last executing test programs:

27m16.952184627s ago: executing program 1 (id=2):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
write$sndseq(r0, 0x0, 0x3a99c56f)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f0000000140)={0x80, 0x1f4, 0xfffffffe, 0x4, 0x402, 0x807fe})
pipe(&(0x7f00000000c0))
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, 0x0)
mount$bind(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x2000420, 0x0)
io_setup(0x3ff, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
syz_clone3(0x0, 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f0000000f00)=ANY=[@ANYBLOB="120100007ce7c810d804300a47ce0102030109022400010000000009040000020de67a0009050402000200000009058102"], 0x0)
bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r3 = socket$inet6(0xa, 0x80003, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@private0, @in=@private=0xa010101, 0x0, 0x0, 0x4e24, 0x0, 0xa}, {0x0, 0x0, 0x4}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1, 0x0, 0x0, 0x3}, {{@in=@loopback, 0x4d6, 0x33}, 0x0, @in=@loopback, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$key(r4, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000540)={0x2, 0x6, 0x2, 0x0, 0x2, 0x0, 0x2}, 0x10}}, 0x0)
connect$inet6(r3, &(0x7f0000000180)={0xa, 0x4e20, 0xc0000001, @empty, 0x5}, 0x1c)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r5)

27m13.023834477s ago: executing program 1 (id=6):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xb320a000)
pipe2(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setrlimit(0x9, &(0x7f0000000040)={0x7, 0x67})
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
mremap(&(0x7f0000532000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000190000/0x1000)=nil)
mlock(&(0x7f0000626000/0x5000)=nil, 0x5000)
r3 = socket(0x2b, 0x1, 0x1)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e5b, 0x80000000, @empty, 0x8}, 0x1c)
memfd_create(&(0x7f00000001c0)='\x02A\xbbL\xeb\xbd]\x9c\x9aU\x9c\xcbb\xcc\xfa0\xf5JoeN\x8c\x86\xfa\xb3\x0e&\xfe\xa8NF\x96\t\x01\xceJ\xc3\x8f+\xe8\xa7v\x80\xfaj\xfe\x11\x0e\xed6\x00\x00\x00\x00\x00\x00\f\xd7\xe7\xdb?\xf3\xd9\xa3\xd6a\x1a\xfch}7K\xca\x90KA\x02\xd6\x94\xf0S\xcc\xd0\x14\x8c\xb3!\xa8\xeajy@\xa0\xdc~\xea\xfd\xfb\x12\x88Xa\x16\xcb\xe4\x03\x1e\xac\xf2\xe9\xf1<', 0x3)
r4 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$lock(r4, 0x5, &(0x7f00000000c0)={0x1, 0x1, 0x80009, 0x10000})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0xc369d000)

27m8.862284809s ago: executing program 1 (id=9):
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x2)
ioctl$KVM_GET_DEBUGREGS(r1, 0x8080aea1, &(0x7f0000000000))
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x4}}, 0x2e)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x40980, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000019080)=0x30)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RELOAD_REGDB(r6, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x14, r7, 0x421, 0x70bd2a, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0xc35d4f6d52288271}, 0x200048c4)
mmap(&(0x7f0000d61000/0x4000)=nil, 0x4000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000d62000/0x3000)=nil, 0x3000, 0x0, 0x1, 0x10000)

27m2.826778051s ago: executing program 1 (id=14):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$alg(0x26, 0x5, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6(0xa, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
socket$nl_rdma(0x10, 0x3, 0x14)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
socket$unix(0x1, 0x5, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0xa, 0xffffffff}, 0x28)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000000)=ANY=[@ANYRES64, @ANYRES8=r0], 0x20)

26m57.269826495s ago: executing program 1 (id=18):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bind$alg(0xffffffffffffffff, &(0x7f00000004c0)={0x26, 'aead\x00', 0x0, 0x0, 'gcm(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r3 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x80800)
setsockopt$sock_int(r3, 0x1, 0x7, &(0x7f00000014c0)=0x10000b, 0x4)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002dc0)=[{{&(0x7f0000000100)={0x2, 0x4e25, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000000040)=[{&(0x7f0000000340)='w', 0x1}], 0x1}}], 0x1, 0x4004041)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x24000000)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x71, 0x10, 0x33}, [@ldst={0x6}]}, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x94)

26m52.121627107s ago: executing program 1 (id=22):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xb320a000)
pipe2(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setrlimit(0x9, &(0x7f0000000040)={0x7, 0x67})
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
mremap(&(0x7f0000532000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000190000/0x1000)=nil)
r3 = socket(0x2b, 0x1, 0x1)
setsockopt$inet6_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e5b, 0x80000000, @empty, 0x8}, 0x1c)
memfd_create(&(0x7f00000001c0)='\x02A\xbbL\xeb\xbd]\x9c\x9aU\x9c\xcbb\xcc\xfa0\xf5JoeN\x8c\x86\xfa\xb3\x0e&\xfe\xa8NF\x96\t\x01\xceJ\xc3\x8f+\xe8\xa7v\x80\xfaj\xfe\x11\x0e\xed6\x00\x00\x00\x00\x00\x00\f\xd7\xe7\xdb?\xf3\xd9\xa3\xd6a\x1a\xfch}7K\xca\x90KA\x02\xd6\x94\xf0S\xcc\xd0\x14\x8c\xb3!\xa8\xeajy@\xa0\xdc~\xea\xfd\xfb\x12\x88Xa\x16\xcb\xe4\x03\x1e\xac\xf2\xe9\xf1<', 0x3)
r4 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$lock(r4, 0x5, &(0x7f00000000c0)={0x1, 0x1, 0x80009, 0x10000})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0xc369d000)

26m35.813563552s ago: executing program 32 (id=22):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xb320a000)
pipe2(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setrlimit(0x9, &(0x7f0000000040)={0x7, 0x67})
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
mremap(&(0x7f0000532000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000190000/0x1000)=nil)
r3 = socket(0x2b, 0x1, 0x1)
setsockopt$inet6_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e5b, 0x80000000, @empty, 0x8}, 0x1c)
memfd_create(&(0x7f00000001c0)='\x02A\xbbL\xeb\xbd]\x9c\x9aU\x9c\xcbb\xcc\xfa0\xf5JoeN\x8c\x86\xfa\xb3\x0e&\xfe\xa8NF\x96\t\x01\xceJ\xc3\x8f+\xe8\xa7v\x80\xfaj\xfe\x11\x0e\xed6\x00\x00\x00\x00\x00\x00\f\xd7\xe7\xdb?\xf3\xd9\xa3\xd6a\x1a\xfch}7K\xca\x90KA\x02\xd6\x94\xf0S\xcc\xd0\x14\x8c\xb3!\xa8\xeajy@\xa0\xdc~\xea\xfd\xfb\x12\x88Xa\x16\xcb\xe4\x03\x1e\xac\xf2\xe9\xf1<', 0x3)
r4 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$lock(r4, 0x5, &(0x7f00000000c0)={0x1, 0x1, 0x80009, 0x10000})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0xc369d000)

25m45.612625692s ago: executing program 2 (id=91):
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={0xffffffffffffffff, 0x2006300, 0x0, 0x0, &(0x7f0000000200), 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_mount_image$squashfs(&(0x7f00000000c0), &(0x7f0000000080)='./file1\x00', 0x4, &(0x7f0000000280)=ANY=[], 0x2, 0x1b5, &(0x7f00000002c0)="$eJzsVc0K00AQ/ibZJo0H8aoIHhRtD23T+HPVk/QBfABLG2sxRW0K2uIhnvoeIvQ1PIiv4EHxUg8ieLBXkcjuzqZJWxARbIX9oPm++XY2O7tbJg/Tp6kP4KeDAe5AwcVZfCCCAHCJtHfX1/zV09zm+IvQ3GT/FfNH5nS+eNRPknh6UOQNoOq42HV+L4xq4Y+m/edis3NSdCAnwz8t7J2PvSvIAJzIiR1bgFEdgnPUwoKjH0tJkKg4/t++cBvefungm+pl77+/GEhxH0Ce57n0hvpH5RzZid7qnEB6F4T6kYu8yJHNTwbXAPx4PXnSSeeL1njSH8WjmKLo+q3wRhjejDoPxkkc6ieVlnD4DyG5CUD21KA0XgPwiRvsGezDlM/jFOyUb9C4LJ81pYnXM3NzFoQ3xVzu7ZDvuIerqAN4ltHWNYVDbakHgguhgi6XCyr2VlcD7cHjZLgEgTgzXEHAMdPWqBVBVASist0lcF6WdoXjHvOKec1svlnmWyRkD8JnjrwM8PC8P5tNu9LSSnmmZu1F5zKULkiuuvGqm7voH7gVCwsLCwsLC4uTxq8AAAD//6x/T6A=")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xbf}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socket$inet6_sctp(0xa, 0x1, 0x84)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
lseek(0xffffffffffffffff, 0x851, 0x400000000000000)
r3 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x121140, 0x13d)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}]}, &(0x7f00000002c0)=0x10)
getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f0000000300)=0x8)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000040)={r5, 0x4}, 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r3, 0x84, 0x19, 0x0, 0x0)
mmap(&(0x7f0000454000/0x3000)=nil, 0x3000, 0x200000d, 0x12, r4, 0xba2ca000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x3)
socket$nl_xfrm(0x10, 0x3, 0x6)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r6, 0x84, 0x1b, &(0x7f0000000340), &(0x7f0000001380)=0x8)
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000011c0)=ANY=[@ANYBLOB="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", @ANYBLOB="23341129bfb4fcc388a80c49b4f4d96254cb9356759776b03b581050240d2d9a5cf3440e76c88604000000656a3648101223fc288fc5274f0e609cfed0fc738d84eb544791dd1cb959421db9fbcb634df876aa2133fd62e245fb6b1ead07ca04772d78564af8f42015e5be557ab3bd60824768691005cbd3d295402693d934226595deeba1ff748b7dde9c617749aa38096ef667700a6b3668cb7296b024fbcf9f74e50bf0f834159f51737baac184f94dd13a9793b76946208f290637d8def94e5f56f1181da3eed500440f", @ANYBLOB="0569be040a0ba3ba43db6fcb648f069f626af0b9eab5cf4fb11a2ce510acee194b279ad6f8b6661cb52ca0b979de531329546b6bd278ccaea002ba8c5f8a37759c4da9ed46e2559fe9dbfa416d3ad7e6d4f8c877a230a9a5490e947f050d24e5aa54823cf9e7e76ca0ed6171a76000e01c0c4cf73e1af888d05bae6792896824848426d7a30d7292be05ce64d78ca5307d8027f8f787", @ANYRESDEC=0x0, @ANYRES16], 0x11, 0x2de, &(0x7f0000000300)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000100)='./bus\x00', 0x42, 0x0)

25m43.004856572s ago: executing program 2 (id=94):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
fsopen(0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60140, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}]}, 0x0)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r2, 0x84, 0x83, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
ioctl$KVM_SET_MP_STATE(r4, 0x4004ae99, &(0x7f0000000100)=0x3)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x4, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000380)={"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"})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

25m40.345193677s ago: executing program 2 (id=97):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$alg(0x26, 0x5, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6(0xa, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
socket$nl_rdma(0x10, 0x3, 0x14)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
socket$unix(0x1, 0x1, 0x0)
socket$unix(0x1, 0x5, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0xa, 0xffffffff}, 0x28)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000000)=ANY=[@ANYRES64, @ANYRES8=r0], 0x20)

25m38.27732575s ago: executing program 2 (id=100):
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={0xffffffffffffffff, 0x2006300, 0x0, 0x0, &(0x7f0000000200), 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_mount_image$squashfs(&(0x7f00000000c0), &(0x7f0000000080)='./file1\x00', 0x4, &(0x7f0000000280)=ANY=[], 0x2, 0x1b5, &(0x7f00000002c0)="$eJzsVc0K00AQ/ibZJo0H8aoIHhRtD23T+HPVk/QBfABLG2sxRW0K2uIhnvoeIvQ1PIiv4EHxUg8ieLBXkcjuzqZJWxARbIX9oPm++XY2O7tbJg/Tp6kP4KeDAe5AwcVZfCCCAHCJtHfX1/zV09zm+IvQ3GT/FfNH5nS+eNRPknh6UOQNoOq42HV+L4xq4Y+m/edis3NSdCAnwz8t7J2PvSvIAJzIiR1bgFEdgnPUwoKjH0tJkKg4/t++cBvefungm+pl77+/GEhxH0Ce57n0hvpH5RzZid7qnEB6F4T6kYu8yJHNTwbXAPx4PXnSSeeL1njSH8WjmKLo+q3wRhjejDoPxkkc6ieVlnD4DyG5CUD21KA0XgPwiRvsGezDlM/jFOyUb9C4LJ81pYnXM3NzFoQ3xVzu7ZDvuIerqAN4ltHWNYVDbakHgguhgi6XCyr2VlcD7cHjZLgEgTgzXEHAMdPWqBVBVASist0lcF6WdoXjHvOKec1svlnmWyRkD8JnjrwM8PC8P5tNu9LSSnmmZu1F5zKULkiuuvGqm7voH7gVCwsLCwsLC4uTxq8AAAD//6x/T6A=")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xbf}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socket$inet6_sctp(0xa, 0x1, 0x84)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
lseek(0xffffffffffffffff, 0x851, 0x400000000000000)
r3 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x121140, 0x13d)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}]}, &(0x7f00000002c0)=0x10)
getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f0000000300)=0x8)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000040)={r5, 0x4}, 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r3, 0x84, 0x19, 0x0, 0x0)
mmap(&(0x7f0000454000/0x3000)=nil, 0x3000, 0x200000d, 0x12, r4, 0xba2ca000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x3)
socket$nl_xfrm(0x10, 0x3, 0x6)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r6, 0x84, 0x1b, &(0x7f0000000340), &(0x7f0000001380)=0x8)
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000011c0)=ANY=[@ANYBLOB="71756965742c636f6465706167653d69736f383835392d31352c706172743d3078303030303030300000000000000000662c00a20000000700000000ede9debf530c3cc4d04b548919aca0c2937d4da1fc31dc42fc2e3e89feace31fe92a3ca876f2efe7534ddc94eda3e8af20373cc39ad3609a13286b4cd027d1f0342ab249e271335e5f466040d8d8ab845a0ed1d1e6972384a078f3c53d9abc910e21730bad65ffba4718ca7fb50f123f962c384486fa71532e9d48012f33c525b9a3faa82da273fe46ecb6512413fa247bd6472f8db0b91c746a91215cd7d8376f8790b1fed35ea4c13004e51de2b35a020e8d1c6c150892c0b63cd114dcde803846763b90d73b3cd73d5d13de7d8542e2d3e10b7e3cf1fa427be14ec0f90299cdcca3d5e6941af8ee617b9fdb7c329a3c39ee74e987c1dce74231c8d4ddae0c40abb4f16e56981c1a0896c3b3", @ANYBLOB="23341129bfb4fcc388a80c49b4f4d96254cb9356759776b03b581050240d2d9a5cf3440e76c88604000000656a3648101223fc288fc5274f0e609cfed0fc738d84eb544791dd1cb959421db9fbcb634df876aa2133fd62e245fb6b1ead07ca04772d78564af8f42015e5be557ab3bd60824768691005cbd3d295402693d934226595deeba1ff748b7dde9c617749aa38096ef667700a6b3668cb7296b024fbcf9f74e50bf0f834159f51737baac184f94dd13a9793b76946208f290637d8def94e5f56f1181da3eed500440f", @ANYBLOB="0569be040a0ba3ba43db6fcb648f069f626af0b9eab5cf4fb11a2ce510acee194b279ad6f8b6661cb52ca0b979de531329546b6bd278ccaea002ba8c5f8a37759c4da9ed46e2559fe9dbfa416d3ad7e6d4f8c877a230a9a5490e947f050d24e5aa54823cf9e7e76ca0ed6171a76000e01c0c4cf73e1af888d05bae6792896824848426d7a30d7292be05ce64d78ca5307d8027f8f787", @ANYRESDEC=0x0, @ANYRES16], 0x11, 0x2de, &(0x7f0000000300)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000100)='./bus\x00', 0x42, 0x0)

25m31.866958951s ago: executing program 2 (id=105):
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={0xffffffffffffffff, 0x2006300, 0x0, 0x0, &(0x7f0000000200), 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_mount_image$squashfs(&(0x7f00000000c0), &(0x7f0000000080)='./file1\x00', 0x4, &(0x7f0000000280)=ANY=[], 0x2, 0x1b5, &(0x7f00000002c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xbf}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socket$inet6_sctp(0xa, 0x1, 0x84)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
lseek(0xffffffffffffffff, 0x851, 0x400000000000000)
r3 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x121140, 0x13d)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}]}, &(0x7f00000002c0)=0x10)
getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f0000000300)=0x8)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000040)={r5, 0x4}, 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r3, 0x84, 0x19, 0x0, 0x0)
mmap(&(0x7f0000454000/0x3000)=nil, 0x3000, 0x200000d, 0x12, r4, 0xba2ca000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x3)
socket$nl_xfrm(0x10, 0x3, 0x6)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r6, 0x84, 0x1b, &(0x7f0000000340), &(0x7f0000001380)=0x8)
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000011c0)=ANY=[@ANYBLOB="71756965742c636f6465706167653d69736f383835392d31352c706172743d3078303030303030300000000000000000662c00a20000000700000000ede9debf530c3cc4d04b548919aca0c2937d4da1fc31dc42fc2e3e89feace31fe92a3ca876f2efe7534ddc94eda3e8af20373cc39ad3609a13286b4cd027d1f0342ab249e271335e5f466040d8d8ab845a0ed1d1e6972384a078f3c53d9abc910e21730bad65ffba4718ca7fb50f123f962c384486fa71532e9d48012f33c525b9a3faa82da273fe46ecb6512413fa247bd6472f8db0b91c746a91215cd7d8376f8790b1fed35ea4c13004e51de2b35a020e8d1c6c150892c0b63cd114dcde803846763b90d73b3cd73d5d13de7d8542e2d3e10b7e3cf1fa427be14ec0f90299cdcca3d5e6941af8ee617b9fdb7c329a3c39ee74e987c1dce74231c8d4ddae0c40abb4f16e56981c1a0896c3b3", @ANYBLOB="23341129bfb4fcc388a80c49b4f4d96254cb9356759776b03b581050240d2d9a5cf3440e76c88604000000656a3648101223fc288fc5274f0e609cfed0fc738d84eb544791dd1cb959421db9fbcb634df876aa2133fd62e245fb6b1ead07ca04772d78564af8f42015e5be557ab3bd60824768691005cbd3d295402693d934226595deeba1ff748b7dde9c617749aa38096ef667700a6b3668cb7296b024fbcf9f74e50bf0f834159f51737baac184f94dd13a9793b76946208f290637d8def94e5f56f1181da3eed500440f", @ANYBLOB="0569be040a0ba3ba43db6fcb648f069f626af0b9eab5cf4fb11a2ce510acee194b279ad6f8b6661cb52ca0b979de531329546b6bd278ccaea002ba8c5f8a37759c4da9ed46e2559fe9dbfa416d3ad7e6d4f8c877a230a9a5490e947f050d24e5aa54823cf9e7e76ca0ed6171a76000e01c0c4cf73e1af888d05bae6792896824848426d7a30d7292be05ce64d78ca5307d8027f8f787", @ANYRESDEC=0x0, @ANYRES16], 0x11, 0x2de, &(0x7f0000000300)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000100)='./bus\x00', 0x42, 0x0)

