last executing test programs:

51.307461746s ago: executing program 3 (id=523):
bpf$MAP_LOOKUP_BATCH(0x18, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000940)=@newtfilter={0x24, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r3, {0x0, 0x7}, {}, {0x7, 0x2}}}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x800)

50.959672401s ago: executing program 3 (id=527):
socket$netlink(0x10, 0x3, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
r0 = fsopen(&(0x7f0000000000)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000040)='fd', &(0x7f00000000c0)='3', 0x0)

50.797872053s ago: executing program 3 (id=529):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={0x0}, 0x18)
getpid()
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x8100)
r0 = open_tree(0xffffffffffffffff, &(0x7f0000000280)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000160a0103000000000000000002000000540003804000038014000100626f6e645f736c6176655f300000000014000100736974300000000000000000000000000400010073697430000000000000000000000000080002400000000008000140000000000900020073797a31000000000900010073797a30"], 0xa8}, 0x1, 0x0, 0x0, 0x8004}, 0x0)

50.572573486s ago: executing program 3 (id=531):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fremovexattr(r0, &(0x7f0000000000)=@known='security.selinux\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000540)={0x1, &(0x7f0000000400)=[{0x200000000006, 0xa4, 0x3, 0x7ffc9ffe}]})
shutdown(0xffffffffffffffff, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r2=>r1}, './file0\x00'})
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000080)={0x0, 0x8, 0x2, 0x7, @vifc_lcl_ifindex, @empty}, 0x8)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x51f, &(0x7f0000000700)="$eJzs3W1rZFcdAPD/vcnsZndTM1WRtWBbbGVXdGeSxrZBpF1B9FVBre/XmExCyCQTMpO6CUVT/ACCiAp+AN8IfgBB+hFEKOh7UVHEbvWl7pU7c6NJZiaZTSaZNPn94GTOuQ/nf84lc+c+HO4N4Mp6PiLuR8RYRHw2IqaK6WmRYreT8uU+ePT2Qp6SyLI3/5FEUkzbqysvj0fErWK1iYj45tcivpN0x21u76zO1+u1zaJcba1tVJvbO/dW1uaXa8u19dnZmVfmXp17eW46K5yqn+WIeO0rf/nJD3/x1dd+8/nv/vHB3+5+L2/Wlz7RaXdELAxQzdiTxu3UXWpviz35Ntp80oousLw/pSfeMgAAjEJ+jP/RiPh0+/h/KsbaR3MAAADAZZK9Phn/TiIyAAAA4NJKI2IykrRSjAWYjDStVDpjeD8eN9N6o9n63FJja30xnxdRjlK6tFKvTRdjhctRSvLyTDHGdq/80qHybEQ8HRE/nrrRLlcWGvXFUV/8AAAAgCvi1nMHz///NZW2893uT5574wAAAIDhKfctAAAAAJeFU34AAAC4/Jz/AwAAwKX29TfeyFO29x7vxbe2t1Ybb91brDVXK2tbC5WFxuZGZbnRWG4/s2/tuPrqjcbGF2J962G1VWu2qs3tnQdrja311oOVA6/ABgAAAM7R08+9+4ckIna/eKOdongOIMABfx51A4BhGht1A4CRGR91A4CRKR27RO89xI0zaAswGskx87sH7xR7gN+eTXsAAIDhu/PJ7vv/14p5x18bAD7MjPUBgKvH/X+4ukonHQF4e9gtAUblI52P6/3m9314xwD3/zvXGLLsRA0DAACGZrKdkrRSHKdPRppWKhFPtV8LUEqWVuq16eL84PdTpet5eaa9ZnLsmGEAAAAAAAAAAAAAAAAAAAAAAAAAoCPLksgAAACASy0i/WvSfpp/xJ2pFycPXh049Navn7/504fzrdbmTMS15P2pfNK1iGj9rJj+UuaVAAAAAHABdM7T43oU5/EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMEwfPHp7YS+dZ9y/fzkiyr3ij8dE+3MiShFx859JjO9bL4mIsSHE330nIm73ip/E4yzLykUresW/ccbxy+1N0zt+GhG3hhAfrrJ38/3P/V7fvzSeb3/2/v6NF+m0+u//0v/t/8b67H+eOlTu55n3flXtG/+diGfGe+9/9uInnfgHQuSFFwbs47e/tbPTc8a+KnvF3x+r2lrbqDa3d+6trM0v15Zr67OzM6/MvTr38tx0dWmlXiv+9gzzo0/9+vFR/b/ZJ375YP+7tv+LA/U+i/+89/DRxzqFUq/4d1/o/ft7u0/8tPjt+0yRz+ff2cvvdvL7PfvL3z17VP8Xe/c/mTim/3cH6n+8n33jB3/qOadrawAA56G5vbM6X6/XNo/ITAywzDlnXr8YzRhiJi5GM0aVyb7f+X88XT2nXL0rk51m9fEYQjOudX1Px+KkFSYRu3ldA/5DAgAAl8z/D/qPuoMEAAAAAAAAAAAAAAAAAAAAnKUTPpZsIiIGXvhwzN3RdBUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4Ej/DQAA//9kR9Lv")
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000000340))
timer_settime(0x0, 0x0, &(0x7f0000000100)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000080), 0x40400)
r4 = socket(0xa, 0x2400000001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r4, 0x29, 0x2a, &(0x7f0000034000)={0x1, {{0xa, 0x0, 0x0, @mcast2}}}, 0x88)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_buf(r4, 0x29, 0x10000000000030, &(0x7f0000034000)=""/144, &(0x7f0000e5f000)=0x90)

49.150631849s ago: executing program 3 (id=538):
mprotect(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x1)
mlock2(&(0x7f0000002000/0x1000)=nil, 0x1000, 0x0)
mkdir(&(0x7f0000005740)='./file0\x00', 0x3b)
mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f00000000c0)='tracefs\x00', 0x800, 0x0)
mincore(&(0x7f0000004000/0x2000)=nil, 0x2000, &(0x7f0000000140)=""/217)
r0 = io_uring_setup(0x1946, &(0x7f0000000a80)={0x0, 0xa94d, 0x1, 0xfffffffd, 0x179})
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqsrc(r1, 0x0, 0x27, &(0x7f0000000080)={@multicast2, @dev={0xac, 0x14, 0x14, 0x17}, @loopback}, 0xc)
mremap(&(0x7f0000aa8000/0x3000)=nil, 0x3000, 0x2000, 0x0, &(0x7f0000ffc000/0x2000)=nil)
close_range(r0, 0xffffffffffffffff, 0x0)

47.663059793s ago: executing program 4 (id=549):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000280)='./bus\x00', 0x1200840, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x3, 0x37c, &(0x7f0000000ec0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)

47.027563373s ago: executing program 4 (id=552):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x23, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r2, &(0x7f0000000080), 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x2, &(0x7f00000000c0)=@gcm_256={{0x304}, "7817765dc5914c3d", "c0a9b92b592a8e91a6934cb6b7b18f7a7a6eaa9cbd8ef3b0fbc326100136e976", "58a190f0", "2a1e833e7af32011"}, 0x38)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x2, &(0x7f0000000280)=@gcm_256={{0x304}, "54164ace389ff5c0", "faad50724acb18aba4e3bc654d684ad9c694f3e96ca4b72643dd3689727968e9", "5cb6d054", "29a78ab9b0a4e8ae"}, 0x38)

46.757830707s ago: executing program 4 (id=555):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000000)="0000000000000002", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000180)=ANY=[], 0x9)

46.670108568s ago: executing program 3 (id=556):
bpf$MAP_LOOKUP_BATCH(0x18, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000940)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r3, {0x0, 0x7}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x800)

46.299385404s ago: executing program 32 (id=556):
bpf$MAP_LOOKUP_BATCH(0x18, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000940)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r3, {0x0, 0x7}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x800)

46.292304474s ago: executing program 4 (id=560):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fremovexattr(r0, &(0x7f0000000000)=@known='security.selinux\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000540)={0x1, &(0x7f0000000400)=[{0x200000000006, 0xa4, 0x3, 0x7ffc9ffe}]})
shutdown(0xffffffffffffffff, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r2=>r1}, './file0\x00'})
setsockopt$MRT_DEL_VIF(r2, 0x0, 0xcb, &(0x7f0000000080)={0x0, 0x8, 0x2, 0x7, @vifc_lcl_ifindex, @empty}, 0x8)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x51f, &(0x7f0000000700)="$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")
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000000340))
r4 = socket(0xa, 0x2400000001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r4, 0x29, 0x2a, &(0x7f0000034000)={0x1, {{0xa, 0x0, 0x0, @mcast2}}}, 0x88)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_buf(r4, 0x29, 0x10000000000030, &(0x7f0000034000)=""/144, &(0x7f0000e5f000)=0x90)

44.734212148s ago: executing program 4 (id=563):
sendmsg$IPCTNL_MSG_TIMEOUT_GET(0xffffffffffffffff, 0x0, 0x4000000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, 0x0)
bind$can_j1939(r0, &(0x7f0000000380)={0x1d, 0x0, 0x1, {0x0, 0x1, 0x3}, 0xfe}, 0x18)
sendmmsg$sock(r0, &(0x7f0000000280)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)="1f", 0x206c}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0)

41.775461133s ago: executing program 4 (id=575):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x25, &(0x7f0000000000)={0x1})
fcntl$lock(r0, 0x25, &(0x7f0000000040)={0x0, 0x0, 0x80, 0x7})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x18)
fcntl$lock(r0, 0x25, &(0x7f0000000180)={0x0, 0x1, 0x0, 0x80000000})

41.31358521s ago: executing program 33 (id=575):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x25, &(0x7f0000000000)={0x1})
fcntl$lock(r0, 0x25, &(0x7f0000000040)={0x0, 0x0, 0x80, 0x7})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x18)
fcntl$lock(r0, 0x25, &(0x7f0000000180)={0x0, 0x1, 0x0, 0x80000000})

8.623589247s ago: executing program 2 (id=783):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000005000000850000002d00000095"], &(0x7f0000001240)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r0}, 0x18)
socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$inet6(0xa, 0x80002, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x810)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
io_setup(0xffff, &(0x7f0000001080))

8.270219293s ago: executing program 2 (id=792):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x50)
syz_open_pts(0xffffffffffffffff, 0x42)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x1f, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="f9ffffff00"/15, @ANYRES32=r2, @ANYRESOCT=r0], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='mm_khugepaged_scan_pmd\x00', r3, 0x0, 0x1}, 0xffffffffffffff86)
ptrace(0x10, r1)
r4 = socket(0x2, 0x80805, 0x0)
syz_clone3(&(0x7f0000000340)={0x42107400, &(0x7f0000000200), 0x0, 0x0, {0x81c}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
getgid()
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000001c0)={{r6}, &(0x7f0000000080), &(0x7f0000000180)='%ps    \x00'}, 0x20)
r8 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r8, &(0x7f0000000280)={0xa, 0x0, &(0x7f0000000340)={&(0x7f0000000b00)=ANY=[@ANYRES16=r4], 0x58}, 0x1, 0x7}, 0x0)
r9 = mq_open(&(0x7f0000000380)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|\x00\x17\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbb\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x9b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\xe4\x96M_w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86>\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99Md\x1dc\xf1\'j\x03!\x13\xd1\xb8\xbf\xe6\xb2M\b/\rp\xa5\x00\x00\x00\x00', 0x40, 0x0, 0x0)
fcntl$setlease(r9, 0x400, 0x0)
mq_unlink(&(0x7f0000000340)='eth0\x00')
close(r9)
sendmmsg$inet(r8, &(0x7f0000000880)=[{{&(0x7f0000000080)={0x2, 0x0, @rand_addr=0xac1414bb}, 0x10, &(0x7f0000000100)}, 0x20000000}, {{&(0x7f0000000180)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000400)=[{&(0x7f0000000240)="88", 0x1}], 0x1, 0x0, 0xfffffffffffffd29}}], 0x2, 0x0)

7.152511829s ago: executing program 2 (id=795):
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
eventfd2(0x1, 0x1)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x84)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
close(0xffffffffffffffff)
setsockopt$sock_attach_bpf(r1, 0x84, 0x76, &(0x7f0000000000), 0x8)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r2)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
syz_open_procfs(r0, &(0x7f00000001c0)='fdinfo/4\x00')
r3 = syz_open_procfs(r0, 0x0)
io_setup(0x6, &(0x7f0000000540)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f0000000880)=[&(0x7f00000000c0)={0x0, 0x300, 0x0, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}])
io_getevents(r4, 0x3, 0x2, &(0x7f0000000140)=[{}, {}], 0x0)
wait4(0xffffffffffffffff, 0x0, 0x80000000, 0x0)
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, 0x0)
mount(0x0, 0x0, &(0x7f0000000140)='autofs\x00', 0x0, &(0x7f0000000400))
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141b82, 0x0)
write$cgroup_int(r5, 0x0, 0x0)
syz_usb_connect$uac1(0x69a90eab3db9c902, 0x95, &(0x7f0000000000)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0x40, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x83, 0x3, 0x1, 0x4, 0xa0, 0x9, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0xfff7, 0x7}, [@output_terminal={0x9, 0x24, 0x3, 0x3, 0x300, 0x3, 0x3, 0xb}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_continuous={0x8, 0x24, 0x2, 0x1, 0x82, 0x4, 0x9, 0x14}, @format_type_i_discrete={0xa, 0x24, 0x2, 0x1, 0x9, 0x4, 0x7, 0x6, "0006"}]}, {{0x9, 0x5, 0x1, 0x9, 0x400, 0xff, 0xc8, 0x3, {0x7, 0x25, 0x1, 0x0, 0x4, 0x5}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_ii_discrete={0x9, 0x24, 0x2, 0x2, 0x7, 0x9, 0xff}]}, {{0x9, 0x5, 0x82, 0x9, 0x50, 0x5, 0x8, 0x41, {0x7, 0x25, 0x1, 0x82, 0xfe, 0x7}}}}}}}]}}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0})

6.226189304s ago: executing program 1 (id=803):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
close(r2)

4.933717804s ago: executing program 1 (id=807):
sendmsg$IPCTNL_MSG_TIMEOUT_GET(0xffffffffffffffff, 0x0, 0x4000000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000380)={0x1d, r1, 0x1, {0x0, 0x1, 0x3}, 0xfe}, 0x18)
sendmmsg$sock(r0, &(0x7f0000000280)=[{{0x0, 0x0, &(0x7f0000000080)}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0)

4.717946057s ago: executing program 0 (id=811):
socket$inet_udp(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0x2000000}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r5, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x17}}, 0x10)
sendmmsg$inet(r5, &(0x7f0000000800)=[{{0x0, 0x0, 0x0}}], 0x1, 0xf00)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000000100)={'wlan0\x00', &(0x7f00000000c0)=@ethtool_stats})
mlockall(0x2)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r6, 0x890b, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000006c0)='rpcb_unregister\x00', 0xffffffffffffffff, 0x0, 0xffffeffffffffff0}, 0x18)
r7 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r7, 0xc004500a, &(0x7f0000000000))
clock_gettime(0x0, 0x0)
recvmmsg(r3, &(0x7f0000000e80)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000280)=""/243, 0xf3}, {&(0x7f0000000380)=""/54, 0x36}, {&(0x7f0000000f80)=""/206, 0xce}, {&(0x7f0000001300)=""/4096, 0x1000}, {&(0x7f0000000500)=""/102, 0x66}, {&(0x7f0000000580)=""/42, 0x2a}, {&(0x7f00000005c0)=""/67, 0x43}], 0x7, &(0x7f0000002300)=""/4096, 0x1000}, 0x100}, {{&(0x7f0000000700)=@hci, 0x80, &(0x7f0000000cc0)=[{&(0x7f0000000780)=""/91, 0x5b}, {&(0x7f0000003300)=""/4096, 0x1000}, {0x0}, {&(0x7f0000000a40)=""/167, 0xa7}, {0x0}, {&(0x7f0000000b00)=""/198, 0xc6}, {&(0x7f0000000c00)=""/66, 0x42}, {&(0x7f0000000c80)=""/52, 0x34}], 0x8, &(0x7f0000000d80)=""/220, 0xdc}, 0x10000}], 0x2, 0x40000042, 0x0)
r8 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SNDCTL_DSP_SYNC(r8, 0x5001, 0x0)
write$dsp(r7, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)
ioctl$SNDCTL_DSP_SYNC(r8, 0x5001, 0x0)
shmat(0x0, &(0x7f0000136000/0x4000)=nil, 0x4000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x9, 0x1, 0x8c}]}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x56}, 0x80)

4.679251208s ago: executing program 1 (id=812):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$tipc(r0, &(0x7f00000003c0)={&(0x7f0000000180), 0x10, &(0x7f0000000380)=[{&(0x7f0000000480)="c3e972bd85a6d84136d6dd55048d3593a74f338ce6772ab9a6f64041c2f6fbbecdc08ebcd3192b6a53662dae7c8e9c665e80a5d0925f728dcac30c29793992e588952653d414cb8ccdabc38767fee819ec5af0c5ee936880fe8549b4ed347779cab4ffd4e0b62c53a1c01db28f2b3f91c34211c9353bc1dece61511917c2245fd66cb8dffeacb4d46d627c97b498bf1ff6b313bfbc9765457c831771d5eec7997ec242e4505f01c1bb3e069b2e630f42a2be86598a61", 0x64}, {&(0x7f0000000300)='V', 0x1}, {&(0x7f0000001600)="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", 0x1000}, {&(0x7f0000000340)="b768eb20304f2fdc5a9694a4867840d93170ca1a86406f", 0xfffffec0}], 0x4, 0x0, 0x0, 0x8010}, 0x0)
dup2(r1, r0)
setsockopt$sock_attach_bpf(r1, 0x1, 0x21, &(0x7f0000000040), 0x4)
sendmmsg(r0, &(0x7f0000004b00)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000003600)=[{&(0x7f00000012c0)="23a0be3ec0d9edaccda531874ecf98434f3d10665f6e0346136984c1f2f15d", 0x1f}, {&(0x7f0000001300)="11ca5641cbf9577fa297e890dc4746449416908fa7066d54ca4ed8fb87a71d621ef53449e793c55ba58eab20a5044fd1ec07cc77e4e3bf3b8da2812b8943441c0c565de0c5dbc8c8", 0x48}, {&(0x7f0000001380)="190be02b544a87c33aa4aaaaabfccb6154043a8b5a2ea95211900186170c7a4f2651d264466253c5f9851a58793efcaf45a2c0f7546bf143b9bff46892f86a3e98e625eabbd1043b1e15036c9cf221d620f792d835bcad5a583cdd666c527279ce68530f3e71f6c170d033e0eec71d019b7058f398e887abb014e1930ffe52fe9b32fb847022f7298ba564e6fabd049f56aefe1e966ab30d411e62a5394c8bc6146b171d44ce5dc32018a6b0e15828d2e6853b3b2fec4d21c718e79ee351a06755a9", 0xc2}, {&(0x7f0000002600)="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", 0x4b4}], 0x4}}], 0x6, 0x200040d1)

