last executing test programs:

3m7.459039362s ago: executing program 0 (id=598):
r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x81, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, 0x0, 0x0, 0x2, 0x0)
lremovexattr(0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001780)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000010700000000000000002600181100", @ANYRES32=r4, @ANYBLOB], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fstat(r0, &(0x7f0000000f40))

3m6.247406388s ago: executing program 0 (id=612):
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x6)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000c00)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_open_procfs(0xffffffffffffffff, 0x0)
listen(0xffffffffffffffff, 0xfff)
r3 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000100)="58000000140019234083feff040d8c560a060f0200ff0000000000000020ffff00000000000064009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100080c100000000200ffffffff", 0x58}], 0x1)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(r3, 0x8982, 0x0)

3m4.28862764s ago: executing program 0 (id=619):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000540), &(0x7f0000000040)='./file4\x00', 0xa18414, &(0x7f0000001140)=ANY=[], 0x89, 0x2a1, &(0x7f0000000840)="$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")
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x804071, 0x0, 0x1, 0x0, &(0x7f0000000140))
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000c40)='./file1\x00', 0xa00c19, &(0x7f00000059c0)=ANY=[], 0x5, 0x1e5, &(0x7f00000001c0)="$eJxiGAWjYBSMWPDo4dcHvU4WIToMDAw8DCoM7FDxF8wINUxI6u/MLNWeaus6Z9PtpUfy+Gp3IWR2ffQJI91+kNkHHJkZSqD8/////0eWV4HSIQxMIDYLTFwTSoczMDKoQtkJf/jh+lIZGBkioewsJHY+J5SRk6qXnJ+TkpaZk2oAIgxBhBGIMEa2H2Th20ZGhhQGBgYOqPsYkeSLK6uyE3NyUovQGaz/YfZgSJHKwBd+YPc5MjHYIoUfKEwjOpobQXw9qLgBJPzAwJCBicEQyjZmYGQIhrItGNgZ9PT0EEGC5H8pFoT5zMT4fzAwBHUHhTNwM5gYaGEyIwNDA7IIA8nm/IcWAzTxO/tAJxtGdBFQhoaLiL3ddRpT11PKbWccqCwDLrgYGBgwpC5xUWYyG9RHWNUgyidGFgYGdaTyiQVRjDPol+QW6BdXVulm5iamp6an5hkZGZsZmBgYmBrpgwsiCImn/OMAl09cSOazIskj111sjGwMFYklJUWGFQwMJUWGcL4RhEQqcYO35b+B63/byMSgoQwxAxSJYG+zY3cPIwQjyWow43T8KBgFo2AUjIJRMApGwSgYBaNgFIyCUTAKRsEoGAWjYBSQBOQZGMGjoNCJqv84gFEAWDUgAAD//6kpX/Y=")
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x2001020, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="280000001000010024bd7000fc0ddf2500000000", @ANYRES32=0x0, @ANYBLOB="1b0b04000300000008001b"], 0x28}, 0x1, 0x0, 0x0, 0x68010}, 0x0)

3m3.139375608s ago: executing program 0 (id=626):
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
socket$inet(0x2, 0x3, 0x2)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x4, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1fb}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x880, &(0x7f00000001c0)=ANY=[], 0x4, 0x2dc, &(0x7f0000000bc0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x48, &(0x7f0000000300)=ANY=[@ANYBLOB="aaaaaaaaaa0abbbbbbbbbbbb884800000f00fcfc96bf0d82c9754df8487fb4c9d0845a8e3432be150557efb9bf31b9694fbed5a1f2c5ca92e0468c7d2d634c"], &(0x7f0000000380)={0x1, 0x4, [0xe1f, 0xe76, 0x635, 0xb8f]})
listen(0xffffffffffffffff, 0xfff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='rdma.current\x00', 0x275a, 0x0)
fsetxattr(r3, &(0x7f0000000000)=@known='security.selinux\x00', 0x0, 0x0, 0x0)

3m0.658683237s ago: executing program 0 (id=638):
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000380)={&(0x7f0000000040)="b64b6779e728a585fc6d831c9c111ee3bf867c7fa20663508d961b5b0bc1d4eded804b84c8ee0b5e7b55af44aa8bf4a16c4d4aaf896a13f650a3b4f737945a9a179a6ceb93adadb8dd841258d0f04b02868cd415ab9bc48b055a8b3f92b143cb16138c216513a045af2101e7e3c507bedee404330f1171812cdaeed17a0e89dd4863a4e6808ca6b7046c38f33b9a0417e1c8fae7a9e1b4c8161b02", 0x0, 0x0, 0x0}, 0x38)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000000)="d8000000310081044e81f782db44b904021d080005000000e8fe55a1180015000600142603600e120900210000000401a8", 0x31}], 0x1}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{}, &(0x7f0000000040), 0x0}, 0x20)
r0 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="2b40000048009125745c7388641f9c0e0a"], 0xfe33)

3m0.567861179s ago: executing program 0 (id=642):
syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f00000002c0)='./bus\x00', 0x0, &(0x7f0000000c80)={[{@utf8}, {@shortname_winnt}, {@shortname_win95}, {@numtail}, {@shortname_win95}, {@numtail}, {@iocharset={'iocharset', 0x3d, 'macceltic'}}, {@uni_xlate}, {@iocharset={'iocharset', 0x3d, 'cp775'}}, {@rodir}, {@fat=@codepage={'codepage', 0x3d, '737'}}, {@uni_xlate}, {@shortname_win95}]}, 0x1, 0x362, &(0x7f0000000900)="$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")
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1, 0x36b, &(0x7f0000000e00)="$eJzs3U9oY0UYAPAvfWnSLmh7EwUhehO0bPemF1ukC4u9qAT/HMTgdlWSKrRYbA/b1oPiUfCoJ28KevAgHkVQxJsHr64gq+JB97bg4kjy8pLXpO22i1XK/n6HZPrNfDPz/pC8PpLJCwvRvjgZl65duxpTU5WoLjy2ENcrMRtZFHZiXG2fGABwOlxPKf5MuSOmVE54SgDACeu9/78UEY2YzSNvfn1Y++TdHwBOvf7//9OHtZk6qOK1E5kSAHDCxu7/37+nulaNqEW1+LNa+lQAAHBaPfXsc48vLkc82WhMRay+vdHcaMYjw/rFS/FKdGIlzsZM3IjILxS6D5Xe4/kLy0tnG43GdvwyG82ImOgnNvMrhcWsl1+P+ZiJ2X5+91Ij9crZ+c+Wl+YbPRGxs90bP1YrG83JONMf/8czsTK88Cg66T1FXFheOtfod9BcLfK3I3aH9y2685+Lmfj+xUE3KRWfYFxeujxfTHqYv9Gsx8XBXjjwDggAAAAAAAAAAAAAAAAAAAAAANySucbA7GD9nNR9zlfKmZvbp763Pk6e318faDdfHyjVU6T0xxsPNd/JYs/6QKPr82xYSBAAAAAAAAAAAAAAAAAAAAAG1jdr0ep0VtbWN7fa5cL22vrmRER0I69++8lX0zHe5iaFaj5EPWIwRKM/7Fa7lbKiccoixtOz7uBF5KPPBzMut6kPtmLfadQPrup07rjv5/eHkXuzoue/h22y2H8Ds9I0Hh3pefXOfErH2VGDwrlypD4++pWUUinyVjn98vPjHUYlonr8A7fVnoiD26Ru4ZurL99d7P3Wlyn3wIMzT19578Pf2q1Od+ToHcHa2vqN1G5VisbH2y3dXV1EKpEXKuUzoXpY+u7eSCv74fdn7nn3u6ONnsqR17vn80ibLN+cT0fTa3mhO82Rqulh+mR/Izork/uc/Dcr3MIxveuDLz5O6adfjzzE0MTYy0bl33n1AQAAAAAAAAAAAAAAAAAAykrfFe/rf9l38rCsh584+ZkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwH9n+Pv/pcLuToxEBoWd1tRBWX9tR+r3Oqyqr6ytR9T+560EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOB2908AAAD//09zVI4=")
epoll_create1(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000700)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x8000000000200002)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000600)='./file0\x00', 0x2140840, 0x0, 0x3, 0x0, &(0x7f0000000100))

2m45.334245048s ago: executing program 32 (id=642):
syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f00000002c0)='./bus\x00', 0x0, &(0x7f0000000c80)={[{@utf8}, {@shortname_winnt}, {@shortname_win95}, {@numtail}, {@shortname_win95}, {@numtail}, {@iocharset={'iocharset', 0x3d, 'macceltic'}}, {@uni_xlate}, {@iocharset={'iocharset', 0x3d, 'cp775'}}, {@rodir}, {@fat=@codepage={'codepage', 0x3d, '737'}}, {@uni_xlate}, {@shortname_win95}]}, 0x1, 0x362, &(0x7f0000000900)="$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")
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="757466383d312c726f6469722c756e695f786c6174653d302c636865636b3d7374726963742c757466383d302c756e695f786c6174653d302c726f6469722c636f6465706167653d3836362c756e695f786c6174653d312c73686f72746e616d653d77696e6e742c73686f72746e616d653d6d697865642c73686f72746e616d653d77696e39352c73686f72746e616d653d77696e39352c696f636861727365743d6d616363726f617469616e2c73686f72746e616d653d6d697865642c756e695f786c6174653d302c646973636172642c0075446e262f25fd37e87bbc0d0e6b98643b75cbf0c79e5a1253c8a327b0b715742b9830d9e0056d2527dec0f0053916"], 0x1, 0x36b, &(0x7f0000000e00)="$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")
epoll_create1(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000700)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x8000000000200002)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000600)='./file0\x00', 0x2140840, 0x0, 0x3, 0x0, &(0x7f0000000100))

2m9.176827807s ago: executing program 2 (id=758):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000074"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = socket$inet6(0xa, 0x3, 0x8)
connect$inet6(r4, &(0x7f0000000200)={0xa, 0x4e24, 0x2, @empty}, 0x1c)
sendmmsg(r4, &(0x7f00000092c0), 0x4ff, 0x0)

2m7.91463052s ago: executing program 2 (id=761):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)