25m28.659328563s ago: executing program 2 (id=107):
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x2)
ioctl$KVM_GET_DEBUGREGS(r1, 0x8080aea1, &(0x7f0000000000))
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x4}}, 0x2e)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x40980, 0x0)
ioctl$TCFLSH(r5, 0x400455c8, 0x4)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000019080)=0x30)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RELOAD_REGDB(r6, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x14, r7, 0x421, 0x70bd2a, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0xc35d4f6d52288271}, 0x200048c4)

25m11.101569734s ago: executing program 33 (id=107):
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x2)
ioctl$KVM_GET_DEBUGREGS(r1, 0x8080aea1, &(0x7f0000000000))
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x4}}, 0x2e)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x40980, 0x0)
ioctl$TCFLSH(r5, 0x400455c8, 0x4)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000019080)=0x30)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RELOAD_REGDB(r6, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x14, r7, 0x421, 0x70bd2a, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0xc35d4f6d52288271}, 0x200048c4)

18m47.255913526s ago: executing program 3 (id=525):
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={0xffffffffffffffff, 0x2006300, 0x0, 0x0, &(0x7f0000000200), 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_mount_image$squashfs(&(0x7f00000000c0), &(0x7f0000000080)='./file1\x00', 0x4, &(0x7f0000000280)=ANY=[], 0x2, 0x1b5, &(0x7f00000002c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xbf}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socket$inet6_sctp(0xa, 0x1, 0x84)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
lseek(0xffffffffffffffff, 0x851, 0x400000000000000)
r3 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x121140, 0x13d)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}]}, &(0x7f00000002c0)=0x10)
getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f0000000300)=0x8)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000040)={r5, 0x4}, 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r3, 0x84, 0x19, 0x0, 0x0)
mmap(&(0x7f0000454000/0x3000)=nil, 0x3000, 0x200000d, 0x12, r4, 0xba2ca000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x3)
socket$nl_xfrm(0x10, 0x3, 0x6)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r6, 0x84, 0x1b, 0x0, &(0x7f0000001380))
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000011c0)=ANY=[@ANYBLOB="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", @ANYBLOB="23341129bfb4fcc388a80c49b4f4d96254cb9356759776b03b581050240d2d9a5cf3440e76c88604000000656a3648101223fc288fc5274f0e609cfed0fc738d84eb544791dd1cb959421db9fbcb634df876aa2133fd62e245fb6b1ead07ca04772d78564af8f42015e5be557ab3bd60824768691005cbd3d295402693d934226595deeba1ff748b7dde9c617749aa38096ef667700a6b3668cb7296b024fbcf9f74e50bf0f834159f51737baac184f94dd13a9793b76946208f290637d8def94e5f56f1181da3eed500440f", @ANYBLOB="0569be040a0ba3ba43db6fcb648f069f626af0b9eab5cf4fb11a2ce510acee194b279ad6f8b6661cb52ca0b979de531329546b6bd278ccaea002ba8c5f8a37759c4da9ed46e2559fe9dbfa416d3ad7e6d4f8c877a230a9a5490e947f050d24e5aa54823cf9e7e76ca0ed6171a76000e01c0c4cf73e1af888d05bae6792896824848426d7a30d7292be05ce64d78ca5307d8027f8f787", @ANYRESDEC=0x0, @ANYRES16], 0x11, 0x2de, &(0x7f0000000300)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000100)='./bus\x00', 0x42, 0x0)

18m43.991007875s ago: executing program 3 (id=527):
mmap(&(0x7f00008e2000/0x3000)=nil, 0x3000, 0x1000000, 0x13, 0xffffffffffffffff, 0x0)
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x8922, &(0x7f0000000280)={'ip6gre0\x00', 0x3})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000400)={&(0x7f0000000500)=ANY=[@ANYBLOB="9feb01001800000000000000140000001400000005000000000000000100000d0a0003000000000003"], &(0x7f0000000f40)=""/4086, 0x31, 0xff6, 0x5}, 0x28)
syz_emit_ethernet(0xde, &(0x7f00000002c0)={@local, @random="a1d40b131d6b", @val={@val={0x88a8, 0x2, 0x1, 0x3}, {0x8100, 0x5, 0x0, 0x1}}, {@x25={0x805, {0x0, 0xf9, 0x1b, "6b1191fa318387e5e32c33b214c540e54bd1bf5a90d65baa5e2aa57a765f1d3499d53aac3fc97a5055c9aab4d7db72009ca22358f5f50596cea9768dc9aece9502b647d4c9dda0bb8cc074d1fa52ae1ab7a9456bed59038af32929fbb5515d32fcb4cd35a1e89ee087cbd7722245fcf2be57ed21202e9f06ba195a4454a33234fb5892b1524403319bb02b458e409e85ce921f04e3a88283f45b1ad7a84979ed29419225ed5b255529eec21472c9961cc700bc9114f786f76bac5a7f2437e08fa42534c69e"}}}}, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0xc02, 0x0)
r1 = syz_open_dev$media(&(0x7f00000000c0), 0x100, 0x40)
ioctl$MEDIA_IOC_ENUM_ENTITIES(r1, 0xc1007c01, &(0x7f00000006c0))
r2 = getpid()
process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
write$tun(r0, 0x0, 0x0)
openat$iommufd(0xffffffffffffff9c, 0x0, 0x88800, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000b40))
socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000700)=ANY=[@ANYBLOB="9feb0100180000000000000034000000340000000c00000004000000010000840203000000000000030000000000000302000000000000010500000020000000000000000000000b02000000"], 0x0, 0x58, 0x0, 0x1, 0xffffffff, 0x10000}, 0x28)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000180), 0xfea7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

18m42.299981344s ago: executing program 3 (id=533):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz1\x00', 0x200002, 0x0)
r1 = openat$cgroup_type(r0, &(0x7f0000000300), 0x2, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
write$cgroup_type(r1, 0x0, 0x0)
r2 = openat$cgroup_procs(r0, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f0000000080), 0x12)
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r4)
ioctl$IOCTL_GET_NCIDEV_IDX(r3, 0x0, &(0x7f00000000c0)=<r6=>0x0)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d80)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010426bd7000f8dbdf250200000008000100", @ANYRES32=r6], 0x1c}}, 0x4008054)
write$nci(r3, &(0x7f0000000300)=ANY=[@ANYBLOB='p\x00\t'], 0xc)
write$nci(r3, &(0x7f0000000040)=ANY=[@ANYBLOB="5001"], 0x14)
socket(0x10, 0x803, 0x0)

18m39.006083916s ago: executing program 3 (id=539):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'aead\x00', 0x0, 0x0, 'gcm(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x80800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)}], 0x1, 0x40800)

18m38.642183058s ago: executing program 3 (id=540):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
write$sndseq(r0, 0x0, 0x3a99c56f)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f0000000140)={0x80, 0x1f4, 0xfffffffe, 0x4, 0x402, 0x807fe})
pipe(&(0x7f00000000c0))
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, 0x0)
mount$bind(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x2000420, 0x0)
io_setup(0x3ff, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
syz_clone3(0x0, 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f0000000f00)=ANY=[@ANYBLOB="120100007ce7c810d804300a47ce0102030109022400010000000009040000020de67a0009050402000200"], 0x0)
bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r3 = socket$inet6(0xa, 0x80003, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@private0, @in=@private=0xa010101, 0x0, 0x0, 0x4e24, 0x0, 0xa}, {0x0, 0x0, 0x4}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1, 0x0, 0x0, 0x3}, {{@in=@loopback, 0x4d6, 0x33}, 0x0, @in=@loopback, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$key(r4, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000540)={0x2, 0x6, 0x2, 0x0, 0x2, 0x0, 0x2}, 0x10}}, 0x0)
connect$inet6(r3, &(0x7f0000000180)={0xa, 0x4e20, 0xc0000001, @empty, 0x5}, 0x1c)
io_submit(0x0, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r5)

18m32.104457813s ago: executing program 3 (id=545):
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x2)
ioctl$KVM_GET_DEBUGREGS(r1, 0x8080aea1, &(0x7f0000000000))
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x4}}, 0x2e)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x40980, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r4, 0x400455c8, 0x4)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000019080)=0x30)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
mmap(&(0x7f0000d61000/0x4000)=nil, 0x4000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000d62000/0x3000)=nil, 0x3000, 0x0, 0x1, 0x10000)

18m15.097117829s ago: executing program 34 (id=545):
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x2)
ioctl$KVM_GET_DEBUGREGS(r1, 0x8080aea1, &(0x7f0000000000))
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x4}}, 0x2e)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x40980, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r4, 0x400455c8, 0x4)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000019080)=0x30)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
mmap(&(0x7f0000d61000/0x4000)=nil, 0x4000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000d62000/0x3000)=nil, 0x3000, 0x0, 0x1, 0x10000)

16m30.565980664s ago: executing program 4 (id=631):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000000c0)={[{@noload}, {@stripe={'stripe', 0x3d, 0xdc}}, {@nomblk_io_submit}, {@noload}, {@abort}, {@auto_da_alloc}]}, 0xff, 0x459, &(0x7f00000004c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x40001e0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet(0x2, 0x3, 0x8d)
ioctl(0xffffffffffffffff, 0x8916, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r3)
shmctl$IPC_SET(0x0, 0x1, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000010c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000100)=ANY=[@ANYRES32=r6, @ANYRES32=r5, @ANYBLOB='&'], 0x10)
r7 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
connect$inet6(r7, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r6}, &(0x7f0000000000), &(0x7f0000000080)=r3}, 0x20)
sendmsg$inet(r4, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x22fe0}], 0x1}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xe3aa6ea)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)

16m26.83344105s ago: executing program 4 (id=633):
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCADDRT(r0, 0x890b, 0x0)

16m26.183893158s ago: executing program 4 (id=634):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000000c0)={[{@noload}, {@stripe={'stripe', 0x3d, 0xdc}}, {@nomblk_io_submit}, {@noload}, {@abort}, {@auto_da_alloc}]}, 0xff, 0x459, &(0x7f00000004c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x40001e0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet(0x2, 0x3, 0x8d)
ioctl(0xffffffffffffffff, 0x8916, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r3)
shmctl$IPC_SET(0x0, 0x1, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000010c0))
r4 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000100)=ANY=[@ANYRES32=r5, @ANYRES32=r4, @ANYBLOB='&'], 0x10)
r6 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
connect$inet6(r6, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r5}, &(0x7f0000000000), &(0x7f0000000080)=r3}, 0x20)
truncate(&(0x7f0000000940)='./file1\x00', 0x2fffffd)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xe3aa6ea)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)

16m22.494003781s ago: executing program 4 (id=636):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_IO(r0, 0x2285, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
write$sndseq(r1, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @quote}], 0x38)
write$sndseq(r1, &(0x7f0000000200)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x0, 0x0}}, {0x0, 0x0, 0x0, 0x20, @time, {}, {}, @time=@time}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @control}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @connect}, {0x0, 0x0, 0x0, 0x0, @time, {0xfc}, {0xf6}, @raw8={"448cc880fe353ca0f2c2e953"}}, {0x0, 0x0, 0x0, 0x0, @time, {0xfd}, {}, @connect={{0x0, 0xff}}}], 0xc4)
write$sndseq(r1, &(0x7f0000000640)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @addr}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @connect}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @connect}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @control={0x6, 0x7fff, 0x8}}, {0x0, 0x0, 0x0, 0x0, @time={0xffffff81}, {}, {}, @time=@time}], 0xa8)

16m21.745576965s ago: executing program 4 (id=638):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_open_dev$sndmidi(0x0, 0x2, 0x141102)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60140, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x83, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x4, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16m19.16188873s ago: executing program 4 (id=640):
socket$kcm(0x2b, 0x1, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000100)={0x4, <r3=>0xffffffffffffffff})
ioctl$KVM_HAS_DEVICE_ATTR(r3, 0x4018aee3, &(0x7f0000000300)=@attr_other={0x0, 0x3, 0xaf8, 0x0})
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101041)
write$sndseq(r4, &(0x7f0000001080)=[{0x41, 0x0, 0x3, 0xfd, @time={0x0, 0x3}, {0x0, 0x1}, {0xf}, @raw8={"80a9d4ba7408faaebe04c3c6"}}, {0x5, 0xf, 0xfd, 0xfe, @time={0x9, 0x9}, {0x3}, {0xfe, 0x1}, @time=@tick=0xe2}], 0x38)
fcntl$getownex(r2, 0x10, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x20)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000080)={[{@quota}, {@delalloc}, {@data_err_ignore}, {@debug}, {@usrjquota}, {@bsdgroups}]}, 0x1, 0x4e8, &(0x7f00000016c0)="$eJzs3M9vFGUfAPDvbLu0wMtLRSQBUQtobExsoaBw8IKJiQdNjHiQY9MWUlnA0B6ENLIkBs8k3o1H400Tr3o0nvwD8ODBxJAQ5QJ4WjO7M9vt/uh2S2nT7ueTLDzP7PPM8zwz88w+M09nAuhbo+k/ScT/IuJuROytRZcnGK399+jB4vTjB4vTUa5Uzv2dVNM9TOOZPN/uLDJWiCh8kTStsGb++o1LU6XS7LUoV+MTC5c/nZi/fuP1uctTF2cvzl6ZPHPm1MkTp9+cfKM563DXRrUpL23Xw0OfXz188N3zd96fHmxeWWM7Ospz/VPumjTybdvBK43r2wb2NIST1nbd3NDKsGrD2WFYTPv/Yuno+c2uELBhKpVKZajz1+VKs1stS4AtK4nNrgGwOfIf+vT6N//UlhQ3Yvix6e6frV0APXywWLkZMf2o3v7BKGRpik3Xt6kVxkw9GY2Ij8v/fp1+YqX7EH+sU4EAQN/7+Ww2DEyiafxXiAMN6f6fzaGMRMQzEbEvIp6NiP0R8VzEsrTLJBGVFcrf37ygXv4P2SxC4d5a27Ya6fjvrWxuK/9k5eZJRgay2J6IfMA8ezzbJmNRHLowV5o90WH9O7qU3zj+Sz9p+flYMKvHvcGmwebM1MLU2lrb6v6tiEODze1PBtMdl0/jJBFxMCIO9bDekYbw3GvfHq5Hmi4rure/qtJmSm9d5s8q30S8Wtv/5Vi2/5dKTBrnJwst85MTw1GaPT6RHgXH25bx62+3P+hUftf2//hnc5Z3Tv907kmbXZfu/10Nx3/k87dL7R9JIpL6fO18RGWgtzJu//5ldb2jx1q/W+vxvyP5qBrO+9dnUwsL105E7Ejea10+uZQ3j+fp0/aPHWvf//dledIt8XxEpAfxCxHxYsRAXvcjEXE0Ito0re6Xt1/+pNN3qzz+n5q0/TNtz3/L9v/SfP0qA3nmdMnApSN3H3c4eWTt37vy/j9VDY1lS9qf/5Jlp4jV1vTJth4AAABsDYWo/u1/YbweLhTGx2v3gPbHrkLp6vzCSxFxZab2jMBIFAsX5kqz+Q25kSgm+f3PkYb4ZFP8ZHbf+KuBndX4+PTV0sxmNx763O5qn09a+n/qrx7v8wJb0DZ6Dg3oUbf+f+DOBlUE2HB+/6F/NfT/Tm+2KPtLGdie/P5D/2rX/2/Gdys+u+CcAVtfRV+GvrZy/+/+vk1g6xqMD+vh6mPPbZ+2BbYj43/oS70+199boDLU/qvhaPPGgOGnU42dbcralEA6slrHFRYjYnWJd66liHwI2PkND4XeVjgUrV8NxEq5kvbvcYiIcsdc6VbpWp+LB9b94M/fibLeh833S/20uMrd/aQB1/sAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMC28l8AAAD//w1dzgU=")
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000040), 0x208e24b)
fdatasync(r5)

16m1.799301681s ago: executing program 35 (id=640):
socket$kcm(0x2b, 0x1, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000100)={0x4, <r3=>0xffffffffffffffff})
ioctl$KVM_HAS_DEVICE_ATTR(r3, 0x4018aee3, &(0x7f0000000300)=@attr_other={0x0, 0x3, 0xaf8, 0x0})
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101041)
write$sndseq(r4, &(0x7f0000001080)=[{0x41, 0x0, 0x3, 0xfd, @time={0x0, 0x3}, {0x0, 0x1}, {0xf}, @raw8={"80a9d4ba7408faaebe04c3c6"}}, {0x5, 0xf, 0xfd, 0xfe, @time={0x9, 0x9}, {0x3}, {0xfe, 0x1}, @time=@tick=0xe2}], 0x38)
fcntl$getownex(r2, 0x10, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x20)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000080)={[{@quota}, {@delalloc}, {@data_err_ignore}, {@debug}, {@usrjquota}, {@bsdgroups}]}, 0x1, 0x4e8, &(0x7f00000016c0)="$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")
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000040), 0x208e24b)
fdatasync(r5)

2m17.083967614s ago: executing program 6 (id=1097):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
fsopen(0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60140, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}]}, 0x0)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r4, 0x84, 0x83, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8)
r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2)
ioctl$KVM_SET_MP_STATE(r6, 0x4004ae99, &(0x7f0000000100)=0x3)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x4, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
sendmsg$NL802154_CMD_GET_INTERFACE(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x20, r1, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x80)

2m11.305855104s ago: executing program 6 (id=1102):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
fsopen(0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60140, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}]}, 0x0)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r4, 0x84, 0x83, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8)
r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200))
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2)
ioctl$KVM_SET_MP_STATE(r6, 0x4004ae99, &(0x7f0000000100)=0x3)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x4, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, &(0x7f0000000380)={"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"})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
sendmsg$NL802154_CMD_GET_INTERFACE(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x20, r1, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x80)

2m7.956422734s ago: executing program 6 (id=1106):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f00000004c0)={0x26, 'aead\x00', 0x0, 0x0, 'gcm(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r4 = accept4(r3, 0x0, 0x0, 0x80800)
setsockopt$sock_int(r4, 0x1, 0x7, &(0x7f00000014c0)=0x10000b, 0x4)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)

2m5.651874579s ago: executing program 6 (id=1107):
syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
socket$netlink(0x10, 0x3, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeeb, 0x8031, 0xffffffffffffffff, 0xc36e5000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x80044940, &(0x7f0000000340))
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0xfe, 0x7fffffff}]})
close_range(r3, 0xffffffffffffffff, 0x0)