3.791421502s ago: executing program 0 (id=815):
socket$inet_udp(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0x2000000}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r5, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x17}}, 0x10)
sendmmsg$inet(r5, &(0x7f0000000800)=[{{&(0x7f0000000040)={0x2, 0x4e22, @multicast2}, 0x10, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0xf00)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000000100)={'wlan0\x00', &(0x7f00000000c0)=@ethtool_stats})
mlockall(0x2)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r6, 0x890b, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000006c0)='rpcb_unregister\x00', 0xffffffffffffffff, 0x0, 0xffffeffffffffff0}, 0x18)
r7 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r7, 0xc004500a, &(0x7f0000000000))
clock_gettime(0x0, 0x0)
recvmmsg(r3, &(0x7f0000000e80)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000280)=""/243, 0xf3}, {&(0x7f0000000380)=""/54, 0x36}, {&(0x7f0000000f80)=""/206, 0xce}, {&(0x7f0000001300)=""/4096, 0x1000}, {&(0x7f0000000500)=""/102, 0x66}, {&(0x7f0000000580)=""/42, 0x2a}, {&(0x7f00000005c0)=""/67, 0x43}], 0x7, &(0x7f0000002300)=""/4096, 0x1000}, 0x100}, {{&(0x7f0000000700)=@hci, 0x80, &(0x7f0000000cc0)=[{&(0x7f0000000780)=""/91, 0x5b}, {0x0}, {&(0x7f0000000880)=""/207, 0xcf}, {0x0}, {&(0x7f0000000a40)=""/167, 0xa7}, {0x0}, {&(0x7f0000000b00)=""/198, 0xc6}, {&(0x7f0000000c00)=""/66, 0x42}, {&(0x7f0000000c80)=""/52, 0x34}], 0x9, &(0x7f0000000d80)=""/220, 0xdc}, 0x10000}], 0x2, 0x40000042, 0x0)
r8 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SNDCTL_DSP_SYNC(r8, 0x5001, 0x0)
write$dsp(r7, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)
ioctl$SNDCTL_DSP_SYNC(r8, 0x5001, 0x0)
shmat(0x0, &(0x7f0000136000/0x4000)=nil, 0x4000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x9, 0x1, 0x8c}]}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x56}, 0x80)

3.765890432s ago: executing program 1 (id=816):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_DELFLOWTABLE={0x2c, 0x18, 0xa, 0x5, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x54}, 0x1, 0x0, 0x0, 0x24040089}, 0x20008000)

3.711258943s ago: executing program 2 (id=817):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ff90000000000000100000850000007b00000095"], &(0x7f0000000480)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000780)='mm_page_free\x00', r0}, 0x18)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x481, 0x0)
close_range(r1, 0xffffffffffffffff, 0x200000000000000)

2.903071715s ago: executing program 1 (id=819):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
close(r0)

2.828832447s ago: executing program 0 (id=821):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
socket$packet(0x11, 0x3, 0x300)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000010140)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r2}, 0x18)
socket$kcm(0x21, 0x2, 0x2)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
request_key(&(0x7f0000000040)='user\x00', &(0x7f0000000080)={'syz', 0x0}, &(0x7f0000000140)='\\\\@[*#)\x00', 0xfffffffffffffffe)

2.61640889s ago: executing program 0 (id=824):
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x387, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17fff}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={0x0, r0}, 0x18)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c000280050001000600000008000a0079"], 0x44}}, 0x0)

2.441840433s ago: executing program 2 (id=826):
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x387, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17fff}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r0}, 0x18)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c000280050001000600000008000a"], 0x44}}, 0x0)

1.438990688s ago: executing program 1 (id=828):
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
eventfd2(0x1, 0x1)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x84)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
close(0xffffffffffffffff)
setsockopt$sock_attach_bpf(r1, 0x84, 0x76, &(0x7f0000000000), 0x8)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r2)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
syz_open_procfs(r0, &(0x7f00000001c0)='fdinfo/4\x00')
r3 = syz_open_procfs(r0, 0x0)
io_setup(0x6, &(0x7f0000000540)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f0000000880)=[&(0x7f00000000c0)={0x0, 0x300, 0x0, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}])
io_getevents(r4, 0x3, 0x2, &(0x7f0000000140)=[{}, {}], 0x0)
wait4(0xffffffffffffffff, 0x0, 0x80000000, 0x0)
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, 0x0)
mount(0x0, 0x0, &(0x7f0000000140)='autofs\x00', 0x0, &(0x7f0000000400))
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141b82, 0x0)
write$cgroup_int(r5, 0x0, 0x0)
syz_usb_connect$uac1(0x69a90eab3db9c902, 0x95, &(0x7f0000000000)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0x40, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x83, 0x3, 0x1, 0x4, 0xa0, 0x9, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0xfff7, 0x7}, [@output_terminal={0x9, 0x24, 0x3, 0x3, 0x300, 0x3, 0x3, 0xb}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_continuous={0x8, 0x24, 0x2, 0x1, 0x82, 0x4, 0x9, 0x14}, @format_type_i_discrete={0xa, 0x24, 0x2, 0x1, 0x9, 0x4, 0x7, 0x6, "0006"}]}, {{0x9, 0x5, 0x1, 0x9, 0x400, 0xff, 0xc8, 0x3, {0x7, 0x25, 0x1, 0x0, 0x4, 0x5}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_ii_discrete={0x9, 0x24, 0x2, 0x2, 0x7, 0x9, 0xff}]}, {{0x9, 0x5, 0x82, 0x9, 0x50, 0x5, 0x8, 0x41, {0x7, 0x25, 0x1, 0x82, 0xfe, 0x7}}}}}}}]}}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0})

1.33404695s ago: executing program 0 (id=830):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a0904000000000000000002000000400004803c0001800a00010072616e67060000002c000280080001400000000808000240000000030c00048006000100587700000c00038005000100430000000900010073797a30000000000900020073797a3200000000140000001100010000000000000000000000000a"], 0x94}}, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/power/pm_test', 0x42, 0x0)
r1 = socket$l2tp(0x2, 0x2, 0x73)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYRES64], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES64=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b00)=ANY=[@ANYBLOB="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"], 0x548}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3, 0x0, 0x7ffc}, 0x18)
r5 = epoll_create1(0x0)
write(0xffffffffffffffff, &(0x7f00000000c0)="270000001400070f030e0000120f0a001100b1128a151f7508", 0x19)
shutdown(0xffffffffffffffff, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000080), 0x72a, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, 0xffffffffffffffff, &(0x7f0000000240)={0xb0000018})
r6 = io_uring_setup(0x6c4, &(0x7f0000000080)={0x0, 0x4075, 0x18, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS(r6, 0x0, &(0x7f0000000280)=[{&(0x7f0000001700)=""/4095, 0xfff}], 0x1)
io_setup(0x20, &(0x7f0000001140))

1.33360448s ago: executing program 2 (id=832):
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000680)='/sys/power/disk', 0x2, 0x0)
io_setup(0x20, &(0x7f0000001140))
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x2, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xffffffffffffff18)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
socket$netlink(0x10, 0x3, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="4c000000020681010000000000000000000000000500050002000000050001000700000005000400030000000900020073797a310000000011000300686173683a6e65742c6e6574"], 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x800)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x50, 0x9, 0x6, 0x201, 0x0, 0x0, {0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @remote}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010101}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0xd24f4d5778621d46}, 0x4)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x1c, 0x7, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x1c}}, 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="120100009ac0b620110f211066865578ac010902"], 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

968.807745ms ago: executing program 6 (id=837):
sendmsg$IPCTNL_MSG_TIMEOUT_GET(0xffffffffffffffff, 0x0, 0x4000000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000380)={0x1d, r1, 0x1, {0x0, 0x1, 0x3}, 0xfe}, 0x18)
sendmmsg$sock(r0, &(0x7f0000000280)=[{{0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0)

940.225406ms ago: executing program 5 (id=838):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18)
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000380)='./file0\x00', 0x0, &(0x7f0000000d80)=ANY=[], 0x3, 0x7a6, &(0x7f00000016c0)="$eJzs3U1sHFcdAPD/GLtxXSmqCipRlKaTpEiJCO7uunWxeijb9diedr1r7a5RIoTaqnGqKO6HWlXQHCi5tIBAiBPH0mvVCzcQByQOwAmJHrhwQKrUEyoSSAiEkIxmP+K1468kdtKW38/qvrdv/vPmzXg6/52NZyYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgEhqs6VSOYl63lg+l26vNttqLu4wfdDfrzcUOyw3Iin+i/HxONJrOvKF9cn3Fy8n41jv3bEYL4rxuHLP/fc+/vnRkcH8OwzoZp3YY1wS8d1iUJefW11defUABnIb/eBXNzzLv9eK1/mskbeb+WJ1PkvzdjOdmZ4uPbww107n8nrWPt/uZItprZVVO81Werp2Ji3PzEyl2eT55nJjfrZazwaNj32lUipNp09NLmXVVrvZePipyXZtIa/X88Z8N6ZS+lYUMY8VO+LTeSftZNXFNL14aXVlarehFkHlDS2HNuw4xx6696PXP/zHpZVih9yuk6S/Y1bK5UqlPP3ozKOPlUqjlVJlY0Npk7gWESMRRcSB7LR8iuzfwRtu0Ug//0c98mjEcpyLNNIY6b6u/4zFeMxGK5qxWLz/09im6dfl/y89/Lc/7LTc4fw/yPJH1icfjW7+P957d3yb/F8clDeP4+B+Gu/3RjPc9lq8EVficjwXq7EaK/HqbRzPTf2M7G9/85FFI/JoRzPyWIxqtyXtt6QxE9MxHaV4JhZiLtqRxlzkUY8s2nE+2tGJrLtH1aIVWVSjE81oRRqnoxZnIo1yzMRMTEUaWUzG+WjGcjRiPmaj2u3lYlzqbvepTeO6/zvP/vKFP370TlG/FlTeYUWS4sNcEfT3HYL6yfzBuIn8P4iQ/z9rxvvHrL3G7+fhG27JWjf/j97pYQAAAAAHKOl++55ExFg80K3N5fXsG3d6WAAAAMA+6v5d87GiGCtqD0RSnP+Xtoj84LaPDQAAANgfSfcauyQiJuLBXm1wudRWXwIAAAAAn0Ldf/8/XhQTEW92G5z/AwAAwGfM97a7x/6Hd/Xv0dteOpR8rh+9dO6h5MVqUau+2G/rF1+/1mNn7mhyuN9Jt5gevXJPEhGjtexYMrj75X8P9cqPu69H129AuN29/pNWayy5uv0AYucBdN/FD+NEL+bEhV55YTClt5SJubyeTdaa9cfLSf/Lkc7rL136dkSx9O83Fg8ncfHS6srk8y+vXuiO5WrRy9UX+7eHT25gLGv9LRAPbL3GY90LMfrLnegttzS8/iO92Ud2XmYyvMy34mQv5uREr5zYuP7jxTLLk4+Xo1o9PNLJznVeXxta+/4oyre45m/FqV7MqdOnesUWo6hsGMVL14+iMjyKvW2LPY/inRNvnvvnb5tJNrXbKKZucRQAd8rF7l1/1rPQ3d0s9J+1niL/b8q7dw/mvJGj3MX1TxmD+Ydy3WjsT3Z/K073Yk73Pk+MHt0ir5S2OKK/cumV3/WP6I+899OfffP4739+89ntvTjTi+kXcd9vtsmxxTr/aFNWfbeY491tl9uuV5IY6z07YX3yygsrL1UqU9OlR0qlRysx1v2o0C/kHgC2sOszdvbwFJ5Htj6rjkHGu+/anxRMxvPxcqzGhTjbvdogIh7cuteJoT9DOLvLWevE0BNezu5ybrkeW9kce+hUEtvETg1tsS/+pFv86+B+JwBw0E7ukof3kv/P7nLevTGXn+k9OHdwdhzb5/KtfPWgNwgA/B/IWh8nE523k1YrX3qmPDNTrnYWsrTVrD2dtvLZ+SzNG52sVVuoNuazdKnV7DRrgy+OZ7N22l5eWmq2Oulcs5UuNdv5ue6T39P+o9/b2WK10clr7aV6Vm1naa3Z6FRrnXQ2b9fSpeUn63l7IWt1Z24vZbV8Lq9VO3mzkbaby61aNpmm7SwbCsxns0Ynn8uLaiNdauWL1dbViKgvL2bpbNautfKlTrPX4WBZeWOu2Vrsdjt5/er/9XZvbwD4JHjtjSuXn1tdXXl1Y2Ut2dyydeXPe4h5LWLtTq8mADBkOEsDAAAAAAAAAAAAAACfTNdfrle07npJ33BlLG4geFPlUNzMXJ/dypff7/1a9qPDW+nn7g2/07v6O8ud3z43XHn2iScubxfz5JtHFv6SRezez9b/p2x1qevbhyPu+sWPey1fu11r+kH01iJGb2j2tWSHmDt2SAIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAbf0vAAD//y4LUq8=")
listxattr(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)

830.404967ms ago: executing program 6 (id=839):
r0 = epoll_create1(0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100)={0x1})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
r3 = socket$inet6(0x10, 0x3, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r3, &(0x7f00000000c0)={0x4000000b})
r4 = dup3(r3, r2, 0x80000)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r4, &(0x7f0000000000)={0x30000010})

782.086548ms ago: executing program 0 (id=840):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2000000, &(0x7f00000006c0), 0x1, 0x512, &(0x7f0000000c40)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
sendto$packet(0xffffffffffffffff, &(0x7f0000000840), 0x0, 0x20000000, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x5, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, 0x14)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000300)={'vxcan1\x00', <r1=>0x0})
bind$can_raw(r0, &(0x7f0000000000)={0x1d, r1}, 0x10)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x401, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r2, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000840)=ANY=[@ANYBLOB="9c0000000308030000000000000000000a04000705000300060000000900010073797a31000000001400048008000740fffffff4c596318d2e63e42906000240886c00003400048008000140000010000800014000000009080001400000000d0800024080000000080002400000000408000260000000082400048008000540"], 0x9c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x2}]})
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f00000002c0)="e203d9655829dfacef50e723cd6dfb218a3b7d7fafa037c26cbe3aa5aa341fa6af98ee6765c76505552466e81f56fbb1b034128d801e6b52cd60376024ce64cc8fad33f4173123706c481bb1a108170cbced557ecb8f385ab219ed7527707473a4638e4e2b81c5231bb85fbd1fecb4cf3e27958d76680ea13e925dc0a0bf77f3eebb1d991c6ca8c27e4c3e8fb67aa6ef6554603bb00b62aebc85c193413e82929d1bfe1357030991212e7127e2ae8b3ca50268e9f2c5f74930b461493acc93609f2c65c258362e0609146ffcadb9e35e874ec64ca44ac2"}, 0x20)
close_range(r3, 0xffffffffffffffff, 0x0)

781.824558ms ago: executing program 5 (id=841):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="68377863ac6ea61666eaa696435a75f1626fe3a3acedcaf71527ff51d446daac757559d2d6fc2b90952355ec6c61d718c91784312b1b4771888a0811895b02ffb658934b0bbd6466c9cc04cc7252f1f1deea5a8b9c6797c8f1263db526cf88899f7ecab544662eb34743cefb660a78cb9468d2900b3cda4cca9d89ab6d341d145acf249276dda272407bc98d9e5431316d468b9e4750f2316589dc4de3157592d27fd723a512c85b08035842b75ec422346f9696f4bb3226b0ca75d135ebd8cae46fb83b71c103e1fdcb1934fd1d28b4916abe2c44e26ea72be426c27052e816212096000155788943b846746ccb492175fc9e01", 0xf4}, {&(0x7f00000003c0)="5453b4b759f9d4f4f33bda880b70e0dadde06223919f4585429ef69078a4956f646ea03bfd4c090a003c01f32b1a175baf38c1eb4572c8b372a4cf9128062e58ff575546876a2804144c3aea98c4a3533396f87e860de8c66bceb0e6b387ec853b7e91c57587d38436637e702ae18eeccefdcd7a3cdd7bfc327b5d619b57d56afe1628b65e2948af5ee0e3f52746a5aff58bb7c6d253a58bf745584d1bc19fe5e42b5534eab9e9d2587b413e81f68b60f56130f82b327f5fe900e3e107bc6b783d1d23a056426d6502133386b51e657046c1c43a2a2c4a7611ee6592a5ee08700d24d832163b3def", 0xe8}, {&(0x7f0000000640)="d48c8225ddfdf2c06c27763617468581389d34126760ba3dd0fe077a7c2ce378dd62cafeeb4ba1493766d09fd561d69a5bf8109ffcd3e43d8c16b9c3fa92d4439c5af1fa4775d01dcf0748a24ab51b52fbe75287a4b9aaa18fd479bdd154b4efe531a242d90a1ca2799c242bfd4ddd8271448d3415bd3a907ad340dc2fa2471393212d02eb25242808cffdc4e7a646211c18ac8602f5fc1e4f82b72871a8d42f37988365ff226c1523bf01617976641421438e16378094c94f2e55a44150d9a358d92606afb12f21a63daadbb143d6ccdae88d5352", 0xd5}, {&(0x7f0000000040)="f96be6c391f1f8b23ae44a70a75f4a5ed0e013f80882907ab089ee65d16a6c6f5c666dad31257fb48b66d940a3819d0809971ea827", 0x35}], 0x4}}], 0x1, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

634.562061ms ago: executing program 6 (id=842):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
syz_emit_ethernet(0x0, 0x0, 0x0)
stat(0x0, 0x0)

621.671091ms ago: executing program 5 (id=843):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x9, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000800)=ANY=[@ANYBLOB="140000001000040000000000000000000300000a20000000000a05000000000000000000070000000900010073797a300000000044000000090a010400000000000000000700ffff08000a40000000030900020073797a31000000000900010073797a3000000000080005400000002105000d40"], 0xe8}, 0x1, 0x0, 0x0, 0x10}, 0x0)

