last executing test programs:

21m2.944668481s ago: executing program 3 (id=1667):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4020ae46, &(0x7f00000001c0)=ANY=[@ANYBLOB="01"])
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000000c0)={[0x8000000000000001, 0x8000000000000000, 0x10, 0x2, 0x1, 0x4, 0x2, 0x4, 0x401, 0x1000, 0x8, 0x3, 0x9, 0x8000, 0x5, 0x10000], 0x2000, 0x2300})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000140)={0x1, 0x0, @ioapic={0x1, 0x9, 0x6, 0x7, 0x0, [{0x6, 0x1, 0x7, '\x00', 0xed}, {0x9, 0x7, 0xfd, '\x00', 0x9}, {0x4, 0x3d, 0xe6, '\x00', 0x94}, {0x60, 0x7f, 0x7, '\x00', 0x7b}, {0x40, 0xa, 0x4, '\x00', 0x7}, {0x8, 0x6, 0x81, '\x00', 0xd}, {0xf9, 0x7, 0x7, '\x00', 0xd4}, {0x10, 0xc, 0x4, '\x00', 0x3}, {0xc, 0x4, 0x9, '\x00', 0x9}, {0x2, 0x5, 0x2, '\x00', 0xb5}, {0xc, 0xf, 0x3, '\x00', 0x6}, {0x0, 0xc, 0x68, '\x00', 0x1}, {0xc0, 0xc3, 0xd, '\x00', 0xd}, {0xf2, 0x8, 0x0, '\x00', 0x8}, {0x1, 0x3b, 0x7, '\x00', 0x29}, {0x89, 0x0, 0x9}, {0xd0, 0x1, 0x2, '\x00', 0x31}, {0x4, 0x3, 0xff, '\x00', 0x1}, {0xb7, 0x2, 0x30, '\x00', 0xfa}, {0x0, 0x5, 0x88}, {0x8, 0xf8, 0x21, '\x00', 0x2}, {0x8, 0x7, 0x65, '\x00', 0x3}, {0xf8, 0xff, 0xfe, '\x00', 0xa}, {0x34, 0x9, 0x4, '\x00', 0x9}]}})

21m1.910996323s ago: executing program 3 (id=1678):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r1 = syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000002300)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000006340)={0x2020, 0x0, <r2=>0x0}, 0x2058)
write$FUSE_INIT(r0, &(0x7f0000002200)={0x50, 0x0, r2, {0x7, 0x27, 0x4, 0xffffffff913cd9b9, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, 0x50)
read$FUSE(r0, &(0x7f0000000100)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_IOCTL(r0, &(0x7f0000002140)={0x20, 0x0, r3, {0x403, 0x0, 0x80003ff, 0xfff}}, 0x20)
syz_fuse_handle_req(r0, &(0x7f0000004340)="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", 0x2000, &(0x7f0000003840)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
getdents64(r1, 0x0, 0x0)

21m1.689250744s ago: executing program 3 (id=1683):
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x1, 0x3, 0x0, 0x1000, &(0x7f0000fe6000/0x1000)=nil})
syz_mount_image$msdos(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', 0x2000844, &(0x7f0000000140)={[{@fat=@time_offset={'time_offset', 0x3d, 0x4f7}}, {@fat=@nocase}, {@nodots}, {@fat=@dmask={'dmask', 0x3d, 0xfffffffffffffff9}}, {@dots}, {@nodots}, {@dots}, {@fat=@showexec}, {@fat=@quiet}, {@fat=@fmask={'fmask', 0x3d, 0x1fe}}, {@fat=@nfs_stale_rw}, {@fat=@quiet}, {@dots}, {@fat=@nfs_nostale_ro}, {@fat=@errors_remount}, {@fat=@dos1xfloppy}]}, 0x21, 0x23d, &(0x7f0000000a40)="$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")
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000380)={[0x6, 0x9, 0xfffffffffffffffd, 0x0, 0x5, 0x0, 0x8, 0x1004, 0x6, 0xc595, 0x7, 0x8, 0xffffffffffffffff, 0x0, 0x80000004000000, 0x1c], 0x80a0000, 0x2010d3})
ioctl$KVM_GET_MSRS_cpu(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000100)={0x1, 0x0, [{0x4b564d01}]})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, 0x0}], 0x1, 0x4e, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000})
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0f"], 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

21m1.284304285s ago: executing program 3 (id=1688):
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x100c414, &(0x7f0000000800)={[{@dots}, {@fat=@codepage={'codepage', 0x3d, '869'}}, {@nodots}, {@nodots}, {@dots}, {@nodots}, {@nodots}, {@nodots}, {@nodots}, {@dots}, {@dots}, {@nodots}, {@nodots}, {@fat=@allow_utime={'allow_utime', 0x3d, 0x9}}, {@nodots}, {@nodots}, {@dots}, {@fat=@showexec}, {@fat=@flush}, {@nodots}, {@dots}, {@fat=@check_normal}]}, 0x2, 0x1f5, &(0x7f0000000600)="$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")
open(0x0, 0x14507e, 0x41)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000020000000000000000"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000700)={r0, 0xffffffffffffffff, 0x8, 0x0, @void}, 0x10)
syz_clone(0x80000, 0x0, 0x56, 0x0, 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = dup(r1)
ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000300)=ANY=[@ANYBLOB="d0"])

21m0.918735451s ago: executing program 3 (id=1693):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup(r1)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys\x00\x00et/\x80\x00v4\x00\x00s/\x92ync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd1l,'}, 0x30)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000640)={0x0, 0xd000})
syz_mount_image$vfat(&(0x7f0000003880), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c636865636b3d72656c617865642c7379735f696d6d757461626c652c756e695f786c6174653d312c756e695f786c6174653d302c73686f72746e616d653d6d697865642c757466383d302c6e6f6e756d7461696c3d302c73686f72746e616d653d77696e39352c73686f72746e616d653d6c6f7765722c73686f72746e616d653d77696e6e742c756e695f786c6174653d312c74696d655f6f66667365743d3078303030303030303030303030303166622c757466383d312c756e695f786c6174653d302c73686f72746e616d653d77696e39352c00fb70fd28d41c675692411361676cf1d29e66a2dce0304c6b6eddff9bc31fb1f6a7a28dc276bf8205f87412632310ff9b88fd091e635f5934f7bb8c729ce8841249516dfe8551ed871666c5538a175e2fd11528d9ff1e897102ba6b383bcc8063a1ee3152b35c20b443799550000af92999d0133f1e88a0fc0c95f7c001012bc57add99d1ce73172aa5ce03fe9543beeeaea1702a1e99054283f58337da18eae16240a0b0d65471b3252e614ab4856a3aed882b"], 0x6, 0x2a6, &(0x7f0000000440)="$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")
ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000280)='./file0\x00', 0x4, &(0x7f0000000040)={[{@fat=@discard}, {@fat=@nfs}, {@dots}, {@fat=@allow_utime={'allow_utime', 0x3d, 0x401}}, {@fat=@uid}]}, 0x1, 0x22d, &(0x7f0000000680)="$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")

21m0.197779432s ago: executing program 3 (id=1705):
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x1, 0x3, 0x0, 0x1000, &(0x7f0000fe6000/0x1000)=nil})
syz_mount_image$msdos(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', 0x2000844, &(0x7f0000000140)={[{@fat=@time_offset={'time_offset', 0x3d, 0x4f7}}, {@fat=@nocase}, {@nodots}, {@fat=@dmask={'dmask', 0x3d, 0xfffffffffffffff9}}, {@dots}, {@nodots}, {@dots}, {@fat=@showexec}, {@fat=@quiet}, {@fat=@fmask={'fmask', 0x3d, 0x1fe}}, {@fat=@nfs_stale_rw}, {@fat=@quiet}, {@dots}, {@fat=@nfs_nostale_ro}, {@fat=@errors_remount}, {@fat=@dos1xfloppy}]}, 0x21, 0x23d, &(0x7f0000000a40)="$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")
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000380)={[0x6, 0x9, 0xfffffffffffffffd, 0x0, 0x5, 0x0, 0x8, 0x1004, 0x6, 0xc595, 0x7, 0x8, 0xffffffffffffffff, 0x0, 0x80000004000000, 0x1c], 0x80a0000, 0x2010d3})
ioctl$KVM_GET_MSRS_cpu(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000100)={0x1, 0x0, [{0x4b564d01}]})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, 0x0}], 0x1, 0x4e, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000})
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0f"], 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

20m59.911716561s ago: executing program 32 (id=1705):
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x1, 0x3, 0x0, 0x1000, &(0x7f0000fe6000/0x1000)=nil})
syz_mount_image$msdos(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', 0x2000844, &(0x7f0000000140)={[{@fat=@time_offset={'time_offset', 0x3d, 0x4f7}}, {@fat=@nocase}, {@nodots}, {@fat=@dmask={'dmask', 0x3d, 0xfffffffffffffff9}}, {@dots}, {@nodots}, {@dots}, {@fat=@showexec}, {@fat=@quiet}, {@fat=@fmask={'fmask', 0x3d, 0x1fe}}, {@fat=@nfs_stale_rw}, {@fat=@quiet}, {@dots}, {@fat=@nfs_nostale_ro}, {@fat=@errors_remount}, {@fat=@dos1xfloppy}]}, 0x21, 0x23d, &(0x7f0000000a40)="$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")
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000380)={[0x6, 0x9, 0xfffffffffffffffd, 0x0, 0x5, 0x0, 0x8, 0x1004, 0x6, 0xc595, 0x7, 0x8, 0xffffffffffffffff, 0x0, 0x80000004000000, 0x1c], 0x80a0000, 0x2010d3})
ioctl$KVM_GET_MSRS_cpu(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000100)={0x1, 0x0, [{0x4b564d01}]})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, 0x0}], 0x1, 0x4e, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000})
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0f"], 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

15m24.280164248s ago: executing program 4 (id=4021):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r1 = fanotify_init(0xf00, 0x0)
fanotify_mark(r1, 0x105, 0x5000003a, r0, 0x0)
creat(&(0x7f0000000200)='./file5\x00', 0x10)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0, 0xffffffffffffff2c}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r2 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0xa, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40005}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r2, 0x2219, 0x7721, 0x16, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x2, &(0x7f00000002c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [{@smackfsroot={'smackfsroot', 0x3d, ':$\x9c^{{$],(-'}}]}})
renameat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000a40)='./file5\x00', 0x2)

15m22.960388539s ago: executing program 4 (id=4026):
r0 = userfaultfd(0x1)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000180)={0xaa, 0x4a4})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f00000000c0)={{&(0x7f0000ffa000/0x4000)=nil, 0x4000}, 0x1})
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa01, &(0x7f00000002c0)={&(0x7f0000ff9000/0x4000)=nil, 0x4000})

15m21.815467502s ago: executing program 4 (id=4029):
r0 = shmat(0x0, &(0x7f0000e9f000/0x4000)=nil, 0x5000)
r1 = shmget$private(0x0, 0x1000, 0xc230eea466119881, &(0x7f0000000000/0x1000)=nil)
shmat(r1, &(0x7f0000000000/0x4000)=nil, 0x6000)
shmat(r1, &(0x7f0000d0c000/0x2000)=nil, 0x3000)
shmdt(r0)

15m21.480298795s ago: executing program 4 (id=4030):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x1c0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='cgroup2\x00', 0x0, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
mount$fuseblk(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x24000, 0x0)

15m21.290708024s ago: executing program 4 (id=4032):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x3, 0x4)
syz_emit_ethernet(0x82, &(0x7f00000006c0)={@broadcast, @local, @val={@void, {0x8100, 0x0, 0x0, 0x4}}, {@ipv6={0x86dd, @icmpv6={0x7, 0x6, "c172f5", 0x48, 0x3a, 0xff, @ipv4={'\x00', '\xff\xff', @local}, @local, {[], @param_prob={0x4, 0x0, 0x0, 0xffbf, {0x5, 0x6, "54d041", 0x400, 0x88, 0x1, @initdev={0xfe, 0x88, '\x00', 0x4, 0x0}, @rand_addr=' \x01\x00', [@routing={0x33, 0x2, 0x2, 0x97, 0x0, [@private0]}]}}}}}}}, 0x0)

15m20.959168517s ago: executing program 4 (id=4035):
socket$inet6(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
dup(r0)
socket(0x10, 0x803, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00'}, 0x94)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r3=>0x0})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xe, 0x4, 0x8, 0x1}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r5}, &(0x7f0000000240), &(0x7f00000006c0)=r1}, 0x20)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000340)={r6, r3, 0x25, 0x2, @val=@tcx}, 0x1c)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @random="50a245d5cde0", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0xfffe, 0x0, 0x0, 0x2, 0x0, @empty, @broadcast}, @timestamp_reply={0x11, 0x0, 0x0, 0xe000, 0x2, 0x2, 0x4062d13c}}}}}, 0x0)

15m20.391604633s ago: executing program 33 (id=4035):
socket$inet6(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
dup(r0)
socket(0x10, 0x803, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00'}, 0x94)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r3=>0x0})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xe, 0x4, 0x8, 0x1}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r5}, &(0x7f0000000240), &(0x7f00000006c0)=r1}, 0x20)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000340)={r6, r3, 0x25, 0x2, @val=@tcx}, 0x1c)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @random="50a245d5cde0", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0xfffe, 0x0, 0x0, 0x2, 0x0, @empty, @broadcast}, @timestamp_reply={0x11, 0x0, 0x0, 0xe000, 0x2, 0x2, 0x4062d13c}}}}}, 0x0)

15m11.855114838s ago: executing program 1 (id=4065):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e21, 0x3, @ipv4={'\x00', '\xff\xff', @empty}, 0x4}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x3, &(0x7f0000000080)=0x7fffffff, 0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x659, @empty, 0xfb}, 0x1c)
r1 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$inet_opts(r1, 0x0, 0xd, &(0x7f0000000100)="ac", 0x1)
recvmmsg$unix(r1, &(0x7f0000003b00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x10003, 0x0)

15m10.884514174s ago: executing program 1 (id=4066):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bridge_slave_0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000001c00010429bd7000ffdbdf2507000000", @ANYRES32=r1, @ANYBLOB="027fff0a0a0002"], 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x24040040)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="300000001d"], 0x30}, 0x1, 0x0, 0x0, 0x1}, 0xc31fe084736598c)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x44001}, 0x4000004)

15m10.573265785s ago: executing program 1 (id=4067):
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000800)='./file0\x00', 0x2204806, &(0x7f0000000180)={[{@map_off}, {@map_normal, 0x0}, {@iocharset={'iocharset', 0x3d, 'iso8859-3'}}, {@sbsector={'sbsector', 0x3d, 0x5}}, {@session={'session', 0x3d, 0x62}}, {@iocharset={'iocharset', 0x3d, 'macgreek'}, 0x41}, {@map_acorn}, {@iocharset={'iocharset', 0x3d, 'iso8859-2'}}, {@cruft}, {@sbsector={'sbsector', 0x3d, 0x8}}, {@mode={'mode', 0x3d, 0x2}}, {@gid}], [{@fscontext={'fscontext', 0x3d, 'system_u'}}, {@permit_directio}]}, 0xfa, 0x69f, &(0x7f0000000f00)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x0, 0x1aa)
getdents64(r0, 0x0, 0x0)

15m10.386796753s ago: executing program 1 (id=4069):
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x12}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount$9p_fd(0x0, 0x0, &(0x7f0000000180), 0x12e010, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)={0x1c, r1, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

15m8.828503547s ago: executing program 1 (id=4072):
symlinkat(&(0x7f0000000080)='.\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00')
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000280)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})

15m8.518871718s ago: executing program 1 (id=4074):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='mmap_lock_acquire_returned\x00', r0}, 0x10)
move_pages(0x0, 0x20000000000000fe, &(0x7f0000000080)=[&(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil], 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0)
r1 = userfaultfd(0x1)
dup3(r0, r1, 0x80000)

14m53.323170762s ago: executing program 34 (id=4074):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='mmap_lock_acquire_returned\x00', r0}, 0x10)
move_pages(0x0, 0x20000000000000fe, &(0x7f0000000080)=[&(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil], 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0)
r1 = userfaultfd(0x1)
dup3(r0, r1, 0x80000)

5m20.203171036s ago: executing program 2 (id=6897):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000000)={0x0, 0x0}, 0x10)
sendmmsg(r0, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

5m19.705027585s ago: executing program 2 (id=6902):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$setregset(0x4205, r0, 0x4, &(0x7f0000000200)={0x0})

5m19.031886342s ago: executing program 2 (id=6912):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000c, 0x204031, 0xffffffffffffffff, 0xffffd000)
bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0)
syslog(0x4, &(0x7f0000000400)=""/192, 0x64075da62934d5c2)

5m18.363157048s ago: executing program 2 (id=6918):
getpid()
r0 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setns(r0, 0x66020000)
mount$9p_fd(0x0, &(0x7f0000000980)='.\x00', 0x0, 0x104000, 0x0)
syz_clone(0x498144ee5f62e149, 0x0, 0x17, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x1c1)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262)
umount2(&(0x7f0000000040)='.\x00', 0x2)

5m18.271536697s ago: executing program 2 (id=6921):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x6, 0xb, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000300000000000000010000001801000020756c0000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000009002000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ec}, 0x94)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000004c0)={'syz_tun\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r0, r2, 0x25, 0x0, @void}, 0x10)
mount$bpf(0x0, 0x0, 0x0, 0x5085040, 0x0)
syz_emit_ethernet(0x5e, &(0x7f00000001c0)={@broadcast, @link_local={0x1, 0x80, 0xc2, 0x0, 0x10}, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "0000a0", 0x28, 0x3a, 0xff, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @mcast2, {[], @ndisc_redir={0x89, 0x0, 0x0, '\x00', @mcast1={0xff, 0x5}, @ipv4={'\x00', '\xff\xff', @private=0xa010102}}}}}}}, 0x0)