2m1.739375781s ago: executing program 6 (id=1110):
socket$kcm(0x2b, 0x1, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000100)={0x4, <r3=>0xffffffffffffffff})
ioctl$KVM_HAS_DEVICE_ATTR(r3, 0x4018aee3, &(0x7f0000000300)=@attr_other={0x0, 0x3, 0xaf8, 0x0})
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101041)
write$sndseq(r4, &(0x7f0000001080)=[{0x41, 0x0, 0x3, 0xfd, @time={0x0, 0x3}, {0x0, 0x1}, {0xf}, @raw8={"80a9d4ba7408faaebe04c3c6"}}, {0x5, 0xf, 0xfd, 0xfe, @time={0x9, 0x9}, {0x3}, {0xfe, 0x1}, @time=@tick=0xe2}], 0x38)
fcntl$getownex(r2, 0x10, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x20)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1/file4\x00', 0x1c0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000080)={[{@quota}, {@delalloc}, {@data_err_ignore}, {@debug}, {@usrjquota}, {@bsdgroups}]}, 0x1, 0x4e8, &(0x7f00000016c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)

1m54.266183028s ago: executing program 6 (id=1114):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xb320a000)
pipe2(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setrlimit(0x9, &(0x7f0000000040)={0x7, 0x67})
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
mremap(&(0x7f0000532000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000190000/0x1000)=nil)
mlock(&(0x7f0000626000/0x5000)=nil, 0x5000)
r3 = socket(0x2b, 0x1, 0x1)
setsockopt$inet6_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
memfd_create(&(0x7f00000001c0)='\x02A\xbbL\xeb\xbd]\x9c\x9aU\x9c\xcbb\xcc\xfa0\xf5JoeN\x8c\x86\xfa\xb3\x0e&\xfe\xa8NF\x96\t\x01\xceJ\xc3\x8f+\xe8\xa7v\x80\xfaj\xfe\x11\x0e\xed6\x00\x00\x00\x00\x00\x00\f\xd7\xe7\xdb?\xf3\xd9\xa3\xd6a\x1a\xfch}7K\xca\x90KA\x02\xd6\x94\xf0S\xcc\xd0\x14\x8c\xb3!\xa8\xeajy@\xa0\xdc~\xea\xfd\xfb\x12\x88Xa\x16\xcb\xe4\x03\x1e\xac\xf2\xe9\xf1<', 0x3)
open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0xc369d000)

1m35.550995283s ago: executing program 36 (id=1114):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xb320a000)
pipe2(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setrlimit(0x9, &(0x7f0000000040)={0x7, 0x67})
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
mremap(&(0x7f0000532000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000190000/0x1000)=nil)
mlock(&(0x7f0000626000/0x5000)=nil, 0x5000)
r3 = socket(0x2b, 0x1, 0x1)
setsockopt$inet6_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
memfd_create(&(0x7f00000001c0)='\x02A\xbbL\xeb\xbd]\x9c\x9aU\x9c\xcbb\xcc\xfa0\xf5JoeN\x8c\x86\xfa\xb3\x0e&\xfe\xa8NF\x96\t\x01\xceJ\xc3\x8f+\xe8\xa7v\x80\xfaj\xfe\x11\x0e\xed6\x00\x00\x00\x00\x00\x00\f\xd7\xe7\xdb?\xf3\xd9\xa3\xd6a\x1a\xfch}7K\xca\x90KA\x02\xd6\x94\xf0S\xcc\xd0\x14\x8c\xb3!\xa8\xeajy@\xa0\xdc~\xea\xfd\xfb\x12\x88Xa\x16\xcb\xe4\x03\x1e\xac\xf2\xe9\xf1<', 0x3)
open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0xc369d000)

33.542929087s ago: executing program 0 (id=1169):
socket$kcm(0x2b, 0x1, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000100)={0x4, <r3=>0xffffffffffffffff})
ioctl$KVM_HAS_DEVICE_ATTR(r3, 0x4018aee3, 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101041)
write$sndseq(r4, &(0x7f0000001080)=[{0x41, 0x0, 0x3, 0xfd, @time={0x0, 0x3}, {0x0, 0x1}, {0xf}, @raw8={"80a9d4ba7408faaebe04c3c6"}}, {0x5, 0xf, 0xfd, 0xfe, @time={0x9, 0x9}, {0x3}, {0xfe, 0x1}, @time=@tick=0xe2}], 0x38)
fcntl$getownex(r2, 0x10, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x20)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1/file4\x00', 0x1c0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000080)={[{@quota}, {@delalloc}, {@data_err_ignore}, {@debug}, {@usrjquota}, {@bsdgroups}]}, 0x1, 0x4e8, &(0x7f00000016c0)="$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")
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000040), 0x208e24b)
fdatasync(r5)

25.427343542s ago: executing program 8 (id=1171):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
fsopen(0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60140, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}]}, 0x0)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r4, 0x84, 0x83, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8)
r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2)
ioctl$KVM_SET_MP_STATE(r6, 0x4004ae99, &(0x7f0000000100)=0x3)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x4, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, &(0x7f0000000380)={"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"})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
sendmsg$NL802154_CMD_GET_INTERFACE(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x20, r1, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x80)

25.389972017s ago: executing program 0 (id=1172):
socket$kcm(0x2b, 0x1, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000100)={0x4, <r3=>0xffffffffffffffff})
ioctl$KVM_HAS_DEVICE_ATTR(r3, 0x4018aee3, &(0x7f0000000300)=@attr_other={0x0, 0x3, 0xaf8, 0x0})
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101041)
fcntl$getownex(r2, 0x10, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x20)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1/file4\x00', 0x1c0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000080)={[{@quota}, {@delalloc}, {@data_err_ignore}, {@debug}, {@usrjquota}, {@bsdgroups}]}, 0x1, 0x4e8, &(0x7f00000016c0)="$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")
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
fdatasync(r4)

24.834416075s ago: executing program 5 (id=1173):
socket$kcm(0x2b, 0x1, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000100)={0x4, <r3=>0xffffffffffffffff})
ioctl$KVM_HAS_DEVICE_ATTR(r3, 0x4018aee3, &(0x7f0000000300)=@attr_other={0x0, 0x3, 0xaf8, 0x0})
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101041)
write$sndseq(r4, &(0x7f0000001080)=[{0x41, 0x0, 0x3, 0xfd, @time={0x0, 0x3}, {0x0, 0x1}, {0xf}, @raw8={"80a9d4ba7408faaebe04c3c6"}}, {0x5, 0xf, 0xfd, 0xfe, @time={0x9, 0x9}, {0x3}, {0xfe, 0x1}, @time=@tick=0xe2}], 0x38)
fcntl$getownex(r2, 0x10, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1/file4\x00', 0x1c0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000080)={[{@quota}, {@delalloc}, {@data_err_ignore}, {@debug}, {@usrjquota}, {@bsdgroups}]}, 0x1, 0x4e8, &(0x7f00000016c0)="$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")
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
fdatasync(r5)

22.453780427s ago: executing program 8 (id=1174):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_IOAS_UNMAP$ALL(r0, 0x3b86, 0x0)
ioctl$IOMMU_TEST_OP_MD_CHECK_MAP(r0, 0x3ba0, 0x0)
ioctl$IOMMU_IOAS_UNMAP(r0, 0x3b86, 0x0)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f0000000980)={0x48, 0x5, r1, 0x0, <r2=>0x0, 0x1})
ioctl$IOMMU_IOAS_MAP(r0, 0x3b85, &(0x7f0000000a00)={0x28, 0x7, r1, 0x0, &(0x7f00000a0000)='LLLLLLLLLLLLLL', 0xe})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES(r0, 0x3ba0, &(0x7f0000000a40)={0x48, 0x7, r2, 0x0, 0x0, 0x0, 0x0, 0x1000})
close(r2)

21.794897118s ago: executing program 5 (id=1175):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
fsopen(0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60140, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}]}, 0x0)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r2, 0x84, 0x83, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
ioctl$KVM_SET_MP_STATE(r4, 0x4004ae99, &(0x7f0000000100)=0x3)
ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000380)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ffd3bf79a1f5c5dc34cf2645cbc11c4562d22db8780edc5daee171cc04d96d9ec2db07478f347edbd6424923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b000000fb354673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff0100f5620000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce78754182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f26df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132155fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe656c9c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})

19.803070291s ago: executing program 8 (id=1176):
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0, 0x23}], 0x2)
syz_io_uring_setup(0x49a, 0x0, 0x0, 0x0, &(0x7f0000000000))
r1 = io_uring_setup(0xf08, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x4000080)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x20, &(0x7f0000000000), 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000600)='./file0\x00', 0x0, &(0x7f0000000380)={[{@dioread_nolock}]}, 0x1, 0x5bc, &(0x7f0000001440)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x14b442, 0x2)
r2 = open(&(0x7f0000000140)='./file1\x00', 0x141242, 0x40)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
pwrite64(r2, &(0x7f0000000080)="16", 0xff8d, 0x8000c5d)

19.533381109s ago: executing program 0 (id=1177):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz1\x00', 0x200002, 0x0)
r1 = openat$cgroup_type(r0, &(0x7f0000000300), 0x2, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
write$cgroup_type(r1, 0x0, 0x0)
r2 = openat$cgroup_procs(r0, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r2, 0x0, 0x0)
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03", 0x3}], 0x1}, 0x0)
r3 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r4)
ioctl$IOCTL_GET_NCIDEV_IDX(r3, 0x0, &(0x7f00000000c0)=<r6=>0x0)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d80)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010426bd7000f8dbdf250200000008000100", @ANYRES32=r6], 0x1c}}, 0x4008054)
write$nci(r3, &(0x7f0000000300)=ANY=[@ANYBLOB='p\x00\t'], 0xc)
write$nci(r3, &(0x7f0000000040)=ANY=[@ANYBLOB="5001"], 0x14)
socket(0x10, 0x803, 0x0)

18.787974994s ago: executing program 5 (id=1178):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xb320a000)
pipe2(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setrlimit(0x9, &(0x7f0000000040)={0x7, 0x67})
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
mremap(&(0x7f0000532000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000190000/0x1000)=nil)
r3 = socket(0x2b, 0x1, 0x1)
setsockopt$inet6_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e5b, 0x80000000, @empty, 0x8}, 0x1c)
memfd_create(&(0x7f00000001c0)='\x02A\xbbL\xeb\xbd]\x9c\x9aU\x9c\xcbb\xcc\xfa0\xf5JoeN\x8c\x86\xfa\xb3\x0e&\xfe\xa8NF\x96\t\x01\xceJ\xc3\x8f+\xe8\xa7v\x80\xfaj\xfe\x11\x0e\xed6\x00\x00\x00\x00\x00\x00\f\xd7\xe7\xdb?\xf3\xd9\xa3\xd6a\x1a\xfch}7K\xca\x90KA\x02\xd6\x94\xf0S\xcc\xd0\x14\x8c\xb3!\xa8\xeajy@\xa0\xdc~\xea\xfd\xfb\x12\x88Xa\x16\xcb\xe4\x03\x1e\xac\xf2\xe9\xf1<', 0x3)
open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0xc369d000)

15.585276501s ago: executing program 0 (id=1179):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0, 0x23}], 0x2)
syz_io_uring_setup(0x49a, 0x0, 0x0, 0x0, &(0x7f0000000000))
r1 = io_uring_setup(0xf08, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x4000080)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x20, &(0x7f0000000000)=[r1], 0x1)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000600)='./file0\x00', 0x0, &(0x7f0000000380)={[{@dioread_nolock}]}, 0x1, 0x5bc, &(0x7f0000001440)="$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")
r2 = open(&(0x7f0000000140)='./file1\x00', 0x141242, 0x40)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
pwrite64(r2, &(0x7f0000000080)="16", 0xff8d, 0x8000c5d)

15.341420638s ago: executing program 8 (id=1180):
socket$kcm(0x2b, 0x1, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000100)={0x4, <r3=>0xffffffffffffffff})
ioctl$KVM_HAS_DEVICE_ATTR(r3, 0x4018aee3, &(0x7f0000000300)=@attr_other={0x0, 0x3, 0xaf8, 0x0})
r4 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x101041)
write$sndseq(r4, &(0x7f0000001080)=[{0x41, 0x0, 0x3, 0xfd, @time={0x0, 0x3}, {0x0, 0x1}, {0xf}, @raw8={"80a9d4ba7408faaebe04c3c6"}}, {0x5, 0xf, 0xfd, 0xfe, @time={0x9, 0x9}, {0x3}, {0xfe, 0x1}, @time=@tick=0xe2}], 0x38)
fcntl$getownex(r2, 0x10, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x20)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1/file4\x00', 0x1c0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000080)={[{@quota}, {@delalloc}, {@data_err_ignore}, {@debug}, {@usrjquota}, {@bsdgroups}]}, 0x1, 0x4e8, &(0x7f00000016c0)="$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")
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000040), 0x208e24b)
fdatasync(r5)

14.612852623s ago: executing program 5 (id=1181):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0, 0x23}], 0x2)
syz_io_uring_setup(0x49a, 0x0, 0x0, 0x0, &(0x7f0000000000))
io_uring_setup(0xf08, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x4000080)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000600)='./file0\x00', 0x0, &(0x7f0000000380)={[{@dioread_nolock}]}, 0x1, 0x5bc, &(0x7f0000001440)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x14b442, 0x2)
r1 = open(&(0x7f0000000140)='./file1\x00', 0x141242, 0x40)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
pwrite64(r1, &(0x7f0000000080)="16", 0xff8d, 0x8000c5d)

9.630190614s ago: executing program 0 (id=1182):
socket$kcm(0x2b, 0x1, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000100)={0x4, <r3=>0xffffffffffffffff})
ioctl$KVM_HAS_DEVICE_ATTR(r3, 0x4018aee3, &(0x7f0000000300)=@attr_other={0x0, 0x3, 0xaf8, 0x0})
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101041)
write$sndseq(r4, &(0x7f0000001080)=[{0x41, 0x0, 0x3, 0xfd, @time={0x0, 0x3}, {0x0, 0x1}, {0xf}, @raw8={"80a9d4ba7408faaebe04c3c6"}}, {0x5, 0xf, 0xfd, 0xfe, @time={0x9, 0x9}, {0x3}, {0xfe, 0x1}, @time=@tick=0xe2}], 0x38)
fcntl$getownex(r2, 0x10, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x20)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000080)={[{@quota}, {@delalloc}, {@data_err_ignore}, {@debug}, {@usrjquota}, {@bsdgroups}]}, 0x1, 0x4e8, &(0x7f00000016c0)="$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")
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
fdatasync(r5)

7.49636442s ago: executing program 8 (id=1183):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0, 0x23}], 0x2)
syz_io_uring_setup(0x49a, 0x0, 0x0, 0x0, &(0x7f0000000000))
r1 = io_uring_setup(0xf08, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x4000080)
io_uring_register$IORING_REGISTER_FILES(r1, 0x20, &(0x7f0000000000)=[r1], 0x1)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000600)='./file0\x00', 0x0, &(0x7f0000000380)={[{@dioread_nolock}]}, 0x1, 0x5bc, &(0x7f0000001440)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x14b442, 0x2)
r2 = open(&(0x7f0000000140)='./file1\x00', 0x141242, 0x40)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
pwrite64(r2, &(0x7f0000000080)="16", 0xff8d, 0x8000c5d)

7.047359332s ago: executing program 5 (id=1184):
socket$kcm(0x2b, 0x1, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000100)={0x4, <r3=>0xffffffffffffffff})
ioctl$KVM_HAS_DEVICE_ATTR(r3, 0x4018aee3, &(0x7f0000000300)=@attr_other={0x0, 0x3, 0xaf8, 0x0})
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101041)
write$sndseq(r4, &(0x7f0000001080)=[{0x41, 0x0, 0x3, 0xfd, @time={0x0, 0x3}, {0x0, 0x1}, {0xf}, @raw8={"80a9d4ba7408faaebe04c3c6"}}, {0x5, 0xf, 0xfd, 0xfe, @time={0x9, 0x9}, {0x3}, {0xfe, 0x1}, @time=@tick=0xe2}], 0x38)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x20)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1/file4\x00', 0x1c0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000080)={[{@quota}, {@delalloc}, {@data_err_ignore}, {@debug}, {@usrjquota}, {@bsdgroups}]}, 0x1, 0x4e8, &(0x7f00000016c0)="$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")
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
fdatasync(r5)

4.078108878s ago: executing program 0 (id=1185):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
fsopen(0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60140, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}]}, 0x0)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r4, 0x84, 0x83, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8)
r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2)
ioctl$KVM_SET_MP_STATE(r6, 0x4004ae99, &(0x7f0000000100)=0x3)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x4, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, &(0x7f0000000380)={"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"})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
sendmsg$NL802154_CMD_GET_INTERFACE(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x20, r1, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x80)

1.284812292s ago: executing program 8 (id=1186):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
fsopen(0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60140, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}]}, 0x0)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r2, 0x84, 0x83, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
ioctl$KVM_SET_MP_STATE(r4, 0x4004ae99, &(0x7f0000000100)=0x3)
ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000380)={"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"})

0s ago: executing program 5 (id=1187):
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x14b442, 0x2)
r0 = open(&(0x7f0000000140)='./file1\x00', 0x141242, 0x40)
pwrite64(r0, &(0x7f0000000080)="16", 0xff8d, 0x8000c5d)

kernel console output (not intermixed with test programs):

