last executing test programs:

6m55.394800131s ago: executing program 2 (id=154):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r0, 0xfffffffc)
syz_emit_ethernet(0x36, &(0x7f00000002c0)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1a}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x65, 0x0, 0x2, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0xffff}}}}}}, 0x0)

6m53.086167176s ago: executing program 2 (id=156):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045011, 0x0)
openat$rtc(0xffffff9c, 0x0, 0x8103, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x0, @pix_mp={0x80000000, 0x9, 0x31363553, 0x0, 0xa, [{0x4, 0x5}, {0x6, 0x7f36}, {0x8, 0x70}, {0x3, 0xf}, {0xa, 0xff}, {0x6, 0x589}, {0x8, 0x7}, {0x10041, 0x8}], 0x10, 0x8, 0x2, 0x2, 0x5}})
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = gettid()
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f00000002c0)={{&(0x7f0000ffc000/0x4000)=nil, 0x4000}, 0x1})
syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f00000003c0)="1eb3bf65654102f4af4d221c8bd458d1e7cbdaf3657d0f34e790c85bdba7931791f6d15c3e681411f7a496c0dace6a3c242f5b016fef8a9cedaf6bec340dee49474360d34cb800", 0x0, 0x48)
syz_io_uring_setup(0x10e, &(0x7f00000000c0)={0x0, 0x8d2dc, 0x0, 0xffffffff}, &(0x7f00000003c0)=<r3=>0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, 0x0, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x40, 0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x80000})
sendmsg$inet(0xffffffffffffffff, &(0x7f0000002800)={0x0, 0x0, 0x0}, 0x8010)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000032680)=""/102392, 0x18ff8)
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="e8000000000005000000f59407a0125d9bca29ed421ca373a0c0f1c95f4b66"])

6m52.41556532s ago: executing program 2 (id=157):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000600), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f00000010c0)={0x5c, r1, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PEERS={0x34, 0x8, 0x0, 0x1, [{0x30, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0x8, 0x9, 0x0, 0x1, [{0x4}]}, @WGPEER_A_PUBLIC_KEY={0x24}]}]}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg2\x00'}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4084}, 0x20008040)

6m52.115580025s ago: executing program 2 (id=159):
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
fcntl$setpipe(r0, 0x408, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf83, 0x3}, 0x1c)
keyctl$join(0x1, &(0x7f0000000280)={'syz', 0x1})
request_key(&(0x7f0000000040)='keyring\x00', &(0x7f0000000100)={'syz', 0x1}, 0x0, 0xfffffffffffffffe)
epoll_create1(0x0)
socket$alg(0x26, 0x5, 0x0)
socket(0x2, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="18020000004000000000000000000000850000007d00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000004000000080000000b"], 0x48)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@multicast1, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x4f}}, {{@in6=@mcast2, 0x404d3, 0x2b}, 0x0, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}}, 0xe8)
r2 = socket$key(0xf, 0x3, 0x2)
r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000008c0), 0x121102, 0x0)
write$rfkill(r3, &(0x7f0000000900)={0x7, 0x2, 0x1, 0x0, 0x1}, 0x8)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f00000001c0), 0x4)
sendmsg$key(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="020b000102"], 0x10}}, 0x0)
sendmsg$key(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x1d, 0x301, 0x0, 0x0, {0xc}}, 0x14}}, 0x0)
close(r1)
socket$nl_xfrm(0x10, 0x3, 0x6)
close_range(r0, 0xffffffffffffffff, 0x0)

6m51.666294444s ago: executing program 2 (id=161):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20)

6m50.88805618s ago: executing program 2 (id=166):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000066000000004b64ffec850000006d000000c50000000500000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x274500, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x41}}, 0x10)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
close_range(r1, r0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000300)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000324, 0x0)
syz_open_procfs$userns(r3, &(0x7f0000000240))
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$IPSET_CMD_FLUSH(r1, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0x8800}, 0x80)
sendfile(r2, r1, 0x0, 0x20000023893)
socket$inet6(0xa, 0x3, 0x8000000003c)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000c80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1800011, &(0x7f0000000100)={[{@nombcache}, {@sysvgroups}, {@norecovery}, {@abort}, {@nombcache}]}, 0x28, 0x5fb, &(0x7f00000004c0)="$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")
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)

6m40.943090794s ago: executing program 0 (id=199):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/keys\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x4005, &(0x7f00000022c0)={[{@mblk_io_submit}, {@user_xattr}, {@discard}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@nombcache}, {@bh}, {@max_batch_time={'max_batch_time', 0x3d, 0x7}}, {@grpjquota_path={'grpjquota', 0x3d, './file0'}}]}, 0x0, 0x597, &(0x7f0000000bc0)="$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")
openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r4, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TIOCVHANGUP(r4, 0x5437, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
memfd_create(0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f000001a000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r6 = memfd_create(&(0x7f0000000140)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xcda\x9b\x11X\x0e\xa1\xcf\x1a\x98S7\xc9\x00'/47, 0x2)
ftruncate(r6, 0xffff)
fcntl$addseals(r6, 0x409, 0x7)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(0xffffffffffffffff, 0xc0406619, 0x0)
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f000002eff0), 0x10)
read$FUSE(r0, &(0x7f00000001c0)={0x2020, 0x0, <r7=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, r7, {0x7, 0x2b, 0x3, 0x20004012, 0x4, 0x6, 0x3, 0x7, 0x0, 0x0, 0x22, 0x4}}, 0x50)
shmctl$IPC_RMID(0x0, 0x0)
shmctl$SHM_INFO(0x0, 0xe, &(0x7f00000008c0)=""/35)
socket$nl_generic(0x10, 0x3, 0x10)

6m37.420074603s ago: executing program 0 (id=201):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002000), 0x2, 0x0)
r1 = gettid()
syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_SET_DEVICE(r2, 0x0, 0x40)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, 0x0, 0x0)
r3 = mq_open(&(0x7f00000008c0)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|\x00\x17\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbb\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x9b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\xe4\x96M_w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86>\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99Md\x1dc\xf1\'j\x03!\x13\xd1\xb8\xbf\xe6\xb2M\b/\rp\xa5\x00\x00\x00\x00', 0x40, 0x9, 0x0)
fcntl$setlease(r3, 0x400, 0x1)
mq_open(&(0x7f0000000780)='eth0\x00\xdd\xad4=2k\xf1\x05\x9b\x91y\xe1;F\xa2\x8df\xe9\x04\x00\x00\x00\x00\x0078z=\x8f\xd5F\xa4AR\xc7\x9f.\xdc\xdb\"A\x16\xd8\x19\xf1lZ\xc8\x93\xda\xf2\xc9\xe8h[u8\xc6\xfa\x9ep\xbe\a\xe2\xf5\xa3Y\x9f\xe1\x04gM\x99K$\r\xf1G\xee\xe1\xbd\x1e\xdf\xe1\x9c\x19\xda\xd3\x94EL\xca\x88\x85Q\x02\xd9L\x90\xeb%/\xb1\xeb\x11uP7\x1f\xd9b\xebF\xf8\x88\xf0\xac.\x94\xfc\v\xb1W\xef~+n\xb1\x9b\x02n]xr\xb3\x80\xbc>\xe8XX\xe6\x12\xf3\xc9\xd5\xf8\xd1\x8d\xcb9\xbf\xb0(<\xeb\x92\x8a\x16\xb7\x11^\xb6\xb7n\xd5\xb5\x00[\xdf\x94\x00\r\x95\x17\xa1h\xf8\x00\x00\x00\"\xa0\x05\xcc^\x90c\xc9}\xb8\ny\xf4\xe1\xb4.\xa4\a\x05\xbb}\x91\xf4C\xf5O\xf1a\x12\b\x86\xa16\xbb}C\xc9\x1d\\\xedD\x14\xb1w\x1e\xa0\xc1E\xb5\xf8\xab\xfb\xd9\x93\xb8vJ\x85p\xb5n\x1b\xe4\xd5g\xae\xe4\xeb\xca\xae\x1bs\xd4\xf0\xc0\xdag\x19R4\xd4\xd4\x04\xfc\x04Zb\xf6\xba\xf8B\xf6YU\xcd\xf2\xdb\xb5\xa2\xda\xdf\x8dD\xef`\x13\x15$\xceq\xd7j\xd7\xe3V\xf2\xa2\x95\xcf\x18T\xf1\xb0\xf3\xf8O', 0x2, 0x136, 0x0)
ioctl$USBDEVFS_BULK(0xffffffffffffffff, 0xc0185502, 0x0)
read$msr(0xffffffffffffffff, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
syz_open_dev$tty1(0xc, 0x4, 0x1)

6m36.648242438s ago: executing program 0 (id=206):
r0 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x1c, &(0x7f0000000000), &(0x7f0000000040)=0xfffffffffffffdd9)

6m34.319761154s ago: executing program 32 (id=166):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000066000000004b64ffec850000006d000000c50000000500000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x274500, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x41}}, 0x10)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
close_range(r1, r0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000300)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000324, 0x0)
syz_open_procfs$userns(r3, &(0x7f0000000240))
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$IPSET_CMD_FLUSH(r1, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0x8800}, 0x80)
sendfile(r2, r1, 0x0, 0x20000023893)
socket$inet6(0xa, 0x3, 0x8000000003c)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000c80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1800011, &(0x7f0000000100)={[{@nombcache}, {@sysvgroups}, {@norecovery}, {@abort}, {@nombcache}]}, 0x28, 0x5fb, &(0x7f00000004c0)="$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")
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)

6m34.261741485s ago: executing program 0 (id=211):
unshare(0x6000800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x24, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r4, &(0x7f0000000280)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r4, 0x0, 0x0, 0x20000890)
openat$tun(0xffffffffffffff9c, 0x0, 0x40241, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_ADV_PARAM={{0x79}, 0xce}}}, 0x7)
bind$netlink(0xffffffffffffffff, &(0x7f0000000080)={0x10, 0x0, 0x0, 0xfffffffffffffffd}, 0xc)
r5 = socket$inet6(0xa, 0x3, 0x26)
connect$inet6(r5, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f0000000340)={{{@in=@dev={0xac, 0x14, 0x14, 0x15}, @in6=@private1={0xfc, 0x1, '\x00', 0x3}, 0x4e20, 0x0, 0x4e20, 0x2, 0xa}, {0x9, 0x0, 0x0, 0x800000, 0x100, 0x5853, 0x0, 0x24}, {0x0, 0x4}, 0x0, 0x0, 0x1, 0x0, 0x5, 0x3}, {{@in=@empty, 0x7ff, 0x33}, 0xa, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x4, 0xfffffffc, 0x4, 0x401}}, 0xe8)
sendmmsg(r5, &(0x7f0000000480), 0x2e9, 0x0)

6m32.664765987s ago: executing program 0 (id=215):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x6a)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='mmap_lock_acquire_returned\x00', r1}, 0x10)
r2 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
unshare(0x2a020400)
signalfd4(0xffffffffffffffff, &(0x7f0000000200)={[0x3]}, 0x8, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000000980)=""/102400, 0x19000)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000040)={0x0, 0x0}, 0x10)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000680)=0x9)

6m31.355904392s ago: executing program 0 (id=221):
keyctl$restrict_keyring(0x1d, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xfffffffffffffffe)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x41}}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, 0x0, 0x0)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendfile(r2, r1, 0x0, 0x20000023893)

6m15.859380106s ago: executing program 33 (id=221):
keyctl$restrict_keyring(0x1d, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xfffffffffffffffe)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x41}}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, 0x0, 0x0)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendfile(r2, r1, 0x0, 0x20000023893)

2m49.586022967s ago: executing program 5 (id=698):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x10, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getrlimit(0xc, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = io_uring_setup(0x34b, &(0x7f0000000300)={0x0, 0x4, 0x100, 0x0, 0x10})
io_uring_register$IORING_UNREGISTER_PERSONALITY(r1, 0x12, 0x20000019, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r4 = openat$nullb(0xffffffffffffff9c, 0x0, 0xa4242, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x15)
writev(r5, &(0x7f0000000000)=[{&(0x7f0000000200)="480000001400190d7ebdeb75fd0d8c562c84d8c033ed7a80fae0090f000000000000a2bc5603ca00000f7f89000000200000004a2471083ec6811778581acb6c0101ff0000000309", 0x48}], 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r4, 0x0)
pipe2(&(0x7f0000000040), 0x0)
memfd_create(&(0x7f00000000c0)='\xe9`\x10\x98[\x82?O3#\xfa\x02\xdc\x96\xa1\xbc\x80\x00+\xb6O', 0x0)
modify_ldt$read(0x0, &(0x7f0000000380)=""/111, 0x6f)
sendfile(r4, r4, 0x0, 0x40008)

2m45.124032265s ago: executing program 5 (id=705):
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd6016000000102b00fc0100000000000000e2ff0000000000fe8000000000000000000400000000aa"], 0x0)
connect$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xa, 0x4}, 0x20)
openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
sendmsg$IPVS_CMD_NEW_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="010000000000000000000900000030000380140002007369743000000000000000000000000006"], 0x44}}, 0x0)
io_uring_setup(0x5ef9, 0x0)
socket$inet6(0x10, 0x3, 0x4)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000ab9ff0), 0x8)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}]})
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f00000003c0)={[{@xino_auto}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
syz_open_dev$cec(0x0, 0x0, 0x208100)
r1 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r1, &(0x7f0000001240)=""/102400, 0x200000, 0x200000)

2m43.040236626s ago: executing program 5 (id=709):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000580)={'veth0_to_team\x00', <r2=>0x0})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8000, 0x20000000019}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b04, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
mmap(&(0x7f00001d1000/0x3000)=nil, 0x3000, 0x1800006, 0x11, 0xffffffffffffffff, 0xbc4cd000)
syz_open_procfs$pagemap(0x0, &(0x7f00000000c0))
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000004c0)={r0, r2, 0x25, 0x0, @void}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, 0x0, &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x9}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000000)={[{@errors_remount}, {@grpquota}]}, 0x4, 0x4f2, &(0x7f0000000a40)="$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")
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040)={0x0, <r5=>0x0}, &(0x7f0000000080)=0xc)
quotactl$Q_GETQUOTA(0xffffffff80000701, &(0x7f0000000140)=@loop={'/dev/loop', 0x0}, r5, 0x0)

2m40.644160123s ago: executing program 5 (id=712):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/custom1\x00', 0x802, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0xef4, &(0x7f0000000300)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r3}, &(0x7f0000000140)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r2, 0x0, 0x0, 0x0, {}, 0x1})
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
ppoll(&(0x7f0000000500)=[{r6}], 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r6, 0x6, 0x21, &(0x7f0000000040)="5766b1b827f600333b09d3748ee7d700", 0x10)
ioprio_get$uid(0x3, 0x0)
ioctl$HCIINQUIRY(r1, 0x400448ca, 0x0)
bind$bt_hci(r1, 0x0, 0x0)
write$bt_hci(r1, &(0x7f00000001c0)=ANY=[@ANYBLOB="0128200702ffffffffffff1089a2ebc30b2850b4ae8c1ede6c3095c50167de2a395e7a8683366a2f68d49841c935bea4c8"], 0xb)
r7 = syz_open_dev$vim2m(&(0x7f0000000580), 0x4, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r7, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(r7, 0x40045612, &(0x7f0000000100)=0x1)
syz_open_dev$tty1(0xc, 0x4, 0x2)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000000082295"], &(0x7f0000000040)='syzkaller\x00'}, 0x94)
bind$packet(0xffffffffffffffff, 0x0, 0x0)

2m33.376409635s ago: executing program 5 (id=724):
r0 = io_uring_setup(0x2e35, &(0x7f0000000440)={0x0, 0x2140, 0x1, 0x0, 0x221})
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
r1 = syz_mount_image$ext4(&(0x7f0000000880)='ext2\x00', &(0x7f0000000000)='./file2\x00', 0x21000e, &(0x7f0000000380), 0x1, 0x52e, &(0x7f0000000e00)="$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")
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
syz_mount_image$udf(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x410, &(0x7f0000000040)=ANY=[], 0x11, 0x489, &(0x7f0000000a40)="$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")
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r0, 0x18, &(0x7f0000000040)={0x100000000, r1, 0x13, {0x9, 0x80}, 0x2}, 0x1)
timerfd_settime(0xffffffffffffffff, 0x3, &(0x7f0000000380)={{0x0, 0x989680}}, 0x0)
symlink(&(0x7f0000000580)='.\x02/file1\x00', &(0x7f00000002c0)='.\x02\x00')
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r3}, &(0x7f0000000000), &(0x7f0000000080)=r4}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r4, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000040)="b9ff030768040600000014fd88a8", 0x0, 0x7fc, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x105}, 0x37)

2m29.126153158s ago: executing program 5 (id=732):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="09000000060000000800000001"], 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002000)=""/102400, 0x19000)
r2 = getpid()
io_uring_setup(0x30a7, &(0x7f0000000280)={0x0, 0x9dd9, 0x200, 0x2, 0x373})
r3 = syz_pidfd_open(r2, 0x0)
r4 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r4, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
r5 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r5, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
sendmsg$rds(r5, 0x0, 0x0)
bind$inet(r4, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000440)="83d813a645fa07afaebe3220e99a604e153b4ade7386df6180be277115fa967ad3e20452326d711fa2a815e033f92c78c77a4590d8f81328a1c8d12351d6b430c59beeb183262cca541f2af7f430b11b90962680821786683dae1f1bd22c0d599221461c2c973ec2502a3eada56c8db0765dd56bd8ee92a1d67903b0907a4617a5014492c87a4a46dd3d4de37ecd0452304889dc99c1d301b6184813ca7c7ce510e191aab1a2", 0x6d}], 0x1, 0x0, 0x0, 0x40010}, 0x0)
open_by_handle_at(r3, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x56100)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x4000)
symlink(&(0x7f0000000080)='.\x00', &(0x7f0000000240)='./file0\x00')
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
add_key$keyring(&(0x7f0000000100), &(0x7f00000001c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000380)={0x1c, 0x4, 0x6, 0x101, 0x0, 0x0, {0x7, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x28000010)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)

2m13.102077899s ago: executing program 34 (id=732):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="09000000060000000800000001"], 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002000)=""/102400, 0x19000)
r2 = getpid()
io_uring_setup(0x30a7, &(0x7f0000000280)={0x0, 0x9dd9, 0x200, 0x2, 0x373})
r3 = syz_pidfd_open(r2, 0x0)
r4 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r4, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
r5 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r5, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
sendmsg$rds(r5, 0x0, 0x0)
bind$inet(r4, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000440)="83d813a645fa07afaebe3220e99a604e153b4ade7386df6180be277115fa967ad3e20452326d711fa2a815e033f92c78c77a4590d8f81328a1c8d12351d6b430c59beeb183262cca541f2af7f430b11b90962680821786683dae1f1bd22c0d599221461c2c973ec2502a3eada56c8db0765dd56bd8ee92a1d67903b0907a4617a5014492c87a4a46dd3d4de37ecd0452304889dc99c1d301b6184813ca7c7ce510e191aab1a2", 0x6d}], 0x1, 0x0, 0x0, 0x40010}, 0x0)
open_by_handle_at(r3, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x56100)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x4000)
symlink(&(0x7f0000000080)='.\x00', &(0x7f0000000240)='./file0\x00')
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
add_key$keyring(&(0x7f0000000100), &(0x7f00000001c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000380)={0x1c, 0x4, 0x6, 0x101, 0x0, 0x0, {0x7, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x28000010)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)

24.056052338s ago: executing program 7 (id=964):
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="12000000040000000400000012"], 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000048c0)={r3, &(0x7f00000047c0), &(0x7f0000004880)=@udp=r2}, 0x20)
recvmmsg(r2, &(0x7f0000000b80)=[{{0x0, 0xffffffffffffff6c, 0x0, 0x0, 0x0, 0x52}, 0xa}], 0x360, 0x120, 0x0)