5m16.671612814s ago: executing program 2 (id=6940):
syz_open_dev$evdev(&(0x7f0000000080), 0x2, 0x842)
socket$packet(0x11, 0x2, 0x300)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
fanotify_init(0x200, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r0 = memfd_create(&(0x7f0000000400)=',\x00\b\x8e\xc8\x83d\xe5\x88\xb6\xdc?\x9eh\xd48L\xd1\xb7X\xaa\x9b\xa8\xf0\x8dN\xef\xb3\xaa{\xd4\xa9h\xeb\xc5P\xd9\xc1Y\xba\xaf\xdb\xfd3\xd9\x15?u9\xad\"\xd5\x8e\x14\xc9\x7f7^\x10\xe5s\x82gj\xf2\xb83\x1ay\xe5\xa0\a\x00\x00\x00\x00\x007\xb6\xd3)\x9b]\x84\xd1}Kwe!\x89\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xf5\xda\xddXQ\xe3\xe5I\n\x81\x11Y\xabPH\xb9\xca\xda#9-\xfa\xbd\x81\x13\x05\xaa\xacS\xc5[\xd9f5\xc1\xdd\x11M1kT\x7f.\xd6\x89\xde\xca\x8c\xb8ag\x14\xc9\x83\xd3r\xea\xed\xae\xb9%\xb0q\xc0\xbc\xbe\xd4t\xc0K\x95D\xfd\x9f\x18\xa6{\xe6%\xf0`\xee\r\x18}0\xe7\xed\x8aY\xe5\xfb\xd8\xea\xa3\xfauC\x82\xd5K\x00/\xf4\xe8\xa9\xef\x82M\x9d\xe9s#P\x9d\x9c\xb1\xf9\xc1>@`\x9d\xf6b\x0e\xa9\xcf\xdb\xb3\x90O\x18~\x8c\xe10\xab\xfd9\n\xa0R\x19\xd4\xbb|\x84L\xfb\xf9\x95\x93\x99\xb77b\xc4\x82F\xc3\xa0\xbe\xd0~\v\b\v\x16\xbaI\x819Q\a3\xa0\xd5\xe4&\xf2\x9b{\xb6\\F\x0e\x01[4V\x19xh\xe6\x96\x95`csY\x81\x9f\x9fF\xaf[\xe9e\x99Z\xad_\xa2$\x98\xf1\xde\xc3\a\x8a\x05\x18\xb7\x90\x1f\x83\xc5\xfeL\xc79\b\xed\xff\x93\xe3\xe0\xee\xa7v\xc2\x1c\xb4\xde\xfe\xc7\xc2A`\xcaS@>\x88a\xe8\xe7dj\n\x8e\xea\x93;\xa1\xde\xc5\xf6\x01\vF\xfc\\H\xce\x0f\x82\xe0\x11)\f\xfeh\xe7\x88\xb3\x8bF\xfbw|+ecS=\x04\x18\xe7\xb8\x04\xaa\xf5e\xe5\x8b.\xde\xa8\xb3\xae\xd8g\xa0\xdd\x8d[w8\xab$[\"(\xa3\xba\r\xb5=vC\xce\xff\xfd\xe2\xe8\x1c;\x90\xff\xdf\x84@\xa8\x03\x98\xc6m\xcf\x8e\xdd\x12jP\xea\xf0e\xb7\x06\'K\xca-&\xad\x7f]\xfb8\xf6\xe0@J\xee\xe6\xf3\x1b7\xf7\x87\xb3\xbd\xb8\a\xa3\xe2\xfb\xd8I\xc0\xa8\xad\xae\x00wM\xa9:4\x81b\x1f\x8e\x8f\f\xdf\x98<\xfd5\x9c\xc0\'+:H6<\xa9\xd9\x19\x83\xd5\x81\t\n\x0f^A\xb7\x85aD\xd2\xc9fk\x1c\xb6\x9f\x14\x8b=s\xb5\x0f\xd4!!g\xab8i\xf9\x1dI`f1\xb4\xfa\x93\xe4\xcc&\xde\x8f\x03\\\xf0\x1c\x9b\x8a\xfd\xfe\b\x85\xb2\x93\x85\x1a\xe9\xef\n./U\xaf\xb9\xf6\xe7Y1\xaa\x11\xd5\xd6rd\f(\x9f\xe2D)\x9a\x969\xdf\xb7\x06#8%\xaa\x86\x11&\x13\xa7R\xce\xe5\xb3\xa1W\xdej\xe4q\x84\x99n\x9f\xdeX\x97\x82\xd1U\xd2\t\xeaI\x88\xc0\xf8\xc0\x9cC\x14\x1d\xc3\xe4\\\xb2\xcd\xae\xf5\xb8\xe56\x0f\xe1\xc5\xa5\x13@\xc8\xfa\x15\x137\xd9C\xf6\x10\xe1\x83:\xc02h\xc8f7&|\x9cf\xa8\x8a\xf0\x7f\xe4Km\x10EJ_\xf98\x8b\xea\x9a\xd2x\xc4-7^\x00\x00\x00\x00\x00\x00\x00\x00\x003\xd6\xcb\xc7}T\x1d\xf2\xb9.%\x14|k\x15\xa23J\x1d\xfd\t\xb5*\xf6\xc1\x06\xaf\x95\x9b\xc2\xa8 \xa2\xf7', 0x6)
dup(r0)
socket(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$netlink(0x10, 0x3, 0xa)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000000)=ANY=[@ANYRES32, @ANYRES32, @ANYRES64=r1], 0x20)

5m16.151211786s ago: executing program 35 (id=6940):
syz_open_dev$evdev(&(0x7f0000000080), 0x2, 0x842)
socket$packet(0x11, 0x2, 0x300)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
fanotify_init(0x200, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r0 = memfd_create(&(0x7f0000000400)=',\x00\b\x8e\xc8\x83d\xe5\x88\xb6\xdc?\x9eh\xd48L\xd1\xb7X\xaa\x9b\xa8\xf0\x8dN\xef\xb3\xaa{\xd4\xa9h\xeb\xc5P\xd9\xc1Y\xba\xaf\xdb\xfd3\xd9\x15?u9\xad\"\xd5\x8e\x14\xc9\x7f7^\x10\xe5s\x82gj\xf2\xb83\x1ay\xe5\xa0\a\x00\x00\x00\x00\x007\xb6\xd3)\x9b]\x84\xd1}Kwe!\x89\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xf5\xda\xddXQ\xe3\xe5I\n\x81\x11Y\xabPH\xb9\xca\xda#9-\xfa\xbd\x81\x13\x05\xaa\xacS\xc5[\xd9f5\xc1\xdd\x11M1kT\x7f.\xd6\x89\xde\xca\x8c\xb8ag\x14\xc9\x83\xd3r\xea\xed\xae\xb9%\xb0q\xc0\xbc\xbe\xd4t\xc0K\x95D\xfd\x9f\x18\xa6{\xe6%\xf0`\xee\r\x18}0\xe7\xed\x8aY\xe5\xfb\xd8\xea\xa3\xfauC\x82\xd5K\x00/\xf4\xe8\xa9\xef\x82M\x9d\xe9s#P\x9d\x9c\xb1\xf9\xc1>@`\x9d\xf6b\x0e\xa9\xcf\xdb\xb3\x90O\x18~\x8c\xe10\xab\xfd9\n\xa0R\x19\xd4\xbb|\x84L\xfb\xf9\x95\x93\x99\xb77b\xc4\x82F\xc3\xa0\xbe\xd0~\v\b\v\x16\xbaI\x819Q\a3\xa0\xd5\xe4&\xf2\x9b{\xb6\\F\x0e\x01[4V\x19xh\xe6\x96\x95`csY\x81\x9f\x9fF\xaf[\xe9e\x99Z\xad_\xa2$\x98\xf1\xde\xc3\a\x8a\x05\x18\xb7\x90\x1f\x83\xc5\xfeL\xc79\b\xed\xff\x93\xe3\xe0\xee\xa7v\xc2\x1c\xb4\xde\xfe\xc7\xc2A`\xcaS@>\x88a\xe8\xe7dj\n\x8e\xea\x93;\xa1\xde\xc5\xf6\x01\vF\xfc\\H\xce\x0f\x82\xe0\x11)\f\xfeh\xe7\x88\xb3\x8bF\xfbw|+ecS=\x04\x18\xe7\xb8\x04\xaa\xf5e\xe5\x8b.\xde\xa8\xb3\xae\xd8g\xa0\xdd\x8d[w8\xab$[\"(\xa3\xba\r\xb5=vC\xce\xff\xfd\xe2\xe8\x1c;\x90\xff\xdf\x84@\xa8\x03\x98\xc6m\xcf\x8e\xdd\x12jP\xea\xf0e\xb7\x06\'K\xca-&\xad\x7f]\xfb8\xf6\xe0@J\xee\xe6\xf3\x1b7\xf7\x87\xb3\xbd\xb8\a\xa3\xe2\xfb\xd8I\xc0\xa8\xad\xae\x00wM\xa9:4\x81b\x1f\x8e\x8f\f\xdf\x98<\xfd5\x9c\xc0\'+:H6<\xa9\xd9\x19\x83\xd5\x81\t\n\x0f^A\xb7\x85aD\xd2\xc9fk\x1c\xb6\x9f\x14\x8b=s\xb5\x0f\xd4!!g\xab8i\xf9\x1dI`f1\xb4\xfa\x93\xe4\xcc&\xde\x8f\x03\\\xf0\x1c\x9b\x8a\xfd\xfe\b\x85\xb2\x93\x85\x1a\xe9\xef\n./U\xaf\xb9\xf6\xe7Y1\xaa\x11\xd5\xd6rd\f(\x9f\xe2D)\x9a\x969\xdf\xb7\x06#8%\xaa\x86\x11&\x13\xa7R\xce\xe5\xb3\xa1W\xdej\xe4q\x84\x99n\x9f\xdeX\x97\x82\xd1U\xd2\t\xeaI\x88\xc0\xf8\xc0\x9cC\x14\x1d\xc3\xe4\\\xb2\xcd\xae\xf5\xb8\xe56\x0f\xe1\xc5\xa5\x13@\xc8\xfa\x15\x137\xd9C\xf6\x10\xe1\x83:\xc02h\xc8f7&|\x9cf\xa8\x8a\xf0\x7f\xe4Km\x10EJ_\xf98\x8b\xea\x9a\xd2x\xc4-7^\x00\x00\x00\x00\x00\x00\x00\x00\x003\xd6\xcb\xc7}T\x1d\xf2\xb9.%\x14|k\x15\xa23J\x1d\xfd\t\xb5*\xf6\xc1\x06\xaf\x95\x9b\xc2\xa8 \xa2\xf7', 0x6)
dup(r0)
socket(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$netlink(0x10, 0x3, 0xa)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000000)=ANY=[@ANYRES32, @ANYRES32, @ANYRES64=r1], 0x20)

10.955315998s ago: executing program 0 (id=8800):
syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0x8000}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002078316e00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000006000000850000000500000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r4 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
ioctl$sock_bt_hidp_HIDPCONNADD(r4, 0x400448c8, &(0x7f0000000280)={r5, r5, 0x201, 0xfffffffb, 0x0, 0x9, 0x1, 0x163f, 0x5505, 0xc3b8, 0x1, 0x0, 'syz0\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r3}, 0x10)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000500)=ANY=[@ANYRES32=0x0, @ANYRES32], 0x48)
setrlimit(0xd, &(0x7f00000000c0)={0x7, 0x1})
setgroups(0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x2800000, &(0x7f0000000140)={[{@debug}, {@delalloc}, {@journal_ioprio}, {@test_dummy_encryption}, {@nodiscard}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@nodiscard}, {@abort}]}, 0x1, 0xbb4, &(0x7f00000017c0)="$eJzs3M1rXOUaAPDnnHy2zb2TXi6X27tpLpdLC+I0raTYIthKxY0LQbdCQzopIdMPkkhNmsVE/wFR14IbQS1KF3bdjYJbN1q3FhdCkdgoiGjkzEeSJjNJ2k5yYvL7wZvzvvOcOe/z5DBzzgszE8CeNZD9SSMORcT5JKJQfzyNiO5qrzeiUttvYX525Jf52ZEkFhdf/jGJJCLuz8+ONI6V1LcH6oPeiPjquST+8ebaeSenZ8aHy+XSRH18bOrS1WOT0zNPjl0avli6WLp8/OTTQyeGTg6eGmpbrb9+d+bWz/994fvKbx/9fuOndz5I4kz01WMr66hX/dgGYmDpf7JSZ0QMt+H4O0FHvZ6VdSadGzwp3eKkAABoKV1xD/evKERHLN+8FeLzr3NNDgAAAGiLxY6IRQAAAGCXS6z/AQAAYJdrfA7g/vzsSKPl+4mE7XXvbET01+pfqLdapDMq1W1vdEXE/vtJrPxaa1J72mMbiIi73576NGvR5HvIW60yFxH/bnb+k2r9/fVvQq+uP42IwTbMP7Bq/Feq/0wb5s+7fgD2pttnaxeytde/dOn+J5pc/zqbXLseRd7Xv8b938Ka+7/l+jta3P+9tMk5rn/43rVWsaz+Z249/0mjZfNn28cq6iHcm4v4T2ez+pOl+pMW9Z/f5ByFP66VWsXyrn/x/Ygj0bz+hmT93yc6NjpWLg3W/jadY+7LoY9bzZ93/dn539+i/o3O/9UHjtT6R31ePXfuZqvYxvWnP3Qnr1R73fVHXh+empo4HtGdvLj28RPr19vYp3GMrP6j/1v/9d+s/uw9oVL/P2SVz9W32fiNVXM+e+P6Z+vVn6398jz/Fx7x/L+1yTn+/8XbR1vFVq5/s5bNfzeprYUBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoCGNiL5I0mJEJNV+mhaLEQci4p+xPy1fmZx6YvTKa5cvZLGI/uhKR8fKpcGIKNTGSTY+Xu0vj0+sGj8VEQcj4t3Cvuq4OHKlfCHv4gEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFhyICL6IkmLEZFGxEIhTYvFvLMCAAAA2q4/7wQAAACALWf9DwAAALuf9T8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABb7ODh23eSiKic3ldtme56rCvXzICtluadAJCbjrwTAHLTmXcCQG4eco3vdgF2oWSDeG/LSE/bcwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABg5zpy6PadJCIqp/dVW6a7Hutq+ozD25gdsJXSvBMActOxXrBz+/IAtp+XOOxdzdf4wF6SbBDvXd6n8mCkZ8tyAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGDn6au2JC1GRFrtp2mxGPG3iOiPrmR0rFwajIi/R8Q3ha6ebNyTd9IAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC03eT0zPhwuVya0NHRybeT7Iw0ap2835kAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMjD5PTM+HC5XJqYzDsTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIG+T0zPjw+VyaWITnZsPs/OKTt41AgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACQnz8DAAD//9b4DfQ=")
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x4800, 0x0, 0x0, 0x0, &(0x7f0000000240))
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000001dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

10.83640505s ago: executing program 7 (id=8803):
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r1 = socket$unix(0x1, 0x2, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
connect$unix(r2, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmmsg(r2, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0, 0xffffffffffffff2c}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r3 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0xa, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x800, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0xd}, {0xe, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r3, 0x2219, 0x7721, 0x16, 0x0, 0x0)
connect$unix(r1, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
ppoll(&(0x7f0000000140)=[{r1, 0x4236}], 0x1, 0x0, 0x0, 0x0)
close(r0)

8.173088263s ago: executing program 5 (id=8804):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x5, 0x2, 0x4}, 0x48)
close(0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000dc0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001c40)={0x14, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000001000000850000008600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f00000000c0)=r4, 0x4)
sendmsg$unix(r3, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)

7.942266705s ago: executing program 5 (id=8805):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="b702000000070000bfa30000000000000703000000feffff7a0af0fff8ffff1971a4f0ff00000000b7060000080000006f6400000000000045040400010000001704000001000a00b7040000ff0100006a0a00fe0000000085000000be000000b70000000000000095000000000000009e17f199a68b06d83298a8cdc21ce784909b849d5550ad857d0454d8877a6db61d69f2ffcaa10350e11cb97c8adf1bc9a0c4eeceb9971e43405d621ffbc9ce000000d8ca56b50d0c010d631f6dde53a9a53608c10556e5734eb84049761451ce540c772e2d9f8004e26f7fcc059c062234d5595f6fbaa187b81d1106000000000fd60000fd9ac3d09e29a9d542ca9d85a5c9c88474895d679838def0a83a733dc6a39b63a5ed69d32394c53361d7e43c5cbd80450f859ce8122a79c3e40000b59b0fc46d6cec3c0802882add4e3179bd4a44f231b6d753a7be428ba953df4aece69311687f4122"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000340), 0x10}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x2000012, 0xe, 0x0, &(0x7f00000004c0)="4133c9e924380000000000000000", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

7.543179565s ago: executing program 7 (id=8806):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f00000005c0), 0x40000000088d82, 0x0)
r2 = syz_io_uring_setup(0xbdc, &(0x7f0000000040)={0x0, 0x5cd0, 0x100, 0xfffffffc, 0x1bc}, &(0x7f0000002180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r1, 0x1, &(0x7f0000000140)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1})
io_uring_enter(r2, 0x847ba, 0x0, 0xe, 0x0, 0x0)

7.454984324s ago: executing program 6 (id=8807):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r4, &(0x7f0000000080)={0xa, 0x2, 0x200, @loopback, 0x6}, 0x1c)
setsockopt$inet6_tcp_int(r4, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r4, &(0x7f0000000300)="a6", 0x1, 0x20000045, &(0x7f0000000140)={0xa, 0x2, 0xffff, @loopback, 0x3}, 0x1c)
write$P9_RMKNOD(r4, 0x0, 0x0)
sysinfo(0x0)
shutdown(r4, 0x1)

7.325371117s ago: executing program 0 (id=8808):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x5, 0x4, 0x4, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="17fa00000000090000000400000000001c110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000007d00000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000000000850000000700000018", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYRES32=r0], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xd, &(0x7f0000000040)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10)
syz_clone(0x2100a400, 0x0, 0x0, 0x0, 0x0, 0x0)

7.325097157s ago: executing program 5 (id=8809):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r1=>0x0})
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r2, 0x0, 0xc8, &(0x7f0000000180), 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
socket$unix(0x1, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$MRT_ADD_MFC_PROXY(r2, 0x0, 0xd2, &(0x7f0000000040)={@broadcast, @multicast1, 0x1, "0d5011f02b7fab96e0aa834d3a9e7cfc12178ac0ab1e6227c2b6ddaa5effda90", 0x5, 0x16, 0xfffffffe, 0x1}, 0x3c)
r6 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC_PROXY(r6, 0x0, 0xd2, &(0x7f0000000000)={@broadcast, @multicast1, 0x0, "12ceaac82ab7d944e84b6fbd6178697e3b10c9b81bede26c85ee73daab4158e8", 0x2, 0x6, 0x4, 0x4}, 0x3c)
setsockopt$MRT_FLUSH(r6, 0x0, 0xd4, &(0x7f0000000100)=0xe, 0x4)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x14, r1})
setsockopt$inet6_mreq(r0, 0x29, 0x1c, &(0x7f0000000180)={@remote, r1}, 0x14)

6.115556966s ago: executing program 7 (id=8810):
syz_pidfd_open(0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x80042, 0x50)
pwrite64(r0, &(0x7f00000005c0)='\"', 0x1, 0x4fed0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x180)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
setxattr$security_capability(&(0x7f0000000240)='./file0/file1\x00', &(0x7f0000000280), 0x0, 0x0, 0x0)

5.652601112s ago: executing program 0 (id=8811):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0500000004000000080000000a"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x3, &(0x7f0000001300)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x94)

5.650925642s ago: executing program 6 (id=8812):
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={0xffffffffffffffff, 0xfeffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000140)="06ff", 0x0}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000840)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000011000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x51, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000300)='sys_enter\x00', r2}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r0, 0xfeffff, 0x113, 0x3f00f000, &(0x7f0000000700)="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", 0x0, 0xf0, 0x0, 0x4a, 0xffffff0c}, 0x40)

5.581608819s ago: executing program 0 (id=8813):
ioctl$MON_IOCT_RING_SIZE(0xffffffffffffffff, 0x9204, 0x400254a4)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f00000000c0)={[{@noblock_validity}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r3}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=@ipv6_newaddr={0x2c, 0x14, 0x1, 0xfffffffc, 0x0, {0xa, 0x40, 0x20}, [@IFA_LOCAL={0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x37}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r5 = syz_io_uring_setup(0x3b85, &(0x7f00000001c0)={0x0, 0xad84, 0x1, 0x22, 0x339}, &(0x7f0000000180), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x0, &(0x7f0000000140)=[{0x0}], 0x1)

5.46307108s ago: executing program 7 (id=8814):
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r1 = socket$unix(0x1, 0x2, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
connect$unix(r2, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmmsg(r2, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0, 0xffffffffffffff2c}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r3 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0xa, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x800, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0xd}, {0xe, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r3, 0x2219, 0x7721, 0x16, 0x0, 0x0)
connect$unix(r1, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
ppoll(&(0x7f0000000140)=[{r1, 0x4236}], 0x1, 0x0, 0x0, 0x0)
close(r0)

3.206075273s ago: executing program 5 (id=8815):
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
landlock_create_ruleset(&(0x7f0000000000)={0x8b28, 0x3}, 0x18, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c3"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000000c0)='sched_switch\x00', r2}, 0x18)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r5, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r5, 0x84, 0x75, &(0x7f0000000040)={0x0, 0xaf1}, 0x8)
bind$inet6(r5, &(0x7f00000002c0)={0xa, 0x4e23, 0x100, @loopback}, 0x1c)
sendmmsg$inet6(r5, &(0x7f0000000200)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x1, @loopback, 0x1}, 0x1c, &(0x7f0000000580)=[{&(0x7f00000003c0)="d7c2a74db04a0956169f0741c41621197219876d1586f46d53df421ba4375ca9c9d927bbf98f", 0x26}], 0x1}}], 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$VIDIOC_ENUM_FREQ_BANDS(0xffffffffffffffff, 0xc0405665, 0x0)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r5, 0x84, 0x77, &(0x7f0000000380)=ANY=[@ANYRES32=0x0, @ANYBLOB="ff"], 0x8)

3.198147294s ago: executing program 6 (id=8816):
mbind(&(0x7f0000ff8000/0x8000)=nil, 0x8000, 0x2, 0x0, 0xc, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000850619fbb7c75150926b00000000", @ANYRES32=r3, @ANYBLOB="fe000000000000001c0012000c000100626f6e64000000000c0002000800010004"], 0x3c}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
r6 = socket(0x1, 0x803, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=ANY=[@ANYBLOB="500000001000110f00"/20, @ANYRES32=0x0, @ANYBLOB="040100000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB=' \x00\x00\x00 \x00\x00\x00\b\x00\n\x00', @ANYRES32=r7], 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