2m7.114748573s ago: executing program 2 (id=763):
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000380)={&(0x7f0000000040)="b64b6779e728a585fc6d831c9c111ee3bf867c7fa20663508d961b5b0bc1d4eded804b84c8ee0b5e7b55af44aa8bf4a16c4d4aaf896a13f650a3b4f737945a9a179a6ceb93adadb8dd841258d0f04b02868cd415ab9bc48b055a8b3f92b143cb16138c216513a045af2101e7e3c507bedee404330f1171812cdaeed17a0e89dd4863a4e6808ca6b7046c38f33b9a0417e1c8fae7a9e1b4c8161b02", 0x0, 0x0, 0x0}, 0x38)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000000)="d8000000310081044e81f782db44b904021d080005000000e8fe55a1180015000600142603600e120900210000000401a8001600a40001", 0x37}], 0x1}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{}, 0x0, 0x0}, 0x20)
r0 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="2b40000048009125745c7388641f9c0e0a"], 0xfe33)

2m5.316888224s ago: executing program 2 (id=765):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_SET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={0x34, r1, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0x20, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x48c05}, 0x4040140)

2m4.329499941s ago: executing program 2 (id=766):
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000002bc0)=ANY=[@ANYBLOB="0070d3c06d90f6b00aafe3e574047782ea462b95722660cf9cff5858b8ce71c067582af69c4dca79e76ddad682cfd20d782e31d4b23d913bbb5c157222b5c727c72c7a"], 0x1, 0x550f, &(0x7f000000cf00)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r3}, &(0x7f0000000040), &(0x7f0000000080)=r4}, 0x20)
mount(0x0, 0x0, &(0x7f0000000080)='fuse\x00', 0x1214040, 0x0)
r5 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r5)
wait4(r5, 0x0, 0x40000000, 0x0)
ptrace$setregset(0x4205, r5, 0x202, &(0x7f0000000000)={0x0})
r6 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183341, 0x0)
r7 = open(&(0x7f0000000200)='./file1\x00', 0x4827e, 0xdc)
fallocate(r7, 0x0, 0x0, 0x8800000)
sendmsg$nl_route(r6, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4008011}, 0x4000)
ioctl$F2FS_IOC_SET_PIN_FILE(r6, 0x4004f50d, &(0x7f0000000000)=0xfffffffb)
r8 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r8, 0x0)

2m0.399404806s ago: executing program 2 (id=772):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
getpid()
sched_setaffinity(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x9)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
setrlimit(0x9, &(0x7f0000000380))
io_setup(0x2004, &(0x7f0000000040))

1m44.324359234s ago: executing program 33 (id=772):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
getpid()
sched_setaffinity(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x9)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
setrlimit(0x9, &(0x7f0000000380))
io_setup(0x2004, &(0x7f0000000040))

1m40.804367526s ago: executing program 5 (id=800):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x1, &(0x7f0000000440)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r3 = syz_open_dev$usbfs(&(0x7f0000000040), 0x400000001ff, 0x101301)
ioctl$USBDEVFS_SUBMITURB(r3, 0x8038550a, &(0x7f0000000600)=@urb_type_iso={0x0, {0x5, 0x1}, 0x801, 0x40, &(0x7f0000000000)="336e63618d7305", 0x7, 0x1, 0x5, 0xf, 0xdfe9, 0x6, &(0x7f0000000580)="3a3ae2bf5437ad089796dc9d582c6dd0d27532709a9400a0a391f43e1d2e8ecc72fe643b5202051b1fdf4c69e5ffec798e9c9109803600343b1e02f3f0329b44f24a57835b29ed07b367151d20d54a649826829c7f7b9f86981f0a4344fcba37ea410b", [{0x8, 0xb0, 0x7}, {0x600000, 0x1000, 0x4}, {0x8000000, 0x0, 0x80000000}, {0xd2b, 0x6, 0x95}, {0x7ff, 0x1, 0xfffffffb}, {0x1000, 0x7, 0x3}, {0x94, 0x39e, 0x666}, {0x9, 0x5, 0x7f}, {0x10, 0x8, 0xf30e}, {0x804, 0xffff, 0xffffff06}, {0x4, 0x2, 0x7ff}, {0x0, 0x5, 0x1293978c}, {0x9, 0x3, 0x5b}, {0x9, 0x3, 0x80000001}, {0x3, 0x2, 0x3}]})
r4 = socket(0x10, 0x803, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000300)={'team_slave_1\x00', <r6=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x1fffffffffffffcd, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002200000018010000202070250000"], 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0x5c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_emit_ethernet(0x5e, &(0x7f0000001340)={@broadcast, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x28, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_redir={0x89, 0x0, 0x0, '\x00', @remote, @private1}}}}}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000001100)={&(0x7f0000000640)=@newtfilter={0x48, 0x2c, 0xd2b, 0x70bd29, 0x35dfdbfb, {0x0, 0x0, 0x0, r6, {0x7}, {}, {0x7, 0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0x14, 0x2, [@TCA_MATCHALL_CLASSID={0x0, 0x1, {0xffe0, 0x94be99aad2f4fbdc}}, @TCA_MATCHALL_CLASSID={0xffffffffffffff4b, 0x1, {0xe, 0x10}}]}}]}, 0x48}}, 0x24040084)

1m39.202400152s ago: executing program 5 (id=801):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000f40), r0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100fcff7f00000000002100000009001f0070687930050000000c000500000000000000"], 0x34}}, 0x0)

1m39.023248076s ago: executing program 5 (id=802):
socket$key(0xf, 0x3, 0x2)
syz_open_dev$tty20(0xc, 0x4, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x8000000000002)
sched_setscheduler(r0, 0x2, &(0x7f0000000240)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f00000002c0)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000000000)={'veth0_vlan\x00', &(0x7f0000000880)=@ethtool_coalesce={0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x536, 0x0, 0x2}})

1m32.311697598s ago: executing program 5 (id=811):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000100)=ANY=[@ANYBLOB="2c0000002600bdab"], 0x2c}}, 0x0)
recvmmsg(r0, &(0x7f0000004340)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
timer_create(0x3, 0x0, &(0x7f00000004c0)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f0000000500)={{0x0, 0x3938700}, {0x0, 0x989680}}, &(0x7f0000000540))

1m30.041653501s ago: executing program 5 (id=814):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x6, 0x8, 0x8}, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xd, &(0x7f0000000f80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000001007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000085000000a000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000040)=r1, 0x4)
sendmsg$inet(r3, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x4800)

1m29.294566237s ago: executing program 5 (id=816):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
sched_setscheduler(0x0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000009c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x800700, &(0x7f0000000580)={[{@grpjquota}, {@stripe={'stripe', 0x3d, 0x3}}, {@norecovery}, {@noinit_itable}, {@orlov}, {@minixdf}, {@i_version}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@errors_continue}, {@dioread_lock}, {@noblock_validity}, {@noquota}]}, 0x3, 0x465, &(0x7f0000000f00)="$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")

1m12.764229402s ago: executing program 34 (id=816):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
sched_setscheduler(0x0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000009c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x800700, &(0x7f0000000580)={[{@grpjquota}, {@stripe={'stripe', 0x3d, 0x3}}, {@norecovery}, {@noinit_itable}, {@orlov}, {@minixdf}, {@i_version}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@errors_continue}, {@dioread_lock}, {@noblock_validity}, {@noquota}]}, 0x3, 0x465, &(0x7f0000000f00)="$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")

54.27545795s ago: executing program 3 (id=855):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee3, 0x8031, 0xffffffffffffffff, 0x28f42000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000380)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x2000000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$can_bcm(0xffffffffffffffff, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/fib_trie\x00')
preadv(r4, &(0x7f0000000b00)=[{&(0x7f0000000300)=""/30, 0x1e}], 0x1, 0x80000001, 0x0)

52.957153679s ago: executing program 3 (id=856):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = io_uring_setup(0x5594, &(0x7f0000000100)={0x0, 0x10000000, 0x1, 0x1, 0x1d2})
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)

51.854703841s ago: executing program 3 (id=857):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
ioctl$TCSBRK(0xffffffffffffffff, 0x5409, 0xd66a)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
dup(0xffffffffffffffff)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x4, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x9)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = socket(0x10, 0x3, 0x0)
socketpair$tipc(0x1e, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), r4)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r5)
getsockname$packet(r5, 0x0, &(0x7f0000000200))
r6 = syz_io_uring_setup(0x3c95, &(0x7f0000000000)={0x0, 0x5042, 0x400, 0x1, 0x4e}, &(0x7f0000000080), &(0x7f00000000c0))
io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone3(&(0x7f0000000380)={0x40000000, 0x0, 0x0, 0x0, {0x1b}, 0x0, 0x0, 0x0, 0x0}, 0x58)

49.06206297s ago: executing program 3 (id=860):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
io_setup(0x2, &(0x7f0000002400)=<r0=>0x0)
io_submit(r0, 0x0, 0x0)

47.145673527s ago: executing program 3 (id=868):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_emit_ethernet(0x32, &(0x7f0000000000)={@multicast, @empty, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @multicast1}, {{0x0, 0x6558, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "d8621b", 0x0, "2c17a9"}}}}}}, 0x0)

47.144822737s ago: executing program 3 (id=869):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_emit_ethernet(0x0, 0x0, 0x0)
syz_clone(0x41200100, 0x0, 0x0, 0x0, 0x0, 0x0)

42.264478775s ago: executing program 4 (id=872):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f00000003c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x7, [@var={0x4, 0x0, 0x0, 0xe, 0x4, 0x1}, @func_proto, @typedef={0x0, 0x0, 0x0, 0x10, 0x4}, @volatile={0x0, 0x0, 0x0, 0x9, 0x3}]}, {0x0, [0x0, 0x0, 0x0, 0x5f, 0x30]}}, 0x0, 0x53}, 0x28)

42.193774744s ago: executing program 4 (id=873):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000540)=ANY=[@ANYBLOB="1806000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r0}, &(0x7f0000000200), &(0x7f00000003c0)=r1}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000180)={r0, &(0x7f0000000140), &(0x7f0000000240)=""/154}, 0x20)

42.117949173s ago: executing program 4 (id=874):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1018e58, &(0x7f0000000200)={[{@usrquota}, {@noblock_validity}, {@bh}, {@max_batch_time={'max_batch_time', 0x3d, 0x1}}, {@nodelalloc}, {@inlinecrypt}]}, 0x6, 0x5fc, &(0x7f0000000600)="$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")

40.527587278s ago: executing program 4 (id=875):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$packet(0x11, 0xa, 0x300)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmmsg$inet(r0, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'syz_tun\x00', <r2=>0x0})
bind$packet(r1, &(0x7f0000000300)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @remote}, 0x14)
syz_emit_ethernet(0xb6, &(0x7f00000000c0)=ANY=[], 0x0)