338.143025ms ago: executing program 5 (id=844):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
recvmmsg(r0, 0x0, 0x0, 0x12020, 0x0)

320.946726ms ago: executing program 6 (id=845):
r0 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000400)='kfree\x00', r2}, 0x10)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})

184.043397ms ago: executing program 5 (id=846):
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = syz_io_uring_setup(0x6440, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f00000001c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x40, 0x0, 0x3, 0x1, 0x0, 0xce})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[@ANYBLOB='.'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x11, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x55, 0x2000, @fd_index=0xd, 0x7, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

128.961568ms ago: executing program 6 (id=847):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x3c, r1, 0x1, 0x4, 0x0, {}, [@IPVS_CMD_ATTR_DAEMON={0x28, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ip6erspan0\x00'}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x3c}}, 0x0)

5.80033ms ago: executing program 5 (id=848):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000003c0)='./file0\x00', 0x201000c, &(0x7f00000001c0), 0xff, 0x535, &(0x7f0000002800)="$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")
r1 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r3, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0xea, 0x0, 0xfffd, 0x0, 0x9, 0x5}, {0x12, 0x2, 0x0, 0x401, 0x8001, 0x1400}, 0xa5, 0x5, 0x10000000}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}}, 0x44080)
sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000005c0)=@newqdisc={0x54, 0x24, 0xd0f, 0x70bd2c, 0x0, {0x60, 0x0, 0x0, r3, {}, {0xffe0, 0xa}, {0x1, 0xe}}, [@qdisc_kind_options=@q_codel={{0xa}, {0x24, 0x2, [@TCA_CODEL_INTERVAL={0x8, 0x3, 0x9}, @TCA_CODEL_ECN={0x8, 0x4, 0x5}, @TCA_CODEL_CE_THRESHOLD={0x8}, @TCA_CODEL_TARGET={0x8, 0x1, 0x2}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x55}, 0xc010)
r4 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000200)={'geneve0\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000002bc0)=@newlink={0x3c, 0x10, 0x1, 0x70bd2b, 0x0, {0x0, 0x0, 0x0, r5, 0x0, 0x20008}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @geneve={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GENEVE_UDP_ZERO_CSUM6_TX={0x5, 0x9, 0x1}]}}}]}, 0x3c}, 0x1, 0x2}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0xfffffffe, 0x0, 0x0, 0x41000, 0x0, '\x00', r5, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000}, 0x94)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000005c0)={'syztnl2\x00', &(0x7f0000000540)={'syztnl1\x00', 0x0, 0x29, 0x3, 0xbf, 0x10001, 0xa, @mcast2, @ipv4={'\x00', '\xff\xff', @local}, 0x700, 0x20, 0xc, 0x2}})
r6 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005a40)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32, @ANYBLOB='\b\x00', @ANYRES16=r6], 0xb4}}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r9=>0x0})
sendmsg$nl_route(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@bridge_dellink={0x34, 0x13, 0x1, 0x0, 0xffffffff, {0x7, 0x0, 0x0, r9, 0x0, 0x20}, [@IFLA_AF_SPEC={0x14, 0x1a, 0x0, 0x1, [@AF_INET={0x10, 0x4, 0x0, 0x1, {0xc, 0x1, 0x0, 0x1, [{0x8, 0x1d, 0x0, 0x0, 0x6}]}}]}]}, 0x34}}, 0x488c2)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'team0\x00', <r10=>0x0})
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000740)={'syztnl0\x00', &(0x7f00000006c0)={'ip6gre0\x00', <r11=>0x0, 0x2f, 0x3, 0x1e, 0x186, 0x2e, @dev={0xfe, 0x80, '\x00', 0x13}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x0, 0xf, 0x80000000, 0x4}})
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000008c0)={'sit0\x00', &(0x7f0000000780)={'ip_vti0\x00', <r12=>0x0, 0x8000, 0x8110, 0x7ff, 0x0, {{0x37, 0x4, 0x2, 0x39, 0xdc, 0x65, 0x0, 0xf8, 0x2b, 0x0, @rand_addr=0x64010101, @rand_addr=0x64010101, {[@timestamp={0x44, 0x8, 0x55, 0x0, 0x6, [0x5]}, @timestamp_addr={0x44, 0x4c, 0xcb, 0x1, 0x5, [{@remote, 0xe}, {@private=0xa010101, 0x7}, {@empty, 0x2d3}, {@rand_addr=0x64010100, 0x8}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x4}, {@multicast1, 0x4}, {@loopback, 0x2}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x83a}, {@loopback, 0x6bd7}]}, @ra={0x94, 0x4, 0x1}, @ssrr={0x89, 0x7, 0x53, [@dev={0xac, 0x14, 0x14, 0xd}]}, @timestamp_addr={0x44, 0x14, 0x6f, 0x1, 0x2, [{@remote, 0x4}, {@empty, 0x7fffffff}]}, @timestamp={0x44, 0x1c, 0x60, 0x0, 0x3, [0xffffffff, 0x1, 0x80000000, 0x6, 0x0, 0x4]}, @lsrr={0x83, 0x13, 0xd4, [@broadcast, @loopback, @rand_addr=0x64010101, @broadcast]}, @timestamp_addr={0x44, 0x24, 0xe2, 0x1, 0x3, [{@private=0xa010101, 0x200}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0xf}, {@local, 0x3}, {@broadcast, 0x9}]}]}}}}})
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000900)={<r13=>0x0, @empty, @broadcast}, &(0x7f0000000940)=0xc)
r14 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r14, 0x8933, &(0x7f0000000400)={'team0\x00', <r15=>0x0})
sendmsg$nl_route(r14, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=@newlink={0x44, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x4, 0x0, 0x311}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8, 0x1, r15}]}}}, @IFLA_MASTER={0x8, 0xa, r15}]}, 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x8044)
sendmsg$TEAM_CMD_NOOP(r0, &(0x7f0000001180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000980)={&(0x7f0000000a40)={0x67c, 0x0, 0x1, 0x70bd25, 0x25dfdbfb, {}, [{{0x8}, {0x7c, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8}, {0x178, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x9}}, {0x8, 0x6, r5}}}]}}, {{0x8, 0x1, r13}, {0xec, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x200}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x9}}, {0x8}}}]}}, {{0x8, 0x1, r9}, {0xec, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0xc75}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7ff}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x5}}, {0x8}}}]}}, {{0x8, 0x1, r10}, {0x40, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r11}}}]}}, {{0x8, 0x1, r12}, {0x78, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r13}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x58c}}}]}}, {{0x8}, {0xe8, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x100}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r15}}}]}}, {{0x8}, {0xbc, 0x2, 0x0, 0x1, [{0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x5}}}, {0x44, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x14, 0x4, [{0x401, 0x4, 0x0, 0x80}, {0x3, 0x5, 0xd, 0x10}]}}}]}}]}, 0x67c}, 0x1, 0x0, 0x0, 0x40448c9}, 0x8000)

0s ago: executing program 6 (id=849):
sendmsg$IPCTNL_MSG_TIMEOUT_GET(0xffffffffffffffff, 0x0, 0x4000000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000380)={0x1d, r1, 0x1, {0x0, 0x1, 0x3}, 0xfe}, 0x18)
sendmmsg$sock(r0, &(0x7f0000000280)=[{{0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0)

kernel console output (not intermixed with test programs):

, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  105.762557][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  105.811017][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  105.820269][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  105.859228][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  105.868710][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  105.898809][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  105.905366][ T4329] usb 2-1: USB disconnect, device number 2
[  105.908419][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  105.908754][ T4767] ldm_validate_partition_table(): Disk read failed.
[  105.918036][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  105.938170][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  105.988189][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  105.997510][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  106.008569][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  106.017811][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  106.029536][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  106.037619][ T4767] Dev loop9: unable to read RDB block 0
[  106.084527][ T4782] netlink: 'syz.3.135': attribute type 2 has an invalid length.
[  106.097982][ T4767]  loop9: unable to read partition table
[  106.104493][ T4782] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.135'.
[  106.104628][ T4767] loop9: partition table beyond EOD, truncated
[  106.143875][ T4767] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  106.143875][ T4767] 
) failed (rc=-5)
[  106.210706][ T4552] udevd[4552]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  106.311807][ T4785] syz.0.136[4785] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  106.311917][ T4785] syz.0.136[4785] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  106.358476][ T4787] netlink: 16 bytes leftover after parsing attributes in process `syz.3.137'.
[  106.486288][ T4791] netlink: 4 bytes leftover after parsing attributes in process `syz.3.139'.
[  106.502226][ T4791] bridge0: port 3(batadv0) entered disabled state
[  106.517718][ T4791] device bridge_slave_1 left promiscuous mode
[  106.540067][ T4791] bridge0: port 2(bridge_slave_1) entered disabled state
[  106.564180][ T4791] device bridge_slave_0 left promiscuous mode
[  106.579562][ T4791] bridge0: port 1(bridge_slave_0) entered disabled state
[  106.661738][ T4798] netlink: 60 bytes leftover after parsing attributes in process `syz.2.140'.
[  106.672164][ T4798] netlink: 60 bytes leftover after parsing attributes in process `syz.2.140'.
[  106.682219][ T4795] netlink: 60 bytes leftover after parsing attributes in process `syz.2.140'.
[  107.271675][ T4818] loop3: detected capacity change from 0 to 512
[  107.404749][ T4818] EXT4-fs error (device loop3): ext4_xattr_inode_iget:400: comm +}[@: Parent and EA inode have the same ino 15
[  107.427820][ T4818] EXT4-fs (loop3): Remounting filesystem read-only
[  107.657817][ T4818] EXT4-fs error (device loop3): ext4_xattr_inode_iget:400: comm +}[@: Parent and EA inode have the same ino 15
[  107.718557][ T4818] EXT4-fs (loop3): Remounting filesystem read-only
[  107.725397][ T4818] EXT4-fs (loop3): 1 orphan inode deleted
[  107.753380][ T4818] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  107.818608][ T4548] usb 1-1: new full-speed USB device number 3 using dummy_hcd
[  107.893224][ T4261] EXT4-fs (loop3): unmounting filesystem.
[  107.999820][ T4548] usb 1-1: not running at top speed; connect to a high speed hub
[  108.013462][ T4548] usb 1-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  108.036596][ T4548] usb 1-1: config 1 has an invalid interface number: 7 but max is 2
[  108.059956][ T4548] usb 1-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  108.091990][ T4548] usb 1-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  108.123363][ T4548] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  108.152507][ T4548] usb 1-1: config 1 has no interface number 1
[  108.167517][ T4548] usb 1-1: config 1 interface 7 has no altsetting 0
[  108.191079][ T4548] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  108.215892][ T4548] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  108.228574][ T4548] usb 1-1: Product: syz
[  108.232807][ T4548] usb 1-1: Manufacturer: syz
[  108.237434][ T4548] usb 1-1: SerialNumber: syz
[  108.485990][ T4548] usb 1-1: 0:2 : does not exist
[  108.612072][ T4548] usb 1-1: USB disconnect, device number 3
[  108.661186][   T26] kauditd_printk_skb: 54 callbacks suppressed
[  108.661201][   T26] audit: type=1326 audit(1751255753.579:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4868 comm="syz.4.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  108.763976][   T26] audit: type=1326 audit(1751255753.619:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4868 comm="syz.4.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  108.847846][   T26] audit: type=1326 audit(1751255753.619:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4868 comm="syz.4.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  108.870660][ T4679] udevd[4679]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  108.946983][   T26] audit: type=1326 audit(1751255753.619:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4868 comm="syz.4.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  109.042044][   T26] audit: type=1326 audit(1751255753.619:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4868 comm="syz.4.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  109.119574][   T26] audit: type=1326 audit(1751255753.619:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4868 comm="syz.4.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  109.162716][   T26] audit: type=1326 audit(1751255753.619:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4868 comm="syz.4.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  109.238748][   T26] audit: type=1326 audit(1751255753.619:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4868 comm="syz.4.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  109.362231][   T26] audit: type=1326 audit(1751255753.659:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4868 comm="syz.4.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  109.477982][   T26] audit: type=1326 audit(1751255753.719:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4868 comm="syz.4.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  110.410052][ T4922] loop2: detected capacity change from 0 to 512
[  110.462986][ T4922] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  110.484030][ T4926] loop3: detected capacity change from 0 to 128
[  110.564264][ T4922] EXT4-fs (loop2): 1 truncate cleaned up
[  110.649481][ T4922] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  110.778731][ T4548] usb 5-1: new full-speed USB device number 2 using dummy_hcd
[  110.875631][ T4938] loop3: detected capacity change from 0 to 512
[  110.907313][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  110.970511][ T4548] usb 5-1: not running at top speed; connect to a high speed hub
[  111.002728][ T4548] usb 5-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  111.020283][ T4938] EXT4-fs (loop3): 1 orphan inode deleted
[  111.030748][ T4548] usb 5-1: config 1 has an invalid interface number: 7 but max is 2
[  111.047550][ T4548] usb 5-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  111.050814][ T4663] EXT4-fs error (device loop3): ext4_release_dquot:6850: comm kworker/u4:10: Failed to release dquot type 1
[  111.057630][ T4548] usb 5-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  111.078631][ T4548] usb 5-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  111.087624][ T4548] usb 5-1: config 1 has no interface number 1
[  111.094101][ T4938] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  111.099040][ T4938] ext4 filesystem being mounted at /49/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.103097][ T4548] usb 5-1: config 1 interface 7 has no altsetting 0
[  111.130568][ T4548] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  111.158578][ T4548] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  111.166650][ T4548] usb 5-1: Product: syz
[  111.186611][ T4548] usb 5-1: Manufacturer: syz
[  111.215668][ T4548] usb 5-1: SerialNumber: syz
[  111.455144][ T4548] usb 5-1: 0:2 : does not exist
[  111.529055][ T4548] usb 5-1: USB disconnect, device number 2
[  111.803377][ T4679] udevd[4679]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  111.838246][ T4963] loop2: detected capacity change from 0 to 128
[  112.074284][ T4261] EXT4-fs (loop3): unmounting filesystem.
[  112.731039][ T4985] syz.4.202 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  114.378625][ T4320] usb 4-1: new full-speed USB device number 2 using dummy_hcd
[  114.407899][ T4963] syz.2.199: attempt to access beyond end of device
[  114.407899][ T4963] loop2: rw=2049, sector=169, nr_sectors = 48 limit=128
[  114.430518][ T4546] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  114.481825][ T4963] syz.2.199: attempt to access beyond end of device
[  114.481825][ T4963] loop2: rw=2049, sector=225, nr_sectors = 600 limit=128
[  114.596481][ T4320] usb 4-1: not running at top speed; connect to a high speed hub
[  114.613622][ T4320] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  114.637087][ T4320] usb 4-1: config 1 has an invalid interface number: 7 but max is 2
[  114.648535][ T4546] usb 5-1: Using ep0 maxpacket: 32
[  114.657926][ T4546] usb 5-1: config 0 has no interfaces?
[  114.682337][ T4546] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  114.696172][ T4320] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  114.730977][ T4546] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  114.746935][ T4320] usb 4-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  114.765330][ T4546] usb 5-1: Product: syz
[  114.804159][ T4320] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  114.818516][ T4546] usb 5-1: Manufacturer: syz
[  114.823167][ T4546] usb 5-1: SerialNumber: syz
[  114.842022][ T4320] usb 4-1: config 1 has no interface number 1
[  114.879473][ T4546] usb 5-1: config 0 descriptor??
[  114.891212][ T4320] usb 4-1: config 1 interface 7 has no altsetting 0
[  114.941992][ T4320] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  114.961732][ T4320] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  114.985021][ T4320] usb 4-1: Product: syz
[  115.007428][ T4320] usb 4-1: Manufacturer: syz
[  115.025456][ T4320] usb 4-1: SerialNumber: syz
[  115.193640][ T4546] usb 5-1: USB disconnect, device number 3
[  115.269100][ T4320] usb 4-1: 0:2 : does not exist
[  115.327898][ T4320] usb 4-1: USB disconnect, device number 2
[  115.340263][ T5036] loop1: detected capacity change from 0 to 512
[  115.481499][ T5036] EXT4-fs (loop1): 1 orphan inode deleted
[  115.499483][ T5036] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  115.504814][ T4663] __quota_error: 101 callbacks suppressed
[  115.504833][ T4663] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  115.530548][ T5036] ext4 filesystem being mounted at /45/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.605373][ T5043] netlink: 20 bytes leftover after parsing attributes in process `syz.0.219'.
[  115.610229][ T4663] EXT4-fs error (device loop1): ext4_release_dquot:6850: comm kworker/u4:10: Failed to release dquot type 1
[  115.616332][   T26] audit: type=1800 audit(1751255760.529:342): pid=5036 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.217" name="bus" dev="loop1" ino=16 res=0 errno=0
[  115.627899][ T4679] udevd[4679]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  115.663336][ T5036] random: crng reseeded on system resumption
[  115.715429][ T5046] netlink: 24 bytes leftover after parsing attributes in process `syz.1.217'.
[  115.765024][   T26] audit: type=1326 audit(1751255760.679:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5034 comm="syz.1.217" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fac7d18e929 code=0x0
[  116.849410][ T4258] EXT4-fs (loop1): unmounting filesystem.
[  117.002184][   T26] audit: type=1326 audit(1751255761.919:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5084 comm="syz.0.227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  117.111859][ T5088] syz.1.226[5088] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  117.111992][ T5088] syz.1.226[5088] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  117.124210][   T26] audit: type=1326 audit(1751255761.959:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5084 comm="syz.0.227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  117.218421][   T26] audit: type=1326 audit(1751255761.959:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5084 comm="syz.0.227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  117.231355][ T5088] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.226'.
[  117.299766][   T26] audit: type=1326 audit(1751255761.959:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5084 comm="syz.0.227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  117.346337][ T5097] netdevsim netdevsim0: Direct firmware load for ./file0 failed with error -2
[  117.404599][ T5097] netdevsim netdevsim0: Falling back to sysfs fallback for: ./file0
[  117.412810][   T26] audit: type=1326 audit(1751255761.969:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5084 comm="syz.0.227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  117.492498][   T26] audit: type=1326 audit(1751255761.969:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5084 comm="syz.0.227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  117.584309][   T26] audit: type=1326 audit(1751255761.969:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5084 comm="syz.0.227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  118.951454][ T5117] loop2: detected capacity change from 0 to 512
[  119.008835][ T4548] usb 2-1: new full-speed USB device number 3 using dummy_hcd
[  119.071042][ T5117] EXT4-fs (loop2): 1 orphan inode deleted
[  119.076860][ T5117] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  119.103226][ T4663] EXT4-fs error (device loop2): ext4_release_dquot:6850: comm kworker/u4:10: Failed to release dquot type 1
[  119.130885][ T5117] ext4 filesystem being mounted at /42/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  119.204207][ T5117] random: crng reseeded on system resumption
[  119.220521][ T4548] usb 2-1: not running at top speed; connect to a high speed hub
[  119.242420][ T4548] usb 2-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  119.292620][ T4548] usb 2-1: config 1 has an invalid interface number: 7 but max is 2
[  119.323140][ T4548] usb 2-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  119.361658][ T4548] usb 2-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  119.401729][ T4548] usb 2-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  119.435195][ T4548] usb 2-1: config 1 has no interface number 1
[  119.462187][ T4548] usb 2-1: config 1 interface 7 has no altsetting 0
[  119.482092][ T4548] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  119.507603][ T4548] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  119.526191][ T4548] usb 2-1: Product: syz
[  119.544503][ T4548] usb 2-1: Manufacturer: syz
[  119.569982][ T4548] usb 2-1: SerialNumber: syz
[  119.836881][ T4548] usb 2-1: 0:2 : does not exist
[  119.901633][ T4548] usb 2-1: USB disconnect, device number 3
[  120.175076][ T4679] udevd[4679]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  120.736946][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  121.018399][ T5158] ipt_rpfilter: only valid in 'raw' or 'mangle' table, not ''
[  121.095261][ T5158] loop2: detected capacity change from 0 to 512
[  121.232795][ T5158] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  121.252267][ T5158] ext4 filesystem being mounted at /43/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  121.318585][ T5175] netlink: 16 bytes leftover after parsing attributes in process `syz.1.248'.
[  121.352837][ T5174] loop3: detected capacity change from 0 to 164
[  121.447223][ T5174] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  121.515821][ T5174] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  121.577191][ T5174] rock: directory entry would overflow storage
[  121.617005][ T5174] rock: sig=0x4f50, size=4, remaining=3
[  121.646211][ T5174] iso9660: Corrupted directory entry in block 4 of inode 1792
[  121.707150][ T5175] netlink: 16 bytes leftover after parsing attributes in process `syz.1.248'.
[  121.954580][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  122.261025][ T5202] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.256' sets config #6
[  122.345560][ T5204] netlink: 268 bytes leftover after parsing attributes in process `syz.0.257'.
[  122.418734][ T5204] unsupported nla_type 65024
[  122.568804][ T4548] usb 4-1: new full-speed USB device number 3 using dummy_hcd
[  122.631626][ T5211] netlink: 96 bytes leftover after parsing attributes in process `syz.1.260'.
[  122.645387][ T5211] netlink: 64 bytes leftover after parsing attributes in process `syz.1.260'.
[  122.744367][   T26] kauditd_printk_skb: 19 callbacks suppressed
[  122.744383][   T26] audit: type=1326 audit(1751255767.659:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5208 comm="syz.0.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  122.770221][ T4548] usb 4-1: not running at top speed; connect to a high speed hub
[  122.804978][ T4548] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  122.834974][   T26] audit: type=1326 audit(1751255767.689:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5208 comm="syz.0.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  122.838643][ T4548] usb 4-1: config 1 has an invalid interface number: 7 but max is 2
[  122.903463][ T4548] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  122.935206][ T4548] usb 4-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  122.935421][   T26] audit: type=1326 audit(1751255767.689:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5208 comm="syz.0.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  122.981877][ T4548] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  123.041853][ T4548] usb 4-1: config 1 has no interface number 1
[  123.057808][ T5012] Set syz1 is full, maxelem 65536 reached
[  123.069308][ T4548] usb 4-1: config 1 interface 7 has no altsetting 0
[  123.094128][   T26] audit: type=1326 audit(1751255767.689:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5208 comm="syz.0.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  123.100899][ T4548] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  123.184350][ T4548] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  123.206568][   T26] audit: type=1326 audit(1751255767.689:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5208 comm="syz.0.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  123.264197][ T4548] usb 4-1: Product: syz
[  123.283324][ T4548] usb 4-1: Manufacturer: syz
[  123.287173][   T26] audit: type=1326 audit(1751255767.689:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5208 comm="syz.0.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  123.287976][ T4548] usb 4-1: SerialNumber: syz
[  123.378587][   T26] audit: type=1326 audit(1751255767.699:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5208 comm="syz.0.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  123.455989][   T26] audit: type=1326 audit(1751255767.699:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5208 comm="syz.0.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  123.534745][   T26] audit: type=1326 audit(1751255767.699:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5208 comm="syz.0.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  123.599179][ T5233] netlink: 'syz.0.268': attribute type 2 has an invalid length.
[  123.607383][ T5233] netlink: 'syz.0.268': attribute type 1 has an invalid length.
[  123.608363][ T4548] usb 4-1: 0:2 : does not exist
[  123.637584][   T26] audit: type=1326 audit(1751255767.699:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5208 comm="syz.0.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=136 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  123.728989][ T4548] usb 4-1: USB disconnect, device number 3
[  123.827056][ T5239] loop1: detected capacity change from 0 to 1024
[  123.884302][ T5239] EXT4-fs (loop1): couldn't mount as ext3 due to feature incompatibilities
[  123.989467][ T4679] udevd[4679]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  124.190059][ T5250] loop2: detected capacity change from 0 to 2048
[  124.192062][ T5250] EXT4-fs: Ignoring removed mblk_io_submit option
[  124.214164][ T5250] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  124.325060][ T5250] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.275: bg 0: block 234: padding at end of block bitmap is not set
[  124.356424][ T5250] EXT4-fs (loop2): Remounting filesystem read-only
[  124.591741][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  124.636978][ T5262] loop3: detected capacity change from 0 to 2048
[  124.758796][ T5262] EXT4-fs (loop3): invalid inodes per group: 1
[  124.758796][ T5262] 
[  125.449465][ T5271] loop2: detected capacity change from 0 to 512
[  125.520025][ T5260] syz.3.278 (5260) used greatest stack depth: 18176 bytes left
[  125.743628][ T5271] EXT4-fs (loop2): 1 orphan inode deleted
[  125.777822][   T56] EXT4-fs error (device loop2): ext4_release_dquot:6850: comm kworker/u4:4: Failed to release dquot type 1
[  125.808531][ T5271] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  125.850341][ T5271] ext4 filesystem being mounted at /50/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  126.579054][ T4305] usb 4-1: new full-speed USB device number 4 using dummy_hcd
[  126.813136][ T4305] usb 4-1: not running at top speed; connect to a high speed hub
[  126.876750][ T4305] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  127.032790][ T4305] usb 4-1: config 1 has an invalid interface number: 7 but max is 2
[  127.048609][ T4305] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  127.089662][ T4305] usb 4-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  127.111634][ T4305] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  127.138781][ T4305] usb 4-1: config 1 has no interface number 1
[  127.159458][ T4305] usb 4-1: config 1 interface 7 has no altsetting 0
[  127.184956][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  127.214250][ T4305] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  127.244387][ T4305] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  127.265829][ T4305] usb 4-1: Product: syz
[  127.279661][ T4305] usb 4-1: Manufacturer: syz
[  127.285442][ T4305] usb 4-1: SerialNumber: syz
[  127.709559][ T4305] usb 4-1: 0:2 : does not exist
[  128.229793][ T4305] usb 4-1: USB disconnect, device number 4
[  128.554302][ T4679] udevd[4679]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  129.689538][ T5354] netlink: 24 bytes leftover after parsing attributes in process `syz.4.305'.
[  131.478781][ T4376] usb 4-1: new full-speed USB device number 5 using dummy_hcd
[  131.815505][ T4376] usb 4-1: not running at top speed; connect to a high speed hub
[  131.871099][ T4376] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  131.908604][ T4376] usb 4-1: config 1 has an invalid interface number: 7 but max is 2
[  131.938583][ T4376] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  131.977870][ T4376] usb 4-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  132.003948][ T4376] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  132.017223][ T5394] netlink: 8 bytes leftover after parsing attributes in process `syz.0.321'.
[  132.023581][ T4376] usb 4-1: config 1 has no interface number 1
[  132.038218][ T4376] usb 4-1: config 1 interface 7 has no altsetting 0
[  132.074314][ T4376] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  132.106257][ T4376] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  132.134185][ T4376] usb 4-1: Product: syz
[  132.162016][ T4376] usb 4-1: Manufacturer: syz
[  132.166694][ T4376] usb 4-1: SerialNumber: syz
[  132.427768][ T4376] usb 4-1: 0:2 : does not exist
[  132.514714][ T4376] usb 4-1: USB disconnect, device number 5