2.856043848s ago: executing program 7 (id=8817):
syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0x8000}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002078316e00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000006000000850000000500000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r4 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
ioctl$sock_bt_hidp_HIDPCONNADD(r4, 0x400448c8, &(0x7f0000000280)={r5, r5, 0x201, 0xfffffffb, 0x0, 0x9, 0x1, 0x163f, 0x5505, 0xc3b8, 0x1, 0x0, 'syz0\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r3}, 0x10)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000500)=ANY=[@ANYRES32=0x0, @ANYRES32], 0x48)
setrlimit(0xd, &(0x7f00000000c0)={0x7, 0x1})
setgroups(0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x2800000, &(0x7f0000000140)={[{@debug}, {@delalloc}, {@journal_ioprio}, {@test_dummy_encryption}, {@nodiscard}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@nodiscard}, {@abort}]}, 0x1, 0xbb4, &(0x7f00000017c0)="$eJzs3M1rXOUaAPDnnHy2zb2TXi6X27tpLpdLC+I0raTYIthKxY0LQbdCQzopIdMPkkhNmsVE/wFR14IbQS1KF3bdjYJbN1q3FhdCkdgoiGjkzEeSJjNJ2k5yYvL7wZvzvvOcOe/z5DBzzgszE8CeNZD9SSMORcT5JKJQfzyNiO5qrzeiUttvYX525Jf52ZEkFhdf/jGJJCLuz8+ONI6V1LcH6oPeiPjquST+8ebaeSenZ8aHy+XSRH18bOrS1WOT0zNPjl0avli6WLp8/OTTQyeGTg6eGmpbrb9+d+bWz/994fvKbx/9fuOndz5I4kz01WMr66hX/dgGYmDpf7JSZ0QMt+H4O0FHvZ6VdSadGzwp3eKkAABoKV1xD/evKERHLN+8FeLzr3NNDgAAAGiLxY6IRQAAAGCXS6z/AQAAYJdrfA7g/vzsSKPl+4mE7XXvbET01+pfqLdapDMq1W1vdEXE/vtJrPxaa1J72mMbiIi73576NGvR5HvIW60yFxH/bnb+k2r9/fVvQq+uP42IwTbMP7Bq/Feq/0wb5s+7fgD2pttnaxeytde/dOn+J5pc/zqbXLseRd7Xv8b938Ka+7/l+jta3P+9tMk5rn/43rVWsaz+Z249/0mjZfNn28cq6iHcm4v4T2ez+pOl+pMW9Z/f5ByFP66VWsXyrn/x/Ygj0bz+hmT93yc6NjpWLg3W/jadY+7LoY9bzZ93/dn539+i/o3O/9UHjtT6R31ePXfuZqvYxvWnP3Qnr1R73fVHXh+empo4HtGdvLj28RPr19vYp3GMrP6j/1v/9d+s/uw9oVL/P2SVz9W32fiNVXM+e+P6Z+vVn6398jz/Fx7x/L+1yTn+/8XbR1vFVq5/s5bNfzeprYUBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoCGNiL5I0mJEJNV+mhaLEQci4p+xPy1fmZx6YvTKa5cvZLGI/uhKR8fKpcGIKNTGSTY+Xu0vj0+sGj8VEQcj4t3Cvuq4OHKlfCHv4gEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFhyICL6IkmLEZFGxEIhTYvFvLMCAAAA2q4/7wQAAACALWf9DwAAALuf9T8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABb7ODh23eSiKic3ldtme56rCvXzICtluadAJCbjrwTAHLTmXcCQG4eco3vdgF2oWSDeG/LSE/bcwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABg5zpy6PadJCIqp/dVW6a7Hutq+ozD25gdsJXSvBMActOxXrBz+/IAtp+XOOxdzdf4wF6SbBDvXd6n8mCkZ8tyAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGDn6au2JC1GRFrtp2mxGPG3iOiPrmR0rFwajIi/R8Q3ha6ebNyTd9IAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC03eT0zPhwuVya0NHRybeT7Iw0ap2835kAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMjD5PTM+HC5XJqYzDsTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIG+T0zPjw+VyaWITnZsPs/OKTt41AgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACQnz8DAAD//9b4DfQ=")
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x4800, 0x0, 0x0, 0x0, &(0x7f0000000240))
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000001dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

1.582690624s ago: executing program 6 (id=8818):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./bus\x00', 0x2000082, &(0x7f0000000880)=ANY=[@ANYBLOB="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"], 0x25, 0x358, &(0x7f0000000480)="$eJzs3T9oXHUcAPDv9aW5JFhzg1B0Ot0EKU3EQaeEUqGYQSuH/xYPm/ondxZyeBCHXG5RipPiIujk1kHHzuIg4ubgagWpiovdCg0+ubt3/+/sBbxY8fMZwpfv7/d9v+97eeS9hOSXVxuxc+lkXL5162YsLeViYePcRtzORSFORBIdBzHRB4uT8wDAPe52msYfacfdZ3+00o08+wHgv6v9/H/9VD+RP0Lx1fvm0RIAMGczfv//7MTslbm1BQDM0djz/5Gh4ZEf8y/0fiegY3n+DQIA/7jnX3r5mc2tiIvF4lJE9f16qV6Kp/rjm5fjzajEdpyN1TiM6LwodN4WWh+fvrB1/myx5ZdClFoV9VJEtVEvdd4UNpN2fT7WYjUKWX3aq09a9Wvt+mJEHDTa60c1Vy+djJVs/R9XYjvWYzUeGKuPuLB1fr2YHaBU7dY3Ipqx1D2JVv9nYjW+fy2uRCUuRau23//+WrF4Lt0aqq9fy7fnAQAAAAAAAAAAAAAAAAAAAADAPJwp9hR6+9+k1Ub9vYujEwpD++OUOsPZ/kDNzv5Aab67O8/VZHR/oOH9eeqlhTjxr545AAAAAAAAAAAAAAAAAAAA3Dtqe4tRrlS2d2t77+4MBo2BzNvffvH1cnSHFrLSt5J+VWTJoeN0Jw4cOYneEmmvPE2G5mRBEtGdfFC+dr3X8eCcfO8sxspbQX5sKJf1VK5UTj3886eTqv5sBQftTBJjl2U4yGXrDwxV728lliLicFrV9GD9LnNupGk6rXz/k9FMthVD48htzBB8c/ONBx+vnX6infkqW+nRx1ZfuPHx57/tlCvR7FyZSmVxt3aYznDkyEWMDyUD908uu865CXfC5KDZzzR3a3vl5IffX3zow+9GJieT7590MPPO9LW+HM0sdoJcRKF7Ef6u1ZMTbv7JwSt3enfv0T9xpz/bKF/f/+nXWasGvkjYqAMAAAAAAAAAAAAAAAAAAI5F/49+RwbSNG1MrXryubk3BgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADHqP///weC5lhmluBOI8aH8tu7tamLLx/rqQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8D/2VwAAAP//wGN9HA==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000200)=""/179, 0xb3)

1.244454087s ago: executing program 7 (id=8819):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x404, &(0x7f0000000400)={[{@errors_remount}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@barrier}, {@grpjquota}, {@quota}]}, 0x1, 0x42f, &(0x7f0000000940)="$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")
r1 = creat(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x192)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(0xffffffffffffffff, 0xc0505350, 0x0)
r3 = socket(0xa, 0x1, 0x0)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f00000001c0)={0x3, {{0xa, 0x4e24, 0x2, @mcast1, 0xff7ffffd}}, {{0xa, 0x4e08, 0x4a3, @local, 0x4f1}}}, 0x108)
setsockopt$inet6_MCAST_MSFILTER(r3, 0x29, 0x30, &(0x7f0000001a00)=ANY=[@ANYBLOB="03000000000000000a004e2300000010ff010000000000000000000000000001f8ffffff00"/117], 0x610)
write$cgroup_type(r1, &(0x7f0000000200), 0x175d9003)
connect$pppl2tp(r0, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r0, 0x8, 0x0, 0x0, 0x0, {0xa, 0x1, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x32)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000140)='./file2\x00', 0x0, &(0x7f0000000500)=ANY=[@ANYRES16=0x0, @ANYRES8, @ANYRES8=0x0, @ANYBLOB="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", @ANYRES16], 0xfe, 0x1518, &(0x7f00000022c0)="$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")
mkdir(0x0, 0x0)
rename(&(0x7f0000000000)='./bus/file0\x00', &(0x7f0000000040)='./file0\x00')

1.243129277s ago: executing program 5 (id=8820):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x5, 0x4, 0x4, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="17fa00000000090000000400000000001c110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000007d00000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000000000850000000700000018", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYRES32=r0], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xd, &(0x7f0000000040)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10)
syz_clone(0x2100a400, 0x0, 0x0, 0x0, 0x0, 0x0)

937.442717ms ago: executing program 0 (id=8821):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0500000004000000080000000a"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x3, &(0x7f0000001300)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x94)

866.352144ms ago: executing program 6 (id=8822):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x9, 0x4, 0xdd, 0xa}, 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x1fffffffffffffcd, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x18, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000100)='GPL\x00', 0x4}, 0x94)

865.298955ms ago: executing program 5 (id=8823):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r1=>0x0})
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r2, 0x0, 0xc8, &(0x7f0000000180), 0x4)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
socket$unix(0x1, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$MRT_ADD_MFC_PROXY(r2, 0x0, 0xd2, &(0x7f0000000040)={@broadcast, @multicast1, 0x1, "0d5011f02b7fab96e0aa834d3a9e7cfc12178ac0ab1e6227c2b6ddaa5effda90", 0x5, 0x16, 0xfffffffe, 0x1}, 0x3c)
r6 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC_PROXY(r6, 0x0, 0xd2, &(0x7f0000000000)={@broadcast, @multicast1, 0x0, "12ceaac82ab7d944e84b6fbd6178697e3b10c9b81bede26c85ee73daab4158e8", 0x2, 0x6, 0x4, 0x4}, 0x3c)
setsockopt$MRT_FLUSH(r6, 0x0, 0xd4, &(0x7f0000000100)=0xe, 0x4)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x14, r1})
setsockopt$inet6_mreq(r0, 0x29, 0x1c, &(0x7f0000000180)={@remote, r1}, 0x14)

94.66792ms ago: executing program 6 (id=8824):
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={0xffffffffffffffff, 0xfeffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000140)="06ff", 0x0}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000840)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000011000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x51, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000300)='sys_enter\x00', r2}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r0, 0xfeffff, 0x113, 0x3f00f000, &(0x7f0000000700)="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", 0x0, 0xf0, 0x0, 0x4a, 0xffffff0c}, 0x40)

0s ago: executing program 0 (id=8825):
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r1 = socket$unix(0x1, 0x2, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
connect$unix(r2, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmmsg(r2, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0, 0xffffffffffffff2c}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r3 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0xa, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x800, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0xd}, {0xe, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r3, 0x2219, 0x7721, 0x16, 0x0, 0x0)
connect$unix(r1, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
ppoll(&(0x7f0000000140)=[{r1, 0x4236}], 0x1, 0x0, 0x0, 0x0)
close(r0)

kernel console output (not intermixed with test programs):

