last executing test programs:

4m40.600724267s ago: executing program 0 (id=50):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000000c0)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
pwritev(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
rt_sigtimedwait(&(0x7f0000000300)={[0x7fffffffffffffff]}, &(0x7f0000000340), 0x0, 0x8)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r5 = io_uring_setup(0x899, &(0x7f0000000040)={0x0, 0x3cb1, 0x1c080, 0xa, 0x20002f7})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x11, 0x3, &(0x7f0000000000)=@framed={{0xdb, 0xa, 0xa, 0xfe00, 0xa0, 0x71, 0x10, 0x1d}}, 0x0, 0xb, 0x0, 0x0, 0x0, 0x6f, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
io_uring_enter(r5, 0x2219, 0x7721, 0x16, 0x0, 0x0)

4m39.536163391s ago: executing program 0 (id=54):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000002000095"], &(0x7f00000001c0)='syzkaller\x00'}, 0x94)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'veth1_to_hsr\x00', <r3=>0x0})
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f000001b700)=""/102392, 0x18ff8)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = syz_open_dev$loop(&(0x7f00000004c0), 0x1, 0x40000)
ioctl$BLKPG(r5, 0x1269, &(0x7f0000000240)={0x1, 0x0, 0x98, &(0x7f0000000180)={0x100000000, 0x1000000, 0x11}})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r1, r3, 0x25, 0x2, @void}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0xffffffff, 0x0, {0x0, 0x0, 0x74, r3, {0x4, 0x7}, {0x0, 0x4}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)
r6 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_TRIM(r6, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x3f6, 0x200, 0x70bd28, 0x25dfdbfd, "", ["", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x1000c004}, 0x4000)

4m38.417481368s ago: executing program 0 (id=59):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
fsopen(&(0x7f00000001c0)='bpf\x00', 0x0)

4m38.241169682s ago: executing program 0 (id=61):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000180)='./file1\x00', 0x4000, &(0x7f0000000580)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000102,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000011,fileset=00000000000000000011,uid=', @ANYBLOB="d6d84c0df937ed4a0cd30000f2e9ea9568eab74a46c525dc386983eade0b0ce5f1dd911706cf7d32d7d508d1823b8871e001000000eb4ce0a008f5cdea622fc6675e5486860a752ed0298a948efa72b2c8d8525181644a3124f3544a50f192b98f055ad125fd4674534413c6044136ea5aefac5267e43739626ea9391d8f346c4694f70400000000000000cee1f628d1cec3462830606bb612bfed91181cdc107bb91a2e86de2ad5", @ANYBLOB="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"], 0x12, 0xc49, &(0x7f0000001cc0)="$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")
syz_clone(0x25888200, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x125)

4m37.609115501s ago: executing program 0 (id=67):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x2000004, 0x3b071, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x17, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x5dd36fc9, 0x0, 0x0, 0x0, 0x2}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xfffc}, {0x85, 0x0, 0x0, 0x86}}, {{0x5, 0x0, 0x5, 0x9, 0x0, 0x1, 0x480}}, [@printk={@lu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x8}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0xae}}}, &(0x7f0000000080)='GPL\x00', 0x7, 0xffe, &(0x7f0000000cc0)=""/4094, 0x41100, 0x44, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)

4m36.46908264s ago: executing program 0 (id=74):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_COALESCE(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01002dbd700000000000020000000c0099000100000801000000080001"], 0x28}}, 0x8000040)

4m36.197837701s ago: executing program 32 (id=74):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_COALESCE(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01002dbd700000000000020000000c0099000100000801000000080001"], 0x28}}, 0x8000040)

4m0.445347282s ago: executing program 2 (id=197):
close(0xffffffffffffffff)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
ioperm(0x0, 0x9, 0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000032680)=""/102392, 0x18ff8)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r5 = accept4(r4, 0x0, 0x0, 0x0)
sendmmsg$alg(r5, &(0x7f00000004c0)=[{0x0, 0x0, &(0x7f0000002500)=[{0x0}, {&(0x7f0000000200)="ca8a42ca0c7565f05d5a7908d131dca97c57014d6e19176bea715b6ec66271c45cd540238c3c127a3666", 0x2a}, {0x0}, {&(0x7f0000001500)="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", 0xaf6}], 0x4, 0x0, 0x0, 0x8800}], 0x1, 0x20004014)

3m59.043843422s ago: executing program 2 (id=199):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000002240)={0xf, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_mount_image$squashfs(&(0x7f0000000000), &(0x7f0000000200)='./file0\x00', 0x18004c1, &(0x7f0000000240)=ANY=[], 0x0, 0x1a2, &(0x7f0000000340)="$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")
setrlimit(0x7, &(0x7f0000000380)={0x1, 0x9})
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000001c0)={r0, r1, 0x6, 0x0, @val=@iter={0x0}}, 0x20)

3m56.543669867s ago: executing program 2 (id=214):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3})
syz_io_uring_setup(0x5b0f, &(0x7f0000000000)={0x0, 0xfffffffc, 0x80, 0x0, 0x359}, &(0x7f00000002c0), &(0x7f0000ff4000))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pselect6(0x40, &(0x7f0000000100)={0x0, 0xfffffffffffffffc, 0xffffffffffffffff, 0x0, 0x800, 0x0, 0x4, 0x10000000}, 0x0, &(0x7f0000001340)={0x1f, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0xfffffffffffffffe}, &(0x7f0000000280)={0x0, 0x3938700}, 0x0)

3m54.629424106s ago: executing program 2 (id=220):
r0 = syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x4c8, &(0x7f0000000580)={[{@sbsector={'sbsector', 0x3d, 0x2}}, {@check_strict}, {@showassoc}, {@sbsector={'sbsector', 0x3d, 0x3}}, {@sbsector={'sbsector', 0x3d, 0xffffffffffffffff}}, {@check_strict}, {}, {@overriderock}, {@nocompress}, {@iocharset={'iocharset', 0x3d, 'macturkish'}}, {@showassoc}, {@map_acorn}, {@nocompress}, {@sbsector={'sbsector', 0x3d, 0x9e}}, {@session={'session', 0x3d, 0x27}}], [{@pcr={'pcr', 0x3d, 0x2b}}, {@permit_directio}]}, 0x0, 0x93f, &(0x7f00000009c0)="$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")
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333c06, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11080, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1005848, 0x0)
read$FUSE(r0, &(0x7f0000002d40)={0x2020}, 0x2020)

3m54.221504428s ago: executing program 2 (id=224):
r0 = syz_io_uring_setup(0x110, &(0x7f00000000c0)={0x0, 0x10, 0x0, 0x3, 0x85}, &(0x7f0000000400)=<r1=>0x0, &(0x7f0000000280))
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000300)=[0xffffffffffffffff], 0x1)
iopl(0x3)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x3)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="04360789aaaaaaaaaa10"], 0xa)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x88c0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00')
read$eventfd(r2, &(0x7f0000000140), 0x8)

3m53.777118963s ago: executing program 2 (id=225):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$alg(0x26, 0x5, 0x0)
get_robust_list(r0, &(0x7f0000000380)=0x0, &(0x7f00000003c0))

3m53.403671591s ago: executing program 33 (id=225):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$alg(0x26, 0x5, 0x0)
get_robust_list(r0, &(0x7f0000000380)=0x0, &(0x7f00000003c0))

3m17.42811954s ago: executing program 1 (id=335):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x601c2, 0x0)
ftruncate(r0, 0x8800000)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000580), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102400, 0x19000)
sendfile(r1, r0, 0x0, 0x558410e9)