1761] SQUASHFS error: Failed to read block 0x0: -5
[ 1430.621795][T11761] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1430.629961][T11761] SQUASHFS error: Failed to read block 0x0: -5
[ 1430.662667][   T29] audit: type=1800 audit(1775864509.485:245): pid=11761 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.887" name="file2" dev="loop0" ino=3 res=0 errno=0
[ 1430.709229][T11694] bridge_slave_0: entered allmulticast mode
[ 1430.735085][T11694] bridge_slave_0: entered promiscuous mode
[ 1430.746781][   T29] audit: type=1800 audit(1775864509.505:246): pid=11761 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.887" name="file2" dev="loop0" ino=3 res=0 errno=0
[ 1430.828229][T11694] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1430.854293][T11694] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1430.875758][T11694] bridge_slave_1: entered allmulticast mode
[ 1430.897034][T11694] bridge_slave_1: entered promiscuous mode
[ 1431.013581][ T9290] Bluetooth: hci1: command tx timeout
[ 1431.275184][T11685] hsr_slave_0: entered promiscuous mode
[ 1431.292959][T11685] hsr_slave_1: entered promiscuous mode
[ 1431.621830][ T5976] hsr_slave_0: left promiscuous mode
[ 1431.636533][ T5976] hsr_slave_1: left promiscuous mode
[ 1431.648221][ T5976] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1431.667250][ T5976] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1431.709624][ T5976] hsr_slave_0: left promiscuous mode
[ 1431.722809][ T5976] hsr_slave_1: left promiscuous mode
[ 1431.739693][ T5976] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1431.750211][ T5976] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1432.425157][T11764] loop0: detected capacity change from 0 to 8
[ 1432.789753][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[ 1432.800729][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1432.802504][ T5976] team0 (unregistering): Port device team_slave_1 removed
[ 1432.859793][ T5976] team0 (unregistering): Port device team_slave_0 removed
[ 1433.488396][ T5976] team0 (unregistering): Port device team_slave_1 removed
[ 1433.514748][ T5976] team0 (unregistering): Port device team_slave_0 removed
[ 1433.571001][T11766] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1433.598640][T11766] SQUASHFS error: Failed to read block 0x0: -5
[ 1433.646395][T11766] SQUASHFS error: Failed to read block 0xff: -5
[ 1433.684828][T11766] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1433.692897][T11766] SQUASHFS error: Failed to read block 0x0: -5
[ 1433.773822][   T29] audit: type=1800 audit(1775864512.625:247): pid=11766 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.888" name="file2" dev="loop0" ino=3 res=0 errno=0
[ 1434.110133][T11701] team0: Port device team_slave_0 added
[ 1434.139185][T11694] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1434.237424][T11701] team0: Port device team_slave_1 added
[ 1434.314929][T11694] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1434.540096][T11730] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1434.553827][T11730] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1434.561493][T11730] bridge_slave_0: entered allmulticast mode
[ 1434.575300][T11730] bridge_slave_0: entered promiscuous mode
[ 1434.595656][T11701] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1434.607693][T11701] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1434.648056][T11701] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1434.749631][T11730] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1434.757585][T11730] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1434.767618][T11730] bridge_slave_1: entered allmulticast mode
[ 1434.777785][T11730] bridge_slave_1: entered promiscuous mode
[ 1434.792363][T11701] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1434.808903][T11701] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1434.839922][T11701] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1434.882534][T11694] team0: Port device team_slave_0 added
[ 1434.900440][T11694] team0: Port device team_slave_1 added
[ 1435.237182][T11730] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1435.269460][T11730] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1435.285099][T11694] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1435.297570][T11694] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1435.330978][T11694] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1435.446228][T11694] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1435.455488][T11694] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1435.498266][T11694] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1435.755203][T11701] hsr_slave_0: entered promiscuous mode
[ 1435.765303][T11701] hsr_slave_1: entered promiscuous mode
[ 1435.774123][T11701] debugfs: 'hsr0' already exists in 'hsr'
[ 1435.780010][T11701] Cannot create hsr debugfs directory
[ 1435.800195][T11730] team0: Port device team_slave_0 added
[ 1435.899537][T11730] team0: Port device team_slave_1 added
[ 1436.265586][T11730] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1436.272709][T11730] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1436.309467][T11730] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1436.340774][T11694] hsr_slave_0: entered promiscuous mode
[ 1436.350782][T11694] hsr_slave_1: entered promiscuous mode
[ 1436.359556][T11694] debugfs: 'hsr0' already exists in 'hsr'
[ 1436.366054][T11694] Cannot create hsr debugfs directory
[ 1436.620750][T11730] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1436.720195][T11730] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1436.897562][T11730] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1439.001209][T11730] hsr_slave_0: entered promiscuous mode
[ 1439.015575][T11730] hsr_slave_1: entered promiscuous mode
[ 1439.024236][T11730] debugfs: 'hsr0' already exists in 'hsr'
[ 1439.030136][T11730] Cannot create hsr debugfs directory
[ 1439.199650][T11777] loop0: detected capacity change from 0 to 512
[ 1439.224903][T11777] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1439.243822][T11777] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[ 1439.282041][T11777] EXT4-fs (loop0): 1 truncate cleaned up
[ 1439.315295][T11777] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1439.580602][T11685] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1439.731883][T11685] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1439.781142][T11685] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1439.956162][T11685] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1441.001053][ T5976] bridge_slave_1: left allmulticast mode
[ 1441.007088][ T5976] bridge_slave_1: left promiscuous mode
[ 1441.016482][ T5976] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1441.032464][ T5976] bridge_slave_0: left allmulticast mode
[ 1441.039186][ T5976] bridge_slave_0: left promiscuous mode
[ 1441.045483][ T5976] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1441.734142][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1442.160602][ T5976] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1442.193976][ T5976] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1442.210482][ T5976] bond0 (unregistering): Released all slaves
[ 1442.526478][ T5976] hsr_slave_0: left promiscuous mode
[ 1442.536261][ T5976] hsr_slave_1: left promiscuous mode
[ 1442.557215][ T5976] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1442.567676][ T5976] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1445.006478][ T9290] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1445.055665][ T5976] team0 (unregistering): Port device team_slave_1 removed
[ 1445.135984][ T5976] team0 (unregistering): Port device team_slave_0 removed
[ 1446.959549][T11701] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1447.125850][T11701] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1447.522240][T11701] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1447.556037][T11701] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1447.905381][T11685] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1448.115523][T11685] 8021q: adding VLAN 0 to HW filter on device team0
[ 1448.234372][ T1014] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1448.241848][ T1014] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1448.529107][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1448.536792][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1450.028536][T11807] loop0: detected capacity change from 0 to 8
[ 1450.091665][T11701] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1450.401262][T11701] 8021q: adding VLAN 0 to HW filter on device team0
[ 1450.588635][T11730] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1450.652039][ T5976] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1450.659919][ T5976] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1450.715903][ T5976] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1450.723463][ T5976] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1450.854508][T11730] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1450.907979][T11730] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1451.036106][T11730] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1451.360576][T11694] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1451.461522][T11694] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1451.516251][T11694] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1451.568371][T11694] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1451.781142][T11685] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1452.185300][T11827] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1452.195966][T11827] SQUASHFS error: Failed to read block 0x0: -5
[ 1452.202628][T11827] SQUASHFS error: Failed to read block 0xff: -5
[ 1452.209733][T11827] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1452.217875][T11827] SQUASHFS error: Failed to read block 0x0: -5
[ 1452.257423][   T29] audit: type=1800 audit(1775864531.095:248): pid=11827 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.895" name="file2" dev="loop0" ino=3 res=0 errno=0
[ 1453.112363][T11730] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1453.484633][T11730] 8021q: adding VLAN 0 to HW filter on device team0
[ 1453.648103][T11694] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1453.748193][ T1014] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1453.755763][ T1014] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1454.086035][ T1014] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1454.093600][ T1014] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1454.312897][T11694] 8021q: adding VLAN 0 to HW filter on device team0
[ 1455.399334][ T1014] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1455.406884][ T1014] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1455.580823][ T1014] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1455.588386][ T1014] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1456.145088][T11701] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1457.175653][T11685] veth0_vlan: entered promiscuous mode
[ 1457.319322][T11685] veth1_vlan: entered promiscuous mode
[ 1457.720215][T11685] veth0_macvtap: entered promiscuous mode
[ 1457.769546][T11730] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1457.830232][T11685] veth1_macvtap: entered promiscuous mode
[ 1458.137521][T11685] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1458.198950][T11694] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1458.325761][T11685] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1458.483287][ T5976] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1458.503225][ T6466] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1458.512272][ T6466] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1458.552665][ T6466] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1458.689822][T11701] veth0_vlan: entered promiscuous mode
[ 1458.931840][T11847] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[ 1458.942343][T11701] veth1_vlan: entered promiscuous mode
[ 1459.492000][T11701] veth0_macvtap: entered promiscuous mode
[ 1459.750238][T11701] veth1_macvtap: entered promiscuous mode
[ 1459.820811][T11902] loop0: detected capacity change from 0 to 512
[ 1459.897968][T11902] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1459.985469][T11902] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[ 1460.081120][T11902] EXT4-fs (loop0): 1 truncate cleaned up
[ 1460.146967][T11902] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1460.189345][T11701] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1460.943878][T11730] veth0_vlan: entered promiscuous mode
[ 1460.974806][T11701] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1461.572919][T11730] veth1_vlan: entered promiscuous mode
[ 1461.624563][ T6004] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1461.680223][ T6004] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1461.816812][ T6004] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1461.843731][ T6004] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1462.709813][T11694] veth0_vlan: entered promiscuous mode
[ 1462.740275][T11730] veth0_macvtap: entered promiscuous mode
[ 1462.938995][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1462.956020][T11730] veth1_macvtap: entered promiscuous mode
[ 1463.119036][T11694] veth1_vlan: entered promiscuous mode
[ 1463.293750][T11730] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1463.368953][T11923] loop0: detected capacity change from 0 to 512
[ 1463.430496][T11730] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1463.456238][T11923] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1463.584577][T11923] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[ 1463.610183][ T1014] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1463.660579][ T1014] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1463.696225][T11923] EXT4-fs (loop0): 1 truncate cleaned up
[ 1463.702963][   T12] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1463.769080][T11923] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1463.808534][   T53] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1464.012189][T11694] veth0_macvtap: entered promiscuous mode
[ 1464.301227][T11694] veth1_macvtap: entered promiscuous mode
[ 1465.239276][T11694] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1465.437514][T11694] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1465.795084][ T1014] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1465.857983][ T1014] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1465.953494][ T1014] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1466.028682][ T1014] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1466.575392][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1467.553597][T11952] loop0: detected capacity change from 0 to 512
[ 1467.721702][T11952] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1467.856379][T11952] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[ 1467.889197][T11952] System zones: 1-2, 4-12, 8-8
[ 1467.993638][T11952] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.900: iget: bad i_size value: 38620345925642
[ 1468.068067][T11952] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1468.070925][T11952] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.900: couldn't read orphan inode 15 (err -117)
[ 1468.080392][    C0] EXT4-fs (loop0): error count since last fsck: 1
[ 1468.080481][    C0] EXT4-fs (loop0): initial error at time 1775864546: ext4_orphan_get:1397: inode 15
[ 1468.080636][    C0] EXT4-fs (loop0): last error at time 1775864546: ext4_orphan_get:1397: inode 15
[ 1468.352525][T11952] loop0: lost filesystem error report for type 5 error -117
[ 1468.356816][T11952] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1468.616192][T11955] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.900: bg 0: block 5: invalid block bitmap
[ 1468.709340][T11955] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 148 with error 28
[ 1468.799098][T11955] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 1468.799098][T11955] 
[ 1468.960324][T11955] EXT4-fs (loop0): Total free blocks count 0
[ 1468.973208][T11955] EXT4-fs (loop0): Free/Dirty block details
[ 1468.993862][T11955] EXT4-fs (loop0): free_blocks=0
[ 1469.044214][T11955] EXT4-fs (loop0): dirty_blocks=152
[ 1469.134296][T11955] EXT4-fs (loop0): Block reservation details
[ 1469.140443][T11955] EXT4-fs (loop0): i_reserved_data_blocks=152
[ 1469.525512][ T1099] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 148 with max blocks 4 with error 28
[ 1469.593366][T11403] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1469.650543][T11403] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1469.666141][ T5775] EXT4-fs warning (device loop0): ext4_evict_inode:195: inode #18: comm syz-executor: data will be lost
[ 1469.831772][ T5976] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1469.877487][ T5976] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1472.800683][T11403] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1472.873474][T11403] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1472.897154][T12005] loop0: detected capacity change from 0 to 8
[ 1473.108569][ T1014] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1473.134212][ T1014] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1474.993744][T12020] loop8: detected capacity change from 0 to 512
[ 1476.065234][T12020] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1477.421495][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1478.127179][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1478.211784][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1478.580742][T12044] loop8: detected capacity change from 0 to 512
[ 1478.627100][T12044] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1478.716477][ T5976] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1478.776928][ T5976] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1479.049317][T12044] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[ 1481.263777][T12044] EXT4-fs (loop8): 1 truncate cleaned up
[ 1481.516973][T12044] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1481.964403][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1483.527606][T12070] loop5: detected capacity change from 0 to 512
[ 1483.618301][T12070] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1483.634773][ T7927] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1483.675323][ T7927] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1483.695825][ T7927] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1483.715923][ T7927] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1483.727867][ T7927] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1483.782745][T12070] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[ 1483.825127][T12070] EXT4-fs (loop5): 1 truncate cleaned up
[ 1483.832941][T12070] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1485.914967][ T7927] Bluetooth: hci5: command tx timeout
[ 1487.677275][T11685] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1487.727753][T12054] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1487.967550][ T7927] Bluetooth: hci5: command tx timeout
[ 1488.283669][T12054] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1488.599922][T12102] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1489.989886][T12109] loop6: detected capacity change from 0 to 512
[ 1489.995581][T12111] loop0: detected capacity change from 0 to 512
[ 1490.010934][T12111] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1490.020772][T12109] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1490.043374][ T7927] Bluetooth: hci5: command tx timeout
[ 1490.054673][T12109] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[ 1490.072142][T12111] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[ 1490.096671][T12054] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1490.126285][T12109] EXT4-fs (loop6): 1 truncate cleaned up
[ 1490.138868][T12111] EXT4-fs (loop0): 1 truncate cleaned up
[ 1490.147141][T12109] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1490.171365][T12111] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1492.305079][ T7927] Bluetooth: hci5: command tx timeout
[ 1493.352788][T11730] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1493.405398][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1493.474585][T12054] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1494.247459][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[ 1494.282204][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1502.434768][T12160] loop0: detected capacity change from 0 to 512
[ 1502.445670][T12160] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1502.459917][T12160] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[ 1502.466956][T12158] loop6: detected capacity change from 0 to 8
[ 1502.482525][T12160] EXT4-fs (loop0): 1 truncate cleaned up
[ 1502.522853][T12160] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1502.708009][T12163] loop5: detected capacity change from 0 to 512
[ 1503.256508][T12163] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1503.994176][T12170] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1504.002257][T12170] SQUASHFS error: Failed to read block 0x0: -5
[ 1504.009020][T12170] SQUASHFS error: Failed to read block 0xff: -5
[ 1504.015900][T12170] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1504.023968][T12170] SQUASHFS error: Failed to read block 0x0: -5
[ 1504.585779][   T29] audit: type=1800 audit(1775864582.895:249): pid=12170 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.926" name="file2" dev="loop6" ino=3 res=0 errno=0
[ 1504.629686][T12163] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[ 1505.410860][T12163] EXT4-fs (loop5): 1 truncate cleaned up
[ 1505.479121][T12163] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1505.664347][T12054] bridge_slave_1: left allmulticast mode
[ 1505.689098][T12054] bridge_slave_1: left promiscuous mode
[ 1505.734298][T12054] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1505.767465][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1506.058213][T12054] bridge_slave_0: left allmulticast mode
[ 1506.274039][T12054] bridge_slave_0: left promiscuous mode
[ 1506.310780][T12054] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1506.349715][T12179] loop8: detected capacity change from 0 to 512
[ 1506.361941][T11685] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1506.376635][T12179] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1506.435549][T12179] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[ 1506.447471][T12179] System zones: 1-2, 4-12, 8-8
[ 1506.455504][T12179] EXT4-fs error (device loop8): ext4_orphan_get:1397: inode #15: comm syz.8.931: iget: bad i_size value: 38620345925642