2c Bus Busy Wait 00
[ 1217.602718][T13098] gspca_vc032x: I2c Bus Busy Wait 00
[ 1217.608410][T13098] gspca_vc032x: I2c Bus Busy Wait 00
[ 1217.628854][T13098] gspca_vc032x: Unknown sensor...
[ 1217.634380][T13098] vc032x: probe of 7-1:0.0 failed with error -22
[ 1217.661735][T13098] usb 7-1: USB disconnect, device number 4
[ 1218.085368][T24985] virtio-fs: tag </dev/md0> not found
[ 1219.277606][T24991] team0: Port device bond0 removed
[ 1219.835044][T25010] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6564'.
[ 1220.180582][T25020] fuse: Bad value for 'fd'
[ 1221.227580][T25049] team0: Port device bond0 removed
[ 1221.327256][T25054] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6583'.
[ 1222.770471][T25092] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1223.474028][T25115] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6608'.
[ 1226.391269][T25190] fuse: Bad value for 'fd'
[ 1227.410278][T25192] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1227.446736][T25192] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1227.466417][T25192] bond0 (unregistering): Released all slaves
[ 1227.497265][T25209] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6646'.
[ 1227.833351][T25220] fuse: Bad value for 'fd'
[ 1229.586153][   T28] audit: type=1326 audit(1760773898.831:784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25255 comm="syz.5.6667" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5059b8efc9 code=0x0
[ 1229.704389][   T28] audit: type=1326 audit(1760773898.967:785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25257 comm="syz.6.6668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e47f8efc9 code=0x7ffc0000
[ 1229.788044][   T28] audit: type=1326 audit(1760773898.967:786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25257 comm="syz.6.6668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e47f8efc9 code=0x7ffc0000
[ 1229.870985][   T28] audit: type=1326 audit(1760773899.009:787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25257 comm="syz.6.6668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7f8e47f8efc9 code=0x7ffc0000
[ 1229.928188][   T28] audit: type=1326 audit(1760773899.009:788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25257 comm="syz.6.6668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e47f8efc9 code=0x7ffc0000
[ 1229.954484][   T28] audit: type=1326 audit(1760773899.009:789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25257 comm="syz.6.6668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7f8e47f8efc9 code=0x7ffc0000
[ 1230.024233][   T28] audit: type=1326 audit(1760773899.009:790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25257 comm="syz.6.6668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e47f8efc9 code=0x7ffc0000
[ 1230.101557][   T28] audit: type=1326 audit(1760773899.009:791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25257 comm="syz.6.6668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e47f8efc9 code=0x7ffc0000
[ 1230.487074][   T28] audit: type=1326 audit(1760773899.786:792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25280 comm="syz.5.6678" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5059b8efc9 code=0x0
[ 1230.600153][T25285] A link change request failed with some changes committed already. Interface veth0_to_team may have been left with an inconsistent configuration, please check.
[ 1232.071852][T25308] loop6: detected capacity change from 0 to 2048
[ 1233.649735][T25345] loop6: detected capacity change from 0 to 8192
[ 1233.726783][T25345] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1235.204527][T25391] overlayfs: failed to clone upperpath
[ 1235.249269][T25391] overlayfs: failed to clone upperpath
[ 1236.845247][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1236.851721][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1237.639484][T25423] bridge0: the hash_elasticity option has been deprecated and is always 16
[ 1238.923647][T25445] netlink: 'syz.0.6746': attribute type 1 has an invalid length.
[ 1239.085805][T25448] bond0: (slave ip6gretap1): Enslaving as a backup interface with an up link
[ 1239.255682][   T28] audit: type=1326 audit(1760773909.003:793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25435 comm="syz.5.6742" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5059b8efc9 code=0x7ffc0000
[ 1239.313311][   T28] audit: type=1326 audit(1760773909.003:794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25435 comm="syz.5.6742" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5059b8efc9 code=0x7ffc0000
[ 1239.391388][T25445] veth3: entered promiscuous mode
[ 1239.421496][T25445] bond0: (slave veth3): Enslaving as a backup interface with a down link
[ 1240.047767][T25473] 9pnet_fd: Insufficient options for proto=fd
[ 1240.282403][T25489] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1240.661444][T25446] virtio-fs: tag </dev/md0> not found
[ 1242.220123][T25527] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1242.445118][T25524] virtio-fs: tag </dev/md0> not found
[ 1243.556629][T25546] veth5: entered promiscuous mode
[ 1244.506608][T25552] virtio-fs: tag </dev/md0> not found
[ 1245.453000][T25587] loop2: detected capacity change from 0 to 256
[ 1245.601349][T25591] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1245.611117][ T5887] bond0: Warning: No 802.3ad response from the link partner for any adapters in the bond
[ 1245.635506][T25591] team0: Port device bond0 added
[ 1245.656707][T15070] team0: Failed to send port change of device bond0 via netlink (err -105)
[ 1245.754138][ T5887] bond0: Warning: No 802.3ad response from the link partner for any adapters in the bond
[ 1247.354554][T25627] netlink: 'syz.6.6817': attribute type 1 has an invalid length.
[ 1247.581170][T25632] bond2: (slave ip6gretap1): Enslaving as a backup interface with an up link
[ 1247.783480][T25627] veth3: entered promiscuous mode
[ 1248.973854][T25660] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1250.968477][T25706] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1251.424036][T25722] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1251.439458][T25722] team0: Port device bond0 added
[ 1251.963775][T25742] netlink: 52 bytes leftover after parsing attributes in process `syz.2.6858'.
[ 1252.334957][T25756] netlink: 'syz.6.6870': attribute type 1 has an invalid length.
[ 1252.404299][T25756] veth3: entered promiscuous mode
[ 1252.623448][T25766] netlink: 52 bytes leftover after parsing attributes in process `syz.0.6873'.
[ 1255.120528][T25854] netlink: 'syz.6.6908': attribute type 1 has an invalid length.
[ 1255.181435][T25854] veth3: entered promiscuous mode
[ 1255.190666][T25854] bond4: (slave veth3): Enslaving as a backup interface with a down link
[ 1255.265693][T25861] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6910'.
[ 1255.428669][T25867] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1255.453047][T20410] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1255.460378][T20410] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1255.988746][T25874] virtio-fs: tag </dev/md0> not found
[ 1256.620854][T25899] xt_CT: No such helper "netbios-ns"
[ 1257.344526][T25915] virtio-fs: tag </dev/md0> not found
[ 1257.631362][T25926] netlink: 16 bytes leftover after parsing attributes in process `syz.5.6938'.
[ 1257.800481][T25928] overlayfs: disabling nfs_export due to verity=on
[ 1257.806482][ T1140] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1257.837480][T25928] overlayfs: conflicting options: userxattr,redirect_dir=on
[ 1257.982741][ T1140] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1258.131389][ T1140] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1258.223190][ T1140] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1259.088554][ T5793] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1259.105793][ T5793] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1259.119337][ T5793] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1259.133678][ T5793] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1259.149236][ T5793] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1259.174073][ T5793] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1259.558253][T25959] virtio-fs: tag </dev/md0> not found
[ 1259.658704][T25964] netlink: 16 bytes leftover after parsing attributes in process `syz.5.6949'.
[ 1260.406785][T25955] chnl_net:caif_netlink_parms(): no params data found
[ 1260.692854][T25955] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1260.704117][T25955] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1260.717410][T25955] bridge_slave_0: entered allmulticast mode
[ 1260.727441][T25955] bridge_slave_0: entered promiscuous mode
[ 1260.859161][T25955] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1260.867267][T25955] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1260.876555][T25955] bridge_slave_1: entered allmulticast mode
[ 1260.886513][T25955] bridge_slave_1: entered promiscuous mode
[ 1260.953254][ T1140] hsr_slave_0: left promiscuous mode
[ 1260.968590][ T1140] hsr_slave_1: left promiscuous mode
[ 1261.007563][ T1140] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1261.031090][ T1140] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1261.145620][ T1140] bond0: left allmulticast mode
[ 1261.150567][ T1140] bond_slave_0: left allmulticast mode
[ 1261.170827][ T1140] bond_slave_1: left allmulticast mode
[ 1261.185971][ T1140] bond0: left promiscuous mode
[ 1261.193692][ T5793] Bluetooth: hci0: command tx timeout
[ 1261.214462][ T1140] bond_slave_0: left promiscuous mode
[ 1261.220202][ T1140] bond_slave_1: left promiscuous mode
[ 1261.237216][ T1140] veth1_macvtap: left promiscuous mode
[ 1261.243220][ T1140] veth0_macvtap: left promiscuous mode
[ 1261.249397][ T1140] veth1_vlan: left promiscuous mode
[ 1261.254777][ T1140] veth0_vlan: left promiscuous mode
[ 1262.047069][T26018] virtio-fs: tag </dev/md0> not found
[ 1262.884445][ T1140] team0 (unregistering): Port device team_slave_1 removed
[ 1262.974313][ T1140] team0 (unregistering): Port device team_slave_0 removed
[ 1263.052747][ T1140] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1263.132256][ T1140] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1263.183120][ T5793] Bluetooth: hci0: command tx timeout
[ 1264.050653][ T1140] bond0 (unregistering): Released all slaves
[ 1264.120844][T26009] netlink: 'syz.5.6959': attribute type 1 has an invalid length.
[ 1264.176331][T26012] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6958'.
[ 1264.205937][T26014] veth3: entered promiscuous mode
[ 1264.218956][T26014] bond1: (slave veth3): Enslaving as a backup interface with a down link
[ 1264.306603][T26024] fuse: Bad value for 'fd'
[ 1264.319269][T25955] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1264.339906][T25955] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1264.525048][T26030] overlayfs: failed to clone upperpath
[ 1264.594124][T25955] team0: Port device team_slave_0 added
[ 1264.637688][T25955] team0: Port device team_slave_1 added
[ 1264.763084][T25955] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1264.776890][T25955] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1264.835811][T25955] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1264.889494][T25955] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1264.896526][T25955] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1264.964363][T25955] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1265.086525][T26041] netlink: 16 bytes leftover after parsing attributes in process `syz.6.6968'.
[ 1265.157064][ T5793] Bluetooth: hci0: command tx timeout
[ 1265.166025][T25955] hsr_slave_0: entered promiscuous mode
[ 1265.202877][T25955] hsr_slave_1: entered promiscuous mode
[ 1265.263873][ T1140] IPVS: stop unused estimator thread 0...
[ 1265.395644][T26049] netlink: 'syz.6.6969': attribute type 1 has an invalid length.
[ 1265.644681][T26049] veth5: entered promiscuous mode
[ 1265.693639][T26049] bond5: (slave veth5): Enslaving as a backup interface with a down link
[ 1266.319807][T26070] virtio-fs: tag </dev/md0> not found
[ 1266.810078][T25955] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1266.858485][T25955] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1266.930324][T25955] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1266.968323][T25955] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1267.004641][T26076] netlink: 16 bytes leftover after parsing attributes in process `syz.5.6976'.
[ 1267.126560][ T5793] Bluetooth: hci0: command tx timeout
[ 1267.279806][   T28] audit: type=1326 audit(1760773938.419:795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26087 comm="syz.5.6977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5059b8efc9 code=0x7ffc0000
[ 1267.316636][   T28] audit: type=1326 audit(1760773938.419:796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26087 comm="syz.5.6977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5059b8efc9 code=0x7ffc0000
[ 1267.549136][T25955] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1267.578145][T25955] 8021q: adding VLAN 0 to HW filter on device team0
[ 1267.600695][ T6465] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1267.607952][ T6465] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1267.652743][ T1140] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1267.659978][ T1140] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1268.168680][T26114] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6984'.
[ 1268.533534][T25955] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1269.685308][T26154] virtio-fs: tag </dev/md0> not found
[ 1270.310640][T25955] veth0_vlan: entered promiscuous mode
[ 1270.343934][T25955] veth1_vlan: entered promiscuous mode
[ 1270.463206][T25955] veth0_macvtap: entered promiscuous mode
[ 1270.547770][T25955] veth1_macvtap: entered promiscuous mode
[ 1270.595815][T26169] fuse: Bad value for 'rootmode'
[ 1270.651369][T25955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1270.689177][T25955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1270.726314][T25955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1270.755689][T25955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1270.775012][T25955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1270.812954][T25955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1270.832351][T25955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1270.861535][T25955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1270.879608][T25955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1270.898084][T25955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1270.933618][T25955] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1271.007673][T26175] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6999'.
[ 1271.126128][T25955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1271.161740][T25955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1271.194084][T25955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1271.214619][T25955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1271.238185][T25955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1271.254710][T25955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1271.264943][T25955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1271.276303][T25955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1271.288503][T25955] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1271.387253][T25955] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1271.403536][T25955] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1271.422829][T25955] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1271.433703][T25955] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1272.079532][T26194] virtio-fs: tag </dev/md0> not found
[ 1272.335726][ T5887] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1272.394116][ T5887] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1272.565444][T26196] fuse: Bad value for 'rootmode'
[ 1272.788496][ T1140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1272.812328][ T1140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1273.284350][   T28] audit: type=1326 audit(1760773944.717:797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26214 comm="syz.5.7012" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5059b8efc9 code=0x0
[ 1273.674780][T26226] fuse: Bad value for 'rootmode'
[ 1274.574020][T26239] virtio-fs: tag </dev/md0> not found
[ 1277.807232][ T5795] Bluetooth: hci2: command 0x0406 tx timeout
[ 1280.959270][T26407] loop7: detected capacity change from 0 to 1764
[ 1281.432249][T26407] loop7: detected capacity change from 0 to 16
[ 1281.462202][T26407] erofs: (device loop7): mounted with root inode @ nid 36.
[ 1282.023443][ T5829] IPVS: starting estimator thread 0...
[ 1282.159427][T26410] IPVS: using max 15 ests per chain, 36000 per kthread
[ 1282.870715][T26432] "syz.5.7079" (26432) uses obsolete ecb(arc4) skcipher
[ 1283.163594][   T28] audit: type=1326 audit(1760773955.089:798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26439 comm="syz.7.7083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cbb8efc9 code=0x7ffc0000
[ 1283.253636][   T28] audit: type=1326 audit(1760773955.121:799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26439 comm="syz.7.7083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cbb8efc9 code=0x7ffc0000
[ 1283.339132][   T28] audit: type=1326 audit(1760773955.121:800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26439 comm="syz.7.7083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cbb8efc9 code=0x7ffc0000
[ 1283.403471][   T28] audit: type=1326 audit(1760773955.121:801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26439 comm="syz.7.7083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cbb8efc9 code=0x7ffc0000
[ 1283.435315][T26444] netlink: 28 bytes leftover after parsing attributes in process `syz.7.7085'.
[ 1283.501873][   T28] audit: type=1326 audit(1760773955.121:802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26439 comm="syz.7.7083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f07cbb8efc9 code=0x7ffc0000
[ 1283.596372][   T28] audit: type=1326 audit(1760773955.121:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26439 comm="syz.7.7083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cbb8efc9 code=0x7ffc0000
[ 1283.691676][   T28] audit: type=1326 audit(1760773955.121:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26439 comm="syz.7.7083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cbb8efc9 code=0x7ffc0000
[ 1283.758574][   T28] audit: type=1326 audit(1760773955.121:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26439 comm="syz.7.7083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cbb8efc9 code=0x7ffc0000
[ 1283.844226][   T28] audit: type=1326 audit(1760773955.121:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26439 comm="syz.7.7083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f07cbb8efc9 code=0x7ffc0000
[ 1283.914855][   T28] audit: type=1326 audit(1760773955.121:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26439 comm="syz.7.7083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07cbb8efc9 code=0x7ffc0000
[ 1283.987487][T26457] "syz.7.7091" (26457) uses obsolete ecb(arc4) skcipher
[ 1284.036107][T26460] 9pnet_fd: Insufficient options for proto=fd
[ 1284.363101][T26470] netlink: 28 bytes leftover after parsing attributes in process `syz.5.7096'.
[ 1284.856327][T26488] "syz.5.7101" (26488) uses obsolete ecb(arc4) skcipher
[ 1285.242156][T26499] 9pnet_fd: Insufficient options for proto=fd
[ 1286.275392][T26523] 9pnet_fd: Insufficient options for proto=fd
[ 1286.827106][T26537] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1286.849076][T26537] team0: Port device bond0 added
[ 1288.229232][ T5795] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1288.243288][ T5795] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1288.258189][ T5795] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1288.279769][ T5795] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1288.289214][ T5795] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 1288.302110][ T5795] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1289.448996][ T6465] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1289.561066][T26577] chnl_net:caif_netlink_parms(): no params data found
[ 1289.762328][ T6465] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1289.986782][T26617] loop7: detected capacity change from 0 to 8192
[ 1290.019349][ T6465] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1290.057013][T26617] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1290.180547][T26577] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1290.209344][T26577] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1290.377378][ T5795] Bluetooth: hci4: command tx timeout
[ 1290.411191][T26577] bridge_slave_0: entered allmulticast mode
[ 1290.751979][T26577] bridge_slave_0: entered promiscuous mode
[ 1291.509534][ T6465] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1291.563291][T26577] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1291.598132][T26577] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1291.605444][T26577] bridge_slave_1: entered allmulticast mode
[ 1291.643418][T26577] bridge_slave_1: entered promiscuous mode
[ 1291.766448][T26577] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1291.843964][T26577] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1291.986090][T26577] team0: Port device team_slave_0 added
[ 1292.039094][T26577] team0: Port device team_slave_1 added
[ 1292.291027][ T6465] bond0: (slave ip6gretap1): Removing an active aggregator
[ 1292.305231][ T6465] bond0: (slave ip6gretap1): Releasing backup interface
[ 1292.339443][ T6465] bond0: (slave ip6gretap1): the permanent HWaddr of slave - 5a:e3:27:c9:31:88 - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[ 1292.360025][ T5795] Bluetooth: hci4: command tx timeout
[ 1292.420832][T26577] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1292.457445][T26577] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1292.538034][T26577] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1292.590971][T26577] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1292.615723][T26577] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1292.645062][T26577] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1293.012218][T26577] hsr_slave_0: entered promiscuous mode
[ 1293.028436][T26577] hsr_slave_1: entered promiscuous mode
[ 1293.035399][T26577] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1293.057456][T26577] Cannot create hsr debugfs directory
[ 1294.286282][T26727] fuse: Unknown parameter 'fd0x0000000000000003'
[ 1294.493335][ T5795] Bluetooth: hci4: command tx timeout
[ 1295.332569][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1295.338968][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1296.264160][ T6465] hsr_slave_0: left promiscuous mode
[ 1296.309673][ T6465] hsr_slave_1: left promiscuous mode
[ 1296.334104][ T6465] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1296.385193][ T6465] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1296.391270][T26763] fuse: Unknown parameter 'fd0x0000000000000003'
[ 1296.411588][ T6465] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1296.436106][ T6465] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1296.459304][ T6465] bridge_slave_1: left allmulticast mode
[ 1296.475002][ T5795] Bluetooth: hci4: command tx timeout
[ 1296.484834][ T6465] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1296.515051][ T6465] bridge_slave_0: left allmulticast mode
[ 1296.541276][ T6465] bridge_slave_0: left promiscuous mode
[ 1296.561087][ T6465] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1296.674317][ T6465] veth1_macvtap: left promiscuous mode
[ 1296.921316][ T6465] veth0_macvtap: left promiscuous mode
[ 1296.932648][ T6465] veth1_vlan: left promiscuous mode
[ 1297.005819][T26769] virtio-fs: tag </dev/md0> not found
[ 1297.326150][ T6465] veth0_vlan: left promiscuous mode
[ 1298.184282][ T6465] bond0 (unregistering): (slave veth3): Releasing backup interface
[ 1299.097810][T26793] fuse: Unknown parameter 'fd0x0000000000000003'
[ 1299.106769][ T6465] team0 (unregistering): Port device bond0 removed
[ 1299.129190][ T6465] bond0 (unregistering): Released all slaves