3m16.216537014s ago: executing program 1 (id=342):
sched_setscheduler(0x0, 0x1, 0x0)
open(&(0x7f00000002c0)='./file0\x00', 0x2a4c0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000061c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x408220, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x3}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000041c0)="412e450a2a7b9586d1e6e9de257afc4fd60c8de430c0d6348b2cf1db8d070a539de9c1e91a178f9240dbcfe303566018f6c20c55d643a2ed46aaacf49ca491ee2f06184bdb548778a2c56e56f6b40b994419428bbbb9dfa5f9593511ca8ae1c088fb0ee5da72f505000000000000002c04754204f194ae6ceff4570d44496eeffe619998eafc7167d22e1c6aa73e89ad19224e35130a37cf68d5c41ccafe59b4b753a26e06c4306d31d78de6cede97c06e3ca2cc4af66b7548268efa91621ffca2655d2c8f1a9bb019b88fa729cb3d32f72c098c44898d42c42f39feb4faead93980726c236129acdf31c01f1cabb5ca3ec4e45eb5e6e59912792b4976e3f2b560c861d49b539d8e1870040a8cf190a8a767ec067a8048aac53336b44669d3d425843ae80681a7c02a5d5a3d90f355fd4a6ac277e75230d558f0df20cb323cc65e9b5a258cdd669c8a9534e4aff09a8fe89b124748c9e756c28789c2152a5142bc0bb205e339d43bb980b3f04a3c1a424a2a093966b20600a5410e0528fb35937c998eea19f01eaf2f39e16d85563a6737ddab3213ca1832f0afdf891e34a582f6a4ac81fda70ebc3fedac2fb3a492fdb40b91021e5d371d990064cd1f7c2c1a6472dedb505f9a4940057a3e57fd53aa3cd2eb914e073a19b6e925f8553e6875c093c7d19de25861fd9640f0eca4cda0467f12126daa2e0c6df7d4e4babe5a6e59e8391be7700790315b6b8a8aa74cd6d3f054aceaeda79430676b67fe25c9029e0894b413377fc4d8300d9f9338fadd07e4c80cac08113df8971a868458c47c06fff0c1c4bfd48ea583e9e76ef103d42c233b6de10b30612cdbeb6b60a6a4dbbe2da63cc2dd4fb93cac65af3c1279274f4af0e2c5b96e6068aa5b41f7548fb72b0c142351f64446db7425115b89132b5589ee642ebbde655adb2d7d1117456a6e4f2886879b42baf85e05d53e2aceea9c3830673bdc4d081675fe76b994651af9c3f16b7513834fce4654f84558a8308fa677d05bffcc893d5e02bf87c5ec520cd66ad58dc06f0c47d253cd36dfec82980fc8dbdc9e185fe4fbdda2c2517ec9abfbb4841252e650b6bf56fdeca9a4ee3c311de3c6859ec14cc00e95323c57c02fa894d83ea17944f3112fc19a7e11335d7951ec6dd5b4f06fb9b637313a230341ea5da6a7a959e707d0cd5fca60a6649c8df8d6c17e9a49d230e5775df14e4b43aa3420bd0b8814ec7360ab1910e69fab8932f7646d7998bdc2e8ec354c52da21ed83fb7582cb9d37bb95f144974f72c7b0ae7b42945768fa8ec0dd6daba72d05809670506ef1054282201b00906c8af64e3e13a10f180688c96549b2d3d6b04403fd571e7b132891dd4b7cf37aec25ca1e9190c17aaefbc31e059915c12c232fb7097e9fa6f35fbb265c7102db62e2264590c583ea90f1aee3f166af81430d9084eb0c760ebbb16049c9fd1fee6ce33c8ac205e3ac9c275531feadfa4054e0c027c26beb009f54aa72b864d39bb11753f77931bb960276db33021c65671e57b3708bbf979be222e8439d71f58ca87cec7a054517af398a42735b580717377a54f139e2c46813cbb03d98e49c26f4ed54d75e48573cd06145f913f4e313eeee837496dfff75aa722fd8486c45f9c959da12ae48ba4a10712120a203e2476c7b96031d8f8773f68344e6fa21831287655aabbd594e9f272eb1a7315d2d79b8bcd5e63004cd106f80b1e40a5d9e428a01bc58264f4d63c2ee9db6efa70607a642aeb883bf4b9fe009d7f09c16b05a2c9b73573e9019e161ebbdc1fc9b9cd0c5fe1b57adcba2d0f3a767ad59aafa159b3dd181f0601ff95e8af8b5410e56c81ffb8ab35b1e04af35dabf69f08572e69260b72bfd502c5a0de627fd3fee44bf1d4a261bd356056c5739398e3ff161beec1240a089625daffbc61dc5e660c274565477a0ff1797fefff04a98704802ab0674ab72d400686229608cbfd2ca20f4e62495e8b09de9d180c47375bbad72f4474b67d56104b4b466192be60f7aa668fd0a4338b856f114311842ee806d6488ab09098ed9de0e21bcc8b42a5d5713d15eca108fcc7a65d6b414a112524a6e1418644508dd957147a92d4399d13faaf01cacef40549cd11900f9aa32a8333f55796ef25d33c554a308da9797cd0ac25888311b0ac88eff0be7a36ddedcfc2b095abb4d5a6a4edbbad67b70cdf60c7ed0c5e040ced90edb3322ef684332358942ede9191b431c99b3abf8f9c50206479f0ac118c0a99df61fb9c90d846f41caa6a2448fb7e15640965e051c2af4ee72a5cc7c962bacff7019615c10e6c3054e2e5792df3aa6e2c33425552148466a88568cc79b6edebf0107b7d3d24423a665d20c3a1c0f1a6b34eb475bf875912115914cfabcf394f8a096d64e5dc95705079f748b9d4688859c0200fa43719e4722ed6c064c0efa7e07beb2a26fd724b63537fa0eb506365d5c029cd8dce7dd0a1cb9d9058c061739734af6be9e880fe7e28a211a4c368a7babd1107110ecbb384b274cc092b9511c4abde2ddd863162e2739984a9f3c0a76e3c530a27d5e385f4a3b87607b2a944e09d28239661d27719e22c0a657ea383c30859ca29cdb8fbc79bc83e995dcb361743a7e195650c37e570b768a0a1f0b118fa5be9b3c838326343ec5b376d5ee040ee29dfd868cccf9cfa4591151f519cd6e2ae1453a58aa92f90ee5be11ceb8511ab743f399be0a190eeddfd112336866831c3255ef6520d88b2581ea3767f3df01a38d9b4656f2a89c5df41443291a795da45c8a846015cd041bea0dfbe648348b10ae73ce43d9017182792cd9172eee642c549a530cc1f537f9aa70ca63792ba4a86a713ae09b917136e5bf1506ad7f367d8d2f77f47a2318facd109bba9b1327b5db9e4aeffbdcf414db761eeacc227a15cd72aa52c8ede33bdbab9de9aa1e8f470a388013d07f08777e2131bbd4856ab5c1c38d03ef407197ccf24e8b2a8db69e78f9d6623033c453e2e54fce65fb785467064a146c4bf218068b5e3efdafaf93a98253becaef226cd79468ff1bbe0c9d43877f5cbb5844fd8957f15d3ef208aac11816585cdccf039c36b429d3d7fb634054fd0f09c8abea3746a6b7379142abde26d998ac7e39b94746c60c09f86ddbd7497849d1ef839730672449f35a3c3253666e9fc053ac1c518e44e0b84555be507f7c00fa9e4864b4bf40ac3d93f12001eb780a779e655d0633803268c094ae161a0efd652003d6ac47f9a6c28d866b56233f371627b01e0fe9361dca611a28841968d4e12cb73d49ce08fe25de4a90b2d34607202b20e71f5e1eed38e17d0a2748f548cf61735f4c9cead1cb93b11929d906d65fc60f88e6919b7b5a1014e6d408bce9c8cc832eecf9147708fe451891717d2ed99dee70773feaa97985102abd3dd05c904c28898afe060621db6564887bc4afe158fbe1d819136a1ac1dc9d8674798a93daf5255460b50c34496205834c668db4c764e76ebb6cdaf5fc44b881cc2ae87b4a7cc045143f96b1620abfd0f116e673b335beefdafa1e58d9194e010cb78956044646da5ba853ce981667f2b8e5001c2df437c9d597ccd2be7d2887f5cb7aad0539abb3f9db1c8f5cd4d7d831946ba1c1aa8737c114fec1ac9a82519f57cb48c49b7f62e9eaa89f448df33fb307cd0036c70b490ac340f7d04e14f32bfeebb08a9d5bc7bbef8f231ea09311d4c82cc55c90eb53c6c003cc98a34dd3c4ec2d8b3a655a78e16e908f368733d0a02b36fe963e2d80b5e6f7b2e3aae3013c900c76e4d56e8348bef221f8a642e692c23b12520fb68c793e789eeeceb4efb2097a4d5952d144094cd7be6edc933d257f6230e962d70ba42e1b07ad9eca0ccd60d3d9a6e06b73ccf96a8aa490ed3bd58bf4d79db65355ae145b54be004e464f4dd23fb8b1bf15e13838116083da67186513652608e37c8f847b2bcafb57bcefc7efc8c8182c7d708cce5d14695b4e618e77f8e7be81f27a05e415fd37ac21507a665b2558daee5c0b0859fedfede8c03f181ef5e0ec0da6caa3edf402dd73bcb4026c489a7cca8ab700d3e9f050006c36768a16e8a48e48ed5750b8cdb7ad1fd12d4cc8333d324d6c83905303fa7013fc02553b587544affe38f1a95e0c4c39740d63b6d387fc89b30bd5fd745cb64844b13897ccf5cca135f7d39e03ce8adcda919d86b25b52764b0a0c4f07f88df68868415de13863df84a7e8d355b09cf90e482eb4174fd01f1b371a4dc52f3c89fc3a70c71657aa5d7573ef9acf4d2b0b321c41ff2640515bb43637ba2288ca0bff2e2a3a998ad8294c52f9edfe0a4ee0a3f8ed5b4b5c43319bb9c58dd07ea3237d7bb62cb086e7ea4a81cba2cdeb28794a09c275a704963110b64720bd089e3737ee1a91e348b5e97b63e1724de1fa9f49961d653bbb47b6fa993b035cf59659bcd0306180645162568abf51127845cbe6e37cc3c19b9d69657db4258fa5e8428a73eff6506bff474c2e302ad5559ac8de44c6f0baba5e2e579e7d7f9d9ebf540674432ac11d92bfc9abdc24126888b533f43bd6f293b0bc315915743114a35308a0ee2e710522137918a2b09ddbbc7a2313a2a6b85a1ad26f14dd70072651c8300ddf6de29704b716ce1bc431c66ccc96731f46359a9f6850976c96dcb5e0ee47446f50b6b3ba90d45224066e123ad3854d877c0cdd9325000ac0d6813c30cd43d3e150335601724ca3666458dc4c04f6562296982353e155d5255c9008c0b46d21a678c8fcb3aa8d6574476e0458eb0a76a6cb50f929ed218cc4654cb4f95fb3afbc2548b74acc312563375a19e55d488599488dfed4dd31b39f29ad61dad343dfca3b45b316a34e7a7bebd2b0f562a9e69848d13fc80a4fa52d0f17bd15d9e1fd39a7dcc86128d14493805d105a745673bddea68ca74ac09d95cc7412d5be2cbd0a247a81dc9e148111e22cdf3375805469226ca3538f960a6ba6aa0eeeb87c784ffb1bfc09180a61be3c7c535fc6d593c3b3f4de21b8c3eccc9021e80fb07dce0aeb3b023bd55f24356f646791ba80e5ca21ac092a069ae0a22cfefc08c23cc7aa69b570bd17cce9de15871d363f167288f99f04761caa67f12c949466493f661d39ee4280c955446ff5a9bb14f2d1ae21cdb91a5868e0c52097cf380f571935b140562922763f1b79c3709b949c57a00b08828ce9e685f6b234b5fe3c62d9feb249ce75e81f5efd556c14d5da24dc0554723fdbe52659969a39f470e82c50c4777c908628436e31177af1125d5f70ff627462247e5bc20c47ef75f369174586d43d42f7eefdd47fefa745badebca2a881ccc018ea411cc8a7a0881422bee8704bb98e6bea9fbec63441fb45d7ccfd436909b57a2b60b788e15bda3ca7663b19bd84d0879deb639f10def9a99d42a4b9a4fd7fecbf6d2e7598678307ba9a5b6f143c27cf1ca41e3c904007bb762cd5df6e63c4cf422c2ba959e53bd8e5664cf5df6a91a4bc8cebc52b22f30060fcbc5ead53d38eabd160c1da4cab8aa95c3640ffd78074aa2cbb05cb8ea90a0c95a4a1b2be1ee94f238000f1faffa069d87039f13f5f84ff368aec5a0b10020232b9fc954a6c22573ef48459e574d48a4845837e1d6ef386738ccedd093d4d5bf3a3f790c875ba7449d03397642feb71100f2c25ab2cadf0b0802544a2095a51b19cdece623b17d420b173a99c081f8e229b6de3c680d6bb39bb98b479517d77cca581b81cf856753a44ebd64cff111fb8ca37ea45d217a3fca44a083e6c35b0fed9f8f7631178d15e88f86c85f1ce68c900afdd1f7e5b8bd4ef3f58c447b77d3befc49180df7a5eb2ae8ae33b4ef573f3a425da8a60cde84d8eeae6d6399b9fbbfa0fa8d448b25c7f79b7554d0b02b0decbc74ae8560f630af596313fb33d442a410061ace0aa7a440d5e31ca8bb2cc495c4f0b672edb011b0c5f16781836df7f4af8329143d5a1a99d7b18ef9f774c4199d635848cedebac82637a03a189c65bf667503737c75b6639ac65ad424ca475285437e6f19830b36549f607ffc387c8b11a34a838159376a6335afaa045bd2bb04e279dd72436331d07dfbd72e2436b27f0df23a266fd15cf56d1a9e93aaac8901cfe49a3219ae36c5c65c75e5c708fb82cac4d6a50726509ec3a7d32d54cf584ae353a5bff759fc677a0b240cf8a0a72817c9d37699ca89c96e0e0d96a7665ac3a7d1febca1a1d79e2cbde8025c271360e2f90048b2d9fd56f45c013e001dad4b7785be69dc01f8a954ef7a84455986fc5c9d5167d91808efdb4476ed79f99563d887cfd4e99809d9e388501dea228cbb3cf3770082dc566455251fd9c2c742963c33500618c6ec99e0bef007408a0462a081237be4c6e5db0258d4be5fc9cf63fd1ace1f4166c053b0fb84fe24917da1255cf40bbb1b45644f6a7699cf802a35a932c374b1d62013e6afca3787627469994c02f622ab877ed5491fc2a89eea60e4e1628da89e3ad600ff6442e4ebf20e47304176b6a1703c094b3cf6d7fbbddd8d8fa5a00f28b4d8f43d88487e9d4531071512f2027198714a8d1cef126775547fc74f2a35840510f325e50361be76557767560055e084f2ecaefa0dd8ca8215301a7a887d2eaddaeb1f5c3dfdbd2cc1ba5f02d4426b98c0f861c5f724405758f442560ea6cd1d953456cc4aac6642ad61c03dbaffc2364d8ec2ef9f483c70355139d1fbd9617ab3c7eedf0b8963c1cfdab769180db43c416a90d9fdf3fd0eb2f81187642b4e2a09d6462d27527fdfda31f7b262501749dcfc6c184983f9923424131d05cc811cacf5c2c87e8e6f135349e68cde0e8997bf1dde248e5124d5dca2681abdbe58d327a8edd585821f03fdd4515728f1336495ba25c9bba56a3f706d60c35cbd0b40d0ac0583a981f9af08510ed8ed0a726e5472f8995af3837fbf1e89587633d2ef944868a153919165778e963710872af12faf96c0919c638e5affa97104471ba6e178d27602f96b9546ebe52190d91be245be08742b96389080676a566d3229e593e4f56a76ae4c58113c6adc1088703b1b92dafe32a5600e14ac1e71df829dfef425911f16a2b91f693599ecabf93065c6c4f5fefca8d4ed095599113529f65d9120d5252f577af95b404979508c343df54e4d239720e7d3a861f1dcabfa69e12d655c8a026c10a4df279b139fd222e561d205ac9b45c1054f8699eca594fb23886e0de565186597766dd5e40f74a423d5708dac254f4172f1089270988fb18715813f13ee4d131b64dd517c7e77f27f804b229f5339ac2f483b14739ac33a9645044d3010bd77ed18fb117f7b11bb51c4ed683b59e28bf25a58f123dfbeb1f0f21f03d9b57d8e61d59b311037a5b757b03ca5c95e0eb73922c6918530c99de4d6733640f2b8d13bebce31d4f5e27aab201101e48cde23a0d7e87b9511949d812e3187ee5ff11bc5858c022ed7b00790eba32f9ef7e134ce5f73a01269ca971b40e62133eca9d596a768686d6390b2c74602f6dc597faec3ed9d9658102d99c9624c1a97d00d63853578afaccc7e30a77fe054ebc23eec45f608f996fd015cd6bd50a111360f0790eff6ffb1ea59d13c8e29480bd96217188f97e53a1f5d9eae0a2badb4fea52f2bb4f8cb04d0afd99e7371a978a7d7ef473f77ea6738ff84af655313a12db24cff692ec7e282245ae9a42338db814593448f7115df3dc3f4e2faa2c2fdbd68f679d6aba01a15031347bb17d8bf8f1fad0ecf365e9dcd32e69803c5c05f4b47adbf8a21af7e9fb327f267df1c914486389a9820edf0a03bde6ef388c255761e402b2f7e1f9c1c3c95bd30c502197ab37f76b52f0d0675f366e919be19329853767bba34a540fb75bcdcc9596a4cda254a660e11bed5af9d8646ac4b7d6d7aa5d7c0005879b6d08058a56c3d3a4d3d401b883153fa7f2f6a6d34dd010f6b9e7b4e457b9ff5a5802d7723abb35f9dca0afc10fd534e7753445b7268d90145b6438b93fc475f44d5d678d79da6c5770f3a9106f3cffbabe4b88cbe7eda9b8a495be4f6717b0fbee6fec78c86031b6d878d47e357b2089de3e6dd19a265552553d1f7da53884ef84d0eebe782791c48a9c68a28d8ea3bb70c922b01dc20b2cd05cfb276e326651398f766f5faaea54a41da597cf6b50f3d5ebc634185b99069126b8d935c6bc42c47f2109de42091ef4ade3d87cc44aeb78709255501e64f34ac2d4b2725cf7777315f8ca9424bc9d61a896a93500faa6cf5a5aee1fb888e17b47a38a667be2ffa3bae46afa88bfd8b5b6e1186d6e41b9a4e490591043372c23f36fb48d80caff74cc349adc92bb25f701738c809ccf74c47afa193795ee67bc58ea7fd85542fa7e70218490fff212163401cfde016df2f42496bae403d5391e53fe200f758bbcdead0fe72c77861889b9632a257229c35bdfe8fa78375b4f5c768b9c60cafbde1f00aff6ca1879f6472f28001f5f13d4d9d6c3a90e04d8df09873550daa8262d39efbe96a79c697fbcc9a7f27c9f6d782d5d5f6d024b291376e9cc40d902f809072e1f0f2c2ab88ce3d074e88461f5971853e7be749943ab6e25e25e8afa5042dd73407f49b50841c7782c54eece62ec2beef1f16caf1ca5989427bd2726ca0fee33e303702e9892e4382e92c3f3a03a6188f39762db81819c7e12b424be8fd964dcdbfbac00139e8c5a6200506f13f484ac34ef3d26e7cadd53cf402117419c1618205bfa5382486094bd55448f2b1aa4dbec2289189b601b1bbf5792b2a641c6f5dd19cf24abc72fc5264cf11f6b44a4929267a02cd1de1b602b9de65a6c06640aa0f76109baa90d66eeb17295b1711365b7d6835a2dd55b7fe868c59453613240643c847a5b48d27897a58dda63e579c1bba58350550e147b190f0a2c9a5ce719d627ce3302028b4b6801bbfa8cd74874ffba35817c0eca034d19210950796807125fe6065dcd47d7c870ed2db5c00cff235e4154e2d89ec2a09a87551f9b7ca25d519b5603c0c33d2cf72878199ffab567fc5e093529b89d1163587f3564ba8291d2d96cf9762e7f568e786ea90849f6312c1a10f45d61600cd45c48e6870a7d76c913f9c4497374fc04401cbd11f7710740148234fe8f041f24d0278fcfd48846e6aa49f05016fc332dc5d46b4a26574fed5c0751cebb9f7ab4cdbc1ee011d82d6ef95c52c9df8eedac3ab5cf30805f23d88d4f707601f8e6c606b58f2fe234e948d6756d430a5c4ec76a33874886c8fb484059b47a9bd198a61a1896419288a9e81d0969dec778a53e8233f0f63bd0134e5f29825e7817e7c8ccb7d9acd8f86ac9d3af78c43df3036d7934dd294f2bb12063bee52c547d27a218145befb0ca96cbfaabd39fa245b51c39f4cd4cf8db105f9dc46a7aaa8f7d06fa208120ce1ac49326179618fa2c8596c44e174eb7a141056b1d17689c10dee089c8b0867b8a757ae12251bbd68db5fba2be341275fb6ee379309f5cde9b31242b0b2bac44da74776fac141936bd96e3177161f057c820a8c22cca8cce29b158eb55aed0260253fbee70a6dd281d9fca23e0b0a38d46c76a95e1262f1cafcf0fc37b52e649a1ba1e2c0f97d10bbf4d2b5632cf340bce56736071d5885ec9b4e17910744d3e63e2ca6deb21e43fc21e89c6865d3ad424ef4a14efe8843ff3168c99ee395400dcc8755719d290c567c95a5e7d28ec1190ceee240084d444265cc801cd960f69b368359bbf06b8a4ec23b47c7bf9d4b16c701a1c4fb9e81abb75bf49d450b566ce03de939fc6f5c51291380086f8c995cdd4fa15a325601c4846a69f15c77f55c900270bc9ea5f406480cb0e3e89bc869fe8b7cec4fbef7e76283d50c25ab1b4d34d093a7df062990a925a9c44aa2661abd7d381a4d6cdb64821ef624dd51b72e99af914bca2f80c25b82ac6945df7c7582e6d0ce2cd073e35f1fc120a68ba210410db64592a9aa319b30f2b818c495750e1cea0610e27d52be31e52e501a3bd51b501bc51c2ec8592f679b6e55b9aa58d513fd2bebadc83ba76eb45e5676f130193e9a666b8c8132c9f5141681fbab324b555c5c890d488ac2dd00feead0a20fbd8a46391438e3193edc6fb89161cd864fca98f4f39a2893c933dcd13bc8c5d5a548d24862e8161c0fad7f33aca8c86791d620815fe3f0daddb5defd933d0c10097a7a98e67625420b6c0db7c3e17ab07ea64e6f0f53fdc670799e06a2e3a871d6be363a2639e35339361311e0f528cc433eacea4f79bf217108c7b1d657840253ffdea18bdd1f93cdee63e7a9b8dbcb4ee06162b253e09ea0641f2771bd9823dd210905e9ea495f43194bb471cdeb690e8890b03b50835d53dde1b572dd123ccc8507bb57a45e46c0efb8fb3d5596bddf9782d86dd911636eae2cf64b5829cf8893faf789be3fa22859accf688f5b5da6c29cacc96d477e23b63cc934f685b6e42e1655c9a9b94d6d78402de22b8d9776e3915391aa258e57467d770d65480ba2f6a94b0337965a8c659c42b4e90b14da4697d0c0a6d74774c94c52d8ecb694eec747bdaa6c3a6d60739db18c6446090eebba72e62ab88b0e8b88e728ba8cb133d8524eda89a2bff1c8414da3edfa6f83788331c8a7e5a8af2dd3682d4752190a3c689949abdad8350111373e7fb46151f54a10f79d91940e37efb05f9f157bddcfacf018b65a38ab614807c34a2786af4a1d48c4d1c1abd31815715f9d1b103992207fc664f12c82fd923c57d8e7cfb9f4af55182318d055c704865cf484206d60e34cf7fe9b6ce60b1772c5c7cdacb6695227d80da18ec1f98a434b1aaf9c6b6d082f5663aed2bf267e559dca6b93d3ce34273846fc677f529690482df0a8f782b8ad7269f344f5f2b4d320a7ce2d2fa02284f8db634dc930c3e2b9a629245364acf35d41e9a14c88efde4e742ef1ea4b43d0caf2e70d4a617278823e6403934524debbd933e7676e441a48f630dc8bcccd55d9032d6bf3dea97d1669c39fb865b0e619eeb3f5461e517000f5aee3ef2abdb87d3a76b88e140eb4644a9fbddbdc9e20972cdfacf00bffa3a1ca5f84122c2ebc54067cdaa23967eaeb7bbbfe44e5843382b834fae1f62a066688595e4ee67c7ff9858672355abf7893ebeb4bcf88a62b2237c6e6cec9aebe3f28bfc310ced3a590e88d4bd0f53289206deb9addbf6f3c02115ce4980dadfc112683ae250c2d438fd9c0f2a090dbf122a0072828db798bdb868dcd47384dd3f5eeebc0307a5b268683cd51f312e8f02b5a7746b11a97ac43287d9b9765f03c720503cfe6e0117660a4c00d67895224c4d42b032000a10d7a743054758a8f54941fd5eaf72498b678d1579b3de4e5518f90f1e3d32517d09d7f5da9d180215e66218e9dd64036819cf12638ce82712a6cc79a9ddb36e86814b797d72c2bc58b18ba439e99965f745b4fb7de2878e3186e3e7b835c746b0935f6c67e92e3770bd8d5eb4f66d8175ceb7850e418c55e574db891639aa77fc62bc45dcb734681ede8484d4d4109a9adb8c3d00", 0x2000, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20, 0x0, 0xfffffffffffffffc, {0x0, 0xe}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0)
dup3(r2, r0, 0x80000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
unshare(0x22020600)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)

3m15.072472593s ago: executing program 1 (id=345):
fanotify_init(0x0, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x800001000088}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
socket$netlink(0x10, 0x3, 0xf)
r2 = getpgrp(0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000040)=0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x2, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r4, 0x1, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$key(0xffffffffffffffff, 0x0, 0x40000)
setxattr$system_posix_acl(0x0, 0x0, 0x0, 0x24, 0x0)
recvmmsg(r1, &(0x7f0000008880), 0x45b, 0x2, 0x0)
read$FUSE(r0, 0x0, 0x0)

3m11.350484644s ago: executing program 1 (id=349):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@dioread_nolock}, {@data_err_abort}, {@inlinecrypt}, {@noauto_da_alloc}, {@data_err_ignore}, {@delalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@grpquota}, {@noblock_validity}, {@user_xattr}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@errors_remount}]}, 0x11, 0x553, &(0x7f0000001080)="$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")
gettid()
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000006b40)={0x2020}, 0x2020)
pipe2(0x0, 0x0)

3m4.170245335s ago: executing program 1 (id=368):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
ioctl$sock_SIOCGIFBR(r0, 0x8940, &(0x7f0000001e80)=@add_del={0x2, &(0x7f0000001e40)='bridge0\x00'})

3m3.280718694s ago: executing program 1 (id=375):
sched_setscheduler(0x0, 0x2, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401)
r1 = syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0)
r2 = fcntl$dupfd(r0, 0x406, r0)
ioctl$USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x2, 0x3, 0x0, 0x0, 0x7995}, 0xfcb5, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
readv(r1, &(0x7f0000000880)=[{&(0x7f00000030c0)=""/4096, 0x1000}], 0x1)

3m2.81888214s ago: executing program 34 (id=375):
sched_setscheduler(0x0, 0x2, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401)
r1 = syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0)
r2 = fcntl$dupfd(r0, 0x406, r0)
ioctl$USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x2, 0x3, 0x0, 0x0, 0x7995}, 0xfcb5, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
readv(r1, &(0x7f0000000880)=[{&(0x7f00000030c0)=""/4096, 0x1000}], 0x1)

2m57.809761081s ago: executing program 3 (id=393):
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file3\x00', 0x4080, &(0x7f00000001c0)=ANY=[], 0x2, 0xc3d, &(0x7f0000000c80)="$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")
setrlimit(0x1, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff})
truncate(&(0x7f0000000200)='./file1\x00', 0x20fffffffc)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x84442, 0x189)
write$binfmt_misc(r0, &(0x7f0000000000)="3e14", 0x2)

2m57.419197331s ago: executing program 3 (id=395):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ptrace(0x10, r0)
wait4(r0, 0x0, 0x8, 0x0)
ptrace$setsig(0x4203, r0, 0x9, &(0x7f0000000240)={0x28, 0x3ff, 0x80})

2m57.159252512s ago: executing program 3 (id=397):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='ext4_ext_remove_space_done\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x18000, &(0x7f0000000000), 0x80, 0x62d, &(0x7f0000000c40)="$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")

2m56.569078698s ago: executing program 3 (id=400):
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$eJzs3c9rXNUeAPDvnSRNm/a95MGD9+oqIGigdGJqbBVcVFyIYKGga9thMg01k0zJTEoTAlpEcCOouBB007U/6s6tP7b6X7gQS9W0WHEhkTu5t502M2mSJpnqfD5wM+fceyfnfOf+OGfmHu4NoGeNpn8KEYcj4t0kYjibn0TEQDPVH3Fybb1bK8vldEpidfXlX5LmOjdXlsvR8p7UwSzz/4j45q2II4X15dYXl2ZK1WplPsuPN2YvjNcXl46eny1NV6Yrc8cnJiePnXjqxPGdi/W375cOXXvvhcc/P/nHm/+7+s63SZyMQ9my1jh2ymiMZp/JQPoR3uX5nS6sy5JuV4BtSQ/NvrWjPA7HcPQ1UwDAP9nrEbEKAPSYRPsPAD0m/x3g5spyOZ+6+4vE3rr+XETsX4s/v765tqQ/u2a3v3kddOhmcteVkSQiRnag/NGI+PjLVz9Np9il65AA7bxxOSLOjoyuP/8n68YsbNUTGyzbl72O3jPf+Q/2zldp/+fpdv2/wu3+T7Tp/wy2OXa3477H/4EdKGQDaf/v2Zaxbbda4s+M9GW5fzX7fAPJufPVSnpu+3dEjMXAYJqf2KCMsRt/3ui0rLX/9+v7r32Slp++3lmj8FP/4N3vmSo1Sg8Sc6vrlyMe6W8Xf3J7+ycd+r+nN1nGi8+8/VGnZWn8abz5tD7+yEYn7Y7VKxGPtd3+d0a0JRuOTxxv7g7j+U7Rxhc/fDjUqfzW7Z9Oafn5d4G9kG7/oY3jH0lax2vWt17Gd1eGv+607P7xt9//9yWvNNN5P+JSqdGYn4jYl7y0fv6xO+/N8/n6afxjj7Y//jfa/9PvhGc3GX//tZ8/2378uyuNf2pL23/riau3Zvo6lb+57T/ZTI1lczZz/ttsBR/kswMAAAAAAAAAAAAAAAAAAAAAAACAzSpExKFICsXb6UKhWFx7hvd/Y6hQrdUbR87VFuamovms7JEYKOS3uhxuuR/qRHY//Dx/7J78kxHxn4j4YPBAkt9HcarLsQMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA7mCH5/+nfhzsdu0AgF2zv9sVAAD2nPYfAHqP9h8Aeo/2HwB6j/YfAHqP9h8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBddvrUqXRa/X1luZzmpy4uLszULh6dqtRnirML5WK5Nn+hOF2rTVcrxXJt9n7/r1qrXZiMuYVL441KvTFeX1w6M1tbmGucOT9bmq6cqQzsSVQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsDX1xaWZUrVamZfYRmL14ahG9xN92e70sNRnTxPJw1GNHU50+cQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8DfxVwAAAP//02Ii/w==")
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x49)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
bind$packet(r0, 0x0, 0x0)
r1 = creat(&(0x7f00000000c0)='./bus\x00', 0x0)
fallocate(r1, 0x1, 0x8, 0x2000402)

2m56.228834544s ago: executing program 3 (id=403):
r0 = fanotify_init(0x20, 0x800)
r1 = memfd_create(&(0x7f0000000180)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xac\xbe\xe1}knh#\xcf)\x0f\xc8\xc0\"\x9cc\x10d\xee\xa9\x8b\x06\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\xcf~\xb90a\xa9\xb2\x04\x1d\xa1\xce\x8b\x19\xea\xef\xe3\x00\x00\x00\x00\x00\x00\x00\x00', 0x1)
r2 = dup(r1)
fanotify_mark(r0, 0x21, 0x1018, r2, 0x0)
pwrite64(r1, &(0x7f0000000c00)="3ce8a97979", 0x5, 0xfc9)
sendfile(r1, r2, 0x0, 0x80000000)

2m54.388715698s ago: executing program 3 (id=405):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58)
r1 = accept$alg(r0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
sendmmsg$inet(r1, &(0x7f0000000ac0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x24048080)