22.9293227s ago: executing program 7 (id=966):
r0 = socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$exfat(&(0x7f0000000240), &(0x7f0000000040)='./file2\x00', 0x3000cd0, &(0x7f0000000300)=ANY=[@ANYRESDEC=0x0, @ANYRES64, @ANYRES16=r0, @ANYRES64=r0, @ANYRES16=r0, @ANYRES64=r0, @ANYRES32, @ANYRESHEX=0x0, @ANYRES32=r0, @ANYBLOB="0e971398cce77bb1e8108796a7ad72b7f87ae68788307f6e04a43af2eb59b53b64561aaf5dc0b5981e"], 0x1, 0x150f, &(0x7f0000000e80)="$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")
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f0000000400)={[{@prjquota}, {@dax_inode}, {@debug}, {@noload}, {@data_err_abort}, {@nolazytime}, {@prjquota}, {@debug}]}, 0xfe, 0x46d, &(0x7f0000000f00)="$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")
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x200000c, 0x8010, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r3, 0x0, 0x8008000)
r4 = add_key$keyring(&(0x7f0000000000), &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
r5 = add_key$keyring(0x0, &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, r4)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r4, 0x0, 0x0)
keyctl$link(0x8, r5, r4)
socket$inet6(0xa, 0x800000000000002, 0x0)
io_uring_enter(0xffffffffffffffff, 0x2219, 0x7721, 0x16, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000300)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0xd, 0x1c, &(0x7f0000000d80)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bc8900000000000035090100000000009500000000000000b7080000000000007b9a00fe00000000b509000000000000c3aaf0fff1000000bf8600000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018220000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7050000080000004608ebff76000000bf9800000000000056080000000000008500000000000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

20.285307003s ago: executing program 4 (id=970):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc1}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_MOVE(0x1e, r3, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x1)

18.760988732s ago: executing program 4 (id=973):
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000005c0)='memory.swap.events\x00', 0x275a, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000580), 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffdb0, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002000)=""/102400, 0x19000)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000340)=ANY=[@ANYBLOB="f0000000100013070000000000000000fc020000000000000000000000000000fe8000000000000000000000000000100004000000000000000000202c000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe"], 0xf0}, 0x1, 0xe}, 0x10)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0xffffffff)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/65, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74, 0x8080000})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x1)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)

18.709233183s ago: executing program 3 (id=974):
sched_setscheduler(0x0, 0x2, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x24000010)
r0 = socket(0xf, 0x800, 0x0)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1, 0x0, 0x7fffffff, 0x34}, 0x1c)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$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")
pipe(0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb010018"], 0x0, 0x5a}, 0x20)
r1 = socket(0x10, 0x803, 0x0)
r2 = socket(0x1, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x40, 0x0, 0x0, r3}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000280)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x34, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r4}, [@IFA_LOCAL={0x14, 0x2, @ipv4}, @IFA_FLAGS={0x8, 0x8, 0x781}]}, 0x34}}, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
close(r5)
socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000000), 0xfffffecc)
splice(0xffffffffffffffff, 0x0, r5, 0x0, 0x4ffe6, 0x0)

18.479716488s ago: executing program 4 (id=975):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8000, 0x20000000019}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001440), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001600)={&(0x7f0000001500)={0x2c, r4, 0x1, 0x4000, 0x2, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x2c}}, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000000)={[{@errors_remount}, {@grpquota}]}, 0x4, 0x4f2, &(0x7f0000000a40)="$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")

18.239410542s ago: executing program 6 (id=976):
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r3, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="12000000040000000400000012"], 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000048c0)={r4, &(0x7f00000047c0), &(0x7f0000004880)=@udp=r3}, 0x20)
recvmmsg(r3, &(0x7f0000000b80)=[{{0x0, 0xffffffffffffff6c, 0x0, 0x0, 0x0, 0x52}, 0xa}], 0x360, 0x120, 0x0)

16.871990369s ago: executing program 3 (id=977):
socketpair$tipc(0x1e, 0x5, 0x0, 0x0)
r0 = syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000980)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x1200800, &(0x7f00000008c0)=ANY=[@ANYBLOB="706172743d3078303030303030303030303030303031302c6e6c733d69736f383835392d332c747970653d78fa42012c666f7263652c6769643d", @ANYRESHEX=0x0, @ANYBLOB="00000000f5", @ANYRESHEX=0x0, @ANYBLOB="056c"], 0x3, 0x6ae, &(0x7f0000000e40)="$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")
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
add_key(&(0x7f0000000280)='pkcs7_test\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd)
r5 = fsopen(&(0x7f0000000100)='binder\x00', 0x0)
bind$802154_dgram(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
openat$vga_arbiter(0xffffffffffffff9c, 0x0, 0x80082, 0x0)
syz_mount_image$fuse(0x0, 0x0, 0x4000, &(0x7f0000000340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x7000}}, 0x0, 0x0, 0x0)
epoll_pwait(r5, &(0x7f0000000180)=[{}, {}, {}, {}], 0x4, 0x7, &(0x7f00000003c0)={[0x2]}, 0x8)
syz_usb_connect(0x2, 0x0, 0x0, 0x0)
mkdir(0x0, 0x0)

16.029623485s ago: executing program 6 (id=978):
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xa, &(0x7f0000000080)=0x1, 0x4)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x4000000}, 0x3000c81c)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x7c}}, 0x0)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x9007}, 0x4)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x33}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x3, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="180200000000000000000000000834752b20aab8cf59d4bad3c0000000850000000e000000180100002020782500000000002020207b1af8ff00000000bfa1000000000000070100"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0xb}, 0x94)
setsockopt$sock_int(r1, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
connect$inet(r1, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socket(0x10, 0x3, 0x0)
sendmmsg$inet(r1, &(0x7f0000004d00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x30000}}], 0x300, 0xf00)

14.019903475s ago: executing program 7 (id=982):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000080)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
socket$inet6_udp(0xa, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
connect$unix(r2, &(0x7f00000000c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x227b, &(0x7f00000001c0)=0x2001)
r5 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
read$FUSE(r5, 0x0, 0x0)
write$sndseq(r5, &(0x7f0000000180)=[{0xff, 0x0, 0x0, 0x0, @tick=0x4, {}, {}, @result={0x1, 0x2}}, {0x0, 0x0, 0xff, 0x3, @tick=0xf27, {0x1}, {}, @addr={0x2a, 0x5}}], 0x38)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000300), 0x404, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r4, @ANYBLOB])

13.138891512s ago: executing program 4 (id=983):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc1}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_MOVE(0x1e, r3, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x1)

10.415320696s ago: executing program 7 (id=985):
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000005c0)='memory.swap.events\x00', 0x275a, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000580), 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffdb0, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002000)=""/102400, 0x19000)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000340)=ANY=[@ANYBLOB="f0000000100013070000000000000000fc020000000000000000000000000000fe8000000000000000000000000000100004000000000000000000202c000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe"], 0xf0}, 0x1, 0xe}, 0x10)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0xffffffff)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/65, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74, 0x8080000})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x1)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)

10.342748047s ago: executing program 3 (id=986):
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(0x0, 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102400, 0x19000)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff)
add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
r4 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r4, 0x29, 0x37, &(0x7f0000000240)=ANY=[], 0x8)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @loopback={0xfec0ffff00000000}, 0x3}, 0x1c)
read$FUSE(r0, &(0x7f00000022c0)={0x2020}, 0x2020)

10.131689521s ago: executing program 1 (id=987):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8000, 0x20000000019}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(0x0, 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'xchacha12\x00'}, 0x58)
accept4$alg(r3, 0x0, 0x0, 0x80800)
io_setup(0xff, &(0x7f0000000380))

9.17983737s ago: executing program 4 (id=988):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
socketpair$unix(0x1, 0x3, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix={0x434c, 0x8, 0x43353039, 0x4, 0x2, 0x53, 0xa, 0x5, 0x1, 0x4, 0x2, 0x4}})
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
syz_clone3(&(0x7f0000001880)={0x100000200, 0x0, 0x0, 0x0, {}, 0x0, 0xffffffffffffffae, 0x0, 0x0}, 0x58)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_int(r1, 0x6, 0x25, 0x0, &(0x7f0000000080))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x3, 0xfff, 0x0, 0xb49, 0xc, 0x8, 0x0, 0x3}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x24000004)
madvise(&(0x7f000003e000/0x3000)=nil, 0x3000, 0x14)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r4, 0x8910, &(0x7f0000000000)={'vlan0\x00', @ifru_ivalue=0x8})
ioctl$sock_netdev_private(r4, 0x8914, &(0x7f0000000000))
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000800), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x5, 0x7a880bb668777da9}, 0x9c)
r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={0x0, 0x0}, 0x28)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=ANY=[@ANYRESHEX=r2], 0x0, 0x5, 0xe2, &(0x7f00000002c0)=""/226, 0x0, 0x0, '\x00', 0x0, 0x25, r6, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0)={0x0, 0xfffffffe}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14}, 0x94)

8.592892691s ago: executing program 3 (id=989):
socket$packet(0x11, 0x3, 0x300)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000850619fbb7c75150926b00000000", @ANYRES32=r3, @ANYBLOB="fe000000000000001c0012000c000100626f6e64000000000c0002000800010004"], 0x3c}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="540000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002c0012800e0001006970366772657461700000001800028014000700fc00000000000000000000000000000008000a00", @ANYRES32=r6], 0x54}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
getsockname$packet(r2, &(0x7f0000000340)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000440)=0xa)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=ANY=[@ANYBLOB="500000001000110f00"/20, @ANYRES32=0x0, @ANYBLOB="040100000000000028001280090001007665746800000000180002", @ANYRES32=0x0, @ANYBLOB=' \x00\x00\x00 \x00\x00\x00\b\x00\n\x00', @ANYRES32=r7], 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

7.62547455s ago: executing program 1 (id=990):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000040), 0x49, 0xc10)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_mount_image$iso9660(&(0x7f0000000dc0), &(0x7f0000002380)='./file1\x00', 0x3a0cc0a, &(0x7f00000023c0)=ANY=[@ANYBLOB='hide,dmode=0x0000000000000005,map=normal,map=normal,session=0x000000000000000e,overriderockperm,showassoc,nocompress,utf8,map=normal,session=0x0000000000000006,map=acorn,mode=0x0000000000000086,uid=', @ANYRESDEC=0x0, @ANYBLOB='\x00\x00', @ANYRESDEC, @ANYRESDEC, @ANYRES8, @ANYRESDEC], 0x43, 0xa02, &(0x7f0000003640)="$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")
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="14"], &(0x7f0000000000), 0x0)
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x0)
msgget$private(0x0, 0x722)
fgetxattr(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000cc0), &(0x7f0000000c80)='./file0\x00', 0x0, &(0x7f0000000d00)=ANY=[], 0x6, 0x364, &(0x7f0000000900)="$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")
syz_usbip_server_init(0x5)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x8, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="1802000000000000000000000000000085000000530000009500000000000000"], &(0x7f0000000140)='GPL\x00', 0x8, 0xa2, &(0x7f00000002c0)=""/162, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff9f}, 0x22)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='\'\x00\x00\x00\a'], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='2', 0x1, 0x4fed0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

5.665993319s ago: executing program 6 (id=991):
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$sock_SIOCGSKNS(r0, 0x894c, 0x0)
socket$l2tp(0x2, 0x2, 0x73)
syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/net\x00')
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000180000002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000004c0)={r1, 0x3, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x44)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, 0x0, &(0x7f0000000000)='syzkaller\x00'}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sched_process_wait\x00', r2}, 0x10)
r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000000080)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x6a, 0xa, 0xff00}, [@call={0xc}, @exit, @map_fd, @jmp]}, &(0x7f0000000140)='GPL\x00', 0x2, 0xffa0, &(0x7f0000000180)=""/149, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x1e, 0x10, 0x0, 0x1e}, 0x2d)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000002c0)={@ifindex, r5, 0x11, 0x0, 0x0, @void, @value=r4}, 0x20)

5.609958979s ago: executing program 1 (id=992):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8000, 0x20000000019}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'xchacha12\x00'}, 0x58)
r4 = accept4$alg(r3, 0x0, 0x0, 0x80800)
io_setup(0xff, &(0x7f0000000380)=<r5=>0x0)
io_submit(r5, 0x27f, &(0x7f0000001440)=[&(0x7f0000000200)={0x1000000, 0x0, 0x700000000000000, 0x0, 0x0, r4, &(0x7f0000000340), 0x41}])
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0)

5.497860922s ago: executing program 3 (id=993):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8000, 0x20000000019}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001440), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001600)={&(0x7f0000001500)={0x2c, r4, 0x1, 0x4000, 0x2, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x2c}}, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000000)={[{@errors_remount}, {@grpquota}]}, 0x4, 0x4f2, &(0x7f0000000a40)="$eJzs3c9vVF0ZAOD3Tjttv34DBWWhRgURRUOY/gAaggthozGExEhcuYDaDk3TGabptEgri7J0byKJK/0T3LkwYeXCnTvducGFCSrRUBMXY+6dSzu0HVqk7dDO8yR37j3nXuY9Z4ZzztzDDCeAnnUuItYiYiAi7kfESJ6f5FvcbG3pda9fPZlef/VkOolm8+4/kux8mhdtfyb1af6cQxHxg+9G/DjZHrexsjo/Va1WFvP06FJtYbSxsnp5rpDnTEyOT45dv3JtYt/qerb2m5ffmbv9w9/99ksv/rj2zZ+mxSr97ER2rr0e+6lV9WKU2vL6I+L2QQTrkv787w9HT9raPhMR57P2PxJ92bsJABxnzeZINEfa0wDAcZfe/5ciKZTzuYBSFArlcmsO70wMF6r1xtKlkfryw5nI5rBORbHwYK5aGcvnCk9FMUnT49nxZnpiS/pKRJyOiJ8PfpKly9P16kw3P/gAQA/7dMv4/+/B1vgPABxzQ+95va8IAMDR977jPwBw9Bn/AaD3vMf4b+ofAI4J9/8A0HuM/wDQe3Yd/58eTjkAgEPx/Tt30q25nv//1zOPVpa/VXp0eabSmC/XlqfL0/XFhfJsvT5brZSnm83dnq9ary+MX91INlZW79Xqyw+X7s3VpmYr9yrFA64PALC702ef/zmJiLUbn2RbtK3lYKyG463Q7QIAXdPX7QIAXeP3PNC79nCPbxoAjrkdluh9S8evCD2z+CscVRc/b/4fepX5f+hd/9/8/7f3vRzA4TP/D72r2Uys+Q8APcYcP/BB//4PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPaqUbUmhnK0FvpY+FsrliBMRcSqKyYO5amUsIk5GxJ8Gi4NperzbhQYAPlDhb0m+/tfFkQulrWcHkv8MZvuI+Mkv7/7i8dTS0uJ4mv/PjfylZ3n+xEA3KgAAtLu5Pas1Tuf7thv516+eTL/ZDrOIL2+1FhdN467nW+tMf/Rn+6EoRsTwv5I83ZJ+Xunbh/hrTyPic5v1f9wWoZTNgbRWPt0aP4194gDib77+W+MX3opfyM6l+2L2Wnx2H8oCveb5rVY/mbe9tInl7a8Q57L9zu1/KOuhPtyb/m99W/9X2Oj/+rbFT7I2f24j/e6SvLz6++9ty2yOtM49jfhC/07xk434SYf+98Ie6/iXL375fKdzzV9FXIyd47fUsm52dKm2MNpYWb08V5uarcxWHk5MTI5Pjl2/cm1iNJujbj3+YacYf79x6WSn+Gn9hzvEH9ql/l/bY/1//d/7P/rKO+J/46s7v/9n3hE/HRO/vsf4U8M3Oy7fncaf6VD/3d7/S3uM/+KvqzN7vBQAOASNldX5qWq1srjLQfpZc7drHBzNg1iL+AiKkR8MxEdRjJ4/6HbPBBy0zUbf7ZIAAAAAAAAAAAAAAACdNFZW5wfjYH9O1O06AgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcHz9LwAA//9Jt84K")

4.227963117s ago: executing program 6 (id=994):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448d4, &(0x7f0000000480)={0x0, 0x1, "00fa00"})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
sendmsg$alg(0xffffffffffffffff, 0x0, 0x40080d1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x42002)
request_key(&(0x7f0000000240)='encrypted\x00', &(0x7f0000000280)={'syz', 0x3}, &(0x7f00000002c0)='\xb2,)*{\x00', 0xffffffffffffffff)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="050000000000000073113300000000008510000002000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={r4, <r5=>0xffffffffffffffff}, 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x4, 0x1d, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x100}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r5}}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1000}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r5}, {}, {0x85, 0x0, 0x0, 0xb6}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r6, 0x0, 0x10, 0x10, &(0x7f00000006c0)="0000000005000000", &(0x7f0000000700)=""/8, 0x2f00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

3.781729925s ago: executing program 7 (id=995):
syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
r0 = getpgid(0x0)
syz_pidfd_open(r0, 0x0)
r1 = socket(0x6, 0x3, 0x1)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x13, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x94)
mknodat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = shmget$private(0x0, 0x13000, 0x1, &(0x7f0000feb000/0x13000)=nil)
shmat(r4, &(0x7f0000ff7000/0x3000)=nil, 0x400c)
munmap(&(0x7f0000ffb000/0x1000)=nil, 0x1000)
mremap(&(0x7f0000ff8000/0x3000)=nil, 0x3000, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil)
r5 = landlock_create_ruleset(&(0x7f0000000500)={0x21c1, 0x3, 0x3}, 0x18, 0x0)
landlock_restrict_self(r5, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r6, &(0x7f0000003000)=@file={0x1}, 0x6e)
listen(r6, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000640)=@file={0x1}, 0x6e)
newfstatat(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r1, 0x89f2, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000001c0)={r2, 0x0, 0x25, 0x1c, @void}, 0x10)

3.605344609s ago: executing program 1 (id=996):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000080)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
socket$inet6_udp(0xa, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
connect$unix(r2, &(0x7f00000000c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x227b, &(0x7f00000001c0)=0x2001)
r5 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
read$FUSE(r5, 0x0, 0x0)
write$sndseq(r5, &(0x7f0000000180)=[{0xff, 0x0, 0x0, 0x0, @tick=0x4, {}, {}, @result={0x1, 0x2}}, {0x0, 0x0, 0xff, 0x3, @tick=0xf27, {0x1}, {}, @addr={0x2a, 0x5}}], 0x38)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000300), 0x404, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r4, @ANYBLOB=',version=9p2000.u,nodevmap,cao]'])

1.941845291s ago: executing program 6 (id=997):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000100)='syzkaller\x00'}, 0x94)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={@map=r0, 0xc, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000008c0)={'bridge_slave_1\x00', <r3=>0x0})
r4 = openat$sw_sync(0xffffffffffffff9c, 0x0, 0x901, 0x0)
r5 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000ac0), 0x400, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r5, 0xc0285700, &(0x7f0000000b00)={0x4, "abacd211119ca94c633774262eb5ab2c7b9c5cff6ce78185d8c4dc064744e042"})
ppoll(&(0x7f0000000000)=[{r1, 0x8000}, {r5, 0x8}], 0x2, &(0x7f00000003c0), &(0x7f00000007c0)={[0x6]}, 0x8)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r4, 0xc0285700, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000002300)=@raw={'raw\x00', 0xc01, 0x3, 0x2290, 0x1100, 0x5002004a, 0x0, 0x0, 0x0, 0x2200, 0x3c8, 0x3c8, 0x2200, 0x3c8, 0x3, 0x0, {[{{@uncond, 0x60, 0x10a0, 0x1100, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030}, {0x1, 0x0, 0x0, 0x0, './cgroup.cpu/syz1\x00'}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x1, [0x2, 0x1, 0x7], 0x6, 0x2}, {0x2, [0x0, 0x6, 0x4, 0x9, 0x0, 0x89ce99baffcf6900], 0x1, 0x1}}}}, {{@uncond, 0x0, 0x10a0, 0x1100, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030}, {0x0, 0x0, 0x1, 0x1, './cgroup.net/syz1\x00', 0x2, {0x5}}}]}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@loopback, [0xffffff00, 0xff000000, 0xff, 0xff0000ff], 0x4e22, 0x4c20, 0x4e24, 0x4e23, 0xc9, 0x0, 0x3b, 0x83, 0x25}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x22f8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000400)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000540)=""/139, 0x1a, 0x8b, 0x1, 0x2}, 0x28)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000100)={0x3920e, 0xffffffffffffffff, 0x3, 0x1, 0xfffffffe, 0x6})
r6 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, &(0x7f0000001100)={0x77359400}, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8c}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=@getchain={0x24, 0x11, 0x1, 0x0, 0x1fffffd, {0x0, 0x0, 0x0, r3, {0x7, 0xe}, {}, {0x4}}}, 0x24}, 0x1, 0x0, 0x0, 0x8c0}, 0x20048054)