40.341269272s ago: executing program 4 (id=876):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000280), 0x1, 0x78f, &(0x7f00000007c0)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3813009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000080)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}]})

39.327553862s ago: executing program 4 (id=880):
r0 = socket$inet6(0xa, 0x3, 0x5)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000014c0)=@raw={'raw\x00', 0x8, 0x3, 0x528, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x458, 0xffffffff, 0xffffffff, 0x458, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [0x0, 0x62], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@empty, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x62}, 0x0, 0x358, 0x388, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'veth0_to_hsr\x00', {0x4, 0x8, 0x20, 0x5e1b2d47, 0xf91, 0x5, 0x4, 0x9f7, 0x18}, {0x8}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x588)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x4000000000000, 0x40, &(0x7f00000006c0)=@raw={'raw\x00', 0x4001, 0x3, 0x3e8, 0x0, 0x0, 0x148, 0x0, 0x148, 0x350, 0x240, 0x240, 0x350, 0x240, 0x7fffffe, 0x0, {[{{@ip={@private=0xa010102, @local, 0x0, 0x0, 'ip6gretap0\x00', 'nicvf0\x00', {}, {}, 0x88, 0x3, 0x10}, 0x0, 0xf8, 0x158, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'wg1\x00', {0x0, 0x0, 0x1ff, 0x100000, 0x0, 0xed, 0x10000007}}}, @common=@unspec=@connmark={{0x30}, {0xfffffff9, 0x8}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 0x85d, 0xf, [0x10, 0x32, 0x1e, 0x32, 0x2b, 0x25, 0x3f, 0x17, 0x19, 0x22, 0x2c, 0x3d, 0x7, 0x3f, 0x1e, 0x31], 0x0, 0x2, 0x2}}}, {{@ip={@rand_addr=0x64010101, @local, 0xff, 0x0, 'tunl0\x00', 'lo\x00', {0xff}, {}, 0x2e, 0x3, 0x4}, 0x0, 0x190, 0x1f8, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x8, 0x9, 0x1, 0x1, 'syz1\x00', 0x2}}, @inet=@rpfilter={{0x28}, {0x8}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0xfff, 0x7e, 0x1c, 'netbios-ns\x00', 'syz0\x00', {0x3}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x448)

30.32442584s ago: executing program 35 (id=869):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_emit_ethernet(0x0, 0x0, 0x0)
syz_clone(0x41200100, 0x0, 0x0, 0x0, 0x0, 0x0)

24.186855009s ago: executing program 36 (id=880):
r0 = socket$inet6(0xa, 0x3, 0x5)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000014c0)=@raw={'raw\x00', 0x8, 0x3, 0x528, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x458, 0xffffffff, 0xffffffff, 0x458, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [0x0, 0x62], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@empty, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x62}, 0x0, 0x358, 0x388, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'veth0_to_hsr\x00', {0x4, 0x8, 0x20, 0x5e1b2d47, 0xf91, 0x5, 0x4, 0x9f7, 0x18}, {0x8}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x588)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x4000000000000, 0x40, &(0x7f00000006c0)=@raw={'raw\x00', 0x4001, 0x3, 0x3e8, 0x0, 0x0, 0x148, 0x0, 0x148, 0x350, 0x240, 0x240, 0x350, 0x240, 0x7fffffe, 0x0, {[{{@ip={@private=0xa010102, @local, 0x0, 0x0, 'ip6gretap0\x00', 'nicvf0\x00', {}, {}, 0x88, 0x3, 0x10}, 0x0, 0xf8, 0x158, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'wg1\x00', {0x0, 0x0, 0x1ff, 0x100000, 0x0, 0xed, 0x10000007}}}, @common=@unspec=@connmark={{0x30}, {0xfffffff9, 0x8}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 0x85d, 0xf, [0x10, 0x32, 0x1e, 0x32, 0x2b, 0x25, 0x3f, 0x17, 0x19, 0x22, 0x2c, 0x3d, 0x7, 0x3f, 0x1e, 0x31], 0x0, 0x2, 0x2}}}, {{@ip={@rand_addr=0x64010101, @local, 0xff, 0x0, 'tunl0\x00', 'lo\x00', {0xff}, {}, 0x2e, 0x3, 0x4}, 0x0, 0x190, 0x1f8, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x8, 0x9, 0x1, 0x1, 'syz1\x00', 0x2}}, @inet=@rpfilter={{0x28}, {0x8}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0xfff, 0x7e, 0x1c, 'netbios-ns\x00', 'syz0\x00', {0x3}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x448)

9.607562544s ago: executing program 1 (id=907):
r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0x400000001fb, 0x101301)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000280)=@urb_type_control={0x2, {}, 0xfffffff8, 0x45, &(0x7f0000000240)={0x0, 0x3, 0x4, 0xfffd}, 0x8, 0x4, 0x0, 0x0, 0x804, 0x20000, 0x0})

9.532744884s ago: executing program 1 (id=908):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000180)=0x2, 0x4)
syz_emit_ethernet(0xbe, &(0x7f00000014c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x3e, 0xb0, 0x1000, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x4e21, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "44cb6d37c6818e519c60ca92b05c8ad4ae74ea79fdb58e2b7f29fa51c12f5cbb", "ff8ce0c19fb809804c2ff3c541224932ac2a6c469283f70c00506d947ea5d67f53d1fdc46c7f32f5461c69dbb12ae334", "93789889a9e2835b672961b74d925e86afc527fa482ea332ce27b8a5", {"2e5d001000000000000000008285d39f", "375c5bef000000000d4600001000"}}}}}}}, 0x0)

9.444958625s ago: executing program 1 (id=909):
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003f80)=ANY=[], 0x1, 0x2f4, &(0x7f0000000900)="$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")
open(&(0x7f0000000080)='./bus\x00', 0x147c7c, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x389b0d52417bb351)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x9000}], 0x1, 0x7000, 0x7, 0x1e)

9.307466953s ago: executing program 1 (id=910):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x4, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x9)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000040)={r3, 0x0, 0x0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000400000000dfffff1918120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x1c, r5, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4008084}, 0x0)

7.318240349s ago: executing program 6 (id=912):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r0)
sendmsg$NL80211_CMD_STOP_P2P_DEVICE(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000003c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="4e39ad004d9d62f5481f5e71fc301fe139d03f8e6577c3e56b180da5078a6f0561704a379b3fa42ed9754fe609631d7469c19b2f12858065a5f188d5dd909544c52eac4d3d8b91104e2bf0", @ANYRES16=r1, @ANYBLOB="00012cbd7000fbdbdf255a000000"], 0x14}, 0x1, 0x0, 0x0, 0x4090}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffc}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000280), 0x400000000000180, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket(0x10, 0x803, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r5, 0x89f1, &(0x7f00000002c0)={'sit0\x00', &(0x7f0000000340)={'gretap0\x00', 0x0, 0x8, 0x7, 0x4, 0x80000000, {{0x6, 0x4, 0x2, 0x5, 0x18, 0x66, 0x0, 0x5, 0x29, 0x0, @broadcast, @local, {[@timestamp_addr={0x44, 0x4, 0x63, 0x1, 0x8}]}}}}})
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r7, 0xc004743e, &(0x7f0000000280)=0x3)
ioctl$PPPIOCSMAXCID(r7, 0x40047451, &(0x7f0000000200)=0x8)
ioctl$PPPIOCSFLAGS1(r7, 0x40047459, &(0x7f0000000100)=0x2000004)
pwritev(r7, &(0x7f0000000680)=[{&(0x7f0000000300)='\x00!', 0x2}], 0x1, 0x7, 0xfffffffe)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r6)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x1c, r1, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4008084}, 0x0)

6.133260161s ago: executing program 1 (id=913):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r3}, &(0x7f0000001c00), &(0x7f0000000000)=r4}, 0x20)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000500)={'syzkaller0\x00', 0x7101})
r6 = socket$unix(0x1, 0x1, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)

1.146045863s ago: executing program 6 (id=914):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x44f, 0x0)
wait4(r0, 0x0, 0x1, &(0x7f0000000300))

224.408741ms ago: executing program 1 (id=915):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000004c0)={'veth1_virt_wifi\x00', <r2=>0x0})
r3 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000800)={r1, r2, 0x25, 0x4, @val=@tcx={@void, @value=r1}}, 0x1c)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000480)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000000)={r3, r4, 0x4, r4}, 0x10)

204.235674ms ago: executing program 6 (id=916):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="070000000400000008000000a5"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000001c0)={r0, &(0x7f00000000c0)="8661", 0x0}, 0x20)

71.62318ms ago: executing program 6 (id=917):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$UI_END_FF_UPLOAD(r0, 0x406855c9, &(0x7f00000001c0)={0x2, 0x6, {0x52, 0x1, 0x5, {0x0, 0x10}, {0x401, 0x9}, @cond=[{0x8, 0xffc5, 0x9, 0x3, 0x400, 0x7}, {0x6, 0xfc00, 0xffff, 0xa2, 0x4, 0x2}]}, {0x52, 0x5, 0x9, {0x2, 0x8}, {0xff01, 0x7ff}, @cond=[{0x354, 0x6, 0x8000, 0xfff9, 0xbfde, 0x8000}, {0x4, 0x7, 0x40, 0xffff, 0x6, 0x6}]}})

60.011262ms ago: executing program 6 (id=918):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x1002, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r0, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, 0x0, 0x0)
socket(0x23, 0x1, 0x320)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setgroups(0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_EEE_GET(0xffffffffffffffff, 0x0, 0x20040000)
r2 = userfaultfd(0x1)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000080)={0xaa, 0x79})
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0)
read(r2, &(0x7f00000002c0)=""/153, 0x99)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x0, 0x2, 0x4, 0xffffffff}, 0x0, 0x0)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="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", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, 0x0, {0x7, 0x2b, 0xfffffffd, 0xffffffff80408040}}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x3ffff, {0x5, 0x0, 0x0, 0x4000000008, 0x460e, 0x5, {0x0, 0x0, 0x10000000003, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x6000, 0xd, 0x0, 0x0, 0x800000, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0})