2m53.786503185s ago: executing program 35 (id=405):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58)
r1 = accept$alg(r0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
sendmmsg$inet(r1, &(0x7f0000000ac0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x24048080)

12.301249491s ago: executing program 4 (id=1016):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$unix(0xffffffffffffffff, &(0x7f0000000300)=@abs, 0x6e)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
getpgrp(0x0)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sendto$inet(r0, &(0x7f00000004c0)="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", 0x109e8, 0x805, 0x0, 0x6)
recvmmsg(r0, &(0x7f00000031c0)=[{{0x0, 0x1802, &(0x7f0000000a40)=[{&(0x7f00000008c0)=""/135, 0x87}], 0x1}}, {{0x0, 0x0, &(0x7f0000000d00)=[{&(0x7f0000000980)=""/146, 0x92}, {&(0x7f0000000080)=""/43, 0x2b}, {&(0x7f0000000a80)=""/242, 0xf2}, {&(0x7f0000000b80)=""/143, 0x8f}], 0x4}, 0x2}], 0x400000000000300, 0x22, 0x0)

10.869273813s ago: executing program 4 (id=1024):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x14d802, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x28011, r1, 0x2c93a000)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8943, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000380)='clear_refs\x00')
writev(r2, &(0x7f0000000100)=[{&(0x7f0000000000)='4', 0x1}], 0x1)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x3)

9.729267782s ago: executing program 4 (id=1030):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r4 = socket(0x10, 0x3, 0x0)
write(r4, &(0x7f00000000c0)="240000001e005f0214fffffffffffff807000ec01d00000000000000050008000d000000", 0x24)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

8.07800945s ago: executing program 4 (id=1033):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$unix(0xffffffffffffffff, &(0x7f0000000300)=@abs, 0x6e)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
getpgrp(0x0)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sendto$inet(r0, &(0x7f00000004c0)="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", 0x109e8, 0x805, 0x0, 0x6)
recvmmsg(r0, &(0x7f00000031c0)=[{{0x0, 0x1802, &(0x7f0000000a40)=[{&(0x7f00000008c0)=""/135, 0x87}], 0x1}}, {{0x0, 0x0, &(0x7f0000000d00)=[{&(0x7f0000000980)=""/146, 0x92}, {&(0x7f0000000080)=""/43, 0x2b}, {&(0x7f0000000a80)=""/242, 0xf2}, {&(0x7f0000000b80)=""/143, 0x8f}], 0x4}, 0x2}], 0x400000000000300, 0x22, 0x0)

6.598660305s ago: executing program 7 (id=1037):
r0 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
getpgrp(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
ioctl$VHOST_VDPA_SET_CONFIG(r0, 0x4008af74, &(0x7f0000000140)={0x9, 0x15, "c2f689f313de175501a67afd207c74c2f6c2afaa50"})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r2=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r2, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000700), 0x0)
read(r3, &(0x7f0000000200)=""/202, 0xca)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)

5.410906998s ago: executing program 7 (id=1039):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x800000100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$nl_sock_diag(0x10, 0x3, 0x4)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000300), 0x0, 0x0)
mmap$snddsp_control(&(0x7f0000000000/0x3000)=nil, 0x1000, 0x1, 0x11, r3, 0x82000000)
ioctl$SNDRV_PCM_IOCTL_TTSTAMP(r3, 0x40044103, &(0x7f0000000040)=0xad59)

5.370361701s ago: executing program 4 (id=1040):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="280100"], 0x128}, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000034c0)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f00000001c0)=ANY=[], &(0x7f0000000080)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000480)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_open_dev$sndpcmc(&(0x7f0000004240), 0x0, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSKBSENT(r4, 0x4b49, &(0x7f0000001240)={0xfe, "1cf11f0cf3df06723d68cf2e34bec1fe7aeb2e4f9bdca646c4d338b97ec131354c136ec6cf21a7fd51f27fb956a8ae3885ea642da767ac5f7080830a09b0ff10a4e89e9067691bc9d0c78817f1b777a16c084308ced3efc24ca6c31102220f5d34355338afe106101839c316ef0f88d2fcca226daf1c10a3b4d5bfc8a48d752e7f4a193c4b146ed8108bd5fbac85d2de914e1e1f4fd94decd9fdf1c7af946b07ccce200a7e5e20ac043bf7f8dcb806487be03132bf1f4ea1dc15bfee959c453bd5382b93ec14d8cd22c31ae731cbe7526b49c83607a4d6d0184af37286c08c9572e8b83c8dac93d59d5bf5767d5cd3c023cd121bc6894b0449b66a83345f8720f9113d0363314516e93cb1156ed299e6311c6c27c40a082795958fdfbc97243266bff54d143624911e7dd42e6cfc53bdace1643feecdf2b236a43f15c815cc95c6dd597a69d1e43791827ad87ec72c556ca24bbdfaa226f2367b76559dfb4b668d9b18bb089124f45be9c870cab5973d8a7488703e0c0704777129845591622a696f225bb81d93f5c72683e9778690770fab6750f3d8ff3162cbf04eb0be6477baa460b3f8e457a7b8bfdda324330accb61d513420c4db90797203eaf78e28160ebda297f435c87ba621e550ecbae53a8e48fa9ce5b40d578f6d20778fb060b7c6706d2b842596148cc25a33b5beb9071468af7ca3cebc7b57391b6b34f8d7b9"})

4.986400851s ago: executing program 6 (id=1043):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x21c0, 0x103)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001180), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000300)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}})
read$FUSE(r0, &(0x7f0000004280)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f00000062c0)="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", 0x2000, &(0x7f00000015c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={0x10, 0xffffffffffffffda, 0x3ff, {0x0, 0xb}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000180)={0x50, 0x0, r1, {0x7, 0x2b, 0xffffffde, 0x318145a8, 0x0, 0xfffe, 0x2, 0xfffffff6, 0x0, 0x0, 0x8, 0x100}}, 0x50)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40242, 0x1)
close(r0)
r3 = open$dir(&(0x7f0000000080)='./file0\x00', 0xc402, 0x80)
mount$9p_fd(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0xc0c, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}})

4.805146965s ago: executing program 6 (id=1044):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2, &(0x7f0000000180)={[{@jqfmt_vfsold}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4000000}}, {@orlov}, {@noload}, {@delalloc}, {@mblk_io_submit}, {@commit}, {@noblock_validity}, {@nogrpid}, {@init_itable_val={'init_itable', 0x3d, 0xfff}}]}, 0xfa, 0x477, &(0x7f0000001380)="$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")
r0 = creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x9)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x40001, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x30)
mknod$loop(&(0x7f00000009c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000, 0x1)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000040))
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
rename(&(0x7f0000000140)='./file0\x00', &(0x7f0000001900)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

3.807001343s ago: executing program 6 (id=1048):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$unix(0xffffffffffffffff, &(0x7f0000000300)=@abs, 0x6e)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
getpgrp(0x0)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sendto$inet(r0, &(0x7f00000004c0)="3ce2de4d8d957a8de4e490b6cd03b988d4edef164bd3377aa381b5f50b7ca414516489f78cd7208982e9bde22b2b7c1c7606d565477f3db9d2b077283644c0f27ab52a863a42863e06944e40a0b3c5d21c8cbe102e7f726263f28aef1bc12a069063d4c30e8f329fdb36859be727fbef4314161e5fb5f01ae00a2634d5cdecca2089c62e32f4c919886b2b88d237e287318739bec0364caf15889f38a312ef6621c0f21709a4bf2b16274cf933f6ad8fcc9c2024bc1b4713f650e860f93ae93b2361956b3e80c38c5fd29b5c1b5d7ce67edc856a8dc0ba54cee53de9a48c131389426bd06ec7c695add357934fc0321f0d3d7982e4fe5a0039decc491a663afd02facb08dd9695f854c7b031d9af8bd7350897996b5208b23030cc0feb84570730eaf24b9f2ac05d0feb3be07a29f887095f36f3c8f0e77e45509acd14a5be4a1572dd4cd1231087b830fa03e071571d4abd694710ef140469cf6df8a59839aafe046a5bffb97e5247be901789eafd726ba090337a2c49207e6b900c7e982472e6aac70e5d52ca2c1bab47b1f6d00f9601e2281686c21f770ae96e0ffec4b30496d012fa00958f794cdbd721bd155cae87", 0x109e8, 0x805, 0x0, 0x6)
recvmmsg(r0, &(0x7f00000031c0)=[{{0x0, 0x1802, &(0x7f0000000a40)=[{&(0x7f00000008c0)=""/135, 0x87}], 0x1}}, {{0x0, 0x0, &(0x7f0000000d00)=[{&(0x7f0000000980)=""/146, 0x92}, {&(0x7f0000000080)=""/43, 0x2b}, {&(0x7f0000000a80)=""/242, 0xf2}, {&(0x7f0000000b80)=""/143, 0x8f}], 0x4}, 0x2}], 0x400000000000300, 0x22, 0x0)

3.783344025s ago: executing program 7 (id=1049):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x1, 0x100000000000000, 0x2000, &(0x7f0000000000/0x2000)=nil})

3.46521666s ago: executing program 5 (id=1050):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000540)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
setxattr$trusted_overlay_opaque(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f00000001c0), 0x0, 0x0, 0x3)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x131100, 0x1)
getdents(r0, &(0x7f0000000400)=""/84, 0x54)

2.555473031s ago: executing program 6 (id=1051):
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, 0x0, 0x0)
r0 = socket$kcm(0x2, 0x1, 0x84)
sendmsg$inet(r0, &(0x7f0000000a00)={&(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10, &(0x7f00000001c0)=[{&(0x7f00000003c0)="c1", 0x1}], 0x1}, 0x0)

2.486961346s ago: executing program 5 (id=1052):
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='mountinfo\x00')
read$FUSE(r0, &(0x7f00000020c0)={0x2020}, 0x2020)

2.365162605s ago: executing program 7 (id=1053):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2, &(0x7f0000000180)={[{@jqfmt_vfsold}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4000000}}, {@orlov}, {@noload}, {@delalloc}, {@mblk_io_submit}, {@commit}, {@noblock_validity}, {@nogrpid}, {@init_itable_val={'init_itable', 0x3d, 0xfff}}]}, 0xfa, 0x477, &(0x7f0000001380)="$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")
r0 = creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x9)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x40001, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x30)
mknod$loop(&(0x7f00000009c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000, 0x1)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000040))
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4000000)
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
rename(&(0x7f0000000140)='./file0\x00', &(0x7f0000001900)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

2.322198329s ago: executing program 5 (id=1054):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r2, 0x0, 0xca, &(0x7f00000000c0)={0x8, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev={0xac, 0x14, 0x14, 0x40}}, 0x10)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
pipe2$watch_queue(&(0x7f0000000040), 0x80)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), r2)
setsockopt$inet_mreq(r1, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8)
syz_emit_ethernet(0x2a, &(0x7f0000000240)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0xfb, 0x2, 0x0, @empty, @multicast1=0xe0000300}, @echo_reply={0x0, 0x0, 0x0, 0x64, 0xd2}}}}}, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @multicast1=0xe0000300}, @address_request}}}}, 0x0)
setsockopt$MRT_ADD_MFC_PROXY(r2, 0x0, 0xd2, &(0x7f0000000200)={@empty, @multicast2=0xe0000300, 0x0, "028a3f6c58b274e6d8451697efe42811ee1df06e9264f7d866b1970548fc3c7b", 0xb2, 0xfffffff7, 0x4, 0x40000006}, 0x3c)

2.134240133s ago: executing program 5 (id=1055):
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0xb}}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000001c0)='lp', 0x2)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)
write(0xffffffffffffffff, &(0x7f0000000000)="1c0000001a005f0214f9f407000904", 0xf)

1.325079196s ago: executing program 7 (id=1056):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2, &(0x7f0000000180)={[{@jqfmt_vfsold}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4000000}}, {@orlov}, {@noload}, {@delalloc}, {@mblk_io_submit}, {@commit}, {@noblock_validity}, {@nogrpid}, {@init_itable_val={'init_itable', 0x3d, 0xfff}}]}, 0xfa, 0x477, &(0x7f0000001380)="$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")
r0 = creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x9)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x40001, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x30)
mknod$loop(&(0x7f00000009c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000, 0x1)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000040))
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
rename(&(0x7f0000000140)='./file0\x00', &(0x7f0000001900)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

881.758281ms ago: executing program 4 (id=1057):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x800000100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$nl_sock_diag(0x10, 0x3, 0x4)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000300), 0x0, 0x0)
mmap$snddsp_control(&(0x7f0000000000/0x3000)=nil, 0x1000, 0x1, 0x11, r3, 0x82000000)
ioctl$SNDRV_PCM_IOCTL_TTSTAMP(r3, 0x40044103, &(0x7f0000000040)=0xad59)

525.249058ms ago: executing program 5 (id=1058):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000100)={0x0, 0x4}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000180)=[@in={0x2, 0x4e21, @empty}], 0x10)
setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000040)={0x0, 0x5}, 0x8)
sendmsg$inet_sctp(r0, &(0x7f0000000140)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f0000000380)=[{&(0x7f00000001c0)='N', 0x1}], 0x1, 0x0, 0x0, 0x804c040}, 0x4000891)
setsockopt$inet_sctp_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f00000002c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="0b0001"], 0xa)

289.982427ms ago: executing program 5 (id=1059):
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r1, 0x2000)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
write$binfmt_aout(r1, 0x0, 0xffffffdb)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)

157.923177ms ago: executing program 7 (id=1060):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$unix(0xffffffffffffffff, &(0x7f0000000300)=@abs, 0x6e)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
getpgrp(0x0)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
sendto$inet(r0, &(0x7f00000004c0)="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", 0x109e8, 0x805, 0x0, 0x6)
recvmmsg(r0, &(0x7f00000031c0)=[{{0x0, 0x1802, &(0x7f0000000a40)=[{&(0x7f00000008c0)=""/135, 0x87}], 0x1}}, {{0x0, 0x0, &(0x7f0000000d00)=[{&(0x7f0000000980)=""/146, 0x92}, {&(0x7f0000000080)=""/43, 0x2b}, {&(0x7f0000000a80)=""/242, 0xf2}, {&(0x7f0000000b80)=""/143, 0x8f}], 0x4}, 0x2}], 0x400000000000300, 0x22, 0x0)

81.211583ms ago: executing program 6 (id=1061):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"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"})
ioctl$KVM_CAP_HYPERV_SYNIC2(r2, 0x4068aea3, &(0x7f0000000140))
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0x400000b0, 0x0, 0xfffffffffffffffd}, {0x400000b1, 0x0, 0x5}]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

0s ago: executing program 6 (id=1062):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000160a03020002000000000000020000000900020073797a30000000000900010073797a30000000002c00038008000140000000000800024000000000180003801400010073797a5f74756e00000000000000000014000000110001"], 0x80}}, 0x0)
syz_emit_ethernet(0x22, &(0x7f0000000240)={@random, @local, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x3, 0x29, 0x14, 0x68, 0x0, 0x40, 0x2f, 0x0, @empty, @loopback}}}}}, 0x0)

kernel console output (not intermixed with test programs):

86] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.448396][ T6186] ext4 filesystem being mounted at /24/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.497440][ T6186] fs-verity: sha512 using implementation "sha512-avx2"
[  102.588203][ T5759] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.715838][   T42] team0 (unregistering): Port device team_slave_1 removed
[  102.757898][   T42] team0 (unregistering): Port device team_slave_0 removed
[  102.800932][   T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  102.841928][   T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  103.251948][   T42] bond0 (unregistering): Released all slaves
[  103.323964][ T6090] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.331302][ T6090] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.347398][ T6090] bridge_slave_1: entered allmulticast mode
[  103.354185][ T6090] bridge_slave_1: entered promiscuous mode
[  103.505380][ T6090] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  103.552660][ T6090] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  103.683471][ T6201] loop2: detected capacity change from 0 to 256
[  103.688227][ T6090] team0: Port device team_slave_0 added
[  103.718593][ T6090] team0: Port device team_slave_1 added
[  103.740709][ T6201] exFAT-fs (loop2): error, The cluster chain has a loop
[  103.772297][ T6201] exFAT-fs (loop2): Filesystem has been set read-only
[  103.796003][ T6201] exFAT-fs (loop2): failed to count the number of clusters in root
[  103.811951][ T6090] batman_adv: batadv0: Adding interface: batadv_slave_0
[  103.822387][ T6201] exFAT-fs (loop2): failed to recognize exfat type
[  103.826626][ T6090] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  103.901026][ T6090] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  103.905232][    T8] usb 2-1: new full-speed USB device number 6 using dummy_hcd
[  103.918663][ T6090] batman_adv: batadv0: Adding interface: batadv_slave_1
[  103.977218][ T6090] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.059009][ T6090] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  104.135708][ T5082] Bluetooth: hci3: command tx timeout
[  104.138976][    T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  104.169062][    T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  104.202084][ T6090] hsr_slave_0: entered promiscuous mode
[  104.209464][    T8] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  104.226245][ T6212] loop2: detected capacity change from 0 to 1764
[  104.240941][ T6090] hsr_slave_1: entered promiscuous mode
[  104.247973][    T8] usb 2-1: New USB device found, idVendor=045e, idProduct=001d, bcdDevice= 0.00
[  104.262145][ T6090] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  104.321132][ T6090] Cannot create hsr debugfs directory
[  104.362997][    T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.367193][ T6212] loop2: detected capacity change from 1764 to 0
[  104.387727][    T8] usb 2-1: config 0 descriptor??
[  104.398200][ T6212] mmap: syz.2.106 (6212) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  104.412315][ T6212] syz.2.106: attempt to access beyond end of device
[  104.412315][ T6212] loop2: rw=0, sector=120, nr_sectors = 4 limit=0
[  104.679803][ T6224] loop2: detected capacity change from 0 to 16
[  104.713297][ T6224] erofs: (device loop2): mounted with root inode @ nid 36.
[  104.823902][    T8] hid-generic 0003:045E:001D.0003: unknown main item tag 0x0
[  104.839766][    T8] hid-generic 0003:045E:001D.0003: unknown main item tag 0x0
[  104.851734][    T8] hid-generic 0003:045E:001D.0003: unknown main item tag 0x0
[  104.861111][    T8] hid-generic 0003:045E:001D.0003: unknown main item tag 0x0
[  104.902269][    T8] hid-generic 0003:045E:001D.0003: unknown main item tag 0x0
[  104.938456][    T8] hid-generic 0003:045E:001D.0003: unbalanced collection at end of report description
[  104.983384][    T8] hid-generic: probe of 0003:045E:001D.0003 failed with error -22
[  105.525941][ T6232] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  106.340953][    T8] usb 2-1: USB disconnect, device number 6
[  106.453211][ T6090] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  106.501765][ T6090] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  106.523986][ T6090] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  106.581885][ T6090] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  106.783509][ T6252] loop2: detected capacity change from 0 to 512
[  106.811401][ T6090] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.816134][ T6252] ext4: Unknown parameter 'seclabel'
[  106.879532][ T6090] 8021q: adding VLAN 0 to HW filter on device team0
[  106.880129][ T6018] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  106.921632][ T2932] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.928812][ T2932] bridge0: port 1(bridge_slave_0) entered forwarding state
[  107.019344][ T2932] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.026536][ T2932] bridge0: port 2(bridge_slave_1) entered forwarding state
[  107.033798][ T6256] 9pnet_fd: p9_fd_create_unix (6256): problem connecting socket: ./file0: -111
[  107.179192][ T6090] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  107.426714][ T6265] netlink: 8 bytes leftover after parsing attributes in process `syz.2.118'.
[  107.761581][ T6090] 8021q: adding VLAN 0 to HW filter on device batadv0
[  107.994162][ T6286] loop1: detected capacity change from 0 to 128
[  108.053158][ T6286] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  108.106775][ T6286] ext4 filesystem being mounted at /33/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  108.202692][ T6286] fscrypt (loop1, inode 12): Direct key flag not allowed with different contents and filenames modes
[  108.317206][ T5760] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  108.478311][ T6090] veth0_vlan: entered promiscuous mode
[  108.499795][ T6090] veth1_vlan: entered promiscuous mode
[  108.560488][ T6090] veth0_macvtap: entered promiscuous mode
[  108.588186][ T6090] veth1_macvtap: entered promiscuous mode
[  108.629895][ T6090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  108.661120][ T6090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  108.691513][ T6090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  108.712060][ T6090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  108.739140][ T6090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  108.774489][ T6090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  108.801383][ T6090] batman_adv: batadv0: Interface activated: batadv_slave_0
[  108.814137][ T6310] loop2: detected capacity change from 0 to 1024
[  108.843565][ T6090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  108.858809][ T6310] EXT4-fs: inline encryption not supported
[  108.877313][ T6090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  108.900466][ T6310] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  108.927523][ T6090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  108.952567][ T6090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  108.967531][ T6090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  109.013370][ T6310] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.014345][ T6090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  109.044158][ T6090] batman_adv: batadv0: Interface activated: batadv_slave_1
[  109.120211][ T6090] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  109.150907][   T27] audit: type=1800 audit(1765808629.220:20): pid=6310 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.126" name="bus" dev="loop2" ino=18 res=0 errno=0
[  109.185085][ T6090] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  109.193946][ T6090] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.202924][ T6090] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  109.321122][ T5759] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.358268][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.409170][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.512937][ T2932] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.525414][ T2932] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.707097][ T6332] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  110.048910][ T6347] netlink: 68 bytes leftover after parsing attributes in process `syz.1.133'.
[  110.352280][ T6359] loop2: detected capacity change from 0 to 1024
[  111.990078][ T6375] loop1: detected capacity change from 0 to 256
[  112.042119][ T6375] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  113.396096][    T8] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  113.541477][ T6386] netlink: 'syz.1.146': attribute type 6 has an invalid length.
[  113.575367][ T6386] netlink: 'syz.1.146': attribute type 7 has an invalid length.
[  113.605510][    T8] usb 5-1: config 220 has an invalid interface number: 76 but max is 2
[  113.613753][ T6386] netlink: 'syz.1.146': attribute type 8 has an invalid length.
[  113.624047][    T8] usb 5-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  113.652364][    T8] usb 5-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  113.693985][    T8] usb 5-1: config 220 has no interface number 2
[  113.714397][    T8] usb 5-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  113.755364][    T8] usb 5-1: config 220 interface 0 has no altsetting 0
[  113.785500][    T8] usb 5-1: config 220 interface 76 has no altsetting 0
[  113.795379][    T8] usb 5-1: config 220 interface 1 has no altsetting 0
[  113.815472][    T8] usb 5-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  113.828161][    T8] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  113.845111][    T8] usb 5-1: Product: syz
[  113.855386][    T8] usb 5-1: Manufacturer: syz
[  113.860651][    T8] usb 5-1: SerialNumber: syz
[  113.991618][ T6394] loop1: detected capacity change from 0 to 1024
[  114.068313][ T5082] Bluetooth: hci2: command 0x0406 tx timeout
[  114.121998][    T8] usb 5-1: Found UVC 7.01 device syz (8086:0b07)
[  114.145617][    T8] usb 5-1: No valid video chain found.
[  114.151254][    T8] usb 5-1: selecting invalid altsetting 0
[  114.359029][    T8] usb 5-1: selecting invalid altsetting 0
[  114.375046][    T8] usbtest: probe of 5-1:220.1 failed with error -22
[  114.395262][    T8] usb 5-1: USB disconnect, device number 2
[  115.368123][ T6415] loop1: detected capacity change from 0 to 128
[  115.404159][ T6415] xt_CT: You must specify a L4 protocol and not use inversions on it
[  115.845415][ T5890] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  115.885498][ T6437] loop4: detected capacity change from 0 to 512
[  115.926221][ T6437] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  116.008525][ T6437] EXT4-fs error (device loop4): ext4_orphan_get:1399: inode #15: comm syz.4.158: inode has both inline data and extents flags
[  116.046790][ T5890] usb 2-1: New USB device found, idVendor=0930, idProduct=0215, bcdDevice= 8.78
[  116.064797][ T5890] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.073075][ T6437] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.158: couldn't read orphan inode 15 (err -117)
[  116.086637][ T6437] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.101818][ T5890] usb 2-1: config 0 descriptor??
[  116.111957][ T5890] usb 2-1: Direct firmware load for ath3k-1.fw failed with error -2
[  116.122119][ T5890] usb 2-1: Falling back to sysfs fallback for: ath3k-1.fw
[  116.145745][ T6437] EXT4-fs error (device loop4): ext4_lookup:1858: inode #15: comm syz.4.158: inode has both inline data and extents flags
[  116.173786][ T6437] "syz.4.158" (6437) uses obsolete ecb(arc4) skcipher
[  116.997024][ T6090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.013795][ T6450] loop2: detected capacity change from 0 to 8192
[  117.329775][ T6462] loop2: detected capacity change from 0 to 16
[  117.374502][ T6462] erofs: (device loop2): mounted with root inode @ nid 36.
[  118.359456][ T6485] pimreg: entered allmulticast mode
[  118.425707][ T6487] pimreg: left allmulticast mode
[  118.944399][ T6489] loop2: detected capacity change from 0 to 4096
[  118.974934][ T6489] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  119.046276][   T27] audit: type=1800 audit(1765808639.130:21): pid=6489 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.171" name="file1" dev="loop2" ino=15 res=0 errno=0
[  119.399808][ T6472] capability: warning: `syz.1.167' uses deprecated v2 capabilities in a way that may be insecure
[  119.543658][ T6472] loop1: detected capacity change from 0 to 1024
[  119.551174][ T5759] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.638675][ T6472] hfsplus: catalog name length corrupted
[  119.958135][ T6501] loop3: detected capacity change from 0 to 512
[  120.126135][ T6501] EXT4-fs: Ignoring removed oldalloc option
[  120.188967][ T6501] EXT4-fs error (device loop3): ext4_xattr_inode_iget:440: comm syz.3.173: Parent and EA inode have the same ino 15
[  120.218164][ T6501] EXT4-fs (loop3): 1 orphan inode deleted
[  120.396740][ T6501] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  120.907550][ T6501] EXT4-fs error (device loop3): ext4_lookup:1858: inode #15: comm syz.3.173: unexpected EA_INODE flag
[  121.063981][ T5763] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.082716][ T6512] loop4: detected capacity change from 0 to 256
[  122.553680][ T6525] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  123.097962][ T6527] loop4: detected capacity change from 0 to 1024
[  123.128933][ T6527] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  123.186664][ T6527] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  123.236058][ T6527] EXT4-fs (loop4): orphan cleanup on readonly fs
[  123.259760][ T6527] EXT4-fs error (device loop4): ext4_free_blocks:6676: comm syz.4.181: Freeing blocks not in datazone - block = 0, count = 4096
[  123.366667][ T6527] EXT4-fs (loop4): 1 orphan inode deleted
[  123.381627][ T6527] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  123.534087][ T6090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.019171][ T6539] netlink: 24 bytes leftover after parsing attributes in process `syz.3.183'.
[  126.501069][ T6562] loop4: detected capacity change from 0 to 256
[  126.536135][ T6562] exfat: Deprecated parameter 'namecase'
[  126.541859][ T6562] exfat: Deprecated parameter 'namecase'
[  126.611504][ T6562] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xbc8dc3cd, utbl_chksum : 0xe619d30d)
[  126.694218][ T6562] syz.4.189: attempt to access beyond end of device
[  126.694218][ T6562] loop4: rw=524288, sector=34225520824, nr_sectors = 1 limit=256
[  126.719404][ T6562] syz.4.189: attempt to access beyond end of device
[  126.719404][ T6562] loop4: rw=0, sector=34225520824, nr_sectors = 1 limit=256
[  126.740087][   T27] audit: type=1800 audit(1765808646.820:22): pid=6562 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.189" name="file1" dev="loop4" ino=1048613 res=0 errno=0
[  126.786813][ T6562] exFAT-fs (loop4): hint_cluster is invalid (4278190089), rewind to the first cluster
[  126.816596][ T6562] exFAT-fs (loop4): error, failed to bmap (inode : ffff8880738e07e0 iblock : 8, err : -5)
[  126.837111][ T6567] syz.4.189: attempt to access beyond end of device
[  126.837111][ T6567] loop4: rw=2049, sector=34225520824, nr_sectors = 8 limit=256
[  126.866894][ T6562] exFAT-fs (loop4): error, invalid access to FAT (entry 0xff000008)
[  128.018422][ T6581] loop1: detected capacity change from 0 to 512
[  128.096665][ T6581] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.142240][ T6581] ext4 filesystem being mounted at /54/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.691610][ T5760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.960887][ T6616] loop3: detected capacity change from 0 to 512
[  130.027761][ T6616] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.099220][ T6620] loop1: detected capacity change from 0 to 128
[  130.177519][ T6620] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  130.216829][ T6620] ext4 filesystem being mounted at /56/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  130.326349][ T6620] EXT4-fs warning (device loop1): verify_group_input:151: Cannot add at group 3 (only 1 groups)
[  130.362895][ T5763] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.497446][ T5760] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  130.783535][ T6639] loop1: detected capacity change from 0 to 2048
[  130.860735][ T6639] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.050070][ T6652] Zero length message leads to an empty skb
[  131.137196][ T5760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.697047][ T6657] loop2: detected capacity change from 0 to 8
[  131.771154][ T6654] loop4: detected capacity change from 0 to 4096
[  131.787687][ T6657] SQUASHFS error: lzo decompression failed, data probably corrupt
[  131.829033][ T6654] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.841360][ T6657] SQUASHFS error: Failed to read block 0x91: -5
[  131.851139][ T6657] SQUASHFS error: Unable to read metadata cache entry [8f]
[  131.860014][ T6657] SQUASHFS error: Unable to read inode 0x11f
[  131.912341][ T6664] loop1: detected capacity change from 0 to 128
[  132.127153][ T6090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.717840][ T6683] netlink: 'syz.1.217': attribute type 4 has an invalid length.
[  133.424201][ T6688] loop4: detected capacity change from 0 to 512
[  133.857923][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[  133.864236][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[  133.895980][ T6688] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  133.946381][ T6688] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  133.962299][ T6688] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2872: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  133.977237][ T6688] EXT4-fs (loop4): 1 truncate cleaned up
[  134.010753][ T6688] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.146674][ T6090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.201624][ T6695] loop2: detected capacity change from 0 to 2364
[  134.963366][   T42] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.125862][   T42] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.296476][   T42] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.405959][   T42] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.408015][ T6731] loop3: detected capacity change from 0 to 128
[  136.490935][ T6731] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  136.613001][ T6731] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  136.631188][ T6734] No such timeout policy "syz1"
[  136.735406][ T5082] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  136.746545][ T5082] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  136.754880][ T5082] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  136.763269][ T5082] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  136.781878][ T5082] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  136.791958][ T5082] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  136.975971][   T11] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  138.329921][ T6747] loop1: detected capacity change from 0 to 2048
[  138.434214][ T6750] loop3: detected capacity change from 0 to 128
[  138.492422][ T6045] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  138.655660][ T6752] syz.3.232: attempt to access beyond end of device
[  138.655660][ T6752] loop3: rw=2049, sector=224, nr_sectors = 1 limit=128
[  138.697230][ T6752] Buffer I/O error on dev loop3, logical block 224, lost async page write
[  138.780984][ T6752] syz.3.232: attempt to access beyond end of device
[  138.780984][ T6752] loop3: rw=2049, sector=225, nr_sectors = 8 limit=128
[  138.856005][ T5766] Bluetooth: hci1: command tx timeout
[  138.919946][ T6750] syz.3.232: attempt to access beyond end of device
[  138.919946][ T6750] loop3: rw=2049, sector=169, nr_sectors = 56 limit=128
[  139.026989][ T6750] syz.3.232: attempt to access beyond end of device
[  139.026989][ T6750] loop3: rw=2049, sector=233, nr_sectors = 808 limit=128
[  139.152905][ T6762] loop1: detected capacity change from 0 to 512
[  139.338117][ T6762] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.452543][ T6762] ext4 filesystem being mounted at /63/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  139.652977][ T5760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.657846][ T6738] chnl_net:caif_netlink_parms(): no params data found
[  140.250969][ T6783] netlink: 24 bytes leftover after parsing attributes in process `syz.1.238'.
[  140.450030][ T6791] loop1: detected capacity change from 0 to 256
[  140.462081][ T6791] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  140.472788][ T6791] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[  140.497172][ T6738] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.506088][ T6791] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  140.521172][ T6738] bridge0: port 1(bridge_slave_0) entered disabled state
[  140.645440][ T6738] bridge_slave_0: entered allmulticast mode
[  140.652732][ T6738] bridge_slave_0: entered promiscuous mode
[  140.733225][ T6791] exFAT-fs (loop1): error, found bogus dentry(18) beyond unused empty group(3) (start_clu : 5, cur_clu : 5)
[  140.745366][ T6791] exFAT-fs (loop1): Filesystem has been set read-only
[  140.935691][ T5766] Bluetooth: hci1: command tx timeout
[  141.549636][ T6738] bridge0: port 2(bridge_slave_1) entered blocking state
[  141.563854][ T6738] bridge0: port 2(bridge_slave_1) entered disabled state
[  141.595532][ T6738] bridge_slave_1: entered allmulticast mode
[  141.602833][ T6738] bridge_slave_1: entered promiscuous mode
[  141.983186][ T6738] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  142.011725][   T27] audit: type=1326 audit(1765808662.090:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6820 comm="syz.1.244" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f85c7f8f749 code=0x0
[  142.012765][ T6738] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  142.265188][   T42] hsr_slave_0: left promiscuous mode
[  142.282786][   T42] hsr_slave_1: left promiscuous mode
[  142.299627][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  142.309316][   T42] batman_adv: batadv0: Removing interface: batadv_slave_0
[  142.318871][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  142.331234][   T42] batman_adv: batadv0: Removing interface: batadv_slave_1
[  142.345914][   T42] bridge_slave_1: left allmulticast mode
[  142.354282][   T42] bridge_slave_1: left promiscuous mode
[  142.366850][   T42] bridge0: port 2(bridge_slave_1) entered disabled state
[  142.389009][   T42] bridge_slave_0: left allmulticast mode
[  142.394704][   T42] bridge_slave_0: left promiscuous mode
[  142.402072][   T42] bridge0: port 1(bridge_slave_0) entered disabled state
[  142.456784][ T6832] loop4: detected capacity change from 0 to 1024
[  142.544769][   T42] veth1_macvtap: left promiscuous mode
[  142.556128][   T42] veth0_macvtap: left promiscuous mode
[  142.582177][   T42] veth1_vlan: left promiscuous mode
[  142.598084][   T42] veth0_vlan: left promiscuous mode
[  142.603717][ T6835] syz.4.246: attempt to access beyond end of device
[  142.603717][ T6835] loop4: rw=2049, sector=5778, nr_sectors = 2 limit=1024
[  142.754387][ T6835] Buffer I/O error on dev loop4, logical block 2889, lost async page write
[  142.813112][ T6837] loop3: detected capacity change from 0 to 2364
[  143.020809][ T5766] Bluetooth: hci1: command tx timeout
[  144.392758][ T6846] netlink: 'syz.3.251': attribute type 21 has an invalid length.
[  144.861150][ T5766] Bluetooth: hci2: failed to read key size for handle 201
[  144.875016][ T5766] Bluetooth: hci2: unexpected event for opcode 0x1408
[  145.095297][ T5766] Bluetooth: hci1: command tx timeout
[  145.326775][   T42] team0 (unregistering): Port device team_slave_1 removed
[  145.419025][   T42] team0 (unregistering): Port device team_slave_0 removed
[  145.546641][ T6854] loop4: detected capacity change from 0 to 512
