][ T3463] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  384.632684][ T9034] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  386.002946][ T9745] loop4: detected capacity change from 0 to 128
[  386.312588][ T9754] loop2: detected capacity change from 0 to 512
[  386.365807][ T9754] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  386.403689][ T9754] EXT4-fs (loop2): 1 truncate cleaned up
[  386.435739][ T9754] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  386.551500][   T51] Bluetooth: hci2: command tx timeout
[  387.050917][ T9716] chnl_net:caif_netlink_parms(): no params data found
[  387.113335][ T9587] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  387.141899][ T9587] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  387.223805][ T8486] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  387.321714][ T9587] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  387.349328][ T9587] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  387.402784][ T9716] bridge0: port 1(bridge_slave_0) entered blocking state
[  387.410276][ T9716] bridge0: port 1(bridge_slave_0) entered disabled state
[  387.419680][ T9716] bridge_slave_0: entered allmulticast mode
[  387.429324][ T9716] bridge_slave_0: entered promiscuous mode
[  387.438199][ T9716] bridge0: port 2(bridge_slave_1) entered blocking state
[  387.446851][ T9716] bridge0: port 2(bridge_slave_1) entered disabled state
[  387.456941][ T9716] bridge_slave_1: entered allmulticast mode
[  387.465421][ T9716] bridge_slave_1: entered promiscuous mode
[  387.525676][ T9716] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  387.542213][ T9716] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  387.579909][ T5974] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  387.623551][ T9716] team0: Port device team_slave_0 added
[  387.662815][ T9716] team0: Port device team_slave_1 added
[  387.733481][ T9716] batman_adv: batadv0: Adding interface: batadv_slave_0
[  387.742756][ T9716] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  387.773348][ T9716] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  387.787184][ T9716] batman_adv: batadv0: Adding interface: batadv_slave_1
[  387.794804][ T9716] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  387.836885][ T5974] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  387.854841][ T5974] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  387.866030][ T5974] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  387.868997][ T9716] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  387.881115][ T5974] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  387.900446][ T5974] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  387.914677][ T5974] usb 3-1: config 0 descriptor??
[  388.014535][ T9716] hsr_slave_0: entered promiscuous mode
[  388.022713][ T9716] hsr_slave_1: entered promiscuous mode
[  388.051058][ T9716] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  388.064259][ T9716] Cannot create hsr debugfs directory
[  388.287887][ T3463] hsr_slave_0: left promiscuous mode
[  388.295677][ T3463] hsr_slave_1: left promiscuous mode
[  388.301837][ T3463] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  388.311642][ T3463] batman_adv: batadv0: Removing interface: batadv_slave_0
[  388.320498][ T3463] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  388.331496][ T3463] batman_adv: batadv0: Removing interface: batadv_slave_1
[  388.341901][ T3463] bridge_slave_1: left allmulticast mode
[  388.348158][ T3463] bridge_slave_1: left promiscuous mode
[  388.354068][ T3463] bridge0: port 2(bridge_slave_1) entered disabled state
[  388.369965][ T3463] bridge_slave_0: left allmulticast mode
[  388.370189][ T5974] plantronics 0003:047F:FFFF.0001: No inputs registered, leaving
[  388.376225][ T3463] bridge_slave_0: left promiscuous mode
[  388.402038][ T3463] bridge0: port 1(bridge_slave_0) entered disabled state
[  388.413876][ T9784] loop4: detected capacity change from 0 to 128
[  388.456674][ T9784] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  388.463221][ T5974] plantronics 0003:047F:FFFF.0001: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  388.469942][ T9784] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  388.491041][ T3463] veth1_macvtap: left promiscuous mode
[  388.517930][ T3463] veth0_macvtap: left promiscuous mode
[  388.523741][ T3463] veth1_vlan: left promiscuous mode
[  388.529609][ T3463] veth0_vlan: left promiscuous mode
[  388.616247][   T51] Bluetooth: hci2: command tx timeout
[  389.631691][ T9789] loop4: detected capacity change from 0 to 128
[  389.676066][ T5765] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  390.030680][ T3463] team0 (unregistering): Port device team_slave_1 removed
[  390.098518][ T3463] team0 (unregistering): Port device team_slave_0 removed
[  390.168979][ T3463] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  390.301545][ T3463] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  390.337278][ T9792] loop2: detected capacity change from 0 to 512
[  390.360000][ T9792] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  390.428369][ T9792] EXT4-fs (loop2): 1 truncate cleaned up
[  390.471046][ T9792] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  390.681331][ T6528] usb 3-1: USB disconnect, device number 3
[  390.709211][   T51] Bluetooth: hci2: command tx timeout
[  391.355808][ T8486] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  391.422531][ T3463] bond0 (unregistering): Released all slaves
[  391.813882][ T9587] 8021q: adding VLAN 0 to HW filter on device bond0
[  391.927914][ T9587] 8021q: adding VLAN 0 to HW filter on device team0
[  391.961375][ T9806] loop4: detected capacity change from 0 to 128
[  392.017900][ T9806] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  392.048328][ T9806] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  392.376869][ T2915] bridge0: port 1(bridge_slave_0) entered blocking state
[  392.384357][ T2915] bridge0: port 1(bridge_slave_0) entered forwarding state
[  392.397896][ T2915] bridge0: port 2(bridge_slave_1) entered blocking state
[  392.405177][ T2915] bridge0: port 2(bridge_slave_1) entered forwarding state
[  392.774374][   T51] Bluetooth: hci2: command tx timeout
[  392.901926][ T9815] loop2: detected capacity change from 0 to 512
[  392.967690][ T9815] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  393.104652][ T9815] EXT4-fs (loop2): 1 truncate cleaned up
[  393.111665][ T9815] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  393.338669][ T9716] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  393.410230][ T9716] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  393.456683][ T9716] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  393.644403][ T9716] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  393.842297][ T9587] 8021q: adding VLAN 0 to HW filter on device batadv0
[  394.093401][ T8486] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  394.202569][ T9716] 8021q: adding VLAN 0 to HW filter on device bond0
[  394.317998][ T9716] 8021q: adding VLAN 0 to HW filter on device team0
[  394.472307][ T2915] bridge0: port 1(bridge_slave_0) entered blocking state
[  394.479611][ T2915] bridge0: port 1(bridge_slave_0) entered forwarding state
[  394.550624][ T2915] bridge0: port 2(bridge_slave_1) entered blocking state
[  394.558045][ T2915] bridge0: port 2(bridge_slave_1) entered forwarding state
[  395.070748][ T9587] veth0_vlan: entered promiscuous mode
[  395.146897][ T9839] loop2: detected capacity change from 0 to 128
[  395.161637][ T9587] veth1_vlan: entered promiscuous mode
[  395.286105][ T9587] veth0_macvtap: entered promiscuous mode
[  395.309518][ T5765] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  395.321343][ T9587] veth1_macvtap: entered promiscuous mode
[  395.380233][ T9587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  395.410227][ T9587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  395.459735][ T9587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  395.502954][ T9587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  395.527698][ T9587] batman_adv: batadv0: Interface activated: batadv_slave_0
[  395.621138][ T9716] 8021q: adding VLAN 0 to HW filter on device batadv0
[  395.649485][ T9587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  395.694158][ T9587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  395.727350][ T9587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  395.758096][ T9587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  395.802865][ T9587] batman_adv: batadv0: Interface activated: batadv_slave_1
[  395.916960][ T9587] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  395.954803][ T9587] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  395.968764][ T9587] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  395.979174][ T9587] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  396.493804][ T2921] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  396.553805][ T2921] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  396.623947][ T9716] veth0_vlan: entered promiscuous mode
[  396.675185][ T9859] loop2: detected capacity change from 0 to 128
[  396.805296][ T9859] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  396.821872][ T9859] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  396.918390][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  396.946369][ T9716] veth1_vlan: entered promiscuous mode
[  396.953692][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  397.512679][ T9716] veth0_macvtap: entered promiscuous mode
[  397.561036][ T9716] veth1_macvtap: entered promiscuous mode
[  397.654790][ T9863] Bluetooth: MGMT ver 1.22
[  397.680352][ T9865] netlink: 72 bytes leftover after parsing attributes in process `syz.5.801'.