[ 1506.468525][T12179] loop8: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1506.473107][    C0] EXT4-fs (loop8): error count since last fsck: 1
[ 1506.488925][    C0] EXT4-fs (loop8): initial error at time 1775864585: ext4_orphan_get:1397: inode 15
[ 1506.498716][    C0] EXT4-fs (loop8): last error at time 1775864585: ext4_orphan_get:1397: inode 15
[ 1506.527312][T12179] EXT4-fs error (device loop8): ext4_orphan_get:1402: comm syz.8.931: couldn't read orphan inode 15 (err -117)
[ 1506.539314][T12179] loop8: lost filesystem error report for type 5 error -117
[ 1506.562287][T12179] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1506.656477][T12181] EXT4-fs error (device loop8): ext4_validate_block_bitmap:432: comm syz.8.931: bg 0: block 5: invalid block bitmap
[ 1506.769679][T12181] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 724 with error 28
[ 1506.813291][T12181] EXT4-fs (loop8): This should not happen!! Data will be lost
[ 1506.813291][T12181] 
[ 1506.843962][T12181] EXT4-fs (loop8): Total free blocks count 0
[ 1506.893315][T12181] EXT4-fs (loop8): Free/Dirty block details
[ 1506.920281][T12181] EXT4-fs (loop8): free_blocks=0
[ 1506.953858][T12181] EXT4-fs (loop8): dirty_blocks=744
[ 1507.061261][T12181] EXT4-fs (loop8): Block reservation details
[ 1507.081502][T12185] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1507.477285][T12181] EXT4-fs (loop8): i_reserved_data_blocks=744
[ 1508.936781][ T1099] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 724 with max blocks 20 with error 28
[ 1508.985850][T11701] EXT4-fs warning (device loop8): ext4_evict_inode:195: inode #18: comm syz-executor: data will be lost
[ 1512.155309][ T9290] Bluetooth: hci3: sending frame failed (-49)
[ 1512.162545][ T7927] Bluetooth: hci3: Opcode 0x1003 failed: -49
[ 1512.449435][T12054] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1512.464664][T12207] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1512.834703][T12054] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1512.852917][T12054] bond0 (unregistering): Released all slaves
[ 1513.251096][T12068] chnl_net:caif_netlink_parms(): no params data found
[ 1513.618982][T12054] hsr_slave_0: left promiscuous mode
[ 1513.753221][T12054] hsr_slave_1: left promiscuous mode
[ 1513.780704][T12054] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1513.818726][T12054] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1513.848810][T12054] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1513.898442][T12054] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1514.109701][T12230] loop5: detected capacity change from 0 to 512
[ 1514.117639][T12054] veth1_macvtap: left promiscuous mode
[ 1514.132049][T12230] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1514.139051][T12054] veth0_macvtap: left promiscuous mode
[ 1514.145139][T12054] veth1_vlan: left promiscuous mode
[ 1514.150844][T12230] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[ 1514.150863][T12054] veth0_vlan: left promiscuous mode
[ 1514.276990][T12230] EXT4-fs (loop5): 1 truncate cleaned up
[ 1514.336194][T12230] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1514.551965][T12238] loop6: detected capacity change from 0 to 512
[ 1514.610340][T12238] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1514.712329][T12238] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[ 1514.816772][T12238] EXT4-fs (loop6): 1 truncate cleaned up
[ 1514.885240][T12238] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1517.579745][T12223] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[ 1518.060509][T11730] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1518.089419][T11685] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1518.727393][T12259] loop6: detected capacity change from 0 to 512
[ 1518.765041][T12259] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1518.791294][T12265] loop0: detected capacity change from 0 to 512
[ 1518.817219][T12259] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[ 1518.825715][T12259] System zones: 1-2, 4-12, 8-8
[ 1518.841860][T12259] EXT4-fs error (device loop6): ext4_orphan_get:1397: inode #15: comm syz.6.943: iget: bad i_size value: 38620345925642
[ 1518.857389][T12259] loop6: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1518.863139][    C1] EXT4-fs (loop6): error count since last fsck: 1
[ 1518.879079][    C1] EXT4-fs (loop6): initial error at time 1775864597: ext4_orphan_get:1397: inode 15
[ 1518.888809][    C1] EXT4-fs (loop6): last error at time 1775864597: ext4_orphan_get:1397: inode 15
[ 1518.898696][T12259] EXT4-fs error (device loop6): ext4_orphan_get:1402: comm syz.6.943: couldn't read orphan inode 15 (err -117)
[ 1518.910740][T12259] loop6: lost filesystem error report for type 5 error -117
[ 1518.927856][T12259] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1519.116475][T12265] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1519.168204][T12265] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[ 1519.168745][T12268] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.943: bg 0: block 5: invalid block bitmap
[ 1519.219252][T12261] loop5: detected capacity change from 0 to 512
[ 1519.432613][T12261] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1519.450861][T12268] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1572 with error 28
[ 1519.504276][T12265] EXT4-fs (loop0): 1 truncate cleaned up
[ 1519.557043][T12265] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1519.618042][T12268] EXT4-fs (loop6): This should not happen!! Data will be lost
[ 1519.618042][T12268] 
[ 1519.642265][T12261] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[ 1520.133477][T12268] EXT4-fs (loop6): Total free blocks count 0
[ 1520.140274][T12261] System zones: 1-2, 4-12, 8-8
[ 1520.160876][T12268] EXT4-fs (loop6): Free/Dirty block details
[ 1521.143747][T12268] EXT4-fs (loop6): free_blocks=0
[ 1521.575979][T12261] EXT4-fs error (device loop5): ext4_orphan_get:1397: inode #15: comm syz.5.942: iget: bad i_size value: 38620345925642
[ 1521.652237][T12268] EXT4-fs (loop6): dirty_blocks=1616
[ 1521.655857][T12261] loop5: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1521.663200][    C1] EXT4-fs (loop5): error count since last fsck: 1
[ 1521.679041][    C1] EXT4-fs (loop5): initial error at time 1775864600: ext4_orphan_get:1397: inode 15
[ 1521.688698][    C1] EXT4-fs (loop5): last error at time 1775864600: ext4_orphan_get:1397: inode 15
[ 1521.740810][T12268] EXT4-fs (loop6): Block reservation details
[ 1521.784122][T12261] EXT4-fs error (device loop5): ext4_orphan_get:1402: comm syz.5.942: couldn't read orphan inode 15 (err -117)
[ 1521.799838][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1521.818885][T12268] EXT4-fs (loop6): i_reserved_data_blocks=1616
[ 1521.829118][T12261] loop5: lost filesystem error report for type 5 error -117
[ 1521.852252][T12261] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1522.370418][T12054] team0 (unregistering): Port device team_slave_1 removed
[ 1522.497519][T11685] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1522.958412][T12054] team0 (unregistering): Port device team_slave_0 removed
[ 1523.065684][T12282] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1523.617180][   T53] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 1572 with max blocks 44 with error 28
[ 1523.677877][T11730] EXT4-fs warning (device loop6): ext4_evict_inode:195: inode #18: comm syz-executor: data will be lost
[ 1523.946455][T12287] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1525.729054][T12296] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1529.292494][T12068] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1529.341631][T12068] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1529.404458][T12068] bridge_slave_0: entered allmulticast mode
[ 1529.461079][T12312] loop5: detected capacity change from 0 to 512
[ 1529.493993][T12068] bridge_slave_0: entered promiscuous mode
[ 1529.551565][T12312] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1529.558770][T12068] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1529.559161][T12068] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1529.758435][T12068] bridge_slave_1: entered allmulticast mode
[ 1529.845343][T12312] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[ 1530.083381][T12321] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1530.369556][T12068] bridge_slave_1: entered promiscuous mode
[ 1530.593612][T12312] EXT4-fs (loop5): 1 truncate cleaned up
[ 1530.601995][T12312] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1532.700089][T11685] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1532.884604][T12068] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1532.977145][T12068] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1533.298872][T12334] loop6: detected capacity change from 0 to 512
[ 1533.314175][T12336] loop5: detected capacity change from 0 to 512
[ 1533.323682][T12334] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1533.382822][T12336] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1533.397937][T12334] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[ 1533.407650][T12334] System zones: 1-2, 4-12, 8-8
[ 1533.425079][T12068] team0: Port device team_slave_0 added
[ 1533.443623][T12068] team0: Port device team_slave_1 added
[ 1533.449845][T12336] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[ 1533.475057][T12334] EXT4-fs error (device loop6): ext4_orphan_get:1397: inode #15: comm syz.6.957: iget: bad i_size value: 38620345925642
[ 1533.490163][T12334] loop6: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1533.493144][    C1] EXT4-fs (loop6): error count since last fsck: 1
[ 1533.509070][    C1] EXT4-fs (loop6): initial error at time 1775864612: ext4_orphan_get:1397: inode 15
[ 1533.518843][    C1] EXT4-fs (loop6): last error at time 1775864612: ext4_orphan_get:1397: inode 15
[ 1533.564993][T12334] EXT4-fs error (device loop6): ext4_orphan_get:1402: comm syz.6.957: couldn't read orphan inode 15 (err -117)
[ 1533.577168][T12334] loop6: lost filesystem error report for type 5 error -117
[ 1533.590300][T12334] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1533.679217][T12341] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.957: bg 0: block 5: invalid block bitmap
[ 1533.761821][T12336] EXT4-fs (loop5): 1 truncate cleaned up
[ 1533.853350][T12341] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 840 with error 28
[ 1533.936106][T12336] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1534.283875][T12068] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1534.290999][T12068] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1534.374968][T12341] EXT4-fs (loop6): This should not happen!! Data will be lost
[ 1534.374968][T12341] 
[ 1535.353624][T12341] EXT4-fs (loop6): Total free blocks count 0
[ 1535.810698][T12341] EXT4-fs (loop6): Free/Dirty block details
[ 1535.837362][T12068] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1535.893580][T12341] EXT4-fs (loop6): free_blocks=0
[ 1535.908592][T12068] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1535.927047][T12068] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1536.435815][T12341] EXT4-fs (loop6): dirty_blocks=864
[ 1536.441178][T12341] EXT4-fs (loop6): Block reservation details
[ 1537.413827][ T9290] Bluetooth: hci2: command 0x0406 tx timeout
[ 1537.420542][T12068] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1537.828893][T12341] EXT4-fs (loop6): i_reserved_data_blocks=864
[ 1537.928672][T12348] loop0: detected capacity change from 0 to 512
[ 1537.942826][T12348] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1537.989395][T12348] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[ 1537.997871][T12348] System zones: 1-2, 4-12, 8-8
[ 1538.013798][T12348] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.959: iget: bad i_size value: 38620345925642
[ 1538.026681][T12348] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1538.033135][    C1] EXT4-fs (loop0): error count since last fsck: 1
[ 1538.049109][    C1] EXT4-fs (loop0): initial error at time 1775864616: ext4_orphan_get:1397: inode 15
[ 1538.058965][    C1] EXT4-fs (loop0): last error at time 1775864616: ext4_orphan_get:1397: inode 15
[ 1538.068959][T12348] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.959: couldn't read orphan inode 15 (err -117)
[ 1538.081252][T12348] loop0: lost filesystem error report for type 5 error -117
[ 1538.088652][T12348] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1538.137141][T11685] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1538.275382][T12352] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.959: bg 0: block 5: invalid block bitmap
[ 1538.420468][T12352] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 656 with error 28
[ 1538.458961][T12352] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 1538.458961][T12352] 
[ 1538.525762][T12352] EXT4-fs (loop0): Total free blocks count 0
[ 1538.630549][T12352] EXT4-fs (loop0): Free/Dirty block details
[ 1538.684348][T12352] EXT4-fs (loop0): free_blocks=0
[ 1538.689755][T12352] EXT4-fs (loop0): dirty_blocks=672
[ 1538.829744][T12352] EXT4-fs (loop0): Block reservation details
[ 1538.960459][T12352] EXT4-fs (loop0): i_reserved_data_blocks=672
[ 1539.471503][   T13] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 840 with max blocks 24 with error 28
[ 1539.608358][   T13] EXT4-fs (loop6): This should not happen!! Data will be lost
[ 1539.608358][   T13] 
[ 1539.645751][   T13] EXT4-fs (loop6): Total free blocks count 0
[ 1539.670879][   T13] EXT4-fs (loop6): Free/Dirty block details
[ 1539.690743][   T13] EXT4-fs (loop6): free_blocks=0
[ 1539.703941][   T13] EXT4-fs (loop6): dirty_blocks=24
[ 1539.711130][   T13] EXT4-fs (loop6): Block reservation details
[ 1539.721434][   T13] EXT4-fs (loop6): i_reserved_data_blocks=24
[ 1539.855639][   T53] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 656 with max blocks 16 with error 28
[ 1539.926362][T11730] EXT4-fs warning (device loop6): ext4_evict_inode:195: inode #18: comm syz-executor: data will be lost
[ 1539.957575][ T5775] EXT4-fs warning (device loop0): ext4_evict_inode:195: inode #18: comm syz-executor: data will be lost
[ 1540.050359][T11730] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1540.990652][T12376] loop8: detected capacity change from 0 to 512
[ 1541.177642][T12376] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1541.495152][T12376] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[ 1541.946051][T12378] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1541.994164][T12376] EXT4-fs (loop8): 1 truncate cleaned up
[ 1542.001147][T12376] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1542.384035][ T9290] Bluetooth: hci4: command 0x0406 tx timeout
[ 1544.427057][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1545.526043][T11688] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1545.535231][T11688] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1545.545388][T11688] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1545.558564][T11688] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1545.575508][T11688] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1546.656347][T12405] loop0: detected capacity change from 0 to 512
[ 1546.834957][T12405] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1546.889714][T12212] bridge_slave_1: left allmulticast mode
[ 1547.061327][T12212] bridge_slave_1: left promiscuous mode
[ 1547.195019][T12405] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[ 1547.210437][T12405] System zones: 1-2, 4-12, 8-8
[ 1547.428386][T12212] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1547.463427][T12405] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.969: iget: bad i_size value: 38620345925642
[ 1547.476920][T12405] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1547.493150][    C0] EXT4-fs (loop0): error count since last fsck: 1
[ 1547.508983][    C0] EXT4-fs (loop0): initial error at time 1775864626: ext4_orphan_get:1397: inode 15
[ 1547.518706][    C0] EXT4-fs (loop0): last error at time 1775864626: ext4_orphan_get:1397: inode 15
[ 1547.630174][T12405] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.969: couldn't read orphan inode 15 (err -117)
[ 1547.644781][T12405] loop0: lost filesystem error report for type 5 error -117
[ 1547.693921][T10189] Bluetooth: hci1: command 0x0406 tx timeout
[ 1547.724119][T10189] Bluetooth: hci3: command tx timeout
[ 1547.751841][T12405] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1548.766465][T12212] bridge_slave_0: left allmulticast mode
[ 1548.794937][T12212] bridge_slave_0: left promiscuous mode
[ 1548.809326][T12212] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1548.858455][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1549.542139][T12418] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1549.934433][ T9290] Bluetooth: hci3: command tx timeout
[ 1550.154995][T12212] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1550.219523][T12212] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1550.328861][T12212] bond0 (unregistering): Released all slaves
[ 1550.573824][T12427] loop0: detected capacity change from 0 to 512
[ 1550.669417][T12427] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1550.754855][T12429] loop8: detected capacity change from 0 to 512
[ 1550.790908][T12429] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1550.826004][T12429] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[ 1550.834615][T12429] System zones: 1-2, 4-12, 8-8
[ 1550.841077][T12429] EXT4-fs error (device loop8): ext4_orphan_get:1397: inode #15: comm syz.8.974: iget: bad i_size value: 38620345925642
[ 1550.854327][T12429] loop8: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1550.855611][T12429] EXT4-fs error (device loop8): ext4_orphan_get:1402: comm syz.8.974: couldn't read orphan inode 15 (err -117)
[ 1550.864989][    C1] EXT4-fs (loop8): error count since last fsck: 1
[ 1550.865054][    C1] EXT4-fs (loop8): initial error at time 1775864629: ext4_orphan_get:1397: inode 15
[ 1550.865154][    C1] EXT4-fs (loop8): last error at time 1775864629: ext4_orphan_get:1397: inode 15
[ 1550.907566][T12429] loop8: lost filesystem error report for type 5 error -117
[ 1550.912336][T12429] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1551.099808][T12432] EXT4-fs error (device loop8): ext4_validate_block_bitmap:432: comm syz.8.974: bg 0: block 5: invalid block bitmap
[ 1551.153869][T12212] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1551.173667][T12432] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1492 with error 28
[ 1551.178860][T12427] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[ 1551.201325][T12212] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1551.266414][T12432] EXT4-fs (loop8): This should not happen!! Data will be lost
[ 1551.266414][T12432] 
[ 1551.350767][T12432] EXT4-fs (loop8): Total free blocks count 0
[ 1551.375001][T12427] EXT4-fs (loop0): 1 truncate cleaned up
[ 1551.919077][T12427] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1551.954402][T12432] EXT4-fs (loop8): Free/Dirty block details
[ 1551.963753][ T9290] Bluetooth: hci3: command tx timeout
[ 1552.893772][T12432] EXT4-fs (loop8): free_blocks=0
[ 1553.963395][T12432] EXT4-fs (loop8): dirty_blocks=1532
[ 1553.968829][T12432] EXT4-fs (loop8): Block reservation details
[ 1554.055727][T10189] Bluetooth: hci3: command tx timeout
[ 1554.206930][ T9290] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1554.752645][T12212] team0 (unregistering): Port device team_slave_1 removed
[ 1554.841184][T12432] EXT4-fs (loop8): i_reserved_data_blocks=1532
[ 1555.455771][T12212] team0 (unregistering): Port device team_slave_0 removed
[ 1555.642807][T12445] loop5: detected capacity change from 0 to 512
[ 1555.676826][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[ 1555.685192][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1555.728845][T12445] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1555.761315][T12445] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[ 1555.774746][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1555.888718][T12445] EXT4-fs (loop5): 1 truncate cleaned up
[ 1555.996851][T12445] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1559.492878][T12054] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 1492 with max blocks 40 with error 28
[ 1559.535853][T11685] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1559.603720][T12054] EXT4-fs (loop8): This should not happen!! Data will be lost
[ 1559.603720][T12054] 
[ 1559.637579][T12054] EXT4-fs (loop8): Total free blocks count 0
[ 1560.253363][T12054] EXT4-fs (loop8): Free/Dirty block details
[ 1560.363897][T12054] EXT4-fs (loop8): free_blocks=0
[ 1560.457501][T12054] EXT4-fs (loop8): dirty_blocks=40
[ 1560.542078][T12054] EXT4-fs (loop8): Block reservation details
[ 1560.694814][T12054] EXT4-fs (loop8): i_reserved_data_blocks=40
[ 1560.985168][T11701] EXT4-fs warning (device loop8): ext4_evict_inode:195: inode #18: comm syz-executor: data will be lost
[ 1562.198642][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1563.161960][T12475] loop0: detected capacity change from 0 to 512
[ 1563.552311][T12475] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1563.866644][T12475] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[ 1564.494258][T12475] EXT4-fs (loop0): 1 truncate cleaned up
[ 1564.502024][T12475] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1565.056320][T12391] chnl_net:caif_netlink_parms(): no params data found
[ 1566.998465][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1567.555369][T12485] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[ 1569.475931][T12512] loop6: detected capacity change from 0 to 512
[ 1569.990867][T12512] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1570.102940][T12512] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[ 1570.723581][T12512] EXT4-fs (loop6): 1 truncate cleaned up
[ 1570.845037][T12512] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1570.967684][T12391] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1571.133896][T12391] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1571.141586][T12391] bridge_slave_0: entered allmulticast mode
[ 1571.484342][T12391] bridge_slave_0: entered promiscuous mode
[ 1571.606334][T12391] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1571.629294][T12391] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1571.927891][T12391] bridge_slave_1: entered allmulticast mode
[ 1571.956941][T12391] bridge_slave_1: entered promiscuous mode
[ 1571.963393][ T9290] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1571.963615][T10189] Bluetooth: hci5: command 0x1003 tx timeout
[ 1572.430899][T11730] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1572.535221][T12525] loop0: detected capacity change from 0 to 512