[  145.555576][   T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  145.646810][   T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  145.649038][ T6854] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.690745][ T6854] ext4 filesystem being mounted at /34/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  145.765881][ T6854] EXT4-fs error (device loop4): ext4_do_update_inode:5244: inode #2: comm syz.4.255: corrupted inode contents
[  145.791742][ T6854] EXT4-fs error (device loop4): ext4_dirty_inode:6120: inode #2: comm syz.4.255: mark_inode_dirty error
[  145.820807][ T6854] EXT4-fs error (device loop4): ext4_do_update_inode:5244: inode #2: comm syz.4.255: corrupted inode contents
[  145.836950][ T6854] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #2: comm syz.4.255: mark_inode_dirty error
[  145.933122][ T6090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.256499][   T42] bond0 (unregistering): Released all slaves
[  146.327157][ T6738] team0: Port device team_slave_0 added
[  146.343614][ T6738] team0: Port device team_slave_1 added
[  146.410476][ T6738] batman_adv: batadv0: Adding interface: batadv_slave_0
[  146.422816][ T6738] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  146.457687][ T6738] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  146.486979][ T6738] batman_adv: batadv0: Adding interface: batadv_slave_1
[  146.493961][ T6738] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  146.525931][ T6738] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  146.621877][ T6738] hsr_slave_0: entered promiscuous mode
[  146.630359][ T6738] hsr_slave_1: entered promiscuous mode
[  146.756259][ T6738] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  146.769565][ T6738] Cannot create hsr debugfs directory
[  147.790647][ T6881] loop1: detected capacity change from 0 to 8
[  151.110009][ T6738] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  151.211291][ T6738] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  151.244492][ T6738] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  151.295853][ T6738] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  151.468997][ T6915] loop4: detected capacity change from 0 to 1024
[  151.805367][   T27] audit: type=1800 audit(1765808671.850:24): pid=6915 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.267" name="file1" dev="loop4" ino=6 res=0 errno=0
[  151.819314][ T6738] 8021q: adding VLAN 0 to HW filter on device bond0
[  151.929212][ T6738] 8021q: adding VLAN 0 to HW filter on device team0
[  152.006587][   T59] bridge0: port 1(bridge_slave_0) entered blocking state
[  152.013744][   T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[  152.030339][ T6403] hfsplus: b-tree write err: -5, ino 3
[  152.047402][   T59] bridge0: port 2(bridge_slave_1) entered blocking state
[  152.055419][   T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[  152.157632][ T6928] loop3: detected capacity change from 0 to 1024
[  152.197830][ T6928] EXT4-fs: inline encryption not supported
[  152.237488][ T6928] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  152.334437][ T6928] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.583962][ T5763] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.933304][ T6952] loop4: detected capacity change from 0 to 2048
[  152.962872][ T6738] 8021q: adding VLAN 0 to HW filter on device batadv0
[  153.043944][ T6952] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  153.398154][ T6090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.868144][ T6738] veth0_vlan: entered promiscuous mode
[  153.929894][ T6738] veth1_vlan: entered promiscuous mode
[  154.027440][ T6738] veth0_macvtap: entered promiscuous mode
[  154.037539][ T6738] veth1_macvtap: entered promiscuous mode
[  154.176739][ T5766] Bluetooth: Frame is too long (len 16, expected len 4)
[  154.647882][ T6982] loop1: detected capacity change from 0 to 1024
[  154.709342][ T6738] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  154.751162][ T6738] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  154.761218][ T6738] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  154.771721][ T6738] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  154.781985][ T6738] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  154.792476][ T6738] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  154.803872][ T6738] batman_adv: batadv0: Interface activated: batadv_slave_0
[  154.815078][ T6738] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  154.838664][ T6738] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  154.864936][ T6738] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  154.890041][ T6738] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  154.920855][ T6738] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  154.930483][ T6991] loop3: detected capacity change from 0 to 512
[  154.943364][ T6738] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  154.960940][ T6992] loop4: detected capacity change from 0 to 512
[  154.976015][ T6738] batman_adv: batadv0: Interface activated: batadv_slave_1
[  155.000178][ T6738] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  155.009992][ T6991] fscrypt (loop3, inode 2): Error -61 getting encryption context
[  155.045610][ T6991] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -61
[  155.054278][ T6738] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  155.063135][ T6738] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  155.071914][ T6738] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  155.112480][ T6992] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  155.148229][ T6991] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #13: comm syz.3.278: iget: bad i_size value: 12154757448730
[  155.220311][ T6992] ext4 filesystem being mounted at /45/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  155.258322][ T6991] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.278: couldn't read orphan inode 13 (err -117)
[  155.308328][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  155.318428][ T6991] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  155.340808][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  155.352458][   T27] audit: type=1800 audit(1765808675.430:25): pid=6992 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.279" name="file2" dev="loop4" ino=16 res=0 errno=0
[  155.373278][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  155.403098][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  155.502248][ T5763] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.513900][ T6090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.795772][ T7010] loop1: detected capacity change from 0 to 4096
[  155.852334][ T7010] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  155.989992][   T27] audit: type=1800 audit(1765808676.070:26): pid=7010 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.282" name="file1" dev="loop1" ino=15 res=0 errno=0
[  156.006611][ T7010] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #15: comm syz.1.282: corrupted inode contents
[  156.123100][ T7010] EXT4-fs error (device loop1): ext4_dirty_inode:6120: inode #15: comm syz.1.282: mark_inode_dirty error
[  156.181075][ T7010] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #15: comm syz.1.282: corrupted inode contents
[  156.269788][ T7010] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #15: comm syz.1.282: mark_inode_dirty error
[  156.294335][ T7010] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #15: comm syz.1.282: corrupted inode contents
[  156.332252][ T7010] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #15: comm syz.1.282: mark_inode_dirty error
[  156.352222][ T7035] loop3: detected capacity change from 0 to 8
[  156.369065][ T7035] SQUASHFS error: lzo decompression failed, data probably corrupt
[  156.377494][ T7010] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #15: comm syz.1.282: corrupted inode contents
[  156.392408][ T7035] SQUASHFS error: Failed to read block 0x91: -5
[  156.403953][ T7010] EXT4-fs error (device loop1): ext4_truncate:4294: inode #15: comm syz.1.282: mark_inode_dirty error
[  156.419485][ T7035] SQUASHFS error: Unable to read metadata cache entry [8f]
[  156.429042][ T7035] SQUASHFS error: Unable to read inode 0x11f
[  156.441921][ T7010] EXT4-fs error (device loop1) in ext4_setattr:5659: Corrupt filesystem
[  156.561231][ T5760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.623287][ T7068] loop1: detected capacity change from 0 to 512
[  159.655419][ T7068] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  159.691941][ T7070] netlink: 40 bytes leftover after parsing attributes in process `syz.5.296'.
[  159.718935][ T7068] EXT4-fs (loop1): 1 truncate cleaned up
[  159.756326][ T7068] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  160.617706][ T5760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.255549][ T5864] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  161.373711][ T7105] loop4: detected capacity change from 0 to 1024
[  161.460298][ T5864] usb 6-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  161.489911][ T5864] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  161.516336][ T5864] usb 6-1: config 0 descriptor??
[  161.557245][ T5864] cp210x 6-1:0.0: cp210x converter detected
[  163.345914][ T5864] usb 6-1: cp210x converter now attached to ttyUSB0
[  163.399466][ T7119] binder: 7118:7119 ioctl c0306201 200000000280 returned -14
[  163.523159][ T5864] usb 6-1: USB disconnect, device number 2
[  163.543736][ T5864] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  163.567159][ T7123] loop1: detected capacity change from 0 to 256
[  163.574219][ T5864] cp210x 6-1:0.0: device disconnected
[  163.768774][ T7126] Core dump to core aborted: cannot preserve file permissions
[  164.413909][ T7129] loop1: detected capacity change from 0 to 512
[  164.457004][ T7129] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  164.468412][ T7129] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  164.499326][ T7129] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.311: invalid indirect mapped block 4294967295 (level 1)
[  164.527823][ T7129] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.311: invalid indirect mapped block 4294967295 (level 1)
[  164.555467][ T7129] EXT4-fs (loop1): 2 truncates cleaned up
[  164.562391][ T7129] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.609427][ T7134] fuse: Bad value for 'fd'
[  165.091972][ T5760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.338762][ T7147] netlink: 'syz.1.313': attribute type 11 has an invalid length.
[  165.347003][ T5864] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  165.719014][ T5864] usb 6-1: Using ep0 maxpacket: 32
[  165.747468][ T7158] loop1: detected capacity change from 0 to 4096
[  165.750634][ T5864] usb 6-1: config 0 has an invalid interface number: 228 but max is 0
[  166.012569][ T7158] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.452905][ T5864] usb 6-1: config 0 has no interface number 0
[  166.461049][ T5864] usb 6-1: config 0 interface 228 has no altsetting 0
[  166.470640][ T5864] usb 6-1: New USB device found, idVendor=06d0, idProduct=0622, bcdDevice= 0.02
[  166.486066][ T5864] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  166.494107][ T5864] usb 6-1: Product: syz
[  166.515041][ T5864] usb 6-1: Manufacturer: syz
[  166.519689][ T5864] usb 6-1: SerialNumber: syz
[  166.527832][ T5864] usb 6-1: config 0 descriptor??
[  167.782778][ T5864] net1080: probe of 6-1:0.228 failed with error -22
[  167.829399][ T5864] usb 6-1: USB disconnect, device number 3
[  167.861758][ T5769] udevd[5769]: setting owner of /dev/bus/usb/006/003 to uid=0, gid=0 failed: No such file or directory
[  168.085589][ T5766] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:201'
[  168.098209][ T5766] CPU: 1 PID: 5766 Comm: kworker/u5:3 Not tainted syzkaller #0
[  168.105797][ T5766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  168.115871][ T5766] Workqueue: hci0 hci_rx_work
[  168.120578][ T5766] Call Trace:
[  168.123856][ T5766]  <TASK>
[  168.126780][ T5766]  dump_stack_lvl+0x16c/0x230
[  168.131461][ T5766]  ? show_regs_print_info+0x20/0x20
[  168.136669][ T5766]  ? load_image+0x3b0/0x3b0
[  168.141192][ T5766]  sysfs_create_dir_ns+0x256/0x280
[  168.146303][ T5766]  ? hci_rx_work+0x43a/0xd80
[  168.150900][ T5766]  ? sysfs_warn_dup+0xa0/0xa0
[  168.155573][ T5766]  ? do_raw_spin_unlock+0x121/0x230
[  168.160769][ T5766]  kobject_add_internal+0x6b8/0xc70
[  168.165967][ T5766]  kobject_add+0x156/0x220
[  168.170376][ T5766]  ? __rwlock_init+0x150/0x150
[  168.175136][ T5766]  ? kobject_init+0x1e0/0x1e0
[  168.179803][ T5766]  ? _raw_spin_unlock+0x28/0x40
[  168.184646][ T5766]  ? get_device_parent+0x366/0x390
[  168.189755][ T5766]  device_add+0x408/0xc20
[  168.194085][ T5766]  hci_conn_add_sysfs+0xd5/0x1e0
[  168.199019][ T5766]  le_conn_complete_evt+0xf36/0x1500
[  168.204307][ T5766]  ? hci_event_packet+0x4a7/0x1210
[  168.209422][ T5766]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[  168.215653][ T5766]  ? __copy_skb_header+0xa7/0x550
[  168.220676][ T5766]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  168.226302][ T5766]  ? skb_pull_data+0xfb/0x200
[  168.230979][ T5766]  hci_le_conn_complete_evt+0x187/0x440
[  168.236517][ T5766]  ? hci_remote_host_features_evt+0x160/0x160
[  168.242587][ T5766]  hci_event_packet+0x795/0x1210
[  168.247531][ T5766]  ? bis_list+0x290/0x290
[  168.251858][ T5766]  ? lockdep_hardirqs_on+0x98/0x150
[  168.257052][ T5766]  ? hci_send_to_monitor+0xd7/0x4f0
[  168.262255][ T5766]  hci_rx_work+0x43a/0xd80
[  168.266678][ T5766]  ? process_scheduled_works+0x957/0x15b0
[  168.272390][ T5766]  process_scheduled_works+0xa45/0x15b0
[  168.277947][ T5766]  ? assign_work+0x400/0x400
[  168.282534][ T5766]  ? assign_work+0x39e/0x400
[  168.287125][ T5766]  worker_thread+0xa55/0xfc0
[  168.291729][ T5766]  kthread+0x2fa/0x390
[  168.295799][ T5766]  ? pr_cont_work+0x560/0x560
[  168.300484][ T5766]  ? kthread_blkcg+0xd0/0xd0
[  168.305071][ T5766]  ret_from_fork+0x48/0x80
[  168.309483][ T5766]  ? kthread_blkcg+0xd0/0xd0
[  168.314061][ T5766]  ret_from_fork_asm+0x11/0x20
[  168.318831][ T5766]  </TASK>
[  168.326978][ T5766] kobject: kobject_add_internal failed for hci0:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  168.341581][ T5766] Bluetooth: hci0: failed to register connection device
[  168.892064][ T5760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.903986][ T7194] loop5: detected capacity change from 0 to 512
[  168.934909][ T7194] EXT4-fs: Ignoring removed orlov option
[  168.999419][ T7194] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  169.085137][ T7194] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002]
[  169.141206][ T7194] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2249: inode #15: comm syz.5.324: corrupted in-inode xattr: e_value size too large
[  169.172074][ T7194] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.324: couldn't read orphan inode 15 (err -117)
[  169.191921][ T7194] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.286183][ T7205] loop4: detected capacity change from 0 to 256
[  169.339702][ T7205] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  169.385464][ T6738] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.394273][ T7209] loop1: detected capacity change from 0 to 512
[  169.402909][ T7209] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  170.134071][ T7209] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  170.240502][ T7209] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4031: comm syz.1.329: Allocating blocks 41-42 which overlap fs metadata
[  170.353991][ T7209] Quota error (device loop1): write_blk: dquota write failed
[  170.394224][ T7209] Quota error (device loop1): find_free_dqentry: Can't write quota data block 5
[  170.404426][ T7209] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4031: comm syz.1.329: Allocating blocks 41-42 which overlap fs metadata
[  170.451907][ T7209] Quota error (device loop1): write_blk: dquota write failed
[  170.470462][ T7209] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  170.504607][   T27] audit: type=1800 audit(1765808690.580:27): pid=7205 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.320" name="file1" dev="loop4" ino=1048625 res=0 errno=0
[  170.531872][ T7209] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.329: Failed to acquire dquot type 1
[  170.578661][ T7209] EXT4-fs error (device loop1): mb_free_blocks:1938: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  170.666310][ T7209] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #12: comm syz.1.329: corrupted inode contents
[  170.708493][ T7209] EXT4-fs error (device loop1): ext4_dirty_inode:6120: inode #12: comm syz.1.329: mark_inode_dirty error
[  170.767197][ T7209] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #12: comm syz.1.329: corrupted inode contents
[  170.805070][ T7209] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #12: comm syz.1.329: mark_inode_dirty error
[  170.837257][ T7209] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #12: comm syz.1.329: corrupted inode contents
[  170.888155][ T7209] EXT4-fs error (device loop1) in ext4_orphan_del:301: Corrupt filesystem
[  170.913606][ T7209] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #12: comm syz.1.329: corrupted inode contents
[  170.933575][ T7209] EXT4-fs error (device loop1): ext4_truncate:4294: inode #12: comm syz.1.329: mark_inode_dirty error
[  170.943218][ T7235] input: syz0 as /devices/virtual/input/input5
[  170.967634][ T7209] EXT4-fs error (device loop1) in ext4_process_orphan:343: Corrupt filesystem
[  171.020451][ T7209] EXT4-fs (loop1): 1 truncate cleaned up
[  171.031692][ T7209] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.236680][ T5760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.185880][ T7257] netlink: 'syz.3.338': attribute type 15 has an invalid length.
[  172.240237][ T7259] Bluetooth: hci0: unsupported parameter 127
[  172.293971][ T7259] Bluetooth: hci0: unsupported parameter 127
[  172.417886][ T7266] loop3: detected capacity change from 0 to 16
[  172.476243][ T7266] erofs: (device loop3): mounted with root inode @ nid 36.
[  173.378490][ T7270] loop5: detected capacity change from 0 to 1024
[  173.408409][ T7270] EXT4-fs: inline encryption not supported
[  173.444656][ T7270] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  173.507846][ T7270] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.573723][ T7270] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  174.635421][ T6738] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.184097][ T5890] Bluetooth: Firmware file "ath3k-1.fw" request failed (err=-110)
[  179.226148][ T5890] ath3k: probe of 2-1:0.0 failed with error -110
[  179.251299][ T5890] usb 2-1: USB disconnect, device number 7
[  180.059665][ T7348] loop5: detected capacity change from 0 to 512
[  180.146860][ T7348] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  180.208292][ T7348] ext4 filesystem being mounted at /25/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  180.361210][ T7348] EXT4-fs error (device loop5): ext4_xattr_block_get:600: inode #15: comm syz.5.359: corrupted xattr block 33: invalid header
[  180.433602][ T7348] EXT4-fs error (device loop5): ext4_get_inode_usage:905: inode #15: comm syz.5.359: corrupted xattr block 33: invalid header
[  181.296628][ T7365] loop1: detected capacity change from 0 to 1024
[  181.322744][ T6738] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.353104][ T7365] EXT4-fs: inline encryption not supported
[  181.360926][ T7362] loop4: detected capacity change from 0 to 4096
[  181.427332][ T7362] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  181.585037][   T27] audit: type=1800 audit(1765808701.660:28): pid=7362 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.362" name="file3" dev="loop4" ino=16 res=0 errno=0
[  181.587212][ T7362] fs-verity: sha256 using implementation "sha256-avx2"
[  181.612565][ T7365] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  182.565452][ T7362] fs-verity (loop4, inode 16): Error -4 building Merkle tree
[  182.714510][ T6090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.849267][ T7365] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  184.629801][ T7392] loop5: detected capacity change from 0 to 164
[  184.801349][ T6050] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  185.336995][ T7408] loop5: detected capacity change from 0 to 512
[  185.353200][ T7408] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  185.484707][ T7408] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 0, start 22000003)
[  185.505144][ T7408] FAT-fs (loop5): Filesystem has been set read-only
[  185.551265][   T42] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.733626][   T42] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.868274][   T42] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.033854][   T42] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.188300][ T7430] loop3: detected capacity change from 0 to 512
[  186.303930][ T7430] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  186.411815][ T7430] ext4 filesystem being mounted at /103/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  186.427799][ T5766] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  186.440361][ T5766] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  186.456419][ T5766] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  186.464628][ T5766] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  186.475162][ T5766] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  186.482668][ T5766] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  186.539405][   T27] audit: type=1800 audit(1765808706.620:29): pid=7430 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.381" name="file2" dev="loop3" ino=16 res=0 errno=0
[  186.679375][ T7441] loop4: detected capacity change from 0 to 764
[  186.702958][ T7430] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.733355][ T6018] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  188.035165][ T7474] loop4: detected capacity change from 0 to 512
[  188.490913][ T7436] chnl_net:caif_netlink_parms(): no params data found
[  188.536402][ T5766] Bluetooth: hci0: command tx timeout
[  189.840496][ T7474] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.388: invalid indirect mapped block 10 (level 1)
[  189.915289][ T7474] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.388: invalid indirect mapped block 8 (level 1)
[  189.964346][ T7474] EXT4-fs (loop4): 1 truncate cleaned up
[  189.996541][ T7474] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.616036][ T5766] Bluetooth: hci0: command tx timeout
[  190.915213][ T7436] bridge0: port 1(bridge_slave_0) entered blocking state
[  190.922381][ T7436] bridge0: port 1(bridge_slave_0) entered disabled state
[  190.929998][ T7501] loop3: detected capacity change from 0 to 2048
[  190.957305][ T6090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.975262][ T7436] bridge_slave_0: entered allmulticast mode
[  190.983635][ T7436] bridge_slave_0: entered promiscuous mode
[  191.015376][ T7501] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  191.071929][   T27] audit: type=1800 audit(1765808711.150:30): pid=7501 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.393" name="file1" dev="loop3" ino=1346 res=0 errno=0
[  191.385405][ T7436] bridge0: port 2(bridge_slave_1) entered blocking state
[  191.415579][ T7436] bridge0: port 2(bridge_slave_1) entered disabled state
[  191.422836][ T7436] bridge_slave_1: entered allmulticast mode
[  191.463515][ T7436] bridge_slave_1: entered promiscuous mode
[  191.693069][ T7522] loop4: detected capacity change from 0 to 512
[  191.713711][ T7520] loop3: detected capacity change from 0 to 1024
[  191.720500][   T42] hsr_slave_0: left promiscuous mode
[  191.722746][ T7522] FAT-fs (loop4): Unrecognized mount option "���6�xM��7�B���IVHh0Np�֝n' ��څX�c+㩆�5ُ�S�5�hm����~Rm�x.q�����}���a��n��/N��G5l�aحKU�E>۔�F�|" or missing value