[  397.828706][ T9716] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  397.852038][ T9868] loop5: detected capacity change from 0 to 128
[  398.086602][ T9716] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.316583][ T9716] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  398.531758][ T9716] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.543173][ T9716] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  398.559517][ T9716] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.662457][ T9716] batman_adv: batadv0: Interface activated: batadv_slave_0
[  398.766626][ T9716] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  398.804132][ T9716] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.815205][ T9879] binder: 9878:9879 ioctl c0306201 0 returned -14
[  398.822040][ T9716] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  398.937952][ T9882] loop2: detected capacity change from 0 to 128
[  398.973216][ T9882] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  398.991263][ T9882] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  399.275071][ T9716] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  399.490947][ T9716] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  399.623224][ T9716] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  399.689339][ T9716] batman_adv: batadv0: Interface activated: batadv_slave_1
[  399.800617][ T9716] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  399.811159][ T9716] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  399.821902][ T9716] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  399.831004][ T9716] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  400.023257][ T2915] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  400.044993][ T2915] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  400.190269][ T3463] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  400.237153][ T3463] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  402.788066][ T9915] loop2: detected capacity change from 0 to 512
[  402.802636][ T9915] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  402.881774][ T9921] binder: 9912:9921 ioctl c0306201 0 returned -14
[  402.908074][ T9915] EXT4-fs (loop2): 1 truncate cleaned up
[  402.952194][ T9915] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  404.589508][ T9932] loop5: detected capacity change from 0 to 128
[  404.800433][ T9932] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  404.832883][ T9932] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  405.101818][ T9929] loop6: detected capacity change from 0 to 128
[  405.110536][ T8486] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  405.793180][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  405.830625][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  405.854153][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  405.861708][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  405.901844][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  405.954217][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  405.961679][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  406.073823][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  406.111061][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  406.399882][   T28] audit: type=1326 audit(1771553283.309:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9949 comm="syz.6.880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2a659c629 code=0x7ffc0000
[  406.701016][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  406.709233][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  406.718196][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  406.726521][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  406.733966][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  406.770135][   T28] audit: type=1326 audit(1771553283.309:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9949 comm="syz.6.880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2a659c629 code=0x7ffc0000
[  406.798386][   T28] audit: type=1326 audit(1771553283.319:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9949 comm="syz.6.880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd2a659c629 code=0x7ffc0000
[  406.815598][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  406.844262][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  406.862125][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  406.873491][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  406.881068][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  406.929183][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  406.934107][   T28] audit: type=1326 audit(1771553283.319:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9949 comm="syz.6.880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2a659c629 code=0x7ffc0000
[  406.947448][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  406.972930][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  406.988803][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  407.009774][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  407.048688][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  407.065514][   T28] audit: type=1326 audit(1771553283.319:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9949 comm="syz.6.880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2a659c629 code=0x7ffc0000
[  407.068397][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  407.147462][   T28] audit: type=1326 audit(1771553283.329:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9949 comm="syz.6.880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fd2a659c629 code=0x7ffc0000
[  407.155027][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  407.214148][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  407.254331][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  407.278327][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  407.286355][   T28] audit: type=1326 audit(1771553283.729:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9949 comm="syz.6.880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2a659c629 code=0x7ffc0000
[  407.355580][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  407.371342][   T28] audit: type=1326 audit(1771553283.729:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9949 comm="syz.6.880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2a659c629 code=0x7ffc0000
[  407.440951][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  407.464525][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  407.472083][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  408.513920][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  408.521812][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  408.529581][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  409.165658][ T9988] syzkaller0: entered promiscuous mode
[  409.198876][ T9988] syzkaller0: entered allmulticast mode
[  409.515029][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  409.522505][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  409.530183][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  409.542948][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  409.550525][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  409.559350][ T5986] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  409.593825][ T5986] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  409.958098][T10000] 9pnet_virtio: no channels available for device syz
[  409.962085][ T9992] fido_id[9992]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  410.451271][T10021] binder: 10012:10021 ioctl c0306201 0 returned -14
[  410.514707][T10022] 9pnet_virtio: no channels available for device syz
[  411.467265][T10040] loop5: detected capacity change from 0 to 128
[  413.064843][   T51] Bluetooth: hci0: ISO packet for unknown connection handle 0
[  413.298564][T10075] loop2: detected capacity change from 0 to 128
[  413.368162][ T5765] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  413.457142][T10073] nbd0: detected capacity change from 0 to 127
[  413.508457][   T51] block nbd0: Receive control failed (result -104)
[  413.688793][T10088] binder: 10081:10088 ioctl c0306201 0 returned -14
[  415.304273][T10110] tipc: Started in network mode
[  415.309545][T10110] tipc: Node identity , cluster identity 4711
[  415.319768][T10110] tipc: Failed to obtain node identity
[  415.335661][T10110] tipc: Enabling of bearer <eth:gre0> rejected, failed to enable media
[  415.599132][T10110] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  416.295633][T10129] loop6: detected capacity change from 0 to 512
[  416.368271][T10129] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  416.465039][T10129] EXT4-fs (loop6): 1 truncate cleaned up
[  416.485909][T10129] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  417.632823][ T9716] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  417.708461][T10143] loop5: detected capacity change from 0 to 128
[  419.778450][T10173] loop2: detected capacity change from 0 to 512
[  419.915360][T10173] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  420.008819][T10177] binder: 10168:10177 ioctl c0306201 0 returned -14
[  420.009125][T10173] EXT4-fs (loop2): 1 truncate cleaned up
[  420.029682][T10173] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  420.813474][T10183] vhci_hcd: Failed attach request for unsupported USB speed: super-speed-plus
[  420.827350][ T8486] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  421.903394][   T51] Bluetooth: hci3: ISO packet for unknown connection handle 0
[  422.084296][   T51] Bluetooth: hci1: ISO packet for unknown connection handle 0
[  422.789124][T10222] loop5: detected capacity change from 0 to 512
[  422.814525][T10222] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  422.868327][T10222] EXT4-fs (loop5): 1 truncate cleaned up
[  422.889060][T10222] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  424.052281][ T9587] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  424.376571][T10260] binder: 10251:10260 ioctl c0306201 0 returned -14
[  425.037721][T10273] loop4: detected capacity change from 0 to 512
[  425.097082][T10273] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  425.128203][T10273] EXT4-fs (loop4): 1 truncate cleaned up
[  425.151863][T10273] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  425.894241][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[  426.099315][ T9034] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  426.308006][   T51] Bluetooth: hci2: ISO packet for unknown connection handle 0
[  426.454191][T10297] netlink: 'syz.6.960': attribute type 12 has an invalid length.
[  426.790547][T10312] loop4: detected capacity change from 0 to 512
[  426.812940][T10312] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  426.863498][T10312] EXT4-fs (loop4): 1 truncate cleaned up
[  426.891652][T10312] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  427.851583][T10330] 9pnet_fd: Insufficient options for proto=fd
[  427.896818][ T9034] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  428.220143][   T51] Bluetooth: hci2: command tx timeout
[  428.904285][   T51] Bluetooth: hci0: ISO packet for unknown connection handle 0
[  429.137292][T10354] binder: 10347:10354 ioctl c0306201 0 returned -14
[  429.364194][  T968] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  429.563400][  T968] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  429.599427][  T968] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  429.628753][  T968] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  429.680114][  T968] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  429.712560][  T968] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  429.758766][  T968] usb 3-1: config 0 descriptor??
[  430.159328][T10373] loop4: detected capacity change from 0 to 512
[  430.217101][  T968] plantronics 0003:047F:FFFF.0003: unknown main item tag 0xd
[  430.224974][T10373] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  430.250491][  T968] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[  430.305756][  T968] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  430.388731][T10373] EXT4-fs (loop4): 1 truncate cleaned up
[  430.399348][T10373] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  430.540809][ T5974] usb 3-1: USB disconnect, device number 4
[  430.661509][T10378] fido_id[10378]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  431.356873][ T9034] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  431.589014][   T51] Bluetooth: hci1: Received unexpected HCI Event 0x00
[  431.621427][T10395] 9pnet_fd: Insufficient options for proto=fd
[  431.780950][   T51] Bluetooth: hci3: ISO packet for unknown connection handle 0
[  432.371188][T10420] loop4: detected capacity change from 0 to 512
[  432.394852][T10420] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  432.411505][T10420] EXT4-fs (loop4): 1 truncate cleaned up
[  432.427623][T10420] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  433.423934][T10432] 9pnet_fd: Insufficient options for proto=fd
[  433.432001][ T9034] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  433.560959][T10436] binder: 10427:10436 ioctl c0306201 0 returned -14
[  433.703902][   T51] Bluetooth: hci2: Received unexpected HCI Event 0x00
[  434.619571][T10445] netlink: 'syz.5.991': attribute type 10 has an invalid length.
[  434.736455][T10445] veth1_macvtap: left promiscuous mode
[  435.692344][T10468] loop2: detected capacity change from 0 to 512
[  435.718616][T10468] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  435.779923][T10468] EXT4-fs (loop2): 1 truncate cleaned up
[  435.798851][T10468] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  437.016179][ T8486] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  437.099191][   T51] Bluetooth: hci0: Received unexpected HCI Event 0x00
[  438.883468][   T51] Bluetooth: hci2: SCO packet for unknown connection handle 0
[  439.875850][   T51] Bluetooth: hci2: SCO packet for unknown connection handle 0
[  440.440779][T10562] netlink: 120 bytes leftover after parsing attributes in process `syz.4.1024'.
[  440.950194][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  440.957936][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  441.153493][   T51] Bluetooth: hci3: unexpected event for opcode 0x0000
[  441.777904][T10581] loop6: detected capacity change from 0 to 128
[  442.476554][T10581] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  442.508368][T10581] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  442.804579][   T51] Bluetooth: hci0: SCO packet for unknown connection handle 0
[  443.004430][T10599] 9pnet_virtio: no channels available for device syz
[  443.083514][   T51] Bluetooth: hci1: unexpected event for opcode 0x0000
[  444.123182][T10630] loop2: detected capacity change from 0 to 128
[  444.140235][   T55] block nbd0: Possible stuck request ffff888021ee8000: control (read@0,1024B). Runtime 30 seconds
[  444.145392][T10630] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  444.152797][   T55] block nbd0: Possible stuck request ffff888021ee8200: control (read@1024,3072B). Runtime 30 seconds
[  444.175966][T10630] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  444.819112][T10653] binder: 10647:10653 ioctl c0306201 0 returned -14
[  445.178032][   T51] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  445.188287][   T51] Bluetooth: hci3: Injecting HCI hardware error event
[  445.198401][   T51] Bluetooth: hci3: hardware error 0x00
[  447.094160][ T5088] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  447.104990][ T5088] Bluetooth: hci1: Injecting HCI hardware error event
[  447.118789][ T5773] Bluetooth: hci1: hardware error 0x00
[  447.336533][   T51] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  447.494295][T10684] kvm: pic: level sensitive irq not supported
[  447.508077][T10684] kvm: pic: non byte read
[  447.590728][T10689] overlayfs: overlapping lowerdir path
[  447.609577][   T51] Bluetooth: hci1: unexpected event for opcode 0x0005
[  448.535684][   T51] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  448.544777][   T51] Bluetooth: hci2: Injecting HCI hardware error event
[  448.555003][ T5088] Bluetooth: hci2: hardware error 0x00
[  448.980715][T10708] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1057'.
[  449.031285][T10716] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1062'.
[  449.130789][T10722] loop5: detected capacity change from 0 to 128
[  449.183435][ T5773] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  449.211178][T10722] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  449.222641][T10722] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  449.629137][T10729] loop6: detected capacity change from 0 to 128
[  450.544140][ T5788] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  450.909302][T10741] overlayfs: overlapping lowerdir path
[  451.014208][ T5088] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  452.163437][T10763] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1072'.
[  453.499787][T10774] loop2: detected capacity change from 0 to 128
[  453.850806][T10774] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  453.907511][T10777] loop4: detected capacity change from 0 to 128
[  453.925525][T10774] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  454.035668][T10782] overlayfs: overlapping lowerdir path
[  455.555429][T10798] overlayfs: missing 'lowerdir'
[  455.591026][ T6528] hid-generic 0000:0000:0000.0004: unknown main item tag 0x7
[  455.721633][ T6528] hid-generic 0000:0000:0000.0004: ignoring exceeding usage max
[  455.731139][ T6528] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  455.739168][ T6528] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  455.746999][ T6528] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  455.754803][ T6528] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  455.762244][ T6528] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  455.771271][ T6528] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  455.784050][ T6528] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  455.820402][ T6528] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  457.084223][   T28] audit: type=1326 audit(1771553332.969:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10803 comm="syz.2.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f728f79c629 code=0x7ffc0000
[  457.084537][ T6528] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  457.106586][    C0] vkms_vblank_simulate: vblank timer overrun
[  457.110092][T10810] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1081'.