[  132.552817][ T5409] devtmpfs: Bad value for 'mpol'
[  132.752024][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  132.763087][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  132.828614][ T4548] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  133.038902][ T4548] usb 5-1: Using ep0 maxpacket: 32
[  133.051572][ T4548] usb 5-1: config 0 has no interfaces?
[  133.162862][ T4548] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  133.290711][ T4548] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  133.417000][ T4548] usb 5-1: Product: syz
[  133.444750][ T4548] usb 5-1: Manufacturer: syz
[  133.471114][ T4548] usb 5-1: SerialNumber: syz
[  133.722281][ T5417] sched: RT throttling activated
[  133.773260][ T4548] usb 5-1: config 0 descriptor??
[  134.428795][ T4548] usb 5-1: USB disconnect, device number 4
[  134.835852][ T5434] syz.2.336[5434] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  134.835950][ T5434] syz.2.336[5434] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  135.115074][ T5447] loop1: detected capacity change from 0 to 512
[  135.647311][ T5447] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  135.703479][ T5447] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[  135.724496][ T5447] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.340: invalid indirect mapped block 2683928664 (level 1)
[  135.751301][ T5447] EXT4-fs (loop1): Remounting filesystem read-only
[  135.759416][ T5447] EXT4-fs (loop1): 1 truncate cleaned up
[  135.759450][ T5447] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  135.774396][ T5447] EXT4-fs error (device loop1): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz.1.340: bad entry in directory: rec_len % 4 != 0 - offset=108, inode=4294901777, rec_len=65535, size=1024 fake=0
[  135.781882][ T5447] EXT4-fs (loop1): Remounting filesystem read-only
[  135.837263][ T4258] EXT4-fs (loop1): unmounting filesystem.
[  136.277923][   T26] kauditd_printk_skb: 45 callbacks suppressed
[  136.277937][   T26] audit: type=1326 audit(1751255781.189:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5477 comm="syz.4.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  136.307221][    C1] vkms_vblank_simulate: vblank timer overrun
[  136.313341][ T4320] usb 1-1: new full-speed USB device number 4 using dummy_hcd
[  136.358914][   T26] audit: type=1326 audit(1751255781.189:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5477 comm="syz.4.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  136.394987][ T5476] loop2: detected capacity change from 0 to 512
[  136.461965][   T26] audit: type=1326 audit(1751255781.189:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5477 comm="syz.4.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  136.505239][ T5476] EXT4-fs (loop2): 1 orphan inode deleted
[  136.529265][   T26] audit: type=1326 audit(1751255781.189:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5477 comm="syz.4.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  136.533525][ T4320] usb 1-1: not running at top speed; connect to a high speed hub
[  136.552252][ T5476] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  136.568951][ T4343] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  136.584926][ T5476] ext4 filesystem being mounted at /65/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.588266][   T26] audit: type=1326 audit(1751255781.189:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5477 comm="syz.4.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  136.631574][ T4343] EXT4-fs error (device loop2): ext4_release_dquot:6850: comm kworker/u4:5: Failed to release dquot type 1
[  136.691057][   T26] audit: type=1326 audit(1751255781.189:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5477 comm="syz.4.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  136.715313][ T4320] usb 1-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  136.743773][ T4320] usb 1-1: config 1 has an invalid interface number: 7 but max is 2
[  136.747977][   T26] audit: type=1326 audit(1751255781.189:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5477 comm="syz.4.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  136.764523][ T4320] usb 1-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  136.774214][    C1] vkms_vblank_simulate: vblank timer overrun
[  136.782580][   T26] audit: type=1326 audit(1751255781.189:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5477 comm="syz.4.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  136.812311][ T4320] usb 1-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  136.819519][   T26] audit: type=1326 audit(1751255781.199:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5477 comm="syz.4.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  136.832199][ T4320] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  136.865357][ T4320] usb 1-1: config 1 has no interface number 1
[  136.871828][ T4320] usb 1-1: config 1 interface 7 has no altsetting 0
[  136.890818][ T4320] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  136.920639][ T4320] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  136.935571][ T4320] usb 1-1: Product: syz
[  136.940091][ T4320] usb 1-1: Manufacturer: syz
[  136.944830][ T4320] usb 1-1: SerialNumber: syz
[  137.176453][ T4320] usb 1-1: 0:2 : does not exist
[  137.184297][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  137.266331][ T4320] usb 1-1: USB disconnect, device number 4
[  137.332532][ T4679] udevd[4679]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  138.872091][ T5530] netlink: 'syz.4.369': attribute type 6 has an invalid length.
[  139.231611][ T5540] loop2: detected capacity change from 0 to 512
[  139.407566][ T5540] EXT4-fs (loop2): 1 orphan inode deleted
[  139.424829][   T33] EXT4-fs error (device loop2): ext4_release_dquot:6850: comm kworker/u4:2: Failed to release dquot type 1
[  139.449269][ T5540] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  139.461934][ T5551] netdevsim netdevsim4: Direct firmware load for ./file0 failed with error -2
[  139.482528][ T5551] netdevsim netdevsim4: Falling back to sysfs fallback for: ./file0
[  139.491503][ T5540] ext4 filesystem being mounted at /71/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  139.763526][ T5540] random: crng reseeded on system resumption
[  139.983692][ T5555] netlink: 24 bytes leftover after parsing attributes in process `syz.2.374'.
[  141.646679][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  141.873923][ T4376] usb 1-1: new full-speed USB device number 5 using dummy_hcd
[  142.070110][ T4376] usb 1-1: not running at top speed; connect to a high speed hub
[  142.087590][ T4376] usb 1-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  142.118395][ T4376] usb 1-1: config 1 has an invalid interface number: 7 but max is 2
[  142.137697][ T4376] usb 1-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  142.146857][ T4376] usb 1-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  142.163922][ T4376] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  142.173263][ T4376] usb 1-1: config 1 has no interface number 1
[  142.185991][ T4376] usb 1-1: config 1 interface 7 has no altsetting 0
[  142.189954][ T5590] loop4: detected capacity change from 0 to 512
[  142.286809][ T4376] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  142.328087][ T4376] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  142.345499][ T4376] usb 1-1: Product: syz
[  142.365526][ T4376] usb 1-1: Manufacturer: syz
[  142.383853][ T5590] EXT4-fs (loop4): 1 orphan inode deleted
[  142.398626][ T4376] usb 1-1: SerialNumber: syz
[  142.415399][ T5590] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  142.436921][ T4663] __quota_error: 33 callbacks suppressed
[  142.436936][ T4663] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  142.488993][ T5590] ext4 filesystem being mounted at /70/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  142.530280][ T4663] EXT4-fs error (device loop4): ext4_release_dquot:6850: comm kworker/u4:10: Failed to release dquot type 1
[  142.675779][ T4376] usb 1-1: 0:2 : does not exist
[  142.727040][ T4376] usb 1-1: USB disconnect, device number 5
[  142.799994][ T5602] netlink: 16 bytes leftover after parsing attributes in process `syz.3.390'.
[  142.962308][ T4679] udevd[4679]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  143.477229][ T4252] EXT4-fs (loop4): unmounting filesystem.
[  143.816448][ T5474] Set syz1 is full, maxelem 65536 reached
[  144.016259][ T5618] loop3: detected capacity change from 0 to 512
[  144.605497][ T5618] EXT4-fs (loop3): 1 orphan inode deleted
[  144.756561][ T5618] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  144.859387][ T5618] ext4 filesystem being mounted at /87/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  144.883928][   T26] audit: type=1800 audit(1751255789.799:464): pid=5618 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.394" name="bus" dev="loop3" ino=16 res=0 errno=0
[  144.905569][ T5618] random: crng reseeded on system resumption
[  144.989008][ T5630] netlink: 24 bytes leftover after parsing attributes in process `syz.3.394'.
[  145.060676][   T26] audit: type=1326 audit(1751255789.979:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5617 comm="syz.3.394" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd91258e929 code=0x0
[  146.849619][ T4261] EXT4-fs (loop3): unmounting filesystem.
[  147.218643][ T4375] usb 3-1: new full-speed USB device number 2 using dummy_hcd
[  147.462084][ T4375] usb 3-1: not running at top speed; connect to a high speed hub
[  147.500530][ T4375] usb 3-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  147.583058][ T4375] usb 3-1: config 1 has an invalid interface number: 7 but max is 2
[  147.607973][ T4375] usb 3-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  147.626249][ T4375] usb 3-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  147.655693][ T4375] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  147.674230][ T4375] usb 3-1: config 1 has no interface number 1
[  147.683916][ T4375] usb 3-1: config 1 interface 7 has no altsetting 0
[  147.719744][ T4375] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  147.766459][ T4375] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  147.789308][ T4375] usb 3-1: Product: syz
[  147.793536][ T4375] usb 3-1: Manufacturer: syz
[  147.798155][ T4375] usb 3-1: SerialNumber: syz
[  148.050381][ T4375] usb 3-1: 0:2 : does not exist
[  148.137162][ T4375] usb 3-1: USB disconnect, device number 2
[  148.467024][ T4679] udevd[4679]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  149.122146][ T5697] loop4: detected capacity change from 0 to 512
[  149.326602][ T5701] loop2: detected capacity change from 0 to 512
[  149.336339][ T5697] EXT4-fs (loop4): 1 orphan inode deleted
[  149.344984][ T5697] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  149.354326][ T4663] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  149.364599][ T5697] ext4 filesystem being mounted at /75/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  149.375220][ T4663] EXT4-fs error (device loop4): ext4_release_dquot:6850: comm kworker/u4:10: Failed to release dquot type 1
[  149.434871][ T5701] EXT4-fs (loop2): 1 orphan inode deleted
[  149.447520][ T5701] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  149.478718][ T4343] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  149.682607][ T5701] ext4 filesystem being mounted at /79/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  149.791709][ T4343] EXT4-fs error (device loop2): ext4_release_dquot:6850: comm kworker/u4:5: Failed to release dquot type 1
[  150.058871][   T26] audit: type=1800 audit(1751255794.969:466): pid=5701 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.420" name="bus" dev="loop2" ino=16 res=0 errno=0
[  150.296115][ T5701] random: crng reseeded on system resumption
[  150.357712][ T5711] netlink: 24 bytes leftover after parsing attributes in process `syz.2.420'.
[  150.436423][   T26] audit: type=1326 audit(1751255795.349:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5700 comm="syz.2.420" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f673e58e929 code=0x0
[  150.501735][ T5717] xt_TPROXY: Can be used only with -p tcp or -p udp
[  150.516175][ T4252] EXT4-fs (loop4): unmounting filesystem.
[  150.609630][ T5719] device wireguard0 entered promiscuous mode
[  151.089155][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  152.149926][ T4329] usb 5-1: new full-speed USB device number 5 using dummy_hcd
[  152.989794][ T4329] usb 5-1: not running at top speed; connect to a high speed hub
[  153.009950][ T4329] usb 5-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  153.066280][ T4329] usb 5-1: config 1 has an invalid interface number: 7 but max is 2
[  153.094480][ T4329] usb 5-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  153.125425][ T4329] usb 5-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  153.133991][ T5768] loop1: detected capacity change from 0 to 512
[  153.156348][ T4329] usb 5-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  153.181899][ T4329] usb 5-1: config 1 has no interface number 1
[  153.190552][ T4329] usb 5-1: config 1 interface 7 has no altsetting 0
[  153.201765][ T4329] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  153.230114][ T4329] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  153.236634][ T5768] EXT4-fs (loop1): 1 orphan inode deleted
[  153.258531][ T4329] usb 5-1: Product: syz
[  153.262907][ T4329] usb 5-1: Manufacturer: syz
[  153.267533][ T4329] usb 5-1: SerialNumber: syz
[  153.274456][ T4655] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  153.283712][ T5768] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  153.288241][ T4655] EXT4-fs error (device loop1): ext4_release_dquot:6850: comm kworker/u4:8: Failed to release dquot type 1
[  153.331063][ T5772] loop3: detected capacity change from 0 to 512
[  153.337731][ T5768] ext4 filesystem being mounted at /88/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.415278][ T5772] EXT4-fs (loop3): 1 orphan inode deleted
[  153.431436][ T4663] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  153.444519][ T5772] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  153.464362][ T5772] ext4 filesystem being mounted at /96/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.498808][ T4663] EXT4-fs error (device loop3): ext4_release_dquot:6850: comm kworker/u4:10: Failed to release dquot type 1
[  153.557009][ T4329] usb 5-1: 0:2 : does not exist
[  153.596412][   T26] audit: type=1800 audit(1751255798.509:468): pid=5772 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.437" name="bus" dev="loop3" ino=16 res=0 errno=0
[  153.619539][ T5772] random: crng reseeded on system resumption
[  153.629235][ T4329] usb 5-1: USB disconnect, device number 5
[  153.677881][ T5777] netlink: 24 bytes leftover after parsing attributes in process `syz.3.437'.
[  153.714474][   T26] audit: type=1326 audit(1751255798.629:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5771 comm="syz.3.437" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd91258e929 code=0x0
[  153.895341][ T4679] udevd[4679]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  154.064081][ T4258] EXT4-fs (loop1): unmounting filesystem.
[  154.279687][ T4261] EXT4-fs (loop3): unmounting filesystem.
[  155.909026][ T5816] loop4: detected capacity change from 0 to 512
[  156.002999][ T5816] EXT4-fs (loop4): 1 orphan inode deleted
[  156.020055][ T5816] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  156.040294][ T4343] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  156.063449][ T5816] ext4 filesystem being mounted at /81/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.082606][ T4343] EXT4-fs error (device loop4): ext4_release_dquot:6850: comm kworker/u4:5: Failed to release dquot type 1
[  156.259626][ T5831] loop2: detected capacity change from 0 to 512
[  156.323751][ T5831] EXT4-fs (loop2): 1 orphan inode deleted
[  156.329932][ T4375] usb 4-1: new full-speed USB device number 6 using dummy_hcd
[  156.358969][ T5831] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  156.376327][ T4343] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  156.425459][ T4343] EXT4-fs error (device loop2): ext4_release_dquot:6850: comm kworker/u4:5: Failed to release dquot type 1
[  156.455360][ T5831] ext4 filesystem being mounted at /87/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.482385][ T5677] Set syz1 is full, maxelem 65536 reached
[  156.499045][   T26] audit: type=1800 audit(1751255801.419:470): pid=5831 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.452" name="bus" dev="loop2" ino=16 res=0 errno=0
[  156.521262][ T5831] random: crng reseeded on system resumption
[  156.530052][ T4375] usb 4-1: not running at top speed; connect to a high speed hub
[  156.545775][ T4375] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  156.555384][ T4375] usb 4-1: config 1 has an invalid interface number: 7 but max is 2
[  156.570220][ T4375] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  156.579553][ T4375] usb 4-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  156.597867][ T4375] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  156.607785][ T4375] usb 4-1: config 1 has no interface number 1
[  156.616612][ T5834] netlink: 24 bytes leftover after parsing attributes in process `syz.2.452'.
[  156.620990][ T4375] usb 4-1: config 1 interface 7 has no altsetting 0
[  156.640206][   T26] audit: type=1326 audit(1751255801.559:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5829 comm="syz.2.452" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f673e58e929 code=0x0
[  156.680874][ T4375] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  156.709317][ T4375] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  156.727681][ T4375] usb 4-1: Product: syz
[  156.737814][ T4375] usb 4-1: Manufacturer: syz
[  156.755109][ T4375] usb 4-1: SerialNumber: syz
[  156.772919][ T4252] EXT4-fs (loop4): unmounting filesystem.
[  157.004141][ T4375] usb 4-1: 0:2 : does not exist
[  157.066866][ T4375] usb 4-1: USB disconnect, device number 6
[  157.441010][ T4679] udevd[4679]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  157.673169][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  159.152924][ T5874] netlink: 36 bytes leftover after parsing attributes in process `syz.4.464'.
[  159.490995][ T5888] loop4: detected capacity change from 0 to 512
[  159.557705][ T5888] EXT4-fs (loop4): 1 orphan inode deleted
[  159.568094][ T5890] loop1: detected capacity change from 0 to 512
[  159.615492][   T11] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  159.634442][ T5888] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  159.683441][   T11] EXT4-fs error (device loop4): ext4_release_dquot:6850: comm kworker/u4:1: Failed to release dquot type 1
[  159.716618][ T5888] ext4 filesystem being mounted at /85/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  159.732011][ T5890] EXT4-fs (loop1): 1 orphan inode deleted
[  159.747986][ T5890] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  159.775403][   T11] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  159.782197][ T5888] random: crng reseeded on system resumption
[  159.785746][ T5890] ext4 filesystem being mounted at /98/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  159.822593][   T11] EXT4-fs error (device loop1): ext4_release_dquot:6850: comm kworker/u4:1: Failed to release dquot type 1
[  159.850348][ T5897] netlink: 24 bytes leftover after parsing attributes in process `syz.4.468'.
[  159.909938][   T26] audit: type=1326 audit(1751255804.829:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5887 comm="syz.4.468" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc01318e929 code=0x0
[  160.936914][ T4258] EXT4-fs (loop1): unmounting filesystem.
[  161.219170][ T5919] xt_hashlimit: size too large, truncated to 1048576
[  161.350804][ T5921] program syz.1.476 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  161.366575][ T4252] EXT4-fs (loop4): unmounting filesystem.
[  161.388988][ T5921] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  162.291264][ T5930] loop4: detected capacity change from 0 to 128
[  162.749162][   T26] audit: type=1326 audit(1751255807.669:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  162.798576][   T26] audit: type=1326 audit(1751255807.669:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  162.848528][   T26] audit: type=1326 audit(1751255807.669:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  162.891206][   T26] audit: type=1326 audit(1751255807.669:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  162.914851][   T26] audit: type=1326 audit(1751255807.669:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  162.944023][   T26] audit: type=1326 audit(1751255807.669:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  163.016895][   T26] audit: type=1326 audit(1751255807.669:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  163.148902][   T26] audit: type=1326 audit(1751255807.669:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  163.261119][   T26] audit: type=1326 audit(1751255807.669:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  163.400502][   T26] audit: type=1326 audit(1751255807.689:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.0.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  166.344226][ T5970] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 16
[  168.165819][ T5988] netlink: 8 bytes leftover after parsing attributes in process `syz.2.499'.
[  168.195958][ T5988] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[  168.290112][ T5988] netlink: 4 bytes leftover after parsing attributes in process `syz.2.499'.
[  170.392918][ T6019] loop2: detected capacity change from 0 to 512
[  170.415838][ T5871] Set syz1 is full, maxelem 65536 reached
[  170.506094][ T6019] EXT4-fs (loop2): 1 orphan inode deleted
[  170.529265][   T33] __quota_error: 36 callbacks suppressed
[  170.529283][   T33] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  170.563371][ T6019] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  170.615244][   T33] EXT4-fs error (device loop2): ext4_release_dquot:6850: comm kworker/u4:2: Failed to release dquot type 1
[  170.625428][ T6019] ext4 filesystem being mounted at /96/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  170.718150][ T6027] loop1: detected capacity change from 0 to 512
[  170.766547][ T6027] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  170.817184][ T6027] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8803e11c, mo2=0102]
[  170.858205][ T6027] EXT4-fs (loop1): orphan cleanup on readonly fs
[  170.878813][ T6027] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #11: comm syz.1.512: attempt to clear invalid blocks 1024 len 1
[  170.926694][ T6027] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.512: bg 0: block 361: padding at end of block bitmap is not set
[  170.959514][ T6027] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  171.025496][ T6027] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.512: invalid indirect mapped block 1811939328 (level 0)
[  171.056504][ T6027] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.512: invalid indirect mapped block 2185560079 (level 1)
[  171.092370][ T6027] EXT4-fs (loop1): 1 truncate cleaned up
[  171.123524][ T6027] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  171.178960][ T6027] netlink: 'syz.1.512': attribute type 10 has an invalid length.
[  171.385297][ T6027] team0: Device hsr_slave_0 failed to register rx_handler
[  172.031272][ T4258] EXT4-fs (loop1): unmounting filesystem.
[  172.079876][ T6059] loop4: detected capacity change from 0 to 512
[  172.161215][ T6059] EXT4-fs error (device loop4): ext4_orphan_get:1426: comm syz.4.520: bad orphan inode 13
[  172.167488][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  172.209201][ T6059] ext4_test_bit(bit=12, block=4) = 1
[  172.214657][ T6059] is_bad_inode(inode)=0
[  172.254230][ T6059] NEXT_ORPHAN(inode)=0
[  172.258368][ T6059] max_ino=32
[  172.291110][ T6059] i_nlink=1
[  172.294379][ T6059] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  172.378917][ T6059] EXT4-fs warning (device loop4): dx_probe:833: inode #2: comm syz.4.520: Unrecognised inode hash code 20