[  191.746203][   T42] hsr_slave_1: left promiscuous mode
[  191.761992][ T7520] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  191.790186][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  191.826088][ T7520] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  191.834421][ T7520] EXT4-fs (loop3): orphan cleanup on readonly fs
[  191.835749][   T42] batman_adv: batadv0: Removing interface: batadv_slave_0
[  191.843890][ T7520] EXT4-fs error (device loop3): ext4_free_blocks:6676: comm syz.3.397: Freeing blocks not in datazone - block = 0, count = 4096
[  191.866455][ T7520] EXT4-fs (loop3): 1 orphan inode deleted
[  191.873662][ T7520] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  191.888285][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  191.905140][   T42] batman_adv: batadv0: Removing interface: batadv_slave_1
[  191.967588][   T42] bridge_slave_1: left allmulticast mode
[  191.996736][   T42] bridge_slave_1: left promiscuous mode
[  192.021540][   T42] bridge0: port 2(bridge_slave_1) entered disabled state
[  192.076603][ T5763] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.087365][   T42] bridge_slave_0: left allmulticast mode
[  192.093050][   T42] bridge_slave_0: left promiscuous mode
[  192.122984][   T42] bridge0: port 1(bridge_slave_0) entered disabled state
[  192.209197][   T42] veth1_macvtap: left promiscuous mode
[  192.214875][   T42] veth0_macvtap: left promiscuous mode
[  192.218524][ T7534] loop3: detected capacity change from 0 to 2048
[  192.224006][ T7532] loop4: detected capacity change from 0 to 256
[  192.244249][   T42] veth1_vlan: left promiscuous mode
[  192.253157][   T42] veth0_vlan: left promiscuous mode
[  192.272382][ T7532] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  192.293273][ T7534] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  192.319241][   T27] audit: type=1800 audit(1765808712.400:31): pid=7534 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.400" name="bus" dev="loop3" ino=18 res=0 errno=0
[  192.520692][ T6534] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.710456][ T5766] Bluetooth: hci0: command tx timeout
[  192.775459][   T28] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  192.972300][   T28] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  192.983508][   T28] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  192.994838][   T28] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  193.007963][   T28] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  193.018461][   T28] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  193.044598][   T28] usb 5-1: config 0 descriptor??
[  193.100762][   T42] team0 (unregistering): Port device team_slave_1 removed
[  193.151385][   T42] team0 (unregistering): Port device team_slave_0 removed
[  193.199454][   T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  193.259867][   T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  193.473907][   T28] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  193.498719][   T28] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving
[  193.523808][   T28] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  193.678118][   T28] usb 5-1: USB disconnect, device number 4
[  193.838077][   T42] bond0 (unregistering): Released all slaves
[  193.932870][ T7436] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  194.082688][ T6534] syz_tun (unregistering): left allmulticast mode
[  194.140106][ T7436] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  194.277963][ T7436] team0: Port device team_slave_0 added
[  194.326514][ T7436] team0: Port device team_slave_1 added
[  194.442476][ T7436] batman_adv: batadv0: Adding interface: batadv_slave_0
[  194.465561][ T7436] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  194.515791][ T7436] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  194.532900][ T7436] batman_adv: batadv0: Adding interface: batadv_slave_1
[  194.547882][ T7436] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  194.566212][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[  194.581543][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[  194.586327][ T7436] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  194.710600][ T7436] hsr_slave_0: entered promiscuous mode
[  194.748951][ T7436] hsr_slave_1: entered promiscuous mode
[  194.792636][ T5766] Bluetooth: hci0: command tx timeout
[  196.477620][   T42] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  196.732754][ T5082] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  196.743750][ T5082] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  196.752691][ T5082] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  196.773786][ T5082] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  196.784535][ T5082] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  196.806970][ T5082] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  196.917544][   T42] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  197.367871][   T42] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  197.462694][ T7594] loop4: detected capacity change from 0 to 512
[  197.484854][   T42] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  197.501254][ T7594] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  197.587854][ T7594] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.609102][ T7436] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  197.636800][ T7436] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  197.658161][ T7594] ext4 filesystem being mounted at /82/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  197.674221][ T7436] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  197.733906][ T7436] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  197.768542][ T7594] EXT4-fs error (device loop4): ext4_do_update_inode:5244: inode #2: comm syz.4.413: corrupted inode contents
[  197.797242][ T7594] EXT4-fs error (device loop4): ext4_dirty_inode:6120: inode #2: comm syz.4.413: mark_inode_dirty error
[  197.828028][ T7594] EXT4-fs error (device loop4): ext4_do_update_inode:5244: inode #2: comm syz.4.413: corrupted inode contents
[  197.895441][ T7594] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #2: comm syz.4.413: mark_inode_dirty error
[  198.095802][ T6090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.480639][ T5082] Bluetooth: hci2: command tx timeout
[  199.825933][ T7587] chnl_net:caif_netlink_parms(): no params data found
[  200.007425][ T7436] 8021q: adding VLAN 0 to HW filter on device bond0
[  200.184575][ T7436] 8021q: adding VLAN 0 to HW filter on device team0
[  200.468574][ T1319] bridge0: port 1(bridge_slave_0) entered blocking state
[  200.475790][ T1319] bridge0: port 1(bridge_slave_0) entered forwarding state
[  200.568045][ T7636] loop4: detected capacity change from 0 to 256
[  200.579730][ T7636] exfat: Deprecated parameter 'utf8'
[  200.585368][ T7636] exfat: Deprecated parameter 'namecase'
[  200.780620][ T1319] bridge0: port 2(bridge_slave_1) entered blocking state
[  200.787841][ T1319] bridge0: port 2(bridge_slave_1) entered forwarding state
[  200.859353][ T7636] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xabfa8b1f, utbl_chksum : 0xe619d30d)
[  201.307000][ T7587] bridge0: port 1(bridge_slave_0) entered blocking state
[  201.319130][ T7587] bridge0: port 1(bridge_slave_0) entered disabled state
[  201.326544][ T7587] bridge_slave_0: entered allmulticast mode
[  201.333779][ T7587] bridge_slave_0: entered promiscuous mode
[  201.352804][ T7587] bridge0: port 2(bridge_slave_1) entered blocking state
[  201.371139][ T7587] bridge0: port 2(bridge_slave_1) entered disabled state
[  201.379172][ T7587] bridge_slave_1: entered allmulticast mode
[  201.387445][ T7587] bridge_slave_1: entered promiscuous mode
[  201.424672][ T7644] loop4: detected capacity change from 0 to 512
[  201.434554][ T7644] journal_path: Lookup failure for './file1'
[  201.449312][ T7644] EXT4-fs: error: could not find journal device path
[  201.465177][    T8] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  201.496859][ T5082] Bluetooth: hci2: command tx timeout
[  201.565482][ T7436] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  201.576694][ T7436] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  201.700824][ T7587] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  201.713570][ T7587] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  202.295024][    T8] usb 6-1: Using ep0 maxpacket: 16
[  202.319636][    T8] usb 6-1: config 0 has an invalid interface number: 29 but max is 0
[  202.431627][    T8] usb 6-1: config 0 has no interface number 0
[  202.441081][    T8] usb 6-1: config 0 interface 29 altsetting 0 bulk endpoint 0xA has invalid maxpacket 16
[  202.451429][    T8] usb 6-1: config 0 interface 29 altsetting 0 endpoint 0x82 has invalid maxpacket 1104, setting to 1024
[  202.463250][    T8] usb 6-1: config 0 interface 29 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 1024
[  202.487648][    T8] usb 6-1: New USB device found, idVendor=050d, idProduct=2102, bcdDevice=70.d0
[  202.502164][    T8] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  202.510301][    T8] usb 6-1: Product: syz
[  202.514494][    T8] usb 6-1: Manufacturer: syz
[  202.520056][    T8] usb 6-1: SerialNumber: syz
[  202.531690][    T8] usb 6-1: config 0 descriptor??
[  202.537630][ T7638] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  202.550247][   T42] dvmrp6 (unregistering): left allmulticast mode
[  202.551285][ T7638] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  202.578870][ T7587] team0: Port device team_slave_0 added
[  202.591225][ T7587] team0: Port device team_slave_1 added
[  202.741625][ T7587] batman_adv: batadv0: Adding interface: batadv_slave_0
[  202.755577][ T7587] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.825712][ T7587] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  202.889728][ T7662] loop4: detected capacity change from 0 to 256
[  202.915470][ T7662] exfat: Deprecated parameter 'namecase'
[  202.932081][ T7662] exfat: Deprecated parameter 'namecase'
[  202.945362][ T7587] batman_adv: batadv0: Adding interface: batadv_slave_1
[  202.995171][ T7662] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xbc8dc3cd, utbl_chksum : 0xe619d30d)
[  203.005810][ T7587] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  203.049812][ T7587] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  203.164662][   T42] hsr_slave_0: left promiscuous mode
[  203.184814][   T42] hsr_slave_1: left promiscuous mode
[  203.199937][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  203.215600][   T42] batman_adv: batadv0: Removing interface: batadv_slave_0
[  203.233155][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  203.245413][   T42] batman_adv: batadv0: Removing interface: batadv_slave_1
[  203.264138][   T42] bridge_slave_1: left allmulticast mode
[  203.278723][   T42] bridge_slave_1: left promiscuous mode
[  203.290336][   T42] bridge0: port 2(bridge_slave_1) entered disabled state
[  203.319031][   T42] bridge_slave_0: left allmulticast mode
[  203.328014][   T42] bridge_slave_0: left promiscuous mode
[  203.344020][   T42] bridge0: port 1(bridge_slave_0) entered disabled state
[  203.414220][   T42] veth1_macvtap: left promiscuous mode
[  203.433901][   T42] veth0_macvtap: left promiscuous mode
[  203.445424][   T42] veth1_vlan: left promiscuous mode
[  203.450787][   T42] veth0_vlan: left promiscuous mode
[  203.578876][ T5082] Bluetooth: hci2: command tx timeout
[  204.948119][ T5804] usb 6-1: USB disconnect, device number 4
[  205.665016][ T5082] Bluetooth: hci2: command tx timeout
[  205.884748][ T7704] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  205.929893][   T42] team0 (unregistering): Port device team_slave_1 removed
[  205.971355][ T7704] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  206.023806][   T42] team0 (unregistering): Port device team_slave_0 removed
[  206.109209][   T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  206.173127][   T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  206.615838][ T7718] kvm: kvm [7717]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010002) = 0x80ffffff
[  206.798506][ T7721] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  207.087309][   T42] bond0 (unregistering): Released all slaves
[  207.199933][ T7729] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  207.260059][ T7436] 8021q: adding VLAN 0 to HW filter on device batadv0
[  207.283525][ T7587] hsr_slave_0: entered promiscuous mode
[  207.301800][ T7587] hsr_slave_1: entered promiscuous mode
[  207.334608][ T7587] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  207.363229][ T7587] Cannot create hsr debugfs directory
[  207.973491][ T7587] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  208.001527][ T7587] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  208.049464][ T7587] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  208.078569][ T7587] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  208.253171][ T7436] veth0_vlan: entered promiscuous mode
[  208.309300][ T7436] veth1_vlan: entered promiscuous mode
[  208.400166][ T7436] veth0_macvtap: entered promiscuous mode
[  208.432689][ T7436] veth1_macvtap: entered promiscuous mode
[  208.480553][ T7587] 8021q: adding VLAN 0 to HW filter on device bond0
[  208.510156][ T7436] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  208.536015][ T7436] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  208.547190][ T7436] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  208.558013][ T7436] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  208.576967][ T7436] batman_adv: batadv0: Interface activated: batadv_slave_0
[  208.620169][ T7436] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  208.642378][ T7436] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  208.669528][ T7436] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  208.686141][ T7436] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  208.706871][ T7436] batman_adv: batadv0: Interface activated: batadv_slave_1
[  208.721601][ T7587] 8021q: adding VLAN 0 to HW filter on device team0
[  208.754434][ T7436] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  208.785181][ T7436] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  208.802868][ T7436] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  208.812191][ T7436] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  208.841588][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  208.848796][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  208.928325][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  208.935501][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  209.116571][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  209.127713][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  209.153773][ T7587] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  209.232050][ T2932] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  209.251518][ T2932] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  209.622780][ T7814] netlink: 76 bytes leftover after parsing attributes in process `syz.6.376'.
[  210.092781][ T7587] 8021q: adding VLAN 0 to HW filter on device batadv0
[  211.023364][ T7587] veth0_vlan: entered promiscuous mode
[  211.072502][ T7587] veth1_vlan: entered promiscuous mode
[  211.180388][ T7587] veth0_macvtap: entered promiscuous mode
[  211.247961][ T7587] veth1_macvtap: entered promiscuous mode
[  211.304334][ T7587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  211.323726][ T7587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  211.345448][ T7587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  211.375376][ T7587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  211.396066][ T7587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  211.444323][ T7587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  211.467021][ T7587] batman_adv: batadv0: Interface activated: batadv_slave_0
[  211.491189][ T7587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  211.545077][ T7587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  211.560519][ T7587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  211.595103][ T7587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  211.615365][ T7587] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  211.635083][ T7587] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  211.662977][ T7587] batman_adv: batadv0: Interface activated: batadv_slave_1
[  211.710405][ T7587] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  211.732812][ T7587] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  211.763532][ T7587] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  211.789523][ T7587] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  212.000889][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  212.030426][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  212.132694][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  212.167431][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  213.582734][ T7934] kvm: emulating exchange as write
[  214.029670][ T7961] comedi comedi3: 8255: I/O port conflict (0x9,4)
[  214.038205][ T7961] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  214.073226][ T5082] Bluetooth: Wrong link type (-71)
[  214.075089][ T7961] comedi comedi3: 8255: I/O port conflict (0x9,4)
[  214.115852][ T7961] comedi comedi3: 8255: I/O port conflict (0x4,4)
[  214.125637][ T7961] comedi comedi3: 8255: I/O port conflict (0x8,4)
[  214.555747][ T5851] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  214.777100][ T5851] usb 8-1: config index 0 descriptor too short (expected 39, got 27)
[  214.810121][ T5851] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  214.831808][ T5851] usb 8-1: config 0 interface 0 has no altsetting 0
[  214.855785][ T5851] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  214.879973][ T5851] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  214.899648][ T5851] usb 8-1: Product: syz
[  214.912009][ T5851] usb 8-1: Manufacturer: syz
[  214.920993][ T5851] usb 8-1: SerialNumber: syz
[  214.939867][ T5851] usb 8-1: config 0 descriptor??
[  214.960270][ T5851] hub 8-1:0.0: bad descriptor, ignoring hub
[  214.972763][ T5851] hub: probe of 8-1:0.0 failed with error -5
[  214.992435][ T5851] usb 8-1: selecting invalid altsetting 0
[  215.473947][ T8002] team0: No ports can be present during mode change
[  215.714046][ T8010] netlink: 'syz.6.486': attribute type 10 has an invalid length.
[  215.761458][ T8010] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  216.143022][ T8029] netlink: 8 bytes leftover after parsing attributes in process `syz.6.490'.
[  216.173843][    T8] usb 8-1: USB disconnect, device number 2
[  216.835285][ T8057] netlink: 8 bytes leftover after parsing attributes in process `syz.7.498'.
[  216.858137][ T8057] netlink: set zone limit has 8 unknown bytes
[  217.007241][ T8061] IPVS: rr: FWM 3 0x00000003 - no destination available
[  217.024184][ T5851] IPVS: starting estimator thread 0...
[  217.030837][ T5082] Bluetooth: hci1: Malformed Event: 0x13
[  217.094525][ T8069] 9pnet_virtio: no channels available for device syz
[  217.165206][ T8067] IPVS: using max 24 ests per chain, 57600 per kthread
[  217.246280][ T8076] netlink: 24 bytes leftover after parsing attributes in process `syz.5.504'.
[  217.384050][ T8082] netlink: 8 bytes leftover after parsing attributes in process `syz.6.506'.
[  217.786062][ T8092] block device autoloading is deprecated and will be removed.
[  218.695444][ T5082] Bluetooth: hci0: command tx timeout
[  219.806855][ T5082] Bluetooth: hci3: link tx timeout
[  219.812425][ T5082] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  220.188844][  T788] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  220.287156][ T8203] TCP: MD5 Hash mismatch for [fe88::107]:20003->[ff02::1]:20004 L3 index 0
[  220.370533][ T5864] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  220.405242][  T788] usb 8-1: Using ep0 maxpacket: 16
[  220.422783][ T5864] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  220.447252][  T788] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  220.487561][  T788] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  220.520012][  T788] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  220.562104][  T788] usb 8-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  220.614052][  T788] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  220.649610][ T8210] fido_id[8210]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  220.651407][  T788] usb 8-1: config 0 descriptor??
[  220.919177][ T8227] netlink: 16 bytes leftover after parsing attributes in process `syz.6.548'.
[  220.946624][ T8227] gre0: Master is either lo or non-ether device
[  221.140009][  T788] usbhid 8-1:0.0: can't add hid device: -71
[  221.157866][  T788] usbhid: probe of 8-1:0.0 failed with error -71
[  221.197426][  T788] usb 8-1: USB disconnect, device number 3
[  221.567623][ T8251] Bluetooth: MGMT ver 1.22
[  221.691145][ T8257] 9pnet_virtio: no channels available for device syz
[  221.895096][ T5766] Bluetooth: hci3: command 0x0406 tx timeout
[  221.902314][ T5890] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  222.108259][ T5890] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  222.140956][ T5890] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  222.175039][ T5890] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  222.205161][ T5890] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  222.229385][ T5890] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  222.277045][ T5890] usb 6-1: config 0 descriptor??
[  222.592325][ T8286] 9pnet_virtio: no channels available for device syz
[  222.738724][ T5890] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  222.769512][ T5890] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  222.790569][ T5890] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  222.808463][ T5890] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  222.835838][ T5890] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  222.843291][ T5890] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  222.870983][ T5890] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  222.899696][ T5890] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  222.909760][ T5890] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  222.927799][ T5890] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  222.972216][ T5890] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  223.000061][ T5890] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  223.036389][ T5890] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  223.048124][ T5890] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  223.062256][ T5890] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  223.083223][ T5890] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving
[  223.124084][ T5890] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  223.598905][ T5766] Bluetooth: hci3: Malformed LE Event: 0x0d
[  223.731984][ T8326] usb 6-1: language id specifier not provided by device, defaulting to English
[  223.747547][ T8332] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  223.968444][ T5851] usb 6-1: USB disconnect, device number 5
[  223.976270][ T5766] Bluetooth: hci3: command 0x0406 tx timeout
[  224.252272][ T5766] Bluetooth: hci2: hardware error 0x30
[  224.910830][ T5082] Bluetooth: hci3: unexpected event for opcode 0x1004
[  225.423019][ T8392] 9pnet_virtio: no channels available for device syz
[  225.820787][ T8410] netlink: 2384 bytes leftover after parsing attributes in process `syz.7.598'.
[  226.296765][ T5766] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  226.410225][ T8432] IPVS: rr: FWM 3 0x00000003 - no destination available
[  226.665548][    T9] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  226.855397][    T9] usb 8-1: Using ep0 maxpacket: 16