[  457.115037][ T6528] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  457.138243][ T6528] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  457.145851][ T6528] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  457.153371][ T6528] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  457.161292][ T6528] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  457.168758][ T6528] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  457.176367][ T6528] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  457.183837][ T6528] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  457.193162][ T6528] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  457.202128][ T6528] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  457.209634][ T6528] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  457.217117][ T6528] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  457.242778][ T6528] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  457.260622][   T28] audit: type=1326 audit(1771553332.969:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10803 comm="syz.2.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f728f79c629 code=0x7ffc0000
[  457.411829][   T28] audit: type=1326 audit(1771553333.399:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10803 comm="syz.2.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f728f79c629 code=0x7ffc0000
[  457.539842][   T28] audit: type=1326 audit(1771553333.399:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10803 comm="syz.2.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f728f79c629 code=0x7ffc0000
[  458.441809][   T28] audit: type=1326 audit(1771553333.399:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10803 comm="syz.2.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f728f79c629 code=0x7ffc0000
[  458.456205][T10825] Bluetooth: hci0: invalid length 0, exp 2 for type 8
[  458.521025][T10815] fido_id[10815]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  458.574211][   T28] audit: type=1326 audit(1771553333.869:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10803 comm="syz.2.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f728f79c629 code=0x7ffc0000
[  458.583007][T10827] loop6: detected capacity change from 0 to 2048
[  458.671784][   T28] audit: type=1326 audit(1771553333.869:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10803 comm="syz.2.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f728f79c629 code=0x7ffc0000
[  458.694141][    C0] vkms_vblank_simulate: vblank timer overrun
[  458.747542][T10830] loop4: detected capacity change from 0 to 128
[  458.764405][   T28] audit: type=1326 audit(1771553333.869:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10803 comm="syz.2.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f728f79c629 code=0x7ffc0000
[  458.834720][T10836] overlayfs: failed to resolve './file1/file0': -2
[  458.836240][T10827]  loop6: p1 p2 p3
[  458.953444][ T5766] udevd[5766]: inotify_add_watch(7, /dev/loop6p3, 10) failed: No such file or directory
[  458.967998][ T5765] udevd[5765]: inotify_add_watch(7, /dev/loop6p1, 10) failed: No such file or directory
[  458.984469][T10837] loop6: detected capacity change from 0 to 512
[  459.034928][T10837] EXT4-fs (loop6): 1 truncate cleaned up
[  459.055419][T10840] loop5: detected capacity change from 0 to 128
[  459.090880][T10837] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  459.278657][T10837] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  459.307261][T10840] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  460.180803][T10840] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  460.584389][   T28] audit: type=1326 audit(1771553337.539:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10860 comm="syz.6.1095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2a659c629 code=0x7ffc0000
[  460.651084][   T28] audit: type=1326 audit(1771553337.539:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10860 comm="syz.6.1095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2a659c629 code=0x7ffc0000
[  460.809400][T10869] Bluetooth: hci0: invalid length 0, exp 2 for type 8
[  460.988781][T10872] overlayfs: failed to resolve './file1/file0': -2
[  461.083590][T10873] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1096'.
[  462.744809][T10886] loop2: detected capacity change from 0 to 128
[  462.901969][ T5765] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  463.204168][ T5973] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  463.397631][ T5973] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  463.424530][ T5973] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  463.458969][ T5973] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  463.477716][ T5973] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  463.506010][ T5973] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  463.549436][ T5973] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  463.570671][ T5973] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  463.589493][ T5973] usb 7-1: Product: syz
[  463.593848][ T5973] usb 7-1: Manufacturer: syz
[  463.661248][ T5973] cdc_wdm 7-1:1.0: skipping garbage
[  463.668684][ T5973] cdc_wdm 7-1:1.0: skipping garbage
[  463.710942][ T5973] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  463.828499][ T5973] cdc_wdm 7-1:1.0: Unknown control protocol
[  464.386475][ T2194] usb 7-1: USB disconnect, device number 3
[  464.629907][T10919] loop4: detected capacity change from 0 to 512
[  464.651602][T10918] Bluetooth: hci0: invalid length 0, exp 2 for type 8
[  464.659144][T10919] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  464.692364][T10919] EXT4-fs (loop4): 1 truncate cleaned up
[  464.705542][T10919] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  464.876130][T10928] loop2: detected capacity change from 0 to 128
[  465.035957][T10928] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  465.400946][T10928] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  465.737906][ T9034] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  466.037233][T10944] loop4: detected capacity change from 0 to 128
[  466.135061][ T5765] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  467.136187][T10968] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1115'.
[  467.506017][T10972] Bluetooth: hci0: unsupported parameter 255
[  467.506034][T10972] Bluetooth: hci0: unsupported parameter 255
[  468.572175][T10979] loop2: detected capacity change from 0 to 512
[  468.651830][T10979] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  468.793291][T10979] EXT4-fs (loop2): 1 truncate cleaned up
[  468.797321][T10979] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  470.005099][ T8486] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  470.214895][T10999] loop5: detected capacity change from 0 to 128
[  470.352756][T11004] loop4: detected capacity change from 0 to 128
[  470.402827][T11004] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  470.405937][T11004] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  471.058759][T11016] Bluetooth: hci0: unsupported parameter 255
[  471.099913][T11016] Bluetooth: hci0: unsupported parameter 255
[  471.500190][T11022] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1127'.
[  471.822774][   T28] kauditd_printk_skb: 7 callbacks suppressed
[  471.822810][   T28] audit: type=1326 audit(1771553348.759:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11018 comm="syz.5.1129" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f953cb9c629 code=0x0
[  474.742015][   T10] block nbd0: Possible stuck request ffff888021ee8000: control (read@0,1024B). Runtime 60 seconds
[  474.752864][   T10] block nbd0: Possible stuck request ffff888021ee8200: control (read@1024,3072B). Runtime 60 seconds
[  474.864180][T11034] loop2: detected capacity change from 0 to 512
[  474.964163][T11034] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  475.038854][T11034] EXT4-fs (loop2): 1 truncate cleaned up
[  475.050626][T11034] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  475.365919][T11053] loop6: detected capacity change from 0 to 128
[  475.940971][ T8486] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  476.264918][T11069] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1142'.
[  477.737939][T11088] loop5: detected capacity change from 0 to 128
[  477.993713][T11092] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  478.140056][T11092] overlayfs: failed to look up (tracing) for ino (-66)
[  480.015700][T11088] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  480.043448][T11088] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  480.366006][T11100] loop2: detected capacity change from 0 to 512
[  480.449868][T11100] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  480.522356][T11105] loop5: detected capacity change from 0 to 128
[  480.541809][T11100] EXT4-fs (loop2): 1 truncate cleaned up
[  480.565527][T11100] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  481.661258][ T8486] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  482.387664][T11137] loop5: detected capacity change from 0 to 128
[  482.584564][T11140] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  484.171049][T11137] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  484.183285][T11137] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  484.783455][T11158] loop2: detected capacity change from 0 to 512
[  484.792839][T11161] loop4: detected capacity change from 0 to 128
[  484.880302][T11158] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  484.929643][T11158] EXT4-fs (loop2): 1 truncate cleaned up
[  484.974437][T11158] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  485.805477][ T8486] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  486.178339][T11183] loop4: detected capacity change from 0 to 128
[  486.237329][T11183] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  486.258175][T11183] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  487.098762][T11187] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  487.365554][T11194] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1172'.
[  487.793188][T11206] loop5: detected capacity change from 0 to 512
[  487.829768][T11206] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  487.832279][T11209] loop6: detected capacity change from 0 to 128
[  487.885655][T11206] EXT4-fs (loop5): 1 truncate cleaned up
[  487.947617][T11206] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  487.983326][ T5766] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  489.661369][T11223] loop4: detected capacity change from 0 to 128
[  489.936266][T11223] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  489.966782][T11223] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  490.012750][ T9587] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  490.840652][T11235] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1182'.
[  493.533496][T11267] loop6: detected capacity change from 0 to 128
[  493.556213][T11267] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  493.580469][T11267] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  494.331293][T11268] loop4: detected capacity change from 0 to 128
[  494.750240][T11280] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1193'.
[  495.128236][T11295] 9pnet_fd: Insufficient options for proto=fd
[  497.685919][T11314] loop6: detected capacity change from 0 to 128
[  497.808071][T11314] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  497.837856][T11314] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  499.388900][T11332] loop6: detected capacity change from 0 to 128
[  499.578773][ T5088] Bluetooth: hci0: command 0x0406 tx timeout
[  499.625946][ T5765] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  499.706564][ T5974] usb 6-1: new full-speed USB device number 3 using dummy_hcd
[  499.920199][ T5974] usb 6-1: config 0 has an invalid interface number: 133 but max is 0
[  499.930444][ T5974] usb 6-1: config 0 has no interface number 0
[  499.944101][ T5974] usb 6-1: config 0 interface 133 altsetting 0 endpoint 0x82 has invalid maxpacket 288, setting to 64
[  500.167580][ T5974] usb 6-1: New USB device found, idVendor=06cd, idProduct=0121, bcdDevice=dd.3d
[  500.202731][ T5974] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  500.223201][ T5974] usb 6-1: Product: syz
[  500.228632][ T5974] usb 6-1: Manufacturer: syz
[  500.233441][ T5974] usb 6-1: SerialNumber: syz
[  500.243185][ T5974] usb 6-1: config 0 descriptor??
[  500.252800][T11324] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  501.818022][T11382] mkiss: ax0: crc mode is auto.
[  502.098298][T11389] loop4: detected capacity change from 0 to 128
[  502.379876][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  502.386572][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  502.400850][T11399] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  502.642662][ T5974] keyspan 6-1:0.133: Keyspan 1 port adapter converter detected
[  502.673586][ T5974] keyspan 6-1:0.133: found no endpoint descriptor for endpoint 81
[  502.717018][ T5974] keyspan 6-1:0.133: found no endpoint descriptor for endpoint 1
[  502.752787][ T5974] keyspan 6-1:0.133: found no endpoint descriptor for endpoint 2
[  502.787215][ T5974] usb 6-1: Keyspan 1 port adapter converter now attached to ttyUSB0
[  502.847794][ T5974] usb 6-1: USB disconnect, device number 3
[  502.910523][ T5974] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0
[  502.991279][ T5974] keyspan 6-1:0.133: device disconnected
[  503.161120][ T5773] Bluetooth: hci0: connection err: -111
[  503.452649][T11421] comedi comedi2: fl512: I/O port conflict (0x8,16)
[  503.870780][T11431] loop2: detected capacity change from 0 to 128
[  503.966819][ T5765] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  504.956442][   T10] block nbd0: Possible stuck request ffff888021ee8000: control (read@0,1024B). Runtime 90 seconds
[  504.968077][   T10] block nbd0: Possible stuck request ffff888021ee8200: control (read@1024,3072B). Runtime 90 seconds
[  506.077220][T11472] loop5: detected capacity change from 0 to 128
[  506.146744][ T5765] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  508.151192][T11514] loop5: detected capacity change from 0 to 128
[  508.260226][ T5765] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  508.821104][ T5773] Bluetooth: hci0: connection err: -111
[  509.270719][T11537] tipc: Started in network mode
[  509.277988][T11537] tipc: Node identity 1eacf615be49, cluster identity 4711
[  509.297960][T11537] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  509.333843][T11537] syzkaller0: entered promiscuous mode
[  509.356888][T11537] syzkaller0: entered allmulticast mode
[  509.486640][T11537] tipc: Resetting bearer <eth:syzkaller0>
[  509.529830][T11536] tipc: Resetting bearer <eth:syzkaller0>
[  509.620977][T11536] tipc: Disabling bearer <eth:syzkaller0>
[  509.763603][T11554] loop4: detected capacity change from 0 to 128
[  509.866153][ T5765] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  511.012799][T11594] loop4: detected capacity change from 0 to 128
[  513.123209][T11614] loop5: detected capacity change from 0 to 128
[  513.413756][T11614] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  513.488157][T11614] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  516.012515][T11661] loop2: detected capacity change from 0 to 128
[  516.051177][T11661] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  516.074547][T11661] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  516.860024][T11664] loop4: detected capacity change from 0 to 128
[  520.300390][T11704] loop2: detected capacity change from 0 to 128
[  520.414397][T11704] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  520.454347][T11704] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  521.604784][T11725] loop2: detected capacity change from 0 to 128
[  521.788189][T11732] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1307'.