770.142294ms ago: executing program 3 (id=998):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc1}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_MOVE(0x1e, r3, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x1)

754.062985ms ago: executing program 7 (id=999):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000400)=ANY=[], 0x8)
r1 = dup(0xffffffffffffffff)
ioctl$BLKREPORTZONE(r1, 0xc0101282, 0x0)
connect$inet6(r1, &(0x7f0000000280)={0xa, 0xfffe, 0x7, @mcast2, 0x5}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000240)='bridge0\x00', 0x10)
write(r0, &(0x7f00000000c0)="842a0a65bd8c002b0304000e0580a7b6070d63e286a5cefe", 0x5ac)
openat$comedi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/comedi2\x00', 0xc2002, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007500000004"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='sys_enter\x00'}, 0x18)
fadvise64(0xffffffffffffffff, 0x1, 0x2000000000b09c, 0x0)
r3 = getpgid(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x0, 0x0)
prlimit64(r3, 0xe, &(0x7f0000000100)={0x8c, 0x6f10}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20000841, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="50000000090601020000000000000000020000000900020073797a31000000000500010007000000280007800c00018008000140ffffffff0500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x4000}, 0x80)

748.803795ms ago: executing program 1 (id=1000):
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, 0x0, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f00000001c0), 0x4)
sendmsg$key(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="020b000102"], 0x10}}, 0x0)
sendmsg$key(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB], 0x10}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

305.170064ms ago: executing program 6 (id=1001):
sched_setscheduler(0x0, 0x2, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x24000010)
r0 = socket(0xf, 0x800, 0x0)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1, 0x0, 0x7fffffff, 0x34}, 0x1c)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$eJzs3TFoM2UcBvDnLomf/b4gVRdBUEFEtFDqJrjURaEgpYgIKlREXJRWqC1urZOLg84qnVyKuFkdpUtxUQSnqh3qImhxsDjoELlcK9VGFFNz8t3vB5fcJe97//e4e95kOS5Aa00nmU/SSTKTpJekON/grnqZPt3cntpfTgaDx38shu3q7dpZv2tJtpI8mGSvLPJiN9nYffro54NH731jvXfPe7tPTU30IE8dHx0+dvLu4usfLjyw8fmX3y8WmU//D8d1+YoRn3WL5Jb/otj/RNFtegT8E0uvfvBVlftbk9w9zH8vZeqT9+baDXu93P/OX/V964cvbp/kWIHLNxj0qt/ArQHQOmWSfopyNkm9Xpazs/V/+K87V8uXVtdemXlhdX3l+aZnKuCy9JPDRz6+8tG1P+X/u06df+D6VeX/iaWdb6r1k07TowEmqcr/zLOb90X+oXXkH9pL/qG95B/aS/6hveQf2kv+ob3kH9pL/qG95B/a63z+AYB2GVxp+g5koClNzz8AAAAAAAAAAAAAAAAAAMBF21P7y2fLpGp++nZy/HCS7qj6neHziJMbh69XfyqqZr8r6m5jeebOMXcwpvcbvvv6pm+brf/ZHc3W31xJtl5LMtftXrz+itPr79+7+W++7z03ZoExPfRks/V/3Wm2/sJB8kk1/8yNmn/K3DZ8Hz3/9KvzN2b9l38ZcwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABMzG8BAAD//8n0bSk=")
pipe(&(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r3 = socket(0x10, 0x803, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x40, 0x0, 0x0, r5}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000280)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x34, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r6}, [@IFA_LOCAL={0x14, 0x2, @ipv4}, @IFA_FLAGS={0x8, 0x8, 0x781}]}, 0x34}}, 0x0)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
close(r7)
socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r2, &(0x7f0000000000), 0xfffffecc)
splice(r1, 0x0, r7, 0x0, 0x4ffe6, 0x0)

302.934324ms ago: executing program 4 (id=1002):
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
r1 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f0000000340), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, 0x0, 0x0, 0x0)
timerfd_create(0x9, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x10)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00')
sched_setscheduler(r1, 0x2, &(0x7f0000000240)=0x10000)
tkill(r1, 0xb)
socket$phonet_pipe(0x23, 0x5, 0x2)
getsockopt$PNPIPE_HANDLE(0xffffffffffffffff, 0x113, 0x3, 0x0, &(0x7f00000000c0))
r3 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r3, &(0x7f0000000040), 0x10)
listen(r3, 0x0)
socket(0x28, 0x5, 0x0)
r4 = accept4$unix(r3, 0x0, 0x0, 0x0)
recvfrom$unix(r4, 0x0, 0x0, 0x40000022, 0x0, 0x0)
syz_io_uring_setup(0x3783, &(0x7f00000000c0)={0x0, 0xe001, 0x1000, 0x2, 0x2c4}, &(0x7f0000000040), &(0x7f0000000140))
io_uring_setup(0x194e, &(0x7f0000000a80)={0x0, 0xd3d9, 0x80, 0x3, 0x2b0})

0s ago: executing program 1 (id=1003):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c1)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x8, 0x4, 0x4, 0x4, 0x0, 0x1}, 0x48)
write$P9_RVERSION(r1, 0x0, 0x0)
r3 = dup(r1)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x2}}, 0x18)
write$FUSE_INIT(r3, &(0x7f0000000280)={0x50, 0x0, 0x0, {0x7, 0x21, 0x0, 0x0, 0xfff9, 0x1000, 0x0, 0x7, 0x0, 0x0, 0x20, 0x8}}, 0x50)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_loose}, {@nodevmap}], [], 0x6b}})
syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00')

kernel console output (not intermixed with test programs):