[ 1300.923985][ T6465] team0 (unregistering): Port device team_slave_1 removed
[ 1301.115206][ T6465] team0 (unregistering): Port device team_slave_0 removed
[ 1302.594204][T26577] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1302.643750][T26577] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1302.728012][T26577] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1302.801159][T26577] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1303.136794][ T6465] IPVS: stop unused estimator thread 0...
[ 1303.268225][T26577] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1303.360446][T26577] 8021q: adding VLAN 0 to HW filter on device team0
[ 1303.410888][ T3429] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1303.418152][ T3429] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1303.453911][ T3429] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1303.461214][ T3429] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1304.246067][T26577] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1304.420851][T26577] veth0_vlan: entered promiscuous mode
[ 1304.461229][T26577] veth1_vlan: entered promiscuous mode
[ 1304.565053][T26577] veth0_macvtap: entered promiscuous mode
[ 1304.596719][T26577] veth1_macvtap: entered promiscuous mode
[ 1304.701524][T26577] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1304.733493][T26577] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1304.760647][T26577] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1304.796596][T26577] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1304.825838][T26577] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1304.846056][T26577] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1304.872200][T26577] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1304.892838][T26577] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1304.913064][T26577] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1304.935934][T26577] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1304.964221][T26577] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1304.988833][T26889] netlink: 'syz.7.7222': attribute type 1 has an invalid length.
[ 1305.226849][T26895] veth3: entered promiscuous mode
[ 1305.254972][T26577] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1305.289564][T26577] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1305.314486][T26577] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1305.344998][T26909] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[ 1305.366129][T26577] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1305.408061][T26577] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1305.459496][T26577] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1305.492310][T26577] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1305.524233][T26577] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1305.545553][T26577] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1305.590675][T26577] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1305.611120][T26577] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1305.646415][T26577] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1305.672724][T26577] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1305.985066][ T5887] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1306.038317][ T5887] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1306.134232][T20410] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1306.163683][T20410] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1307.604008][ T5793] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1307.616869][ T5793] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1307.696390][ T5793] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1307.715493][ T5793] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1307.731834][ T5793] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1307.743657][ T5793] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1308.684547][ T5887] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1309.080090][ T5887] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1309.538713][ T5887] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1309.654990][T26969] chnl_net:caif_netlink_parms(): no params data found
[ 1309.726632][ T5793] Bluetooth: hci3: command tx timeout
[ 1309.773377][ T5887] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1309.870038][T27041] veth5: entered promiscuous mode
[ 1310.229681][T26969] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1310.268243][T26969] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1310.305963][T26969] bridge_slave_0: entered allmulticast mode
[ 1310.324624][T26969] bridge_slave_0: entered promiscuous mode
[ 1310.424692][T26969] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1310.466849][T26969] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1310.497031][T26969] bridge_slave_1: entered allmulticast mode
[ 1310.523565][T26969] bridge_slave_1: entered promiscuous mode
[ 1310.665241][T26969] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1310.764682][T26969] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1310.947312][T26969] team0: Port device team_slave_0 added
[ 1311.146886][T26969] team0: Port device team_slave_1 added
[ 1311.352884][T26969] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1311.400422][T26969] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1311.493904][T26969] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1311.662596][T26969] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1311.682303][T26969] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1311.716673][ T5793] Bluetooth: hci3: command tx timeout
[ 1311.768463][T26969] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1312.307395][T26969] hsr_slave_0: entered promiscuous mode
[ 1312.349346][T26969] hsr_slave_1: entered promiscuous mode
[ 1312.376448][T26969] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1312.411236][T26969] Cannot create hsr debugfs directory
[ 1313.696913][ T5793] Bluetooth: hci3: command tx timeout
[ 1314.121820][ T5887] hsr_slave_0: left promiscuous mode
[ 1314.180199][ T5887] hsr_slave_1: left promiscuous mode
[ 1314.250054][ T5887] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1314.295671][ T5887] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1314.339890][ T5887] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1314.373744][ T5887] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1314.413556][ T5887] bridge_slave_1: left promiscuous mode
[ 1314.419418][ T5887] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1314.486462][ T5887] bridge_slave_0: left allmulticast mode
[ 1314.509072][ T5887] bridge_slave_0: left promiscuous mode
[ 1314.514985][ T5887] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1314.637980][ T5887] veth1_macvtap: left promiscuous mode
[ 1314.657636][ T5887] veth0_macvtap: left promiscuous mode
[ 1314.679014][ T5887] veth1_vlan: left promiscuous mode
[ 1314.684459][ T5887] veth0_vlan: left promiscuous mode
[ 1315.446611][T27155] loop0: detected capacity change from 0 to 1764
[ 1315.718967][ T5793] Bluetooth: hci3: command tx timeout
[ 1316.098952][T26945] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1316.172125][T27155] loop0: detected capacity change from 0 to 16
[ 1316.216668][ T5860] IPVS: starting estimator thread 0...
[ 1316.254254][T27155] erofs: (device loop0): mounted with root inode @ nid 36.
[ 1316.688184][T27158] IPVS: using max 17 ests per chain, 40800 per kthread
[ 1316.939078][ T5887] bond1 (unregistering): (slave veth3): Releasing backup interface
[ 1317.048501][ T5887] bond1 (unregistering): Released all slaves
[ 1318.747201][ T5887] team0 (unregistering): Port device team_slave_1 removed
[ 1318.855315][ T5887] team0 (unregistering): Port device team_slave_0 removed
[ 1318.960715][ T5887] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1319.054626][ T5887] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1320.036453][ T5887] team0 (unregistering): Port device bond0 removed
[ 1320.406285][ T5887] bond0 (unregistering): Released all slaves
[ 1320.798138][T27171] veth3: entered promiscuous mode
[ 1321.369598][T26969] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1321.409346][T26969] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1321.452080][T26969] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1321.590618][T26969] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1321.814927][ T5887] IPVS: stop unused estimator thread 0...
[ 1322.182674][T27271] netlink: 592 bytes leftover after parsing attributes in process `syz.0.7328'.
[ 1322.310607][T27273] veth7: entered promiscuous mode
[ 1322.477013][T26969] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1322.641300][T26969] 8021q: adding VLAN 0 to HW filter on device team0
[ 1322.737329][ T6465] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1322.744575][ T6465] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1322.815704][ T6465] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1322.822969][ T6465] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1323.140656][T26969] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1323.510799][T27305] netlink: 592 bytes leftover after parsing attributes in process `syz.7.7337'.
[ 1324.670178][T26969] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1325.214282][T27344] netlink: 592 bytes leftover after parsing attributes in process `syz.0.7346'.
[ 1325.353098][T26969] veth0_vlan: entered promiscuous mode
[ 1326.368913][T26969] veth1_vlan: entered promiscuous mode
[ 1326.512339][T26969] veth0_macvtap: entered promiscuous mode
[ 1326.544934][T26969] veth1_macvtap: entered promiscuous mode
[ 1326.635268][T26969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1326.657580][T26969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1326.669016][T26969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1326.692565][T26969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1326.708557][T26969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1326.737677][T26969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1326.759264][T26969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1326.772128][T26969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1326.789015][T26969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1326.800048][T26969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1326.832201][T26969] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1326.878011][T26969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1326.899446][T26969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1326.925232][T26969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1326.936959][T26969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1326.961814][T26969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1326.983034][T26969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1327.004670][T26969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1327.022058][T26969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1327.054679][T26969] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1327.097758][T26969] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1327.108655][T26969] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1327.146463][T26969] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1327.175670][T26969] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1327.386712][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1327.394664][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1327.470549][ T1140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1327.486360][ T1140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1327.733367][T27371] veth7: entered promiscuous mode
[ 1328.330602][T27388] loop5: detected capacity change from 0 to 8192
[ 1328.383241][T27388] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1328.422985][   T28] kauditd_printk_skb: 25 callbacks suppressed
[ 1328.423001][   T28] audit: type=1800 audit(1760774002.593:833): pid=27388 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.7365" name="file1" dev="loop5" ino=1049032 res=0 errno=0
[ 1331.113261][T27462] veth3: entered promiscuous mode
[ 1340.194996][T27732] netlink: 28 bytes leftover after parsing attributes in process `syz.6.7522'.
[ 1340.262426][T27732] veth7: entered promiscuous mode
[ 1341.544829][T27756] netlink: 28 bytes leftover after parsing attributes in process `syz.5.7532'.
[ 1341.669007][T27761] veth3: entered promiscuous mode
[ 1343.958482][T27801] loop0: detected capacity change from 0 to 1024
[ 1343.963447][T27803] loop7: detected capacity change from 0 to 16
[ 1343.980164][T27801] EXT4-fs: Ignoring removed orlov option
[ 1343.997658][T27803] erofs: (device loop7): mounted with root inode @ nid 36.
[ 1344.058221][T27805] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1344.071027][T27801] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1344.193619][T27801] EXT4-fs (loop0): Online resizing not supported with bigalloc
[ 1344.370002][T26577] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1345.763323][T27836] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1346.001766][T27842] loop0: detected capacity change from 0 to 1024
[ 1346.027093][T27842] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[ 1346.096726][T27842] EXT4-fs (loop0): revision level too high, forcing read-only mode
[ 1346.140569][T27842] EXT4-fs (loop0): orphan cleanup on readonly fs
[ 1346.200488][T27842] EXT4-fs error (device loop0): ext4_free_blocks:6676: comm syz.0.7567: Freeing blocks not in datazone - block = 0, count = 4096
[ 1346.231511][T27849] netlink: 'syz.7.7572': attribute type 4 has an invalid length.
[ 1346.312158][T27842] EXT4-fs (loop0): 1 orphan inode deleted
[ 1346.334038][T27842] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1346.522631][T26577] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1347.525584][T27888] loop7: detected capacity change from 0 to 1024
[ 1347.888370][T27894] loop5: detected capacity change from 0 to 1764
[ 1348.191754][T27898] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1348.319778][T26822] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1348.376729][T27894] loop5: detected capacity change from 0 to 16
[ 1348.522819][ T1193] IPVS: starting estimator thread 0...
[ 1348.618111][T27899] IPVS: using max 17 ests per chain, 40800 per kthread
[ 1348.709284][T27894] erofs: (device loop5): mounted with root inode @ nid 36.
[ 1349.670447][ T5887] hfsplus: b-tree write err: -5, ino 3
[ 1349.717845][T25955] hfsplus: node 4:3 still has 1 user(s)!
[ 1349.926158][T27925] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7599'.
[ 1350.136419][T27931] veth3: entered promiscuous mode
[ 1350.659352][T27952] loop0: detected capacity change from 0 to 128
[ 1350.711657][T27952] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1350.759241][T27952] ext4 filesystem being mounted at /97/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1350.767143][T27957] loop7: detected capacity change from 0 to 1024
[ 1350.874367][T27957] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1351.214181][T26577] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1351.729206][T27979] netlink: 'syz.5.7619': attribute type 4 has an invalid length.
[ 1352.012871][T25955] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1353.037685][ T1193] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[ 1353.247357][ T1193] usb 8-1: Using ep0 maxpacket: 16
[ 1353.273063][ T1193] usb 8-1: config 0 has an invalid interface number: 29 but max is 0
[ 1353.290228][ T1193] usb 8-1: config 0 has no interface number 0
[ 1353.310679][ T1193] usb 8-1: config 0 interface 29 altsetting 0 bulk endpoint 0xA has invalid maxpacket 16
[ 1353.355621][ T1193] usb 8-1: config 0 interface 29 altsetting 0 endpoint 0x82 has invalid maxpacket 1104, setting to 1024
[ 1353.405894][ T1193] usb 8-1: config 0 interface 29 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 1024
[ 1353.476724][ T1193] usb 8-1: New USB device found, idVendor=050d, idProduct=2102, bcdDevice=70.d0
[ 1353.518383][ T1193] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1353.550266][ T1193] usb 8-1: Product: syz
[ 1353.562098][ T1193] usb 8-1: Manufacturer: syz
[ 1353.582334][ T1193] usb 8-1: SerialNumber: syz
[ 1353.610951][ T1193] usb 8-1: config 0 descriptor??
[ 1353.616829][T28012] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[ 1353.629827][T28012] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[ 1353.860102][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1353.872373][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1353.916229][ T5793] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[ 1353.922289][T28032] loop5: detected capacity change from 0 to 2048
[ 1353.926887][ T5793] CPU: 1 PID: 5793 Comm: kworker/u5:2 Not tainted syzkaller #0
[ 1353.940693][ T5793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1353.950798][ T5793] Workqueue: hci2 hci_rx_work
[ 1353.955535][ T5793] Call Trace:
[ 1353.958836][ T5793]  <TASK>
[ 1353.961799][ T5793]  dump_stack_lvl+0x16c/0x230
[ 1353.966521][ T5793]  ? show_regs_print_info+0x20/0x20
[ 1353.971755][ T5793]  ? load_image+0x3b0/0x3b0
[ 1353.976302][ T5793]  sysfs_create_dir_ns+0x256/0x280
[ 1353.981458][ T5793]  ? hci_rx_work+0x43a/0xd80
[ 1353.986095][ T5793]  ? sysfs_warn_dup+0xa0/0xa0
[ 1353.990818][ T5793]  ? do_raw_spin_unlock+0x121/0x230
[ 1353.996054][ T5793]  kobject_add_internal+0x6b8/0xc70
[ 1354.001292][ T5793]  kobject_add+0x156/0x220
[ 1354.005747][ T5793]  ? __rwlock_init+0x150/0x150
[ 1354.010546][ T5793]  ? kobject_init+0x1e0/0x1e0
[ 1354.015287][ T5793]  ? _raw_spin_unlock+0x28/0x40
[ 1354.020196][ T5793]  ? get_device_parent+0x366/0x390
[ 1354.025354][ T5793]  device_add+0x408/0xc20
[ 1354.029730][ T5793]  hci_conn_add_sysfs+0xd5/0x1e0
[ 1354.034711][ T5793]  le_conn_complete_evt+0xf36/0x1500
[ 1354.040027][ T5793]  ? hci_event_packet+0x4a7/0x1210
[ 1354.045188][ T5793]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[ 1354.051473][ T5793]  ? __copy_skb_header+0xa7/0x550
[ 1354.056553][ T5793]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[ 1354.062230][ T5793]  ? skb_pull_data+0xfb/0x200
[ 1354.066948][ T5793]  hci_le_conn_complete_evt+0x187/0x440
[ 1354.072529][ T5793]  ? hci_remote_host_features_evt+0x160/0x160
[ 1354.078631][ T5793]  hci_event_packet+0x795/0x1210
[ 1354.083616][ T5793]  ? bis_list+0x290/0x290
[ 1354.087983][ T5793]  ? lockdep_hardirqs_on+0x98/0x150
[ 1354.093222][ T5793]  ? hci_send_to_monitor+0xd7/0x4f0
[ 1354.098461][ T5793]  hci_rx_work+0x43a/0xd80
[ 1354.102919][ T5793]  ? process_scheduled_works+0x957/0x15b0
[ 1354.108668][ T5793]  process_scheduled_works+0xa45/0x15b0
[ 1354.114271][ T5793]  ? assign_work+0x400/0x400
[ 1354.118925][ T5793]  ? assign_work+0x39e/0x400
[ 1354.123544][ T5793]  worker_thread+0xa55/0xfc0
[ 1354.128187][ T5793]  kthread+0x2fa/0x390
[ 1354.132299][ T5793]  ? pr_cont_work+0x560/0x560
[ 1354.137011][ T5793]  ? kthread_blkcg+0xd0/0xd0
[ 1354.141668][ T5793]  ret_from_fork+0x48/0x80
[ 1354.146121][ T5793]  ? kthread_blkcg+0xd0/0xd0
[ 1354.150739][ T5793]  ret_from_fork_asm+0x11/0x20
[ 1354.155559][ T5793]  </TASK>
[ 1354.160967][ T5793] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[ 1354.175519][ T5793] Bluetooth: hci2: failed to register connection device
[ 1354.339118][T28032] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1354.625856][ T6465] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters
[ 1354.678689][ T6465] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 498 with error 28
[ 1354.741850][ T6465] EXT4-fs (loop5): This should not happen!! Data will be lost
[ 1354.741850][ T6465] 
[ 1354.765470][ T6465] EXT4-fs (loop5): Total free blocks count 0
[ 1354.804559][ T6465] EXT4-fs (loop5): Free/Dirty block details
[ 1354.840861][ T6465] EXT4-fs (loop5): free_blocks=4096
[ 1354.876623][ T6465] EXT4-fs (loop5): dirty_blocks=512
[ 1354.905617][ T6465] EXT4-fs (loop5): Block reservation details
[ 1354.943388][ T6465] EXT4-fs (loop5): i_reserved_data_blocks=32
[ 1355.116060][T26969] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1355.603654][   T28] audit: type=1326 audit(1760774031.137:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28072 comm="syz.5.7655" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd08e78efc9 code=0x0
[ 1356.260543][ T5829] usb 8-1: USB disconnect, device number 2
[ 1356.811851][T28096] input: syz1 as /devices/virtual/input/input6
[ 1359.195903][T28113] loop7: detected capacity change from 0 to 1024
[ 1359.246615][T28113] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[ 1359.317740][T28113] EXT4-fs (loop7): revision level too high, forcing read-only mode
[ 1359.346385][T28113] EXT4-fs (loop7): orphan cleanup on readonly fs
[ 1359.370329][T28113] EXT4-fs error (device loop7): ext4_free_blocks:6676: comm syz.7.7672: Freeing blocks not in datazone - block = 0, count = 4096
[ 1359.468265][T28113] EXT4-fs (loop7): 1 orphan inode deleted
[ 1359.481039][T28113] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1359.620602][T28127] fuse: Bad value for 'fd'
[ 1359.633359][T25955] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1360.890486][T28157] netlink: 'syz.6.7691': attribute type 4 has an invalid length.
[ 1361.820633][T28181] loop7: detected capacity change from 0 to 256
[ 1362.663129][T28187] netlink: 'syz.7.7704': attribute type 4 has an invalid length.
[ 1363.582551][T28212] "syz.7.7712" (28212) uses obsolete ecb(arc4) skcipher
[ 1363.598341][T28212] trusted_key: syz.7.7712 sent an empty control message without MSG_MORE.
[ 1364.848583][T28231] syz_tun: entered allmulticast mode
[ 1364.866278][T28230] syz_tun: left allmulticast mode
[ 1365.070808][T28236] loop7: detected capacity change from 0 to 4096
[ 1365.087003][T28236] EXT4-fs: Ignoring removed bh option
[ 1366.014401][T28244] fuse: Bad value for 'fd'
[ 1366.215671][T28236] EXT4-fs (loop7): Test dummy encryption mode enabled
[ 1366.340364][T28236] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1366.367996][T28236] System zones: 0-5
[ 1366.384699][T28236] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1366.814334][T28236] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[ 1367.076596][T25955] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1367.131719][T28265] Bluetooth: MGMT ver 1.22
[ 1368.084335][T28278] loop7: detected capacity change from 0 to 512
[ 1368.140280][T28278] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[ 1368.167563][T28278] System zones: 0-2, 18-18, 34-34
[ 1368.222120][T28278] EXT4-fs error (device loop7): ext4_validate_block_bitmap:439: comm syz.7.7736: bg 0: block 248: padding at end of block bitmap is not set
[ 1368.272653][T28278] Quota error (device loop7): write_blk: dquota write failed
[ 1368.323486][T28278] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota
[ 1368.371880][T28278] EXT4-fs error (device loop7): ext4_acquire_dquot:6940: comm syz.7.7736: Failed to acquire dquot type 1
[ 1368.392923][T28287] loop0: detected capacity change from 0 to 512
[ 1368.407862][T28287] EXT4-fs: Ignoring removed i_version option
[ 1368.440732][T28287] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[ 1368.457590][T28287] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1368.468032][T28278] EXT4-fs (loop7): 1 truncate cleaned up
[ 1368.475696][T28278] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1368.492055][T28278] ext4 filesystem being mounted at /197/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1368.541545][T28287] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2867: Unable to expand inode 15. Delete some EAs or run e2fsck.
[ 1368.570802][T28287] EXT4-fs (loop0): 1 truncate cleaned up
[ 1368.578072][T28287] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1368.599335][T28287] EXT4-fs error (device loop0): ext4_lookup:1858: inode #16: comm syz.0.7739: iget: bad i_size value: 5497558147880
[ 1368.657241][T25955] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1368.757040][T26577] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1369.514677][T28308] loop0: detected capacity change from 0 to 512
[ 1369.571553][T28308] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1370.237528][T28308] ext4 filesystem being mounted at /141/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1370.293597][T28316] netlink: 'syz.7.7748': attribute type 4 has an invalid length.