0s ago: executing program 6 (id=919):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = gettid()
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bpf$LINK_GET_FD_BY_ID(0x1e, 0x0, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socket$nl_xfrm(0x10, 0x3, 0x6)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xd5cd7000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
fchdir(0xffffffffffffffff)
timer_create(0x0, 0x0, 0x0)
mount$binderfs(0x0, 0x0, 0x0, 0x20000, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x800, &(0x7f0000000300)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000000}}, {@noauto_da_alloc}, {@dioread_nolock}, {@test_dummy_encryption}, {@block_validity}, {@nodelalloc}, {@minixdf}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}]}, 0x1, 0xba6, &(0x7f0000000c00)="$eJzs3M1rXFUUAPDzXj7bRicVEeumEZEWxGlaSbFFsJWKGxeCboWGdFJCph8kkZo0i4n+A6KuBTeCWpQu7LobBbdutG4tLoQisVEQ0cibjyQ2M0naTvJq8vvBzbt3zpvcc/KYeffCTALYsQayH2nEvog4nUQU6o+nEdFd7fVGVGrnLczPjvwxPzuSxOLi678mkUTE7fnZkcbvSurHPfVBb0R891ISj7y7et7J6Znx4XK5NFEfH5o6d/HQ5PTMs2Pnhs+WzpbOHz76/NCRoaODx4baVuufP5249vuTr/xc+euzv6/89sEnSZyIvnpsZR3tMhADS3+TlTojYrjdk+Wko17PyjqTznWelG5yUgAAtJSuWMM9FoXoiOXFWyG+/j7X5AAAAIC2WOyIWAQAAAC2ucT+HwAAALa5xucAbs/PjjRavp9I2Fq3TkZEf63+hXqrRTqjUj32RldE7L6dxMqvtSa1p923gYi4+eOxL7MWm/Q95LVU5iLi8WbXP6nW31/9Fvfq+tOIGGzD/AN3jP9P9Z9ow/x51w/AznT9ZO1Gtvr+ly6tf6LJ/a+zyb3rXuR9/2us/xZWrf+W6+9osf57bYNzXP70o0utYln9L1x7+YtGy+bPjvdV1F24NRfxRGez+pOl+pMW9Z/e4ByFfy6VWsXyrn/x44gD0bz+hmTt/090aHSsXBqs/Ww6x9y3Q5+3mj/v+rPrv7tF/etd/4sbnOPNU6eutoqtX3/6S3fyRrXXXX/k7eGpqYnDEd3Jq6sfP7J2Lo1zGr8jq//gU2u//pvVn70nVOp/h2wvMFc/ZuN37pjzxSuXv1qr/mzvl+f1P3OP1/+9Dc7x9DfvH2wVW7n/zVo2/82kthcGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIY0IvoiSYtL/TQtFiP2RMSjsTstX5icemb0wlvnz2SxiP7oSkfHyqXBiCjUxkk2PlztL4+P3DF+LiL2RsSHhV3VcXHkQvlM3sUDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwZE9E9EWSFiMijYiFQpoWi3lnBQAAALRdf94JAAAAAJvO/h8AAAC2P/t/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANtne/ddvJBFROb6r2jLd9VhXrpkBmy3NOwEgNx15JwDkpjPvBIDc3OUe33IBtqFknXhvy0hP23MBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4MF1YN/1G0lEVI7vqrZMdz3W1fQZ+7cwO2AzpXknAOSmY61g59blAWw9L3HYuZrv8YGdJFkn3rt8TuW/kZ5NywkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAB09ftSVpMSLSaj9Ni8WIhyKiP7qS0bFyaTAiHo6IHwpdPdm4J++kAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaLvJ6Znx4XK5NKGjo5NvJ3kw0qh18n5nAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgD5PTM+PD5XJpYjLvTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIC8TU7PjA+Xy6WJDXSu3s3JKzp51wgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQH7+DQAA//+LYA3r")
timer_create(0x8, &(0x7f00000000c0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r4=>0x0)
timer_settime(r4, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