e_slave_1) entered disabled state
[   92.761076][ T4478] loop1: detected capacity change from 0 to 1024
[   92.769385][ T4478] EXT4-fs: inline encryption not supported
[   92.775649][ T4478] EXT4-fs: Ignoring removed orlov option
[   93.656351][ T4464] device bridge_slave_1 left promiscuous mode
[   93.682295][ T4464] bridge0: port 2(bridge_slave_1) entered disabled state
[   93.723937][ T4478] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a802c118, mo2=0002]
[   93.732234][ T4478] System zones: 0-1, 3-12
[   93.765646][ T4478] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[   93.897295][ T4266] EXT4-fs (loop1): unmounting filesystem.
[   95.991751][ T4491] loop3: detected capacity change from 0 to 1024
[   95.995313][ T4491] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   96.009402][ T4491] EXT4-fs (loop3): group descriptors corrupted!
[   96.896573][ T4505] loop4: detected capacity change from 0 to 1024
[   97.493238][ T4505] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   97.794330][ T4505] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[   97.812214][ T4505] ext4 filesystem being mounted at /3/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.226773][ T4528] loop2: detected capacity change from 0 to 1764
[   98.309027][ T4276] EXT4-fs (loop4): unmounting filesystem.
[   98.317666][ T4381] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[   98.448791][ T4531] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.580313][ T4531] device bridge_slave_1 left promiscuous mode
[   98.610876][ T4531] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.839830][ T4536] process 'syz.3.37' launched './file0' with NULL argv: empty string added
[  100.059246][ T4539] loop4: detected capacity change from 0 to 16
[  100.111047][ T4539] erofs: (device loop4): mounted with root inode @ nid 36.
[  103.157359][ T4564] loop2: detected capacity change from 0 to 1024
[  103.297333][ T4564] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  103.430567][ T4270] EXT4-fs (loop2): unmounting filesystem.
[  104.112161][ T4574] loop4: detected capacity change from 0 to 512
[  104.904097][ T4574] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  104.913437][ T4574] ext4 filesystem being mounted at /8/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.040229][ T4276] EXT4-fs (loop4): unmounting filesystem.
[  105.071628][ T4584] loop1: detected capacity change from 0 to 16
[  106.446799][ T4584] erofs: (device loop1): mounted with root inode @ nid 36.
[  110.355304][ T4620] loop2: detected capacity change from 0 to 512
[  110.404357][ T4620] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  110.482155][ T4620] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  110.554520][ T4623] loop0: detected capacity change from 0 to 256
[  110.561695][ T4623] exfat: Unknown parameter '00000000000000000000ÿÿÿÿÿÿÿÿ'
[  110.575809][ T4620] EXT4-fs (loop2): 1 truncate cleaned up
[  110.581853][ T4620] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  110.746292][ T4620] netlink: 'syz.2.62': attribute type 4 has an invalid length.
[  112.907256][ T4633] netlink: 'syz.2.62': attribute type 4 has an invalid length.
[  112.976046][ T4635] loop4: detected capacity change from 0 to 16
[  112.995722][ T4635] erofs: (device loop4): mounted with root inode @ nid 36.
[  114.553811][ T4638] loop3: detected capacity change from 0 to 256
[  114.573761][ T4270] EXT4-fs (loop2): unmounting filesystem.
[  114.775357][ T4638] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  114.940859][ T4647] loop4: detected capacity change from 0 to 256
[  115.073880][ T4647] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x19066d23, utbl_chksum : 0xe619d30d)
[  119.540816][ T4675] loop0: detected capacity change from 0 to 16
[  119.584621][ T4675] erofs: (device loop0): mounted with root inode @ nid 36.
[  120.329814][ T4685] netlink: 4 bytes leftover after parsing attributes in process `syz.0.85'.
[  122.236737][ T4698] loop1: detected capacity change from 0 to 512
[  122.310378][ T4698] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  122.468170][ T4698] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  122.528891][ T4698] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  122.549494][ T4698] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  123.848897][ T4711] loop2: detected capacity change from 0 to 16
[  123.856177][ T4698] System zones: 0-2, 18-18, 34-34
[  123.890736][ T4711] erofs: (device loop2): mounted with root inode @ nid 36.
[  123.924389][ T4698] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.81: iget: bad i_size value: 360287970189639680
[  124.382595][ T4698] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.81: couldn't read orphan inode 15 (err -117)
[  124.396956][ T4698] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  124.550617][ T4715] EXT4-fs error (device loop1): ext4_find_dest_de:2115: inode #2: block 3: comm syz.1.81: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[  125.199838][ T4718] loop3: detected capacity change from 0 to 8
[  125.255726][ T4266] EXT4-fs (loop1): unmounting filesystem.
[  125.415364][ T4718] SQUASHFS error: lzo decompression failed, data probably corrupt
[  125.462762][ T4718] SQUASHFS error: Failed to read block 0x144: -5
[  125.469255][ T4718] SQUASHFS error: Unable to read metadata cache entry [142]
[  125.550900][ T4718] SQUASHFS error: Unable to read inode 0x11f
[  128.067176][ T4743] fuse: Bad value for 'fd'
[  128.285883][ T4746] loop0: detected capacity change from 0 to 128
[  128.322197][ T4746] FAT-fs (loop0): Unrecognized mount option "uni_xl%PB^�°cwiet" or missing value
[  128.365535][ T4381] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  132.906161][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  132.915389][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  133.882434][ T4431] usb 4-1: new full-speed USB device number 2 using dummy_hcd
[  133.982787][ T4779] Bluetooth: MGMT ver 1.22
[  133.987633][ T4779] Bluetooth: hci0: load_link_keys: too big key_count value 42374
[  134.097684][ T4431] usb 4-1: config 0 has an invalid interface number: 154 but max is 0
[  134.128818][ T4431] usb 4-1: config 0 has no interface number 0
[  134.145293][ T4782] loop0: detected capacity change from 0 to 16
[  134.162159][ T4431] usb 4-1: New USB device found, idVendor=0bda, idProduct=f179, bcdDevice=fd.4b
[  134.202360][ T4782] erofs: (device loop0): mounted with root inode @ nid 36.
[  134.212147][ T4431] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.227856][ T4431] usb 4-1: config 0 descriptor??
[  137.109189][   T14] usb 4-1: USB disconnect, device number 2
[  139.376994][ T4824] loop1: detected capacity change from 0 to 512
[  139.449299][ T4827] loop2: detected capacity change from 0 to 8
[  139.462919][ T4824] EXT4-fs: Ignoring removed i_version option
[  139.576370][ T4831] loop3: detected capacity change from 0 to 128
[  139.614053][ T4824] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  139.640739][ T4824] ext4 filesystem being mounted at /20/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  139.671779][ T4831] ext4: Unknown parameter 'euid'
[  140.667987][ T4822] EXT4-fs error (device loop1): ext4_readdir:263: inode #12: block 32: comm syz.1.121: path /20/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  140.882285][ T4822] EXT4-fs (loop1): Remounting filesystem read-only
[  142.473741][ T4266] EXT4-fs (loop1): unmounting filesystem.
[  144.277912][ T4856] loop2: detected capacity change from 0 to 128
[  144.374090][ T4856] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  144.491665][ T4856] ext4 filesystem being mounted at /34/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  144.742372][ T4864] Zero length message leads to an empty skb
[  144.795657][ T4867] I/O error, dev loop1, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  144.883678][ T4867] I/O error, dev loop1, sector 256 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  144.953895][ T4867] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  145.001301][ T4867] I/O error, dev loop1, sector 512 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  145.953976][ T4867] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=512, location=512
[  145.972032][ T4867] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  146.013091][ T4270] EXT4-fs (loop2): unmounting filesystem.
[  146.032168][ T4867] UDF-fs: Scanning with blocksize 512 failed
[  146.114253][ T4867] I/O error, dev loop1, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  146.132509][ T4867] I/O error, dev loop1, sector 512 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  146.178595][ T4867] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  146.238611][ T4867] I/O error, dev loop1, sector 1024 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  146.268896][ T4877] loop0: detected capacity change from 0 to 512
[  146.288443][ T4867] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=512, location=512
[  146.334657][ T4867] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  146.352252][ T4877] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  146.383168][ T4867] UDF-fs: Scanning with blocksize 1024 failed
[  146.424262][ T4867] I/O error, dev loop1, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  146.462761][ T4877] EXT4-fs (loop0): 1 truncate cleaned up
[  146.464645][ T4867] I/O error, dev loop1, sector 1024 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  146.468463][ T4877] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  146.509561][ T4867] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  146.570738][ T4867] I/O error, dev loop1, sector 2048 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  146.612083][ T4867] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=512, location=512
[  146.621812][ T4867] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  146.662390][ T4867] UDF-fs: Scanning with blocksize 2048 failed
[  146.669060][ T4867] I/O error, dev loop1, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  146.743631][ T4867] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  146.778155][ T4867] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=512, location=512
[  146.808550][ T4867] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  146.832037][ T4867] UDF-fs: Scanning with blocksize 4096 failed
[  146.838260][ T4867] UDF-fs: warning (device loop1): udf_fill_super: No partition found (1)
[  146.899379][ T4272] EXT4-fs (loop0): unmounting filesystem.
[  147.072824][ T4893] netlink: 20 bytes leftover after parsing attributes in process `syz.2.137'.
[  147.231213][ T4893] netlink: 20 bytes leftover after parsing attributes in process `syz.2.137'.
[  147.914259][ T4906] fuse: Bad value for 'fd'
[  150.797287][ T4931] loop3: detected capacity change from 0 to 1764
[  150.959359][ T4929] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(10)
[  150.966472][ T4929] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  150.975241][ T4929] vhci_hcd vhci_hcd.0: Device attached
[  151.169890][ T4938] loop2: detected capacity change from 0 to 128
[  151.176985][ T4938] FAT-fs (loop2): Unrecognized mount option "uni_xl%PB^�°cwiet" or missing value
[  151.200579][ T4932] vhci_hcd: connection closed
[  151.206003][ T4742] vhci_hcd: stop threads
[  151.246824][ T4742] vhci_hcd: release socket
[  151.262743][ T4742] vhci_hcd: disconnect device
[  151.273078][ T4381] blk_print_req_error: 2 callbacks suppressed
[  151.273102][ T4381] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  151.292210][ T4679] usb 40-1: SetAddress Request (2) to port 0
[  151.406753][ T4679] usb 40-1: new SuperSpeed USB device number 2 using vhci_hcd
[  152.086888][ T4679] usb 40-1: enqueue for inactive port 0
[  152.607079][ T4679] usb usb40-port1: attempt power cycle
[  154.505688][ T4679] usb usb40-port1: unable to enumerate USB device
[  155.756889][   T27] audit: type=1326 audit(1758356220.675:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4976 comm="syz.1.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba4e98ec29 code=0x7ffc0000
[  155.871753][   T27] audit: type=1326 audit(1758356220.715:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4976 comm="syz.1.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fba4e98ec29 code=0x7ffc0000
[  155.893733][    C1] vkms_vblank_simulate: vblank timer overrun
[  155.955223][   T27] audit: type=1326 audit(1758356220.715:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4976 comm="syz.1.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba4e98ec29 code=0x7ffc0000
[  155.977419][    C1] vkms_vblank_simulate: vblank timer overrun
[  156.464536][   T27] audit: type=1326 audit(1758356220.715:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4976 comm="syz.1.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba4e98ec29 code=0x7ffc0000
[  156.499547][   T27] audit: type=1326 audit(1758356220.715:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4976 comm="syz.1.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fba4e98ec29 code=0x7ffc0000
[  156.572689][   T27] audit: type=1326 audit(1758356220.715:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4976 comm="syz.1.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba4e98ec29 code=0x7ffc0000
[  156.594712][    C1] vkms_vblank_simulate: vblank timer overrun
[  156.647141][ T4991] loop4: detected capacity change from 0 to 2048
[  156.779650][ T4998] netlink: 12 bytes leftover after parsing attributes in process `syz.3.165'.
[  156.791255][   T27] audit: type=1326 audit(1758356220.725:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4976 comm="syz.1.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=290 compat=0 ip=0x7fba4e98ec29 code=0x7ffc0000
[  156.818519][ T4991] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=3932051, location=3932051
[  156.846768][ T4998] netlink: 8 bytes leftover after parsing attributes in process `syz.3.165'.
[  156.986774][ T4998] netlink: 'syz.3.165': attribute type 1 has an invalid length.
[  157.075594][ T4991] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  157.107209][   T27] audit: type=1326 audit(1758356220.725:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4976 comm="syz.1.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba4e98ec29 code=0x7ffc0000
[  157.330788][   T27] audit: type=1326 audit(1758356220.735:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4976 comm="syz.1.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=209 compat=0 ip=0x7fba4e98ec29 code=0x7ffc0000
[  157.405400][   T27] audit: type=1326 audit(1758356220.735:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4976 comm="syz.1.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba4e98ec29 code=0x7ffc0000
[  158.050357][ T5015] loop3: detected capacity change from 0 to 128
[  158.137332][ T5015] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  158.149630][ T5015] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  160.178482][ T5029] loop4: detected capacity change from 0 to 128
[  160.239312][ T5024] loop1: detected capacity change from 0 to 1024
[  160.900111][ T5024] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  161.913682][ T4266] EXT4-fs (loop1): unmounting filesystem.
[  164.735157][ T5093] fuse: Invalid rootmode
[  167.017290][ T5113] loop0: detected capacity change from 0 to 1024
[  167.239180][ T5113] EXT4-fs: Ignoring removed mblk_io_submit option
[  167.391401][ T5113] EXT4-fs: Ignoring removed bh option
[  167.472137][ T5113] EXT4-fs: quotafile must be on filesystem root
[  170.783346][ T5132] loop4: detected capacity change from 0 to 512
[  170.790541][ T5132] EXT4-fs: Ignoring removed oldalloc option
[  170.887852][ T5132] EXT4-fs (loop4): 1 truncate cleaned up
[  170.896000][ T5132] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  170.962426][ T5138] fuse: Invalid rootmode
[  171.381194][ T4276] EXT4-fs (loop4): unmounting filesystem.
[  173.350473][ T5155] loop3: detected capacity change from 0 to 8
[  173.374895][ T5155] unable to read inode lookup table
[  173.455009][ T4381] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  175.454150][ T4285] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  175.465827][ T4285] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  175.478308][ T4285] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  175.486424][ T4285] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  175.494326][ T4285] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  175.501615][ T4285] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  176.172139][ T5183] fuse: Unknown parameter '00000000000000000000'
[  176.186461][ T4742] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.466115][ T4742] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.493808][ T5188] loop4: detected capacity change from 0 to 512
[  176.521162][ T5188] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  176.552076][ T5188] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  176.709778][ T5188] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  176.865053][ T5188] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  176.988580][ T5188] System zones: 0-2, 18-18, 34-34
[  177.038087][ T4742] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  177.114240][ T5188] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.212: iget: bad i_size value: 360287970189639680
[  177.463144][ T5188] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.212: couldn't read orphan inode 15 (err -117)
[  177.543127][ T4285] Bluetooth: hci1: command 0x0409 tx timeout
[  177.702568][ T5188] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  178.564329][ T5202] loop1: detected capacity change from 0 to 1024
[  178.595110][ T4742] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.653695][ T4276] EXT4-fs (loop4): unmounting filesystem.
[  178.768592][ T5171] chnl_net:caif_netlink_parms(): no params data found
[  178.880393][ T5202] EXT4-fs: Ignoring removed bh option
[  178.949578][ T5202] EXT4-fs: Ignoring removed nobh option
[  179.033510][ T5214] loop4: detected capacity change from 0 to 512
[  179.065739][ T5202] EXT4-fs: Ignoring removed bh option
[  179.077215][ T5202] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  179.124366][ T5214] ext4: Unknown parameter 'obj_user'
[  179.290600][ T5202] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  179.538546][ T5171] bridge0: port 1(bridge_slave_0) entered blocking state
[  179.547009][ T5171] bridge0: port 1(bridge_slave_0) entered disabled state
[  179.622062][ T4285] Bluetooth: hci1: command 0x041b tx timeout
[  179.700098][ T5171] device bridge_slave_0 entered promiscuous mode
[  179.794413][ T5226] loop3: detected capacity change from 0 to 2048
[  179.830687][ T5171] bridge0: port 2(bridge_slave_1) entered blocking state
[  179.846821][ T5171] bridge0: port 2(bridge_slave_1) entered disabled state
[  179.859893][ T5228] fuse: Unknown parameter '00000000000000000000'
[  179.880818][ T5171] device bridge_slave_1 entered promiscuous mode
[  179.959533][ T5226] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  180.117346][ T5171] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  180.223616][ T5171] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  180.294674][ T4266] EXT4-fs (loop1): unmounting filesystem.
[  180.350798][ T5235] loop4: detected capacity change from 0 to 1024
[  181.828029][ T4285] Bluetooth: hci1: command 0x040f tx timeout
[  182.166030][ T4509] hfsplus: b-tree write err: -5, ino 4
[  182.236825][ T5171] team0: Port device team_slave_0 added
[  182.330726][ T5171] team0: Port device team_slave_1 added
[  183.148892][ T5255] loop1: detected capacity change from 0 to 512
[  183.191426][ T5171] batman_adv: batadv0: Adding interface: batadv_slave_0
[  183.206343][ T5171] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  183.324579][ T5255] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  183.327172][ T5171] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  183.475349][ T5255] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  183.540004][ T5259] capability: warning: `syz.4.234' uses deprecated v2 capabilities in a way that may be insecure
[  183.564171][ T5171] batman_adv: batadv0: Adding interface: batadv_slave_1
[  183.571133][ T5171] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  183.646666][ T5255] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  183.728404][ T5171] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  183.864718][ T4268] Bluetooth: hci1: command 0x0419 tx timeout
[  183.879750][ T5255] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  184.012234][ T5255] System zones: 0-2, 18-18, 34-34
[  184.013370][ T5267] loop4: detected capacity change from 0 to 256
[  184.063044][ T5267] exfat: Unknown parameter '00000000000000000000ÿÿÿÿÿÿÿÿ'
[  184.112303][ T5255] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.233: iget: bad i_size value: 360287970189639680
[  184.145067][ T4381] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  184.158928][ T5267] loop4: detected capacity change from 0 to 512
[  184.192344][ T4381] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  184.201795][ T4381] Buffer I/O error on dev loop4, logical block 0, async page read
[  184.243791][ T5267] EXT4-fs: Mount option(s) incompatible with ext3
[  185.525372][ T5222] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set
[  185.542424][ T5255] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.233: couldn't read orphan inode 15 (err -117)
[  185.672143][ T5255] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  185.934022][ T4278] EXT4-fs (loop3): unmounting filesystem.
[  186.030012][ T5171] device hsr_slave_0 entered promiscuous mode
[  186.129683][ T5171] device hsr_slave_1 entered promiscuous mode
[  186.146683][ T4266] EXT4-fs (loop1): unmounting filesystem.
[  186.153221][ T5171] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  186.160781][ T5171] Cannot create hsr debugfs directory
[  186.377444][ T5276] fuse: Unknown parameter '00000000000000000000'
[  187.150192][ T5288] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  187.178521][ T5288] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  187.206674][ T5288] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  187.579578][ T5171] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  187.728258][ T5171] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  188.034896][ T5303] loop1: detected capacity change from 0 to 256
[  188.048619][ T5303] exfat: Unknown parameter '00000000000000000000ÿÿÿÿÿÿÿÿ'
[  188.131798][ T5171] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  188.161389][ T4381] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  188.219547][ T5171] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  188.268865][ T5303] loop1: detected capacity change from 0 to 512
[  188.299761][ T4381] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  188.375287][ T5303] EXT4-fs: Mount option(s) incompatible with ext3
[  191.057269][ T4742] device hsr_slave_0 left promiscuous mode
[  191.059537][ T5325] loop4: detected capacity change from 0 to 1024
[  191.396624][ T4742] device hsr_slave_1 left promiscuous mode
[  191.441147][ T4742] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  191.494871][ T4742] batman_adv: batadv0: Removing interface: batadv_slave_0
[  191.528304][ T4742] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  191.536685][ T4742] batman_adv: batadv0: Removing interface: batadv_slave_1
[  191.546297][ T4742] device bridge_slave_1 left promiscuous mode
[  191.554115][ T4742] bridge0: port 2(bridge_slave_1) entered disabled state
[  191.568757][ T4742] device bridge_slave_0 left promiscuous mode
[  191.569446][ T5325] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  191.576704][ T4742] bridge0: port 1(bridge_slave_0) entered disabled state
[  191.662153][ T5325] ext4 filesystem being mounted at /44/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  191.764449][ T4742] device veth1_macvtap left promiscuous mode
[  191.773113][ T4742] device veth0_macvtap left promiscuous mode
[  191.822747][ T4742] device veth1_vlan left promiscuous mode
[  191.828862][ T4742] device veth0_vlan left promiscuous mode
[  191.909392][ T5325] EXT4-fs (loop4): unmounting filesystem.
[  192.650097][ T5342] loop1: detected capacity change from 0 to 512
[  192.706282][ T5342] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  192.735765][ T5342] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  192.775016][ T5342] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  193.583050][ T5342] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  193.605529][ T5342] System zones: 0-2, 18-18, 34-34
[  193.662323][ T5342] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.247: iget: bad i_size value: 360287970189639680
[  193.714876][ T5342] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.247: couldn't read orphan inode 15 (err -117)
[  193.772361][ T5342] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  193.842660][ T4268] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  193.852472][ T4268] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  193.861070][ T4268] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  193.869688][ T4268] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  193.877449][ T4268] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  193.884817][ T4268] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  194.033948][ T4266] EXT4-fs (loop1): unmounting filesystem.
[  194.346520][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  194.353728][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  195.151615][ T4742] team0 (unregistering): Port device team_slave_1 removed