[ 1370.818961][T28327] loop7: detected capacity change from 0 to 512
[ 1370.931290][T28327] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1371.051361][T28327] ext4 filesystem being mounted at /201/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1371.254576][T25955] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1371.387749][T28340] loop5: detected capacity change from 0 to 256
[ 1371.918857][T28348] "syz.5.7757" (28348) uses obsolete ecb(arc4) skcipher
[ 1373.127151][T26577] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1373.913241][T28369] loop7: detected capacity change from 0 to 256
[ 1374.618640][T28391] loop5: detected capacity change from 0 to 512
[ 1374.851772][T28391] EXT4-fs (loop5): orphan cleanup on readonly fs
[ 1375.192449][T28391] EXT4-fs warning (device loop5): ext4_xattr_inode_get:559: inode #11: comm syz.5.7776: EA inode hash validation failed
[ 1375.303483][T28391] EXT4-fs warning (device loop5): ext4_expand_extra_isize_ea:2867: Unable to expand inode 15. Delete some EAs or run e2fsck.
[ 1375.348293][T28395] loop7: detected capacity change from 0 to 128
[ 1375.372973][T28391] EXT4-fs (loop5): 1 orphan inode deleted
[ 1375.381447][T28391] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1375.463272][T28395] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1375.516875][T28403] loop0: detected capacity change from 0 to 256
[ 1375.526902][T28395] ext4 filesystem being mounted at /206/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1375.537509][T26969] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1375.733719][T25955] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1376.333906][T28419] netlink: 'syz.5.7787': attribute type 4 has an invalid length.
[ 1377.438006][T28440] Bluetooth: MGMT ver 1.22
[ 1377.932896][T28431] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1377.940751][T28431] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1378.344949][T28458] loop0: detected capacity change from 0 to 512
[ 1378.360849][T28458] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1378.382365][T28458] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1378.413989][T28458] EXT4-fs (loop0): revision level too high, forcing read-only mode
[ 1378.422897][T28458] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=842c01c, mo2=0002]
[ 1378.453722][T28458] EXT4-fs (loop0): couldn't mount RDWR because of unsupported optional features (80)
[ 1378.488449][T28458] EXT4-fs (loop0): Skipping orphan cleanup due to unknown ROCOMPAT features
[ 1378.498732][T28458] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[ 1378.535540][T28458] EXT4-fs warning (device loop0): dx_probe:893: inode #2: comm syz.0.7801: dx entry: limit 65535 != root limit 120
[ 1378.559117][T28458] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.7801: Corrupt directory, running e2fsck is recommended
[ 1378.705149][T26577] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1379.364350][T28471] binder: BC_ACQUIRE_RESULT not supported
[ 1379.374166][T28471] binder: 28470:28471 ioctl c0306201 2000000001c0 returned -22
[ 1379.469869][T28431] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1379.921250][T28431] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1380.214671][T28037] Bluetooth: hci0: command 0x0406 tx timeout
[ 1380.827106][T28489] input: syz1 as /devices/virtual/input/input7
[ 1381.273152][T28431] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1381.289026][T28431] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1381.304054][T28431] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1381.314000][T28431] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1381.334243][T28502] loop0: detected capacity change from 0 to 2048
[ 1381.398171][T28502] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[ 1381.424565][T28502] UDF-fs: Scanning with blocksize 512 failed
[ 1381.448779][T28502] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1381.612290][T28451] netlink: 'syz.7.7798': attribute type 4 has an invalid length.
[ 1382.150496][T28520] loop0: detected capacity change from 0 to 1024
[ 1382.320972][T28526] netlink: 'syz.7.7830': attribute type 4 has an invalid length.
[ 1382.376215][T28527] syz.0.7828: attempt to access beyond end of device
[ 1382.376215][T28527] loop0: rw=0, sector=201326592, nr_sectors = 2 limit=1024
[ 1382.398499][T28527] Buffer I/O error on dev loop0, logical block 100663296, async page read
[ 1382.411324][T28527] syz.0.7828: attempt to access beyond end of device
[ 1382.411324][T28527] loop0: rw=0, sector=201326592, nr_sectors = 2 limit=1024
[ 1382.440975][T28527] Buffer I/O error on dev loop0, logical block 100663296, async page read
[ 1382.801318][T28541] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7836'.
[ 1382.852320][T28543] loop7: detected capacity change from 0 to 512
[ 1382.911252][T28543] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1383.007214][T28543] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1383.058535][T28543] ext4 filesystem being mounted at /218/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1383.156565][T28554] netlink: 'syz.6.7841': attribute type 4 has an invalid length.
[ 1383.247150][T25955] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1383.266401][  T786] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[ 1383.390644][T28558] "syz.0.7840" (28558) uses obsolete ecb(arc4) skcipher
[ 1383.720236][  T786] usb 6-1: Using ep0 maxpacket: 32
[ 1384.045283][  T786] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1384.091426][  T786] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1092, setting to 1024
[ 1384.143902][  T786] usb 6-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1384.195343][T28563] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7844'.
[ 1384.201083][  T786] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1384.305795][  T786] usb 6-1: config 0 descriptor??
[ 1384.339816][T28545] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1384.349687][  T786] hub 6-1:0.0: USB hub found
[ 1384.369916][T28566] loop0: detected capacity change from 0 to 1024
[ 1384.428529][T28566] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1384.633517][  T786] hub 6-1:0.0: 1 port detected
[ 1384.654254][T28581] netlink: 'syz.6.7851': attribute type 4 has an invalid length.
[ 1384.756610][T26945] udevd[26945]: incorrect jbd checksum on /dev/loop0
[ 1384.835980][T28566] EXT4-fs error (device loop0): __ext4_get_inode_loc:4483: comm syz.0.7845: Invalid inode table block 0 in block_group 0
[ 1384.856319][T26945] udevd[26945]: incorrect jbd checksum on /dev/loop0
[ 1384.982243][T26577] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1385.242085][T28592] "syz.7.7853" (28592) uses obsolete ecb(arc4) skcipher
[ 1386.321892][T28604] netlink: 'syz.0.7860': attribute type 4 has an invalid length.
[ 1386.552626][  T786] usb 6-1-port1: config error
[ 1386.552650][ T1193] usb 6-1: USB disconnect, device number 8
[ 1386.575214][  T786] usb 6-1-port1: attempt power cycle
[ 1386.795845][T28615] loop7: detected capacity change from 0 to 512
[ 1386.817161][T28614] mac80211_hwsim hwsim34 wlan0: entered promiscuous mode
[ 1386.838392][T28615] EXT4-fs (loop7): orphan cleanup on readonly fs
[ 1386.849335][T28614] netlink: 412 bytes leftover after parsing attributes in process `syz.0.7864'.
[ 1387.020647][T28615] Quota error (device loop7): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0
[ 1387.182280][T28615] Quota error (device loop7): qtree_read_dquot: Can't read quota structure for id 0
[ 1387.369465][T28615] EXT4-fs error (device loop7): ext4_acquire_dquot:6940: comm syz.7.7865: Failed to acquire dquot type 1
[ 1387.521088][T28615] EXT4-fs (loop7): 1 truncate cleaned up
[ 1387.528383][T28615] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1387.786735][T28615] EXT4-fs (loop7): warning: mounting fs with errors, running e2fsck is recommended
[ 1387.837647][T28615] EXT4-fs warning (device loop7): read_mmp_block:115: Error -117 while reading MMP block 8
[ 1387.966306][T28627] "syz.6.7868" (28627) uses obsolete ecb(arc4) skcipher
[ 1388.737103][T25955] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1388.772466][T28632] netlink: 'syz.5.7871': attribute type 4 has an invalid length.
[ 1390.606971][T28660] "syz.6.7881" (28660) uses obsolete ecb(arc4) skcipher
[ 1392.341231][T28694] loop7: detected capacity change from 0 to 512
[ 1392.356376][T28694] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[ 1392.443461][T28697] "syz.0.7894" (28697) uses obsolete ecb(arc4) skcipher
[ 1392.714582][T28694] EXT4-fs warning (device loop7): ext4_expand_extra_isize_ea:2867: Unable to expand inode 15. Delete some EAs or run e2fsck.
[ 1392.951406][T28694] EXT4-fs (loop7): 1 truncate cleaned up
[ 1392.958500][T28694] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1393.304343][T25955] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1394.189692][T28722] loop0: detected capacity change from 0 to 1764
[ 1394.278488][T28722] loop0: detected capacity change from 0 to 16
[ 1394.287466][T28722] erofs: (device loop0): mounted with root inode @ nid 36.
[ 1395.156399][T28744] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1395.197005][T28744] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1395.657409][T28759] loop0: detected capacity change from 0 to 256
[ 1396.680541][T28762] "syz.5.7928" (28762) uses obsolete ecb(arc4) skcipher
[ 1397.889078][T28799] loop0: detected capacity change from 0 to 4096
[ 1398.134669][T28799] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1398.349839][T26577] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1398.430719][T28817] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7948'.
[ 1399.185153][T28842] netlink: 24 bytes leftover after parsing attributes in process `syz.6.7958'.
[ 1399.647051][ T5859] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[ 1399.857080][ T5859] usb 8-1: Using ep0 maxpacket: 32
[ 1399.865088][ T5859] usb 8-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 254, changing to 11
[ 1399.913733][ T5859] usb 8-1: config 0 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1399.950709][ T5859] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1399.980348][ T5859] usb 8-1: New USB device found, idVendor=056a, idProduct=0016, bcdDevice= 0.00
[ 1399.999932][ T5859] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1400.012709][T28873] netlink: 24 bytes leftover after parsing attributes in process `syz.6.7973'.
[ 1400.027001][T28874] loop5: detected capacity change from 0 to 512
[ 1400.046351][ T5859] usb 8-1: config 0 descriptor??
[ 1400.155165][T28874] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[ 1400.228159][T28874] ext4 filesystem being mounted at /144/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1400.319816][T28882] fuse: Bad value for 'fd'
[ 1400.340690][T28884] loop0: detected capacity change from 0 to 8
[ 1400.446843][   T28] audit: type=1800 audit(1760774078.210:835): pid=28874 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.7974" name="file2" dev="loop5" ino=16 res=0 errno=0
[ 1400.530404][ T5859] wacom 0003:056A:0016.0002: Unknown device_type for 'HID 056a:0016'. Assuming pen.
[ 1400.544246][T28884] SQUASHFS error: Failed to read block 0x1ec: -5
[ 1400.550662][T28884] SQUASHFS error: Unable to read metadata cache entry [1ea]
[ 1400.574303][ T5859] wacom 0003:056A:0016.0002: hidraw0: USB HID v0.00 Device [HID 056a:0016] on usb-dummy_hcd.7-1/input0
[ 1400.576930][T26969] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[ 1400.622833][ T5859] input: Wacom Graphire4 6x8 Pen as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/0003:056A:0016.0002/input/input8
[ 1400.760920][ T5859] usb 8-1: USB disconnect, device number 3
[ 1400.895500][T28888] fido_id[28888]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.7/usb8/8-1/report_descriptor': No such file or directory
[ 1401.039751][T27058] udevd[27058]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory
[ 1401.548360][T28911] loop5: detected capacity change from 0 to 1024
[ 1401.694486][   T28] audit: type=1800 audit(1760774079.522:836): pid=28911 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.7989" name="file1" dev="loop5" ino=20 res=0 errno=0
[ 1401.781047][   T28] audit: type=1804 audit(1760774079.533:837): pid=28911 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.7989" name="/newroot/148/file1/file1" dev="loop5" ino=20 res=1 errno=0
[ 1401.870790][   T28] audit: type=1800 audit(1760774079.533:838): pid=28911 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.7989" name="file1" dev="loop5" ino=20 res=0 errno=0
[ 1402.485473][   T28] audit: type=1326 audit(1760774080.348:839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28939 comm="syz.0.8002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff09858efc9 code=0x7ffc0000
[ 1402.987648][   T28] audit: type=1326 audit(1760774080.348:840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28939 comm="syz.0.8002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff09858efc9 code=0x7ffc0000
[ 1403.237993][T15472] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[ 1403.438551][T15472] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1403.450220][T15472] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1403.474726][T15472] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1403.493981][T15472] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1403.513381][T15472] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1403.539753][T15472] usb 8-1: config 0 descriptor??
[ 1404.591225][T15472] plantronics 0003:047F:FFFF.0003: unknown main item tag 0xd
[ 1404.666433][T15472] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[ 1404.845588][T15472] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.7-1/input0
[ 1404.994772][T15472] usb 8-1: USB disconnect, device number 4
[ 1405.146724][T28972] fido_id[28972]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.7/usb8/report_descriptor': No such file or directory
[ 1405.238267][T26341] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[ 1405.299458][T28980] netlink: 'syz.7.8017': attribute type 4 has an invalid length.
[ 1405.417323][ T5829] kernel write not supported for file bpf-prog (pid: 5829 comm: kworker/1:3)
[ 1405.438782][T26341] usb 6-1: Using ep0 maxpacket: 8
[ 1405.451934][T26341] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1405.471979][T26341] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1405.492304][T26341] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1405.504723][T26341] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1405.523030][T26341] usb 6-1: Product: syz
[ 1405.532943][T26341] usb 6-1: Manufacturer: syz
[ 1405.542945][T26341] usb 6-1: SerialNumber: syz
[ 1405.664263][T28987] netlink: 200 bytes leftover after parsing attributes in process `syz.7.8020'.
[ 1405.757085][T26341] usb 6-1: 0:2 : does not exist
[ 1405.817019][T26341] usb 6-1: USB disconnect, device number 13
[ 1405.862286][T26945] udevd[26945]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1407.726980][T29006] netlink: 'syz.7.8027': attribute type 4 has an invalid length.
[ 1407.920598][T29011] 9pnet_fd: Insufficient options for proto=fd
[ 1408.077303][T29014] syz_tun: entered allmulticast mode
[ 1408.090718][T29012] syz_tun: left allmulticast mode
[ 1408.328892][T29020] loop5: detected capacity change from 0 to 512
[ 1408.385449][T29020] EXT4-fs (loop5): revision level too high, forcing read-only mode
[ 1408.416900][T29020] EXT4-fs (loop5): orphan cleanup on readonly fs
[ 1408.477691][T29020] EXT4-fs error (device loop5): ext4_orphan_get:1399: inode #15: comm syz.5.8034: iget: bad i_size value: 38620345925642
[ 1408.571116][T29020] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.8034: couldn't read orphan inode 15 (err -117)
[ 1408.679576][T29020] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1408.888469][T26969] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1409.480319][T28037] Bluetooth: hci4: command 0x0406 tx timeout
[ 1410.012422][T29038] netlink: 'syz.6.8038': attribute type 4 has an invalid length.
[ 1410.429665][T29042] loop7: detected capacity change from 0 to 1764
[ 1410.567346][T29042] loop7: detected capacity change from 0 to 16
[ 1410.637872][T29042] erofs: (device loop7): mounted with root inode @ nid 36.
[ 1412.337155][T29064] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8048'.
[ 1412.382841][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1412.389232][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1412.462244][T29066] netlink: 'syz.6.8049': attribute type 4 has an invalid length.
[ 1414.307848][T29087] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8057'.
[ 1414.479868][T29090] netlink: 'syz.6.8058': attribute type 4 has an invalid length.
[ 1416.429216][T29119] netlink: 'syz.7.8069': attribute type 4 has an invalid length.
[ 1417.293644][T29132] loop5: detected capacity change from 0 to 256
[ 1417.679359][T29138] mac80211_hwsim hwsim36 wlan0: entered promiscuous mode
[ 1417.757283][T29142] netlink: 'syz.0.8078': attribute type 4 has an invalid length.
[ 1418.093621][T29148] Cannot find add_set index 0 as target
[ 1418.386547][T29154] loop0: detected capacity change from 0 to 128
[ 1418.423312][T29154] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1418.514195][T29154] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1418.595327][T29156] loop5: detected capacity change from 0 to 512
[ 1418.935059][T29156] [EXT4 FS bs=4096, gc=1, bpg=95, ipg=32, mo=e040e01c, mo2=0000]
[ 1418.964793][T29156] System zones: 0-2, 18-18, 34-34
[ 1419.290476][T29156] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #3: comm syz.5.8083: corrupted inode contents
[ 1419.816275][T15070] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1419.873302][T29156] EXT4-fs error (device loop5): ext4_dirty_inode:6106: inode #3: comm syz.5.8083: mark_inode_dirty error
[ 1419.936534][T29156] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #3: comm syz.5.8083: corrupted inode contents
[ 1419.980904][T29156] EXT4-fs error (device loop5): __ext4_ext_dirty:202: inode #3: comm syz.5.8083: mark_inode_dirty error
[ 1420.030397][T29156] Quota error (device loop5): write_blk: dquota write failed
[ 1420.065737][T29156] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[ 1420.098069][T29156] EXT4-fs error (device loop5): ext4_acquire_dquot:6940: comm syz.5.8083: Failed to acquire dquot type 0
[ 1420.156712][T29156] EXT4-fs (loop5): 1 orphan inode deleted
[ 1420.181798][T15071] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14
[ 1420.192734][T29156] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1420.206025][T15071] EXT4-fs error (device loop5): ext4_release_dquot:6976: comm kworker/u4:11: Failed to release dquot type 1
[ 1420.223739][T29156] ext4 filesystem being mounted at /175/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1420.445413][T26969] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1421.268339][T29178] netlink: 'syz.0.8088': attribute type 4 has an invalid length.
[ 1422.870054][T29196] loop7: detected capacity change from 0 to 512
[ 1422.961196][T29196] EXT4-fs error (device loop7): ext4_orphan_get:1404: comm syz.7.8095: couldn't read orphan inode 26 (err -116)
[ 1423.149350][T29196] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1423.298972][T29196] ext4 filesystem being mounted at /279/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1424.044440][T25955] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1424.187181][T29209] netlink: 'syz.0.8099': attribute type 4 has an invalid length.
[ 1424.659868][T29219] netlink: 16 bytes leftover after parsing attributes in process `syz.7.8102'.
[ 1425.082341][ T5795] Bluetooth: hci3: command 0x0406 tx timeout
[ 1427.449375][T29230] loop7: detected capacity change from 0 to 1024
[ 1427.554349][T29230] hfsplus: b-tree write err: -5, ino 4
[ 1427.991802][T29242] fuse: Bad value for 'fd'
[ 1428.003411][T29240] netlink: 'syz.0.8108': attribute type 4 has an invalid length.
[ 1429.681056][T29270] syz_tun: entered allmulticast mode
[ 1429.712787][T29267] syz_tun: left allmulticast mode
[ 1429.916337][T29272] netlink: 'syz.5.8121': attribute type 4 has an invalid length.
[ 1430.321553][T29280] netlink: 24 bytes leftover after parsing attributes in process `syz.5.8125'.
[ 1430.713084][T29288] loop7: detected capacity change from 0 to 1024
[ 1430.763678][T29288] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1430.777221][T29288] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1430.814172][T29291] syz_tun: entered allmulticast mode
[ 1430.837977][T29290] syz_tun: left allmulticast mode
[ 1430.850661][T29288] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 1430.997331][T29288] System zones: 0-1, 3-36
[ 1431.377372][T29288] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1431.619455][T29288] EXT4-fs error (device loop7): ext4_read_inode_bitmap:140: comm syz.7.8129: Invalid inode bitmap blk 18241520774489164180 in block_group 0
[ 1431.770527][T25955] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1431.890160][T29303] netlink: 24 bytes leftover after parsing attributes in process `syz.6.8135'.
[ 1431.988708][T29305] loop7: detected capacity change from 0 to 256
[ 1432.289378][T29313] loop7: detected capacity change from 0 to 512
[ 1432.378019][T29313] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1432.400747][T29317] syz_tun: entered allmulticast mode
[ 1432.431813][T29315] syz_tun: left allmulticast mode
[ 1432.447340][T29313] ext4 filesystem being mounted at /287/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1432.897215][T25955] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1433.691801][T29340] netlink: 24 bytes leftover after parsing attributes in process `syz.5.8145'.
[ 1433.934766][T29347] syz_tun: entered allmulticast mode
[ 1433.971940][T29346] syz_tun: left allmulticast mode
[ 1436.504726][T29385] loop7: detected capacity change from 0 to 1764
[ 1437.920086][T29385] loop7: detected capacity change from 0 to 16
[ 1437.957359][T29385] erofs: (device loop7): mounted with root inode @ nid 36.
[ 1442.917870][T29433] loop7: detected capacity change from 0 to 4096
[ 1442.939525][T29433] EXT4-fs (loop7): Test dummy encryption mode enabled
[ 1442.977739][T29433] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1443.015558][T29433] System zones: 0-5
[ 1443.039563][T29433] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1443.360641][T25955] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1443.934548][T29454] loop7: detected capacity change from 0 to 256
[ 1446.714153][T29500] loop0: detected capacity change from 0 to 4096
[ 1446.765065][T29500] EXT4-fs (loop0): Test dummy encryption mode enabled
[ 1446.861595][T29500] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1446.925041][T29500] System zones: 0-5
[ 1446.966184][T29500] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1447.060943][T26577] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1447.314779][T29511] mac80211_hwsim hwsim32 wlan0: entered promiscuous mode
[ 1447.706008][T29521] binder: Unknown parameter 'ethtool'
[ 1448.091283][T29534] netlink: 220 bytes leftover after parsing attributes in process `syz.7.8213'.
[ 1448.516116][T29542] loop5: detected capacity change from 0 to 512
[ 1448.590619][T29542] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[ 1448.757413][T29542] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c118, mo2=0002]
[ 1448.822189][T29542] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2244: inode #15: comm syz.5.8218: corrupted in-inode xattr: e_value size too large
[ 1448.878345][T29542] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.8218: couldn't read orphan inode 15 (err -117)
[ 1448.915923][T29542] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1449.389521][T26969] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1450.416097][T29562] loop5: detected capacity change from 0 to 1024
[ 1451.757203][ T5795] Bluetooth: hci3: command 0x0406 tx timeout
[ 1451.956996][T29587] loop0: detected capacity change from 0 to 512
[ 1452.035972][T29587] EXT4-fs error (device loop0): ext4_orphan_get:1399: inode #15: comm syz.0.8231: casefold flag without casefold feature
[ 1452.069186][T29587] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.8231: couldn't read orphan inode 15 (err -117)