[  172.452732][ T6059] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.520: Corrupt directory, running e2fsck is recommended
[  172.528268][ T4252] EXT4-fs (loop4): unmounting filesystem.
[  172.678648][ T4548] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  172.878822][ T4548] usb 1-1: Using ep0 maxpacket: 32
[  172.894102][ T4548] usb 1-1: config 0 has no interfaces?
[  172.921780][ T4548] usb 1-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  172.951561][ T4548] usb 1-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  172.970466][ T4548] usb 1-1: Product: syz
[  173.003490][ T4548] usb 1-1: Manufacturer: syz
[  173.022098][ T4548] usb 1-1: SerialNumber: syz
[  173.062604][ T4548] usb 1-1: config 0 descriptor??
[  173.089162][   T26] audit: type=1326 audit(1751255818.009:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6087 comm="syz.4.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  173.140160][   T26] audit: type=1326 audit(1751255818.029:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6087 comm="syz.4.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  173.175181][   T26] audit: type=1326 audit(1751255818.029:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6087 comm="syz.4.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  173.359292][ T4543] usb 1-1: USB disconnect, device number 6
[  173.473822][   T26] audit: type=1326 audit(1751255818.029:522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6087 comm="syz.4.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  173.704378][ T6091] loop3: detected capacity change from 0 to 512
[  174.009259][   T26] audit: type=1326 audit(1751255818.029:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6087 comm="syz.4.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  174.069244][   T26] audit: type=1326 audit(1751255818.029:524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6087 comm="syz.4.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  174.087527][ T6091] EXT4-fs (loop3): 1 orphan inode deleted
[  174.098152][ T4655] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  174.101958][   T26] audit: type=1326 audit(1751255818.039:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6087 comm="syz.4.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  174.118241][ T4655] EXT4-fs error (device loop3): ext4_release_dquot:6850: comm kworker/u4:8: Failed to release dquot type 1
[  174.168560][ T6091] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  174.198107][    C1] IPv4: Oversized IP packet from 172.20.20.24
[  174.213014][ T6091] ext4 filesystem being mounted at /108/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  174.223683][   T26] audit: type=1326 audit(1751255818.039:526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6087 comm="syz.4.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=256 compat=0 ip=0x7fc01318e929 code=0x7ffc0000
[  174.254076][ T6104] random: crng reseeded on system resumption
[  174.465757][ T4261] EXT4-fs error (device loop3): ext4_readdir:263: inode #11: block 4: comm syz-executor: path /108/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  174.479758][ T6111] netlink: 12 bytes leftover after parsing attributes in process `syz.0.539'.
[  174.501056][ T4261] EXT4-fs error (device loop3): ext4_empty_dir:3145: inode #11: block 4: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  174.567382][ T4261] EXT4-fs warning (device loop3): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  174.624912][ T4261] EXT4-fs error (device loop3): ext4_readdir:263: inode #11: block 4: comm syz-executor: path /108/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  174.739247][ T4261] EXT4-fs error (device loop3): ext4_empty_dir:3145: inode #11: block 4: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  174.819179][ T4261] EXT4-fs warning (device loop3): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  174.847455][ T4261] EXT4-fs error (device loop3): ext4_readdir:263: inode #11: block 4: comm syz-executor: path /108/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  174.909712][ T4261] EXT4-fs error (device loop3): ext4_empty_dir:3145: inode #11: block 4: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  174.982146][ T4261] EXT4-fs warning (device loop3): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  175.006091][ T4261] EXT4-fs error (device loop3): ext4_readdir:263: inode #11: block 4: comm syz-executor: path /108/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  175.042973][ T4261] EXT4-fs error (device loop3): ext4_empty_dir:3145: inode #11: block 4: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  175.077967][ T4261] EXT4-fs warning (device loop3): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  175.117587][ T4261] EXT4-fs error (device loop3): ext4_readdir:263: inode #11: block 4: comm syz-executor: path /108/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  175.512010][ T4261] EXT4-fs error (device loop3): ext4_empty_dir:3145: inode #11: block 4: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  175.944332][ T4261] EXT4-fs warning (device loop3): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  175.992472][ T4261] EXT4-fs warning (device loop3): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  176.005889][ T4261] EXT4-fs warning (device loop3): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  176.023127][ T4261] EXT4-fs warning (device loop3): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  176.038725][ T4261] EXT4-fs warning (device loop3): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  176.054901][ T6140] loop4: detected capacity change from 0 to 256
[  176.069000][ T4261] EXT4-fs warning (device loop3): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  176.081347][ T6138] netlink: 'syz.1.547': attribute type 2 has an invalid length.
[  176.149062][ T6140] FAT-fs (loop4): Directory bread(block 64) failed
[  176.175490][ T6140] FAT-fs (loop4): Directory bread(block 65) failed
[  176.205461][ T6140] FAT-fs (loop4): Directory bread(block 66) failed
[  176.234400][ T6140] FAT-fs (loop4): Directory bread(block 67) failed
[  176.292328][ T6140] FAT-fs (loop4): Directory bread(block 68) failed
[  176.299568][ T6140] FAT-fs (loop4): Directory bread(block 69) failed
[  176.306314][ T6140] FAT-fs (loop4): Directory bread(block 70) failed
[  176.313924][ T6140] FAT-fs (loop4): Directory bread(block 71) failed
[  176.321998][ T6140] FAT-fs (loop4): Directory bread(block 72) failed
[  176.341498][ T6140] FAT-fs (loop4): Directory bread(block 73) failed
[  176.374892][ T4548] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  176.468304][ T6145] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  176.710408][ T4548] usb 3-1: Using ep0 maxpacket: 32
[  176.764198][ T4548] usb 3-1: config 0 has no interfaces?
[  176.775967][ T4548] usb 3-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  176.796979][ T4261] EXT4-fs (loop3): unmounting filesystem.
[  176.805128][ T4548] usb 3-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  176.814198][   T33] __quota_error: 1 callbacks suppressed
[  176.814213][   T33] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  176.819277][ T4548] usb 3-1: Product: syz
[  176.843115][ T4548] usb 3-1: Manufacturer: syz
[  176.866874][ T4548] usb 3-1: SerialNumber: syz
[  176.909946][ T4548] usb 3-1: config 0 descriptor??
[  177.132215][ T4548] usb 3-1: USB disconnect, device number 3
[  177.429073][ T6162] loop4: detected capacity change from 0 to 512
[  178.225689][ T6162] EXT4-fs (loop4): 1 orphan inode deleted
[  178.249986][   T33] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  178.311279][ T6162] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  178.320884][   T33] EXT4-fs error (device loop4): ext4_release_dquot:6850: comm kworker/u4:2: Failed to release dquot type 1
[  178.511313][ T6162] ext4 filesystem being mounted at /111/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  178.700522][   T26] audit: type=1326 audit(1751255823.619:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6171 comm="syz.1.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  178.788600][   T26] audit: type=1326 audit(1751255823.639:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6171 comm="syz.1.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  178.883029][ T4252] EXT4-fs error (device loop4): ext4_readdir:263: inode #11: block 4: comm syz-executor: path /111/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  178.904307][   T26] audit: type=1326 audit(1751255823.729:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6171 comm="syz.1.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  179.000034][   T26] audit: type=1326 audit(1751255823.729:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6171 comm="syz.1.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  179.046706][ T4252] EXT4-fs error (device loop4): ext4_empty_dir:3145: inode #11: block 4: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  179.088183][   T26] audit: type=1326 audit(1751255823.739:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6171 comm="syz.1.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  179.182323][ T4252] EXT4-fs warning (device loop4): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  179.198861][   T26] audit: type=1326 audit(1751255823.739:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6171 comm="syz.1.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  179.253738][ T4252] EXT4-fs error (device loop4): ext4_readdir:263: inode #11: block 4: comm syz-executor: path /111/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  179.288738][   T26] audit: type=1326 audit(1751255823.739:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6171 comm="syz.1.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  179.309705][ T4252] EXT4-fs error (device loop4): ext4_empty_dir:3145: inode #11: block 4: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  179.353217][ T4267] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  179.363435][ T4267] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  179.376180][ T4267] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  179.384174][ T4252] EXT4-fs warning (device loop4): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  179.385159][   T26] audit: type=1326 audit(1751255823.759:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6171 comm="syz.1.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  179.419100][ T4267] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  179.426764][ T4267] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  179.435397][ T4267] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  179.443981][ T4252] EXT4-fs error (device loop4): ext4_readdir:263: inode #11: block 4: comm syz-executor: path /111/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  179.468386][ T4252] EXT4-fs error (device loop4): ext4_empty_dir:3145: inode #11: block 4: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  179.487387][ T4260] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  179.503838][ T4260] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  179.504649][ T4252] EXT4-fs warning (device loop4): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  179.523110][ T4260] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  179.533320][ T4260] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  179.543093][ T4260] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  179.553643][ T4260] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  179.569362][ T4252] EXT4-fs error (device loop4): ext4_readdir:263: inode #11: block 4: comm syz-executor: path /111/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  179.605691][ T4252] EXT4-fs error (device loop4): ext4_empty_dir:3145: inode #11: block 4: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  179.677542][ T4252] EXT4-fs warning (device loop4): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  179.698029][ T4252] EXT4-fs error (device loop4): ext4_readdir:263: inode #11: block 4: comm syz-executor: path /111/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=7947, rec_len=12, size=4096 fake=1
[  179.763565][ T4252] EXT4-fs warning (device loop4): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  179.830927][ T4252] EXT4-fs warning (device loop4): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  179.905141][ T4252] EXT4-fs warning (device loop4): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  179.959147][ T4252] EXT4-fs warning (device loop4): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  180.032684][ T4252] EXT4-fs warning (device loop4): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  180.351047][ T4252] EXT4-fs warning (device loop4): ext4_empty_dir:3147: inode #11: comm syz-executor: directory missing '.'
[  181.369472][ T6187] chnl_net:caif_netlink_parms(): no params data found
[  181.628850][ T4267] Bluetooth: hci3: command 0x0409 tx timeout
[  181.728306][ T4252] EXT4-fs (loop4): unmounting filesystem.
[  181.840027][ T6187] bridge0: port 1(bridge_slave_0) entered blocking state
[  181.847203][ T6187] bridge0: port 1(bridge_slave_0) entered disabled state
[  181.895129][ T6187] device bridge_slave_0 entered promiscuous mode
[  181.939203][ T6187] bridge0: port 2(bridge_slave_1) entered blocking state
[  181.946489][ T6187] bridge0: port 2(bridge_slave_1) entered disabled state
[  181.990290][ T6187] device bridge_slave_1 entered promiscuous mode
[  182.029351][ T6230] netlink: 'syz.0.574': attribute type 39 has an invalid length.
[  182.169780][ T4661] device hsr_slave_0 left promiscuous mode
[  182.190328][ T4661] device hsr_slave_1 left promiscuous mode
[  182.219268][ T4661] batman_adv: batadv0: Removing interface: batadv_slave_0
[  182.239870][ T4661] batman_adv: batadv0: Removing interface: batadv_slave_1
[  182.734930][ T4260] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  182.771976][ T4260] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  182.786283][ T4260] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  182.798706][ T4260] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  182.806671][ T4260] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  182.814288][ T4260] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  183.247647][ T4661] team0 (unregistering): Port device team_slave_1 removed
[  183.307119][ T4661] team0 (unregistering): Port device team_slave_0 removed
[  183.376543][ T4661] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  183.442628][ T4661] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  183.539089][ T6137] Set syz1 is full, maxelem 65536 reached
[  183.724771][ T4267] Bluetooth: hci3: command 0x041b tx timeout
[  183.992739][ T4661] bond0 (unregistering): Released all slaves
[  184.099316][ T6187] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  184.134880][ T6187] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  184.268066][ T6250] loop1: detected capacity change from 0 to 1024
[  184.297557][ T6187] team0: Port device team_slave_0 added
[  184.315730][ T6250] EXT4-fs: Ignoring removed nobh option
[  184.363842][ T6250] EXT4-fs: Ignoring removed oldalloc option
[  184.364781][ T6187] team0: Port device team_slave_1 added
[  184.398694][ T6250] EXT4-fs: Ignoring removed bh option
[  184.490234][ T6250] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  184.510106][ T6252] netlink: 8 bytes leftover after parsing attributes in process `syz.2.582'.
[  184.541234][ T6255] netlink: 'syz.0.583': attribute type 13 has an invalid length.
[  184.549198][   T26] kauditd_printk_skb: 19 callbacks suppressed
[  184.549213][   T26] audit: type=1326 audit(1751255829.459:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6253 comm="syz.0.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  184.580710][ T6259] netlink: 4 bytes leftover after parsing attributes in process `syz.2.582'.
[  184.597759][ T6259] device bridge_slave_1 left promiscuous mode
[  184.608702][ T6259] bridge0: port 2(bridge_slave_1) entered disabled state
[  184.632409][ T6259] device bridge_slave_0 left promiscuous mode
[  184.678893][ T6259] bridge0: port 1(bridge_slave_0) entered disabled state
[  184.693408][   T26] audit: type=1326 audit(1751255829.459:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6253 comm="syz.0.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  184.718052][   T26] audit: type=1326 audit(1751255829.459:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6253 comm="syz.0.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  184.751025][ T4258] EXT4-fs (loop1): unmounting filesystem.
[  184.761408][   T26] audit: type=1326 audit(1751255829.459:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6253 comm="syz.0.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  184.850863][ T6187] batman_adv: batadv0: Adding interface: batadv_slave_0
[  184.861552][ T6187] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  184.906483][   T26] audit: type=1326 audit(1751255829.499:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6253 comm="syz.0.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  184.929634][ T4267] Bluetooth: hci0: command 0x0409 tx timeout
[  184.965643][ T6187] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  184.998987][   T26] audit: type=1326 audit(1751255829.559:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6253 comm="syz.0.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fa54c18e929 code=0x7ffc0000
[  185.007231][ T6187] batman_adv: batadv0: Adding interface: batadv_slave_1
[  185.032969][ T6187] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  185.076960][   T26] audit: type=1326 audit(1751255829.559:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6253 comm="syz.0.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa54c18e963 code=0x7ffc0000
[  185.101826][ T6187] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  185.106791][   T26] audit: type=1326 audit(1751255829.559:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6253 comm="syz.0.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa54c18d3df code=0x7ffc0000
[  185.144707][   T26] audit: type=1326 audit(1751255829.569:562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6253 comm="syz.0.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fa54c18e9b7 code=0x7ffc0000
[  185.169376][   T26] audit: type=1326 audit(1751255829.569:563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6253 comm="syz.0.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa54c18d290 code=0x7ffc0000
[  185.219112][ T6252] lo speed is unknown, defaulting to 1000
[  185.261327][ T6252] lo speed is unknown, defaulting to 1000
[  185.350554][ T6252] lo speed is unknown, defaulting to 1000
[  185.373447][ T6252] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  185.407652][ T6252] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  185.434351][ T6187] device hsr_slave_0 entered promiscuous mode
[  185.456905][ T6187] device hsr_slave_1 entered promiscuous mode
[  185.546552][ T6252] lo speed is unknown, defaulting to 1000
[  185.586693][ T6252] lo speed is unknown, defaulting to 1000
[  185.586953][ T6239] chnl_net:caif_netlink_parms(): no params data found
[  185.629314][ T6252] lo speed is unknown, defaulting to 1000
[  185.651205][ T6252] lo speed is unknown, defaulting to 1000
[  185.674547][ T6252] lo speed is unknown, defaulting to 1000
[  185.720439][ T6252] lo speed is unknown, defaulting to 1000
[  185.788690][ T4267] Bluetooth: hci3: command 0x040f tx timeout
[  185.872311][ T6239] bridge0: port 1(bridge_slave_0) entered blocking state
[  185.910046][ T6239] bridge0: port 1(bridge_slave_0) entered disabled state
[  185.918338][ T6239] device bridge_slave_0 entered promiscuous mode
[  185.990063][ T6239] bridge0: port 2(bridge_slave_1) entered blocking state
[  185.997297][ T6239] bridge0: port 2(bridge_slave_1) entered disabled state
[  186.027125][ T6239] device bridge_slave_1 entered promiscuous mode
[  186.070037][ T6295] loop2: detected capacity change from 0 to 512
[  186.088545][ T4546] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  186.163383][ T6295] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.588: iget: bad i_size value: 38620345925642
[  186.182258][ T6295] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.588: couldn't read orphan inode 15 (err -117)
[  186.206951][ T6239] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  186.233905][ T6295] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  186.265214][ T6295] EXT4-fs error (device loop2): ext4_inlinedir_to_tree:1432: inode #12: block 7: comm syz.2.588: path /105/file1/file0: bad entry in directory: rec_len % 4 != 0 - offset=259, inode=4278190093, rec_len=255, size=60 fake=0
[  186.284394][ T6239] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  186.298588][ T4546] usb 1-1: Using ep0 maxpacket: 32
[  186.320488][ T4546] usb 1-1: config 0 has no interfaces?
[  186.340828][ T4546] usb 1-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  186.355263][ T4546] usb 1-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  186.357154][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  186.377031][ T4546] usb 1-1: Product: syz
[  186.383990][ T4546] usb 1-1: Manufacturer: syz
[  186.394111][ T4546] usb 1-1: SerialNumber: syz
[  186.402463][ T4546] usb 1-1: config 0 descriptor??
[  186.456552][ T6239] team0: Port device team_slave_0 added
[  186.491308][ T6187] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  186.515732][ T6239] team0: Port device team_slave_1 added
[  186.529527][ T6187] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  186.559754][ T6303] netlink: 'syz.2.591': attribute type 2 has an invalid length.
[  186.638956][ T4305] usb 1-1: USB disconnect, device number 7
[  186.690449][ T6187] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  186.705900][ T6239] batman_adv: batadv0: Adding interface: batadv_slave_0
[  186.718634][ T6239] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  186.772697][ T6239] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  186.785858][ T6187] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  186.806676][ T6239] batman_adv: batadv0: Adding interface: batadv_slave_1
[  186.819468][ T6239] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  186.858233][ T6239] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  186.979174][ T4661] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.999167][ T4267] Bluetooth: hci0: command 0x041b tx timeout
[  187.121861][ T4661] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  187.295551][ T4661] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  187.402433][ T6239] device hsr_slave_0 entered promiscuous mode
[  187.422630][ T6239] device hsr_slave_1 entered promiscuous mode
[  187.432900][ T6239] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  187.445597][ T6239] Cannot create hsr debugfs directory
[  187.493242][ T4661] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  187.766897][ T6187] 8021q: adding VLAN 0 to HW filter on device bond0
[  187.783891][ T6341] loop2: detected capacity change from 0 to 512
[  187.840587][ T6343] loop1: detected capacity change from 0 to 512
[  187.868804][ T4267] Bluetooth: hci3: command 0x0419 tx timeout
[  187.901759][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  187.916720][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  187.919040][ T6343] EXT4-fs warning (device loop1): ext4_multi_mount_protect:298: Invalid MMP block in superblock
[  187.961383][ T6187] 8021q: adding VLAN 0 to HW filter on device team0
[  188.008642][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  188.017531][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  188.071950][ T4343] bridge0: port 1(bridge_slave_0) entered blocking state
[  188.079153][ T4343] bridge0: port 1(bridge_slave_0) entered forwarding state
[  188.156634][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  188.182348][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  188.209074][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  188.228944][ T4343] bridge0: port 2(bridge_slave_1) entered blocking state
[  188.236116][ T4343] bridge0: port 2(bridge_slave_1) entered forwarding state
[  188.266552][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  188.310134][ T6352] loop9: detected capacity change from 0 to 7