[ 1572.605913][T12525] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1572.661683][T12525] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[ 1572.782746][T12525] EXT4-fs (loop0): 1 truncate cleaned up
[ 1572.826032][T12525] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1572.836589][T12391] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1572.860498][T12391] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1576.209486][T12535] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -4
[ 1576.219311][T12535] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -4
[ 1576.240949][T12535] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[ 1576.704992][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1577.471309][T12391] team0: Port device team_slave_0 added
[ 1577.616604][T12391] team0: Port device team_slave_1 added
[ 1582.664819][T12560] loop5: detected capacity change from 0 to 512
[ 1582.803434][T12560] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1582.974938][T12391] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1583.057656][T12560] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[ 1583.152751][T12391] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1583.649374][T12560] EXT4-fs (loop5): 1 truncate cleaned up
[ 1583.827986][T12391] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1584.143582][T12560] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1584.446180][T12391] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1584.669217][T12391] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1585.184302][T12391] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1585.612532][ T5838] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[ 1585.914176][ T5838] usb 7-1: Using ep0 maxpacket: 16
[ 1586.237422][ T5838] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1586.500750][ T5838] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 0
[ 1588.016366][ T5838] usb 7-1: New USB device found, idVendor=04d8, idProduct=0a30, bcdDevice=ce.47
[ 1588.142125][ T5838] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1588.213404][ T5838] usb 7-1: Product: syz
[ 1588.217774][ T5838] usb 7-1: Manufacturer: syz
[ 1588.222534][ T5838] usb 7-1: SerialNumber: syz
[ 1588.430209][ T5838] usb 7-1: config 0 descriptor??
[ 1588.445025][T12391] hsr_slave_0: entered promiscuous mode
[ 1588.462480][T12391] hsr_slave_1: entered promiscuous mode
[ 1588.478662][T12391] debugfs: 'hsr0' already exists in 'hsr'
[ 1588.485338][T12391] Cannot create hsr debugfs directory
[ 1588.535118][ T5838] usb 7-1: can't set config #0, error -71
[ 1588.558806][T11685] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1588.606868][ T5838] usb 7-1: USB disconnect, device number 2
[ 1588.708048][T12578] loop8: detected capacity change from 0 to 512
[ 1588.786356][T12578] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1588.847393][T12578] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[ 1589.032428][T12578] EXT4-fs (loop8): 1 truncate cleaned up
[ 1589.116648][T12578] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1592.211664][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1592.243434][T12598] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1595.480554][T12611] loop8: detected capacity change from 0 to 512
[ 1595.560389][T12611] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1595.718702][T12611] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[ 1595.897680][T12611] EXT4-fs (loop8): 1 truncate cleaned up
[ 1595.999941][T12611] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1597.138104][T12623] loop5: detected capacity change from 0 to 8
[ 1598.170731][T12391] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1599.176919][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1599.530960][T12629] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1599.539145][T12629] SQUASHFS error: Failed to read block 0x0: -5
[ 1599.545934][T12629] SQUASHFS error: Failed to read block 0xff: -5
[ 1599.552769][T12629] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1599.560850][T12629] SQUASHFS error: Failed to read block 0x0: -5
[ 1599.571246][T12629] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1599.579339][T12629] SQUASHFS error: Failed to read block 0x0: -5
[ 1599.590816][T12629] SQUASHFS error: Failed to read block 0x6a4: -5
[ 1599.597397][T12629] SQUASHFS error: Unable to read metadata cache entry [6a2]
[ 1599.604889][T12629] SQUASHFS error: read_indexes: reading block [6a2:0]
[ 1599.611914][T12629] SQUASHFS error: Failed to read block 0x0: -5
[ 1599.618425][T12629] SQUASHFS error: Unable to read metadata cache entry [6a2]
[ 1599.625948][T12629] SQUASHFS error: read_indexes: reading block [6a2:0]
[ 1599.637345][T12629] SQUASHFS error: Failed to read block 0x0: -5
[ 1600.072136][T12391] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1600.108244][   T29] audit: type=1800 audit(1775864678.435:250): pid=12629 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1013" name="file2" dev="loop5" ino=3 res=0 errno=0
[ 1600.423963][   T29] audit: type=1800 audit(1775864678.455:251): pid=12629 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1013" name="file2" dev="loop5" ino=3 res=0 errno=0
[ 1600.495160][T12391] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1600.767153][T12391] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1604.568006][T12649] loop5: detected capacity change from 0 to 512
[ 1604.651642][T12649] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1604.702592][T12649] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[ 1604.886947][T12649] EXT4-fs (loop5): 1 truncate cleaned up
[ 1604.933777][T10879] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[ 1604.945775][T12649] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1605.573264][T10879] usb 7-1: Using ep0 maxpacket: 16
[ 1605.618247][T10879] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1606.587767][T10879] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 0
[ 1606.621225][T10879] usb 7-1: New USB device found, idVendor=04d8, idProduct=0a30, bcdDevice=ce.47
[ 1607.319059][T10879] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1607.366805][T11685] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1607.543284][T10879] usb 7-1: Product: syz
[ 1607.645863][T10879] usb 7-1: Manufacturer: syz
[ 1607.713688][T10879] usb 7-1: SerialNumber: syz
[ 1608.057744][T12656] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[ 1608.137760][T10879] usb 7-1: config 0 descriptor??
[ 1610.057130][T10879] usb 7-1: can't set config #0, error -71
[ 1610.079071][T10879] usb 7-1: USB disconnect, device number 3
[ 1610.229041][T10189] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1610.272770][T10189] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1610.288289][T10189] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1610.318346][T10189] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1610.336600][T10189] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1610.828911][T12677] loop6: detected capacity change from 0 to 512
[ 1610.886207][T12677] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1610.970618][T12677] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[ 1611.031473][T12677] EXT4-fs (loop6): 1 truncate cleaned up
[ 1611.115397][T12677] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1611.241067][T12679] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1613.485974][ T9290] Bluetooth: hci5: command tx timeout
[ 1614.078933][T11730] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1614.832279][T12696] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1615.629470][ T9290] Bluetooth: hci5: command tx timeout
[ 1616.579462][T12670] chnl_net:caif_netlink_parms(): no params data found
[ 1617.129735][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[ 1617.148228][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1617.224104][T12714] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1617.653396][ T9290] Bluetooth: hci5: command tx timeout
[ 1617.726559][T12720] loop6: detected capacity change from 0 to 512
[ 1617.736800][T12720] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1617.780592][T12720] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[ 1617.883994][T10879] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[ 1617.941125][T12720] EXT4-fs (loop6): 1 truncate cleaned up
[ 1617.986869][T12720] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1618.136745][T10879] usb 1-1: Using ep0 maxpacket: 16
[ 1618.185661][T10879] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1618.243872][T10879] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 0
[ 1618.361852][T10879] usb 1-1: New USB device found, idVendor=04d8, idProduct=0a30, bcdDevice=ce.47
[ 1618.493379][T10879] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1618.501798][T10879] usb 1-1: Product: syz
[ 1618.636595][T10879] usb 1-1: Manufacturer: syz
[ 1618.641407][T10879] usb 1-1: SerialNumber: syz
[ 1618.794308][T10879] usb 1-1: config 0 descriptor??
[ 1619.873624][ T9290] Bluetooth: hci5: command tx timeout
[ 1620.446732][T10879] mcba_usb 1-1:0.0 can0: couldn't setup read URBs
[ 1620.565902][T10879] mcba_usb 1-1:0.0 can0: couldn't start device: -90
[ 1620.596095][T12731] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -4
[ 1620.608382][T12731] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -4
[ 1620.622026][T12731] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[ 1621.845673][T10879] mcba_usb 1-1:0.0: probe with driver mcba_usb failed with error -90
[ 1621.909774][T11730] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1622.011971][T10879] usb 1-1: USB disconnect, device number 13
[ 1622.245099][ T1099] bridge_slave_1: left allmulticast mode
[ 1622.270195][ T1099] bridge_slave_1: left promiscuous mode
[ 1622.287772][T12740] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1035'.
[ 1622.319545][ T1099] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1622.342951][T12744] netlink: 'syz.5.1038': attribute type 1 has an invalid length.
[ 1622.382144][ T1099] bridge_slave_0: left allmulticast mode
[ 1622.411725][T12743] loop6: detected capacity change from 0 to 512
[ 1622.446103][ T1099] bridge_slave_0: left promiscuous mode
[ 1622.449442][T12743] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1622.474354][ T1099] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1623.432697][   T29] audit: type=1800 audit(1775864702.275:252): pid=12743 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.1036" name="file1" dev="loop6" ino=15 res=0 errno=0
[ 1623.524261][   T29] audit: type=1800 audit(1775864702.275:253): pid=12747 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.1036" name="file1" dev="loop6" ino=15 res=0 errno=0
[ 1623.822562][T11730] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1624.172808][ T1099] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1624.239660][ T1099] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1624.319760][ T1099] bond0 (unregistering): Released all slaves
[ 1624.358175][T12761] loop8: detected capacity change from 0 to 512
[ 1624.402498][T12761] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1624.427349][T12761] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[ 1624.460592][T12761] EXT4-fs (loop8): 1 truncate cleaned up
[ 1624.502748][T12761] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1626.879758][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1626.920282][T12744] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1627.001725][T12767] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1627.386909][T12749] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1627.425507][T12749] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[ 1627.455823][T12749] bond1: (slave vxcan3): Error -95 calling set_mac_address
[ 1627.539626][T12775] loop8: detected capacity change from 0 to 512
[ 1627.591124][T12775] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1627.623739][T12775] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[ 1627.723893][T12775] EXT4-fs (loop8): 1 truncate cleaned up
[ 1627.755221][T12775] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1627.928792][ T1099] hsr_slave_0: left promiscuous mode
[ 1627.972910][ T1099] hsr_slave_1: left promiscuous mode
[ 1628.016717][ T1099] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1628.125032][ T1099] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1629.073945][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1630.266916][T12794] loop8: detected capacity change from 0 to 512
[ 1630.286287][T12794] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1630.383632][T12794] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[ 1630.475368][T12794] EXT4-fs (loop8): 1 truncate cleaned up
[ 1630.550885][T12794] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1630.864785][ T1099] team0 (unregistering): Port device team_slave_1 removed
[ 1631.327004][ T1099] team0 (unregistering): Port device team_slave_0 removed
[ 1631.837255][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1635.460224][T12670] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1635.523526][T12670] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1635.535380][T12670] bridge_slave_0: entered allmulticast mode
[ 1635.561911][T12670] bridge_slave_0: entered promiscuous mode
[ 1635.592241][T12670] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1635.607342][T12670] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1635.633639][T12670] bridge_slave_1: entered allmulticast mode
[ 1635.653550][T12670] bridge_slave_1: entered promiscuous mode
[ 1636.149343][T12824] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1636.844770][T12823] loop5: detected capacity change from 0 to 512
[ 1636.925553][T12823] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1636.983242][T12823] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[ 1637.030750][T12670] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1637.123535][T12823] EXT4-fs (loop5): 1 truncate cleaned up
[ 1637.130710][T12823] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1637.138016][T12828] netlink: 28 bytes leftover after parsing attributes in process `syz.8.1053'.
[ 1639.320316][T11685] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1639.432260][T12837] loop6: detected capacity change from 0 to 512
[ 1639.468279][T12837] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1639.532877][T12670] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1639.557876][T12837] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[ 1639.664336][T12831] gretap1: entered promiscuous mode
[ 1639.684019][T12837] EXT4-fs (loop6): 1 truncate cleaned up
[ 1639.708344][T12842] loop0: detected capacity change from 0 to 512
[ 1639.727948][T12837] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1639.779847][T12842] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1640.188291][T12670] team0: Port device team_slave_0 added
[ 1640.226663][T12670] team0: Port device team_slave_1 added
[ 1640.532223][T12670] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1640.571468][T12670] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1640.605648][T12842] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[ 1640.667444][T12670] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1640.714803][T12842] EXT4-fs (loop0): 1 truncate cleaned up
[ 1640.784740][T12842] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1640.941922][T12670] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1641.197509][T12670] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1641.199260][T11730] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1641.249686][T12670] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1641.395574][T12854] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[ 1642.548893][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1642.959157][T12862] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1643.053972][T12670] hsr_slave_0: entered promiscuous mode
[ 1643.294045][T12670] hsr_slave_1: entered promiscuous mode
[ 1643.415662][T12670] debugfs: 'hsr0' already exists in 'hsr'
[ 1643.509904][T12670] Cannot create hsr debugfs directory
[ 1643.789430][T12868] loop0: detected capacity change from 0 to 512
[ 1643.926184][T12868] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1644.075964][T12868] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[ 1644.141825][T12873] loop6: detected capacity change from 0 to 8
[ 1644.438519][T12875] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[ 1645.019762][T12868] EXT4-fs (loop0): 1 truncate cleaned up
[ 1645.125326][T12868] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1645.597265][T12882] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1645.612278][T12882] SQUASHFS error: Failed to read block 0x0: -5
[ 1645.621240][T12882] SQUASHFS error: Failed to read block 0xff: -5
[ 1645.630534][T12882] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1645.639462][T12882] SQUASHFS error: Failed to read block 0x0: -5
[ 1645.661743][T12882] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1645.670676][T12882] SQUASHFS error: Failed to read block 0x0: -5
[ 1645.698678][T12882] SQUASHFS error: Failed to read block 0x6a4: -5
[ 1645.705741][T12882] SQUASHFS error: Unable to read metadata cache entry [6a2]
[ 1645.718450][T12882] SQUASHFS error: read_indexes: reading block [6a2:0]
[ 1645.729671][T12882] SQUASHFS error: Failed to read block 0x0: -5
[ 1645.737940][T12882] SQUASHFS error: Unable to read metadata cache entry [6a2]
[ 1645.746081][T12882] SQUASHFS error: read_indexes: reading block [6a2:0]
[ 1645.756049][T12882] SQUASHFS error: Failed to read block 0x0: -5
[ 1646.464405][   T29] audit: type=1800 audit(1775864724.515:254): pid=12882 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.1063" name="file2" dev="loop6" ino=3 res=0 errno=0
[ 1647.024194][   T29] audit: type=1800 audit(1775864724.545:255): pid=12882 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.1063" name="file2" dev="loop6" ino=3 res=0 errno=0
[ 1647.678869][T12887] loop6: detected capacity change from 0 to 8
[ 1647.720104][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1648.473549][T12890] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1648.481908][T12890] SQUASHFS error: Failed to read block 0x0: -5
[ 1648.490896][T12890] SQUASHFS error: Failed to read block 0xff: -5
[ 1648.501847][T12890] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1648.510757][T12890] SQUASHFS error: Failed to read block 0x0: -5
[ 1648.539013][T12890] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1648.548054][T12890] SQUASHFS error: Failed to read block 0x0: -5
[ 1648.674670][   T29] audit: type=1800 audit(1775864727.385:256): pid=12890 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.1064" name="file2" dev="loop6" ino=3 res=0 errno=0
[ 1649.433466][   T29] audit: type=1800 audit(1775864727.425:257): pid=12890 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.1064" name="file2" dev="loop6" ino=3 res=0 errno=0
[ 1649.792830][T12894] loop5: detected capacity change from 0 to 512
[ 1649.950949][T12894] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1650.094959][T12894] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[ 1650.310418][T12894] EXT4-fs (loop5): 1 truncate cleaned up
[ 1650.399198][T12899] loop8: detected capacity change from 0 to 512
[ 1650.425829][T12894] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1650.490946][T12899] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1650.546447][T12899] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[ 1650.825686][T12899] EXT4-fs (loop8): 1 truncate cleaned up
[ 1650.895376][T12899] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1650.989292][T12906] netlink: 'syz.6.1068': attribute type 16 has an invalid length.
[ 1651.117735][T12906] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1068'.
[ 1653.710076][T12916] loop0: detected capacity change from 0 to 512
[ 1653.799766][T12916] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1653.931852][T12916] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[ 1654.195554][T11685] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1654.259741][T12916] EXT4-fs (loop0): 1 truncate cleaned up
[ 1654.275601][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1654.305433][T12916] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1655.402466][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1658.857827][T12670] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1659.074281][T12670] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1659.207900][T12670] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1659.569070][T12670] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1659.926156][T12943] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1662.775218][T12959] netlink: 'syz.6.1078': attribute type 1 has an invalid length.
[ 1664.411918][T12972] loop8: detected capacity change from 0 to 512
[ 1664.421471][T12972] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1664.484008][T12972] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[ 1664.544808][T12959] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1664.593460][T12972] EXT4-fs (loop8): 1 truncate cleaned up
[ 1664.601836][T12972] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1665.130492][T12963] loop0: detected capacity change from 0 to 512
[ 1666.502036][T12966] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1666.526965][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1666.572187][T12966] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[ 1666.676918][T12966] bond1: (slave vxcan3): Error -95 calling set_mac_address
[ 1666.967397][T12967] gretap1: entered promiscuous mode
[ 1667.004904][T12967] bond1: (slave gretap1): making interface the new active one
[ 1667.021765][T12967] bond1: (slave gretap1): Enslaving as an active interface with an up link
[ 1667.501575][T12981] loop0: detected capacity change from 0 to 512
[ 1667.511158][T12981] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1667.614361][T12981] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[ 1667.807108][T12988] loop8: detected capacity change from 0 to 8
[ 1668.007962][T12989] netlink: 'syz.5.1085': attribute type 1 has an invalid length.
[ 1668.057059][T12981] EXT4-fs (loop0): 1 truncate cleaned up
[ 1668.516300][T12981] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1668.921399][T12994] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1668.930407][T12994] SQUASHFS error: Failed to read block 0x0: -5
[ 1668.938631][T12994] SQUASHFS error: Failed to read block 0xff: -5
[ 1668.947583][T12994] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1668.960854][T12994] SQUASHFS error: Failed to read block 0x0: -5
[ 1668.981975][T12994] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1668.990567][T12994] SQUASHFS error: Failed to read block 0x0: -5