[  523.638873][T11750] loop5: detected capacity change from 0 to 128
[  525.544277][T11750] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  525.858431][T11761] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  526.128828][T11763] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  526.137255][T11763] overlayfs: overlapping lowerdir path
[  526.548781][T11750] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  526.754488][ T5143] udevd[5143]: worker [7041] /devices/virtual/block/nbd0 is taking a long time
[  527.658973][T11772] overlayfs: failed to resolve './file1/file0': -2
[  528.609419][T11780] autofs4:pid:11780:autofs_fill_super: called with bogus options
[  530.031233][T11808] overlayfs: failed to resolve './file1/file0': -2
[  531.090292][T11818] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  531.099065][T11818] overlayfs: overlapping lowerdir path
[  532.647930][T11838] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  532.692342][T11840] syzkaller0: entered promiscuous mode
[  532.754385][T11840] syzkaller0: entered allmulticast mode
[  532.895727][T11831] tipc: Resetting bearer <eth:syzkaller0>
[  532.976807][T11831] tipc: Disabling bearer <eth:syzkaller0>
[  533.224828][   T28] audit: type=1326 audit(1771553410.179:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11859 comm="syz.4.1335" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8c4df9c629 code=0x0
[  533.464227][ T5973] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  533.556141][T11875] loop2: detected capacity change from 0 to 128
[  534.414957][T11875] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  534.656904][T11875] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  535.523365][   T10] block nbd0: Possible stuck request ffff888021ee8000: control (read@0,1024B). Runtime 120 seconds
[  535.535028][   T10] block nbd0: Possible stuck request ffff888021ee8200: control (read@1024,3072B). Runtime 120 seconds
[  535.644060][ T5973] usb 7-1: Using ep0 maxpacket: 32
[  535.651588][ T5973] usb 7-1: config 0 has no interfaces?
[  535.661735][ T5973] usb 7-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[  535.678079][ T5973] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  535.686656][ T5973] usb 7-1: Product: syz
[  535.690882][ T5973] usb 7-1: Manufacturer: syz
[  535.695629][ T5973] usb 7-1: SerialNumber: syz
[  535.702955][ T5973] usb 7-1: config 0 descriptor??
[  535.811008][T11904] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1341'.
[  535.981893][ T5973] usb 7-1: USB disconnect, device number 4
[  536.445063][T11917] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  536.453548][T11917] overlayfs: overlapping lowerdir path
[  537.495181][T11925] tipc: Started in network mode
[  537.519689][T11925] tipc: Node identity e2b93e5d9a9a, cluster identity 4711
[  537.534424][T11925] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  537.786244][T11925] syzkaller0: entered promiscuous mode
[  537.805442][   T28] audit: type=1326 audit(1771553414.759:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11927 comm="syz.2.1346" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f728f79c629 code=0x0
[  537.848352][T11925] syzkaller0: entered allmulticast mode
[  537.925330][T11925] tipc: Resetting bearer <eth:syzkaller0>
[  537.976423][T11924] tipc: Resetting bearer <eth:syzkaller0>
[  538.052205][T11924] tipc: Disabling bearer <eth:syzkaller0>
[  538.455508][T11950] netlink: 44 bytes leftover after parsing attributes in process `syz.5.1350'.
[  538.728888][T11960] loop2: detected capacity change from 0 to 128
[  538.793550][T11960] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  538.872552][T11960] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  541.165435][T11981] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  541.173686][T11981] overlayfs: overlapping lowerdir path
[  542.494860][T11990] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  542.532702][T11990] syzkaller0: entered promiscuous mode
[  542.540423][T11990] syzkaller0: entered allmulticast mode
[  542.582101][T11990] tipc: Resetting bearer <eth:syzkaller0>
[  542.605871][T11988] tipc: Resetting bearer <eth:syzkaller0>
[  542.847810][T11988] tipc: Disabling bearer <eth:syzkaller0>
[  542.957937][   T28] audit: type=1326 audit(1771553419.919:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11991 comm="syz.4.1359" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8c4df9c629 code=0x0
[  544.225238][T12013] netlink: 44 bytes leftover after parsing attributes in process `syz.6.1362'.
[  546.525543][   T23] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  548.211160][   T23] usb 6-1: device descriptor read/all, error -71
[  548.351579][T12030] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  548.360422][T12030] overlayfs: overlapping lowerdir path
[  549.452842][T12042] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  550.085214][T12049] loop2: detected capacity change from 0 to 128
[  550.157692][T12049] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  550.173815][T12049] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  551.176039][T12065] netlink: 44 bytes leftover after parsing attributes in process `syz.6.1373'.
[  551.469595][T12077] overlayfs: failed to resolve './file1/file0': -2
[  551.584069][ T5973] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  551.784339][ T5973] usb 3-1: Using ep0 maxpacket: 8
[  551.796362][ T5973] usb 3-1: config index 0 descriptor too short (expected 301, got 45)
[  551.826111][ T5973] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  551.875806][ T5973] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  551.920247][ T5973] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  551.964457][ T5973] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  552.002612][T12088] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1377'.
[  552.135751][ T5973] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  552.320971][ T5973] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  552.766283][ T5973] usb 3-1: GET_CAPABILITIES returned 0
[  552.776379][ T5973] usbtmc 3-1:16.0: can't read capabilities
[  553.082785][  T787] usb 3-1: USB disconnect, device number 5
[  553.202263][T12094] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  553.210832][T12094] overlayfs: overlapping lowerdir path
[  554.583683][T12101] loop2: detected capacity change from 0 to 128
[  554.718477][T12101] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  554.758668][T12101] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  555.492281][T12117] overlayfs: failed to resolve './file1/file0': -2
[  555.756032][T12116] netlink: 44 bytes leftover after parsing attributes in process `syz.5.1384'.
[  555.874471][T12127] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1386'.
[  557.208158][T12145] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  557.216966][T12145] overlayfs: overlapping lowerdir path
[  558.996311][T12157] loop6: detected capacity change from 0 to 128
[  559.064367][T12157] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  559.079225][T12157] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  559.593528][   T28] audit: type=1326 audit(1771553436.549:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12158 comm="syz.5.1391" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f953cb9c629 code=0x0
[  559.923299][T12171] overlayfs: failed to resolve './file1/file0': -2
[  560.583252][T12184] 0: reclassify loop, rule prio 0, protocol 700
[  561.984840][T12203] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  561.993062][T12203] overlayfs: overlapping lowerdir path
[  563.640663][T12216] loop5: detected capacity change from 0 to 128
[  563.836193][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  563.842615][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  563.872982][T12216] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  563.950444][T12216] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  564.433850][T12221] overlayfs: overlapping lowerdir path
[  566.425294][T12229] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  566.528121][   T28] audit: type=1326 audit(1771553441.659:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12217 comm="syz.6.1405" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd2a659c629 code=0x0
[  566.537791][   T10] block nbd0: Possible stuck request ffff888021ee8000: control (read@0,1024B). Runtime 150 seconds
[  567.534904][   T10] block nbd0: Possible stuck request ffff888021ee8200: control (read@1024,3072B). Runtime 150 seconds
[  568.142627][T12254] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  568.265034][T12254] overlayfs: failed to look up (tracing) for ino (-66)
[  569.979597][T12262] loop2: detected capacity change from 0 to 128
[  570.006541][T12262] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  570.037087][T12262] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  570.663023][T12272] sd 0:0:1:0: PR command failed: 1026
[  570.705161][T12272] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  570.760541][T12272] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  572.696346][T12289] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  576.234936][T12316] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  576.243638][T12316] overlayfs: overlapping lowerdir path
[  577.635573][T12326] loop6: detected capacity change from 0 to 128
[  577.794137][  T787] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  578.341368][T12326] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  578.377017][T12326] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  578.587564][  T787] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  578.622566][  T787] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  578.664232][  T787] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  578.691430][  T787] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  578.703687][T12335] netlink: 'syz.6.1429': attribute type 3 has an invalid length.
[  578.713255][  T787] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  578.760154][  T787] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  578.789904][  T787] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  578.810640][  T787] usb 6-1: Product: syz
[  578.830941][  T787] usb 6-1: Manufacturer: syz
[  578.882768][  T787] cdc_wdm 6-1:1.0: skipping garbage
[  578.904136][  T787] cdc_wdm 6-1:1.0: skipping garbage
[  578.923354][  T787] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  578.945870][  T787] cdc_wdm 6-1:1.0: Unknown control protocol
[  579.146095][    C1] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  579.348747][    C1] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  579.355439][    C1] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  579.362173][    C1] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  579.368808][    C1] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  579.375455][    C1] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  579.382094][    C1] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  579.388443][    C1] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  579.395070][    C1] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  579.404124][    C1] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  579.410759][    C1] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  579.418192][    C1] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  579.424827][    C1] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  579.431226][    C1] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  579.437861][    C1] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  579.444243][    C1] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  579.450872][    C1] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  579.457612][    C1] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  579.464340][    C1] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  579.470456][T12346] netlink: 44 bytes leftover after parsing attributes in process `syz.6.1432'.
[  579.471017][    C1] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  579.486720][   T23] usb 6-1: USB disconnect, device number 6
[  579.492748][    C1] cdc_wdm 6-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  580.574033][   T28] audit: type=1326 audit(1771553457.509:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12357 comm="syz.5.1434" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f953cb9c629 code=0x0
[  581.819566][T12366] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  582.172183][T12366] syzkaller0: entered promiscuous mode
[  582.285179][T12366] syzkaller0: entered allmulticast mode
[  582.718096][T12365] tipc: Resetting bearer <eth:syzkaller0>
[  582.798933][T12365] tipc: Disabling bearer <eth:syzkaller0>
[  582.982174][T12376] loop5: detected capacity change from 0 to 128
[  582.996821][T12376] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  583.016057][T12376] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  584.814930][T12393] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  584.823312][T12393] overlayfs: overlapping lowerdir path
[  586.043499][T12397] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1441'.
[  587.544014][   T28] audit: type=1326 audit(1771553464.099:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12407 comm="syz.2.1443" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f728f79c629 code=0x0
[  589.436363][T12434] loop6: detected capacity change from 0 to 128
[  589.462061][T12434] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  589.482753][T12434] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  590.284895][T12437] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  590.328678][T12437] syzkaller0: entered promiscuous mode
[  590.347455][T12437] syzkaller0: entered allmulticast mode
[  590.543074][T12436] tipc: Resetting bearer <eth:syzkaller0>
[  590.733769][T12436] tipc: Disabling bearer <eth:syzkaller0>
[  590.763362][T12442] netlink: 44 bytes leftover after parsing attributes in process `syz.6.1450'.