[  188.317875][    C1] blk_print_req_error: 10 callbacks suppressed
[  188.317890][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  188.333370][    C1] buffer_io_error: 9 callbacks suppressed
[  188.333385][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  188.363663][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  188.372975][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  188.399781][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  188.410827][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  188.418222][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  188.428002][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  188.455536][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  188.464105][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  188.473330][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  188.490569][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  188.518128][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  188.520233][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  188.527353][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  188.543129][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  188.552632][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  188.561938][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  188.577164][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  188.579467][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  188.586389][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  188.604449][ T6352] ldm_validate_partition_table(): Disk read failed.
[  188.611937][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  188.621153][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  188.624068][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  188.655322][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  188.664170][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  188.673410][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  188.680268][ T6187] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  188.690173][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  188.699381][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  188.716146][ T6352] Dev loop9: unable to read RDB block 0
[  188.724949][ T6352]  loop9: unable to read partition table
[  188.735291][ T6352] loop9: partition table beyond EOD, truncated
[  188.742018][ T6352] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  188.742018][ T6352] 
) failed (rc=-5)
[  188.775082][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  188.849896][ T6364] loop2: detected capacity change from 0 to 512
[  188.972440][ T6364] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  188.983712][ T6239] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  189.029150][ T6364] ext4 filesystem being mounted at /115/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  189.035213][ T6239] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  189.069627][ T4267] Bluetooth: hci0: command 0x040f tx timeout
[  189.084056][ T6364] EXT4-fs (loop2): unmounting filesystem.
[  189.132992][ T6239] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  189.219061][ T6239] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  189.253463][ T6373] device wireguard0 entered promiscuous mode
[  189.655890][ T4655] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  189.679213][ T4655] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  189.745436][ T6187] 8021q: adding VLAN 0 to HW filter on device batadv0
[  189.978302][ T6239] 8021q: adding VLAN 0 to HW filter on device bond0
[  190.128729][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  190.169328][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  190.181391][ T6239] 8021q: adding VLAN 0 to HW filter on device team0
[  190.254744][   T26] kauditd_printk_skb: 111 callbacks suppressed
[  190.254760][   T26] audit: type=1326 audit(1751255835.169:675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6413 comm="syz.2.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f673e58e929 code=0x7ffc0000
[  190.269637][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  190.340140][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  190.386312][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  190.391200][   T26] audit: type=1326 audit(1751255835.179:676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6413 comm="syz.2.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7f673e58e929 code=0x7ffc0000
[  190.393488][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  190.480435][   T26] audit: type=1326 audit(1751255835.179:677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6413 comm="syz.2.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f673e58e929 code=0x7ffc0000
[  190.498493][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  190.539531][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  190.558390][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  190.565604][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  190.579060][   T26] audit: type=1326 audit(1751255835.179:678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6413 comm="syz.2.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f673e58e929 code=0x7ffc0000
[  190.593371][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  190.648972][ T6429] netlink: 24 bytes leftover after parsing attributes in process `syz.2.621'.
[  190.665249][   T26] audit: type=1326 audit(1751255835.239:679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6415 comm="syz.1.619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  190.778603][   T26] audit: type=1326 audit(1751255835.249:680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6415 comm="syz.1.619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  190.864072][   T26] audit: type=1326 audit(1751255835.249:681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6415 comm="syz.1.619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  190.916650][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  190.925541][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  190.969873][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  190.977811][   T26] audit: type=1326 audit(1751255835.249:682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6415 comm="syz.1.619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  190.977853][   T26] audit: type=1326 audit(1751255835.249:683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6415 comm="syz.1.619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  190.977888][   T26] audit: type=1326 audit(1751255835.249:684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6415 comm="syz.1.619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  191.074892][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  191.114128][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  191.148917][ T4267] Bluetooth: hci0: command 0x0419 tx timeout
[  191.164085][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  191.227228][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  191.277280][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  191.345038][ T6239] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  191.398267][ T6239] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  191.436518][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  191.460600][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  191.527004][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  191.880548][ T4661] device hsr_slave_0 left promiscuous mode
[  191.919903][ T4661] device hsr_slave_1 left promiscuous mode
[  191.927326][ T4661] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  191.952330][ T4661] batman_adv: batadv0: Removing interface: batadv_slave_0
[  191.978271][ T4661] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  191.998629][ T4661] batman_adv: batadv0: Removing interface: batadv_slave_1
[  192.006716][ T4661] batman_adv: batadv0: Interface deactivated: ipvlan2
[  192.029298][ T4661] batman_adv: batadv0: Removing interface: ipvlan2
[  192.038616][ T4661] bridge0: port 3(dummy0) entered disabled state
[  192.064007][ T6469] random: crng reseeded on system resumption
[  192.072094][ T4661] device bridge_slave_1 left promiscuous mode
[  192.080423][ T4661] bridge0: port 2(bridge_slave_1) entered disabled state
[  192.102144][ T4661] device bridge_slave_0 left promiscuous mode
[  192.115376][ T6474] netlink: 24 bytes leftover after parsing attributes in process `syz.1.627'.
[  192.134996][ T4661] bridge0: port 1(bridge_slave_0) entered disabled state
[  192.208368][ T4661] device veth1_macvtap left promiscuous mode
[  192.231839][ T4661] device veth0_macvtap left promiscuous mode
[  192.238273][ T4661] device veth1_vlan left promiscuous mode
[  192.263488][ T4661] device veth0_vlan left promiscuous mode
[  192.490178][ T6484] syz.2.631 uses obsolete (PF_INET,SOCK_PACKET)
[  193.254321][ T4661] team0 (unregistering): Port device team_slave_1 removed
[  193.294800][ T4661] team0 (unregistering): Port device team_slave_0 removed
[  193.335586][ T4661] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  193.376266][ T4661] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  193.799700][ T4661] bond0 (unregistering): Released all slaves
[  193.893139][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  193.902678][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  193.924843][ T6497] netlink: 4 bytes leftover after parsing attributes in process `syz.0.635'.
[  194.026386][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  194.041153][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  194.062598][ T6187] device veth0_vlan entered promiscuous mode
[  194.070321][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  194.080655][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  194.094615][ T6187] device veth1_vlan entered promiscuous mode
[  194.188071][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  194.200868][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  194.207270][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  194.236825][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  194.267611][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  194.288918][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  194.323724][ T6239] 8021q: adding VLAN 0 to HW filter on device batadv0
[  194.360438][ T4655] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  194.376294][ T4655] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  194.401954][ T6187] device veth0_macvtap entered promiscuous mode
[  194.428717][ T4543] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  194.451806][ T6187] device veth1_macvtap entered promiscuous mode
[  194.521740][ T6187] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  194.548888][ T6187] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  194.566210][ T6187] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  194.586965][ T6187] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  194.598605][ T4543] usb 3-1: device descriptor read/64, error -71
[  194.618409][ T6187] batman_adv: batadv0: Interface activated: batadv_slave_0
[  194.627663][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  194.650928][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  194.679535][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  194.710021][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  194.737070][ T6187] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  194.753672][ T6187] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  194.778011][ T6187] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  194.798930][ T6187] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  194.817318][ T6521] tmpfs: Bad value for 'mpol'
[  194.840164][ T6187] batman_adv: batadv0: Interface activated: batadv_slave_1
[  194.858964][ T6521] netlink: 32 bytes leftover after parsing attributes in process `syz.0.642'.
[  194.868740][ T4543] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  194.923676][ T6520] device vlan2 entered promiscuous mode
[  195.019720][ T4655] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  195.039256][ T4655] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  195.050981][ T4543] usb 3-1: device descriptor read/64, error -71
[  195.063929][ T6187] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  195.073696][ T6187] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  195.082623][ T6187] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  195.092210][ T6187] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  195.127422][ T6520] netlink: 4 bytes leftover after parsing attributes in process `syz.1.643'.
[  195.173520][ T4543] usb usb3-port1: attempt power cycle
[  195.376232][ T4343] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  195.391255][ T4343] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  195.458197][ T4655] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  195.501385][ T4655] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  195.519823][ T4655] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  195.540641][ T4343] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  195.552910][ T4343] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  195.579925][ T4655] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  195.588360][ T4655] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  195.610336][ T4655] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  195.628630][ T4543] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  195.637281][ T6528] device batadv_slave_1 entered promiscuous mode
[  195.666927][ T6239] device veth0_vlan entered promiscuous mode
[  195.674260][ T4543] usb 3-1: device descriptor read/8, error -71
[  195.696405][ T6239] device veth1_vlan entered promiscuous mode
[  195.715625][ T4655] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  195.728998][ T4655] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  195.743165][ T4655] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  195.777084][ T6527] device batadv_slave_1 left promiscuous mode
[  195.797168][ T6531] random: crng reseeded on system resumption
[  195.843736][ T4655] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  195.858077][ T4655] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  195.875476][ T6532] netlink: 24 bytes leftover after parsing attributes in process `syz.0.645'.
[  195.880142][ T4655] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  195.915753][   T26] kauditd_printk_skb: 9 callbacks suppressed
[  195.915767][   T26] audit: type=1326 audit(1751255840.829:694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6530 comm="syz.0.645" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x0
[  195.947202][ T6239] device veth0_macvtap entered promiscuous mode
[  195.968634][ T4543] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  195.976889][ T6239] device veth1_macvtap entered promiscuous mode
[  196.015274][ T4543] usb 3-1: device descriptor read/8, error -71
[  196.035472][ T6239] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  196.066640][ T6239] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.103659][ T6239] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  196.130828][ T6239] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.149364][ T6239] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  196.156915][ T4543] usb usb3-port1: unable to enumerate USB device
[  196.170616][ T6239] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.213489][ T6239] batman_adv: batadv0: Interface activated: batadv_slave_0
[  196.241478][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  196.259834][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  196.289970][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  196.304754][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  196.320437][ T6239] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  196.341251][ T6239] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.368583][ T6239] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  196.385409][ T6239] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.396424][ T6239] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  196.408088][ T6239] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.431418][ T6239] batman_adv: batadv0: Interface activated: batadv_slave_1
[  196.443104][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  196.462294][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  196.482710][ T6239] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  196.493889][ T6239] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  196.506841][ T6239] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  196.549961][ T6239] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  196.736811][   T56] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  196.849529][   T56] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  197.068303][ T4663] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  197.549846][   T56] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  197.589251][   T56] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  197.672362][ T4663] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  197.718647][ T6555] lo speed is unknown, defaulting to 1000
[  197.781582][   T26] audit: type=1326 audit(1751255842.699:695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6557 comm="syz.2.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f673e58e929 code=0x7ffc0000
[  197.879184][   T26] audit: type=1326 audit(1751255842.759:696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6557 comm="syz.2.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f673e58e929 code=0x7ffc0000
[  197.928831][   T26] audit: type=1326 audit(1751255842.769:697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6557 comm="syz.2.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f673e58e929 code=0x7ffc0000
[  198.038287][   T26] audit: type=1326 audit(1751255842.769:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6557 comm="syz.2.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f673e58e929 code=0x7ffc0000
[  198.098599][   T26] audit: type=1326 audit(1751255842.769:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6557 comm="syz.2.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f673e58e929 code=0x7ffc0000
[  198.157965][ T6560] lo speed is unknown, defaulting to 1000
[  198.178818][   T26] audit: type=1326 audit(1751255842.769:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6557 comm="syz.2.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=271 compat=0 ip=0x7f673e58e929 code=0x7ffc0000
[  198.258608][   T26] audit: type=1326 audit(1751255842.929:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6557 comm="syz.2.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f673e58e929 code=0x7ffc0000
[  198.334794][   T26] audit: type=1326 audit(1751255842.929:702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6557 comm="syz.2.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f673e58e929 code=0x7ffc0000
[  198.621815][ T6571] lo speed is unknown, defaulting to 1000
[  199.024388][ T6584] random: crng reseeded on system resumption
[  199.109017][ T6585] netlink: 24 bytes leftover after parsing attributes in process `syz.2.661'.
[  199.141785][   T26] audit: type=1326 audit(1751255844.059:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6583 comm="syz.2.661" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f673e58e929 code=0x0
[  201.523704][ T6624] binfmt_misc: register: failed to install interpreter file ./file2
[  202.464444][ T6636] lo speed is unknown, defaulting to 1000
[  202.612889][ T6644] random: crng reseeded on system resumption
[  202.614418][ T6643] loop6: detected capacity change from 0 to 256
[  202.693354][ T6646] netlink: 24 bytes leftover after parsing attributes in process `syz.0.679'.
[  202.694137][   T26] kauditd_printk_skb: 14 callbacks suppressed
[  202.694151][   T26] audit: type=1326 audit(1751255847.609:718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6640 comm="syz.0.679" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x0
[  204.189277][ T6668] netlink: 4 bytes leftover after parsing attributes in process `syz.2.687'.
[  204.227216][ T6668] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  204.265381][ T6668] batman_adv: batadv0: Removing interface: batadv_slave_0
[  204.290977][ T6668] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  204.304899][ T6668] batman_adv: batadv0: Removing interface: batadv_slave_1
[  204.385839][ T6675] loop6: detected capacity change from 0 to 8192
[  204.472414][ T6675]  loop6: p1 p2 p4 < >
[  204.476579][ T6675] loop6: partition table partially beyond EOD, truncated
[  204.495177][ T6675] loop6: p1 start 4261412873 is beyond EOD, truncated
[  204.535588][ T6675] loop6: p2 start 4009754624 is beyond EOD, truncated
[  204.675878][ T6684] loop5: detected capacity change from 0 to 8192
[  204.752627][ T6684]  loop5: p1 p2 p3 < > p4 < p5 p6 >
[  204.757924][ T6684] loop5: partition table partially beyond EOD, truncated
[  204.787153][ T6684] loop5: p1 start 67108864 is beyond EOD, truncated
[  204.799056][ T6684] loop5: p2 size 61546 extends beyond EOD, truncated
[  204.813874][ T6695] netlink: 16 bytes leftover after parsing attributes in process `syz.2.697'.
[  204.829497][ T6684] loop5: p3 start 100859904 is beyond EOD, truncated
[  204.845374][ T6684] loop5: p5 start 67108864 is beyond EOD, truncated
[  204.862954][ T6684] loop5: p6 size 61546 extends beyond EOD, truncated
[  204.863176][ T6697] random: crng reseeded on system resumption
[  204.922813][ T6698] netlink: 24 bytes leftover after parsing attributes in process `syz.0.699'.
[  204.976313][   T26] audit: type=1326 audit(1751255849.889:719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6696 comm="syz.0.699" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x0
[  206.494001][ T6729] bridge0: port 3(batadv1) entered blocking state
[  206.559663][ T6729] bridge0: port 3(batadv1) entered disabled state
[  206.576620][ T6729] device batadv1 entered promiscuous mode
[  206.583453][ T6732] netlink: 4 bytes leftover after parsing attributes in process `syz.5.711'.
[  206.618179][ T6732] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  206.648026][ T6729] netlink: 344 bytes leftover after parsing attributes in process `syz.5.711'.
[  206.688603][ T6732] batman_adv: batadv0: Removing interface: batadv_slave_0
[  206.779070][ T6732] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  206.820254][ T6732] batman_adv: batadv0: Removing interface: batadv_slave_1
[  207.338511][   T11] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled
[  207.347896][   T11] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled
[  207.941734][   T26] audit: type=1326 audit(1751255852.859:720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6764 comm="syz.1.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  207.958595][   T26] audit: type=1326 audit(1751255852.869:721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6764 comm="syz.1.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  208.054108][   T26] audit: type=1326 audit(1751255852.869:722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6764 comm="syz.1.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  208.054152][   T26] audit: type=1326 audit(1751255852.869:723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6764 comm="syz.1.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  208.054190][   T26] audit: type=1326 audit(1751255852.869:724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6764 comm="syz.1.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  208.054227][   T26] audit: type=1326 audit(1751255852.869:725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6764 comm="syz.1.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  208.054264][   T26] audit: type=1326 audit(1751255852.869:726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6764 comm="syz.1.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  208.054300][   T26] audit: type=1326 audit(1751255852.869:727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6764 comm="syz.1.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  208.054336][   T26] audit: type=1326 audit(1751255852.869:728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6764 comm="syz.1.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  208.054372][   T26] audit: type=1326 audit(1751255852.869:729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6764 comm="syz.1.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac7d18e929 code=0x7ffc0000