[  226.867956][    T9] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  226.889865][    T9] usb 8-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  226.919585][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  226.939813][    T9] usb 8-1: Product: syz
[  226.944044][    T9] usb 8-1: Manufacturer: syz
[  226.957400][    T9] usb 8-1: SerialNumber: syz
[  226.976901][    T9] usb 8-1: config 0 descriptor??
[  226.998834][    T9] em28xx 8-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  227.017702][    T9] em28xx 8-1:0.0: DVB interface 0 found: bulk
[  227.073118][ T8455] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  227.105871][ T5766] Bluetooth: hci3: ACL packet too small
[  227.598698][    T9] em28xx 8-1:0.0: unknown em28xx chip ID (0)
[  228.335244][    T9] em28xx 8-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  228.343947][    T9] em28xx 8-1:0.0: board has no eeprom
[  228.437301][    T9] em28xx 8-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  228.451170][    T9] em28xx 8-1:0.0: dvb set to bulk mode.
[  228.465497][    T8] em28xx 8-1:0.0: Binding DVB extension
[  228.506847][    T9] usb 8-1: USB disconnect, device number 4
[  228.524056][    T9] em28xx 8-1:0.0: Disconnecting em28xx
[  228.596931][    T8] em28xx 8-1:0.0: Registering input extension
[  228.607050][    T9] em28xx 8-1:0.0: Closing input extension
[  228.644337][    T9] em28xx 8-1:0.0: Freeing device
[  228.937345][ T5766] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  228.951794][ T5766] Bluetooth: hci3: Injecting HCI hardware error event
[  228.960818][ T5766] Bluetooth: hci3: hardware error 0x00
[  228.976031][ T8504] loop6: detected capacity change from 0 to 1024
[  230.186081][ T1003] hfsplus: b-tree write err: -5, ino 4
[  230.455902][ T8534] wireguard: wg2: Could not create IPv4 socket
[  231.115630][ T5766] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  231.770079][ T8511] loop7: detected capacity change from 0 to 32768
[  233.330002][ T8511] XFS (loop7): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  233.428796][ T8511] workqueue: Failed to create a rescuer kthread for wq "xfs-log/loop7": -EINTR
[  233.431060][ T8511] XFS (loop7): log mount failed
[  235.152813][ T8594] 9pnet_fd: Insufficient options for proto=fd
[  235.961405][ T8603] netlink: 8 bytes leftover after parsing attributes in process `syz.4.624'.
[  237.196173][ T8617] netlink: 4 bytes leftover after parsing attributes in process `syz.4.637'.
[  237.309647][ T8617] hsr_slave_1 (unregistering): left promiscuous mode
[  239.969509][ T8687] loop5: detected capacity change from 0 to 512
[  239.990408][ T8687] EXT4-fs: Ignoring removed orlov option
[  240.003190][ T8687] EXT4-fs: Ignoring removed mblk_io_submit option
[  240.070764][ T8687] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2249: inode #15: comm syz.5.654: corrupted in-inode xattr: e_value size too large
[  240.100778][ T8693] loop4: detected capacity change from 0 to 1764
[  240.107953][ T8687] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.654: couldn't read orphan inode 15 (err -117)
[  240.125122][ T5831] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  240.136206][ T8687] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  240.473739][ T5831] usb 8-1: Using ep0 maxpacket: 8
[  240.484719][ T5831] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  240.494508][ T5831] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  240.642128][ T8704] EXT4-fs error (device loop5): ext4_append:79: inode #2: comm syz.5.654: Logical block already allocated
[  241.057549][ T5831] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  241.070063][ T5831] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  241.080932][ T6738] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.083963][ T5831] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  241.101281][ T5831] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  241.337573][ T5831] usb 8-1: GET_CAPABILITIES returned 0
[  241.349319][ T5831] usbtmc 8-1:16.0: can't read capabilities
[  241.572728][ T5831] usb 8-1: USB disconnect, device number 5
[  243.821716][ T8801] loop5: detected capacity change from 0 to 512
[  243.830379][ T8801] EXT4-fs: Ignoring removed orlov option
[  243.840991][ T8801] EXT4-fs: Ignoring removed mblk_io_submit option
[  243.939748][ T8801] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2249: inode #15: comm syz.5.685: corrupted in-inode xattr: e_value size too large
[  243.968655][ T8801] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.685: couldn't read orphan inode 15 (err -117)
[  244.594571][ T8801] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  245.371367][ T6738] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  246.585116][ T8851] loop7: detected capacity change from 0 to 512
[  246.623127][ T8851] EXT4-fs: Ignoring removed orlov option
[  246.628834][ T8851] EXT4-fs: Ignoring removed mblk_io_submit option
[  246.693553][ T8851] EXT4-fs error (device loop7): ext4_xattr_ibody_find:2249: inode #15: comm syz.7.700: corrupted in-inode xattr: e_value size too large
[  246.730386][ T8851] EXT4-fs error (device loop7): ext4_orphan_get:1404: comm syz.7.700: couldn't read orphan inode 15 (err -117)
[  246.787122][ T8851] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  246.815109][ T8866] loop4: detected capacity change from 0 to 512
[  246.822688][ T8866] EXT4-fs: Ignoring removed orlov option
[  246.829007][ T8866] EXT4-fs: Ignoring removed mblk_io_submit option
[  246.877312][ T8860] netlink: 4 bytes leftover after parsing attributes in process `syz.5.702'.
[  246.877674][ T8866] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2249: inode #15: comm syz.4.703: corrupted in-inode xattr: e_value size too large
[  246.918579][ T8866] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.703: couldn't read orphan inode 15 (err -117)
[  246.968002][ T8866] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  247.575369][ T8878] EXT4-fs error (device loop4): ext4_append:79: inode #2: comm syz.4.703: Logical block already allocated
[  247.876483][ T7587] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  247.994122][ T6090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  248.300855][ T5831] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  248.674928][ T5831] usb 8-1: Using ep0 maxpacket: 8
[  248.687201][ T5831] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  248.703463][ T5831] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  249.313514][ T5831] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  249.414060][ T5831] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  249.428310][ T5831] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  249.438466][ T5831] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  249.576198][ T8918] loop5: detected capacity change from 0 to 512
[  251.287050][ T8918] EXT4-fs: Ignoring removed orlov option
[  251.293164][ T8918] EXT4-fs: Ignoring removed mblk_io_submit option
[  251.359904][ T5831] usb 8-1: usb_control_msg returned -71
[  251.375984][ T5831] usbtmc 8-1:16.0: can't read capabilities
[  251.415662][ T5831] usb 8-1: USB disconnect, device number 6
[  251.434913][ T8918] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2249: inode #15: comm syz.5.715: corrupted in-inode xattr: e_value size too large
[  251.569489][ T8918] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.715: couldn't read orphan inode 15 (err -117)
[  251.571370][ T8918] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  251.975466][ T8937] EXT4-fs error (device loop5): ext4_append:79: inode #2: comm syz.5.715: Logical block already allocated
[  252.442536][ T6738] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  253.168972][ T8947] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  254.141024][ T8953] Bluetooth: hci0: unsupported parameter 256
[  254.147071][ T8953] Bluetooth: hci0: invalid length 0, exp 2 for type 9
[  255.535037][ T8985] sch_tbf: burst 1821 is lower than device lo mtu (65550) !
[  257.635586][ T9011] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  257.696807][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[  257.720978][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[  258.052582][  T787] usb 6-1: new low-speed USB device number 6 using dummy_hcd
[  258.288767][  T787] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  259.510501][  T787] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  259.546903][  T787] usb 6-1: config 168 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  259.580773][  T787] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  259.588794][  T787] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  259.628560][  T787] usb 6-1: config 168 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  259.660006][  T787] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  259.669121][  T787] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  259.694575][  T787] usb 6-1: config 168 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  259.736851][  T787] usb 6-1: string descriptor 0 read error: -22
[  259.745482][  T787] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  259.762995][  T787] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  259.802296][  T787] adutux 6-1:168.0: interrupt endpoints not found
[  260.030491][ T5864] usb 6-1: USB disconnect, device number 6
[  260.374577][ T9048] binder: 9046:9048 ioctl c00c620f 200000000240 returned -22
[  262.949202][ T9065] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  264.264517][ T5766] Bluetooth: hci1: command tx timeout
[  266.569258][ T9098] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  269.210317][ T5766] Bluetooth: hci1: command tx timeout
[  269.610668][    T8] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  269.824545][    T8] usb 8-1: Using ep0 maxpacket: 8
[  269.832159][    T8] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  269.845901][    T8] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  269.875598][    T8] usb 8-1: config 168 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  269.892521][    T8] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  269.925165][    T8] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  269.974967][    T8] usb 8-1: config 168 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  270.023070][    T8] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  270.035250][    T8] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  270.064493][    T8] usb 8-1: config 168 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  270.153900][    T8] usb 8-1: string descriptor 0 read error: -22
[  270.187647][    T8] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  270.420671][    T8] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  270.646760][    T8] adutux 8-1:168.0: interrupt endpoints not found
[  270.919478][    T8] usb 8-1: USB disconnect, device number 7
[  271.073237][ T9199] loop5: detected capacity change from 0 to 512
[  271.085924][ T9199] EXT4-fs: Ignoring removed oldalloc option
[  271.281721][ T5864] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  271.285315][ T9199] EXT4-fs error (device loop5): ext4_xattr_inode_iget:440: comm syz.5.771: Parent and EA inode have the same ino 15
[  271.303631][ T9199] EXT4-fs (loop5): 1 orphan inode deleted
[  271.315768][ T9199] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  271.358384][ T9199] EXT4-fs error (device loop5): ext4_lookup:1858: inode #15: comm syz.5.771: unexpected EA_INODE flag
[  272.102533][ T6738] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  272.128980][ T5864] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  272.154243][ T9213] 9pnet_virtio: no channels available for device syz
[  272.179274][ T5864] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  272.220412][ T5864] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  272.229518][ T5864] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  272.781903][ T9192] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  272.955755][ T5864] usb 5-1: Quirk or no altest; falling back to MIDI 1.0
[  273.228464][ T5864] usb 5-1: USB disconnect, device number 5
[  273.274760][ T9225] loop7: detected capacity change from 0 to 1024
[  274.619044][ T9242] loop4: detected capacity change from 0 to 512
[  274.669456][ T9242] EXT4-fs: Ignoring removed orlov option
[  274.684026][ T9246] loop7: detected capacity change from 0 to 512
[  274.702381][ T9242] EXT4-fs: Ignoring removed mblk_io_submit option
[  274.712319][ T9246] EXT4-fs: Ignoring removed oldalloc option
[  274.782718][ T9246] EXT4-fs error (device loop7): ext4_xattr_inode_iget:440: comm syz.7.784: Parent and EA inode have the same ino 15
[  274.817337][ T9242] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2249: inode #15: comm syz.4.783: corrupted in-inode xattr: e_value size too large
[  274.823698][ T9246] EXT4-fs (loop7): 1 orphan inode deleted
[  274.841883][ T9246] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  274.898598][ T9246] EXT4-fs error (device loop7): ext4_lookup:1858: inode #15: comm syz.7.784: unexpected EA_INODE flag
[  274.907333][ T9242] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.783: couldn't read orphan inode 15 (err -117)
[  274.950531][ T9242] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  275.147185][ T7587] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  275.511099][ T9265] EXT4-fs error (device loop4): ext4_append:79: inode #2: comm syz.4.783: Logical block already allocated
[  276.272274][ T9261] netlink: 24 bytes leftover after parsing attributes in process `syz.6.788'.
[  276.333652][ T5766] Bluetooth: hci1: command 0x0406 tx timeout
[  276.399118][ T9264] pimreg: entered allmulticast mode
[  276.417309][ T9264] pimreg: left allmulticast mode
[  276.525330][ T6090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  277.862870][ T9291] 9pnet_virtio: no channels available for device syz
[  278.101954][ T9296] loop7: detected capacity change from 0 to 512
[  278.191638][ T9296] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  278.233185][ T9296] ext4 filesystem being mounted at /63/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  278.492456][ T7587] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  279.503579][ T9318] netlink: 24 bytes leftover after parsing attributes in process `syz.7.799'.
[  280.954233][ T9341] kvm: kvm [9340]: vcpu3, guest rIP: 0xfff0 Unhandled RDMSR(0x40000065)
[  281.950373][ T9359] netlink: 24 bytes leftover after parsing attributes in process `syz.4.809'.
[  283.836700][ T5864] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  283.932771][ T5864] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  284.037362][ T9383] loop5: detected capacity change from 0 to 512
[  284.046090][ T9383] EXT4-fs: Ignoring removed orlov option
[  284.051868][ T9383] EXT4-fs: Ignoring removed mblk_io_submit option
[  284.988746][ T9381] fido_id[9381]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  285.041939][ T9383] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2249: inode #15: comm syz.5.816: corrupted in-inode xattr: e_value size too large
[  285.144892][ T9383] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.816: couldn't read orphan inode 15 (err -117)
[  285.176530][ T9383] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  285.598149][ T9393] EXT4-fs error (device loop5): ext4_append:79: inode #2: comm syz.5.816: Logical block already allocated
[  286.045929][ T9397] loop7: detected capacity change from 0 to 512
[  286.055224][ T9397] EXT4-fs: Ignoring removed orlov option
[  286.062001][ T9397] EXT4-fs: Ignoring removed mblk_io_submit option
[  286.101285][ T6738] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  286.117528][ T9397] EXT4-fs error (device loop7): ext4_xattr_ibody_find:2249: inode #15: comm syz.7.818: corrupted in-inode xattr: e_value size too large
[  286.220489][ T9397] EXT4-fs error (device loop7): ext4_orphan_get:1404: comm syz.7.818: couldn't read orphan inode 15 (err -117)
[  286.317997][ T9397] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  286.787568][ T9414] EXT4-fs error (device loop7): ext4_append:79: inode #2: comm syz.7.818: Logical block already allocated
[  288.161115][ T7587] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.633057][ T9485] 9pnet_virtio: no channels available for device syz
[  293.663023][ T9485] netlink: 8 bytes leftover after parsing attributes in process `syz.7.837'.
[  295.276623][ T9503] loop7: detected capacity change from 0 to 512
[  295.295114][ T9503] EXT4-fs: Ignoring removed orlov option
[  295.300815][ T9503] EXT4-fs: Ignoring removed mblk_io_submit option
[  295.374794][ T9503] EXT4-fs error (device loop7): ext4_xattr_ibody_find:2249: inode #15: comm syz.7.839: corrupted in-inode xattr: e_value size too large
[  295.487304][ T9503] EXT4-fs error (device loop7): ext4_orphan_get:1404: comm syz.7.839: couldn't read orphan inode 15 (err -117)
[  295.549866][ T9503] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  296.043838][ T9510] EXT4-fs error (device loop7): ext4_append:79: inode #2: comm syz.7.839: Logical block already allocated
[  296.393724][ T9512] syz_tun: entered allmulticast mode
[  296.413045][ T7587] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  298.313924][ T9540] loop5: detected capacity change from 0 to 512
[  298.322253][ T9540] EXT4-fs: Ignoring removed orlov option
[  298.327934][ T9540] EXT4-fs: Ignoring removed mblk_io_submit option
[  298.359515][ T9540] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2249: inode #15: comm syz.5.851: corrupted in-inode xattr: e_value size too large
[  298.395508][ T9540] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.851: couldn't read orphan inode 15 (err -117)
[  298.957668][ T9540] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  299.379491][ T9552] EXT4-fs error (device loop5): ext4_append:79: inode #2: comm syz.5.851: Logical block already allocated
[  299.814477][ T6738] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  302.221420][ T9576] loop5: detected capacity change from 0 to 512
[  302.239977][ T9576] EXT4-fs: Ignoring removed orlov option
[  302.250226][ T9576] EXT4-fs: Ignoring removed mblk_io_submit option
[  302.295650][ T9576] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2249: inode #15: comm syz.5.861: corrupted in-inode xattr: e_value size too large
[  302.364542][ T9576] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.861: couldn't read orphan inode 15 (err -117)
[  302.514125][ T9576] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  302.614609][ T9585] loop7: detected capacity change from 0 to 512
[  302.633007][ T9585] EXT4-fs: Ignoring removed orlov option
[  302.639482][ T9585] EXT4-fs: Ignoring removed mblk_io_submit option
[  303.507307][ T9592] EXT4-fs error (device loop5): ext4_append:79: inode #2: comm syz.5.861: Logical block already allocated
[  303.697529][ T9585] EXT4-fs error (device loop7): ext4_xattr_ibody_find:2249: inode #15: comm syz.7.864: corrupted in-inode xattr: e_value size too large
[  303.815843][ T9585] EXT4-fs error (device loop7): ext4_orphan_get:1404: comm syz.7.864: couldn't read orphan inode 15 (err -117)
[  303.889772][ T9585] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  304.053553][ T6738] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  304.367482][ T9596] EXT4-fs error (device loop7): ext4_append:79: inode #2: comm syz.7.864: Logical block already allocated
[  304.627323][ T9598] loop5: detected capacity change from 0 to 1024
[  304.851705][   T27] audit: type=1800 audit(1765808820.743:32): pid=9598 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.866" name="file1" dev="loop5" ino=6 res=0 errno=0
[  304.880188][ T9593] bridge0: port 2(bridge_slave_1) entered disabled state
[  304.889303][ T9593] bridge0: port 1(bridge_slave_0) entered disabled state
[  304.921185][ T7587] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  305.046472][   T42] hfsplus: b-tree write err: -5, ino 3
[  306.637779][ T9606] kvm: pic: non byte write
[  307.137666][ T9593] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  307.190498][ T9593] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  307.680876][ T9593] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  307.690222][ T9593] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  307.699870][ T9593] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  307.712917][ T9593] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  308.795704][ T9633] loop4: detected capacity change from 0 to 512
[  308.806001][ T9633] EXT4-fs: Ignoring removed orlov option
[  308.819951][ T9633] EXT4-fs: Ignoring removed mblk_io_submit option
[  308.864280][ T9633] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2249: inode #15: comm syz.4.876: corrupted in-inode xattr: e_value size too large
[  308.918547][ T9633] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.876: couldn't read orphan inode 15 (err -117)
[  308.943147][ T9633] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  309.152353][ T9643] wg2: entered promiscuous mode
[  309.176828][ T9643] wg2: entered allmulticast mode
[  309.347106][ T9648] EXT4-fs error (device loop4): ext4_append:79: inode #2: comm syz.4.876: Logical block already allocated
[  309.471818][ T9647] netlink: 4 bytes leftover after parsing attributes in process `syz.5.888'.
[  309.592487][ T9647] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  309.601907][ T9647] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  309.610649][ T9647] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  309.619786][ T9647] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  309.737529][ T9647] vxlan0: entered promiscuous mode
[  309.798286][ T6090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  309.966108][ T9655] loop5: detected capacity change from 0 to 7
[  310.031774][ T9655] Dev loop5: unable to read RDB block 7
[  310.037838][ T9655]  loop5: unable to read partition table
[  310.049994][ T9657] loop7: detected capacity change from 0 to 512
[  310.060558][ T9655] loop5: partition table beyond EOD, truncated
[  310.065405][ T9657] EXT4-fs: Ignoring removed orlov option
[  310.082175][ T9655] loop_reread_partitions: partition scan of loop5 (ʖ���xs
) failed (rc=-5)
[  310.098657][ T9657] EXT4-fs: Ignoring removed mblk_io_submit option
[  310.191720][ T9657] EXT4-fs error (device loop7): ext4_xattr_ibody_find:2249: inode #15: comm syz.7.884: corrupted in-inode xattr: e_value size too large
[  310.259485][ T9657] EXT4-fs error (device loop7): ext4_orphan_get:1404: comm syz.7.884: couldn't read orphan inode 15 (err -117)
[  310.300414][ T9657] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  310.671480][ T9672] EXT4-fs error (device loop7): ext4_append:79: inode #2: comm syz.7.884: Logical block already allocated
[  311.674657][    C1] sched: RT throttling activated
[  312.301585][ T7587] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  313.236714][    T9] usb 8-1: new full-speed USB device number 8 using dummy_hcd
[  313.645960][ T9690] loop4: detected capacity change from 0 to 512
[  313.685593][ T9690] EXT4-fs: Ignoring removed orlov option
[  313.691280][ T9690] EXT4-fs: Ignoring removed mblk_io_submit option
[  313.722143][    T9] usb 8-1: config 0 interface 0 altsetting 251 has an invalid endpoint with address 0x6D, skipping
[  313.727509][ T9690] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2249: inode #15: comm syz.4.893: corrupted in-inode xattr: e_value size too large
[  313.744035][    T9] usb 8-1: config 0 interface 0 has no altsetting 0
[  313.789479][    T9] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  313.799405][    T9] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  313.814536][ T9690] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.893: couldn't read orphan inode 15 (err -117)
[  313.822367][    T9] usb 8-1: Product: syz
[  313.831328][    T9] usb 8-1: Manufacturer: syz
[  313.845381][    T9] usb 8-1: SerialNumber: syz
[  313.853678][    T9] usb 8-1: config 0 descriptor??