  67.882100][ T5094] netlink: 580 bytes leftover after parsing attributes in process `syz.1.204'.
[   67.979181][ T5097] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   67.986450][ T5097] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   68.011134][ T5099] loop0: detected capacity change from 0 to 1024
[   68.077802][ T5099] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[   68.133884][ T5105] netlink: 16211 bytes leftover after parsing attributes in process `syz.2.207'.
[   68.149965][ T4322] EXT4-fs (loop0): unmounting filesystem.
[   68.257610][ T5110] binder: tried to use weak ref as strong ref
[   68.263428][ T5110] binder: 5109:5110 Acquire 1 refcount change on invalid ref 0 ret -22
[   68.270682][ T5110] binder: 5109:5110 got transaction to invalid handle, 1
[   68.273541][ T5110] binder: 5110:5109 cannot find target node
[   68.282566][ T5110] binder: 5109:5110 transaction call to 0:0 failed 3/29201/-22, size 72-24 line 3045
[   68.291656][ T4594] binder: undelivered TRANSACTION_ERROR: 29201
[   68.643233][ T5115] loop2: detected capacity change from 0 to 1024
[   68.653569][ T5115] EXT4-fs: Ignoring removed oldalloc option
[   68.666730][ T5115] EXT4-fs: Ignoring removed bh option
[   68.675461][ T5115] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   68.697709][ T5115] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[   68.842798][ T5122] block device autoloading is deprecated and will be removed.
[   69.139618][ T5131] netlink: 44 bytes leftover after parsing attributes in process `syz.4.216'.
[   69.216640][ T4334] EXT4-fs (loop2): unmounting filesystem.
[   69.261345][ T5135] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   69.266641][ T5135] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   69.281484][ T5135] loop2: detected capacity change from 0 to 512
[   69.291130][ T5135] EXT4-fs: Ignoring removed orlov option
[   69.299595][ T5135] ext4: Unknown parameter 'fscontext'
[   69.412871][ T5138] netlink: 16211 bytes leftover after parsing attributes in process `syz.4.219'.
[   69.612819][   T22] cfg80211: failed to load regulatory.db
[   69.682973][ T5143] binder: BINDER_SET_CONTEXT_MGR already set
[   69.684223][ T5143] binder: 5142:5143 ioctl 4018620d 200002c0 returned -16
[   69.685682][ T5143] binder: 5142:5143 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[   69.687777][ T5143] binder: 5143 RLIMIT_NICE not set
[   69.736527][ T5144] binder: 5142:5144 got transaction to invalid handle, 1
[   69.737828][ T5144] binder: 5144:5142 cannot find target node
[   69.738721][ T5144] binder: 5142:5144 transaction call to 0:0 failed 6/29201/-22, size 72-24 line 3045
[   69.874159][ T5151] xt_CT: You must specify a L4 protocol and not use inversions on it
[   70.453719][ T5166] netlink: 16211 bytes leftover after parsing attributes in process `syz.4.230'.
[   70.479744][ T5170] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   70.481746][ T5170] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   70.510591][ T4517] binder: undelivered TRANSACTION_ERROR: 29201
[   70.698208][ T5178] loop0: detected capacity change from 0 to 4096
[   70.700802][ T5178] EXT4-fs: Ignoring removed mblk_io_submit option
[   70.719342][ T5178] EXT4-fs (loop0): Test dummy encryption mode enabled
[   70.876794][ T5178] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[   71.742879][ T5190] netlink: 12 bytes leftover after parsing attributes in process `syz.1.238'.
[   71.804247][ T5194] loop4: detected capacity change from 0 to 1024
[   71.805675][ T5194] EXT4-fs: quotafile must be on filesystem root
[   71.813022][ T4322] EXT4-fs (loop0): unmounting filesystem.
[   71.851278][   T27] kauditd_printk_skb: 21 callbacks suppressed
[   71.851288][   T27] audit: type=1326 audit(71.840:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5197 comm="syz.0.242" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a975928 code=0x7ffc0000
[   72.458726][ T5201] device ip6gretap0 entered promiscuous mode
[   72.462453][ T5201] netlink: 4 bytes leftover after parsing attributes in process `syz.1.241'.
[   72.551111][   T27] audit: type=1326 audit(72.330:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5197 comm="syz.0.242" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a975928 code=0x7ffc0000
[   72.555519][   T27] audit: type=1326 audit(72.330:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5197 comm="syz.0.242" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a975928 code=0x7ffc0000
[   72.558855][   T27] audit: type=1326 audit(72.330:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5197 comm="syz.0.242" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a975928 code=0x7ffc0000
[   72.709111][   T27] audit: type=1326 audit(72.330:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5197 comm="syz.0.242" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=213 compat=0 ip=0xffff8a975928 code=0x7ffc0000
[   72.723827][   T27] audit: type=1326 audit(72.330:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5197 comm="syz.0.242" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a975928 code=0x7ffc0000
[   72.727334][   T27] audit: type=1326 audit(72.330:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5197 comm="syz.0.242" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a975928 code=0x7ffc0000
[   72.732307][ T5206] binder: BINDER_SET_CONTEXT_MGR already set
[   72.733230][ T5206] binder: 5205:5206 ioctl 4018620d 200002c0 returned -16
[   72.749882][   T27] audit: type=1326 audit(72.330:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5197 comm="syz.0.242" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=436 compat=0 ip=0xffff8a975928 code=0x7ffc0000
[   72.753619][   T27] audit: type=1326 audit(72.330:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5197 comm="syz.0.242" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=94 compat=0 ip=0xffff8a975928 code=0x7ffc0000
[   72.769970][ T5206] binder: 5205:5206 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[   72.771990][ T5206] binder: 5206 RLIMIT_NICE not set
[   72.808254][ T5210] loop0: detected capacity change from 0 to 512
[   72.821449][ T5212] binder: 5205:5212 got transaction to invalid handle, 1
[   72.822605][ T5212] binder: 5212:5205 cannot find target node
[   72.823562][ T5212] binder: 5205:5212 transaction call to 0:0 failed 9/29201/-22, size 72-24 line 3045
[   72.852700][ T5210] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[   73.263613][ T5216] loop3: detected capacity change from 0 to 1024
[   73.644348][ T5216] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[   73.814303][   T24] binder: undelivered TRANSACTION_ERROR: 29201
[   74.017948][ T5221] loop4: detected capacity change from 0 to 2048
[   74.334441][ T4323] EXT4-fs (loop3): unmounting filesystem.
[   74.351269][ T5221] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[   74.469039][ T4322] EXT4-fs (loop0): unmounting filesystem.
[   74.787212][ T5231] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1113: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[   74.789705][ T5231] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 704 with error 28
[   74.791834][ T5231] EXT4-fs (loop4): This should not happen!! Data will be lost
[   74.791834][ T5231] 
[   74.793185][ T5231] EXT4-fs (loop4): Total free blocks count 0
[   74.794161][ T5231] EXT4-fs (loop4): Free/Dirty block details
[   74.795124][ T5231] EXT4-fs (loop4): free_blocks=2415919504
[   74.796013][ T5231] EXT4-fs (loop4): dirty_blocks=720
[   74.796850][ T5231] EXT4-fs (loop4): Block reservation details
[   74.797778][ T5231] EXT4-fs (loop4): i_reserved_data_blocks=45
[   75.763637][ T4326] EXT4-fs (loop4): unmounting filesystem.
[   75.788989][ T5256] binder: BINDER_SET_CONTEXT_MGR already set
[   75.793927][ T5256] binder: 5255:5256 ioctl 4018620d 200002c0 returned -16
[   75.795774][ T5256] binder: 5255:5256 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[   75.797755][ T5256] binder: 5256 RLIMIT_NICE not set
[   75.886436][ T5261] binder: 5255:5261 got transaction to invalid handle, 1
[   75.894438][ T5261] binder: 5261:5255 cannot find target node
[   75.895439][ T5261] binder: 5255:5261 transaction call to 0:0 failed 12/29201/-22, size 72-24 line 3045
[   75.901413][ T5262] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   75.902813][ T5262] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   75.917591][ T5264] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   75.919075][ T5264] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   76.777894][ T4518] binder: undelivered TRANSACTION_ERROR: 29201
[   77.447504][ T5296] loop2: detected capacity change from 0 to 1024
[   77.763774][ T5299] binder: 5298:5299 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[   77.769149][ T5299] binder: 5299 RLIMIT_NICE not set
[   77.816079][ T5301] binder: 5298:5301 got transaction to invalid handle, 1
[   77.817443][ T5301] binder: 5301:5298 cannot find target node
[   77.818458][ T5301] binder: 5298:5301 transaction call to 0:0 failed 16/29201/-22, size 72-24 line 3045
[   78.331889][ T5310] input: syz0 as /devices/virtual/input/input2
[   78.561845][ T5309] loop0: detected capacity change from 0 to 4096
[   78.565205][ T5309] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[   78.600418][ T4517] binder: undelivered TRANSACTION_ERROR: 29201
[   79.232354][ T4322] EXT4-fs (loop0): unmounting filesystem.
[   79.787275][ T5341] binder: 5340:5341 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[   79.789552][ T5341] binder: 5341 RLIMIT_NICE not set
[   79.828733][ T5344] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   79.830345][ T5344] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   79.838422][ T5345] binder: 5340:5345 got transaction to invalid handle, 1
[   79.839605][ T5345] binder: 5345:5340 cannot find target node
[   79.844098][ T5345] binder: 5340:5345 transaction call to 0:0 failed 20/29201/-22, size 72-24 line 3045
[   80.640468][ T4310] binder: undelivered TRANSACTION_ERROR: 29201
[   80.717020][ T5354] loop2: detected capacity change from 0 to 512
[   80.732393][ T5354] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   80.759676][ T5354] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[   80.762290][ T5354] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.291: invalid indirect mapped block 2683928664 (level 1)
[   80.773533][ T5354] EXT4-fs (loop2): 1 truncate cleaned up
[   80.774537][ T5354] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[   80.793290][ T4334] EXT4-fs (loop2): unmounting filesystem.
[   80.868070][ T5370] binder: 5369:5370 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[   80.870857][ T5370] binder: 5370 RLIMIT_NICE not set
[   80.923922][ T5374] binder: 5369:5374 got transaction to invalid handle, 1
[   80.925287][ T5374] binder: 5374:5369 cannot find target node
[   80.926517][ T5374] binder: 5369:5374 transaction call to 0:0 failed 24/29201/-22, size 72-24 line 3045
[   81.323987][ T5378] loop4: detected capacity change from 0 to 512
[   81.329674][ T5378] EXT4-fs (loop4): Test dummy encryption mode enabled
[   81.331329][ T5378] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   81.335985][ T5378] EXT4-fs error (device loop4): ext4_orphan_get:1425: comm syz.4.300: bad orphan inode 131083
[   81.338161][ T5378] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[   81.702969][   T22] binder: undelivered TRANSACTION_ERROR: 29201
[   82.277912][ T5383] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   82.279371][ T5383] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   82.298178][ T5386] loop3: detected capacity change from 0 to 256
[   82.384294][ T5386] FAT-fs (loop3): Directory bread(block 64) failed
[   82.385762][ T5386] FAT-fs (loop3): Directory bread(block 65) failed
[   82.386753][ T5386] FAT-fs (loop3): Directory bread(block 66) failed
[   82.387695][ T5386] FAT-fs (loop3): Directory bread(block 67) failed
[   82.388761][ T5386] FAT-fs (loop3): Directory bread(block 68) failed
[   82.389748][ T5386] FAT-fs (loop3): Directory bread(block 69) failed
[   82.413932][ T5386] FAT-fs (loop3): Directory bread(block 70) failed
[   82.560080][ T5386] FAT-fs (loop3): Directory bread(block 71) failed