[  195.248301][ T4742] team0 (unregistering): Port device team_slave_0 removed
[  195.295153][ T4742] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  195.341868][ T4742] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  195.798719][ T4742] bond0 (unregistering): Released all slaves
[  195.957039][ T4268] Bluetooth: hci5: command 0x0409 tx timeout
[  196.425392][ T4268] Bluetooth: hci3: command 0x0406 tx timeout
[  196.605048][ T5366] loop1: detected capacity change from 0 to 8
[  196.730891][ T5366] unable to read inode lookup table
[  197.595179][ T5171] 8021q: adding VLAN 0 to HW filter on device bond0
[  197.625232][ T4350] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  197.641304][ T4350] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  197.676866][ T5171] 8021q: adding VLAN 0 to HW filter on device team0
[  197.724473][ T4512] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  197.738771][ T4512] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  197.759686][ T4512] bridge0: port 1(bridge_slave_0) entered blocking state
[  197.766803][ T4512] bridge0: port 1(bridge_slave_0) entered forwarding state
[  197.823020][ T4512] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  197.845301][ T4512] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  197.856164][ T4512] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  197.867860][ T4512] bridge0: port 2(bridge_slave_1) entered blocking state
[  197.875733][ T4512] bridge0: port 2(bridge_slave_1) entered forwarding state
[  197.887279][ T4512] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  197.915658][ T5348] chnl_net:caif_netlink_parms(): no params data found
[  197.947465][ T4512] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  197.965510][ T4512] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  197.979416][ T4512] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  197.991604][ T4512] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  197.999885][ T5373] Illegal XDP return value 3010 on prog  (id 35) dev syz_tun, expect packet loss!
[  198.015457][ T4512] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  198.023438][ T4285] Bluetooth: hci5: command 0x041b tx timeout
[  198.050924][ T4512] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  198.070198][ T4512] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  198.104247][ T5171] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  198.196543][ T5383] loop1: detected capacity change from 0 to 512
[  198.204842][ T5171] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  198.245144][ T5383] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  198.273028][ T4512] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  198.304780][ T4512] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  198.323832][ T5383] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  198.339855][ T4512] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  198.357373][ T5383] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  198.368295][ T5383] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  198.380525][ T5383] System zones: 0-2, 18-18, 34-34
[  198.439135][ T5383] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.262: iget: bad i_size value: 360287970189639680
[  198.574283][ T5383] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.262: couldn't read orphan inode 15 (err -117)
[  199.402054][ T5383] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  199.547300][ T4266] EXT4-fs (loop1): unmounting filesystem.
[  199.573612][ T4742] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  200.590789][ T4268] Bluetooth: hci5: command 0x040f tx timeout
[  201.586018][ T5410] loop3: detected capacity change from 0 to 512
[  201.951562][ T5410] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  201.960631][ T5410] ext4 filesystem being mounted at /63/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  202.112203][ T4278] EXT4-fs (loop3): unmounting filesystem.
[  202.196816][ T4742] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.330001][ T5423] loop1: detected capacity change from 0 to 256
[  202.354262][ T5423] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x204dac4c, utbl_chksum : 0xe619d30d)
[  202.434529][ T4742] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.662340][ T4268] Bluetooth: hci5: command 0x0419 tx timeout
[  202.709352][ T5171] 8021q: adding VLAN 0 to HW filter on device batadv0
[  202.785924][ T5348] bridge0: port 1(bridge_slave_0) entered blocking state
[  202.795809][ T5348] bridge0: port 1(bridge_slave_0) entered disabled state
[  202.921653][ T5348] device bridge_slave_0 entered promiscuous mode
[  203.139832][ T4447] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  203.194230][ T4447] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  203.513807][ T4742] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.590529][ T5348] bridge0: port 2(bridge_slave_1) entered blocking state
[  203.604289][ T5348] bridge0: port 2(bridge_slave_1) entered disabled state
[  203.638613][ T5348] device bridge_slave_1 entered promiscuous mode
[  203.787885][ T5348] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  203.924482][ T5348] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  204.118171][ T5348] team0: Port device team_slave_0 added
[  204.167632][ T5348] team0: Port device team_slave_1 added
[  204.302951][ T5444] loop1: detected capacity change from 0 to 1024
[  204.331665][ T5348] batman_adv: batadv0: Adding interface: batadv_slave_0
[  204.343965][ T5348] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  204.398411][ T5444] EXT4-fs: Ignoring removed mblk_io_submit option
[  204.497143][ T5444] EXT4-fs: Ignoring removed bh option
[  204.506373][ T5348] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  204.527165][ T5444] EXT4-fs: quotafile must be on filesystem root
[  205.389863][ T5348] batman_adv: batadv0: Adding interface: batadv_slave_1
[  205.412053][ T5348] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  205.660842][ T5348] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  205.720372][ T5463] loop3: detected capacity change from 0 to 256
[  206.357830][ T5463] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d)
[  206.414315][ T5463] exFAT-fs (loop3): hint_cluster is invalid (4278190089)
[  206.442026][ T5463] exFAT-fs (loop3): error, failed to bmap (inode : ffff888053ba8e60 iblock : 8, err : -5)
[  206.452874][ T5463] exFAT-fs (loop3): Filesystem has been set read-only
[  206.461170][ T5463] exFAT-fs (loop3): error, invalid access to FAT (entry 0xff000008)
[  206.494768][ T5463] syz.3.276: attempt to access beyond end of device
[  206.494768][ T5463] loop3: rw=2049, sector=34225520825, nr_sectors = 1 limit=256
[  206.511557][ T5463] Buffer I/O error on dev loop3, logical block 34225520825, lost async page write
[  206.511672][ T5463] syz.3.276: attempt to access beyond end of device
[  206.511672][ T5463] loop3: rw=2049, sector=34225520826, nr_sectors = 1 limit=256
[  206.511697][ T5463] Buffer I/O error on dev loop3, logical block 34225520826, lost async page write
[  206.511732][ T5463] syz.3.276: attempt to access beyond end of device
[  206.511732][ T5463] loop3: rw=2049, sector=34225520827, nr_sectors = 1 limit=256
[  206.511755][ T5463] Buffer I/O error on dev loop3, logical block 34225520827, lost async page write
[  206.511789][ T5463] syz.3.276: attempt to access beyond end of device
[  206.511789][ T5463] loop3: rw=2049, sector=34225520828, nr_sectors = 1 limit=256
[  206.511813][ T5463] Buffer I/O error on dev loop3, logical block 34225520828, lost async page write
[  206.511847][ T5463] syz.3.276: attempt to access beyond end of device
[  206.511847][ T5463] loop3: rw=2049, sector=34225520829, nr_sectors = 1 limit=256
[  206.511871][ T5463] Buffer I/O error on dev loop3, logical block 34225520829, lost async page write
[  206.512788][ T5463] syz.3.276: attempt to access beyond end of device
[  206.512788][ T5463] loop3: rw=2049, sector=34225520830, nr_sectors = 1 limit=256
[  206.512815][ T5463] Buffer I/O error on dev loop3, logical block 34225520830, lost async page write
[  206.512852][ T5463] syz.3.276: attempt to access beyond end of device
[  206.512852][ T5463] loop3: rw=2049, sector=34225520831, nr_sectors = 1 limit=256
[  206.512875][ T5463] Buffer I/O error on dev loop3, logical block 34225520831, lost async page write
[  207.756125][ T5476] loop3: detected capacity change from 0 to 512
[  207.910623][ T5476] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  207.919708][ T5476] ext4 filesystem being mounted at /66/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  207.969244][ T5348] device hsr_slave_0 entered promiscuous mode
[  208.053088][ T5348] device hsr_slave_1 entered promiscuous mode
[  208.107753][ T5348] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  208.126950][ T5348] Cannot create hsr debugfs directory
[  208.816942][ T5495] loop1: detected capacity change from 0 to 1764
[  209.189372][ T4278] EXT4-fs (loop3): unmounting filesystem.
[  209.368650][ T4350] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  209.477572][ T4350] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  211.198020][ T5171] device veth0_vlan entered promiscuous mode
[  211.248568][ T4447] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  211.268153][ T4447] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  211.301056][ T5171] device veth1_vlan entered promiscuous mode
[  211.327944][ T5506] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  211.352811][ T5506] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  211.382894][ T5506] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  211.461676][ T4447] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  211.492601][ T4447] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  211.511755][ T4447] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  211.640749][ T4509] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  211.661259][ T4509] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  211.686606][ T4509] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  211.700897][ T5171] device veth0_macvtap entered promiscuous mode
[  211.942154][ T4285] Bluetooth: hci4: command 0x0406 tx timeout
[  212.610605][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  212.637141][ T5348] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  212.703480][ T5171] device veth1_macvtap entered promiscuous mode
[  212.880210][ T5348] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  212.920035][ T5348] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  212.996534][ T5171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  213.007794][ T5171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  213.017990][ T5171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  213.028637][ T5171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  213.039082][ T5171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  213.049960][ T5171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  213.060293][ T5171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  213.071069][ T5171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  213.083037][ T5171] batman_adv: batadv0: Interface activated: batadv_slave_0
[  213.137758][ T4399] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  213.333404][ T4399] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  213.788145][ T5348] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  213.807919][ T5171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  213.829912][ T5171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  213.840963][ T5171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  213.857119][ T5171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  213.868529][ T5171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  213.879793][ T5171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  213.899782][ T5171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  213.910799][ T5171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  213.923551][ T5171] batman_adv: batadv0: Interface activated: batadv_slave_1
[  214.026120][ T4447] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  214.046045][ T4447] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  214.079158][ T5171] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  215.320241][ T5171] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  215.358686][ T5171] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  215.386352][ T5171] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  215.753639][ T4742] device hsr_slave_0 left promiscuous mode
[  215.770623][ T4742] device hsr_slave_1 left promiscuous mode
[  215.846603][ T4742] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  215.863984][ T4742] batman_adv: batadv0: Removing interface: batadv_slave_0
[  215.891623][ T4742] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  215.901733][ T4742] batman_adv: batadv0: Removing interface: batadv_slave_1
[  215.942941][ T4742] device bridge_slave_1 left promiscuous mode
[  215.949224][ T4742] bridge0: port 2(bridge_slave_1) entered disabled state
[  215.994871][ T4742] device bridge_slave_0 left promiscuous mode
[  216.009929][ T4742] bridge0: port 1(bridge_slave_0) entered disabled state
[  216.109199][ T4742] device veth1_macvtap left promiscuous mode
[  216.167227][ T4742] device veth0_macvtap left promiscuous mode
[  216.214542][ T4742] device veth1_vlan left promiscuous mode
[  216.236607][ T4742] device veth0_vlan left promiscuous mode
[  216.975756][ T5569] netlink: 'syz.1.298': attribute type 1 has an invalid length.
[  217.359012][ T4742] team0 (unregistering): Port device team_slave_1 removed
[  217.428098][ T4742] team0 (unregistering): Port device team_slave_0 removed
[  217.518675][ T4742] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  217.576058][ T4742] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  218.441222][ T4742] bond0 (unregistering): Released all slaves
[  218.549863][ T5564] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  218.760503][ T4399] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  218.788779][ T4399] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  218.807946][ T5348] 8021q: adding VLAN 0 to HW filter on device bond0
[  218.846183][   T51] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  218.859982][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  218.872872][   T51] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  218.903446][ T5348] 8021q: adding VLAN 0 to HW filter on device team0
[  218.929044][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  218.947560][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  218.966326][ T5584] loop3: detected capacity change from 0 to 128
[  218.995503][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  218.999141][ T5584] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  219.783575][ T5584] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  219.793489][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  219.809841][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  220.216578][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[  220.224287][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[  220.243477][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  220.261203][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  220.289173][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  220.296416][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  220.467417][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  220.545265][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  220.599470][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  220.656917][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  220.743191][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  220.781507][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  220.802692][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  221.125829][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  221.413954][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  221.435308][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  221.481679][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  221.530698][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  221.580804][ T5348] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  222.140048][ T5609] loop5: detected capacity change from 0 to 8
[  222.358586][ T5609] unable to read inode lookup table
[  222.612337][ T4381] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  222.915399][ T4312] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  223.179089][ T4312] usb 2-1: Using ep0 maxpacket: 8
[  223.643403][ T4312] usb 2-1: config 1 interface 0 altsetting 7 endpoint 0x81 has an invalid bInterval 249, changing to 11
[  223.655851][ T4312] usb 2-1: config 1 interface 0 altsetting 7 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  223.679134][ T4312] usb 2-1: config 1 interface 0 has no altsetting 0
[  223.693786][ T4312] usb 2-1: New USB device found, idVendor=056a, idProduct=5000, bcdDevice= 0.40
[  223.715144][ T4312] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  223.742101][ T4312] usb 2-1: Product: syz
[  223.746517][ T4312] usb 2-1: Manufacturer: syz
[  223.751282][ T4312] usb 2-1: SerialNumber: syz
[  223.981753][ T4312] usbhid 2-1:1.0: can't add hid device: -71
[  224.015737][ T4312] usbhid: probe of 2-1:1.0 failed with error -71
[  224.740889][ T4312] usb 2-1: USB disconnect, device number 2
[  224.882804][ T4447] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  224.890323][ T4447] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  224.957332][ T5348] 8021q: adding VLAN 0 to HW filter on device batadv0
[  225.606691][ T5656] loop1: detected capacity change from 0 to 256
[  225.639293][ T5656] exfat: Unknown parameter '00000000000000000000ÿÿÿÿÿÿÿÿ'
[  229.083755][ T4447] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  229.119133][ T4447] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  229.186353][ T4447] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  229.207442][ T4447] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  229.264804][ T5348] device veth0_vlan entered promiscuous mode
[  229.282533][ T4447] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  229.306460][ T4447] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  229.350477][ T5348] device veth1_vlan entered promiscuous mode
[  229.505221][ T4447] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  229.537710][ T4447] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  229.581161][ T4447] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  229.606886][ T4447] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  229.620904][ T5348] device veth0_macvtap entered promiscuous mode
[  229.654805][ T5348] device veth1_macvtap entered promiscuous mode
[  229.740186][ T5348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  229.781754][ T5348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.820089][ T5348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  229.836484][ T5348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.869481][ T5348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  229.887008][ T5348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.927879][ T5348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  229.975178][ T5348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  230.016177][ T5348] batman_adv: batadv0: Interface activated: batadv_slave_0
[  230.056440][ T4512] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  230.083674][ T4512] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  230.111121][ T4512] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  230.145024][ T4512] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  230.205482][ T5348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  230.250981][ T5348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  230.310450][ T5348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  230.339383][ T5348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  230.360737][ T5348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  230.386564][ T5348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  230.400784][ T5348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  230.414197][ T5348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  230.454660][ T5348] batman_adv: batadv0: Interface activated: batadv_slave_1
[  230.485026][ T4512] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  230.503648][ T4512] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  230.545903][ T5348] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  230.586936][ T5348] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  230.620239][ T5348] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  230.654428][ T5348] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  231.001065][ T4447] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  231.057128][ T4447] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  231.117415][ T4742] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  231.155304][ T4512] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  231.181069][ T4512] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  231.260597][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  232.312334][ T5732] loop3: detected capacity change from 0 to 128
[  232.409754][ T5732] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  232.461622][ T5732] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  233.016812][ T5738] loop1: detected capacity change from 0 to 512
[  233.339025][ T5738] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  233.348782][ T5738] ext4 filesystem being mounted at /80/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  233.436842][ T4266] EXT4-fs (loop1): unmounting filesystem.
[  233.692020][ T4379] usb 4-1: new full-speed USB device number 3 using dummy_hcd
[  233.887984][ T4379] usb 4-1: config index 0 descriptor too short (expected 14996, got 120)
[  233.914512][ T4379] usb 4-1: config 29 has too many interfaces: 211, using maximum allowed: 32
[  233.947052][ T4379] usb 4-1: config 29 has an invalid descriptor of length 111, skipping remainder of the config
[  233.970219][ T4379] usb 4-1: config 29 has 3 interfaces, different from the descriptor's value: 211
[  234.000346][ T4379] usb 4-1: config 29 interface 1 altsetting 9 has 0 endpoint descriptors, different from the interface descriptor's value: 5
[  234.020867][ T4379] usb 4-1: config 29 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 109, changing to 4
[  234.040703][ T4379] usb 4-1: config 29 interface 2 altsetting 1 endpoint 0x82 has invalid maxpacket 24576, setting to 1023
[  234.057694][ T4379] usb 4-1: config 29 interface 1 has no altsetting 0
[  234.067821][ T4379] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  234.096578][ T4379] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  234.110426][ T4379] usb 4-1: Product: syz
[  234.120829][ T4379] usb 4-1: Manufacturer: syz
[  234.128085][ T4379] usb 4-1: SerialNumber: syz
[  234.426115][ T4379] usb 4-1: 2:1 : UAC_AS_GENERAL descriptor not found
[  234.493113][ T4379] usb 4-1: USB disconnect, device number 3
[  234.642724][ T4381] udevd[4381]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:29.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  236.150149][ T5788] loop3: detected capacity change from 0 to 512
[  236.161148][ T5789] loop1: detected capacity change from 0 to 256
[  236.205699][ T5789] exfat: Unknown parameter '00000000000000000000ÿÿÿÿÿÿÿÿ'
[  236.221427][ T5788] ext4: Unknown parameter 'obj_user'
[  240.336989][ T5817] loop6: detected capacity change from 0 to 512
[  240.479793][ T5817] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  240.489435][ T5817] ext4 filesystem being mounted at /4/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  240.805662][ T5348] EXT4-fs (loop6): unmounting filesystem.
[  241.482869][ T5852] loop3: detected capacity change from 0 to 1764
[  241.557556][ T5854] loop9: detected capacity change from 0 to 7
[  241.612157][ T5850] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(10)
[  241.618831][ T5850] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  241.626730][ T5850] vhci_hcd vhci_hcd.0: Device attached
[  241.664403][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  241.673762][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  241.795088][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  241.804315][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  241.859074][ T5855] vhci_hcd: connection closed
[  241.860525][   T51] vhci_hcd: stop threads
[  241.880413][   T51] vhci_hcd: release socket
[  241.935894][   T51] vhci_hcd: disconnect device
[  241.942909][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  241.942958][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  241.950335][ T4679] usb 40-1: SetAddress Request (6) to port 0
[  242.002240][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  242.011561][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  242.020147][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  242.029595][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  242.065349][ T4679] usb 40-1: new SuperSpeed USB device number 6 using vhci_hcd
[  242.159887][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  242.169157][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  242.181376][ T4679] usb 40-1: enqueue for inactive port 0
[  242.601826][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  242.611049][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  242.622152][ T5854] ldm_validate_partition_table(): Disk read failed.