[ 1669.011199][T12994] SQUASHFS error: Failed to read block 0x6a4: -5
[ 1669.018124][T12994] SQUASHFS error: Unable to read metadata cache entry [6a2]
[ 1669.025960][T12994] SQUASHFS error: read_indexes: reading block [6a2:0]
[ 1669.033822][T12994] SQUASHFS error: Failed to read block 0x0: -5
[ 1669.041124][T12994] SQUASHFS error: Unable to read metadata cache entry [6a2]
[ 1669.048901][T12994] SQUASHFS error: read_indexes: reading block [6a2:0]
[ 1669.060885][T12994] SQUASHFS error: Failed to read block 0x0: -5
[ 1669.433217][   T29] audit: type=1800 audit(1775864747.835:258): pid=12994 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.1084" name="file2" dev="loop8" ino=3 res=0 errno=0
[ 1670.327240][   T29] audit: type=1800 audit(1775864747.865:259): pid=12994 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.1084" name="file2" dev="loop8" ino=3 res=0 errno=0
[ 1671.019644][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1673.801137][T12989] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1673.811287][ T9290] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1673.821852][ T9290] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1673.886876][T12992] gretap1: entered promiscuous mode
[ 1673.894405][ T9290] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1673.920906][ T9290] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1673.936486][ T9290] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1673.945898][T12992] bond2: (slave gretap1): making interface the new active one
[ 1674.009888][T12992] bond2: (slave gretap1): Enslaving as an active interface with an up link
[ 1675.244561][T13029] netlink: 'syz.6.1092': attribute type 1 has an invalid length.
[ 1676.043556][T10189] Bluetooth: hci3: command tx timeout
[ 1676.918048][T13032] loop0: detected capacity change from 0 to 512
[ 1677.727314][T13025] loop5: detected capacity change from 0 to 512
[ 1678.126695][ T9290] Bluetooth: hci3: command tx timeout
[ 1678.397332][T13025] EXT4-fs warning (device loop5): ext4_multi_mount_protect:394: Unable to create kmmpd thread for loop5.
[ 1678.439161][T13032] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1678.546344][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[ 1678.723857][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1679.460605][T13041] loop8: detected capacity change from 0 to 512
[ 1679.504937][T13041] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1679.593713][T13041] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[ 1679.737676][T13041] EXT4-fs (loop8): 1 truncate cleaned up
[ 1679.765551][T13041] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1680.403861][ T9290] Bluetooth: hci3: command tx timeout
[ 1683.505225][ T9290] Bluetooth: hci3: command tx timeout
[ 1683.616245][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1684.027273][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1686.595587][T13070] loop0: detected capacity change from 0 to 512
[ 1687.547371][T13070] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1689.097260][   T29] audit: type=1800 audit(1775864767.955:260): pid=13070 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1098" name="file1" dev="loop0" ino=15 res=0 errno=0
[ 1689.324082][   T29] audit: type=1800 audit(1775864767.995:261): pid=13075 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1098" name="file1" dev="loop0" ino=15 res=0 errno=0
[ 1689.890136][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1692.645739][T13013] chnl_net:caif_netlink_parms(): no params data found
[ 1692.962594][T13104] loop0: detected capacity change from 0 to 512
[ 1693.013246][T13104] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1693.062048][T13104] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[ 1693.105242][T13107] loop8: detected capacity change from 0 to 512
[ 1693.144019][T13107] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1693.151217][T13104] EXT4-fs (loop0): 1 truncate cleaned up
[ 1693.168899][T13107] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[ 1694.989567][T13107] EXT4-fs (loop8): 1 truncate cleaned up
[ 1695.421168][T13107] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1695.441014][T13114] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1695.944258][T13104] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1696.912664][ T9901] bridge_slave_1: left allmulticast mode
[ 1696.917123][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1696.958929][ T9901] bridge_slave_1: left promiscuous mode
[ 1696.992179][ T9901] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1697.070035][ T9901] bridge_slave_0: left allmulticast mode
[ 1697.071410][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1697.146666][ T9901] bridge_slave_0: left promiscuous mode
[ 1697.229365][ T9901] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1699.848922][T13133] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1699.882405][T13134] loop0: detected capacity change from 0 to 512
[ 1700.042134][T13134] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1700.358960][T13134] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[ 1700.369950][T13134] System zones: 1-2, 4-12, 8-8
[ 1700.452700][T13134] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.1109: iget: bad i_size value: 38620345925642
[ 1700.466629][T13134] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1700.473103][    C1] EXT4-fs (loop0): error count since last fsck: 1
[ 1700.488927][    C1] EXT4-fs (loop0): initial error at time 1775864779: ext4_orphan_get:1397: inode 15
[ 1700.498676][    C1] EXT4-fs (loop0): last error at time 1775864779: ext4_orphan_get:1397: inode 15
[ 1700.656619][T13134] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.1109: couldn't read orphan inode 15 (err -117)
[ 1700.669180][T13134] loop0: lost filesystem error report for type 5 error -117
[ 1700.830990][T13134] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1701.013527][T13140] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.1109: bg 0: block 5: invalid block bitmap
[ 1701.381067][T13140] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 44 with error 28
[ 1701.394513][T13140] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 1701.394513][T13140] 
[ 1701.405054][T13140] EXT4-fs (loop0): Total free blocks count 0
[ 1701.411501][T13140] EXT4-fs (loop0): Free/Dirty block details
[ 1701.420608][T13140] EXT4-fs (loop0): free_blocks=0
[ 1701.428998][T13140] EXT4-fs (loop0): dirty_blocks=44
[ 1701.434890][T13140] EXT4-fs (loop0): Block reservation details
[ 1701.441473][T13140] EXT4-fs (loop0): i_reserved_data_blocks=44
[ 1702.445961][T13142] loop6: detected capacity change from 0 to 512
[ 1702.493617][T13142] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1703.578869][T13142] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[ 1703.589591][T13142] System zones: 1-2, 4-12, 8-8
[ 1703.713932][T13142] EXT4-fs error (device loop6): ext4_orphan_get:1397: inode #15: comm syz.6.1110: iget: bad i_size value: 38620345925642
[ 1703.727251][T13142] loop6: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1703.733215][    C1] EXT4-fs (loop6): error count since last fsck: 1
[ 1703.749053][    C1] EXT4-fs (loop6): initial error at time 1775864782: ext4_orphan_get:1397: inode 15
[ 1703.758760][    C1] EXT4-fs (loop6): last error at time 1775864782: ext4_orphan_get:1397: inode 15
[ 1703.843893][T13142] EXT4-fs error (device loop6): ext4_orphan_get:1402: comm syz.6.1110: couldn't read orphan inode 15 (err -117)
[ 1703.856522][T13142] loop6: lost filesystem error report for type 5 error -117
[ 1704.077335][T13142] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1705.274557][ T5775] EXT4-fs warning (device loop0): ext4_evict_inode:195: inode #18: comm syz-executor: data will be lost
[ 1705.496515][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1706.171438][ T9901] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1706.276654][ T9901] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1706.346724][ T9901] bond0 (unregistering): Released all slaves
[ 1706.785486][T11730] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1707.037635][ T9901] hsr_slave_0: left promiscuous mode
[ 1707.088804][ T9901] hsr_slave_1: left promiscuous mode
[ 1707.126900][ T9901] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1707.212890][ T9901] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1707.247224][T13162] loop8: detected capacity change from 0 to 512
[ 1707.306302][T13162] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1707.433595][T13162] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[ 1708.425252][T13162] EXT4-fs (loop8): 1 truncate cleaned up
[ 1708.538295][T13162] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1710.505276][T13178] loop0: detected capacity change from 0 to 512
[ 1710.618788][T13178] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1710.702050][T13178] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[ 1710.830409][T13180] netlink: 'syz.5.1118': attribute type 1 has an invalid length.
[ 1711.314859][T13178] EXT4-fs (loop0): 1 truncate cleaned up
[ 1711.372039][T13178] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1711.774885][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1712.558929][ T9901] team0 (unregistering): Port device team_slave_1 removed
[ 1712.851998][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1712.867627][ T9901] team0 (unregistering): Port device team_slave_0 removed
[ 1713.690146][T13189] loop8: detected capacity change from 0 to 512
[ 1713.888638][T13189] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1714.101734][T13189] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[ 1714.117628][T13189] System zones: 1-2, 4-12, 8-8
[ 1714.150388][T13189] EXT4-fs error (device loop8): ext4_orphan_get:1397: inode #15: comm syz.8.1119: iget: bad i_size value: 38620345925642
[ 1714.164289][T13189] loop8: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1714.173148][    C0] EXT4-fs (loop8): error count since last fsck: 1
[ 1714.189158][    C0] EXT4-fs (loop8): initial error at time 1775864793: ext4_orphan_get:1397: inode 15
[ 1714.198927][    C0] EXT4-fs (loop8): last error at time 1775864793: ext4_orphan_get:1397: inode 15
[ 1714.357168][T13189] EXT4-fs error (device loop8): ext4_orphan_get:1402: comm syz.8.1119: couldn't read orphan inode 15 (err -117)
[ 1714.383249][T13189] loop8: lost filesystem error report for type 5 error -117
[ 1714.516945][T13189] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1714.704010][T13194] EXT4-fs error (device loop8): ext4_validate_block_bitmap:432: comm syz.8.1119: bg 0: block 5: invalid block bitmap
[ 1715.593625][T13182] EXT4-fs error (device loop8): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[ 1715.891547][T13194] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 48 with error 28
[ 1716.020569][T13194] EXT4-fs (loop8): This should not happen!! Data will be lost
[ 1716.020569][T13194] 
[ 1716.053291][T13194] EXT4-fs (loop8): Total free blocks count 0
[ 1716.137077][T13194] EXT4-fs (loop8): Free/Dirty block details
[ 1716.156346][T13194] EXT4-fs (loop8): free_blocks=0
[ 1716.202117][T13194] EXT4-fs (loop8): dirty_blocks=48
[ 1716.241795][T13194] EXT4-fs (loop8): Block reservation details
[ 1716.257155][T13194] EXT4-fs (loop8): i_reserved_data_blocks=48
[ 1716.344672][T13180] workqueue: Failed to create a rescuer kthread for wq "bond3": -EINTR
[ 1716.516888][T11701] EXT4-fs warning (device loop8): ext4_evict_inode:195: inode #18: comm syz-executor: data will be lost
[ 1716.605864][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1716.873737][T13013] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1716.918705][T13013] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1716.962388][T13013] bridge_slave_0: entered allmulticast mode
[ 1717.008898][T13013] bridge_slave_0: entered promiscuous mode
[ 1717.114291][T13013] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1717.202042][T13013] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1717.349584][T13201] loop8: detected capacity change from 0 to 512
[ 1717.412754][T13013] bridge_slave_1: entered allmulticast mode
[ 1719.567853][T13013] bridge_slave_1: entered promiscuous mode
[ 1720.815927][T13201] EXT4-fs: error -4 creating inode table initialization thread
[ 1720.879347][T13013] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1720.894300][T13201] EXT4-fs (loop8): mount failed
[ 1721.037487][T13013] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1721.620503][T13212] loop5: detected capacity change from 0 to 512
[ 1721.786524][T13013] team0: Port device team_slave_0 added
[ 1725.001909][T13013] team0: Port device team_slave_1 added
[ 1725.350017][T13212] EXT4-fs: error -4 creating inode table initialization thread
[ 1725.432760][T13212] EXT4-fs (loop5): mount failed
[ 1726.572974][T13013] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1726.670597][T13013] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1727.394538][T13013] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1728.708670][T13013] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1728.743286][T13013] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1728.903233][T13013] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1728.916007][T13229] loop5: detected capacity change from 0 to 8
[ 1729.221707][T10189] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1729.243636][T10189] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1729.259526][T10189] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1729.280249][T10189] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1729.309561][T10189] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1729.832241][T13234] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1729.841045][T13234] SQUASHFS error: Failed to read block 0x0: -5
[ 1729.849211][T13234] SQUASHFS error: Failed to read block 0xff: -5
[ 1729.857885][T13234] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1729.866423][T13234] SQUASHFS error: Failed to read block 0x0: -5
[ 1729.885263][   T29] audit: type=1800 audit(1775864808.745:262): pid=13234 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1128" name="file2" dev="loop5" ino=3 res=0 errno=0
[ 1731.111548][T13239] loop0: detected capacity change from 0 to 512
[ 1731.403815][T10189] Bluetooth: hci5: command tx timeout
[ 1731.889289][T13239] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1732.192616][T13239] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[ 1732.848470][T13239] EXT4-fs (loop0): 1 truncate cleaned up
[ 1732.941072][T13239] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1733.121912][T13245] loop5: detected capacity change from 0 to 512
[ 1733.166188][T13245] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1733.496330][T10189] Bluetooth: hci5: command tx timeout
[ 1733.510714][T13245] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[ 1733.667772][T13245] EXT4-fs (loop5): 1 truncate cleaned up
[ 1733.778653][T13245] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1735.563316][T10189] Bluetooth: hci5: command tx timeout
[ 1736.146888][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1737.615144][T11685] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1737.668608][T10189] Bluetooth: hci5: command tx timeout
[ 1737.853830][ T9290] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1737.876327][ T9290] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1737.906569][ T9290] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1737.984401][ T9290] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1738.015765][ T9290] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1739.065743][T13230] chnl_net:caif_netlink_parms(): no params data found
[ 1740.032676][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[ 1740.042400][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1740.123533][T10189] Bluetooth: hci6: command tx timeout
[ 1742.037517][T13269] loop8: detected capacity change from 0 to 512
[ 1742.205752][T10189] Bluetooth: hci6: command tx timeout
[ 1742.350082][T13273] loop0: detected capacity change from 0 to 512
[ 1742.745194][T13273] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1743.000592][T13275] loop5: detected capacity change from 0 to 512
[ 1743.214892][T13275] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1744.309439][T10189] Bluetooth: hci6: command tx timeout
[ 1744.512622][T11685] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1745.862708][ T6014] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1745.977683][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1746.048917][T13291] loop5: detected capacity change from 0 to 512
[ 1746.085392][T13291] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1746.200172][T13291] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[ 1746.295252][T13291] EXT4-fs (loop5): 1 truncate cleaned up
[ 1746.318317][T13291] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1746.363339][T10189] Bluetooth: hci6: command tx timeout
[ 1746.880645][ T6014] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1747.499537][ T6014] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1747.731221][T13300] netlink: 'syz.0.1140': attribute type 1 has an invalid length.
[ 1747.821717][T13301] loop8: detected capacity change from 0 to 512
[ 1747.850337][ T6014] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1747.892413][T13301] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1748.174864][T13300] 8021q: adding VLAN 0 to HW filter on device bond8
[ 1748.196556][T13301] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[ 1748.309762][T13301] EXT4-fs (loop8): 1 truncate cleaned up
[ 1748.376325][T13301] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1748.630466][T13302] 8021q: adding VLAN 0 to HW filter on device bond8
[ 1748.702207][T13302] bond8: (slave vxcan9): The slave device specified does not support setting the MAC address
[ 1748.717785][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1748.772916][T13302] bond8: (slave vxcan9): Error -95 calling set_mac_address
[ 1748.911556][T11685] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1749.586381][T13313] loop8: detected capacity change from 0 to 512
[ 1749.654924][T13313] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1750.011947][T13313] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[ 1750.025172][T13313] System zones: 1-2, 4-12, 8-8
[ 1750.127113][T13313] EXT4-fs error (device loop8): ext4_orphan_get:1397: inode #15: comm syz.8.1142: iget: bad i_size value: 38620345925642
[ 1750.140480][T13313] loop8: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1750.143187][    C1] EXT4-fs (loop8): error count since last fsck: 1
[ 1750.159191][    C1] EXT4-fs (loop8): initial error at time 1775864829: ext4_orphan_get:1397: inode 15
[ 1750.169242][    C1] EXT4-fs (loop8): last error at time 1775864829: ext4_orphan_get:1397: inode 15
[ 1750.343922][T13313] EXT4-fs error (device loop8): ext4_orphan_get:1402: comm syz.8.1142: couldn't read orphan inode 15 (err -117)
[ 1750.356425][T13313] loop8: lost filesystem error report for type 5 error -117
[ 1750.465407][T13313] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1751.341195][T13316] loop5: detected capacity change from 0 to 512
[ 1752.584836][T13316] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1753.163769][T13293] EXT4-fs error (device loop8): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[ 1754.283980][T13316] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[ 1754.293947][T13316] System zones: 1-2, 4-12, 8-8
[ 1754.549730][T13316] EXT4-fs error (device loop5): ext4_orphan_get:1397: inode #15: comm syz.5.1143: iget: bad i_size value: 38620345925642
[ 1754.567490][T13316] loop5: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1754.573196][    C0] EXT4-fs (loop5): error count since last fsck: 1
[ 1754.589005][    C0] EXT4-fs (loop5): initial error at time 1775864833: ext4_orphan_get:1397: inode 15
[ 1754.598743][    C0] EXT4-fs (loop5): last error at time 1775864833: ext4_orphan_get:1397: inode 15
[ 1754.684401][T13316] EXT4-fs error (device loop5): ext4_orphan_get:1402: comm syz.5.1143: couldn't read orphan inode 15 (err -117)
[ 1754.697012][T13316] loop5: lost filesystem error report for type 5 error -117
[ 1754.838838][T13316] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1755.002518][T13317] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.1143: bg 0: block 5: invalid block bitmap
[ 1755.387704][T13317] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 44 with error 28
[ 1755.400461][T13317] EXT4-fs (loop5): This should not happen!! Data will be lost
[ 1755.400461][T13317] 
[ 1755.412577][T13317] EXT4-fs (loop5): Total free blocks count 0
[ 1755.419564][T13317] EXT4-fs (loop5): Free/Dirty block details
[ 1755.425984][T13317] EXT4-fs (loop5): free_blocks=0
[ 1755.431562][T13317] EXT4-fs (loop5): dirty_blocks=45
[ 1755.437240][T13317] EXT4-fs (loop5): Block reservation details
[ 1755.443952][T13317] EXT4-fs (loop5): i_reserved_data_blocks=45
[ 1756.660124][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1756.732984][T13230] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1756.740551][T13230] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1756.759604][T13230] bridge_slave_0: entered allmulticast mode
[ 1756.800643][T13230] bridge_slave_0: entered promiscuous mode
[ 1756.875014][T13230] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1756.882545][T13230] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1756.997973][T11685] EXT4-fs warning (device loop5): ext4_evict_inode:195: inode #18: comm syz-executor: data will be lost
[ 1757.056605][T11685] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1757.066212][T13230] bridge_slave_1: entered allmulticast mode
[ 1757.106330][T13230] bridge_slave_1: entered promiscuous mode
[ 1758.491591][T13328] loop0: detected capacity change from 0 to 512
[ 1759.019970][ T6014] bridge_slave_1: left allmulticast mode
[ 1760.418081][ T6014] bridge_slave_1: left promiscuous mode
[ 1760.624070][ T6014] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1760.775010][T13328] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1761.115453][ T6014] bridge_slave_0: left allmulticast mode
[ 1761.208306][ T6014] bridge_slave_0: left promiscuous mode
[ 1761.374076][ T6014] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1761.868836][T13338] loop8: detected capacity change from 0 to 512
[ 1762.504786][T13338] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1763.163641][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1763.480080][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1764.254245][T13349] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1764.445275][T13350] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1765.249415][ T6014] bond1 (unregistering): (slave gretap1): Releasing active interface