[  209.770587][ T6800] netlink: 8 bytes leftover after parsing attributes in process `syz.0.736'.
[  210.081902][ T6809] netlink: 'syz.0.739': attribute type 21 has an invalid length.
[  210.122889][ T6809] IPv6: NLM_F_CREATE should be specified when creating new route
[  210.238687][ T4331] usb 2-1: new full-speed USB device number 4 using dummy_hcd
[  210.433270][ T4331] usb 2-1: not running at top speed; connect to a high speed hub
[  210.447929][ T4331] usb 2-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  210.475074][ T4331] usb 2-1: config 1 has an invalid interface number: 7 but max is 2
[  210.500455][ T4331] usb 2-1: config 1 has no interface number 1
[  210.515383][ T4331] usb 2-1: config 1 interface 7 altsetting 6 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  210.556796][ T4331] usb 2-1: config 1 interface 7 has no altsetting 0
[  210.583417][ T4331] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  210.605770][ T4331] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  210.626939][ T4331] usb 2-1: Product: syz
[  210.636695][ T4331] usb 2-1: Manufacturer: syz
[  210.649051][ T4331] usb 2-1: SerialNumber: syz
[  210.873249][ T4331] usb 2-1: 2:1 : UAC_AS_GENERAL descriptor not found
[  210.919987][ T4331] usb 2-1: USB disconnect, device number 4
[  212.386081][ T6846] loop6: detected capacity change from 0 to 512
[  212.430055][ T6846] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  212.471913][ T6846] ext4 filesystem being mounted at /19/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  213.294734][ T6239] EXT4-fs (loop6): unmounting filesystem.
[  213.456749][   T26] kauditd_printk_skb: 220 callbacks suppressed
[  213.456766][   T26] audit: type=1326 audit(1751255858.369:950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6864 comm="syz.5.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff1e98e929 code=0x7ffc0000
[  213.497794][   T26] audit: type=1326 audit(1751255858.379:951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6864 comm="syz.5.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff1e98e929 code=0x7ffc0000
[  213.538641][   T26] audit: type=1326 audit(1751255858.409:952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6864 comm="syz.5.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=74 compat=0 ip=0x7eff1e98e929 code=0x7ffc0000
[  213.569081][   T26] audit: type=1326 audit(1751255858.409:953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6864 comm="syz.5.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff1e98e929 code=0x7ffc0000
[  213.598646][   T26] audit: type=1326 audit(1751255858.409:954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6864 comm="syz.5.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff1e98e929 code=0x7ffc0000
[  213.738925][ T4548] usb 2-1: new full-speed USB device number 5 using dummy_hcd
[  213.944860][ T4548] usb 2-1: not running at top speed; connect to a high speed hub
[  213.959912][ T4548] usb 2-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  213.984523][ T4548] usb 2-1: config 1 has an invalid interface number: 7 but max is 2
[  213.999089][ T4548] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  214.013689][ T4548] usb 2-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  214.023481][ T4548] usb 2-1: config 1 has no interface number 1
[  214.030433][ T4548] usb 2-1: config 1 interface 7 has no altsetting 0
[  214.049450][ T4548] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  214.059534][ T6894] loop5: detected capacity change from 0 to 1024
[  214.066859][ T4548] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  214.075635][ T4548] usb 2-1: Product: syz
[  214.079919][ T4548] usb 2-1: Manufacturer: syz
[  214.084534][ T4548] usb 2-1: SerialNumber: syz
[  214.101671][ T6894] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  214.229105][ T6187] EXT4-fs (loop5): unmounting filesystem.
[  214.304107][ T4548] usb 2-1: 0:2 : does not exist
[  214.333327][ T4548] usb 2-1: USB disconnect, device number 5
[  214.429282][ T6905] netlink: 144 bytes leftover after parsing attributes in process `syz.2.772'.
[  214.534186][ T6911] netlink: 'syz.2.776': attribute type 10 has an invalid length.
[  214.571448][ T6911] 8021q: adding VLAN 0 to HW filter on device team0
[  214.591727][ T6911] bond0: (slave team0): Enslaving as an active interface with an up link
[  214.667508][ T6914] loop5: detected capacity change from 0 to 2048
[  214.699866][ T6914] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  214.722901][   T26] audit: type=1800 audit(1751255859.639:955): pid=6914 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.777" name="bus" dev="loop5" ino=18 res=0 errno=0
[  214.795816][ T6187] EXT4-fs (loop5): unmounting filesystem.
[  215.120072][   T26] audit: type=1326 audit(1751255860.039:956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6932 comm="syz.5.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff1e98e929 code=0x7ffc0000
[  215.188585][   T26] audit: type=1326 audit(1751255860.059:957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6932 comm="syz.5.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff1e98e929 code=0x7ffc0000
[  215.302968][ T6942] futex_wake_op: syz.0.789 tries to shift op by -1; fix this program
[  215.303744][   T26] audit: type=1326 audit(1751255860.059:958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6932 comm="syz.5.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=277 compat=0 ip=0x7eff1e98e929 code=0x7ffc0000
[  215.376564][   T26] audit: type=1326 audit(1751255860.059:959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6932 comm="syz.5.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff1e98e929 code=0x7ffc0000
[  215.742221][ T6951] lo speed is unknown, defaulting to 1000
[  216.031686][ T6951] sd 0:0:1:0: device reset
[  216.669543][ T6967] netlink: 'syz.1.797': attribute type 2 has an invalid length.
[  216.958297][ T6977] usb usb1: usbfs: process 6977 (syz.1.801) did not claim interface 0 before use
[  217.060059][ T4376] usb 3-1: new full-speed USB device number 8 using dummy_hcd
[  217.283046][ T4376] usb 3-1: not running at top speed; connect to a high speed hub
[  217.341189][ T4376] usb 3-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  217.518506][ T4376] usb 3-1: config 1 has an invalid interface number: 7 but max is 2
[  217.710936][ T4376] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  217.721837][ T4376] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  217.731188][ T4376] usb 3-1: config 1 has no interface number 1
[  217.737328][ T4376] usb 3-1: config 1 interface 7 has no altsetting 0
[  217.768630][ T4376] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  217.783000][ T4376] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  217.827784][ T4376] usb 3-1: Product: syz
[  217.897896][ T4376] usb 3-1: Manufacturer: syz
[  218.472257][ T4376] usb 3-1: SerialNumber: syz
[  218.681827][ T6992] xt_recent: hitcount (16385) is larger than allowed maximum (255)
[  218.704838][ T4376] usb 3-1: 0:2 : does not exist
[  218.727764][ T6996] xt_recent: hitcount (692) is larger than allowed maximum (255)
[  218.729560][ T4376] usb 3-1: USB disconnect, device number 8
[  219.583313][ T7011] netlink: 4 bytes leftover after parsing attributes in process `syz.6.813'.
[  220.369066][ T7026] random: crng reseeded on system resumption
[  220.470794][ T7030] Driver unsupported XDP return value 0 on prog  (id 296) dev N/A, expect packet loss!
[  221.015891][ T7044] netlink: 44 bytes leftover after parsing attributes in process `syz.6.823'.
[  221.072618][ T7048] device bond1 entered promiscuous mode
[  221.112260][ T7048] 8021q: adding VLAN 0 to HW filter on device bond1
[  222.065186][ T7048] bond1 (unregistering): Released all slaves
[  222.635547][ T4329] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  222.648736][ T4548] usb 2-1: new full-speed USB device number 6 using dummy_hcd
[  222.700776][ T7089] loop5: detected capacity change from 0 to 764
[  222.819029][ T4329] usb 3-1: Using ep0 maxpacket: 32
[  222.826888][ T4329] usb 3-1: config 0 has no interfaces?
[  222.840115][ T4548] usb 2-1: not running at top speed; connect to a high speed hub
[  222.860605][ T4329] usb 3-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  222.875320][ T4548] usb 2-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  222.885244][ T4329] usb 3-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  222.896534][ T7095] random: crng reseeded on system resumption
[  222.905137][ T4548] usb 2-1: config 1 has an invalid interface number: 7 but max is 2
[  222.913481][ T4329] usb 3-1: Product: syz
[  222.917763][ T4548] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  222.928099][ T4329] usb 3-1: Manufacturer: syz
[  222.932735][ T4329] usb 3-1: SerialNumber: syz
[  222.936527][ T4548] usb 2-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  222.947554][ T4329] usb 3-1: config 0 descriptor??
[  222.955356][ T7098] netlink: 24 bytes leftover after parsing attributes in process `syz.0.840'.
[  222.972602][ T4548] usb 2-1: config 1 has no interface number 1
[  222.979924][   T26] kauditd_printk_skb: 86 callbacks suppressed
[  222.979939][   T26] audit: type=1326 audit(1751255867.899:1046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7093 comm="syz.0.840" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa54c18e929 code=0x0
[  223.010606][ T4548] usb 2-1: config 1 interface 7 has no altsetting 0
[  223.025802][ T4548] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  223.035450][ T4548] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  223.049528][ T4548] usb 2-1: Product: syz
[  223.053819][ T4548] usb 2-1: Manufacturer: syz
[  223.059501][   T26] audit: type=1326 audit(1751255867.979:1047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7101 comm="syz.6.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3eabb8e929 code=0x7ffc0000
[  223.095992][ T4548] usb 2-1: SerialNumber: syz
[  223.110929][   T26] audit: type=1326 audit(1751255868.009:1048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7101 comm="syz.6.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3eabb8e929 code=0x7ffc0000
[  223.134693][   T26] audit: type=1326 audit(1751255868.019:1049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7101 comm="syz.6.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3eabb8e929 code=0x7ffc0000
[  223.157570][   T26] audit: type=1326 audit(1751255868.019:1050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7101 comm="syz.6.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3eabb8e929 code=0x7ffc0000
[  223.157618][   T26] audit: type=1326 audit(1751255868.019:1051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7101 comm="syz.6.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3eabb8e929 code=0x7ffc0000
[  223.157659][   T26] audit: type=1326 audit(1751255868.019:1052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7101 comm="syz.6.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3eabb8e929 code=0x7ffc0000
[  223.157733][   T26] audit: type=1326 audit(1751255868.029:1053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7101 comm="syz.6.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3eabb8e929 code=0x7ffc0000
[  223.157773][   T26] audit: type=1326 audit(1751255868.029:1054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7101 comm="syz.6.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3eabb8e929 code=0x7ffc0000
[  223.157814][   T26] audit: type=1326 audit(1751255868.029:1055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7101 comm="syz.6.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3eabb8e929 code=0x7ffc0000
[  223.171787][ T4329] usb 3-1: USB disconnect, device number 9
[  223.318053][ T4548] usb 2-1: 0:2 : does not exist
[  223.332222][ T4548] usb 2-1: USB disconnect, device number 6
[  223.500481][ T7111] IPVS: Unknown mcast interface: ip6erspan0
[  223.606584][ T7113] loop5: detected capacity change from 0 to 512
[  223.653121][ T7113] 
[  223.655586][ T7113] ======================================================
[  223.662633][ T7113] WARNING: possible circular locking dependency detected
[  223.669691][ T7113] 6.1.142-syzkaller #0 Not tainted
[  223.674824][ T7113] ------------------------------------------------------
[  223.681861][ T7113] syz.5.848/7113 is trying to acquire lock:
[  223.687783][ T7113] ffff8880550edcd0 (&ei->i_data_sem/2){++++}-{3:3}, at: ext4_map_blocks+0x316/0x1b60
[  223.697345][ T7113] 
[  223.697345][ T7113] but task is already holding lock:
[  223.704752][ T7113] ffff888072436208 (&s->s_dquot.dqio_sem){++++}-{3:3}, at: v2_read_dquot+0x4a/0x110
[  223.714217][ T7113] 
[  223.714217][ T7113] which lock already depends on the new lock.
[  223.714217][ T7113] 
[  223.724655][ T7113] 
[  223.724655][ T7113] the existing dependency chain (in reverse order) is:
[  223.733704][ T7113] 
[  223.733704][ T7113] -> #2 (&s->s_dquot.dqio_sem){++++}-{3:3}:
[  223.741837][ T7113]        down_read+0x42/0x2d0
[  223.746651][ T7113]        v2_read_dquot+0x4a/0x110
[  223.751718][ T7113]        dquot_acquire+0x152/0x520
[  223.756869][ T7113]        ext4_acquire_dquot+0x2d9/0x4a0
[  223.762462][ T7113]        dqget+0x778/0xeb0
[  223.766919][ T7113]        __dquot_initialize+0x328/0xcb0
[  223.772510][ T7113]        ext4_process_orphan+0x54/0x300
[  223.778106][ T7113]        ext4_orphan_cleanup+0xbd3/0x1400
[  223.783868][ T7113]        ext4_fill_super+0x7b78/0x8110
[  223.789385][ T7113]        get_tree_bdev+0x3f1/0x610
[  223.794564][ T7113]        vfs_get_tree+0x88/0x270
[  223.799570][ T7113]        do_new_mount+0x24a/0xa40
[  223.804648][ T7113]        __se_sys_mount+0x2d6/0x3c0
[  223.809894][ T7113]        do_syscall_64+0x4c/0xa0
[  223.814881][ T7113]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  223.821399][ T7113] 
[  223.821399][ T7113] -> #1 (&dquot->dq_lock){+.+.}-{3:3}:
[  223.829070][ T7113]        __mutex_lock+0x120/0xaf0
[  223.834120][ T7113]        dquot_commit+0x5a/0x410
[  223.839078][ T7113]        ext4_write_dquot+0x1f0/0x360
[  223.844628][ T7113]        mark_all_dquot_dirty+0x1e3/0x400
[  223.850387][ T7113]        __dquot_free_space+0x7ec/0xbc0
[  223.855961][ T7113]        ext4_free_blocks+0x1bab/0x2640
[  223.861533][ T7113]        ext4_ext_remove_space+0x1f0d/0x4490
[  223.867540][ T7113]        ext4_ext_truncate+0x211/0x370
[  223.873024][ T7113]        ext4_truncate+0xa0b/0x1230
[  223.878234][ T7113]        ext4_evict_inode+0xb35/0x1100
[  223.883709][ T7113]        evict+0x485/0x870
[  223.888158][ T7113]        ext4_orphan_cleanup+0xbd3/0x1400
[  223.893977][ T7113]        ext4_fill_super+0x7b78/0x8110
[  223.899459][ T7113]        get_tree_bdev+0x3f1/0x610
[  223.904589][ T7113]        vfs_get_tree+0x88/0x270
[  223.909546][ T7113]        do_new_mount+0x24a/0xa40
[  223.914583][ T7113]        __se_sys_mount+0x2d6/0x3c0
[  223.919794][ T7113]        do_syscall_64+0x4c/0xa0
[  223.924744][ T7113]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  223.931177][ T7113] 
[  223.931177][ T7113] -> #0 (&ei->i_data_sem/2){++++}-{3:3}:
[  223.939011][ T7113]        __lock_acquire+0x2cf8/0x7c50
[  223.944394][ T7113]        lock_acquire+0x1b4/0x490
[  223.949428][ T7113]        down_read+0x42/0x2d0
[  223.954117][ T7113]        ext4_map_blocks+0x316/0x1b60
[  223.959497][ T7113]        ext4_getblk+0x1ab/0x6d0
[  223.964440][ T7113]        ext4_bread+0x26/0x170
[  223.969245][ T7113]        ext4_quota_read+0x180/0x380
[  223.974547][ T7113]        find_tree_dqentry+0x1cd/0xf30
[  223.980028][ T7113]        find_tree_dqentry+0x6b0/0xf30
[  223.985496][ T7113]        find_tree_dqentry+0x6b0/0xf30
[  223.990965][ T7113]        find_tree_dqentry+0x6b0/0xf30
[  223.996434][ T7113]        qtree_read_dquot+0x558/0x7f0
[  224.001815][ T7113]        v2_read_dquot+0xc0/0x110
[  224.006855][ T7113]        dquot_acquire+0x152/0x520
[  224.011979][ T7113]        ext4_acquire_dquot+0x2d9/0x4a0
[  224.017538][ T7113]        dqget+0x778/0xeb0
[  224.021967][ T7113]        __dquot_initialize+0x328/0xcb0
[  224.027525][ T7113]        ext4_process_orphan+0x54/0x300
[  224.033079][ T7113]        ext4_orphan_cleanup+0xbd3/0x1400
[  224.038824][ T7113]        ext4_fill_super+0x7b78/0x8110
[  224.044293][ T7113]        get_tree_bdev+0x3f1/0x610
[  224.049415][ T7113]        vfs_get_tree+0x88/0x270
[  224.054368][ T7113]        do_new_mount+0x24a/0xa40
[  224.059403][ T7113]        __se_sys_mount+0x2d6/0x3c0
[  224.064614][ T7113]        do_syscall_64+0x4c/0xa0
[  224.069561][ T7113]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  224.075992][ T7113] 
[  224.075992][ T7113] other info that might help us debug this:
[  224.075992][ T7113] 
[  224.086225][ T7113] Chain exists of:
[  224.086225][ T7113]   &ei->i_data_sem/2 --> &dquot->dq_lock --> &s->s_dquot.dqio_sem
[  224.086225][ T7113] 
[  224.099890][ T7113]  Possible unsafe locking scenario:
[  224.099890][ T7113] 
[  224.107340][ T7113]        CPU0                    CPU1
[  224.112711][ T7113]        ----                    ----
[  224.118075][ T7113]   lock(&s->s_dquot.dqio_sem);
[  224.122955][ T7113]                                lock(&dquot->dq_lock);
[  224.129908][ T7113]                                lock(&s->s_dquot.dqio_sem);
[  224.137282][ T7113]   lock(&ei->i_data_sem/2);
[  224.141886][ T7113] 
[  224.141886][ T7113]  *** DEADLOCK ***
[  224.141886][ T7113] 
[  224.150028][ T7113] 3 locks held by syz.5.848/7113:
[  224.155065][ T7113]  #0: ffff8880724360e0 (&type->s_umount_key#28/1){+.+.}-{3:3}, at: alloc_super+0x1fa/0x930
[  224.165183][ T7113]  #1: ffff888055058ea8 (&dquot->dq_lock){+.+.}-{3:3}, at: dquot_acquire+0x63/0x520
[  224.174616][ T7113]  #2: ffff888072436208 (&s->s_dquot.dqio_sem){++++}-{3:3}, at: v2_read_dquot+0x4a/0x110
[  224.184478][ T7113] 
[  224.184478][ T7113] stack backtrace:
[  224.190377][ T7113] CPU: 0 PID: 7113 Comm: syz.5.848 Not tainted 6.1.142-syzkaller #0
[  224.198364][ T7113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  224.208433][ T7113] Call Trace:
[  224.211726][ T7113]  <TASK>
[  224.214664][ T7113]  dump_stack_lvl+0x168/0x22e
[  224.219355][ T7113]  ? load_image+0x3b0/0x3b0
[  224.223866][ T7113]  ? show_regs_print_info+0x12/0x12
[  224.229080][ T7113]  ? print_circular_bug+0x12b/0x1a0
[  224.234324][ T7113]  check_noncircular+0x274/0x310
[  224.239279][ T7113]  ? add_chain_block+0x940/0x940
[  224.244231][ T7113]  ? lockdep_lock+0xdc/0x1e0
[  224.248841][ T7113]  ? mark_lock+0x94/0x320
[  224.253186][ T7113]  ? _find_first_zero_bit+0xcf/0x100
[  224.258490][ T7113]  __lock_acquire+0x2cf8/0x7c50
[  224.263371][ T7113]  ? verify_lock_unused+0x140/0x140
[  224.268591][ T7113]  ? is_bpf_text_address+0x22/0x2a0
[  224.273809][ T7113]  ? __lock_acquire+0x7c50/0x7c50
[  224.278868][ T7113]  lock_acquire+0x1b4/0x490
[  224.283383][ T7113]  ? ext4_map_blocks+0x316/0x1b60
[  224.288419][ T7113]  ? __might_sleep+0xd0/0xd0
[  224.293030][ T7113]  ? read_lock_is_recursive+0x10/0x10
[  224.298428][ T7113]  ? rcu_is_watching+0x11/0xa0
[  224.303210][ T7113]  down_read+0x42/0x2d0
[  224.307381][ T7113]  ? ext4_map_blocks+0x316/0x1b60
[  224.312415][ T7113]  ext4_map_blocks+0x316/0x1b60
[  224.317276][ T7113]  ? __stack_depot_save+0x421/0x460
[  224.322495][ T7113]  ? __kasan_kmalloc+0x8e/0xa0
[  224.327275][ T7113]  ? __kmalloc+0xb0/0x240
[  224.331610][ T7113]  ? find_tree_dqentry+0x56/0xf30
[  224.336662][ T7113]  ? ext4_issue_zeroout+0x250/0x250
[  224.341868][ T7113]  ? qtree_read_dquot+0x558/0x7f0
[  224.346930][ T7113]  ? ext4_process_orphan+0x54/0x300
[  224.352142][ T7113]  ? ext4_orphan_cleanup+0xbd3/0x1400
[  224.357538][ T7113]  ? ext4_fill_super+0x7b78/0x8110
[  224.362683][ T7113]  ? get_tree_bdev+0x3f1/0x610
[  224.367458][ T7113]  ? vfs_get_tree+0x88/0x270
[  224.372062][ T7113]  ? do_new_mount+0x24a/0xa40
[  224.376751][ T7113]  ? __se_sys_mount+0x2d6/0x3c0
[  224.381615][ T7113]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  224.387719][ T7113]  ext4_getblk+0x1ab/0x6d0
[  224.392148][ T7113]  ? ext4_get_block_unwritten+0x100/0x100
[  224.397881][ T7113]  ext4_bread+0x26/0x170
[  224.402161][ T7113]  ext4_quota_read+0x180/0x380
[  224.406945][ T7113]  find_tree_dqentry+0x1cd/0xf30
[  224.411904][ T7113]  ? ext4_show_options+0x50/0x50
[  224.416851][ T7113]  ? ext4_quota_read+0x305/0x380
[  224.421802][ T7113]  find_tree_dqentry+0x6b0/0xf30
[  224.426759][ T7113]  find_tree_dqentry+0x6b0/0xf30
[  224.431723][ T7113]  find_tree_dqentry+0x6b0/0xf30
[  224.436683][ T7113]  qtree_read_dquot+0x558/0x7f0
[  224.441551][ T7113]  ? read_lock_is_recursive+0x10/0x10
[  224.446943][ T7113]  ? remove_tree+0x2150/0x2150
[  224.451721][ T7113]  ? trace_contention_end+0x5f/0x170
[  224.457017][ T7113]  ? preempt_count_add+0x8d/0x190
[  224.462054][ T7113]  ? down_read+0x1a8/0x2d0
[  224.466483][ T7113]  v2_read_dquot+0xc0/0x110
[  224.470997][ T7113]  dquot_acquire+0x152/0x520
[  224.475615][ T7113]  ? __ext4_journal_start_sb+0x1dd/0x3d0
[  224.481259][ T7113]  ext4_acquire_dquot+0x2d9/0x4a0
[  224.486302][ T7113]  dqget+0x778/0xeb0
[  224.490232][ T7113]  __dquot_initialize+0x328/0xcb0
[  224.495285][ T7113]  ? dquot_initialize+0x20/0x20
[  224.500169][ T7113]  ? ext4_get_projid+0x140/0x140
[  224.505124][ T7113]  ext4_process_orphan+0x54/0x300
[  224.510161][ T7113]  ext4_orphan_cleanup+0xbd3/0x1400
[  224.515376][ T7113]  ? ext4_orphan_del+0xb90/0xb90
[  224.520429][ T7113]  ? errseq_check_and_advance+0x62/0x120
[  224.526080][ T7113]  ext4_fill_super+0x7b78/0x8110
[  224.531040][ T7113]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  224.537290][ T7113]  ? snprintf+0xd7/0x120
[  224.541544][ T7113]  ? preempt_count_add+0x8d/0x190
[  224.546581][ T7113]  ? set_blocksize+0x1d3/0x350
[  224.551380][ T7113]  ? sb_set_blocksize+0xa5/0xe0
[  224.556275][ T7113]  get_tree_bdev+0x3f1/0x610
[  224.560890][ T7113]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  224.567159][ T7113]  vfs_get_tree+0x88/0x270
[  224.571600][ T7113]  do_new_mount+0x24a/0xa40
[  224.576167][ T7113]  __se_sys_mount+0x2d6/0x3c0
[  224.580877][ T7113]  ? __x64_sys_mount+0xc0/0xc0
[  224.585655][ T7113]  ? lockdep_hardirqs_on+0x94/0x140
[  224.590861][ T7113]  ? __x64_sys_mount+0x1c/0xc0
[  224.595648][ T7113]  do_syscall_64+0x4c/0xa0
[  224.600113][ T7113]  ? clear_bhb_loop+0x60/0xb0
[  224.604801][ T7113]  ? clear_bhb_loop+0x60/0xb0
[  224.609489][ T7113]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  224.615404][ T7113] RIP: 0033:0x7eff1e9900ca
[  224.619841][ T7113] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  224.639465][ T7113] RSP: 002b:00007eff1f73fe68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  224.647892][ T7113] RAX: ffffffffffffffda RBX: 00007eff1f73fef0 RCX: 00007eff1e9900ca
[  224.655885][ T7113] RDX: 0000200000000040 RSI: 00002000000003c0 RDI: 00007eff1f73feb0
[  224.663863][ T7113] RBP: 0000200000000040 R08: 00007eff1f73fef0 R09: 000000000201000c
[  224.671849][ T7113] R10: 000000000201000c R11: 0000000000000246 R12: 00002000000003c0
[  224.679833][ T7113] R13: 00007eff1f73feb0 R14: 0000000000000535 R15: 00002000000001c0
[  224.687826][ T7113]  </TASK>
[  224.699829][ T7113] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.848: bg 0: block 248: padding at end of block bitmap is not set
[  224.717075][ T7113] EXT4-fs error (device loop5): ext4_acquire_dquot:6814: comm syz.5.848: Failed to acquire dquot type 1
[  224.730941][ T7123] netlink: 20 bytes leftover after parsing attributes in process `syz.0.850'.
[  224.733983][ T7113] EXT4-fs (loop5): 1 truncate cleaned up
[  224.745680][ T7113] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  224.760540][ T7113] ext4 filesystem being mounted at /47/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  224.794760][ T7113] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  224.809819][ T7113] device ip6tnl1 entered promiscuous mode
[  224.816390][ T7113] team0: Device ip6tnl1 is of different type
[  224.894056][ T6187] EXT4-fs (loop5): unmounting filesystem.