[ 1452.096784][T29587] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1452.691173][T26577] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1452.820235][T29612] loop7: detected capacity change from 0 to 256
[ 1454.081060][T29645] netlink: 32 bytes leftover after parsing attributes in process `syz.5.8248'.
[ 1454.717454][T26188] usb 6-1: new low-speed USB device number 14 using dummy_hcd
[ 1454.937384][T26188] usb 6-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1454.963142][T26188] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1455.014162][T26188] usb 6-1: config 0 descriptor??
[ 1455.272169][T26188] asix 6-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[ 1455.787057][T29689] loop7: detected capacity change from 0 to 1764
[ 1456.159423][T26945] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1456.182543][T29689] loop7: detected capacity change from 0 to 16
[ 1456.208855][T26188] asix 6-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[ 1456.400186][T29689] erofs: (device loop7): mounted with root inode @ nid 36.
[ 1456.760435][T26188] asix: probe of 6-1:0.0 failed with error -32
[ 1457.335275][T29700] loop7: detected capacity change from 0 to 2048
[ 1457.530668][T29700] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1457.974539][T25955] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1457.995180][T26341] usb 1-1: new full-speed USB device number 38 using dummy_hcd
[ 1458.027940][  T786] usb 6-1: USB disconnect, device number 14
[ 1458.146693][T29713] loop5: detected capacity change from 0 to 764
[ 1458.229130][T26341] usb 1-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= 5.f5
[ 1458.257381][T26341] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1458.265470][T26341] usb 1-1: Product: syz
[ 1458.330185][T26341] usb 1-1: Manufacturer: syz
[ 1458.360487][T26341] usb 1-1: SerialNumber: syz
[ 1458.410091][T26341] usb 1-1: config 0 descriptor??
[ 1458.478890][T26341] usb 1-1: Quirk or no altest; falling back to MIDI 1.0
[ 1459.299667][T26341] usb 1-1: USB disconnect, device number 38
[ 1459.457807][T28291] udevd[28291]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1462.453798][T29758] mac80211_hwsim hwsim30 wlan0: entered promiscuous mode
[ 1462.678710][T29767] "syz.5.8280" (29767) uses obsolete ecb(arc4) skcipher
[ 1463.493694][T28037] Bluetooth: hci3: command 0x0406 tx timeout
[ 1463.592349][T29775] input: syz1 as /devices/virtual/input/input12
[ 1466.065795][ T5887] hsr_slave_0: left promiscuous mode
[ 1466.123566][ T5887] hsr_slave_1: left promiscuous mode
[ 1466.144620][ T5887] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1466.176323][ T5887] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1466.283517][ T5887] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1466.306806][ T5887] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1466.339212][ T5887] bridge_slave_1: left promiscuous mode
[ 1466.355191][ T5887] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1466.384495][ T5887] bridge_slave_0: left allmulticast mode
[ 1466.427757][ T5887] bridge_slave_0: left promiscuous mode
[ 1466.433663][ T5887] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1466.506817][ T5887] veth1_macvtap: left promiscuous mode
[ 1466.529949][ T5887] veth0_macvtap: left promiscuous mode
[ 1466.536037][ T5887] veth1_vlan: left promiscuous mode
[ 1466.551848][T29822] "syz.0.8294" (29822) uses obsolete ecb(arc4) skcipher
[ 1466.890008][ T5887] veth0_vlan: left promiscuous mode
[ 1467.375453][T29829] loop7: detected capacity change from 0 to 512
[ 1467.386799][T29829] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1467.402424][T29829] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[ 1467.447727][T29829] EXT4-fs (loop7): 1 truncate cleaned up
[ 1467.499570][T29829] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1467.501539][ T5795] Bluetooth: hci3: command 0x0406 tx timeout
[ 1467.550667][T29829] netlink: 16 bytes leftover after parsing attributes in process `syz.7.8296'.
[ 1467.625665][T25955] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1467.637984][ T5887] bond1 (unregistering): Released all slaves
[ 1468.566437][ T5887] team0 (unregistering): Port device team_slave_1 removed
[ 1468.643584][ T5887] team0 (unregistering): Port device team_slave_0 removed
[ 1468.723567][ T5887] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1468.804655][ T5887] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1469.759800][ T5887] bond0 (unregistering): Released all slaves
[ 1471.075634][T29859] binder: 29852:29859 ioctl 4018620d 0 returned -22
[ 1471.145011][T29859] binder: 29852:29859 ioctl 4018620d 0 returned -22
[ 1471.585499][ T5887] IPVS: stop unused estimator thread 0...
[ 1471.885823][T26341] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[ 1472.015184][T29875] "syz.0.8309" (29875) uses obsolete ecb(arc4) skcipher
[ 1473.231328][T26341] usb 8-1: Using ep0 maxpacket: 16
[ 1473.264792][T26341] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1473.295331][T26341] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1473.305270][T26341] usb 8-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[ 1473.315640][T26341] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1473.347898][T26341] usb 8-1: config 0 descriptor??
[ 1473.885487][T26341] apple 0003:05AC:024B.0004: unknown global tag 0xe
[ 1473.893141][T26341] apple 0003:05AC:024B.0004: item 0 1 1 14 parsing failed
[ 1473.902353][T26341] apple 0003:05AC:024B.0004: parse failed
[ 1473.908383][T26341] apple: probe of 0003:05AC:024B.0004 failed with error -22
[ 1474.523952][T29896] loop5: detected capacity change from 0 to 1024
[ 1474.596391][T26341] usb 8-1: USB disconnect, device number 5
[ 1474.844499][T29901] xt_hashlimit: max too large, truncated to 1048576
[ 1475.144035][T29904] "syz.0.8320" (29904) uses obsolete ecb(arc4) skcipher
[ 1475.380634][T29916] fuse: Bad value for 'fd'
[ 1475.804862][T29927] xt_hashlimit: max too large, truncated to 1048576
[ 1475.904887][T29928] loop7: detected capacity change from 0 to 256
[ 1476.213721][T28037] Bluetooth: hci3: command 0x0406 tx timeout
[ 1476.496558][T29927] loop5: detected capacity change from 0 to 512
[ 1476.644604][T29927] Quota error (device loop5): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[ 1476.688468][T29927] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[ 1476.698656][T29927] EXT4-fs error (device loop5): ext4_acquire_dquot:6940: comm syz.5.8330: Failed to acquire dquot type 1
[ 1476.730469][T29927] EXT4-fs (loop5): 1 truncate cleaned up
[ 1476.741582][T29927] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1476.754437][T29927] ext4 filesystem being mounted at /241/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1477.051599][T26969] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1477.053582][T29943] loop7: detected capacity change from 0 to 1024
[ 1477.102314][T29943] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1477.175940][ T5859] usb 1-1: new high-speed USB device number 39 using dummy_hcd
[ 1477.237550][T25955] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1477.389643][ T5859] usb 1-1: Using ep0 maxpacket: 16
[ 1477.402187][ T5859] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1477.421375][ T5859] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1477.431502][ T5859] usb 1-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[ 1477.443760][ T5859] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1477.479439][ T5859] usb 1-1: config 0 descriptor??
[ 1477.504160][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1477.510842][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1477.938348][ T5859] usbhid 1-1:0.0: can't add hid device: -71
[ 1477.944454][ T5859] usbhid: probe of 1-1:0.0 failed with error -71
[ 1478.024416][ T5859] usb 1-1: USB disconnect, device number 39
[ 1479.452787][T29979] xt_hashlimit: max too large, truncated to 1048576
[ 1480.952000][T30005] loop7: detected capacity change from 0 to 256
[ 1480.962794][T28037] Bluetooth: hci3: command 0x0406 tx timeout
[ 1481.529682][T30016] loop0: detected capacity change from 0 to 128
[ 1481.685207][T26577] FAT-fs (loop0): error, fat_free_clusters: deleting FAT entry beyond EOF
[ 1481.697971][T26577] FAT-fs (loop0): Filesystem has been set read-only
[ 1481.794426][T30024] netlink: 'syz.0.8366': attribute type 1 has an invalid length.
[ 1481.851639][T30024] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[ 1481.889273][T26341] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[ 1481.931313][T30024] veth3: entered promiscuous mode
[ 1481.972700][T30024] bond1: (slave veth3): Enslaving as an active interface with an up link
[ 1482.295485][T26341] usb 8-1: Using ep0 maxpacket: 16
[ 1482.346012][T26341] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1482.556152][T26341] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1482.765579][T26341] usb 8-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[ 1483.173600][T26341] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1483.192777][T26341] usb 8-1: config 0 descriptor??
[ 1483.773443][T26341] usbhid 8-1:0.0: can't add hid device: -71
[ 1483.800846][T26341] usbhid: probe of 8-1:0.0 failed with error -71
[ 1483.849944][T26341] usb 8-1: USB disconnect, device number 6
[ 1484.483104][T30059] netlink: 'syz.5.8380': attribute type 1 has an invalid length.
[ 1485.732854][T30075] loop7: detected capacity change from 0 to 256
[ 1486.642287][T30063] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[ 1486.968379][T30059] veth3: entered promiscuous mode
[ 1487.014569][T30059] bond1: (slave veth3): Enslaving as an active interface with an up link
[ 1487.200557][T28037] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1487.232577][T28037] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1487.252110][T28037] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1487.277576][T28037] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1487.285668][T28037] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1487.293962][T28037] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1487.301661][T15472] usb 1-1: new high-speed USB device number 40 using dummy_hcd
[ 1487.534626][T15472] usb 1-1: Using ep0 maxpacket: 32
[ 1487.546086][T15472] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1487.567713][T15472] usb 1-1: config 0 has no interfaces?
[ 1487.588348][T15472] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1487.607205][T15472] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1487.630243][T15472] usb 1-1: SerialNumber: syz
[ 1487.691605][T15472] usb 1-1: config 0 descriptor??
[ 1488.007310][T15472] usb 1-1: USB disconnect, device number 40
[ 1488.400903][T30085] chnl_net:caif_netlink_parms(): no params data found
[ 1490.202955][T28037] Bluetooth: hci1: command tx timeout
[ 1490.295081][T30085] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1490.318021][T30116] loop0: detected capacity change from 0 to 1024
[ 1490.327277][T30085] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1490.336186][T30085] bridge_slave_0: entered allmulticast mode
[ 1490.344220][T30085] bridge_slave_0: entered promiscuous mode
[ 1490.390458][T30119] loop7: detected capacity change from 0 to 512
[ 1490.401953][T30119] EXT4-fs: inline encryption not supported
[ 1490.413142][T30119] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[ 1490.434006][T30116] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1490.472271][T30119] EXT4-fs (loop7): 1 truncate cleaned up
[ 1490.524191][T30085] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1490.532030][T30119] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1490.550007][T30085] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1490.557327][T30085] bridge_slave_1: entered allmulticast mode
[ 1490.566823][T30085] bridge_slave_1: entered promiscuous mode
[ 1490.667052][T30085] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1490.755845][T30085] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1490.796608][T25955] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1490.860079][T26577] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1491.079143][   T48] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1491.190472][T30137] xt_hashlimit: max too large, truncated to 1048576
[ 1491.234879][T30085] team0: Port device team_slave_0 added
[ 1491.332084][   T48] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1491.421052][T30085] team0: Port device team_slave_1 added
[ 1491.614346][T30085] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1491.639570][T30085] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1491.675795][T30085] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1491.712115][   T48] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1491.729739][T30085] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1491.737081][T30085] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1492.013138][T30085] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1492.389523][T28037] Bluetooth: hci1: command tx timeout
[ 1492.459199][   T48] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1492.679579][T30151] netlink: 4 bytes leftover after parsing attributes in process `syz.7.8404'.
[ 1492.776602][T30151] veth7: entered promiscuous mode
[ 1492.832681][T30085] hsr_slave_0: entered promiscuous mode
[ 1492.856864][T30085] hsr_slave_1: entered promiscuous mode
[ 1492.880838][T30085] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1492.894730][T30085] Cannot create hsr debugfs directory
[ 1493.443686][   T48] bond2: (slave ip6gretap1): Releasing backup interface
[ 1494.289226][T26341] usb 1-1: new high-speed USB device number 41 using dummy_hcd
[ 1494.312947][T30177] loop5: detected capacity change from 0 to 1024
[ 1494.343722][T30177] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[ 1494.385595][T30177] EXT4-fs (loop5): revision level too high, forcing read-only mode
[ 1494.394054][T30177] EXT4-fs (loop5): orphan cleanup on readonly fs
[ 1494.477639][T30177] EXT4-fs error (device loop5): ext4_free_blocks:6676: comm syz.5.8413: Freeing blocks not in datazone - block = 0, count = 4096
[ 1494.525377][T26341] usb 1-1: Using ep0 maxpacket: 16
[ 1494.532537][T30177] EXT4-fs (loop5): 1 orphan inode deleted
[ 1494.551987][T26341] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1494.569900][T30177] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1494.597831][T26341] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1494.615430][T28037] Bluetooth: hci1: command tx timeout
[ 1494.641189][T26341] usb 1-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[ 1494.683186][T26341] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1494.758452][T26341] usb 1-1: config 0 descriptor??
[ 1494.810775][T26969] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1495.647638][T26341] usbhid 1-1:0.0: can't add hid device: -71
[ 1495.653745][T26341] usbhid: probe of 1-1:0.0 failed with error -71
[ 1495.672864][T26341] usb 1-1: USB disconnect, device number 41
[ 1496.883576][T28037] Bluetooth: hci1: command tx timeout
[ 1497.666505][T30085] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1497.710784][T30085] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1497.766902][   T48] hsr_slave_0: left promiscuous mode
[ 1497.783705][   T48] hsr_slave_1: left promiscuous mode
[ 1497.824726][   T48] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1497.855221][   T48] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1497.878289][   T48] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1497.897316][   T48] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1497.938097][   T48] bridge_slave_1: left allmulticast mode
[ 1497.987224][   T48] bridge_slave_1: left promiscuous mode
[ 1498.035658][   T48] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1498.045073][   T48] bridge_slave_0: left allmulticast mode
[ 1498.050812][   T48] bridge_slave_0: left promiscuous mode
[ 1498.069821][   T48] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1498.871426][   T48] veth1_macvtap: left promiscuous mode
[ 1498.928102][   T48] veth0_macvtap: left promiscuous mode
[ 1498.933878][   T48] veth1_vlan: left promiscuous mode
[ 1498.975025][   T48] veth0_vlan: left promiscuous mode
[ 1499.313305][T26341] usb 1-1: new high-speed USB device number 42 using dummy_hcd
[ 1499.502049][   T48] bond5 (unregistering): (slave veth5): Releasing backup interface
[ 1499.526959][T26341] usb 1-1: Using ep0 maxpacket: 16
[ 1499.534336][T26341] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1499.552730][   T48] bond5 (unregistering): Released all slaves
[ 1499.560250][T26341] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1499.581942][T26341] usb 1-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[ 1499.612444][T26341] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1499.636172][T26341] usb 1-1: config 0 descriptor??
[ 1499.707788][   T48] bond4 (unregistering): (slave veth3): Releasing backup interface
[ 1499.758234][   T48] bond4 (unregistering): Released all slaves
[ 1499.838706][   T48] bond3 (unregistering): Released all slaves
[ 1499.925761][   T48] bond2 (unregistering): Released all slaves
[ 1500.096140][T26341] usbhid 1-1:0.0: can't add hid device: -71
[ 1500.140641][T26341] usbhid: probe of 1-1:0.0 failed with error -71
[ 1500.269219][T26341] usb 1-1: USB disconnect, device number 42
[ 1500.829607][   T48] bond1 (unregistering): Released all slaves
[ 1501.104165][T30260] loop0: detected capacity change from 0 to 2048
[ 1501.177635][T30260] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1502.851645][   T48] team0 (unregistering): Port device team_slave_1 removed
[ 1502.930425][   T48] team0 (unregistering): Port device team_slave_0 removed
[ 1503.583139][   T48] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1503.740797][   T48] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1504.598554][   T48] team0 (unregistering): Port device bond0 removed
[ 1504.957592][   T48] bond0 (unregistering): Released all slaves
[ 1505.049516][T30085] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1505.061954][T30085] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1505.729831][T30085] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1505.757136][T30085] 8021q: adding VLAN 0 to HW filter on device team0
[ 1505.813977][T15070] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1505.821197][T15070] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1505.856539][T15070] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1505.863798][T15070] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1506.072176][T30085] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1506.292767][T30307] loop5: detected capacity change from 0 to 256
[ 1507.308349][T30085] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1507.343130][   T48] IPVS: stop unused estimator thread 0...
[ 1507.654329][T30318] "syz.0.8446" (30318) uses obsolete ecb(arc4) skcipher
[ 1508.268946][T30331] loop7: detected capacity change from 0 to 1024
[ 1508.292881][T30331] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1508.299424][T30085] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1508.323104][T30331] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1508.394621][T30331] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1508.442584][T30331] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1508.572685][T25955] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1508.700365][ T5829] usb 6-1: new full-speed USB device number 15 using dummy_hcd
[ 1508.760500][T30347] loop0: detected capacity change from 0 to 256
[ 1508.883162][T30347] FAT-fs (loop0): IO charset cp8ÿ not found
[ 1508.914529][ T5829] usb 6-1: config 0 has an invalid interface number: 133 but max is 0
[ 1508.940179][ T5829] usb 6-1: config 0 has no interface number 0
[ 1508.956867][ T5829] usb 6-1: New USB device found, idVendor=06cd, idProduct=0121, bcdDevice=dd.3d
[ 1508.982936][ T5829] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1508.997079][ T5829] usb 6-1: Product: syz
[ 1509.001318][ T5829] usb 6-1: Manufacturer: syz
[ 1509.010145][T30353] "syz.7.8457" (30353) uses obsolete ecb(arc4) skcipher
[ 1509.081335][ T5829] usb 6-1: SerialNumber: syz
[ 1509.138501][ T5829] usb 6-1: config 0 descriptor??
[ 1509.365116][T30085] veth0_vlan: entered promiscuous mode
[ 1509.421643][ T5829] keyspan 6-1:0.133: Keyspan 1 port adapter converter detected
[ 1509.445264][T30085] veth1_vlan: entered promiscuous mode
[ 1509.487226][T30085] veth0_macvtap: entered promiscuous mode
[ 1509.529352][T30085] veth1_macvtap: entered promiscuous mode
[ 1509.530540][ T5829] keyspan 6-1:0.133: found no endpoint descriptor for endpoint 81
[ 1509.548417][ T5829] keyspan 6-1:0.133: found no endpoint descriptor for endpoint 1
[ 1509.560453][ T5829] keyspan 6-1:0.133: found no endpoint descriptor for endpoint 2
[ 1509.574204][ T5829] usb 6-1: Keyspan 1 port adapter converter now attached to ttyUSB0
[ 1509.616048][T30085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1509.636558][T30085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1509.667066][T30085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1509.708709][T30085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1509.719277][T30085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1509.735109][T30085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1509.755360][T30085] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1509.784271][T30085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1509.798056][T30085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1509.819291][T30085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1509.830302][T30085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1509.844248][T30085] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1509.861535][T30085] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1509.877568][T30085] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1509.884377][ T5829] usb 6-1: USB disconnect, device number 15
[ 1509.904206][T30085] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1509.917809][ T5829] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0
[ 1509.935082][T30085] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1509.951273][ T5829] keyspan 6-1:0.133: device disconnected
[ 1510.171888][T30369] loop0: detected capacity change from 0 to 2048
[ 1510.174468][ T3429] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1510.200034][ T3429] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1510.220124][T30369] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1510.235870][ T3429] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1510.246614][ T3429] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1510.390849][T30372] loop6: detected capacity change from 0 to 512
[ 1510.418243][T30372] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1510.455125][T30372] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1510.468628][T30372] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1510.527568][T30372] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[ 1510.559418][T30372] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2983: inode #15: comm syz.6.8377: corrupted xattr block 19: overlapping e_value 
[ 1510.580474][T30372] EXT4-fs warning (device loop6): ext4_evict_inode:272: xattr delete (err -117)
[ 1510.658371][T30085] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1511.146443][T30394] "syz.0.8466" (30394) uses obsolete ecb(arc4) skcipher
[ 1512.172117][  T786] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[ 1512.248366][T30415] loop7: detected capacity change from 0 to 1024
[ 1512.364308][  T786] usb 7-1: Using ep0 maxpacket: 16
[ 1512.390044][  T786] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1512.411005][  T786] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1512.446632][T30419] loop5: detected capacity change from 0 to 1024
[ 1512.474145][  T786] usb 7-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[ 1512.475401][T30419] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1512.489591][  T786] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1512.533138][  T786] usb 7-1: config 0 descriptor??
[ 1512.558899][T30419] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1512.699530][T30419] 9pnet: p9_errstr2errno: server reported unknown error aaaaaaaaaaaaaaa