[  591.696718][T12463] binder: 12459:12463 ioctl c0306201 0 returned -14
[  591.699717][ T5773] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  591.722795][ T5773] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  591.735533][ T5773] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  591.743601][ T5773] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  591.753365][ T5773] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  591.763389][ T5773] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  592.769251][T12460] chnl_net:caif_netlink_parms(): no params data found
[  593.093280][T12496] loop2: detected capacity change from 0 to 128
[  593.116312][T12496] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  593.135397][T12496] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  593.822642][ T5088] Bluetooth: hci3: command tx timeout
[  594.045788][T12460] bridge0: port 1(bridge_slave_0) entered blocking state
[  594.085695][T12460] bridge0: port 1(bridge_slave_0) entered disabled state
[  594.093040][T12460] bridge_slave_0: entered allmulticast mode
[  594.130870][T12460] bridge_slave_0: entered promiscuous mode
[  594.149113][T12460] bridge0: port 2(bridge_slave_1) entered blocking state
[  594.160193][T12460] bridge0: port 2(bridge_slave_1) entered disabled state
[  594.170594][T12460] bridge_slave_1: entered allmulticast mode
[  594.183725][T12460] bridge_slave_1: entered promiscuous mode
[  594.288655][T12506] tipc: Started in network mode
[  594.293597][T12506] tipc: Node identity a62c14e33a57, cluster identity 4711
[  594.314184][T12506] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  594.326082][T12460] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  594.342181][T12460] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  594.368410][T12511] syzkaller0: entered promiscuous mode
[  594.374356][T12511] syzkaller0: entered allmulticast mode
[  594.403670][T12460] team0: Port device team_slave_0 added
[  594.485495][T12460] team0: Port device team_slave_1 added
[  594.548005][T12505] tipc: Resetting bearer <eth:syzkaller0>
[  594.658566][T12505] tipc: Disabling bearer <eth:syzkaller0>
[  594.709635][T12460] batman_adv: batadv0: Adding interface: batadv_slave_0
[  594.747279][T12460] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  594.819185][T12460] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  594.856083][T12460] batman_adv: batadv0: Adding interface: batadv_slave_1
[  594.873356][T12460] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  594.952101][T12460] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  595.152005][T12520] netlink: 44 bytes leftover after parsing attributes in process `syz.5.1460'.
[  595.198002][T12460] hsr_slave_0: entered promiscuous mode
[  595.235340][T12460] hsr_slave_1: entered promiscuous mode
[  595.484308][T12533] binder: 12528:12533 ioctl c0306201 0 returned -14
[  595.904165][ T5088] Bluetooth: hci3: command tx timeout
[  596.425513][T12558] loop6: detected capacity change from 0 to 128
[  596.435048][T12558] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  596.469167][T12558] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  597.321918][T12460] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  597.436536][T12460] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  597.515610][T12460] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  597.749479][T12460] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  597.754304][   T55] block nbd0: Possible stuck request ffff888021ee8000: control (read@0,1024B). Runtime 180 seconds
[  597.766995][   T55] block nbd0: Possible stuck request ffff888021ee8200: control (read@1024,3072B). Runtime 180 seconds
[  598.174114][ T5088] Bluetooth: hci3: command tx timeout
[  599.140109][T12460] 8021q: adding VLAN 0 to HW filter on device bond0
[  599.278018][T12460] 8021q: adding VLAN 0 to HW filter on device team0
[  599.642637][ T2921] bridge0: port 1(bridge_slave_0) entered blocking state
[  599.649933][ T2921] bridge0: port 1(bridge_slave_0) entered forwarding state
[  599.932621][ T3527] bridge0: port 2(bridge_slave_1) entered blocking state
[  599.939980][ T3527] bridge0: port 2(bridge_slave_1) entered forwarding state
[  600.221965][ T5088] Bluetooth: hci3: command tx timeout
[  600.570935][T12603] binder: 12596:12603 ioctl c0306201 0 returned -14
[  603.184739][T12633] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  603.192967][T12633] overlayfs: overlapping lowerdir path
[  604.597338][T12460] 8021q: adding VLAN 0 to HW filter on device batadv0
[  605.062814][T12644] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1482'.
[  605.075846][T12460] veth0_vlan: entered promiscuous mode
[  605.118697][T12460] veth1_vlan: entered promiscuous mode
[  605.305085][T12460] veth0_macvtap: entered promiscuous mode
[  605.351076][T12460] veth1_macvtap: entered promiscuous mode
[  605.434957][T12653] binder: 12650:12653 ioctl c0306201 0 returned -14
[  605.530285][T12460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  606.236083][T12460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  606.246665][T12460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  606.282740][T12460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  606.323259][T12460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  606.366195][T12460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  606.381545][T12460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  606.392461][T12460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  606.404911][T12460] batman_adv: batadv0: Interface activated: batadv_slave_0
[  606.457498][T12460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  606.492690][T12460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  606.509134][T12460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  606.520155][T12460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  606.531925][T12460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  606.547532][T12460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  606.559236][T12460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  606.644325][T12460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  606.705289][T12460] batman_adv: batadv0: Interface activated: batadv_slave_1
[  606.832141][T12460] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  606.876669][T12460] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  606.959333][T12460] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  607.020214][T12460] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  607.412740][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  607.461668][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  607.625062][ T2953] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  607.676197][ T2953] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  608.334607][T12679] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  608.682504][T12679] overlayfs: failed to look up (tracing) for ino (-66)
[  610.136501][T12691] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1491'.
[  611.591516][T12709] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  611.741464][T12707] binder: 12698:12707 ioctl c0306201 0 returned -14
[  613.216396][T12724] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  613.329142][T12724] overlayfs: failed to look up (tracing) for ino (-66)
[  614.446297][T12729] netlink: 52 bytes leftover after parsing attributes in process `syz.6.1498'.
[  615.587632][T12746] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1502'.
[  615.856174][T12756] binder: 12754:12756 ioctl c0306201 0 returned -14
[  617.575367][T12785] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  617.583635][T12785] overlayfs: overlapping lowerdir path
[  618.689976][T12791] syzkaller0: entered promiscuous mode
[  618.732516][T12791] syzkaller0: entered allmulticast mode
[  619.117190][T12800] netlink: 44 bytes leftover after parsing attributes in process `syz.6.1512'.
[  619.330213][T12797] mmap: syz.2.1510 (12797) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  619.626919][T12815] binder: 12806:12815 ioctl c0306201 0 returned -14
[  621.345412][T12828] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  621.694667][T12828] overlayfs: failed to look up (tracing) for ino (-66)
[  624.264633][T12843] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  625.274624][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  625.282276][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  625.535616][T12849] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1523'.
[  625.880832][T12858] vhci_hcd: Failed attach request for unsupported USB speed: super-speed-plus
[  627.524706][T12887] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  627.823850][   T55] block nbd0: Possible stuck request ffff888021ee8000: control (read@0,1024B). Runtime 210 seconds
[  627.835069][   T55] block nbd0: Possible stuck request ffff888021ee8200: control (read@1024,3072B). Runtime 210 seconds
[  628.934254][  T968] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  629.022469][T12908] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1533'.
[  629.135212][  T968] usb 7-1: device descriptor read/64, error -71
[  629.453976][  T968] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  629.504708][T12917] syzkaller0: entered promiscuous mode
[  629.510309][T12917] syzkaller0: entered allmulticast mode
[  629.548995][T12920] binder: 12914:12920 ioctl c0306201 0 returned -14
[  629.644681][  T968] usb 7-1: device descriptor read/64, error -71
[  629.780632][  T968] usb usb7-port1: attempt power cycle
[  630.244687][  T968] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  630.300309][  T968] usb 7-1: device descriptor read/8, error -71
[  630.686806][  T968] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  630.849221][  T968] usb 7-1: device descriptor read/8, error -71
[  631.080652][  T968] usb usb7-port1: unable to enumerate USB device
[  636.095354][ T5143] udevd[5143]: worker [7041] /devices/virtual/block/nbd0 timeout; kill it
[  636.111207][ T5143] udevd[5143]: seq 18384 '/devices/virtual/block/nbd0' killed
[  639.559757][T12972] netlink: 44 bytes leftover after parsing attributes in process `syz.6.1543'.
[  639.966940][T13008] binder: 13000:13008 ioctl c0306201 0 returned -14
[  640.004151][ T9091] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  640.772981][ T9091] usb 7-1: device descriptor read/64, error -71
[  641.064619][ T9091] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  641.234202][ T9091] usb 7-1: device descriptor read/64, error -71
[  641.360248][ T9091] usb usb7-port1: attempt power cycle
[  641.827832][ T9091] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  641.864711][ T9091] usb 7-1: device descriptor read/8, error -71
[  642.145230][ T9091] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  642.193790][ T9091] usb 7-1: device descriptor read/8, error -71
[  642.324329][ T9091] usb usb7-port1: unable to enumerate USB device
[  644.108226][   T28] audit: type=1326 audit(1771553521.049:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13057 comm="syz.5.1562" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f953cb9c629 code=0x0
[  644.992939][T13065] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1563'.
[  645.166518][T13069] loop5: detected capacity change from 0 to 128
[  645.191884][T13069] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  645.205731][T13069] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  645.586831][   T27] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  645.749940][   T27] usb 7-1: device descriptor read/64, error -71
[  646.054074][   T27] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  646.244118][   T27] usb 7-1: device descriptor read/64, error -71
[  646.385849][   T27] usb usb7-port1: attempt power cycle
[  646.907248][   T27] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  646.945314][   T27] usb 7-1: device descriptor read/8, error -71
[  647.223983][   T27] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  647.267681][   T27] usb 7-1: device descriptor read/8, error -71
[  647.403261][   T27] usb usb7-port1: unable to enumerate USB device
[  650.600555][T13101] loop6: detected capacity change from 0 to 128
[  650.608465][T13101] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  650.638078][T13101] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  652.514023][ T5818] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  653.564305][ T5818] usb 3-1: Using ep0 maxpacket: 8
[  653.571952][ T5818] usb 3-1: config index 0 descriptor too short (expected 301, got 45)
[  653.603419][ T5818] usb 3-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  653.654305][ T5818] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  653.713016][ T5818] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  653.914980][T13139] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1582'.