[ 1765.613778][ T6014] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1765.669225][ T6014] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1765.698328][ T6014] bond0 (unregistering): Released all slaves
[ 1765.718028][ T6014] bond1 (unregistering): Released all slaves
[ 1766.024370][T13230] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1766.048052][T13230] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1767.721152][T13230] team0: Port device team_slave_0 added
[ 1768.025137][T13367] loop5: detected capacity change from 0 to 512
[ 1768.144620][T13366] loop0: detected capacity change from 0 to 512
[ 1768.358873][T13366] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1768.509411][T13366] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[ 1768.655154][T13367] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1769.107111][T13366] EXT4-fs (loop0): 1 truncate cleaned up
[ 1769.285998][T13366] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1769.380216][T13230] team0: Port device team_slave_1 added
[ 1771.637093][T13256] chnl_net:caif_netlink_parms(): no params data found
[ 1771.818589][T13230] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1771.844216][T11685] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1771.859739][T13230] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1771.914971][T13230] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1771.946607][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1772.324260][T13383] netlink: 'syz.0.1159': attribute type 1 has an invalid length.
[ 1773.467310][T13230] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1773.533443][T13230] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1773.731019][T13230] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1774.879636][T13394] loop8: detected capacity change from 0 to 512
[ 1774.923506][T13394] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1775.562930][T13394] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[ 1775.573953][T13394] System zones: 1-2, 4-12, 8-8
[ 1776.951169][T13394] EXT4-fs error (device loop8): ext4_orphan_get:1397: inode #15: comm syz.8.1160: iget: bad i_size value: 38620345925642
[ 1776.965367][T13394] loop8: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1776.973204][    C1] EXT4-fs (loop8): error count since last fsck: 1
[ 1776.989097][    C1] EXT4-fs (loop8): initial error at time 1775864855: ext4_orphan_get:1397: inode 15
[ 1776.998877][    C1] EXT4-fs (loop8): last error at time 1775864855: ext4_orphan_get:1397: inode 15
[ 1777.167392][T13394] EXT4-fs error (device loop8): ext4_orphan_get:1402: comm syz.8.1160: couldn't read orphan inode 15 (err -117)
[ 1777.180219][T13394] loop8: lost filesystem error report for type 5 error -117
[ 1777.297876][T13394] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1778.085752][T13383] 8021q: adding VLAN 0 to HW filter on device bond9
[ 1778.289874][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1778.682453][T13404] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1778.772228][T13386] 8021q: adding VLAN 0 to HW filter on device bond9
[ 1778.884316][T13386] bond9: (slave vxcan9): The slave device specified does not support setting the MAC address
[ 1779.119169][T13386] bond9: (slave vxcan9): Error -95 calling set_mac_address
[ 1779.660174][ T6014] hsr_slave_0: left promiscuous mode
[ 1779.686656][ T6014] hsr_slave_1: left promiscuous mode
[ 1779.722572][ T6014] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1779.740194][T13409] loop8: detected capacity change from 0 to 512
[ 1779.787051][ T6014] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1780.369146][ T6014] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1780.455738][ T6014] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1780.480174][T13409] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1780.734021][ T6014] veth1_macvtap: left promiscuous mode
[ 1780.739742][ T6014] veth0_macvtap: left promiscuous mode
[ 1780.854277][ T6014] veth1_vlan: left promiscuous mode
[ 1780.907553][ T6014] veth0_vlan: left promiscuous mode
[ 1783.147783][T13421] loop5: detected capacity change from 0 to 512
[ 1784.019139][T13421] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1784.583497][T11685] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1784.745179][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1785.077969][T13428] loop0: detected capacity change from 0 to 512
[ 1786.185280][T13428] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1786.362476][T13431] netlink: 'syz.5.1166': attribute type 1 has an invalid length.
[ 1786.905229][T13435] loop8: detected capacity change from 0 to 512
[ 1787.008445][T13435] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1787.026165][T13435] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[ 1787.066695][T13435] EXT4-fs (loop8): 1 truncate cleaned up
[ 1787.116294][T13435] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1787.437417][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1788.614866][ T9290] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1788.624930][ T9290] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1788.635330][ T9290] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1788.649674][ T9290] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1788.957451][ T9290] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1789.840227][T13449] loop0: detected capacity change from 0 to 512
[ 1789.907601][ T6014] team0 (unregistering): Port device team_slave_1 removed
[ 1790.035710][T13449] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1790.368211][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1790.532719][T13449] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[ 1790.543748][T13449] System zones: 1-2, 4-12, 8-8
[ 1790.569619][T13449] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.1169: iget: bad i_size value: 38620345925642
[ 1790.582899][T13449] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1790.593154][    C0] EXT4-fs (loop0): error count since last fsck: 1
[ 1790.609026][    C0] EXT4-fs (loop0): initial error at time 1775864869: ext4_orphan_get:1397: inode 15
[ 1790.618871][    C0] EXT4-fs (loop0): last error at time 1775864869: ext4_orphan_get:1397: inode 15
[ 1790.689007][T13449] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.1169: couldn't read orphan inode 15 (err -117)
[ 1790.701501][T13449] loop0: lost filesystem error report for type 5 error -117
[ 1790.755805][ T6014] team0 (unregistering): Port device team_slave_0 removed
[ 1790.848987][T13449] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1791.097112][T13434] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[ 1791.348908][ T9290] Bluetooth: hci1: command tx timeout
[ 1792.184028][T13448] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 892 with error 28
[ 1792.197079][T13448] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 1792.197079][T13448] 
[ 1792.208237][T13448] EXT4-fs (loop0): Total free blocks count 0
[ 1792.216003][T13448] EXT4-fs (loop0): Free/Dirty block details
[ 1792.222793][T13448] EXT4-fs (loop0): free_blocks=0
[ 1792.228811][T13448] EXT4-fs (loop0): dirty_blocks=892
[ 1792.235082][T13448] EXT4-fs (loop0): Block reservation details
[ 1792.244347][T13448] EXT4-fs (loop0): i_reserved_data_blocks=892
[ 1792.761557][T13452] loop8: detected capacity change from 0 to 512
[ 1792.816198][T13452] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1792.925636][T13452] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[ 1793.264142][T13452] EXT4-fs (loop8): 1 truncate cleaned up
[ 1793.275580][T13452] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1793.404867][ T9290] Bluetooth: hci1: command tx timeout
[ 1795.001017][T13431] workqueue: Failed to create a rescuer kthread for wq "bond3": -EINTR
[ 1795.485323][ T9290] Bluetooth: hci1: command tx timeout
[ 1795.634137][ T5775] EXT4-fs warning (device loop0): ext4_evict_inode:195: inode #18: comm syz-executor: data will be lost
[ 1795.676327][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1795.920216][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1797.597424][ T9290] Bluetooth: hci1: command tx timeout
[ 1797.682970][T13463] loop5: detected capacity change from 0 to 512
[ 1797.707933][T13463] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1797.767532][T13463] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[ 1797.778097][T13463] System zones: 1-2, 4-12, 8-8
[ 1797.794337][T13463] EXT4-fs error (device loop5): ext4_orphan_get:1397: inode #15: comm syz.5.1173: iget: bad i_size value: 38620345925642
[ 1797.807942][T13463] loop5: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1797.813162][    C1] EXT4-fs (loop5): error count since last fsck: 1
[ 1797.828945][    C1] EXT4-fs (loop5): initial error at time 1775864876: ext4_orphan_get:1397: inode 15
[ 1797.838583][    C1] EXT4-fs (loop5): last error at time 1775864876: ext4_orphan_get:1397: inode 15
[ 1797.914328][T13463] EXT4-fs error (device loop5): ext4_orphan_get:1402: comm syz.5.1173: couldn't read orphan inode 15 (err -117)
[ 1797.926505][T13463] loop5: lost filesystem error report for type 5 error -117
[ 1797.935620][T13463] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1798.483411][T13471] loop0: detected capacity change from 0 to 512
[ 1798.575366][T13471] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1798.971117][T13471] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[ 1798.982344][T13471] System zones: 
[ 1798.982763][T10189] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1798.994527][T13471] 1-2, 4-12, 8-8
[ 1799.017454][T13471] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.1172: iget: bad i_size value: 38620345925642
[ 1799.030528][T13471] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1799.033203][    C0] EXT4-fs (loop0): error count since last fsck: 1
[ 1799.048991][    C0] EXT4-fs (loop0): initial error at time 1775864877: ext4_orphan_get:1397: inode 15
[ 1799.058719][    C0] EXT4-fs (loop0): last error at time 1775864877: ext4_orphan_get:1397: inode 15
[ 1799.154454][T11685] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1799.200491][T13471] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.1172: couldn't read orphan inode 15 (err -117)
[ 1799.215525][T13471] loop0: lost filesystem error report for type 5 error -117
[ 1799.229543][T10189] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1799.251523][T10189] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1799.345895][T10189] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1799.407182][T10189] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1799.484931][T13471] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1800.833975][  T142] bridge_slave_1: left allmulticast mode
[ 1800.839837][  T142] bridge_slave_1: left promiscuous mode
[ 1800.934019][  T142] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1801.293945][T13480] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[ 1801.512578][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[ 1801.533456][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1801.760042][ T9290] Bluetooth: hci3: command tx timeout
[ 1801.776160][  T142] bridge_slave_0: left allmulticast mode
[ 1801.781998][  T142] bridge_slave_0: left promiscuous mode
[ 1801.926038][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1802.004024][  T142] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1802.437707][T13485] loop8: detected capacity change from 0 to 512
[ 1803.816706][ T9290] Bluetooth: hci3: command tx timeout
[ 1805.224561][T13485] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1805.328407][  T142] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1805.445722][  T142] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1805.481652][  T142] bond0 (unregistering): Released all slaves
[ 1805.578667][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1806.008417][ T9290] Bluetooth: hci3: command tx timeout
[ 1806.022864][T13500] loop0: detected capacity change from 0 to 512
[ 1806.394272][T13500] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1806.959694][   T29] audit: type=1800 audit(1775864885.815:263): pid=13500 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1179" name="file1" dev="loop0" ino=15 res=0 errno=0
[ 1807.314958][T13509] loop8: detected capacity change from 0 to 512
[ 1807.356819][T13509] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1807.654582][T13510] loop5: detected capacity change from 0 to 512
[ 1808.043614][ T9290] Bluetooth: hci3: command tx timeout
[ 1810.140634][T13509] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[ 1810.735390][T13509] System zones: 1-2, 4-12, 8-8
[ 1810.910249][T13510] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1810.949545][T13509] EXT4-fs error (device loop8): ext4_orphan_get:1397: inode #15: comm syz.8.1180: iget: bad i_size value: 38620345925642
[ 1811.212666][T13509] loop8: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1811.213236][    C1] EXT4-fs (loop8): error count since last fsck: 1
[ 1811.229644][    C1] EXT4-fs (loop8): initial error at time 1775864890: ext4_orphan_get:1397: inode 15
[ 1811.239675][    C1] EXT4-fs (loop8): last error at time 1775864890: ext4_orphan_get:1397: inode 15
[ 1811.443902][T13509] EXT4-fs error (device loop8): ext4_orphan_get:1402: comm syz.8.1180: couldn't read orphan inode 15 (err -117)
[ 1811.458803][T13509] loop8: lost filesystem error report for type 5 error -117
[ 1811.462004][T13509] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1811.526997][  T142] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1811.562761][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1811.586731][  T142] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1813.777378][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1813.795232][  T142] team0 (unregistering): Port device team_slave_1 removed
[ 1814.026806][T11685] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1814.070358][  T142] team0 (unregistering): Port device team_slave_0 removed
[ 1814.358375][T13519] loop0: detected capacity change from 0 to 512
[ 1814.420045][T13519] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1814.652709][T13519] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[ 1814.665582][T13519] System zones: 1-2, 4-12, 8-8
[ 1814.848800][T13519] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.1182: iget: bad i_size value: 38620345925642
[ 1814.862285][T13519] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1814.863227][    C1] EXT4-fs (loop0): error count since last fsck: 1
[ 1814.879142][    C1] EXT4-fs (loop0): initial error at time 1775864893: ext4_orphan_get:1397: inode 15
[ 1814.888971][    C1] EXT4-fs (loop0): last error at time 1775864893: ext4_orphan_get:1397: inode 15
[ 1815.101466][T13519] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.1182: couldn't read orphan inode 15 (err -117)
[ 1815.114109][T13519] loop0: lost filesystem error report for type 5 error -117
[ 1815.439816][T13519] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1815.513481][T13521] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[ 1816.433815][T13524] loop8: detected capacity change from 0 to 512
[ 1817.060454][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1817.278665][T13524] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1818.485181][T13532] loop5: detected capacity change from 0 to 512
[ 1818.630963][T13532] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1818.936959][T13532] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec01c, mo2=0003]
[ 1818.947357][T13532] System zones: 1-2, 4-12, 8-8
[ 1818.980459][T13532] EXT4-fs error (device loop5): ext4_orphan_get:1397: inode #15: comm syz.5.1184: iget: bad i_size value: 38620345925642
[ 1818.993664][T13532] loop5: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[ 1819.003182][    C0] EXT4-fs (loop5): error count since last fsck: 1
[ 1819.019188][    C0] EXT4-fs (loop5): initial error at time 1775864897: ext4_orphan_get:1397: inode 15
[ 1819.029011][    C0] EXT4-fs (loop5): last error at time 1775864897: ext4_orphan_get:1397: inode 15
[ 1819.208676][T13532] EXT4-fs error (device loop5): ext4_orphan_get:1402: comm syz.5.1184: couldn't read orphan inode 15 (err -117)
[ 1819.221439][T13532] loop5: lost filesystem error report for type 5 error -117
[ 1819.535196][T13532] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1820.145472][T11701] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1820.855925][T11685] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1821.297072][    C1] =====================================================
[ 1821.304711][    C1] BUG: KMSAN: uninit-value in __flush_smp_call_function_queue+0x362/0x18e0
[ 1821.313481][    C1]  __flush_smp_call_function_queue+0x362/0x18e0
[ 1821.319988][    C1]  generic_smp_call_function_single_interrupt+0x1c/0x30
[ 1821.327092][    C1]  __sysvec_call_function_single+0x4b/0x3e0
[ 1821.333295][    C1]  sysvec_call_function_single+0x7c/0x90
[ 1821.339433][    C1]  asm_sysvec_call_function_single+0x1f/0x30
[ 1821.345629][    C1]  sched_core_balance+0x87/0x2010
[ 1821.351189][    C1]  finish_task_switch+0x3e4/0x8b0
[ 1821.356428][    C1]  __schedule+0x2607/0x8640
[ 1821.361085][    C1]  schedule_idle+0x5a/0x90
[ 1821.365649][    C1]  do_idle+0x9fa/0xa10
[ 1821.369892][    C1]  cpu_startup_entry+0x5f/0x80
[ 1821.374783][    C1]  start_secondary+0xcc/0xd0
[ 1821.379517][    C1]  common_startup_64+0x13e/0x147
[ 1821.384715][    C1] 
[ 1821.387099][    C1] Local variable mmap_event created at:
[ 1821.392702][    C1]  perf_event_mmap+0x47/0x2fe0
[ 1821.397722][    C1]  mmap_region+0x5030/0x62b0
[ 1821.402559][    C1] 
[ 1821.404976][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted syzkaller #0 PREEMPT(full) 
[ 1821.414045][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1821.424188][    C1] =====================================================
[ 1821.431182][    C1] Disabling lock debugging due to kernel taint
[ 1821.437420][    C1] Kernel panic - not syncing: kmsan.panic set ...
[ 1821.443942][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[ 1821.454602][    C1] Tainted: [B]=BAD_PAGE
[ 1821.458829][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1821.468989][    C1] Call Trace:
[ 1821.472346][    C1]  <IRQ>
[ 1821.475265][    C1]  __dump_stack+0x26/0x30
[ 1821.479747][    C1]  dump_stack_lvl+0x50/0x1c0
[ 1821.484475][    C1]  ? dump_stack+0x12/0x25
[ 1821.488957][    C1]  dump_stack+0x1e/0x25
[ 1821.493254][    C1]  vpanic+0x7b4/0x1430
[ 1821.497499][    C1]  panic+0x15d/0x160
[ 1821.501598][    C1]  kmsan_report+0x31a/0x320
[ 1821.506348][    C1]  ? __msan_warning+0x1b/0x30
[ 1821.511179][    C1]  ? __flush_smp_call_function_queue+0x362/0x18e0
[ 1821.517745][    C1]  ? generic_smp_call_function_single_interrupt+0x1c/0x30
[ 1821.525099][    C1]  ? __sysvec_call_function_single+0x4b/0x3e0
[ 1821.531326][    C1]  ? sysvec_call_function_single+0x7c/0x90
[ 1821.537304][    C1]  ? asm_sysvec_call_function_single+0x1f/0x30
[ 1821.543614][    C1]  ? sched_core_balance+0x87/0x2010
[ 1821.548990][    C1]  ? finish_task_switch+0x3e4/0x8b0
[ 1821.554382][    C1]  ? __schedule+0x2607/0x8640
[ 1821.559193][    C1]  ? schedule_idle+0x5a/0x90
[ 1821.563916][    C1]  ? do_idle+0x9fa/0xa10
[ 1821.568281][    C1]  ? cpu_startup_entry+0x5f/0x80
[ 1821.573353][    C1]  ? start_secondary+0xcc/0xd0
[ 1821.578277][    C1]  ? common_startup_64+0x13e/0x147
[ 1821.583599][    C1]  ? kmsan_get_metadata+0xf1/0x160
[ 1821.588864][    C1]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[ 1821.595382][    C1]  ? kmsan_internal_unpoison_memory+0x14/0x20
[ 1821.601634][    C1]  ? kmsan_get_metadata+0xf1/0x160
[ 1821.606898][    C1]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1821.612841][    C1]  ? kmsan_get_metadata+0xf1/0x160
[ 1821.618084][    C1]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[ 1821.624599][    C1]  ? kmsan_get_metadata+0xf1/0x160
[ 1821.629842][    C1]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1821.635797][    C1]  ? kmsan_get_metadata+0xf1/0x160
[ 1821.641050][    C1]  __msan_warning+0x1b/0x30
[ 1821.645722][    C1]  __flush_smp_call_function_queue+0x362/0x18e0
[ 1821.652114][    C1]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1821.658055][    C1]  ? kmsan_get_metadata+0xf1/0x160
[ 1821.663334][    C1]  generic_smp_call_function_single_interrupt+0x1c/0x30
[ 1821.670431][    C1]  __sysvec_call_function_single+0x4b/0x3e0
[ 1821.676520][    C1]  sysvec_call_function_single+0x7c/0x90
[ 1821.682324][    C1]  </IRQ>
[ 1821.685322][    C1]  <TASK>
[ 1821.688325][    C1]  asm_sysvec_call_function_single+0x1f/0x30
[ 1821.694548][    C1] RIP: 0010:sched_core_balance+0x87/0x2010
[ 1821.700539][    C1] Code: b7 fd d1 13 e8 fa 94 21 00 48 89 9d 28 ff ff ff 4c 89 7d 80 e9 b4 1d 00 00 48 8d 7b 48 e8 41 47 59 0f fb 48 8b 85 00 ff ff ff <48> 8d 3c c5 d0 d6 57 92 48 8b 45 a0 85 c0 8b 4d c4 0f 44 c8 89 8d
[ 1821.720302][    C1] RSP: 0018:ffff88810074fa38 EFLAGS: 00000282
[ 1821.726498][    C1] RAX: 0000000000000001 RBX: ffff88813fca3108 RCX: 0000000000000001
[ 1821.734579][    C1] RDX: 000000001584b028 RSI: 0000000000000001 RDI: ffffffff9584b028
[ 1821.742664][    C1] RBP: ffff88810074fba8 R08: ffffea000000000f R09: 0000000000000000
[ 1821.750745][    C1] R10: ffff888237c90028 R11: ffffffff81b2b210 R12: 0000000000000000
[ 1821.758826][    C1] R13: 0000000000000000 R14: 0000000000000000 R15: ffff888100722d08
[ 1821.766930][    C1]  ? __pfx_sched_core_balance+0x10/0x10
[ 1821.772679][    C1]  ? sched_core_balance+0x7f/0x2010
[ 1821.778044][    C1]  ? kmsan_get_metadata+0xf1/0x160
[ 1821.783299][    C1]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1821.789243][    C1]  ? kmsan_get_metadata+0xf1/0x160
[ 1821.794479][    C1]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1821.800422][    C1]  ? kmsan_get_metadata+0xf1/0x160
[ 1821.805665][    C1]  ? kmsan_get_metadata+0xf1/0x160
[ 1821.810917][    C1]  finish_task_switch+0x3e4/0x8b0
[ 1821.816138][    C1]  ? __pfx_sched_core_balance+0x10/0x10
[ 1821.821864][    C1]  __schedule+0x2607/0x8640
[ 1821.826590][    C1]  ? irqentry_exit+0x87/0x6c0
[ 1821.831423][    C1]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[ 1821.838003][    C1]  ? irqentry_exit+0x87/0x6c0
[ 1821.842862][    C1]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[ 1821.849369][    C1]  ? ct_nmi_exit+0x64/0xa0
[ 1821.853960][    C1]  ? irqentry_exit+0x87/0x6c0
[ 1821.858793][    C1]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[ 1821.865365][    C1]  schedule_idle+0x5a/0x90
[ 1821.869927][    C1]  do_idle+0x9fa/0xa10
[ 1821.874140][    C1]  cpu_startup_entry+0x5f/0x80
[ 1821.879041][    C1]  ? __pfx_setup_secondary_APIC_clock+0x10/0x10
[ 1821.885486][    C1]  start_secondary+0xcc/0xd0
[ 1821.890246][    C1]  common_startup_64+0x13e/0x147
[ 1821.895382][    C1]  </TASK>
[ 1821.899000][    C1] Kernel Offset: disabled
[ 1821.903462][    C1] Rebooting in 86400 seconds..