[  242.692296][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  242.701464][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  242.753001][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  242.762240][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  243.044896][ T4679] usb usb40-port1: attempt power cycle
[  243.124838][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  243.134144][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  243.286691][ T5854] Dev loop9: unable to read RDB block 0
[  243.339299][ T5854]  loop9: unable to read partition table
[  243.401621][ T5854] loop9: partition table beyond EOD, truncated
[  243.642146][ T5854] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG�) failed (rc=-5)
[  243.703481][ T4679] usb usb40-port1: unable to enumerate USB device
[  244.820852][ T5908] fuse: Bad value for 'fd'
[  245.392504][ T5918] fuse: Bad value for 'fd'
[  246.508048][ T5927] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  246.767915][ T5932] loop5: detected capacity change from 0 to 512
[  247.644448][ T5932] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  247.653722][ T5932] ext4 filesystem being mounted at /13/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  247.790219][ T5171] EXT4-fs (loop5): unmounting filesystem.
[  251.060935][ T5980] loop6: detected capacity change from 0 to 512
[  251.790577][ T5980] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  251.799717][ T5980] ext4 filesystem being mounted at /10/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  252.130610][ T5348] EXT4-fs (loop6): unmounting filesystem.
[  255.786124][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  255.792753][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  257.897856][ T6048] loop6: detected capacity change from 0 to 512
[  257.910675][ T6048] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  257.920506][ T6048] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  257.972555][ T6048] EXT4-fs (loop6): warning: checktime reached, running e2fsck is recommended
[  257.993111][ T6048] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  258.008342][ T6048] System zones: 0-2, 18-18, 34-34
[  258.153483][ T6048] EXT4-fs error (device loop6): ext4_orphan_get:1400: inode #15: comm syz.6.404: iget: bad i_size value: 360287970189639680
[  258.230952][ T6048] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.404: couldn't read orphan inode 15 (err -117)
[  258.282178][ T6048] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  259.498348][ T6067] loop1: detected capacity change from 0 to 1764
[  259.996542][ T6048] EXT4-fs error (device loop6): ext4_find_dest_de:2115: inode #2: block 3: comm syz.6.404: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[  260.084087][ T6065] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(10)
[  260.090760][ T6065] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  260.098709][ T6065] vhci_hcd vhci_hcd.0: Device attached
[  260.098833][ T6070] vhci_hcd: connection closed
[  260.107597][ T1051] vhci_hcd: stop threads
[  260.129545][ T1051] vhci_hcd: release socket
[  260.161938][ T1051] vhci_hcd: disconnect device
[  260.245254][ T5348] EXT4-fs (loop6): unmounting filesystem.
[  260.566460][ T6078] loop6: detected capacity change from 0 to 128
[  260.650270][ T6078] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  260.732402][ T6078] ext4 filesystem being mounted at /13/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  261.439675][ T5348] EXT4-fs (loop6): unmounting filesystem.
[  263.669209][ T6115] loop6: detected capacity change from 0 to 512
[  264.451491][ T6115] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  264.460535][ T6115] ext4 filesystem being mounted at /15/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  264.586166][ T5348] EXT4-fs (loop6): unmounting filesystem.
[  264.750629][ T4333] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  265.116670][ T4333] usb 6-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  265.605618][ T4333] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  265.650336][ T4333] usb 6-1: Product: syz
[  265.669595][ T4333] usb 6-1: Manufacturer: syz
[  265.699963][ T4333] usb 6-1: SerialNumber: syz
[  265.988388][ T4333] lan78xx 6-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -71
[  266.114242][ T4333] lan78xx 6-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -71
[  266.178594][ T4333] lan78xx 6-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -71
[  266.258096][ T4333] lan78xx 6-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[  266.307266][ T4333] lan78xx 6-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  266.384103][ T4333] lan78xx: probe of 6-1:1.0 failed with error -71
[  266.464107][ T4333] usb 6-1: USB disconnect, device number 2
[  266.852049][ T4962] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  267.045059][ T4962] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  267.056183][ T4962] usb 2-1: config 0 has no interface number 0
[  267.076473][ T4962] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  267.094762][ T6151] loop6: detected capacity change from 0 to 512
[  267.111218][ T6151] ext4: Unknown parameter 'obj_user'
[  267.123892][ T4962] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  267.145933][ T4962] usb 2-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.00
[  268.294552][ T4962] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  268.327226][ T4962] usb 2-1: config 0 descriptor??
[  268.828081][ T4962] prodikeys 0003:041E:2801.0001: unknown main item tag 0x0
[  268.856878][ T4962] prodikeys 0003:041E:2801.0001: unknown main item tag 0x0
[  268.959674][ T4962] prodikeys 0003:041E:2801.0001: unknown main item tag 0x0
[  268.977358][ T4962] prodikeys 0003:041E:2801.0001: unknown main item tag 0x0
[  268.999254][ T4962] prodikeys 0003:041E:2801.0001: unknown main item tag 0x0
[  269.035818][ T4962] prodikeys 0003:041E:2801.0001: unknown main item tag 0x0
[  269.067580][ T4962] prodikeys 0003:041E:2801.0001: unknown main item tag 0x0
[  269.146257][ T4962] prodikeys 0003:041E:2801.0001: hidraw0: USB HID v0.00 Device [HID 041e:2801] on usb-dummy_hcd.1-1/input1
[  269.200056][ T4962] hid_prodikeys: hid-prodikeys: failed to find output report
[  269.200056][ T4962] 
[  269.281058][ T4962] usb 2-1: USB disconnect, device number 3
[  269.967502][ T6169] fido_id[6169]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  273.194756][ T6203] loop3: detected capacity change from 0 to 256
[  273.243008][ T6203] exfat: Unknown parameter '00000000000000000000ÿÿÿÿÿÿÿÿ'
[  278.657094][ T6229] netlink: 56 bytes leftover after parsing attributes in process `syz.4.446'.
[  281.295638][ T6254] loop6: detected capacity change from 0 to 512
[  281.329541][ T6254] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  281.408775][ T6254] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  281.516147][ T6254] EXT4-fs (loop6): warning: checktime reached, running e2fsck is recommended
[  281.588977][ T6254] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  281.678295][ T6254] System zones: 0-2, 18-18, 34-34
[  281.733617][ T6254] EXT4-fs error (device loop6): ext4_orphan_get:1400: inode #15: comm syz.6.452: iget: bad i_size value: 360287970189639680
[  281.882653][ T6254] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.452: couldn't read orphan inode 15 (err -117)
[  281.917217][ T6254] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  282.039834][ T6265] EXT4-fs error (device loop6): ext4_find_dest_de:2115: inode #2: block 3: comm syz.6.452: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[  282.185516][ T5348] EXT4-fs (loop6): unmounting filesystem.
[  283.147321][ T6284] loop1: detected capacity change from 0 to 1764
[  283.752084][ T6284] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(10)
[  283.758765][ T6284] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  283.766878][ T6284] vhci_hcd vhci_hcd.0: Device attached
[  283.774349][ T6286] vhci_hcd: connection closed
[  283.775163][ T4509] vhci_hcd: stop threads
[  283.814526][ T4509] vhci_hcd: release socket
[  283.914146][ T4509] vhci_hcd: disconnect device
[  284.062333][ T4962] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  284.553937][ T4962] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 97, changing to 10
[  284.716337][ T4962] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24929, setting to 1024
[  284.739366][ T4962] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  284.772000][ T4962] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  284.781147][ T4962] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  284.801731][ T4962] usb 6-1: config 0 descriptor??
[  285.304302][ T4312] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  285.552737][ T4312] usb 2-1: Using ep0 maxpacket: 8
[  285.588173][ T4312] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[  285.684725][ T4312] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  285.710271][ T4312] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  285.801094][ T4312] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  285.841414][ T4312] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  285.881412][ T4962] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving
[  285.906493][ T4312] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  285.935763][ T4312] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  285.979336][ T4962] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  286.085277][ T4961] usb 6-1: USB disconnect, device number 3
[  286.184505][ T4312] usb 2-1: usb_control_msg returned -32
[  286.190156][ T4312] usbtmc 2-1:16.0: can't read capabilities
[  288.912874][ T6325] loop6: detected capacity change from 0 to 512
[  288.980561][ T6322] fido_id[6322]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  289.041580][ T6325] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  289.100546][ T6325] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  289.168960][ T6325] EXT4-fs (loop6): warning: checktime reached, running e2fsck is recommended
[  289.207194][ T6325] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  289.247751][ T6325] System zones: 0-2, 18-18, 34-34
[  289.310886][ T4961] usb 2-1: USB disconnect, device number 4
[  289.324349][ T6325] EXT4-fs error (device loop6): ext4_orphan_get:1400: inode #15: comm syz.6.466: iget: bad i_size value: 360287970189639680
[  289.341349][ T6335] capability: warning: `syz.4.469' uses 32-bit capabilities (legacy support in use)
[  289.382761][ T6325] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.466: couldn't read orphan inode 15 (err -117)
[  289.394896][ T4312] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  289.442274][ T6325] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  289.590439][ T4312] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  289.626707][ T6338] EXT4-fs error (device loop6): ext4_find_dest_de:2115: inode #2: block 3: comm syz.6.466: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[  289.632781][ T4312] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  289.682110][ T4312] usb 6-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00
[  289.691733][ T4312] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  289.780187][ T4312] usb 6-1: config 0 descriptor??
[  290.294162][ T5348] EXT4-fs (loop6): unmounting filesystem.
[  290.337613][ T4312] pyra 0003:1E7D:2CF6.0003: unknown main item tag 0x0
[  290.386466][ T4312] pyra 0003:1E7D:2CF6.0003: unknown main item tag 0x0
[  290.403442][ T4312] pyra 0003:1E7D:2CF6.0003: unknown main item tag 0x0
[  290.412376][ T4312] pyra 0003:1E7D:2CF6.0003: unknown main item tag 0x0
[  290.419312][ T4312] pyra 0003:1E7D:2CF6.0003: unknown main item tag 0x0
[  290.480815][ T4312] pyra 0003:1E7D:2CF6.0003: unknown main item tag 0x0
[  290.498205][ T4312] pyra 0003:1E7D:2CF6.0003: unknown main item tag 0x0
[  290.588867][ T4312] pyra 0003:1E7D:2CF6.0003: hidraw0: USB HID v0.00 Device [HID 1e7d:2cf6] on usb-dummy_hcd.5-1/input0
[  290.928971][ T6356] loop3: detected capacity change from 0 to 1764
[  291.038545][ T6357] loop6: detected capacity change from 0 to 1764
[  291.459577][ T4312] pyra 0003:1E7D:2CF6.0003: couldn't init struct pyra_device
[  291.477559][ T4312] pyra 0003:1E7D:2CF6.0003: couldn't install mouse
[  291.498158][ T6353] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(10)
[  291.504854][ T6353] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  291.512861][ T6353] vhci_hcd vhci_hcd.0: Device attached
[  291.550725][ T4312] pyra: probe of 0003:1E7D:2CF6.0003 failed with error -71
[  291.569973][ T4312] usb 6-1: USB disconnect, device number 4
[  291.588198][ T6361] overlayfs: failed to clone lowerpath
[  291.621543][ T6358] vhci_hcd: connection closed
[  291.627646][ T1051] vhci_hcd: stop threads
[  291.674813][ T1051] vhci_hcd: release socket
[  291.686422][ T6352] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  291.695034][ T1051] vhci_hcd: disconnect device
[  291.708666][ T6352] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  291.742815][ T6352] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  291.756422][ T6362] fido_id[6362]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  293.015785][ T6373] loop5: detected capacity change from 0 to 8
[  293.074171][ T6373] unable to read inode lookup table
[  293.256141][ T6377] loop1: detected capacity change from 0 to 1024
[  293.311122][ T6377] EXT4-fs: Ignoring removed mblk_io_submit option
[  293.347482][ T6377] EXT4-fs: Ignoring removed bh option
[  293.371618][ T6377] EXT4-fs: quotafile must be on filesystem root
[  297.475088][ T6413] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  297.477619][ T6414] loop1: detected capacity change from 0 to 512
[  297.523983][ T6413] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  297.557377][ T6413] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  297.610743][ T6414] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  298.205653][ T6414] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  298.251296][ T6414] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  298.504540][ T6414] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  298.516505][ T6414] System zones: 0-2, 18-18, 34-34
[  298.767068][ T6428] loop6: detected capacity change from 0 to 1764
[  298.831555][ T4285] Bluetooth: hci1: command 0x0406 tx timeout
[  298.964113][ T6425] loop3: detected capacity change from 0 to 8
[  298.977262][ T6425] unable to read inode lookup table
[  299.053138][ T6426] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(10)
[  299.055856][ T6414] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.489: iget: bad i_size value: 360287970189639680
[  299.059790][ T6426] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  299.061791][ T6426] vhci_hcd vhci_hcd.0: Device attached
[  299.115718][ T6414] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.489: couldn't read orphan inode 15 (err -117)
[  299.133291][ T6414] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  299.164070][ T6429] vhci_hcd: connection closed
[  299.164694][   T11] vhci_hcd: stop threads
[  299.197031][   T11] vhci_hcd: release socket
[  299.201544][   T11] vhci_hcd: disconnect device
[  299.267795][ T6414] EXT4-fs error (device loop1): ext4_find_dest_de:2115: inode #2: block 3: comm syz.1.489: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[  299.376927][ T4266] EXT4-fs (loop1): unmounting filesystem.
[  300.362743][ T6440] overlayfs: statfs failed on './file0'
[  300.377108][ T6442] loop1: detected capacity change from 0 to 512
[  300.592945][ T6442] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  300.602127][ T6442] ext4 filesystem being mounted at /108/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  300.750112][ T4266] EXT4-fs (loop1): unmounting filesystem.
[  302.906716][ T6448] netlink: 'syz.4.496': attribute type 1 has an invalid length.
[  303.143104][ T6463] bond1: (slave ip6gretap1): Enslaving as a backup interface with an up link
[  303.192991][ T6474] netlink: 8 bytes leftover after parsing attributes in process `syz.4.496'.
[  303.282885][ T6474] device veth2 entered promiscuous mode
[  303.353614][ T6477] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  303.387217][ T6477] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  304.801418][ T6485] loop5: detected capacity change from 0 to 512
[  304.856873][ T6485] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  304.971845][ T6485] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[  305.053419][ T6485] EXT4-fs (loop5): warning: checktime reached, running e2fsck is recommended
[  305.913727][ T6485] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  306.072673][ T6485] System zones: 0-2, 18-18, 34-34
[  306.346026][ T6503] loop3: detected capacity change from 0 to 1764
[  306.361123][ T6485] EXT4-fs error (device loop5): ext4_orphan_get:1400: inode #15: comm syz.5.505: iget: bad i_size value: 360287970189639680
[  306.414467][ T6485] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.505: couldn't read orphan inode 15 (err -117)
[  306.439031][ T6485] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  306.484557][ T6501] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(10)
[  306.491213][ T6501] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  306.499152][ T6501] vhci_hcd vhci_hcd.0: Device attached
[  306.508054][ T6485] EXT4-fs error (device loop5): ext4_find_dest_de:2115: inode #2: block 3: comm syz.5.505: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[  306.590003][ T5171] EXT4-fs (loop5): unmounting filesystem.
[  306.720400][ T6504] vhci_hcd: connection closed
[  306.720823][ T4350] vhci_hcd: stop threads
[  306.769815][ T4350] vhci_hcd: release socket
[  306.792135][ T4350] vhci_hcd: disconnect device
[  306.812173][ T4679] usb 40-1: enqueue for inactive port 0
[  307.343662][ T4679] usb usb40-port1: attempt power cycle
[  307.544186][ T6522] loop6: detected capacity change from 0 to 8
[  307.988229][ T6522] unable to read inode lookup table
[  308.324242][ T4679] usb usb40-port1: unable to enumerate USB device
[  309.534623][ T6536] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  309.591657][ T6536] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  311.025431][ T6546] loop3: detected capacity change from 0 to 512
[  311.057036][ T6546] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  311.106690][ T6546] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  311.180399][ T6546] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended
[  311.229948][ T6546] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  311.290885][ T6546] System zones: 0-2, 18-18, 34-34
[  311.355752][ T6546] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.519: iget: bad i_size value: 360287970189639680
[  311.397458][ T6546] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.519: couldn't read orphan inode 15 (err -117)
[  311.434374][ T6546] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  311.496015][ T6546] EXT4-fs error (device loop3): ext4_find_dest_de:2115: inode #2: block 3: comm syz.3.519: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[  311.607280][ T4278] EXT4-fs (loop3): unmounting filesystem.
[  312.049013][ T6547] netlink: 'syz.1.518': attribute type 1 has an invalid length.
[  312.152639][ T6561] bond1: (slave ip6gretap1): Enslaving as a backup interface with an up link
[  312.206040][ T6561] netlink: 8 bytes leftover after parsing attributes in process `syz.1.518'.
[  312.263345][ T6561] device veth2 entered promiscuous mode
[  312.354940][ T6561] device veth3 entered promiscuous mode
[  312.612164][ T4679] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  313.573185][ T4679] usb 6-1: Using ep0 maxpacket: 16
[  313.591197][ T4679] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 48, changing to 9
[  313.619485][ T4679] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 41728, setting to 1024
[  313.641399][ T4679] usb 6-1: New USB device found, idVendor=054c, idProduct=05c4, bcdDevice= 0.00
[  313.661619][ T4679] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  313.763636][ T4679] usb 6-1: config 0 descriptor??
[  314.198659][ T4679] sony 0003:054C:05C4.0004: unknown main item tag 0x0
[  314.217646][ T4679] sony 0003:054C:05C4.0004: unknown main item tag 0x0
[  314.244527][ T4679] sony 0003:054C:05C4.0004: unknown main item tag 0x0
[  314.260419][ T4679] sony 0003:054C:05C4.0004: unknown main item tag 0x0
[  314.283345][ T4679] sony 0003:054C:05C4.0004: unknown main item tag 0x0
[  314.318431][ T4679] sony 0003:054C:05C4.0004: hidraw0: USB HID v80.00 Device [HID 054c:05c4] on usb-dummy_hcd.5-1/input0
[  314.347008][ T4679] sony 0003:054C:05C4.0004: failed to claim input
[  314.543854][ T6597] loop6: detected capacity change from 0 to 512
[  314.594729][ T6597] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  314.623152][ T6597] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  314.686878][ T6597] EXT4-fs (loop6): warning: checktime reached, running e2fsck is recommended
[  314.703236][ T6597] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  314.772017][ T6597] System zones: 0-2, 18-18, 34-34
[  314.798811][ T6597] EXT4-fs error (device loop6): ext4_orphan_get:1400: inode #15: comm syz.6.531: iget: bad i_size value: 360287970189639680
[  314.869022][ T6597] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.531: couldn't read orphan inode 15 (err -117)
[  314.893514][ T6597] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  314.980420][ T6607] EXT4-fs error (device loop6): ext4_find_dest_de:2115: inode #2: block 3: comm syz.6.531: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[  315.137098][ T5348] EXT4-fs (loop6): unmounting filesystem.
[  315.335226][ T6612] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  315.366655][ T6612] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  315.845061][ T4679] usb 6-1: USB disconnect, device number 5
[  316.417384][ T4366] Bluetooth: hci2: Frame reassembly failed (-84)
[  317.361264][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  317.369607][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  318.522201][ T4285] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  318.528810][ T4284] Bluetooth: hci2: command 0x1003 tx timeout
[  319.382065][ T4285] Bluetooth: hci5: command 0x0406 tx timeout
[  320.018403][ T6668] fuse: Bad value for 'fd'
[  323.223521][ T6700] loop3: detected capacity change from 0 to 1764
[  323.416552][ T6702] kvm: emulating exchange as write
[  325.265900][ T6718] tipc: Started in network mode
[  325.271205][ T6718] tipc: Node identity 0e350afd02d, cluster identity 4711
[  325.346514][ T6718] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  325.392781][ T6722] device syzkaller0 entered promiscuous mode
[  325.478940][ T6717] tipc: Resetting bearer <eth:syzkaller0>
[  325.574714][ T6717] tipc: Disabling bearer <eth:syzkaller0>
[  326.151998][   T14] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  326.198927][ T6725] netlink: 'syz.3.563': attribute type 1 has an invalid length.
[  326.308086][ T6747] bond1: (slave ip6gretap1): Enslaving as a backup interface with an up link
[  326.328464][ T6725] netlink: 8 bytes leftover after parsing attributes in process `syz.3.563'.
[  326.347655][ T6725] device veth2 entered promiscuous mode
[  326.356767][   T14] usb 2-1: Using ep0 maxpacket: 32
[  326.369548][   T14] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  326.410789][   T14] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  326.428009][   T14] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  326.437652][   T14] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  326.475786][   T14] usb 2-1: config 0 descriptor??
[  326.511067][   T14] hub 2-1:0.0: USB hub found
[  326.709273][   T14] hub 2-1:0.0: 1 port detected
[  327.528700][   T14] usb 2-1: USB disconnect, device number 5
[  329.667098][ T6766] loop6: detected capacity change from 0 to 8
[  329.818325][ T6766] unable to read inode lookup table
[  330.516030][ T6770] loop1: detected capacity change from 0 to 1764
[  331.072246][   T26] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  331.303567][   T26] usb 7-1: Using ep0 maxpacket: 8
[  331.313534][   T26] usb 7-1: config 0 has an invalid interface number: 31 but max is 0
[  331.347217][   T26] usb 7-1: config 0 has no interface number 0
[  331.380712][   T26] usb 7-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[  331.406642][   T26] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  331.432171][   T26] usb 7-1: Product: syz
[  331.441002][   T26] usb 7-1: Manufacturer: syz
[  331.470022][   T26] usb 7-1: SerialNumber: syz
[  331.501607][   T26] usb 7-1: config 0 descriptor??
[  331.526223][ T6799] loop3: detected capacity change from 0 to 1024
[  331.541615][ T6799] EXT4-fs: Ignoring removed mblk_io_submit option
[  331.589035][ T6799] EXT4-fs: Ignoring removed bh option
[  331.612454][ T6799] EXT4-fs: quotafile must be on filesystem root
[  331.785791][   T26] usb 7-1: USB disconnect, device number 2
[  331.889244][ T6803] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready
[  333.078826][ T6813] loop5: detected capacity change from 0 to 512
[  333.270283][ T6813] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  333.420610][ T6813] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[  333.626356][ T6813] EXT4-fs (loop5): warning: checktime reached, running e2fsck is recommended
[  333.969588][ T6819] loop6: detected capacity change from 0 to 8
[  333.992593][ T6819] unable to read inode lookup table
[  334.056026][ T6813] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  334.188627][ T6813] System zones: 0-2, 18-18, 34-34