[  654.305446][T13148] loop0: detected capacity change from 0 to 128
[  654.320845][T13148] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  654.344446][T13148] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  654.622582][T13157] binder: BINDER_SET_CONTEXT_MGR already set
[  654.633467][T13157] binder: 13152:13157 ioctl 4018620d 200000000040 returned -16
[  655.383048][ T5818] usb 3-1: USB disconnect, device number 6
[  655.551152][T13167] input: syz1 as /devices/virtual/input/input8
[  655.813597][T13157] syz.6.1586 (13157): drop_caches: 2
[  657.895357][   T55] block nbd0: Possible stuck request ffff888021ee8000: control (read@0,1024B). Runtime 240 seconds
[  657.907803][   T55] block nbd0: Possible stuck request ffff888021ee8200: control (read@1024,3072B). Runtime 240 seconds
[  659.476874][T13203] loop2: detected capacity change from 0 to 128
[  659.485744][T13203] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  659.497721][T13203] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  660.694402][ T2194] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  660.909775][ T2194] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  660.946166][ T2194] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  660.983646][ T2194] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  661.016862][ T2194] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  661.062699][T13219] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  661.086582][ T2194] usb 3-1: Quirk or no altest; falling back to MIDI 1.0
[  661.540569][ T2194] usb 3-1: USB disconnect, device number 7
[  662.189936][T13261] syzkaller0: entered promiscuous mode
[  662.196585][T13261] syzkaller0: entered allmulticast mode
[  662.214497][T13263] loop0: detected capacity change from 0 to 128
[  662.228454][T13263] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  662.250130][T13263] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  662.745882][T13270] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  663.297092][T13270] tipc: Resetting bearer <eth:syzkaller0>
[  663.553460][T13269] tipc: Disabling bearer <eth:syzkaller0>
[  664.823834][T13300] syzkaller0: entered promiscuous mode
[  664.840461][T13300] syzkaller0: entered allmulticast mode
[  665.156957][T13313] loop0: detected capacity change from 0 to 128
[  665.174213][T13313] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  665.186982][T13313] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  665.514081][ T9091] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  665.738948][ T9091] usb 7-1: Using ep0 maxpacket: 8
[  665.770608][ T9091] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  665.802248][ T9091] usb 7-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  665.841488][ T9091] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  665.934296][ T9091] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  668.505078][ T5818] usb 7-1: USB disconnect, device number 17
[  669.189205][T13372] loop2: detected capacity change from 0 to 128
[  669.224557][T13372] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  669.298069][T13372] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  672.504156][ T5819] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  672.562217][T13414] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  672.943424][ T5819] usb 7-1: Using ep0 maxpacket: 8
[  672.950867][ T5819] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  672.963954][ T5819] usb 7-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  672.974701][ T5819] usb 7-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  673.485154][ T5819] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  673.494647][ T5819] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  673.548134][ T5819] usbtmc 7-1:16.0: bulk endpoints not found
[  675.247193][T13464] loop2: detected capacity change from 0 to 128
[  675.304935][T13464] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  675.791567][T13464] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  676.318048][ T5819] usb 7-1: USB disconnect, device number 18
[  677.472939][T13507] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  677.489837][T13507] overlayfs: failed to look up (tracing) for ino (-66)
[  677.701059][T13513] fuse: Bad value for 'fd'
[  677.885163][T13518] loop0: detected capacity change from 0 to 128
[  678.733261][T13518] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  678.781534][T13518] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  679.574936][ T5818] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  679.794014][ T5818] usb 3-1: Using ep0 maxpacket: 8
[  679.801570][ T5818] usb 3-1: config index 0 descriptor too short (expected 301, got 45)
[  679.828600][ T5818] usb 3-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  679.863484][ T5818] usb 3-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  679.905190][ T5818] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  679.936328][ T5818] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  679.971690][ T5818] usbtmc 3-1:16.0: bulk endpoints not found
[  680.511776][T13562] fuse: Bad value for 'fd'
[  680.906437][T13575] loop5: detected capacity change from 0 to 128
[  680.949390][T13575] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  680.969633][T13575] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  682.289971][   T27] usb 3-1: USB disconnect, device number 8
[  682.554613][T13602] fuse: Bad value for 'fd'
[  682.737535][T13606] overlayfs: failed to get inode (-116)
[  682.760784][T13606] overlayfs: failed to get inode (-116)
[  683.017089][   T27] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  683.229191][   T27] usb 1-1: Using ep0 maxpacket: 8
[  683.245305][   T27] usb 1-1: config index 0 descriptor too short (expected 301, got 45)
[  683.305327][   T27] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  683.352669][   T27] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  683.362714][   T27] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  683.372934][   T27] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  683.396084][   T27] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  683.413465][   T27] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  683.651803][   T27] usb 1-1: usb_control_msg returned -32
[  683.692524][   T27] usbtmc 1-1:16.0: can't read capabilities
[  684.602435][ T5974] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[  684.834059][ T5974] usb 7-1: Using ep0 maxpacket: 8
[  684.860405][ T5974] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  684.899672][ T5974] usb 7-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  684.933707][ T5974] usb 7-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  684.990092][ T5974] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  685.024893][ T5974] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  685.054411][ T5974] usbtmc 7-1:16.0: bulk endpoints not found
[  685.374022][   T27] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  685.534193][   T27] usb 6-1: device descriptor read/64, error -71
[  685.767062][ T5974] usb 1-1: USB disconnect, device number 3
[  685.834970][   T27] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  686.023971][   T27] usb 6-1: device descriptor read/64, error -71
[  686.165790][   T27] usb usb6-port1: attempt power cycle
[  686.603989][   T27] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  686.666088][   T27] usb 6-1: device descriptor read/8, error -71
[  686.716532][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  686.733786][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  686.984050][   T27] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  686.996619][T13703] 9pnet_virtio: no channels available for device syz
[  687.034671][   T27] usb 6-1: device descriptor read/8, error -71
[  687.174432][   T27] usb usb6-port1: unable to enumerate USB device
[  687.259152][ T5818] usb 7-1: USB disconnect, device number 19
[  687.444003][ T2194] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  688.237663][   T55] block nbd0: Possible stuck request ffff888021ee8000: control (read@0,1024B). Runtime 270 seconds
[  688.248547][   T55] block nbd0: Possible stuck request ffff888021ee8200: control (read@1024,3072B). Runtime 270 seconds
[  688.403995][ T2194] usb 3-1: device descriptor read/64, error -71
[  688.706337][T13723] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1695'.
[  688.716714][T13723] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1695'.
[  688.753979][ T2194] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  688.910443][T13729] netlink: 44 bytes leftover after parsing attributes in process `syz.6.1696'.
[  688.920263][ T2194] usb 3-1: device descriptor read/64, error -71
[  689.053360][ T2194] usb usb3-port1: attempt power cycle
[  689.474142][ T2194] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  689.578334][ T2194] usb 3-1: device descriptor read/8, error -71
[  689.890437][ T2194] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  690.116918][ T2194] usb 3-1: device descriptor read/8, error -71
[  690.236041][ T2194] usb usb3-port1: unable to enumerate USB device
[  692.083409][T13778] netlink: 44 bytes leftover after parsing attributes in process `syz.6.1707'.
[  692.332826][T13786] syzkaller0: entered promiscuous mode
[  692.338943][T13786] syzkaller0: entered allmulticast mode
[  692.421709][T13786] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1710'.
[  693.754248][ T9091] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  694.004209][ T9091] usb 3-1: device descriptor read/64, error -71
[  694.207542][T13803] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1714'.
[  694.308561][T13803] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1714'.
[  694.598886][ T9091] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  694.851590][ T9091] usb 3-1: device descriptor read/64, error -71
[  695.065235][ T9091] usb usb3-port1: attempt power cycle
[  695.617921][ T9091] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  695.889556][ T9091] usb 3-1: device descriptor read/8, error -71
[  696.235580][ T9091] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  696.433204][ T9091] usb 3-1: device descriptor read/8, error -71
[  696.696557][ T9091] usb usb3-port1: unable to enumerate USB device
[  696.919276][T13823] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1718'.
[  697.905218][  T968] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  698.306538][  T968] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  698.534781][  T968] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  698.544944][  T968] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  698.554793][  T968] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  698.834712][T13829] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  699.190204][  T968] usb 3-1: Quirk or no altest; falling back to MIDI 1.0
[  701.238522][ T9091] usb 3-1: USB disconnect, device number 17
[  702.534088][   T27] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  702.721641][   T27] usb 6-1: device descriptor read/64, error -71
[  703.038395][T13910] netlink: 44 bytes leftover after parsing attributes in process `syz.6.1731'.
[  703.204622][   T27] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  703.324088][T13919] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  703.356713][   T27] usb 6-1: device descriptor read/64, error -71
[  703.383521][T13921] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1734'.
[  703.494346][   T27] usb usb6-port1: attempt power cycle
[  703.995645][   T27] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  704.062558][   T27] usb 6-1: device descriptor read/8, error -71
[  704.394385][   T27] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  704.494869][   T27] usb 6-1: device descriptor read/8, error -71
[  704.619408][   T27] usb usb6-port1: unable to enumerate USB device
[  705.010329][T13967] netlink: 44 bytes leftover after parsing attributes in process `syz.6.1742'.
[  705.331470][T13977] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1745'.
[  705.590102][T13983] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  707.934165][   T28] audit: type=1326 audit(1771553584.329:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13989 comm="syz.6.1748" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd2a659c629 code=0x0
[  709.568595][T14025] netlink: 44 bytes leftover after parsing attributes in process `syz.5.1754'.
[  709.909594][T14038] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1757'.
[  709.954150][   T27] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  710.044526][  T968] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  710.114062][   T27] usb 1-1: device descriptor read/64, error -71
[  710.416628][  T968] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  710.432701][  T968] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  710.442967][  T968] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  710.458360][  T968] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  710.477608][  T968] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  710.517343][   T28] audit: type=1326 audit(1771553587.479:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14049 comm="syz.5.1759" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f953cb9c629 code=0x0
[  710.539022][    C1] vkms_vblank_simulate: vblank timer overrun
[  710.546045][   T27] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  710.748368][  T968] usb 7-1: config 0 descriptor??
[  710.784071][   T27] usb 1-1: device descriptor read/64, error -71
[  711.095351][   T27] usb usb1-port1: attempt power cycle
[  711.914229][  T968] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  711.921709][  T968] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  712.014045][  T968] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  712.095832][  T968] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  712.106374][  T968] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  712.170451][  T968] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  712.187549][  T968] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  712.223154][  T968] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  712.231297][   T27] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  712.239378][  T968] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  712.266767][  T968] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  712.297092][   T27] usb 1-1: device descriptor read/8, error -71
[  712.309345][  T968] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  712.337253][  T968] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  712.345596][  T968] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  712.353729][  T968] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  712.362119][  T968] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  712.380525][  T968] plantronics 0003:047F:FFFF.0005: No inputs registered, leaving
[  712.453361][  T968] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[  712.614203][   T27] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  712.658316][  T968] usb 7-1: USB disconnect, device number 20
[  712.706827][   T27] usb 1-1: device descriptor read/8, error -71
[  712.904848][   T27] usb usb1-port1: unable to enumerate USB device
[  713.220057][T14065] fido_id[14065]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/report_descriptor': No such file or directory
[  713.545991][T14083] netlink: 44 bytes leftover after parsing attributes in process `syz.5.1765'.
[  714.378551][ T5773] Bluetooth: hci3: command 0x0406 tx timeout
[  715.249016][   T28] audit: type=1326 audit(1771553592.209:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14101 comm="syz.5.1769" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f953cb9c629 code=0x0
[  715.270685][    C1] vkms_vblank_simulate: vblank timer overrun
[  717.874154][ T2194] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  718.043690][ T2194] usb 3-1: device descriptor read/64, error -71
[  718.394184][ T2194] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  718.574787][ T2194] usb 3-1: device descriptor read/64, error -71
[  718.744050][ T2194] usb usb3-port1: attempt power cycle
[  718.752211][T13711] block nbd0: Possible stuck request ffff888021ee8000: control (read@0,1024B). Runtime 300 seconds
[  718.767636][T13711] block nbd0: Possible stuck request ffff888021ee8200: control (read@1024,3072B). Runtime 300 seconds
[  719.494256][   T28] audit: type=1326 audit(1771553596.449:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14146 comm="syz.0.1779" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd125b9c629 code=0x0
[  719.574745][ T2194] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  719.733903][ T2194] usb 3-1: device descriptor read/8, error -71
[  720.194004][ T2194] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  720.266270][ T2194] usb 3-1: device descriptor read/8, error -71
[  720.404165][ T2194] usb usb3-port1: unable to enumerate USB device
[  722.935927][   T28] audit: type=1326 audit(1771553599.899:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14193 comm="syz.6.1790" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd2a659c629 code=0x0
[  724.493954][ T5986] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  724.664081][ T5986] usb 6-1: device descriptor read/64, error -71
[  724.712165][   T28] audit: type=1326 audit(1771553601.669:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14223 comm="syz.6.1799" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd2a659c629 code=0x0
[  724.939367][ T5986] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  725.096157][ T5986] usb 6-1: device descriptor read/64, error -71
[  725.224372][ T5986] usb usb6-port1: attempt power cycle
[  725.654034][ T5986] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  725.706305][T14244] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  725.824971][ T5986] usb 6-1: device descriptor read/8, error -71
[  726.436540][ T5986] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  726.474779][ T5986] usb 6-1: device descriptor read/8, error -71
[  726.596655][ T5986] usb usb6-port1: unable to enumerate USB device
[  728.426510][T14285] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  728.443197][T14285] overlayfs: failed to look up (tracing) for ino (-66)
[  728.686103][   T28] audit: type=1326 audit(1771553605.639:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14286 comm="syz.0.1811" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd125b9c629 code=0x0
[  729.674055][ T5818] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  729.883504][T14312] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  729.926141][T14312] tipc: Resetting bearer <eth:syzkaller0>
[  730.016132][ T5818] usb 1-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  730.034742][ T5818] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  730.060365][ T5818] usb 1-1: Product: syz
[  730.068630][ T5818] usb 1-1: Manufacturer: syz
[  730.084977][T14309] tipc: Disabling bearer <eth:syzkaller0>
[  730.097647][ T5818] usb 1-1: SerialNumber: syz
[  730.154373][ T5818] usb 1-1: config 0 descriptor??