[   82.561240][ T5386] FAT-fs (loop3): Directory bread(block 72) failed
[   82.562205][ T5386] FAT-fs (loop3): Directory bread(block 73) failed
[   82.895951][ T4326] EXT4-fs (loop4): unmounting filesystem.
[   83.919847][ T5419] loop1: detected capacity change from 0 to 512
[   86.071395][ T5427] loop2: detected capacity change from 0 to 128
[   86.097065][ T5419] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.310: bg 0: block 393: padding at end of block bitmap is not set
[   86.100720][ T5419] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6181: Corrupt filesystem
[   86.102439][ T5419] EXT4-fs (loop1): 2 truncates cleaned up
[   86.103401][ T5419] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[   86.121202][ T5431] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   86.126187][ T5431] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   86.130156][ T5427] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   86.310126][ T5443] netlink: 8 bytes leftover after parsing attributes in process `syz.2.316'.
[   86.325298][ T5443] fuse: Unknown parameter '0x0000000000000009'
[   86.557073][ T4321] EXT4-fs (loop1): unmounting filesystem.
[   86.860622][ T5445] device ip6gretap0 entered promiscuous mode
[   86.862086][ T5445] netlink: 4 bytes leftover after parsing attributes in process `syz.4.322'.
[   87.230575][ T4334] EXT4-fs (loop2): unmounting filesystem.
[   87.334080][ T5467] loop4: detected capacity change from 0 to 512
[   87.335518][ T5467] EXT4-fs: Ignoring removed bh option
[   87.654402][ T5467] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   87.677681][ T5467] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2823: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   87.682733][ T5467] EXT4-fs (loop4): 1 truncate cleaned up
[   87.683625][ T5467] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[   87.733531][ T4326] EXT4-fs (loop4): unmounting filesystem.
[   88.549572][ T5481] capability: warning: `syz.3.333' uses 32-bit capabilities (legacy support in use)
[   89.007812][ T5487] mmap: syz.0.335 (5487) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   90.669112][ T5514] netlink: 8 bytes leftover after parsing attributes in process `syz.0.340'.
[   91.304374][ T5519] loop3: detected capacity change from 0 to 512
[   91.327827][ T5523] loop0: detected capacity change from 0 to 128
[   91.364859][   T27] audit: type=1326 audit(91.350:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5528 comm="syz.1.348" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb375928 code=0x7ffc0000
[   91.366963][ T5529] loop1: detected capacity change from 0 to 256
[   91.368355][   T27] audit: type=1326 audit(91.350:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5528 comm="syz.1.348" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=279 compat=0 ip=0xffffbb375928 code=0x7ffc0000
[   91.373715][ T5529] exfat: Deprecated parameter 'namecase'
[   91.374679][ T5529] exfat: Deprecated parameter 'utf8'
[   91.376689][ T5529] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[   91.386094][ T5523] syz.0.346: attempt to access beyond end of device
[   91.386094][ T5523] loop0: rw=2049, sector=138, nr_sectors = 112 limit=128
[   91.395321][ T5529] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d)
[   91.402327][   T27] audit: type=1326 audit(91.350:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5528 comm="syz.1.348" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffffbb375620 code=0x7ffc0000
[   91.482998][   T27] audit: type=1326 audit(91.350:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5528 comm="syz.1.348" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=64 compat=0 ip=0xffffbb3588ec code=0x7ffc0000
[   91.490786][   T27] audit: type=1326 audit(91.350:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5528 comm="syz.1.348" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=215 compat=0 ip=0xffffbb3756cc code=0x7ffc0000
[   91.502577][   T27] audit: type=1326 audit(91.350:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5528 comm="syz.1.348" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffbb3588ec code=0x7ffc0000
[   91.506110][   T27] audit: type=1326 audit(91.350:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5528 comm="syz.1.348" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=29 compat=0 ip=0xffffbb375550 code=0x7ffc0000
[   91.520086][   T27] audit: type=1326 audit(91.350:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5528 comm="syz.1.348" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=57 compat=0 ip=0xffffbb3588ec code=0x7ffc0000
[   92.106890][   T27] audit: type=1326 audit(91.350:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5528 comm="syz.1.348" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=57 compat=0 ip=0xffffbb3588ec code=0x7ffc0000
[   92.115825][   T27] audit: type=1326 audit(91.350:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5528 comm="syz.1.348" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=34 compat=0 ip=0xffffbb3741b8 code=0x7ffc0000
[   93.335148][ T5565] loop3: detected capacity change from 0 to 512
[   93.337018][ T5565] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   93.351658][ T5565] EXT4-fs (loop3): 1 truncate cleaned up
[   93.352588][ T5565] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[   94.276072][ T4323] EXT4-fs (loop3): unmounting filesystem.
[   94.729115][ T5601] loop1: detected capacity change from 0 to 16
[   94.745962][ T5601] erofs: (device loop1): mounted with root inode @ nid 36.
[   95.093477][ T5603] binder: 5598:5603 IncRefs 0 refcount change on invalid ref 0 ret -22
[   95.100703][ T5603] binder: 5598:5603 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[   95.103365][ T5603] binder: 5603 RLIMIT_NICE not set
[   95.164986][ T5608] binder: 5598:5608 got transaction to invalid handle, 1
[   95.166199][ T5608] binder: 5608:5598 cannot find target node
[   95.167365][ T5608] binder: 5598:5608 transaction call to 0:0 failed 27/29201/-22, size 72-24 line 3045
[   95.425094][ T5614] loop4: detected capacity change from 0 to 128
[   95.429198][ T5614] FAT-fs (loop4): Unrecognized mount option "ÿÿÿÿÿÿÿÿ" or missing value
[   96.559875][ T4518] binder: undelivered TRANSACTION_ERROR: 29201
[   97.193668][ T5628] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   97.195060][ T5628] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   97.222297][   T27] kauditd_printk_skb: 10 callbacks suppressed
[   97.222306][   T27] audit: type=1326 audit(97.210:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5629 comm="syz.1.377" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb375928 code=0x0
[   97.265192][ T5634] loop0: detected capacity change from 0 to 128
[   97.321856][ T5637] syz.1.377 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   98.065699][ T5650] xt_hashlimit: size too large, truncated to 1048576
[   98.074318][ T5648] binder: 5647:5648 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[   98.076606][ T5648] binder: 5648 RLIMIT_NICE not set
[   98.138260][ T5655] binder: 5653:5655 IncRefs 0 refcount change on invalid ref 0 ret -22
[   98.153933][ T5655] binder: 5653:5655 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[   98.158247][ T5655] binder: 5655 RLIMIT_NICE not set
[   98.205478][ T5659] binder: 5653:5659 got transaction to invalid handle, 1
[   98.206755][ T5659] binder: 5659:5653 cannot find target node
[   98.207941][ T5659] binder: 5653:5659 transaction call to 0:0 failed 30/29201/-22, size 72-24 line 3045
[   98.210333][ T5660] netlink: 16399 bytes leftover after parsing attributes in process `syz.0.387'.
[   99.364229][  T112] binder: undelivered TRANSACTION_ERROR: 29201
[   99.379901][ T5673] loop2: detected capacity change from 0 to 256
[   99.439436][ T5673] FAT-fs (loop2): count of clusters too big (67107838)
[   99.440652][ T5673] FAT-fs (loop2): Can't find a valid FAT filesystem
[  100.460098][ T5695] netlink: 16399 bytes leftover after parsing attributes in process `syz.1.398'.
[  101.493688][ T4329] Bluetooth: hci4: command 0x0407 tx timeout
[  101.533619][ T5713] binder: 5712:5713 IncRefs 0 refcount change on invalid ref 0 ret -22
[  101.546816][ T5713] binder: 5712:5713 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[  101.559135][ T5713] binder: 5713 RLIMIT_NICE not set
[  101.598039][ T5714] binder: 5712:5714 got transaction to invalid handle, 1
[  101.599319][ T5714] binder: 5714:5712 cannot find target node
[  101.600596][ T5714] binder: 5712:5714 transaction call to 0:0 failed 33/29201/-22, size 72-24 line 3045
[  102.430810][  T112] binder: undelivered TRANSACTION_ERROR: 29201
[  103.015719][ T5735] netlink: 16399 bytes leftover after parsing attributes in process `syz.0.411'.
[  103.779929][ T4594] usb 1-1: new full-speed USB device number 3 using dummy_hcd
[  104.021303][ T4594] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  104.023137][ T4594] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  104.024786][ T4594] usb 1-1: New USB device found, idVendor=0419, idProduct=0001, bcdDevice= 0.00
[  104.026109][ T4594] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.026633][ T5757] binder: 5755:5757 IncRefs 0 refcount change on invalid ref 0 ret -22
[  104.035065][ T4594] usb 1-1: config 0 descriptor??
[  104.041088][ T5757] binder: 5755:5757 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[  104.043259][ T5757] binder: 5757 RLIMIT_NICE not set
[  104.093448][ T5759] binder: 5755:5759 got transaction to invalid handle, 1
[  104.094626][ T5759] binder: 5759:5755 cannot find target node
[  104.095586][ T5759] binder: 5755:5759 transaction call to 0:0 failed 35/29201/-22, size 72-24 line 3045
[  104.516219][ T5765] netlink: 16399 bytes leftover after parsing attributes in process `syz.4.423'.
[  105.465071][ T1964] binder: undelivered TRANSACTION_ERROR: 29201
[  105.479583][ T4594] samsung 0003:0419:0001.0001: hidraw0: USB HID v0.00 Device [HID 0419:0001] on usb-dummy_hcd.0-1/input0
[  106.554459][ T5800] netlink: 16399 bytes leftover after parsing attributes in process `syz.1.434'.
[  107.242566][ T5807] binder: 5806:5807 IncRefs 0 refcount change on invalid ref 0 ret -22
[  107.245294][ T5807] binder: 5806:5807 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[  107.252652][ T5807] binder: 5807 RLIMIT_NICE not set
[  107.261753][ T5809] loop4: detected capacity change from 0 to 256
[  107.268290][ T5809] FAT-fs (loop4): Directory bread(block 64) failed
[  107.269466][ T5809] FAT-fs (loop4): Directory bread(block 65) failed
[  107.271765][ T5809] FAT-fs (loop4): Directory bread(block 66) failed
[  107.273109][ T5809] FAT-fs (loop4): Directory bread(block 67) failed
[  107.274437][ T5809] FAT-fs (loop4): Directory bread(block 68) failed
[  107.275585][ T5809] FAT-fs (loop4): Directory bread(block 69) failed
[  107.276722][ T5809] FAT-fs (loop4): Directory bread(block 70) failed
[  107.277914][ T5809] FAT-fs (loop4): Directory bread(block 71) failed
[  107.279108][ T5809] FAT-fs (loop4): Directory bread(block 72) failed
[  107.282004][ T5809] FAT-fs (loop4): Directory bread(block 73) failed
[  107.316856][ T5810] binder: 5806:5810 got transaction to invalid handle, 1
[  107.321156][ T5810] binder: 5810:5806 cannot find target node
[  107.322121][ T5810] binder: 5806:5810 transaction call to 0:0 failed 37/29201/-22, size 72-24 line 3045
[  107.352877][ T5814] syz.4.437: attempt to access beyond end of device
[  107.352877][ T5814] loop4: rw=2051, sector=1224, nr_sectors = 32 limit=256
[  107.449664][  T112] usb 1-1: USB disconnect, device number 3
[  107.575280][ T5820] device ip6erspan0 entered promiscuous mode
[  107.589880][ T5820] netlink: 72 bytes leftover after parsing attributes in process `syz.3.438'.
[  107.830905][ T5818] netlink: 4 bytes leftover after parsing attributes in process `syz.0.440'.
[  107.879590][ T5824] netlink: 'syz.2.441': attribute type 32 has an invalid length.
[  107.964582][ T5830] device bridge1 entered promiscuous mode
[  108.073411][  T112] binder: undelivered TRANSACTION_ERROR: 29201
[  108.094515][ T5834] loop2: detected capacity change from 0 to 1024
[  108.096089][ T5834] EXT4-fs: Ignoring removed nomblk_io_submit option