[  334.585055][ T6813] EXT4-fs error (device loop5): ext4_orphan_get:1400: inode #15: comm syz.5.583: iget: bad i_size value: 360287970189639680
[  334.798645][ T6813] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.583: couldn't read orphan inode 15 (err -117)
[  334.987330][ T6813] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  335.340877][ T6813] EXT4-fs error (device loop5): ext4_find_dest_de:2115: inode #2: block 3: comm syz.5.583: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[  335.686703][ T5171] EXT4-fs (loop5): unmounting filesystem.
[  337.983240][ T6834] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  338.889178][ T6841] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  338.972126][ T6841] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  341.578823][ T6860] loop3: detected capacity change from 0 to 1764
[  342.193253][ T6861] loop5: detected capacity change from 0 to 128
[  342.209242][ T6858] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(10)
[  342.216007][ T6858] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  342.224815][ T6858] vhci_hcd vhci_hcd.0: Device attached
[  342.232885][ T6863] vhci_hcd: connection closed
[  342.254187][ T4366] vhci_hcd: stop threads
[  342.277069][ T4366] vhci_hcd: release socket
[  342.284620][ T4366] vhci_hcd: disconnect device
[  342.362373][ T6861] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  342.372231][ T6861] ext4 filesystem being mounted at /50/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  342.797082][ T6874] loop1: detected capacity change from 0 to 512
[  343.435512][ T6874] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  343.444549][ T6874] ext4 filesystem being mounted at /124/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  343.986232][ T4266] EXT4-fs (loop1): unmounting filesystem.
[  344.028648][ T6887] loop6: detected capacity change from 0 to 512
[  344.071450][ T6887] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  344.114898][ T6887] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  344.162750][ T6887] EXT4-fs (loop6): warning: checktime reached, running e2fsck is recommended
[  344.177883][ T5171] EXT4-fs (loop5): unmounting filesystem.
[  344.312426][ T6887] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  344.320565][ T6887] System zones: 0-2, 18-18, 34-34
[  344.352766][ T6887] EXT4-fs error (device loop6): ext4_orphan_get:1400: inode #15: comm syz.6.597: iget: bad i_size value: 360287970189639680
[  344.439612][ T6887] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.597: couldn't read orphan inode 15 (err -117)
[  344.478074][ T6887] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  347.216482][ T6887] EXT4-fs error (device loop6): ext4_find_dest_de:2115: inode #2: block 3: comm syz.6.597: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[  347.386372][ T5348] EXT4-fs (loop6): unmounting filesystem.
[  347.868841][ T6915] loop3: detected capacity change from 0 to 1024
[  347.916628][ T6915] EXT4-fs: Ignoring removed mblk_io_submit option
[  348.042235][ T6915] EXT4-fs: Ignoring removed bh option
[  348.065608][ T6915] EXT4-fs: quotafile must be on filesystem root
[  349.055494][ T6930] loop6: detected capacity change from 0 to 1764
[  350.082994][ T6930] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(10)
[  350.089671][ T6930] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  350.098039][ T6930] vhci_hcd vhci_hcd.0: Device attached
[  350.108353][ T6931] vhci_hcd: connection closed
[  350.109949][ T6340] vhci_hcd: stop threads
[  350.814096][   T26] usb 46-1: SetAddress Request (2) to port 0
[  351.277027][ T6340] vhci_hcd: release socket
[  351.281774][ T6340] vhci_hcd: disconnect device
[  351.321293][   T26] usb 46-1: new SuperSpeed USB device number 2 using vhci_hcd
[  351.821989][   T26] usb 46-1: enqueue for inactive port 0
[  353.563277][   T26] usb usb46-port1: attempt power cycle
[  355.690705][   T26] usb usb46-port1: unable to enumerate USB device
[  355.840063][ T6959] loop1: detected capacity change from 0 to 1764
[  356.193746][ T6963] Cache volume key already in use (9p,(null),)
[  359.018609][ T6986] bridge0: port 2(bridge_slave_1) entered disabled state
[  359.245882][ T6986] device bridge_slave_1 left promiscuous mode
[  359.291932][ T6986] bridge0: port 2(bridge_slave_1) entered disabled state
[  359.424240][ T7000] loop5: detected capacity change from 0 to 1024
[  359.924573][ T7000] EXT4-fs: Ignoring removed mblk_io_submit option
[  359.940786][ T7000] EXT4-fs: Ignoring removed bh option
[  359.978358][ T7000] EXT4-fs: quotafile must be on filesystem root
[  361.963448][ T7022] Cache volume key already in use (9p,(null),)
[  362.186872][ T7030] loop6: detected capacity change from 0 to 256
[  362.236081][ T7030] exfat: Unknown parameter '00000000000000000000ÿÿÿÿÿÿÿÿ'
[  362.406831][ T7033] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  362.437745][ T7033] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  362.449727][ T7033] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  365.684723][ T7050] loop3: detected capacity change from 0 to 1024
[  366.322316][   T11] hfsplus: b-tree write err: -5, ino 4
[  367.511441][ T7064] loop1: detected capacity change from 0 to 1024
[  367.588859][ T7064] EXT4-fs: Ignoring removed mblk_io_submit option
[  367.632461][ T7064] EXT4-fs: Ignoring removed bh option
[  367.638048][ T7064] EXT4-fs: quotafile must be on filesystem root
[  370.634039][ T7093] loop6: detected capacity change from 0 to 256
[  370.683284][ T7093] exfat: Unknown parameter '00000000000000000000ÿÿÿÿÿÿÿÿ'
[  370.735995][ T6783] blk_print_req_error: 10 callbacks suppressed
[  370.736013][ T6783] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  370.759939][ T7093] loop6: detected capacity change from 0 to 512
[  370.808020][ T7093] EXT4-fs: Mount option(s) incompatible with ext3
[  372.127957][ T7076] netlink: 'syz.1.642': attribute type 1 has an invalid length.
[  372.296629][ T7076] netlink: 8 bytes leftover after parsing attributes in process `syz.1.642'.
[  372.471493][ T7076] device veth5 entered promiscuous mode
[  374.045831][ T7129] loop5: detected capacity change from 0 to 1024
[  374.087969][ T7129] EXT4-fs: Ignoring removed mblk_io_submit option
[  374.142024][ T7129] EXT4-fs: Ignoring removed bh option
[  374.221998][ T7129] EXT4-fs: quotafile must be on filesystem root
[  375.348203][ T7135] 9pnet_fd: Insufficient options for proto=fd
[  377.144974][ T7151] loop3: detected capacity change from 0 to 128
[  377.283181][ T7151] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  377.300068][ T7151] ext4 filesystem being mounted at /143/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  377.442731][ T4278] EXT4-fs (loop3): unmounting filesystem.
[  379.436417][ T7173] loop1: detected capacity change from 0 to 512
[  379.591960][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  379.621529][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  379.745633][ T7173] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  379.754801][ T7173] ext4 filesystem being mounted at /136/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  379.867953][ T4266] EXT4-fs (loop1): unmounting filesystem.
[  379.903623][ T7167] netlink: 'syz.6.661': attribute type 1 has an invalid length.
[  380.229140][ T7181] bond1: (slave ip6gretap1): Enslaving as a backup interface with an up link
[  380.428405][ T7167] netlink: 8 bytes leftover after parsing attributes in process `syz.6.661'.
[  380.823942][ T7167] device veth3 entered promiscuous mode
[  381.432455][ T7201] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  381.460961][ T7201] overlayfs: failed to resolve './file1': -2
[  382.341434][ T7199] loop5: detected capacity change from 0 to 1024
[  384.452243][ T7205] device bpq0 entered promiscuous mode
[  385.425066][ T7218] loop3: detected capacity change from 0 to 128
[  385.514360][ T7218] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  385.555321][ T7218] ext4 filesystem being mounted at /146/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  385.709727][ T4278] EXT4-fs (loop3): unmounting filesystem.
[  386.143916][ T7233] loop6: detected capacity change from 0 to 8
[  386.203872][ T7233] unable to read inode lookup table
[  388.597585][ T7257] netlink: 56 bytes leftover after parsing attributes in process `syz.4.680'.
[  389.643214][ T7264] loop6: detected capacity change from 0 to 1024
[  389.777910][ T7264] EXT4-fs: Ignoring removed mblk_io_submit option
[  389.832355][ T7264] EXT4-fs: Ignoring removed bh option
[  389.993322][ T7264] EXT4-fs: quotafile must be on filesystem root
[  392.507086][ T7275] loop1: detected capacity change from 0 to 128
[  392.582783][ T7269] device bpq0 left promiscuous mode
[  392.588356][ T7269] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready
[  393.472964][ T7275] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  393.496241][ T7275] ext4 filesystem being mounted at /139/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  393.815102][ T7285] loop6: detected capacity change from 0 to 512
[  393.980501][ T4266] EXT4-fs (loop1): unmounting filesystem.
[  394.162184][ T7285] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  394.218049][ T7285] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  394.298888][ T7293] loop1: detected capacity change from 0 to 8
[  394.316964][ T7293] unable to read inode lookup table
[  394.400368][ T7285] EXT4-fs (loop6): warning: checktime reached, running e2fsck is recommended
[  394.470964][ T7285] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  394.573604][ T7285] System zones: 0-2, 18-18, 34-34
[  394.659251][ T7285] EXT4-fs error (device loop6): ext4_orphan_get:1400: inode #15: comm syz.6.686: iget: bad i_size value: 360287970189639680
[  394.820020][ T7303] overlayfs: failed to clone lowerpath
[  394.916838][ T7303] overlayfs: failed to clone upperpath
[  394.963468][ T7285] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.686: couldn't read orphan inode 15 (err -117)
[  395.089169][ T7285] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  395.877192][ T7317] EXT4-fs error (device loop6): ext4_find_dest_de:2115: inode #2: block 3: comm syz.6.686: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[  397.913250][ T7336] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  397.926039][ T7336] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  397.937142][ T7336] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  398.966117][ T7343] loop3: detected capacity change from 0 to 512
[  399.057841][ T7343] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  399.066973][ T7343] ext4 filesystem being mounted at /153/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  399.107399][ T4278] EXT4-fs (loop3): unmounting filesystem.
[  399.578674][ T7354] netlink: 56 bytes leftover after parsing attributes in process `syz.5.698'.
[  400.046408][ T5348] EXT4-fs (loop6): unmounting filesystem.
[  400.780930][ T7374] overlayfs: overlapping lowerdir path
[  400.858076][ T7375] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  401.776459][ T7372] bridge0: port 2(bridge_slave_1) entered disabled state
[  402.151083][ T7372] device bridge_slave_1 left promiscuous mode
[  402.208397][ T7372] bridge0: port 2(bridge_slave_1) entered disabled state
[  403.547356][ T7396] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  405.000175][ T7392] netlink: 'syz.4.707': attribute type 1 has an invalid length.
[  405.212914][ T7392] device veth3 entered promiscuous mode
[  405.981907][ T7424] loop5: detected capacity change from 0 to 512
[  406.615368][ T7424] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  406.615441][ T7424] ext4 filesystem being mounted at /69/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  407.150307][ T5171] EXT4-fs (loop5): unmounting filesystem.
[  410.920261][ T7463] overlayfs: missing 'lowerdir'
[  410.945338][ T7463] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  414.391283][ T7487] overlayfs: failed to clone upperpath
[  414.455241][ T7492] loop3: detected capacity change from 0 to 512
[  414.636007][ T7492] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  414.690275][ T7492] ext4 filesystem being mounted at /158/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  414.894925][ T7500] loop5: detected capacity change from 0 to 512
[  415.473809][ T7500] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  415.596086][ T7500] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[  415.766648][ T4278] EXT4-fs (loop3): unmounting filesystem.
[  415.781787][ T7482] netlink: 'syz.1.721': attribute type 1 has an invalid length.
[  416.880083][ T7500] EXT4-fs (loop5): warning: checktime reached, running e2fsck is recommended
[  417.062777][ T7482] device veth7 entered promiscuous mode
[  418.032381][ T7500] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  418.069378][ T7500] System zones: 0-2, 18-18, 34-34
[  418.147451][ T7500] EXT4-fs error (device loop5): ext4_orphan_get:1400: inode #15: comm syz.5.724: iget: bad i_size value: 360287970189639680
[  418.256659][ T7500] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.724: couldn't read orphan inode 15 (err -117)
[  418.337197][ T7500] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  418.621527][ T5171] EXT4-fs (loop5): unmounting filesystem.
[  421.971792][ T7556] loop3: detected capacity change from 0 to 512
[  423.205365][ T7556] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  423.214492][ T7556] ext4 filesystem being mounted at /161/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  423.579868][ T4278] EXT4-fs (loop3): unmounting filesystem.
[  426.302070][  T126] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  426.461776][ T7610] overlayfs: failed to clone lowerpath
[  426.490125][ T7610] overlayfs: failed to clone upperpath
[  426.496047][  T126] usb 7-1: Using ep0 maxpacket: 8
[  426.506722][  T126] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  426.564696][  T126] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  426.621364][  T126] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  426.671581][  T126] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  426.707562][  T126] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  426.807908][  T126] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  426.818334][  T126] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  427.054743][  T126] usb 7-1: usb_control_msg returned -32
[  427.060384][  T126] usbtmc 7-1:16.0: can't read capabilities
[  428.203586][ T7625] loop3: detected capacity change from 0 to 512
[  428.252873][ T3743] usb 7-1: USB disconnect, device number 3
[  428.304423][ T7625] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  428.313573][ T7625] ext4 filesystem being mounted at /164/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  428.655892][ T4278] EXT4-fs (loop3): unmounting filesystem.
[  432.563520][ T7662] loop3: detected capacity change from 0 to 8
[  432.900132][ T7662] unable to read inode lookup table
[  436.899793][ T7711] loop3: detected capacity change from 0 to 8
[  436.945297][ T7711] unable to read inode lookup table
[  437.946057][ T7710] loop1: detected capacity change from 0 to 1764
[  438.006674][ T4268] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  438.017356][ T4268] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  438.028794][ T4268] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  438.039400][ T4268] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  438.047656][ T4268] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  438.056166][ T4268] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  439.743021][ T7721] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  439.757617][ T7721] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  439.768698][ T7721] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  440.141870][ T7724] loop6: detected capacity change from 0 to 1764
[  440.161233][ T4285] Bluetooth: hci1: command 0x0409 tx timeout
[  440.282840][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  440.289273][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  440.908579][ T7723] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(9)
[  440.915153][ T7723] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  440.922984][ T7723] vhci_hcd vhci_hcd.0: Device attached
[  440.957731][ T7664] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  441.004663][ T7725] vhci_hcd: connection closed
[  441.005703][ T6340] vhci_hcd: stop threads
[  441.021355][ T6340] vhci_hcd: release socket
[  441.025954][ T6340] vhci_hcd: disconnect device
[  441.186897][ T7730] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  441.213957][ T7730] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  441.225598][ T7730] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  442.098033][ T7664] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  442.182976][ T4284] Bluetooth: hci1: command 0x041b tx timeout
[  442.301270][ T7732] netlink: 'syz.4.782': attribute type 1 has an invalid length.
[  442.733227][ T7664] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  442.825778][ T7664] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  442.950003][ T7716] chnl_net:caif_netlink_parms(): no params data found
[  444.261918][ T4284] Bluetooth: hci1: command 0x040f tx timeout
[  445.122365][ T7716] bridge0: port 1(bridge_slave_0) entered blocking state
[  445.134060][ T7716] bridge0: port 1(bridge_slave_0) entered disabled state
[  445.176563][ T7716] device bridge_slave_0 entered promiscuous mode
[  445.735835][ T7734] netlink: 8 bytes leftover after parsing attributes in process `syz.4.782'.
[  445.793983][ T7734] device veth5 entered promiscuous mode
[  445.893222][ T7716] bridge0: port 2(bridge_slave_1) entered blocking state
[  445.900445][ T7716] bridge0: port 2(bridge_slave_1) entered disabled state
[  445.944201][ T7716] device bridge_slave_1 entered promiscuous mode
[  446.203981][ T7716] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  446.342003][ T4284] Bluetooth: hci1: command 0x0419 tx timeout
[  446.383983][ T7716] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  446.474470][ T7784] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  446.491720][ T7784] overlayfs: missing 'lowerdir'
[  447.705518][ T7793] loop3: detected capacity change from 0 to 512
[  448.593451][ T7793] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  448.650685][ T7716] team0: Port device team_slave_0 added
[  448.859607][ T7793] ext4 filesystem being mounted at /176/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  449.020704][ T7716] team0: Port device team_slave_1 added
[  449.436952][ T7716] batman_adv: batadv0: Adding interface: batadv_slave_0
[  449.451923][ T7716] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  449.579204][ T7716] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  449.661215][ T4278] EXT4-fs (loop3): unmounting filesystem.
[  449.672462][ T7716] batman_adv: batadv0: Adding interface: batadv_slave_1
[  449.688085][ T7716] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  449.745154][ T7819] overlayfs: failed to clone lowerpath
[  449.855234][ T7716] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  450.151324][ T7716] device hsr_slave_0 entered promiscuous mode
[  450.183384][ T7716] device hsr_slave_1 entered promiscuous mode
[  450.211718][ T7716] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  450.245951][ T7716] Cannot create hsr debugfs directory
[  451.568814][ T7664] device hsr_slave_0 left promiscuous mode
[  451.621398][ T7664] device hsr_slave_1 left promiscuous mode
[  451.683463][ T7664] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  451.691402][ T7664] batman_adv: batadv0: Removing interface: batadv_slave_0
[  451.774974][ T7664] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  452.587295][ T7664] batman_adv: batadv0: Removing interface: batadv_slave_1
[  452.652812][ T7664] device bridge_slave_1 left promiscuous mode
[  452.659496][ T7664] bridge0: port 2(bridge_slave_1) entered disabled state
[  453.263373][ T7664] device bridge_slave_0 left promiscuous mode
[  453.274299][ T7664] bridge0: port 1(bridge_slave_0) entered disabled state
[  453.442199][ T7664] device veth1_macvtap left promiscuous mode
[  453.456615][ T7664] device veth0_macvtap left promiscuous mode
[  453.474007][ T7664] device veth1_vlan left promiscuous mode
[  453.602494][ T7664] device veth0_vlan left promiscuous mode
[  453.723310][ T7864] loop6: detected capacity change from 0 to 128
[  454.614214][ T7863] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(9)
[  454.620957][ T7863] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  454.628732][ T7863] vhci_hcd vhci_hcd.0: Device attached
[  454.711275][ T7865] vhci_hcd: connection closed
[  454.711914][ T4366] vhci_hcd: stop threads
[  454.720994][ T4366] vhci_hcd: release socket
[  454.773175][ T4366] vhci_hcd: disconnect device
[  456.507280][ T7664] team0 (unregistering): Port device team_slave_1 removed
[  456.646817][ T7664] team0 (unregistering): Port device team_slave_0 removed
[  456.996772][ T7664] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  457.122679][ T7664] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  459.523172][ T7664] bond0 (unregistering): Released all slaves
[  459.863530][ T7825] netlink: 'syz.3.802': attribute type 1 has an invalid length.
[  459.912056][ T7846] netlink: 16 bytes leftover after parsing attributes in process `syz.3.802'.
[  460.433407][ T7899] loop1: detected capacity change from 0 to 256
[  460.466642][ T7899] exfat: Unknown parameter '00000000000000000000ÿÿÿÿÿÿÿÿ'
[  462.105505][ T7716] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  462.161614][ T7716] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  462.198969][ T7716] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  462.230953][ T7716] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  462.745098][ T7716] 8021q: adding VLAN 0 to HW filter on device bond0
[  462.786026][ T4399] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  462.804863][ T4399] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  462.819281][ T7716] 8021q: adding VLAN 0 to HW filter on device team0
[  462.850497][ T4399] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  462.860709][ T4399] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  462.881491][ T4399] bridge0: port 1(bridge_slave_0) entered blocking state
[  462.888712][ T4399] bridge0: port 1(bridge_slave_0) entered forwarding state
[  462.946138][ T4399] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  462.966148][ T4399] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  462.980312][ T4399] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  463.016342][ T4399] bridge0: port 2(bridge_slave_1) entered blocking state
[  463.023568][ T4399] bridge0: port 2(bridge_slave_1) entered forwarding state
[  463.092352][ T4399] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  463.228336][ T4399] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  463.763561][ T4399] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  463.787421][ T4399] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  463.812976][ T4399] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  463.890845][ T4399] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  463.923240][ T4399] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  463.961775][ T6340] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  463.991492][ T6340] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  464.172625][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  464.228328][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  464.391532][ T7716] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  466.124712][ T7957] loop6: detected capacity change from 0 to 512
[  466.955073][ T7957] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  466.964136][ T7957] ext4 filesystem being mounted at /97/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  467.053357][ T5348] EXT4-fs (loop6): unmounting filesystem.
[  467.513174][ T4742] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  467.567599][ T4742] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  467.727016][ T7716] 8021q: adding VLAN 0 to HW filter on device batadv0
[  468.811951][ T7968] netlink: 'syz.3.833': attribute type 1 has an invalid length.
[  469.554142][ T7968] netlink: 16 bytes leftover after parsing attributes in process `syz.3.833'.
[  470.539493][ T8005] loop6: detected capacity change from 0 to 256
[  470.550445][ T8005] exfat: Unknown parameter '00000000000000000000ÿÿÿÿÿÿÿÿ'
[  471.565391][ T1051] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  471.585949][ T8022] loop6: detected capacity change from 0 to 8
[  471.595270][ T8022] unable to read inode lookup table
[  471.844551][ T6783] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  472.319281][ T1051] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  472.370311][ T1051] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  472.380781][ T1051] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  472.425424][ T7716] device veth0_vlan entered promiscuous mode
[  472.444218][ T1051] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  472.504650][ T1051] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  472.577602][ T7716] device veth1_vlan entered promiscuous mode
[  472.710971][ T4487] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  472.724263][ T4487] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  472.742174][ T7716] device veth0_macvtap entered promiscuous mode