[  730.416139][T14304] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  730.516376][T14304] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  731.741359][ T9091] usb 1-1: USB disconnect, device number 8
[  731.750972][T14326] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  731.774940][T14326] overlayfs: failed to look up (tracing) for ino (-66)
[  732.361652][   T28] audit: type=1326 audit(1771553609.319:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14334 comm="syz.5.1823" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f953cb9c629 code=0x0
[  732.383356][    C1] vkms_vblank_simulate: vblank timer overrun
[  735.293594][   T28] audit: type=1326 audit(1771553612.249:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14402 comm="syz.5.1837" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f953cb9c629 code=0x0
[  735.938920][T14400] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  736.299572][T14400] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  736.517758][T14400] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  736.553130][T14419] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  736.667517][T14400] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  736.819170][T14400] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  736.838625][T14400] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  736.862054][T14400] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  736.880052][T14400] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  739.360235][   T28] audit: type=1326 audit(1771553616.319:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14448 comm="syz.0.1847" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd125b9c629 code=0x0
[  740.115467][T14468] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  742.031865][T14498] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  742.056297][T14498] overlayfs: failed to look up (tracing) for ino (-66)
[  742.230476][   T28] audit: type=1326 audit(1771553619.189:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14500 comm="syz.0.1860" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd125b9c629 code=0x0
[  742.252155][    C1] vkms_vblank_simulate: vblank timer overrun
[  742.385522][T14509] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  743.140877][T14530] Bluetooth: hci0: invalid len left 7, exp >= 86
[  743.401649][T14539] loop9: detected capacity change from 0 to 7
[  743.437696][T14539] Dev loop9: unable to read RDB block 7
[  743.452509][T14539]  loop9: unable to read partition table
[  743.484226][T14539] loop9: partition table beyond EOD, truncated
[  743.501182][T14539] loop_reread_partitions: partition scan of loop9 (���W������ý�*���	���%���4FLQk݊5) failed (rc=-5)
[  743.570943][T14542] Dev loop9: unable to read RDB block 7
[  743.597449][T14542]  loop9: unable to read partition table
[  743.622999][T14542] loop9: partition table beyond EOD, truncated
[  744.054020][ T5818] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  744.255387][ T5818] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  744.269584][ T5818] usb 3-1: config 1 has an invalid descriptor of length 247, skipping remainder of the config
[  744.301544][   T28] audit: type=1326 audit(1771553621.259:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14553 comm="syz.6.1875" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd2a659c629 code=0x0
[  744.316795][ T5818] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[  744.363987][ T5818] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  744.403376][ T5818] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  744.428485][ T5818] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  744.470095][ T5818] usb 3-1: Product: syz
[  744.485157][ T5818] usb 3-1: Manufacturer: syz
[  744.506116][ T5818] cdc_wdm: probe of 3-1:1.0 failed with error -22
[  744.736590][   T27] usb 3-1: USB disconnect, device number 22
[  745.576416][T14588] block device autoloading is deprecated and will be removed.
[  748.142368][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  748.164012][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  748.493982][ T5819] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  748.704033][ T5819] usb 6-1: Using ep0 maxpacket: 8
[  748.725540][ T5819] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  748.743421][ T5819] usb 6-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  748.754232][ T5819] usb 6-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  748.773359][ T5819] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  748.774948][T13711] block nbd0: Possible stuck request ffff888021ee8000: control (read@0,1024B). Runtime 330 seconds
[  748.793229][ T5819] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  748.804600][T13711] block nbd0: Possible stuck request ffff888021ee8200: control (read@1024,3072B). Runtime 330 seconds
[  748.826762][ T5819] usbtmc 6-1:16.0: bulk endpoints not found
[  749.196140][T14658] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  751.926050][ T5819] usb 6-1: USB disconnect, device number 19
[  751.988782][T14697] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  752.213574][T14697] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  752.527659][T14697] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  752.640276][T14697] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  752.770835][T14697] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  752.791930][T14697] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  752.806506][T14697] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  752.821981][T14697] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  754.476659][   T28] audit: type=1326 audit(1771553631.399:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14742 comm="syz.0.1907" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd125b9c629 code=0x0
[  754.609892][T14766] (null): rxe_set_mtu: Set mtu to 1024
[  755.796175][T14766] infiniband syz2: set down
[  755.801293][T14766] infiniband syz2: added ipvlan0
[  756.452627][T14766] RDS/IB: syz2: added
[  756.462196][T14766] smc: adding ib device syz2 with port count 1
[  756.471333][T14766] smc:    ib device syz2 port 1 has pnetid SYZ1 (user defined)
[  758.898774][T14808] IPv6: addrconf: prefix option has invalid lifetime
[  759.517337][T14796] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  761.681937][T14872] 9pnet_virtio: no channels available for device syz
[  761.976003][T14872] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  761.984524][T14872] overlayfs: overlapping lowerdir path
[  767.207484][T14950] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  769.689786][   T28] audit: type=1326 audit(1771553646.649:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15029 comm="syz.6.1970" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd2a659c629 code=0x0
[  770.423973][T15061] syzkaller0: entered promiscuous mode
[  770.442065][T15061] syzkaller0: entered allmulticast mode
[  772.831417][T15104] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  773.076412][T15104] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  773.348198][T15104] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  773.556685][T15104] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  773.690765][T15104] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  773.708837][T15104] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  773.727673][T15104] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  773.748520][T15104] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  774.805952][   T27] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  775.006880][   T27] usb 1-1: Using ep0 maxpacket: 8
[  775.024690][   T27] usb 1-1: config index 0 descriptor too short (expected 301, got 45)
[  775.054434][   T27] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  775.133996][   T27] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  775.196568][   T27] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  775.223382][   T27] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  775.278495][   T27] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  775.303271][   T27] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  775.557646][   T27] usb 1-1: usb_control_msg returned -32
[  775.576734][   T27] usbtmc 1-1:16.0: can't read capabilities
[  775.623522][   T27] usb 1-1: USB disconnect, device number 9
[  778.282645][T15250] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  778.589488][T15258] syz_tun: entered allmulticast mode
[  778.607988][T15257] syz_tun: left allmulticast mode
[  778.856827][T13711] block nbd0: Possible stuck request ffff888021ee8000: control (read@0,1024B). Runtime 360 seconds
[  778.873470][T13711] block nbd0: Possible stuck request ffff888021ee8200: control (read@1024,3072B). Runtime 360 seconds
[  779.869872][T15299] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  780.047099][T15299] overlayfs: failed to look up (tracing) for ino (-66)
[  781.814656][ T5986] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[  782.024547][ T5986] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  782.061346][ T5986] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  782.086225][ T5986] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  782.140399][ T5986] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  782.178617][T15344] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  782.220814][ T5986] usb 7-1: Quirk or no altest; falling back to MIDI 1.0
[  782.430784][ T5986] usb 7-1: USB disconnect, device number 21
[  785.534149][   T27] usb 7-1: new high-speed USB device number 22 using dummy_hcd
[  785.931165][   T27] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  786.039344][   T27] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  786.125769][   T27] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  786.209151][   T27] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  786.466885][T15418] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  786.481227][   T27] usb 7-1: Quirk or no altest; falling back to MIDI 1.0
[  786.753296][   T27] usb 7-1: USB disconnect, device number 22
[  795.493960][   T29] INFO: task udevd:7041 blocked for more than 143 seconds.