[ 1512.763308][T26969] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1512.888125][ T5829] usb 8-1: new low-speed USB device number 7 using dummy_hcd
[ 1512.995239][  T786] apple 0003:05AC:024B.0005: unknown global tag 0xe
[ 1513.001948][  T786] apple 0003:05AC:024B.0005: item 0 1 1 14 parsing failed
[ 1513.029712][  T786] apple 0003:05AC:024B.0005: parse failed
[ 1513.035948][  T786] apple: probe of 0003:05AC:024B.0005 failed with error -22
[ 1513.115360][ T5829] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1513.155460][ T5829] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1513.170766][ T5829] usb 8-1: string descriptor 0 read error: -22
[ 1513.177330][ T5829] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1513.186488][ T5829] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1513.210654][ T5829] usb 8-1: Quirk or no altest; falling back to MIDI 1.0
[ 1513.217817][ T5829] usb 8-1: MIDIStreaming interface descriptor not found
[ 1513.230664][  T786] usb 7-1: USB disconnect, device number 5
[ 1513.441228][T15472] usb 8-1: USB disconnect, device number 7
[ 1513.760826][T30447] netlink: 28 bytes leftover after parsing attributes in process `syz.5.8492'.
[ 1513.808769][T30447] veth5: entered promiscuous mode
[ 1513.962856][T30451] "syz.0.8491" (30451) uses obsolete ecb(arc4) skcipher
[ 1514.255318][T30459] loop6: detected capacity change from 0 to 1024
[ 1514.284867][T30459] EXT4-fs: Ignoring removed nobh option
[ 1514.331056][T30459] EXT4-fs: Ignoring removed bh option
[ 1514.356749][T30459] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1514.393404][T30459] EXT4-fs (loop6): stripe (8) is not aligned with cluster size (16), stripe is disabled
[ 1514.491672][T30459] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1514.517530][T30466] binfmt_misc: register: failed to install interpreter file ./file0
[ 1514.782063][T30085] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1515.014443][T30482] syz_tun: entered allmulticast mode
[ 1515.016040][T30482] syz_tun: left allmulticast mode
[ 1515.143432][T15472] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[ 1515.358229][T15472] usb 8-1: Using ep0 maxpacket: 16
[ 1515.370311][T15472] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1515.399992][T15472] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1515.421855][T15472] usb 8-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[ 1515.430982][T15472] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1515.480610][T15472] usb 8-1: config 0 descriptor??
[ 1515.696596][T30497] loop5: detected capacity change from 0 to 512
[ 1515.915457][T30497] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #16: comm syz.5.8512: corrupted inode contents
[ 1515.958445][T15472] apple 0003:05AC:024B.0006: unknown global tag 0xe
[ 1515.987954][T30497] EXT4-fs error (device loop5): ext4_dirty_inode:6106: inode #16: comm syz.5.8512: mark_inode_dirty error
[ 1516.012052][T15472] apple 0003:05AC:024B.0006: item 0 1 1 14 parsing failed
[ 1516.026233][T30497] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #16: comm syz.5.8512: corrupted inode contents
[ 1516.027256][T15472] apple 0003:05AC:024B.0006: parse failed
[ 1516.051812][T15472] apple: probe of 0003:05AC:024B.0006 failed with error -22
[ 1516.085211][T30497] EXT4-fs error (device loop5): __ext4_ext_dirty:202: inode #16: comm syz.5.8512: mark_inode_dirty error
[ 1516.142889][T30510] loop6: detected capacity change from 0 to 256
[ 1516.186948][T15472] usb 8-1: USB disconnect, device number 8
[ 1516.214032][T30497] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #16: comm syz.5.8512: corrupted inode contents
[ 1516.278295][T30497] EXT4-fs error (device loop5) in ext4_orphan_del:301: Corrupt filesystem
[ 1516.331733][T30497] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #16: comm syz.5.8512: corrupted inode contents
[ 1516.343947][T30510] FAT-fs (loop6): IO charset cp8ÿ not found
[ 1516.344579][T30497] EXT4-fs error (device loop5): ext4_truncate:4288: inode #16: comm syz.5.8512: mark_inode_dirty error
[ 1516.372027][T30497] EXT4-fs error (device loop5) in ext4_process_orphan:343: Corrupt filesystem
[ 1516.393956][T30497] EXT4-fs (loop5): 1 truncate cleaned up
[ 1516.406829][T20410] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14
[ 1516.409783][T30497] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1516.424802][T20410] EXT4-fs error (device loop5): ext4_release_dquot:6976: comm kworker/u4:12: Failed to release dquot type 1
[ 1516.438435][T30497] ext4 filesystem being mounted at /301/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1516.600724][T26969] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1517.222086][T30530] "syz.5.8521" (30530) uses obsolete ecb(arc4) skcipher
[ 1517.488539][T30538] binder_alloc: 30537: pid 30537 spamming oneway? 1 buffers allocated for a total size of 4096
[ 1517.524952][T30542] loop0: detected capacity change from 0 to 256
[ 1517.540415][T30542] FAT-fs (loop0): Unrecognized mount option "184467440737095516150x0000000000000000" or missing value
[ 1517.771018][T30547] netlink: 16 bytes leftover after parsing attributes in process `syz.0.8530'.
[ 1518.076242][T30555] loop0: detected capacity change from 0 to 1024
[ 1518.137687][T30555] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1518.210927][T30555] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[ 1518.267252][T30555] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[ 1518.309207][T30561] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 64 with max blocks 4 with error 28
[ 1518.360156][T30555] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 1518.360156][T30555] 
[ 1518.369496][T30561] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 1518.369496][T30561] 
[ 1518.383750][T30555] EXT4-fs (loop0): Total free blocks count 0
[ 1518.389826][T30555] EXT4-fs (loop0): Free/Dirty block details
[ 1518.414512][T30555] EXT4-fs (loop0): free_blocks=68451041280
[ 1518.420554][T30555] EXT4-fs (loop0): dirty_blocks=80
[ 1518.451911][T30561] EXT4-fs (loop0): Total free blocks count 0
[ 1520.257977][T30613] "syz.7.8553" (30613) uses obsolete ecb(arc4) skcipher
[ 1523.705204][T30667] "syz.6.8577" (30667) uses obsolete ecb(arc4) skcipher
[ 1524.250768][T26341] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[ 1524.432652][T26341] usb 6-1: device descriptor read/64, error -71
[ 1524.742546][T26341] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[ 1524.913578][T26341] usb 6-1: device descriptor read/64, error -71
[ 1525.052823][T26341] usb usb6-port1: attempt power cycle
[ 1525.501736][T26341] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[ 1525.543127][T26341] usb 6-1: device descriptor read/8, error -71
[ 1525.642021][T30702] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8592'.
[ 1525.817407][T30703] veth3: entered promiscuous mode
[ 1525.843872][T26341] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[ 1525.876298][T26341] usb 6-1: device descriptor read/8, error -71
[ 1525.974444][T30708] loop0: detected capacity change from 0 to 256
[ 1526.024057][T26341] usb usb6-port1: unable to enumerate USB device
[ 1527.092338][T30719] "syz.6.8594" (30719) uses obsolete ecb(arc4) skcipher
[ 1528.012384][T30736] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8603'.
[ 1528.061966][T30736] veth5: entered promiscuous mode
[ 1528.986117][ T5829] usb 1-1: new high-speed USB device number 43 using dummy_hcd
[ 1531.230915][T26341] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[ 1531.412599][T26341] usb 8-1: device descriptor read/64, error -71
[ 1531.720784][T26341] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[ 1531.914935][T26341] usb 8-1: device descriptor read/64, error -71
[ 1532.054467][T26341] usb usb8-port1: attempt power cycle
[ 1532.502893][T26341] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[ 1532.740383][T26341] usb 8-1: device descriptor read/8, error -71
[ 1532.887737][T30819] loop0: detected capacity change from 0 to 256
[ 1533.710692][T26341] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[ 1533.744724][T26341] usb 8-1: device descriptor read/8, error -71
[ 1533.873176][T26341] usb usb8-port1: unable to enumerate USB device
[ 1534.254825][T30839] netlink: 28 bytes leftover after parsing attributes in process `syz.6.8645'.
[ 1534.368129][T30844] veth3: entered promiscuous mode
[ 1535.227303][T30859] loop0: detected capacity change from 0 to 1024
[ 1535.645599][T15472] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[ 1535.966312][T15472] usb 8-1: device descriptor read/64, error -71
[ 1536.265927][T15472] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[ 1536.463071][T15472] usb 8-1: device descriptor read/64, error -71
[ 1536.600685][T15472] usb usb8-port1: attempt power cycle
[ 1537.077851][T15472] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[ 1537.143388][T15472] usb 8-1: device descriptor read/8, error -71
[ 1537.473520][T15472] usb 8-1: new high-speed USB device number 16 using dummy_hcd
[ 1537.534214][T15472] usb 8-1: device descriptor read/8, error -71
[ 1537.704325][T15472] usb usb8-port1: unable to enumerate USB device
[ 1543.240960][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1543.271678][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1548.528781][T31141] loop6: detected capacity change from 0 to 256
[ 1550.271699][T31157] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1550.518430][ T5859] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[ 1550.806099][ T5859] usb 7-1: config 0 interface 0 altsetting 251 has an invalid endpoint with address 0xC6, skipping
[ 1550.846690][ T5859] usb 7-1: config 0 interface 0 has no altsetting 0
[ 1550.884614][ T5859] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1550.910617][ T5859] usb 7-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 1550.935938][ T5859] usb 7-1: Product: syz
[ 1550.940202][ T5859] usb 7-1: Manufacturer: syz
[ 1550.952307][ T5859] usb 7-1: SerialNumber: syz
[ 1550.986877][ T5859] usb 7-1: config 0 descriptor??
[ 1551.586804][ T5859] snd-usb-audio: probe of 7-1:0.0 failed with error -22
[ 1551.730175][T26945] udevd[26945]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1554.075514][T31180] loop0: detected capacity change from 0 to 256
[ 1554.646471][ T5859] usb 7-1: USB disconnect, device number 6
[ 1554.693311][T31186] bridge_slave_0: left allmulticast mode
[ 1554.747943][T31186] bridge_slave_0: left promiscuous mode
[ 1554.754041][T31186] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1554.834342][T31186] bridge_slave_1: left allmulticast mode
[ 1554.840126][T31186] bridge_slave_1: left promiscuous mode
[ 1554.877258][T31186] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1554.993966][T31186] bond0: (slave bond_slave_0): Releasing backup interface
[ 1555.043758][T31186] bond0: (slave bond_slave_1): Releasing backup interface
[ 1555.077518][T31186] team0: Port device team_slave_0 removed
[ 1555.117958][T31186] team0: Port device team_slave_1 removed
[ 1555.167644][T31186] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1555.243628][T31186] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1555.389565][T31186] bond1: (slave ip6gretap1): Releasing backup interface
[ 1555.450038][T31186] bond1: (slave ip6gretap1): the permanent HWaddr of slave - 7a:59:fb:e3:92:6d - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[ 1555.774459][T31186] bond1: (slave veth3): Releasing backup interface
[ 1561.916727][T31243] random: crng reseeded on system resumption
[ 1562.737864][T31225] loop7: detected capacity change from 0 to 1024
[ 1562.933446][T31225] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[ 1562.978017][T31225] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[ 1563.023719][T31225] EXT4-fs error (device loop7): ext4_get_journal_inode:5807: inode #5: comm syz.7.8793: unexpected bad inode w/o EXT4_IGET_BAD
[ 1563.065538][T31225] EXT4-fs (loop7): no journal found
[ 1563.070847][T31225] EXT4-fs (loop7): can't get journal size
[ 1563.095856][T31225] EXT4-fs error (device loop7): ext4_protect_reserved_inode:160: inode #5: comm syz.7.8793: unexpected bad inode w/o EXT4_IGET_BAD
[ 1563.142474][T31225] EXT4-fs (loop7): failed to initialize system zone (-117)
[ 1563.159838][T31225] EXT4-fs (loop7): mount failed
[ 1563.312998][T31249] block device autoloading is deprecated and will be removed.
[ 1566.132660][T31257] netlink: 'syz.6.8801': attribute type 1 has an invalid length.
[ 1566.392187][T31260] veth3: entered promiscuous mode
[ 1566.432701][T31260] bond1: (slave veth3): Enslaving as a backup interface with a down link
[ 1571.034061][T31293] loop0: detected capacity change from 0 to 512
[ 1571.185526][T31293] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1571.195437][T31308] netlink: 'syz.6.8816': attribute type 1 has an invalid length.
[ 1571.253376][T31293] ext4 filesystem being mounted at /420/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1571.326137][   T28] audit: type=1804 audit(1760774239.948:841): pid=31293 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.8813" name="/newroot/420/file0/bus" dev="loop0" ino=18 res=1 errno=0
[ 1571.459523][T31308] veth5: entered promiscuous mode
[ 1571.474000][T31308] bond2: (slave veth5): Enslaving as a backup interface with a down link
[ 1573.179396][T31324] loop6: detected capacity change from 0 to 256
[ 1573.238537][T31324] FAT-fs (loop6): Directory bread(block 64) failed
[ 1573.250215][T31324] FAT-fs (loop6): Directory bread(block 65) failed
[ 1573.253317][T31325] loop7: detected capacity change from 0 to 512
[ 1573.257006][T31324] FAT-fs (loop6): Directory bread(block 66) failed
[ 1573.281009][T31324] FAT-fs (loop6): Directory bread(block 67) failed
[ 1573.308891][T31325] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[ 1573.314755][T31324] FAT-fs (loop6): Directory bread(block 68) failed
[ 1573.346263][T31324] FAT-fs (loop6): Directory bread(block 69) failed
[ 1573.365920][T31324] FAT-fs (loop6): Directory bread(block 70) failed
[ 1573.389217][T31324] FAT-fs (loop6): Directory bread(block 71) failed
[ 1573.391020][T31325] EXT4-fs (loop7): 1 truncate cleaned up
[ 1573.395972][T31324] FAT-fs (loop6): Directory bread(block 72) failed
[ 1573.408746][T31324] FAT-fs (loop6): Directory bread(block 73) failed
[ 1573.428275][T31325] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1573.439953][T26577] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1701.895786][    C1] ------------[ cut here ]------------
[ 1701.903743][    C1] WARNING: CPU: 1 PID: 31325 at kernel/rcu/tree_stall.h:1001 rcu_check_gp_start_stall+0x2dc/0x460
[ 1701.914424][    C1] Modules linked in:
[ 1701.918368][    C1] CPU: 1 PID: 31325 Comm: syz.7.8819 Not tainted syzkaller #0
[ 1701.925866][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1701.935963][    C1] RIP: 0010:rcu_check_gp_start_stall+0x2dc/0x460
[ 1701.942366][    C1] Code: ff ff ff 48 c7 c7 a0 04 ef 96 be 04 00 00 00 e8 9a ba 6c 00 48 89 df b8 01 00 00 00 87 05 7c d9 7e 15 85 c0 0f 85 19 ff ff ff <0f> 0b 48 81 ff 80 51 d3 8c 74 47 48 c7 c0 1c ba 4a 8e 48 c1 e8 03
[ 1701.962033][    C1] RSP: 0018:ffffc900001f0bb8 EFLAGS: 00010046
[ 1701.968149][    C1] RAX: 0000000000000000 RBX: ffffffff8cd35180 RCX: ffffffff81702b16
[ 1701.976167][    C1] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffffff8cd35180
[ 1701.984191][    C1] RBP: ffffc900001f0e30 R08: 0000000000000003 R09: 0000000000000004
[ 1701.992207][    C1] R10: dffffc0000000000 R11: fffffbfff2dde094 R12: 0000000000002904
[ 1702.000229][    C1] R13: 1ffff110171e7a22 R14: 0000000000000a02 R15: dffffc0000000000
[ 1702.008258][    C1] FS:  00007f07cca6e6c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[ 1702.017254][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1702.023891][    C1] CR2: 00007f07cbde5fa8 CR3: 00000000644e4000 CR4: 00000000003506e0
[ 1702.031909][    C1] Call Trace:
[ 1702.035240][    C1]  <IRQ>
[ 1702.038130][    C1]  rcu_core+0x612/0x1720
[ 1702.042444][    C1]  ? rcu_cpu_kthread_park+0x90/0x90
[ 1702.047691][    C1]  ? __lock_acquire+0x7c80/0x7c80
[ 1702.052794][    C1]  ? rebalance_domains+0x127/0x9d0
[ 1702.057978][    C1]  handle_softirqs+0x280/0x820
[ 1702.062795][    C1]  ? __irq_exit_rcu+0xc7/0x190
[ 1702.067613][    C1]  ? do_softirq+0x180/0x180
[ 1702.072181][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[ 1702.077445][    C1]  __irq_exit_rcu+0xc7/0x190
[ 1702.082101][    C1]  ? irq_exit_rcu+0x20/0x20
[ 1702.086665][    C1]  irq_exit_rcu+0x9/0x20
[ 1702.090962][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[ 1702.096662][    C1]  </IRQ>
[ 1702.099631][    C1]  <TASK>
[ 1702.102598][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1702.108633][    C1] RIP: 0010:native_apic_msr_write+0x39/0x50
[ 1702.114583][    C1] Code: 74 2a 83 ff 30 74 25 eb 10 81 ff d0 00 00 00 74 1b 81 ff e0 00 00 00 74 13 c1 ef 04 81 c7 00 08 00 00 89 f9 89 f0 31 d2 0f 30 <66> 90 c3 f3 0f 1e fa 89 f6 31 d2 e9 47 f1 18 03 0f 1f 80 00 00 00
[ 1702.134253][    C1] RSP: 0018:ffffc9000482fcd8 EFLAGS: 00000246
[ 1702.140376][    C1] RAX: 00000000000000f6 RBX: 0000000000000200 RCX: 000000000000083f
[ 1702.148386][    C1] RDX: 0000000000000000 RSI: 00000000000000f6 RDI: 000000000000083f
[ 1702.156399][    C1] RBP: 0000000000000000 R08: ffffc9000482fc47 R09: 1ffff92000905f88
[ 1702.164506][    C1] R10: dffffc0000000000 R11: fffff52000905f89 R12: ffff8880b8f35001
[ 1702.172520][    C1] R13: dffffc0000000000 R14: ffff8880b8f35050 R15: 0000000000000020
[ 1702.180561][    C1]  arch_irq_work_raise+0x68/0x70
[ 1702.185568][    C1]  irq_work_queue+0x99/0x140
[ 1702.190220][    C1]  bpf_send_signal_common+0x2b6/0x420
[ 1702.195648][    C1]  ? __set_printk_clr_event+0x80/0x80
[ 1702.201072][    C1]  ? __cant_sleep+0x210/0x210
[ 1702.205806][    C1]  ? arch_do_signal_or_restart+0x2d1/0x780
[ 1702.211686][    C1]  bpf_send_signal+0x19/0x20
[ 1702.216342][    C1]  bpf_prog_7ba5217f62dcd359+0x40/0x44
[ 1702.221859][    C1]  bpf_trace_run2+0x1d1/0x3c0
[ 1702.226585][    C1]  ? bpf_trace_run2+0xde/0x3c0
[ 1702.231399][    C1]  ? bpf_trace_run1+0x3b0/0x3b0
[ 1702.236300][    C1]  ? lock_chain_count+0x20/0x20
[ 1702.241206][    C1]  trace_sys_enter+0x69/0x80
[ 1702.245850][    C1]  syscall_trace_enter+0xf0/0x150
[ 1702.250929][    C1]  do_syscall_64+0x28/0xb0
[ 1702.255396][    C1]  ? clear_bhb_loop+0x40/0x90
[ 1702.260136][    C1]  ? clear_bhb_loop+0x40/0x90
[ 1702.264862][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1702.270795][    C1] RIP: 0033:0x7f07cbb8efc9
[ 1702.275256][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1702.294916][    C1] RSP: 002b:00007f07cca6e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1702.303398][    C1] RAX: ffffffffffffffda RBX: 00007f07cbde5fa8 RCX: 00007f07cbb8efc9
[ 1702.311410][    C1] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f07cbde5fa8
[ 1702.319433][    C1] RBP: 00007f07cbde5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1702.327450][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1702.335468][    C1] R13: 00007f07cbde6038 R14: 00007ffe76b4fad0 R15: 00007ffe76b4fbb8
[ 1702.343503][    C1]  </TASK>
[ 1702.346567][    C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1702.353874][    C1] CPU: 1 PID: 31325 Comm: syz.7.8819 Not tainted syzkaller #0
[ 1702.361369][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1702.371464][    C1] Call Trace:
[ 1702.374782][    C1]  <IRQ>
[ 1702.377672][    C1]  dump_stack_lvl+0x16c/0x230
[ 1702.382430][    C1]  ? show_regs_print_info+0x20/0x20
[ 1702.387689][    C1]  ? load_image+0x3b0/0x3b0
[ 1702.392261][    C1]  panic+0x2c0/0x710
[ 1702.396205][    C1]  ? bpf_jit_dump+0xd0/0xd0
[ 1702.400777][    C1]  __warn+0x2e0/0x470
[ 1702.404798][    C1]  ? rcu_check_gp_start_stall+0x2dc/0x460
[ 1702.410578][    C1]  ? rcu_check_gp_start_stall+0x2dc/0x460
[ 1702.416365][    C1]  report_bug+0x2be/0x4f0
[ 1702.420748][    C1]  ? rcu_check_gp_start_stall+0x2dc/0x460
[ 1702.426526][    C1]  ? rcu_check_gp_start_stall+0x2dc/0x460
[ 1702.432306][    C1]  ? rcu_check_gp_start_stall+0x2de/0x460
[ 1702.438084][    C1]  handle_bug+0xcf/0x120
[ 1702.442390][    C1]  exc_invalid_op+0x1a/0x50
[ 1702.446952][    C1]  asm_exc_invalid_op+0x1a/0x20
[ 1702.451852][    C1] RIP: 0010:rcu_check_gp_start_stall+0x2dc/0x460
[ 1702.458245][    C1] Code: ff ff ff 48 c7 c7 a0 04 ef 96 be 04 00 00 00 e8 9a ba 6c 00 48 89 df b8 01 00 00 00 87 05 7c d9 7e 15 85 c0 0f 85 19 ff ff ff <0f> 0b 48 81 ff 80 51 d3 8c 74 47 48 c7 c0 1c ba 4a 8e 48 c1 e8 03
[ 1702.477906][    C1] RSP: 0018:ffffc900001f0bb8 EFLAGS: 00010046
[ 1702.484020][    C1] RAX: 0000000000000000 RBX: ffffffff8cd35180 RCX: ffffffff81702b16
[ 1702.492036][    C1] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffffff8cd35180
[ 1702.500052][    C1] RBP: ffffc900001f0e30 R08: 0000000000000003 R09: 0000000000000004
[ 1702.508079][    C1] R10: dffffc0000000000 R11: fffffbfff2dde094 R12: 0000000000002904
[ 1702.516097][    C1] R13: 1ffff110171e7a22 R14: 0000000000000a02 R15: dffffc0000000000
[ 1702.524122][    C1]  ? rcu_check_gp_start_stall+0x2c6/0x460
[ 1702.530001][    C1]  ? rcu_check_gp_start_stall+0x2c6/0x460
[ 1702.535789][    C1]  rcu_core+0x612/0x1720
[ 1702.540099][    C1]  ? rcu_cpu_kthread_park+0x90/0x90
[ 1702.545346][    C1]  ? __lock_acquire+0x7c80/0x7c80
[ 1702.550448][    C1]  ? rebalance_domains+0x127/0x9d0
[ 1702.555622][    C1]  handle_softirqs+0x280/0x820
[ 1702.560438][    C1]  ? __irq_exit_rcu+0xc7/0x190
[ 1702.565269][    C1]  ? do_softirq+0x180/0x180
[ 1702.569819][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[ 1702.575096][    C1]  __irq_exit_rcu+0xc7/0x190
[ 1702.579758][    C1]  ? irq_exit_rcu+0x20/0x20
[ 1702.584322][    C1]  irq_exit_rcu+0x9/0x20
[ 1702.588615][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[ 1702.594309][    C1]  </IRQ>
[ 1702.597280][    C1]  <TASK>
[ 1702.600248][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1702.606364][    C1] RIP: 0010:native_apic_msr_write+0x39/0x50
[ 1702.612312][    C1] Code: 74 2a 83 ff 30 74 25 eb 10 81 ff d0 00 00 00 74 1b 81 ff e0 00 00 00 74 13 c1 ef 04 81 c7 00 08 00 00 89 f9 89 f0 31 d2 0f 30 <66> 90 c3 f3 0f 1e fa 89 f6 31 d2 e9 47 f1 18 03 0f 1f 80 00 00 00
[ 1702.631969][    C1] RSP: 0018:ffffc9000482fcd8 EFLAGS: 00000246
[ 1702.638097][    C1] RAX: 00000000000000f6 RBX: 0000000000000200 RCX: 000000000000083f
[ 1702.646108][    C1] RDX: 0000000000000000 RSI: 00000000000000f6 RDI: 000000000000083f
[ 1702.654168][    C1] RBP: 0000000000000000 R08: ffffc9000482fc47 R09: 1ffff92000905f88
[ 1702.662200][    C1] R10: dffffc0000000000 R11: fffff52000905f89 R12: ffff8880b8f35001
[ 1702.670223][    C1] R13: dffffc0000000000 R14: ffff8880b8f35050 R15: 0000000000000020
[ 1702.678258][    C1]  arch_irq_work_raise+0x68/0x70
[ 1702.683257][    C1]  irq_work_queue+0x99/0x140
[ 1702.687898][    C1]  bpf_send_signal_common+0x2b6/0x420
[ 1702.693332][    C1]  ? __set_printk_clr_event+0x80/0x80
[ 1702.698750][    C1]  ? __cant_sleep+0x210/0x210
[ 1702.703475][    C1]  ? arch_do_signal_or_restart+0x2d1/0x780
[ 1702.709350][    C1]  bpf_send_signal+0x19/0x20
[ 1702.713999][    C1]  bpf_prog_7ba5217f62dcd359+0x40/0x44
[ 1702.719504][    C1]  bpf_trace_run2+0x1d1/0x3c0
[ 1702.724230][    C1]  ? bpf_trace_run2+0xde/0x3c0
[ 1702.729039][    C1]  ? bpf_trace_run1+0x3b0/0x3b0
[ 1702.733932][    C1]  ? lock_chain_count+0x20/0x20
[ 1702.738842][    C1]  trace_sys_enter+0x69/0x80
[ 1702.743514][    C1]  syscall_trace_enter+0xf0/0x150
[ 1702.748604][    C1]  do_syscall_64+0x28/0xb0
[ 1702.753076][    C1]  ? clear_bhb_loop+0x40/0x90
[ 1702.757825][    C1]  ? clear_bhb_loop+0x40/0x90
[ 1702.762552][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1702.768576][    C1] RIP: 0033:0x7f07cbb8efc9
[ 1702.773031][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1702.792695][    C1] RSP: 002b:00007f07cca6e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1702.801164][    C1] RAX: ffffffffffffffda RBX: 00007f07cbde5fa8 RCX: 00007f07cbb8efc9
[ 1702.809187][    C1] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f07cbde5fa8
[ 1702.817202][    C1] RBP: 00007f07cbde5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1702.825220][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1702.833229][    C1] R13: 00007f07cbde6038 R14: 00007ffe76b4fad0 R15: 00007ffe76b4fbb8
[ 1702.841267][    C1]  </TASK>
[ 1702.844591][    C1] Kernel Offset: disabled
[ 1702.849851][    C1] Rebooting in 86400 seconds..