[  313.860476][ T9690] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  313.912002][    T9] snd-usb-audio: probe of 8-1:0.0 failed with error -22
[  314.122674][ T6018] udevd[6018]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  314.148030][    T9] usb 8-1: USB disconnect, device number 8
[  314.290490][ T9705] EXT4-fs error (device loop4): ext4_append:79: inode #2: comm syz.4.893: Logical block already allocated
[  315.582044][ T6090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.017153][ T9718] loop7: detected capacity change from 0 to 4096
[  316.043545][ T9718] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  317.303614][ T9728] syz_tun: entered allmulticast mode
[  318.256267][ T9737] loop5: detected capacity change from 0 to 1024
[  318.288014][ T7587] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  319.756679][ T9746] raw_sendmsg: syz.7.910 forgot to set AF_INET. Fix it!
[  320.135638][ T9751] loop4: detected capacity change from 0 to 512
[  320.144969][ T9751] EXT4-fs: Ignoring removed orlov option
[  320.151674][ T9751] EXT4-fs: Ignoring removed mblk_io_submit option
[  320.170583][ T9751] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2249: inode #15: comm syz.4.914: corrupted in-inode xattr: e_value size too large
[  320.239442][ T9751] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.914: couldn't read orphan inode 15 (err -117)
[  320.283794][ T9751] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  320.807244][ T9756] EXT4-fs error (device loop4): ext4_append:79: inode #2: comm syz.4.914: Logical block already allocated
[  321.835053][ T6090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  322.750941][ T9769] loop4: detected capacity change from 0 to 512
[  322.769826][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[  324.050019][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[  324.057719][ T9769] EXT4-fs: Ignoring removed orlov option
[  324.168784][ T9769] EXT4-fs: Ignoring removed mblk_io_submit option
[  324.196171][ T9769] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2249: inode #15: comm syz.4.925: corrupted in-inode xattr: e_value size too large
[  324.241920][ T9769] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.925: couldn't read orphan inode 15 (err -117)
[  324.286078][ T9769] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  324.680960][ T9778] EXT4-fs error (device loop4): ext4_append:79: inode #2: comm syz.4.925: Logical block already allocated
[  325.080019][    T9] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  325.354186][ T6090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.496005][ T9785] netlink: 'syz.4.922': attribute type 11 has an invalid length.
[  325.543603][    T9] usb 8-1: Using ep0 maxpacket: 32
[  325.555434][    T9] usb 8-1: config index 0 descriptor too short (expected 29220, got 36)
[  325.563828][    T9] usb 8-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  325.591471][    T9] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 81
[  325.605870][    T9] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  325.616006][    T9] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  325.733652][ T9789] loop5: detected capacity change from 0 to 256
[  325.807060][    T9] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  325.817699][    T9] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  325.839469][    T9] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  325.853578][    T9] usb 8-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  325.873560][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  326.219437][ T9793] Core dump to core aborted: cannot preserve file permissions
[  326.630022][    T9] usb 8-1: config 0 descriptor??
[  326.903987][    T9] usblp 8-1:0.0: usblp0: USB Bidirectional printer dev 9 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  327.669701][ T5864] usb 8-1: USB disconnect, device number 9
[  328.173510][ T5864] usblp0: removed
[  328.303023][ T9813] loop4: detected capacity change from 0 to 1024
[  328.318226][ T9813] EXT4-fs: inline encryption not supported
[  328.349315][ T9813] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  328.428838][ T9813] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  328.528380][ T9813] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  328.701377][ T6090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  331.552197][ T9829] syz_tun: entered allmulticast mode
[  333.114466][ T9844] loop7: detected capacity change from 0 to 512
[  333.150051][ T9844] EXT4-fs: Ignoring removed orlov option
[  333.191691][ T9844] EXT4-fs: Ignoring removed mblk_io_submit option
[  333.323497][ T9844] EXT4-fs error (device loop7): ext4_xattr_ibody_find:2249: inode #15: comm syz.7.932: corrupted in-inode xattr: e_value size too large
[  333.384469][ T9844] EXT4-fs error (device loop7): ext4_orphan_get:1404: comm syz.7.932: couldn't read orphan inode 15 (err -117)
[  333.428329][ T9844] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  333.696995][ T9854] TCP: TCP_TX_DELAY enabled
[  333.901008][ T9857] EXT4-fs error (device loop7): ext4_append:79: inode #2: comm syz.7.932: Logical block already allocated
[  334.280805][ T7587] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  335.639684][ T9883] loop4: detected capacity change from 0 to 512
[  335.656816][ T9883] EXT4-fs: Ignoring removed orlov option
[  335.662803][ T9883] EXT4-fs: Ignoring removed mblk_io_submit option
[  335.686823][ T9883] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2249: inode #15: comm syz.4.949: corrupted in-inode xattr: e_value size too large
[  335.712315][ T9883] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.949: couldn't read orphan inode 15 (err -117)
[  335.749239][ T9883] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  336.075023][ T9888] EXT4-fs error (device loop4): ext4_append:79: inode #2: comm syz.4.949: Logical block already allocated
[  336.691355][ T6090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  337.470374][ T9903] syz_tun: entered allmulticast mode
[  341.536731][   T28] libceph: connect (1)[c::]:6789 error -101
[  341.554957][   T28] libceph: mon0 (1)[c::]:6789 connect error
[  341.597773][   T28] libceph: connect (1)[c::]:6789 error -101
[  341.610616][ T9946] ubi0: attaching mtd0
[  341.622143][   T28] libceph: mon0 (1)[c::]:6789 connect error
[  341.660521][ T9946] ubi0: scanning is finished
[  341.665238][ T9946] ubi0: empty MTD device detected
[  341.685663][ T9949] loop4: detected capacity change from 0 to 512
[  341.697365][ T9949] EXT4-fs: Ignoring removed orlov option
[  341.805042][ T9949] EXT4-fs: Ignoring removed mblk_io_submit option
[  341.845959][ T9949] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2249: inode #15: comm syz.4.969: corrupted in-inode xattr: e_value size too large
[  341.861472][ T9946] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[  341.869129][ T9946] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  341.879549][ T9949] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.969: couldn't read orphan inode 15 (err -117)
[  341.895397][ T9946] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[  341.903862][ T9946] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[  341.911982][ T9946] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  341.919057][ T9946] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[  341.927379][ T9946] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 1395701691
[  341.940548][ T9946] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  341.987333][   T28] libceph: connect (1)[c::]:6789 error -101
[  341.997309][   T28] libceph: mon0 (1)[c::]:6789 connect error
[  342.353568][ T9949] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  342.471447][ T9953] ubi0: background thread "ubi_bgt0d" started, PID 9953
[  342.550588][   T28] libceph: connect (1)[c::]:6789 error -101
[  342.805467][   T28] libceph: mon0 (1)[c::]:6789 connect error
[  343.117698][ T9940] ceph: No mds server is up or the cluster is laggy
[  343.147360][ T9956] EXT4-fs error (device loop4): ext4_append:79: inode #2: comm syz.4.969: Logical block already allocated
[  344.472078][   T28] libceph: connect (1)[c::]:6789 error -101
[  344.487864][ T6090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  344.490492][   T28] libceph: mon0 (1)[c::]:6789 connect error
[  347.155349][ T9999] 9pnet_virtio: no channels available for device syz
[  347.210304][T10001] loop4: detected capacity change from 0 to 512
[  347.260418][T10001] EXT4-fs: Ignoring removed orlov option
[  347.266114][T10001] EXT4-fs: Ignoring removed mblk_io_submit option
[  347.689792][T10001] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2249: inode #15: comm syz.4.982: corrupted in-inode xattr: e_value size too large
[  347.818632][T10001] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.982: couldn't read orphan inode 15 (err -117)
[  348.020898][T10001] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  348.513866][T10008] EXT4-fs error (device loop4): ext4_append:79: inode #2: comm syz.4.982: Logical block already allocated
[  348.747218][ T6090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  351.883147][T10039] loop5: detected capacity change from 0 to 512
[  351.909072][T10039] EXT4-fs: Ignoring removed orlov option
[  351.934499][T10039] EXT4-fs: Ignoring removed mblk_io_submit option
[  351.952841][T10039] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2249: inode #15: comm syz.5.998: corrupted in-inode xattr: e_value size too large
[  351.976260][T10039] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.998: couldn't read orphan inode 15 (err -117)
[  351.990285][T10039] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  352.389947][T10047] EXT4-fs error (device loop5): ext4_append:79: inode #2: comm syz.5.998: Logical block already allocated
[  352.882960][ T6738] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  355.059253][T10075] loop5: detected capacity change from 0 to 256
[  355.072870][T10075] exfat: Deprecated parameter 'utf8'
[  355.078472][T10075] exfat: Deprecated parameter 'namecase'
[  355.342731][T10075] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xabfa8b1f, utbl_chksum : 0xe619d30d)
[  357.885229][T10124] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  357.952046][   T28] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  358.206497][   T28] usb 8-1: config 0 has no interfaces?
[  358.219319][   T28] usb 8-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b
[  358.235122][   T28] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  358.256206][   T28] usb 8-1: config 0 descriptor??
[  358.844404][   T28] usb 8-1: USB disconnect, device number 10
[  360.602762][ T5082] Bluetooth: hci1: unexpected subevent 0x19 length: 24 < 28
[  360.983810][    T8] libceph: connect (1)[c::]:6789 error -101
[  360.994463][    T8] libceph: mon0 (1)[c::]:6789 connect error
[  361.086639][   T28] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  361.099568][T10154] ubi: mtd0 is already attached to ubi0
[  361.290418][ T7302] libceph: connect (1)[c::]:6789 error -101
[  361.297169][ T7302] libceph: mon0 (1)[c::]:6789 connect error
[  361.298703][   T28] usb 6-1: Using ep0 maxpacket: 32
[  361.318870][   T28] usb 6-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config
[  361.340062][   T28] usb 6-1: config 155 interface 0 altsetting 0 has an invalid endpoint with address 0xE2, skipping
[  361.361503][   T28] usb 6-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11
[  361.392369][   T28] usb 6-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[  361.406329][   T28] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  361.423168][   T28] usb 6-1: Product: syz
[  361.430788][   T28] usb 6-1: Manufacturer: syz
[  361.442054][   T28] usb 6-1: SerialNumber: syz
[  361.467233][   T28] imon:imon_find_endpoints: no valid input (IR) endpoint found
[  361.504487][   T28] imon 6-1:155.0: unable to initialize intf0, err -19
[  361.522371][   T28] imon:imon_probe: failed to initialize context!
[  361.549340][   T28] imon 6-1:155.0: unable to register, err -19
[  361.855344][ T7302] libceph: connect (1)[c::]:6789 error -101
[  361.874332][ T7302] libceph: mon0 (1)[c::]:6789 connect error
[  361.893491][T10150] ceph: No mds server is up or the cluster is laggy
[  363.541006][T10173] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1042'.
[  363.717508][T10176] 9pnet_fd: Insufficient options for proto=fd
[  364.248561][   T28] usb 6-1: USB disconnect, device number 7
[  364.577496][T10184] Bluetooth: hci0: load_link_keys: too big key_count value 32768
[  366.333118][T10200] loop7: detected capacity change from 0 to 512
[  366.382133][T10200] EXT4-fs: Ignoring removed orlov option
[  366.406560][T10200] EXT4-fs: Ignoring removed mblk_io_submit option
[  366.437144][T10200] EXT4-fs error (device loop7): ext4_xattr_ibody_find:2249: inode #15: comm syz.7.1053: corrupted in-inode xattr: e_value size too large
[  366.482650][T10200] EXT4-fs error (device loop7): ext4_orphan_get:1404: comm syz.7.1053: couldn't read orphan inode 15 (err -117)
[  366.501087][T10200] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  366.770744][T10204] EXT4-fs error (device loop7): ext4_append:79: inode #2: comm syz.7.1053: Logical block already allocated
[  367.326780][ T7587] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  367.466717][T10216] loop7: detected capacity change from 0 to 512
[  367.474373][T10216] EXT4-fs: Ignoring removed orlov option
[  367.490488][T10216] EXT4-fs: Ignoring removed mblk_io_submit option
[  367.520350][T10216] EXT4-fs error (device loop7): ext4_xattr_ibody_find:2249: inode #15: comm syz.7.1056: corrupted in-inode xattr: e_value size too large
[  367.536363][T10216] EXT4-fs error (device loop7): ext4_orphan_get:1404: comm syz.7.1056: couldn't read orphan inode 15 (err -117)
[  367.551767][T10216] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  368.000833][T10221] EXT4-fs error (device loop7): ext4_append:79: inode #2: comm syz.7.1056: Logical block already allocated
[  368.471959][ T7587] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  368.647510][T10234] 
[  368.649870][T10234] ======================================================
[  368.656881][T10234] WARNING: possible circular locking dependency detected
[  368.663899][T10234] syzkaller #0 Not tainted
[  368.668303][T10234] ------------------------------------------------------
[  368.675303][T10234] syz.5.1059/10234 is trying to acquire lock:
[  368.681349][T10234] ffffffff8ca648e8 (bdev_lock){+.+.}-{3:3}, at: bd_prepare_to_claim+0x1ba/0x480
[  368.690392][T10234] 
[  368.690392][T10234] but task is already holding lock:
[  368.697748][T10234] ffff88801fdff0c0 (mapping.invalidate_lock){++++}-{3:3}, at: blkdev_fallocate+0x22b/0x6a0
[  368.707744][T10234] 
[  368.707744][T10234] which lock already depends on the new lock.
[  368.707744][T10234] 
[  368.718136][T10234] 
[  368.718136][T10234] the existing dependency chain (in reverse order) is:
[  368.727140][T10234] 
[  368.727140][T10234] -> #4 (mapping.invalidate_lock){++++}-{3:3}:
[  368.735473][T10234]        down_write+0x97/0x1f0
[  368.740232][T10234]        set_blocksize+0x249/0x4b0
[  368.745327][T10234]        sb_min_blocksize+0xbe/0x190
[  368.750598][T10234]        ext4_fill_super+0x6df/0x66c0
[  368.755958][T10234]        get_tree_bdev+0x3e4/0x510
[  368.761060][T10234]        vfs_get_tree+0x8c/0x280
[  368.765987][T10234]        do_new_mount+0x24b/0xa40
[  368.771000][T10234]        init_mount+0xd2/0x120
[  368.775760][T10234]        do_mount_root+0x97/0x230
[  368.780775][T10234]        mount_root_generic+0x195/0x3c0
[  368.786309][T10234]        prepare_namespace+0xc2/0x100
[  368.791665][T10234]        kernel_init_freeable+0x413/0x570
[  368.797370][T10234]        kernel_init+0x1d/0x1c0
[  368.802216][T10234]        ret_from_fork+0x48/0x80
[  368.807142][T10234]        ret_from_fork_asm+0x11/0x20
[  368.812418][T10234] 
[  368.812418][T10234] -> #3 (&sb->s_type->i_mutex_key#8){++++}-{3:3}:
[  368.821024][T10234]        down_write+0x97/0x1f0
[  368.825795][T10234]        set_blocksize+0x201/0x4b0
[  368.830902][T10234]        sb_min_blocksize+0xbe/0x190
[  368.836175][T10234]        ext4_fill_super+0x6df/0x66c0
[  368.841535][T10234]        get_tree_bdev+0x3e4/0x510
[  368.846635][T10234]        vfs_get_tree+0x8c/0x280
[  368.851558][T10234]        do_new_mount+0x24b/0xa40
[  368.856565][T10234]        init_mount+0xd2/0x120
[  368.861312][T10234]        do_mount_root+0x97/0x230
[  368.866322][T10234]        mount_root_generic+0x195/0x3c0
[  368.871881][T10234]        prepare_namespace+0xc2/0x100
[  368.877242][T10234]        kernel_init_freeable+0x413/0x570
[  368.882949][T10234]        kernel_init+0x1d/0x1c0
[  368.887794][T10234]        ret_from_fork+0x48/0x80
[  368.892723][T10234]        ret_from_fork_asm+0x11/0x20
[  368.898003][T10234] 
[  368.898003][T10234] -> #2 (&type->s_umount_key#31){++++}-{3:3}:
[  368.906262][T10234]        down_read+0x46/0x2e0
[  368.910925][T10234]        super_lock+0x167/0x360
[  368.915764][T10234]        fs_bdev_sync+0xa4/0x170
[  368.920687][T10234]        blkdev_common_ioctl+0x881/0x2460
[  368.926402][T10234]        blkdev_ioctl+0x4eb/0x6f0
[  368.931415][T10234]        __se_sys_ioctl+0xfd/0x170
[  368.936517][T10234]        do_syscall_64+0x55/0xb0
[  368.941438][T10234]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  368.947842][T10234] 
[  368.947842][T10234] -> #1 (&bdev->bd_holder_lock){+.+.}-{3:3}:
[  368.955997][T10234]        __mutex_lock+0x129/0xcc0
[  368.961012][T10234]        bd_finish_claiming+0x22f/0x3f0
[  368.966567][T10234]        blkdev_get_by_dev+0x45c/0x600
[  368.972032][T10234]        bdev_open_by_dev+0x77/0x100
[  368.977304][T10234]        setup_bdev_super+0x59/0x660
[  368.982575][T10234]        mount_bdev+0x1dd/0x2d0
[  368.987417][T10234]        legacy_get_tree+0xea/0x180
[  368.992604][T10234]        vfs_get_tree+0x8c/0x280
[  368.997527][T10234]        do_new_mount+0x24b/0xa40
[  369.002536][T10234]        init_mount+0xd2/0x120
[  369.007289][T10234]        do_mount_root+0x97/0x230
[  369.012318][T10234]        mount_root_generic+0x195/0x3c0
[  369.017847][T10234]        prepare_namespace+0xc2/0x100
[  369.023207][T10234]        kernel_init_freeable+0x413/0x570
[  369.028913][T10234]        kernel_init+0x1d/0x1c0
[  369.033751][T10234]        ret_from_fork+0x48/0x80
[  369.038678][T10234]        ret_from_fork_asm+0x11/0x20
[  369.043951][T10234] 
[  369.043951][T10234] -> #0 (bdev_lock){+.+.}-{3:3}:
[  369.051064][T10234]        __lock_acquire+0x2ddb/0x7c80
[  369.056420][T10234]        lock_acquire+0x197/0x410
[  369.061431][T10234]        __mutex_lock+0x129/0xcc0
[  369.066451][T10234]        bd_prepare_to_claim+0x1ba/0x480
[  369.072075][T10234]        truncate_bdev_range+0x4e/0x260
[  369.077604][T10234]        blkdev_fallocate+0x428/0x6a0
[  369.082961][T10234]        vfs_fallocate+0x58e/0x700
[  369.088056][T10234]        do_madvise+0x15fe/0x3710
[  369.093067][T10234]        __x64_sys_madvise+0xa6/0xc0
[  369.098342][T10234]        do_syscall_64+0x55/0xb0
[  369.103264][T10234]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  369.109676][T10234] 
[  369.109676][T10234] other info that might help us debug this:
[  369.109676][T10234] 
[  369.119915][T10234] Chain exists of:
[  369.119915][T10234]   bdev_lock --> &sb->s_type->i_mutex_key#8 --> mapping.invalidate_lock
[  369.119915][T10234] 
[  369.134071][T10234]  Possible unsafe locking scenario:
[  369.134071][T10234] 
[  369.141505][T10234]        CPU0                    CPU1
[  369.146855][T10234]        ----                    ----
[  369.152257][T10234]   lock(mapping.invalidate_lock);
[  369.157353][T10234]                                lock(&sb->s_type->i_mutex_key#8);
[  369.165239][T10234]                                lock(mapping.invalidate_lock);
[  369.172949][T10234]   lock(bdev_lock);
[  369.176830][T10234] 
[  369.176830][T10234]  *** DEADLOCK ***
[  369.176830][T10234] 
[  369.184956][T10234] 2 locks held by syz.5.1059/10234:
[  369.190137][T10234]  #0: ffff88801fdfef30 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: blkdev_fallocate+0x205/0x6a0
[  369.200831][T10234]  #1: ffff88801fdff0c0 (mapping.invalidate_lock){++++}-{3:3}, at: blkdev_fallocate+0x22b/0x6a0
[  369.211257][T10234] 
[  369.211257][T10234] stack backtrace:
[  369.217130][T10234] CPU: 0 PID: 10234 Comm: syz.5.1059 Not tainted syzkaller #0
[  369.224572][T10234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  369.234631][T10234] Call Trace:
[  369.237905][T10234]  <TASK>
[  369.240824][T10234]  dump_stack_lvl+0x16c/0x230
[  369.245497][T10234]  ? load_image+0x3b0/0x3b0
[  369.249988][T10234]  ? show_regs_print_info+0x20/0x20
[  369.255180][T10234]  ? print_circular_bug+0x12b/0x1a0
[  369.260375][T10234]  check_noncircular+0x2bd/0x3c0
[  369.265302][T10234]  ? print_deadlock_bug+0x5d0/0x5d0
[  369.270487][T10234]  ? lockdep_lock+0xe0/0x220
[  369.275064][T10234]  ? _find_first_zero_bit+0xd3/0x100
[  369.280342][T10234]  __lock_acquire+0x2ddb/0x7c80
[  369.285190][T10234]  ? verify_lock_unused+0x140/0x140
[  369.290467][T10234]  ? check_noncircular+0x175/0x3c0
[  369.295569][T10234]  ? print_deadlock_bug+0x5d0/0x5d0
[  369.300753][T10234]  ? lockdep_lock+0xe0/0x220
[  369.305326][T10234]  ? lockdep_unlock+0x137/0x2d0
[  369.310187][T10234]  ? lockdep_lock+0x220/0x220
[  369.314849][T10234]  lock_acquire+0x197/0x410
[  369.319337][T10234]  ? bd_prepare_to_claim+0x1ba/0x480
[  369.324613][T10234]  ? __might_sleep+0xe0/0xe0
[  369.329191][T10234]  ? read_lock_is_recursive+0x20/0x20
[  369.334551][T10234]  __mutex_lock+0x129/0xcc0
[  369.339039][T10234]  ? bd_prepare_to_claim+0x1ba/0x480
[  369.344312][T10234]  ? bd_prepare_to_claim+0x1ba/0x480
[  369.349583][T10234]  ? mutex_lock_nested+0x20/0x20
[  369.354508][T10234]  ? __lock_acquire+0x7c80/0x7c80
[  369.359523][T10234]  ? invalidate_bdev+0xc0/0xc0
[  369.364286][T10234]  bd_prepare_to_claim+0x1ba/0x480
[  369.369385][T10234]  ? invalidate_bdev+0xc0/0xc0
[  369.374135][T10234]  ? truncate_bdev_range+0x260/0x260
[  369.379406][T10234]  ? mas_prev_slot+0x840/0x8b0
[  369.384159][T10234]  ? down_write+0x162/0x1f0
[  369.388647][T10234]  ? down_read_killable+0x340/0x340
[  369.393830][T10234]  truncate_bdev_range+0x4e/0x260
[  369.398841][T10234]  blkdev_fallocate+0x428/0x6a0
[  369.403690][T10234]  vfs_fallocate+0x58e/0x700
[  369.408269][T10234]  do_madvise+0x15fe/0x3710
[  369.412764][T10234]  ? madvise_set_anon_name+0x440/0x440
[  369.418211][T10234]  ? __lock_acquire+0x7c80/0x7c80
[  369.423226][T10234]  ? count_memcg_event_mm+0x93/0x3b0
[  369.428502][T10234]  ? count_memcg_event_mm+0x35c/0x3b0
[  369.433867][T10234]  ? vma_end_read+0x18/0x170
[  369.438443][T10234]  ? reacquire_held_locks+0x2ff/0x5a0
[  369.443803][T10234]  ? vma_end_read+0x18/0x170
[  369.448384][T10234]  ? print_unlock_imbalance_bug+0x160/0x160
[  369.454270][T10234]  ? vma_end_read+0x18/0x170
[  369.458848][T10234]  ? __lock_acquire+0x7c80/0x7c80
[  369.463859][T10234]  ? _raw_spin_unlock+0x40/0x40
[  369.468702][T10234]  ? lock_chain_count+0x20/0x20
[  369.473540][T10234]  ? lock_chain_count+0x20/0x20
[  369.478387][T10234]  __x64_sys_madvise+0xa6/0xc0
[  369.483142][T10234]  do_syscall_64+0x55/0xb0
[  369.487545][T10234]  ? clear_bhb_loop+0x40/0x90
[  369.492209][T10234]  ? clear_bhb_loop+0x40/0x90
[  369.496875][T10234]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  369.502756][T10234] RIP: 0033:0x7f3d0e58f749
[  369.507170][T10234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  369.526765][T10234] RSP: 002b:00007f3d0f464038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  369.535166][T10234] RAX: ffffffffffffffda RBX: 00007f3d0e7e6180 RCX: 00007f3d0e58f749
[  369.543128][T10234] RDX: 0000000000000009 RSI: 0000000000600002 RDI: 0000200000000000
[  369.551088][T10234] RBP: 00007f3d0e613f91 R08: 0000000000000000 R09: 0000000000000000
[  369.559048][T10234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  369.567010][T10234] R13: 00007f3d0e7e6218 R14: 00007f3d0e7e6180 R15: 00007ffec36ab988
[  369.574975][T10234]  </TASK>