[  795.501212][   T29]       Not tainted syzkaller #0
[  796.157076][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  796.188526][   T29] task:udevd           state:D stack:24872 pid:7041  ppid:5143   flags:0x00004006
[  796.268188][   T29] Call Trace:
[  796.282872][   T29]  <TASK>
[  796.288119][   T29]  __schedule+0x1553/0x45a0
[  796.292983][   T29]  ? asan.module_dtor+0x20/0x20
[  796.299495][   T29]  ? mark_lock+0x94/0x320
[  796.306009][   T29]  ? lock_chain_count+0x20/0x20
[  796.310963][   T29]  ? _raw_spin_lock_irq+0xbb/0xf0
[  796.319246][   T29]  ? _raw_spin_lock_irqsave+0x100/0x100
[  796.358031][   T29]  schedule+0xbd/0x170
[  796.367685][   T29]  io_schedule+0x80/0xd0
[  796.378561][   T29]  folio_wait_bit_common+0x714/0xfa0
[  796.413929][   T29]  ? folio_wait_bit+0x30/0x30
[  796.438303][   T29]  ? _compound_head+0x120/0x120
[  796.458646][   T29]  ? filemap_add_folio+0x192/0x3c0
[  796.470344][   T29]  ? __filemap_get_folio+0x704/0xbb0
[  796.476180][   T29]  ? blkdev_writepage+0x30/0x30
[  796.487558][   T29]  do_read_cache_folio+0x1c0/0x7d0
[  796.508933][   T29]  ? blkdev_writepage+0x30/0x30
[  796.517583][   T29]  read_part_sector+0xd2/0x340
[  796.530105][   T29]  adfspart_check_POWERTEC+0x93/0xed0
[  796.547340][   T29]  ? adfspart_check_ADFS+0x620/0x620
[  796.558869][   T29]  ? put_partition+0x370/0x370
[  796.564217][   T29]  ? alloc_pages+0x4dc/0x740
[  796.568975][   T29]  bdev_disk_changed+0x740/0x1420
[  796.574634][   T29]  ? bdev_resize_partition+0xf0/0xf0
[  796.580129][   T29]  ? iput+0x343/0x920
[  796.585681][   T29]  blkdev_get_whole+0x30d/0x390
[  796.591814][   T29]  blkdev_get_by_dev+0x279/0x600
[  796.597419][   T29]  blkdev_open+0x152/0x360
[  796.602006][   T29]  ? blkdev_mmap+0x1b0/0x1b0
[  796.612803][   T29]  do_dentry_open+0x8c6/0x1500
[  796.631834][   T29]  path_openat+0x27f1/0x3230
[  796.644493][   T29]  ? do_sys_openat2+0xda/0x1d0
[  796.649380][   T29]  ? verify_lock_unused+0x140/0x140
[  796.666501][   T29]  ? do_filp_open+0x430/0x430
[  796.671292][   T29]  ? __virt_addr_valid+0x18c/0x540
[  796.707346][   T29]  do_filp_open+0x1f5/0x430
[  796.712001][   T29]  ? vfs_tmpfile+0x490/0x490
[  796.739778][   T29]  ? _raw_spin_unlock+0x28/0x40
[  796.759333][   T29]  ? alloc_fd+0x58f/0x630
[  796.763764][   T29]  do_sys_openat2+0x134/0x1d0
[  796.792561][   T29]  ? do_sys_open+0xe0/0xe0
[  796.809150][   T29]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  796.828852][   T29]  ? lock_chain_count+0x20/0x20
[  796.844008][   T29]  __x64_sys_openat+0x139/0x160
[  796.848966][   T29]  do_syscall_64+0x55/0xa0
[  796.853426][   T29]  ? clear_bhb_loop+0x40/0x90
[  796.896574][   T29]  ? clear_bhb_loop+0x40/0x90
[  796.911622][   T29]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  796.923862][   T29] RIP: 0033:0x7fac546a7407
[  796.936087][   T29] RSP: 002b:00007ffe66b3ad00 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[  796.948288][   T29] RAX: ffffffffffffffda RBX: 00007fac54df2880 RCX: 00007fac546a7407
[  796.962926][   T29] RDX: 00000000000a0800 RSI: 0000559dbe7152c0 RDI: ffffffffffffff9c
[  796.973668][   T29] RBP: 0000559dbe706910 R08: 0000000000000000 R09: 0000000000000000
[  796.986263][   T29] R10: 0000000000000000 R11: 0000000000000202 R12: 0000559dbe7749a0
[  796.998042][   T29] R13: 0000559dbe71e410 R14: 0000000000000000 R15: 0000559dbe7749a0
[  797.007660][   T29]  </TASK>
[  797.026523][   T29] 
[  797.026523][   T29] Showing all locks held in the system:
[  797.058410][   T29] 1 lock held by khungtaskd/29:
[  797.068075][   T29]  #0: ffffffff8d131fa0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x290
[  797.082486][   T29] 2 locks held by getty/5534:
[  797.091602][   T29]  #0: ffff88802d1fd0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  797.105114][   T29]  #1: ffffc9000326e2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x433/0x1390
[  797.118455][   T29] 2 locks held by kworker/0:4/5818:
[  797.124133][   T29]  #0: ffff888017c72538 ((wq_completion)rcu_gp){+.+.}-{0:0}, at: process_scheduled_works+0x96f/0x15d0
[  797.141310][   T29]  #1: ffffc9000481fd00 ((work_completion)(&rew->rew_work)){+.+.}-{0:0}, at: process_scheduled_works+0x96f/0x15d0
[  797.163096][   T29] 1 lock held by udevd/7041:
[  797.173267][   T29]  #0: ffff888021e614c8 (&disk->open_mutex){+.+.}-{3:3}, at: blkdev_get_by_dev+0x121/0x600
[  797.194681][   T29] 1 lock held by syz-executor/9587:
[  797.202140][   T29]  #0: ffff8880b8e3c018 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0xa9/0x140
[  797.213750][   T29] 2 locks held by kworker/u4:0/9910:
[  797.223864][   T29]  #0: ffff8880b8e3c018 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0xa9/0x140
[  797.238227][   T29]  #1: ffffc900037e7d00 ((work_completion)(&(&bat_priv->nc.work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x96f/0x15d0
[  797.254797][   T29] 1 lock held by syz.5.2061/15544:
[  797.277206][   T29] 3 locks held by dhcpcd-run-hook/15594:
[  797.294131][   T29] 
[  797.298817][   T29] =============================================
[  797.298817][   T29] 
[  797.322453][   T29] NMI backtrace for cpu 0
[  797.326885][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted syzkaller #0
[  797.334125][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  797.344207][   T29] Call Trace:
[  797.347506][   T29]  <TASK>
[  797.350466][   T29]  dump_stack_lvl+0x18c/0x250
[  797.355180][   T29]  ? show_regs_print_info+0x20/0x20
[  797.360429][   T29]  ? load_image+0x400/0x400
[  797.365064][   T29]  nmi_cpu_backtrace+0x3a6/0x3e0
[  797.370131][   T29]  ? nmi_trigger_cpumask_backtrace+0x2f0/0x2f0
[  797.376360][   T29]  ? _printk+0xde/0x130
[  797.380539][   T29]  ? load_image+0x400/0x400
[  797.385070][   T29]  ? load_image+0x400/0x400
[  797.389595][   T29]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  797.395767][   T29]  nmi_trigger_cpumask_backtrace+0x17a/0x2f0
[  797.401767][   T29]  watchdog+0xf3d/0xf80
[  797.405939][   T29]  ? watchdog+0x1e1/0xf80
[  797.410363][   T29]  kthread+0x2fa/0x390
[  797.414435][   T29]  ? hungtask_pm_notify+0x90/0x90
[  797.419466][   T29]  ? kthread_blkcg+0xd0/0xd0
[  797.424055][   T29]  ret_from_fork+0x48/0x80
[  797.428994][   T29]  ? kthread_blkcg+0xd0/0xd0
[  797.433585][   T29]  ret_from_fork_asm+0x11/0x20
[  797.438356][   T29]  </TASK>
[  797.442764][   T29] Sending NMI from CPU 0 to CPUs 1:
[  797.448494][    C1] NMI backtrace for cpu 1
[  797.448506][    C1] CPU: 1 PID: 3527 Comm: kworker/u4:13 Not tainted syzkaller #0
[  797.448520][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  797.448530][    C1] Workqueue: events_unbound nsim_dev_trap_report_work
[  797.448552][    C1] RIP: 0010:stack_trace_consume_entry+0x5/0x270
[  797.448573][    C1] Code: 00 00 00 48 3b 4c 24 78 75 09 48 8d 65 f0 5b 41 5e 5d c3 e8 4d b4 0e 09 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 f3 0f 1e fa 55 <41> 57 41 56 41 55 41 54 53 48 83 ec 18 48 ba 00 00 00 00 00 fc ff
[  797.448585][    C1] RSP: 0018:ffffc9000d0b7618 EFLAGS: 00000286
[  797.448596][    C1] RAX: ffffffff8132a3ba RBX: ffffc9000d0b76e0 RCX: ffff88802e259e00
[  797.448607][    C1] RDX: 0000000000000000 RSI: ffffffff8158e9f5 RDI: ffffc9000d0b76e0
[  797.448617][    C1] RBP: ffffc9000d0b76b0 R08: ffff88802e259e00 R09: 0000000000000003
[  797.448627][    C1] R10: 0000000000000004 R11: 0000000000000000 R12: ffffffff8158e9f5
[  797.448636][    C1] R13: 00000000000000f0 R14: ffffffff8175b740 R15: ffffc9000d0b7628
[  797.448646][    C1] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  797.448657][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  797.448667][    C1] CR2: 0000560088a2c950 CR3: 00000000654a1000 CR4: 00000000003506e0
[  797.448679][    C1] Call Trace:
[  797.448685][    C1]  <TASK>
[  797.448690][    C1]  arch_stack_walk+0x138/0x190
[  797.448709][    C1]  ? worker_thread+0xa55/0xfc0
[  797.448728][    C1]  stack_trace_save+0xaa/0x100
[  797.448745][    C1]  ? stack_trace_snprint+0xf0/0xf0
[  797.448766][    C1]  kasan_set_track+0x4e/0x70
[  797.448782][    C1]  ? kasan_set_track+0x4e/0x70
[  797.448796][    C1]  ? __kasan_slab_alloc+0x6c/0x80
[  797.448811][    C1]  ? slab_post_alloc_hook+0x6e/0x4b0
[  797.448830][    C1]  ? kmem_cache_alloc_node+0x14c/0x320
[  797.448849][    C1]  ? __alloc_skb+0x103/0x2c0
[  797.448869][    C1]  ? nsim_dev_trap_report_work+0x293/0xb00
[  797.448881][    C1]  ? process_scheduled_works+0xa5d/0x15d0
[  797.448920][    C1]  __kasan_slab_alloc+0x6c/0x80
[  797.448936][    C1]  slab_post_alloc_hook+0x6e/0x4b0
[  797.448959][    C1]  kmem_cache_alloc_node+0x14c/0x320
[  797.448978][    C1]  ? slab_free_freelist_hook+0x130/0x1a0
[  797.448991][    C1]  ? __alloc_skb+0x103/0x2c0
[  797.449019][    C1]  __alloc_skb+0x103/0x2c0
[  797.449041][    C1]  nsim_dev_trap_report_work+0x293/0xb00
[  797.449063][    C1]  ? process_scheduled_works+0x96f/0x15d0
[  797.449080][    C1]  process_scheduled_works+0xa5d/0x15d0
[  797.449109][    C1]  ? assign_work+0x430/0x430
[  797.449128][    C1]  ? assign_work+0x3d0/0x430
[  797.449147][    C1]  worker_thread+0xa55/0xfc0
[  797.449165][    C1]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  797.449181][    C1]  ? _raw_spin_unlock+0x40/0x40
[  797.449193][    C1]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[  797.449217][    C1]  kthread+0x2fa/0x390
[  797.449231][    C1]  ? pr_cont_work+0x560/0x560
[  797.449247][    C1]  ? kthread_blkcg+0xd0/0xd0
[  797.449260][    C1]  ret_from_fork+0x48/0x80
[  797.449277][    C1]  ? kthread_blkcg+0xd0/0xd0
[  797.449291][    C1]  ret_from_fork_asm+0x11/0x20
[  797.449316][    C1]  </TASK>
[  797.778000][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[  797.784910][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted syzkaller #0
[  797.792117][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  797.802534][   T29] Call Trace:
[  797.805820][   T29]  <TASK>
[  797.808755][   T29]  dump_stack_lvl+0x18c/0x250
[  797.813440][   T29]  ? show_regs_print_info+0x20/0x20
[  797.818664][   T29]  ? load_image+0x400/0x400
[  797.823185][   T29]  panic+0x2dc/0x730
[  797.827108][   T29]  ? schedule_preempt_disabled+0x20/0x20
[  797.832758][   T29]  ? bpf_jit_dump+0xd0/0xd0
[  797.837285][   T29]  ? __irq_work_queue_local+0x13a/0x3b0
[  797.842883][   T29]  ? nmi_trigger_cpumask_backtrace+0x2a4/0x2f0
[  797.849057][   T29]  watchdog+0xf7c/0xf80
[  797.853235][   T29]  ? watchdog+0x1e1/0xf80
[  797.857644][   T29]  kthread+0x2fa/0x390
[  797.861717][   T29]  ? hungtask_pm_notify+0x90/0x90
[  797.866760][   T29]  ? kthread_blkcg+0xd0/0xd0
[  797.871381][   T29]  ret_from_fork+0x48/0x80
[  797.875812][   T29]  ? kthread_blkcg+0xd0/0xd0
[  797.880593][   T29]  ret_from_fork_asm+0x11/0x20
[  797.885559][   T29]  </TASK>
[  797.888923][   T29] Kernel Offset: disabled
[  797.893255][   T29] Rebooting in 86400 seconds..