[  108.177094][ T5834] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  108.934790][ T5834] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  109.265705][ T5842] netlink: 16399 bytes leftover after parsing attributes in process `syz.1.446'.
[  109.287750][ T4334] EXT4-fs (loop2): unmounting filesystem.
[  110.253597][ T5860] loop3: detected capacity change from 0 to 128
[  110.717685][ T5860] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  110.733912][ T5859] xt_CT: No such helper "netbios-ns"
[  110.870683][ T5875] binder: 5874:5875 IncRefs 0 refcount change on invalid ref 0 ret -22
[  110.873403][ T5875] binder: 5874:5875 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[  110.875577][ T5875] binder: 5875 RLIMIT_NICE not set
[  110.907594][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  110.924563][ T5877] binder: 5874:5877 got transaction to invalid handle, 1
[  110.925820][ T5877] binder: 5877:5874 cannot find target node
[  110.926760][ T5877] binder: 5874:5877 transaction call to 0:0 failed 39/29201/-22, size 72-24 line 3045
[  111.013794][ T5879] netlink: 12 bytes leftover after parsing attributes in process `syz.0.455'.
[  111.306943][ T5880] loop4: detected capacity change from 0 to 512
[  111.327946][ T5880] EXT4-fs (loop4): Test dummy encryption mode enabled
[  111.329101][ T5880] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  111.454440][ T5880] EXT4-fs error (device loop4): ext4_orphan_get:1425: comm syz.4.454: bad orphan inode 131083
[  111.456641][ T5880] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  111.711213][ T4517] binder: undelivered TRANSACTION_ERROR: 29201
[  111.737661][ T5885] loop0: detected capacity change from 0 to 256
[  111.778187][ T5887] netlink: 16399 bytes leftover after parsing attributes in process `syz.2.458'.
[  111.803731][ T5885] FAT-fs (loop0): Directory bread(block 64) failed
[  111.804816][ T5885] FAT-fs (loop0): Directory bread(block 65) failed
[  111.805922][ T5885] FAT-fs (loop0): Directory bread(block 66) failed
[  111.806934][ T5885] FAT-fs (loop0): Directory bread(block 67) failed
[  111.808007][ T5885] FAT-fs (loop0): Directory bread(block 68) failed
[  111.809098][ T5885] FAT-fs (loop0): Directory bread(block 69) failed
[  111.832285][ T5885] FAT-fs (loop0): Directory bread(block 70) failed
[  111.833396][ T5885] FAT-fs (loop0): Directory bread(block 71) failed
[  111.851977][ T5885] FAT-fs (loop0): Directory bread(block 72) failed
[  111.853084][ T5885] FAT-fs (loop0): Directory bread(block 73) failed
[  111.889320][ T5893] loop2: detected capacity change from 0 to 512
[  111.946358][ T5896] device syzkaller0 entered promiscuous mode
[  112.612467][ T4311] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  112.620618][ T4326] EXT4-fs (loop4): unmounting filesystem.
[  113.159809][ T5907] capability: warning: `syz.2.462' uses deprecated v2 capabilities in a way that may be insecure
[  115.098250][ T5979] binder: 5978:5979 IncRefs 0 refcount change on invalid ref 0 ret -22
[  115.103915][ T5979] binder: 5978:5979 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[  115.106010][ T5979] binder: 5979 RLIMIT_NICE not set
[  115.155459][ T5980] binder: 5978:5980 got transaction to invalid handle, 1
[  115.156570][ T5980] binder: 5980:5978 cannot find target node
[  115.157474][ T5980] binder: 5978:5980 transaction call to 0:0 failed 41/29201/-22, size 72-24 line 3045
[  115.931344][  T112] binder: undelivered TRANSACTION_ERROR: 29201
[  115.966765][ T5984] netlink: 16399 bytes leftover after parsing attributes in process `syz.2.472'.
[  124.248933][ T6001] netlink: 8 bytes leftover after parsing attributes in process `syz.2.477'.
[  124.358331][ T6013] binder: 6009:6013 IncRefs 0 refcount change on invalid ref 0 ret -22
[  124.374789][ T6013] binder: 6009:6013 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[  124.377019][ T6013] binder: 6013 RLIMIT_NICE not set
[  124.383013][  T112] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  124.394673][  T112] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  124.960730][ T6020] binder: 6009:6020 got transaction to invalid handle, 1
[  124.962047][ T6020] binder: 6020:6009 cannot find target node
[  124.962927][ T6020] binder: 6009:6020 transaction call to 0:0 failed 43/29201/-22, size 72-24 line 3045
[  125.031265][ T6024] netlink: 16399 bytes leftover after parsing attributes in process `syz.1.484'.
[  125.165100][ T6029] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  126.199205][  T112] binder: undelivered TRANSACTION_ERROR: 29201
[  126.232919][ T2061] ieee802154 phy0 wpan0: encryption failed: -22
[  126.350856][ T2061] ieee802154 phy1 wpan1: encryption failed: -22
[  127.090260][ T6041] loop4: detected capacity change from 0 to 512
[  127.233423][ T6041] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  127.614815][ T6041] EXT4-fs (loop4): 1 truncate cleaned up
[  127.615851][ T6041] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  128.304966][ T6056] netlink: 16399 bytes leftover after parsing attributes in process `syz.2.496'.
[  128.709653][ T4326] EXT4-fs (loop4): unmounting filesystem.
[  128.750503][ T6066] binder: 6063:6066 IncRefs 0 refcount change on invalid ref 0 ret -22
[  128.753081][ T6066] binder: 6063:6066 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[  128.755176][ T6066] binder: 6066 RLIMIT_NICE not set
[  128.763169][ T6060] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  128.765803][ T6060] FAT-fs (loop7): unable to read boot sector
[  128.886329][ T6071] loop1: detected capacity change from 0 to 512
[  128.889213][ T6071] EXT4-fs: Ignoring removed orlov option
[  128.890263][ T6071] EXT4-fs: Ignoring removed i_version option
[  128.892890][   T27] audit: type=1326 audit(128.840:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6061 comm="syz.1.497" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb375928 code=0x7ffc0000
[  128.896670][   T27] audit: type=1326 audit(128.840:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6061 comm="syz.1.497" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb375928 code=0x7ffc0000
[  128.950055][   T27] audit: type=1326 audit(128.860:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6061 comm="syz.1.497" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffbb375928 code=0x7ffc0000
[  128.981652][   T27] audit: type=1326 audit(128.860:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6061 comm="syz.1.497" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb375928 code=0x7ffc0000
[  129.002747][ T6071] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.497: inode #1: comm syz.1.497: iget: illegal inode #
[  129.006010][   T27] audit: type=1326 audit(128.860:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6061 comm="syz.1.497" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb375928 code=0x7ffc0000
[  129.006255][ T6071] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.497: error while reading EA inode 1 err=-117
[  129.012649][   T27] audit: type=1326 audit(128.860:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6061 comm="syz.1.497" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=279 compat=0 ip=0xffffbb375928 code=0x7ffc0000
[  129.013077][ T6071] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.497: inode #1: comm syz.1.497: iget: illegal inode #
[  129.020373][   T27] audit: type=1326 audit(128.860:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6061 comm="syz.1.497" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffffbb375620 code=0x7ffc0000
[  129.023907][   T27] audit: type=1326 audit(128.870:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6061 comm="syz.1.497" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=64 compat=0 ip=0xffffbb3588ec code=0x7ffc0000
[  129.024051][ T6071] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.497: error while reading EA inode 1 err=-117
[  129.031275][ T6071] EXT4-fs (loop1): 1 orphan inode deleted
[  129.032252][ T6071] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  129.172555][   T27] audit: type=1326 audit(128.870:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6061 comm="syz.1.497" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=215 compat=0 ip=0xffffbb3756cc code=0x7ffc0000
[  129.192019][   T27] audit: type=1326 audit(128.870:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6061 comm="syz.1.497" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffbb3588ec code=0x7ffc0000
[  129.499647][ T6073] binder: 6063:6073 got transaction to invalid handle, 1
[  129.555499][ T6073] binder: 6073:6063 cannot find target node
[  129.655330][ T6073] binder: 6063:6073 transaction call to 0:0 failed 45/29201/-22, size 72-24 line 3045
[  129.707568][ T6078] loop0: detected capacity change from 0 to 512
[  129.748876][ T6080] loop3: detected capacity change from 0 to 256
[  129.759200][   T24] binder: undelivered TRANSACTION_ERROR: 29201
[  129.781146][ T6078] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  129.798100][ T6080] FAT-fs (loop3): Directory bread(block 64) failed
[  129.799197][ T6080] FAT-fs (loop3): Directory bread(block 65) failed
[  129.894543][ T6080] FAT-fs (loop3): Directory bread(block 66) failed
[  129.895620][ T6080] FAT-fs (loop3): Directory bread(block 67) failed
[  129.896723][ T6080] FAT-fs (loop3): Directory bread(block 68) failed
[  129.897741][ T6080] FAT-fs (loop3): Directory bread(block 69) failed
[  129.898776][ T6080] FAT-fs (loop3): Directory bread(block 70) failed
[  129.899777][ T6080] FAT-fs (loop3): Directory bread(block 71) failed
[  130.306640][ T6080] FAT-fs (loop3): Directory bread(block 72) failed
[  130.307710][ T6080] FAT-fs (loop3): Directory bread(block 73) failed
[  130.323441][ T6085] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1113: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  130.326275][ T6085] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  130.328144][ T6085] EXT4-fs (loop0): This should not happen!! Data will be lost
[  130.328144][ T6085] 
[  130.329544][ T6085] EXT4-fs (loop0): Total free blocks count 0
[  130.330548][ T6085] EXT4-fs (loop0): Free/Dirty block details
[  130.331381][ T6085] EXT4-fs (loop0): free_blocks=65280
[  130.332208][ T6085] EXT4-fs (loop0): dirty_blocks=23
[  130.332981][ T6085] EXT4-fs (loop0): Block reservation details
[  130.334306][ T6085] EXT4-fs (loop0): i_reserved_data_blocks=23
[  130.763792][ T4322] EXT4-fs (loop0): unmounting filesystem.
[  130.764950][ T4321] EXT4-fs (loop1): unmounting filesystem.
[  130.801967][ T6096] netlink: 'syz.0.508': attribute type 4 has an invalid length.
[  130.822934][ T6096] netlink: 'syz.0.508': attribute type 4 has an invalid length.
[  130.866409][ T6100] netlink: 16399 bytes leftover after parsing attributes in process `syz.4.509'.
[  130.982209][ T6116] binder: 6115:6116 ioctl 4018620d 0 returned -22
[  130.984317][ T6116] binder: 6115:6116 IncRefs 0 refcount change on invalid ref 0 ret -22
[  130.993228][ T6116] binder: 6115:6116 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[  130.995384][ T6116] binder: 6116 RLIMIT_NICE not set
[  131.044727][ T6121] binder: 6115:6121 got transaction to invalid handle, 1
[  131.045882][ T6121] binder: 6121:6115 cannot find target node
[  131.046837][ T6121] binder: 6115:6121 transaction call to 0:0 failed 48/29201/-22, size 72-24 line 3045
[  131.073397][ T6123] netlink: 4595 bytes leftover after parsing attributes in process `syz.3.517'.
[  131.928325][ T4376] binder: undelivered TRANSACTION_ERROR: 29201
[  132.164471][ T6136] netlink: 16399 bytes leftover after parsing attributes in process `syz.2.520'.
[  133.092629][ T6152] netlink: 4595 bytes leftover after parsing attributes in process `syz.1.528'.
[  133.094428][ T6151] loop2: detected capacity change from 0 to 256
[  133.109523][ T6154] netlink: 16 bytes leftover after parsing attributes in process `syz.0.526'.
[  133.123592][ T6151] FAT-fs (loop2): Directory bread(block 64) failed
[  133.140198][ T6151] FAT-fs (loop2): Directory bread(block 65) failed
[  133.141343][ T6151] FAT-fs (loop2): Directory bread(block 66) failed
[  133.142411][ T6151] FAT-fs (loop2): Directory bread(block 67) failed
[  133.143505][ T6151] FAT-fs (loop2): Directory bread(block 68) failed
[  133.144558][ T6151] FAT-fs (loop2): Directory bread(block 69) failed