[  472.784890][ T7716] device veth1_macvtap entered promiscuous mode
[  473.308111][ T7716] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  473.458107][ T7716] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  473.661875][ T7716] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  473.692818][ T7716] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  473.717423][ T7716] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  473.754542][ T7716] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  473.797086][ T7716] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  473.808809][ T7716] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  473.825303][ T7716] batman_adv: batadv0: Interface activated: batadv_slave_0
[  473.835336][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  473.845107][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  473.868718][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  473.970880][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  473.993766][ T7716] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  474.008934][ T7716] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  474.020802][ T7716] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  474.077664][ T7716] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  474.151775][ T7716] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  474.216995][ T7716] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  474.246996][ T7716] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  474.281286][ T7716] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.939009][ T8046] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  475.951195][ T8046] overlayfs: missing 'lowerdir'
[  475.960480][ T7716] batman_adv: batadv0: Interface activated: batadv_slave_1
[  476.074804][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  476.112460][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  476.187139][ T7716] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  476.259853][ T7716] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  476.290668][ T7716] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  476.321123][ T7716] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  476.639186][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  476.688992][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  476.830431][ T6340] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  476.880082][ T6340] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  476.967354][ T6340] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  477.046038][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  480.776661][ T8071] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  480.801427][ T8071] overlayfs: missing 'workdir'
[  480.916085][ T8065] loop7: detected capacity change from 0 to 512
[  481.191209][ T8083] overlayfs: failed to clone lowerpath
[  481.213715][ T8083] overlayfs: missing 'workdir'
[  481.252721][ T8065] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  481.261661][ T8065] ext4 filesystem being mounted at /0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  481.497500][ T7716] EXT4-fs (loop7): unmounting filesystem.
[  481.936115][ T8106] loop6: detected capacity change from 0 to 8
[  481.944808][ T8106] unable to read inode lookup table
[  483.436663][ T8098] netlink: 'syz.1.860': attribute type 1 has an invalid length.
[  483.662349][ T8098] netlink: 16 bytes leftover after parsing attributes in process `syz.1.860'.
[  487.573550][ T8161] loop1: detected capacity change from 0 to 256
[  487.599352][ T8161] exfat: Unknown parameter '00000000000000000000ÿÿÿÿÿÿÿÿ'
[  489.055936][ T8170] loop6: detected capacity change from 0 to 1024
[  489.930388][ T4350] hfsplus: b-tree write err: -5, ino 4
[  492.012846][ T8196] netlink: 4 bytes leftover after parsing attributes in process `syz.3.885'.
[  492.692987][ T8179] netlink: 'syz.7.881': attribute type 1 has an invalid length.
[  493.159636][ T8214] loop3: detected capacity change from 0 to 8
[  493.195084][ T8179] batman_adv: batadv0: Adding interface: ip6gretap1
[  493.213687][ T8214] unable to read inode lookup table
[  493.348812][ T8179] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  493.960216][ T8179] batman_adv: batadv0: Not using interface ip6gretap1 (retrying later): interface not active
[  494.137076][ T8182] netlink: 16 bytes leftover after parsing attributes in process `syz.7.881'.
[  500.150025][ T8241] loop6: detected capacity change from 0 to 512
[  500.272747][ T8241] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  500.281961][ T8241] ext4 filesystem being mounted at /108/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  500.503998][ T5348] EXT4-fs (loop6): unmounting filesystem.
[  501.546188][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  501.554358][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  502.172150][ T8266] netlink: 4 bytes leftover after parsing attributes in process `syz.1.903'.
[  506.133392][ T8294] loop7: detected capacity change from 0 to 512
[  506.207515][ T8294] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  506.216791][ T8294] ext4 filesystem being mounted at /9/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  506.752745][ T7716] EXT4-fs (loop7): unmounting filesystem.
[  507.020330][ T8301] loop1: detected capacity change from 0 to 8
[  507.189510][ T8301] unable to read inode lookup table
[  510.739901][ T8327] netlink: 4 bytes leftover after parsing attributes in process `syz.6.917'.
[  512.839332][ T8347] loop3: detected capacity change from 0 to 256
[  512.849540][ T8347] exfat: Unknown parameter '00000000000000000000ÿÿÿÿÿÿÿÿ'
[  522.412281][ T8385] loop3: detected capacity change from 0 to 8
[  522.440224][ T8385] unable to read inode lookup table
[  523.277203][ T8378] netlink: 'syz.1.929': attribute type 1 has an invalid length.
[  523.380137][ T8387] netlink: 8 bytes leftover after parsing attributes in process `syz.1.929'.
[  523.412054][ T8387] netlink: 24 bytes leftover after parsing attributes in process `syz.1.929'.
[  523.797954][ T8392] netlink: 4 bytes leftover after parsing attributes in process `syz.7.926'.
[  525.111660][ T8403] loop1: detected capacity change from 0 to 128
[  525.267557][ T8403] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  525.309068][ T8403] ext4 filesystem being mounted at /189/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  525.509357][ T8409] loop6: detected capacity change from 0 to 1764
[  525.748171][ T8409] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(10)
[  525.755085][ T8409] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  525.763205][ T8409] vhci_hcd vhci_hcd.0: Device attached
[  525.770586][ T8414] vhci_hcd: connection closed
[  525.771287][ T4509] vhci_hcd: stop threads
[  525.798565][ T4509] vhci_hcd: release socket
[  525.830055][ T4509] vhci_hcd: disconnect device
[  525.837088][ T8418] loop7: detected capacity change from 0 to 256
[  525.859636][ T8418] exfat: Unknown parameter '00000000000000000000ÿÿÿÿÿÿÿÿ'
[  527.193678][ T4266] EXT4-fs (loop1): unmounting filesystem.
[  527.411526][ T8429] loop6: detected capacity change from 0 to 1024
[  531.274612][ T8445] loop3: detected capacity change from 0 to 512
[  531.409573][ T8445] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  531.418672][ T8445] ext4 filesystem being mounted at /207/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  531.776205][ T4278] EXT4-fs (loop3): unmounting filesystem.
[  532.198308][   T41] hfsplus: b-tree write err: -5, ino 4
[  533.737245][ T8484] loop6: detected capacity change from 0 to 256
[  533.801618][ T8484] exfat: Unknown parameter '00000000000000000000ÿÿÿÿÿÿÿÿ'
[  536.412184][ T8493] netlink: 'syz.7.942': attribute type 1 has an invalid length.
[  537.104932][ T8482] loop3: detected capacity change from 0 to 1764
[  537.118970][ T8493] netlink: 8 bytes leftover after parsing attributes in process `syz.7.942'.
[  537.160244][ T8493] netlink: 24 bytes leftover after parsing attributes in process `syz.7.942'.
[  537.897735][ T8521] loop3: detected capacity change from 0 to 1024
[  540.633691][ T8545] bridge0: port 2(bridge_slave_1) entered disabled state
[  541.005029][ T8545] device bridge_slave_1 left promiscuous mode
[  541.059468][ T8545] bridge0: port 2(bridge_slave_1) entered disabled state
[  543.079722][ T8543] loop6: detected capacity change from 0 to 512
[  543.149970][ T8543] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  543.184019][ T8543] ext4 filesystem being mounted at /118/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  543.202500][ T8562] loop7: detected capacity change from 0 to 128
[  543.332932][ T8562] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  543.410742][ T8562] ext4 filesystem being mounted at /17/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  543.663789][ T7716] EXT4-fs (loop7): unmounting filesystem.
[  543.836403][ T5348] EXT4-fs (loop6): unmounting filesystem.
[  545.237990][ T4742] hfsplus: b-tree write err: -5, ino 4
[  548.979282][ T8591] netlink: 'syz.1.969': attribute type 1 has an invalid length.
[  549.123972][ T8613] loop3: detected capacity change from 0 to 128
[  549.145610][ T8591] netlink: 8 bytes leftover after parsing attributes in process `syz.1.969'.
[  549.164768][ T8591] netlink: 24 bytes leftover after parsing attributes in process `syz.1.969'.
[  549.209095][ T8613] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  549.233587][ T8613] ext4 filesystem being mounted at /213/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  549.470888][ T8615] loop7: detected capacity change from 0 to 256
[  549.543154][ T8615] exfat: Unknown parameter '00000000000000000000ÿÿÿÿÿÿÿÿ'
[  551.725617][ T4278] EXT4-fs (loop3): unmounting filesystem.
[  552.567608][ T8638] loop3: detected capacity change from 0 to 1024
[  556.254084][ T8664] loop1: detected capacity change from 0 to 1764
[  557.475056][   T41] hfsplus: b-tree write err: -5, ino 4
[  561.474618][ T8704] loop1: detected capacity change from 0 to 1764
[  561.561973][ T8704] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  561.568612][ T8704] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  561.576439][ T8704] vhci_hcd vhci_hcd.0: Device attached
[  561.583310][ T8707] vhci_hcd: connection closed
[  561.617300][   T41] vhci_hcd: stop threads
[  561.643827][   T41] vhci_hcd: release socket
[  561.654855][ T8700] netlink: 'syz.3.989': attribute type 1 has an invalid length.
[  561.665166][   T41] vhci_hcd: disconnect device
[  561.737757][ T8710] netlink: 8 bytes leftover after parsing attributes in process `syz.3.989'.
[  561.784892][ T8710] netlink: 20 bytes leftover after parsing attributes in process `syz.3.989'.
[  561.885942][ T8710] device veth3 entered promiscuous mode
[  563.149018][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  563.156385][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  563.398569][ T8720] loop3: detected capacity change from 0 to 512
[  563.993394][ T8720] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  564.002542][ T8720] ext4 filesystem being mounted at /217/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  565.233102][ T4285] Bluetooth: hci1: command 0x0406 tx timeout
[  567.156775][ T4278] EXT4-fs (loop3): unmounting filesystem.
[  567.628823][ T8764] loop6: detected capacity change from 0 to 128
[  567.764303][ T8764] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  567.792367][ T8764] ext4 filesystem being mounted at /125/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  568.101804][    C0] ------------[ cut here ]------------
[  568.107836][    C0] ODEBUG: free active (active state 0) object type: timer_list hint: rose_t0timer_expiry+0x0/0x350
[  568.118804][    C0] WARNING: CPU: 0 PID: 4278 at lib/debugobjects.c:518 debug_check_no_obj_freed+0x43c/0x530
[  568.128840][    C0] Modules linked in:
[  568.132769][    C0] CPU: 0 PID: 4278 Comm: syz-executor Not tainted syzkaller #0
[  568.140306][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  568.150385][    C0] RIP: 0010:debug_check_no_obj_freed+0x43c/0x530
[  568.156764][    C0] Code: ef e8 f8 72 c5 fd 4c 8b 45 00 48 c7 c7 00 06 df 8a 48 c7 c6 c0 02 df 8a 48 c7 c2 60 07 df 8a 8b 0c 24 4d 89 e9 e8 a4 7d 41 fd <0f> 0b 4c 8b 6c 24 18 48 b9 00 00 00 00 00 fc ff df ff 05 55 2d 14
[  568.176443][    C0] RSP: 0018:ffffc90000007a10 EFLAGS: 00010246
[  568.182543][    C0] RAX: f6d0f42b5d1b2a00 RBX: ffffffff96f0d6e0 RCX: ffff88801b373b80
[  568.190689][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000002
[  568.198693][    C0] RBP: ffffffff8a8de220 R08: dffffc0000000000 R09: fffff52000000ed1
[  568.206704][    C0] R10: fffff52000000ed1 R11: 1ffff92000000ed0 R12: ffff8880556ab600
[  568.214780][    C0] R13: ffffffff8918ff80 R14: ffff8880556ab000 R15: ffff8880556ab490
[  568.222777][    C0] FS:  000055557a3f5500(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  568.231819][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  568.238423][    C0] CR2: 000000110c3adeb1 CR3: 000000005b2bc000 CR4: 00000000003506f0
[  568.246426][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  568.254413][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  568.262403][    C0] Call Trace:
[  568.265715][    C0]  <IRQ>
[  568.268580][    C0]  slab_free_freelist_hook+0xd2/0x1a0
[  568.273985][    C0]  ? rose_timer_expiry+0x4a7/0x5d0
[  568.279114][    C0]  __kmem_cache_free+0xb6/0x1f0
[  568.284148][    C0]  rose_timer_expiry+0x4a7/0x5d0
[  568.289079][    C0]  ? call_timer_fn+0x187/0x670
[  568.293904][    C0]  call_timer_fn+0x1a0/0x670
[  568.298670][    C0]  ? rose_start_t1timer+0xd0/0xd0
[  568.303737][    C0]  ? call_timer_fn+0xc1/0x670
[  568.308433][    C0]  ? __run_timers+0x7c0/0x7c0
[  568.313165][    C0]  ? _raw_spin_unlock_irq+0x1f/0x40
[  568.318366][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[  568.323860][    C0]  ? rose_start_t1timer+0xd0/0xd0
[  568.328887][    C0]  __run_timers+0x525/0x7c0
[  568.333420][    C0]  ? detach_timer+0x350/0x350
[  568.338097][    C0]  ? lock_chain_count+0x20/0x20
[  568.342974][    C0]  run_timer_softirq+0x63/0xf0
[  568.347738][    C0]  handle_softirqs+0x2a1/0x920
[  568.352543][    C0]  ? __irq_exit_rcu+0x12f/0x220
[  568.357412][    C0]  ? do_softirq+0x200/0x200
[  568.361960][    C0]  ? irqtime_account_irq+0xb2/0x1b0
[  568.367179][    C0]  __irq_exit_rcu+0x12f/0x220
[  568.371883][    C0]  ? irq_exit_rcu+0x20/0x20
[  568.376480][    C0]  irq_exit_rcu+0x5/0x20
[  568.380722][    C0]  sysvec_apic_timer_interrupt+0xa0/0xc0
[  568.386386][    C0]  </IRQ>
[  568.389317][    C0]  <TASK>
[  568.392271][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  568.398356][    C0] RIP: 0010:preempt_count_sub+0x13/0x160
[  568.404113][    C0] Code: ff ff 48 c7 c7 a8 aa 1f 8e e8 e9 39 79 00 89 df e9 5b ff ff ff 66 90 55 53 48 bb 00 00 00 00 00 fc ff df 48 c7 c0 40 91 be 96 <48> c1 e8 03 0f b6 04 18 84 c0 0f 85 bd 00 00 00 83 3d d6 da 66 15
[  568.423842][    C0] RSP: 0018:ffffc90003ce7318 EFLAGS: 00000206
[  568.429914][    C0] RAX: ffffffff96be9140 RBX: dffffc0000000000 RCX: ffffc90003ce7698
[  568.437909][    C0] RDX: ffffc90003ce7401 RSI: dffffc0000000000 RDI: 0000000000000001
[  568.445904][    C0] RBP: ffffffff8eaa3dac R08: ffffc90003ce7680 R09: ffffc90003ce7458
[  568.453899][    C0] R10: fffff5200079ce8d R11: 1ffff9200079ce8b R12: ffffc90003ce0000
[  568.461897][    C0] R13: dffffc0000000000 R14: ffffc90003ce7418 R15: ffffc90003ce7690
[  568.469987][    C0]  unwind_next_frame+0x1880/0x20b0
[  568.475155][    C0]  ? save_stack+0xf3/0x1e0
[  568.479663][    C0]  ? stack_trace_save+0xe0/0xe0
[  568.484552][    C0]  arch_stack_walk+0x10c/0x140
[  568.489330][    C0]  ? __reset_page_owner+0x51/0x1a0
[  568.494491][    C0]  stack_trace_save+0x98/0xe0
[  568.499174][    C0]  ? stack_trace_snprint+0xf0/0xf0
[  568.504316][    C0]  ? mark_lock+0x94/0x320
[  568.508650][    C0]  save_stack+0xf3/0x1e0
[  568.512998][    C0]  ? __reset_page_owner+0x1a0/0x1a0
[  568.518288][    C0]  ? page_ext_get+0x1de/0x2a0
[  568.522989][    C0]  __reset_page_owner+0x51/0x1a0
[  568.527956][    C0]  free_unref_page_prepare+0x8b4/0x9a0
[  568.533457][    C0]  free_unref_page_list+0xbb/0x8e0
[  568.538583][    C0]  release_pages+0x1f92/0x2200
[  568.543396][    C0]  ? lru_cache_disable+0x30/0x30
[  568.548335][    C0]  ? do_raw_spin_unlock+0x11d/0x230
[  568.553570][    C0]  __pagevec_release+0x6d/0xe0
[  568.558332][    C0]  shmem_undo_range+0x75b/0x2050
[  568.563301][    C0]  ? shmem_truncate_range+0xb0/0xb0
[  568.568528][    C0]  ? do_raw_spin_lock+0x11d/0x280
[  568.573577][    C0]  ? __rwlock_init+0x140/0x140
[  568.578347][    C0]  shmem_evict_inode+0x248/0xa40
[  568.583312][    C0]  ? _raw_spin_unlock+0x24/0x40
[  568.588163][    C0]  ? inode_wait_for_writeback+0x1b0/0x200
[  568.593929][    C0]  ? shmem_free_in_core_inode+0xb0/0xb0
[  568.599476][    C0]  ? do_raw_spin_lock+0x11d/0x280
[  568.604545][    C0]  ? bit_waitqueue+0x30/0x30
[  568.609154][    C0]  ? do_raw_spin_unlock+0x11d/0x230
[  568.614381][    C0]  ? shmem_free_in_core_inode+0xb0/0xb0
[  568.619945][    C0]  evict+0x485/0x870
[  568.623870][    C0]  ? __lock_acquire+0x7c50/0x7c50
[  568.628896][    C0]  ? proc_nr_inodes+0x2f0/0x2f0
[  568.633862][    C0]  ? do_raw_spin_unlock+0x11d/0x230
[  568.639104][    C0]  ? _raw_spin_unlock+0x24/0x40
[  568.643980][    C0]  ? iput+0x768/0x980
[  568.647962][    C0]  do_unlinkat+0x377/0x560
[  568.652412][    C0]  ? fsnotify_link_count+0xf0/0xf0
[  568.657525][    C0]  ? getname_flags+0x206/0x500
[  568.662595][    C0]  __x64_sys_unlink+0x45/0x50
[  568.667350][    C0]  do_syscall_64+0x4c/0xa0
[  568.671831][    C0]  ? clear_bhb_loop+0x60/0xb0
[  568.676511][    C0]  ? clear_bhb_loop+0x60/0xb0
[  568.681188][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  568.687104][    C0] RIP: 0033:0x7f72d078e1d7
[  568.691545][    C0] Code: 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 57 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  568.711179][    C0] RSP: 002b:00007ffc755951d8 EFLAGS: 00000206 ORIG_RAX: 0000000000000057
[  568.719624][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f72d078e1d7
[  568.727623][    C0] RDX: 00007ffc75595200 RSI: 00007ffc75595290 RDI: 00007ffc75595290
[  568.735613][    C0] RBP: 00007ffc75595290 R08: 0000000000000000 R09: 0000000000000000
[  568.743692][    C0] R10: 0000000000000100 R11: 0000000000000206 R12: 00007ffc75596320
[  568.751658][    C0] R13: 00007f72d0811c2d R14: 0000000000089b24 R15: 00007ffc75596360
[  568.759671][    C0]  </TASK>
[  568.762753][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  568.770143][    C0] CPU: 0 PID: 4278 Comm: syz-executor Not tainted syzkaller #0
[  568.777693][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  568.787833][    C0] Call Trace:
[  568.791120][    C0]  <IRQ>
[  568.793969][    C0]  dump_stack_lvl+0x168/0x22e
[  568.798656][    C0]  ? memcpy+0x3c/0x60
[  568.802646][    C0]  ? show_regs_print_info+0x12/0x12
[  568.808045][    C0]  ? load_image+0x3b0/0x3b0
[  568.812577][    C0]  panic+0x2c9/0x710
[  568.816487][    C0]  ? bpf_jit_dump+0xd0/0xd0
[  568.821004][    C0]  __warn+0x2f8/0x4f0
[  568.824990][    C0]  ? debug_check_no_obj_freed+0x43c/0x530
[  568.830746][    C0]  ? debug_check_no_obj_freed+0x43c/0x530
[  568.836462][    C0]  report_bug+0x2ba/0x4f0
[  568.840790][    C0]  ? debug_check_no_obj_freed+0x43c/0x530
[  568.846509][    C0]  handle_bug+0x3a/0x70
[  568.850680][    C0]  exc_invalid_op+0x16/0x40
[  568.855180][    C0]  asm_exc_invalid_op+0x16/0x20
[  568.860037][    C0] RIP: 0010:debug_check_no_obj_freed+0x43c/0x530
[  568.866362][    C0] Code: ef e8 f8 72 c5 fd 4c 8b 45 00 48 c7 c7 00 06 df 8a 48 c7 c6 c0 02 df 8a 48 c7 c2 60 07 df 8a 8b 0c 24 4d 89 e9 e8 a4 7d 41 fd <0f> 0b 4c 8b 6c 24 18 48 b9 00 00 00 00 00 fc ff df ff 05 55 2d 14
[  568.886101][    C0] RSP: 0018:ffffc90000007a10 EFLAGS: 00010246
[  568.892168][    C0] RAX: f6d0f42b5d1b2a00 RBX: ffffffff96f0d6e0 RCX: ffff88801b373b80
[  568.900152][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000002
[  568.908120][    C0] RBP: ffffffff8a8de220 R08: dffffc0000000000 R09: fffff52000000ed1
[  568.916173][    C0] R10: fffff52000000ed1 R11: 1ffff92000000ed0 R12: ffff8880556ab600
[  568.924143][    C0] R13: ffffffff8918ff80 R14: ffff8880556ab000 R15: ffff8880556ab490
[  568.932200][    C0]  ? rose_transmit_link+0x730/0x730
[  568.937429][    C0]  slab_free_freelist_hook+0xd2/0x1a0
[  568.942807][    C0]  ? rose_timer_expiry+0x4a7/0x5d0
[  568.947920][    C0]  __kmem_cache_free+0xb6/0x1f0
[  568.952786][    C0]  rose_timer_expiry+0x4a7/0x5d0
[  568.957722][    C0]  ? call_timer_fn+0x187/0x670
[  568.962482][    C0]  call_timer_fn+0x1a0/0x670
[  568.967085][    C0]  ? rose_start_t1timer+0xd0/0xd0
[  568.972117][    C0]  ? call_timer_fn+0xc1/0x670
[  568.976793][    C0]  ? __run_timers+0x7c0/0x7c0
[  568.981468][    C0]  ? _raw_spin_unlock_irq+0x1f/0x40
[  568.986684][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[  568.991904][    C0]  ? rose_start_t1timer+0xd0/0xd0
[  568.997010][    C0]  __run_timers+0x525/0x7c0
[  569.001520][    C0]  ? detach_timer+0x350/0x350
[  569.006387][    C0]  ? lock_chain_count+0x20/0x20
[  569.011484][    C0]  run_timer_softirq+0x63/0xf0
[  569.016371][    C0]  handle_softirqs+0x2a1/0x920
[  569.021143][    C0]  ? __irq_exit_rcu+0x12f/0x220
[  569.026013][    C0]  ? do_softirq+0x200/0x200
[  569.030529][    C0]  ? irqtime_account_irq+0xb2/0x1b0
[  569.035745][    C0]  __irq_exit_rcu+0x12f/0x220
[  569.040427][    C0]  ? irq_exit_rcu+0x20/0x20
[  569.044932][    C0]  irq_exit_rcu+0x5/0x20
[  569.049452][    C0]  sysvec_apic_timer_interrupt+0xa0/0xc0
[  569.055119][    C0]  </IRQ>
[  569.058045][    C0]  <TASK>
[  569.060974][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  569.067054][    C0] RIP: 0010:preempt_count_sub+0x13/0x160
[  569.072699][    C0] Code: ff ff 48 c7 c7 a8 aa 1f 8e e8 e9 39 79 00 89 df e9 5b ff ff ff 66 90 55 53 48 bb 00 00 00 00 00 fc ff df 48 c7 c0 40 91 be 96 <48> c1 e8 03 0f b6 04 18 84 c0 0f 85 bd 00 00 00 83 3d d6 da 66 15
[  569.092326][    C0] RSP: 0018:ffffc90003ce7318 EFLAGS: 00000206
[  569.098396][    C0] RAX: ffffffff96be9140 RBX: dffffc0000000000 RCX: ffffc90003ce7698
[  569.106365][    C0] RDX: ffffc90003ce7401 RSI: dffffc0000000000 RDI: 0000000000000001
[  569.114346][    C0] RBP: ffffffff8eaa3dac R08: ffffc90003ce7680 R09: ffffc90003ce7458
[  569.122495][    C0] R10: fffff5200079ce8d R11: 1ffff9200079ce8b R12: ffffc90003ce0000
[  569.130460][    C0] R13: dffffc0000000000 R14: ffffc90003ce7418 R15: ffffc90003ce7690
[  569.138469][    C0]  unwind_next_frame+0x1880/0x20b0
[  569.143588][    C0]  ? save_stack+0xf3/0x1e0
[  569.148005][    C0]  ? stack_trace_save+0xe0/0xe0
[  569.152870][    C0]  arch_stack_walk+0x10c/0x140
[  569.157630][    C0]  ? __reset_page_owner+0x51/0x1a0
[  569.162751][    C0]  stack_trace_save+0x98/0xe0
[  569.167447][    C0]  ? stack_trace_snprint+0xf0/0xf0
[  569.172564][    C0]  ? mark_lock+0x94/0x320
[  569.176902][    C0]  save_stack+0xf3/0x1e0
[  569.181149][    C0]  ? __reset_page_owner+0x1a0/0x1a0
[  569.186351][    C0]  ? page_ext_get+0x1de/0x2a0
[  569.191028][    C0]  __reset_page_owner+0x51/0x1a0
[  569.196052][    C0]  free_unref_page_prepare+0x8b4/0x9a0
[  569.201593][    C0]  free_unref_page_list+0xbb/0x8e0
[  569.206733][    C0]  release_pages+0x1f92/0x2200
[  569.211503][    C0]  ? lru_cache_disable+0x30/0x30
[  569.216440][    C0]  ? do_raw_spin_unlock+0x11d/0x230
[  569.221645][    C0]  __pagevec_release+0x6d/0xe0
[  569.226407][    C0]  shmem_undo_range+0x75b/0x2050
[  569.231351][    C0]  ? shmem_truncate_range+0xb0/0xb0
[  569.236589][    C0]  ? do_raw_spin_lock+0x11d/0x280
[  569.241618][    C0]  ? __rwlock_init+0x140/0x140
[  569.246379][    C0]  shmem_evict_inode+0x248/0xa40
[  569.251318][    C0]  ? _raw_spin_unlock+0x24/0x40
[  569.256168][    C0]  ? inode_wait_for_writeback+0x1b0/0x200
[  569.261893][    C0]  ? shmem_free_in_core_inode+0xb0/0xb0
[  569.267432][    C0]  ? do_raw_spin_lock+0x11d/0x280
[  569.272461][    C0]  ? bit_waitqueue+0x30/0x30
[  569.277050][    C0]  ? do_raw_spin_unlock+0x11d/0x230
[  569.282252][    C0]  ? shmem_free_in_core_inode+0xb0/0xb0
[  569.287887][    C0]  evict+0x485/0x870
[  569.291879][    C0]  ? __lock_acquire+0x7c50/0x7c50
[  569.296907][    C0]  ? proc_nr_inodes+0x2f0/0x2f0
[  569.301754][    C0]  ? do_raw_spin_unlock+0x11d/0x230
[  569.306989][    C0]  ? _raw_spin_unlock+0x24/0x40
[  569.311956][    C0]  ? iput+0x768/0x980
[  569.315948][    C0]  do_unlinkat+0x377/0x560
[  569.320373][    C0]  ? fsnotify_link_count+0xf0/0xf0
[  569.325486][    C0]  ? getname_flags+0x206/0x500
[  569.330262][    C0]  __x64_sys_unlink+0x45/0x50
[  569.335042][    C0]  do_syscall_64+0x4c/0xa0
[  569.339563][    C0]  ? clear_bhb_loop+0x60/0xb0
[  569.344233][    C0]  ? clear_bhb_loop+0x60/0xb0
[  569.348900][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  569.354785][    C0] RIP: 0033:0x7f72d078e1d7
[  569.359192][    C0] Code: 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 57 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  569.378895][    C0] RSP: 002b:00007ffc755951d8 EFLAGS: 00000206 ORIG_RAX: 0000000000000057
[  569.387304][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f72d078e1d7
[  569.395287][    C0] RDX: 00007ffc75595200 RSI: 00007ffc75595290 RDI: 00007ffc75595290
[  569.403263][    C0] RBP: 00007ffc75595290 R08: 0000000000000000 R09: 0000000000000000
[  569.411239][    C0] R10: 0000000000000100 R11: 0000000000000206 R12: 00007ffc75596320
[  569.419243][    C0] R13: 00007f72d0811c2d R14: 0000000000089b24 R15: 00007ffc75596360
[  569.427224][    C0]  </TASK>
[  569.430540][    C0] Kernel Offset: disabled
[  569.434956][    C0] Rebooting in 86400 seconds..