[  133.145536][ T6151] FAT-fs (loop2): Directory bread(block 70) failed
[  133.146542][ T6151] FAT-fs (loop2): Directory bread(block 71) failed
[  133.147620][ T6151] FAT-fs (loop2): Directory bread(block 72) failed
[  133.148661][ T6151] FAT-fs (loop2): Directory bread(block 73) failed
[  133.185050][ T6160] binder: 6159:6160 ioctl 4018620d 0 returned -22
[  133.188037][ T6160] binder: 6159:6160 IncRefs 0 refcount change on invalid ref 0 ret -22
[  133.192594][ T6164] netlink: 16399 bytes leftover after parsing attributes in process `syz.3.532'.
[  133.197631][ T6160] binder: 6159:6160 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[  133.199599][ T6160] binder: 6160 RLIMIT_NICE not set
[  133.248497][ T6166] binder: 6159:6166 got transaction to invalid handle, 1
[  133.249668][ T6166] binder: 6166:6159 cannot find target node
[  133.253419][ T6166] binder: 6159:6166 transaction call to 0:0 failed 51/29201/-22, size 72-24 line 3045
[  133.373632][ T6170] binder: 6169:6170 BC_ACQUIRE_DONE u0000000000000000 no match
[  133.375370][ T6170] binder: 6170:6169 cannot find target node
[  133.379001][ T6170] binder: 6169:6170 transaction call to 0:0 failed 52/29201/-22, size 0-0 line 3045
[  133.381566][ T4518] binder: undelivered TRANSACTION_ERROR: 29201
[  133.996639][ T6189] netlink: 4595 bytes leftover after parsing attributes in process `syz.2.541'.
[  134.002121][   T24] binder: undelivered TRANSACTION_ERROR: 29201
[  134.025676][ T6192] process 'syz.4.545' launched '/dev/fd/3' with NULL argv: empty string added
[  134.029880][ T4594] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  134.070561][ T6196] netlink: 16399 bytes leftover after parsing attributes in process `syz.2.544'.
[  134.289913][ T4594] usb 1-1: Using ep0 maxpacket: 32
[  134.294942][ T4594] usb 1-1: config 2 has an invalid interface number: 88 but max is 0
[  134.294995][ T4594] usb 1-1: config 2 has no interface number 0
[  134.295079][ T4594] usb 1-1: config 2 interface 88 has no altsetting 0
[  134.347587][ T4594] usb 1-1: New USB device found, idVendor=0557, idProduct=2009, bcdDevice=c7.1e
[  134.347630][ T4594] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  134.347662][ T4594] usb 1-1: Product: syz
[  134.347693][ T4594] usb 1-1: Manufacturer: syz
[  134.347723][ T4594] usb 1-1: SerialNumber: syz
[  134.984765][ T6215] loop2: detected capacity change from 0 to 1024
[  135.010331][ T6215] EXT4-fs: quotafile must be on filesystem root
[  135.417368][ T4594] asix 1-1:2.88 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  135.420031][ T4594] asix: probe of 1-1:2.88 failed with error -71
[  135.430946][ T4594] usb 1-1: USB disconnect, device number 4
[  135.489395][ T6221] loop3: detected capacity change from 0 to 256
[  135.506489][ T6221] FAT-fs (loop3): Directory bread(block 64) failed
[  135.508764][ T6221] FAT-fs (loop3): Directory bread(block 65) failed
[  135.513311][ T6221] FAT-fs (loop3): Directory bread(block 66) failed
[  135.515519][ T6221] FAT-fs (loop3): Directory bread(block 67) failed
[  135.516712][ T6221] FAT-fs (loop3): Directory bread(block 68) failed
[  135.517883][ T6221] FAT-fs (loop3): Directory bread(block 69) failed
[  135.524345][ T6221] FAT-fs (loop3): Directory bread(block 70) failed
[  135.526594][ T6221] FAT-fs (loop3): Directory bread(block 71) failed
[  135.527860][ T6221] FAT-fs (loop3): Directory bread(block 72) failed
[  135.536373][ T6221] FAT-fs (loop3): Directory bread(block 73) failed
[  136.334469][ T6232] loop0: detected capacity change from 0 to 256
[  136.359540][ T6234] binder: 6233:6234 ioctl 4018620d 0 returned -22
[  136.363230][ T6234] binder_user_error: 1 callbacks suppressed
[  136.363236][ T6234] binder: 6233:6234 IncRefs 0 refcount change on invalid ref 0 ret -22
[  136.376164][ T6234] binder: 6233:6234 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[  136.384556][ T6234] binder: 6234 RLIMIT_NICE not set
[  136.427480][ T6239] binder: 6233:6239 got transaction to invalid handle, 1
[  136.428759][ T6239] binder: 6239:6233 cannot find target node
[  136.429616][ T6239] binder: 6233:6239 transaction call to 0:0 failed 55/29201/-22, size 72-24 line 3045
[  136.495178][ T6241] netlink: 16399 bytes leftover after parsing attributes in process `syz.3.558'.
[  137.183198][ T6261] netlink: 24 bytes leftover after parsing attributes in process `syz.2.564'.
[  137.191625][ T4376] binder: undelivered TRANSACTION_ERROR: 29201
[  137.198613][ T6261] netlink: 4 bytes leftover after parsing attributes in process `syz.2.564'.
[  137.377214][ T6268] loop2: detected capacity change from 0 to 256
[  137.403989][ T6268] FAT-fs (loop2): Directory bread(block 64) failed
[  137.407285][ T6268] FAT-fs (loop2): Directory bread(block 65) failed
[  137.408453][ T6268] FAT-fs (loop2): Directory bread(block 66) failed
[  137.412946][ T6268] FAT-fs (loop2): Directory bread(block 67) failed
[  137.415337][ T6268] FAT-fs (loop2): Directory bread(block 68) failed
[  137.417613][ T6268] FAT-fs (loop2): Directory bread(block 69) failed
[  137.418779][ T6268] FAT-fs (loop2): Directory bread(block 70) failed
[  137.426340][ T6268] FAT-fs (loop2): Directory bread(block 71) failed
[  137.428750][ T6268] FAT-fs (loop2): Directory bread(block 72) failed
[  137.430170][ T6268] FAT-fs (loop2): Directory bread(block 73) failed
[  137.432409][ T6273] netlink: 16399 bytes leftover after parsing attributes in process `syz.3.569'.
[  137.530957][ T6276] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  137.532463][ T6276] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  137.870941][ T6279] loop4: detected capacity change from 0 to 128
[  137.885023][ T6279] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  138.404374][ T6282] netlink: 8 bytes leftover after parsing attributes in process `syz.4.571'.
[  138.406449][ T6282] netlink: 8 bytes leftover after parsing attributes in process `syz.4.571'.
[  138.670320][ T6295] loop3: detected capacity change from 0 to 512
[  138.674651][ T6295] EXT4-fs: Ignoring removed orlov option
[  138.675590][ T6295] EXT4-fs: Ignoring removed i_version option
[  138.677710][   T27] kauditd_printk_skb: 22 callbacks suppressed
[  138.677717][   T27] audit: type=1326 audit(138.630:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.3.574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  138.873155][   T27] audit: type=1326 audit(138.630:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.3.574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  138.878588][   T27] audit: type=1326 audit(138.640:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.3.574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  139.015373][   T27] audit: type=1326 audit(138.640:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.3.574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  139.020970][   T27] audit: type=1326 audit(138.640:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.3.574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  139.026938][   T27] audit: type=1326 audit(138.650:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.3.574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=279 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  139.043890][ T6295] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.574: inode #1: comm syz.3.574: iget: illegal inode #
[  139.046623][ T6295] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.574: error while reading EA inode 1 err=-117
[  139.049369][ T6295] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.574: inode #1: comm syz.3.574: iget: illegal inode #
[  139.052803][ T6295] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.574: error while reading EA inode 1 err=-117
[  139.056208][ T6295] EXT4-fs (loop3): 1 orphan inode deleted
[  139.057210][ T6295] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  139.306790][   T27] audit: type=1326 audit(138.650:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.3.574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffff9e175620 code=0x7ffc0000
[  139.532711][   T27] audit: type=1326 audit(138.650:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.3.574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=64 compat=0 ip=0xffff9e1588ec code=0x7ffc0000
[  139.536295][   T27] audit: type=1326 audit(138.650:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.3.574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=215 compat=0 ip=0xffff9e1756cc code=0x7ffc0000
[  139.548233][ T6301] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  139.549688][ T6301] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  139.551812][ T4326] EXT4-fs (loop4): unmounting filesystem.
[  139.652954][   T27] audit: type=1326 audit(138.650:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.3.574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffff9e1588ec code=0x7ffc0000
[  139.673733][ T6305] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  139.675247][ T6305] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  140.122794][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  140.185173][ T6311] netlink: 16375 bytes leftover after parsing attributes in process `syz.3.580'.
[  140.240102][ T6314] loop3: detected capacity change from 0 to 1024
[  140.241535][ T6314] EXT4-fs: Ignoring removed nomblk_io_submit option
[  140.253308][ T6314] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  140.292793][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  140.328343][ T6319] raw_sendmsg: syz.3.582 forgot to set AF_INET. Fix it!
[  140.371057][ T6321] loop3: detected capacity change from 0 to 256
[  140.413653][ T6321] FAT-fs (loop3): Directory bread(block 64) failed
[  140.414943][ T6321] FAT-fs (loop3): Directory bread(block 65) failed
[  140.416094][ T6321] FAT-fs (loop3): Directory bread(block 66) failed
[  140.419299][ T6321] FAT-fs (loop3): Directory bread(block 67) failed
[  140.421584][ T6321] FAT-fs (loop3): Directory bread(block 68) failed
[  140.424769][ T6321] FAT-fs (loop3): Directory bread(block 69) failed
[  140.426981][ T6321] FAT-fs (loop3): Directory bread(block 70) failed
[  140.430012][ T6321] FAT-fs (loop3): Directory bread(block 71) failed
[  140.431119][ T6321] FAT-fs (loop3): Directory bread(block 72) failed
[  140.432057][ T6321] FAT-fs (loop3): Directory bread(block 73) failed
[  140.543512][ T6324] loop0: detected capacity change from 0 to 128
[  140.860583][ T6324] syz.0.584: attempt to access beyond end of device
[  140.860583][ T6324] loop0: rw=2049, sector=128, nr_sectors = 1 limit=128
[  140.863038][ T6324] Buffer I/O error on dev loop0, logical block 128, lost async page write
[  140.864802][ T6328] syz.0.584: attempt to access beyond end of device
[  140.864802][ T6328] loop0: rw=2049, sector=128, nr_sectors = 1 limit=128
[  140.866878][ T6328] Buffer I/O error on dev loop0, logical block 128, lost async page write
[  140.868647][ T6324] syz.0.584: attempt to access beyond end of device
[  140.868647][ T6324] loop0: rw=2049, sector=128, nr_sectors = 1 limit=128
[  140.875246][ T6324] Buffer I/O error on dev loop0, logical block 128, lost async page write
[  141.434945][ T6342] tipc: Started in network mode
[  141.435841][ T6342] tipc: Node identity ac14140f, cluster identity 4711
[  141.443967][ T6344] netlink: 16375 bytes leftover after parsing attributes in process `syz.1.591'.
[  141.446391][ T6342] tipc: New replicast peer: 255.255.255.255
[  141.447751][ T6342] tipc: Enabled bearer <udp:s>, priority 10
[  141.781160][ T6352] loop4: detected capacity change from 0 to 512
[  141.929964][ T6352] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  141.931830][ T6352] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  141.937398][ T6352] EXT4-fs error (device loop4): ext4_orphan_get:1399: inode #15: comm syz.4.593: inode has both inline data and extents flags
[  141.940076][ T6352] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.593: couldn't read orphan inode 15 (err -117)
[  141.942109][ T6352] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  141.973155][ T6342] veth1_to_bridge: renamed from veth0_vlan
[  142.044021][ T6360] loop3: detected capacity change from 0 to 256
[  142.053262][ T6360] FAT-fs (loop3): Directory bread(block 64) failed
[  142.054429][ T6360] FAT-fs (loop3): Directory bread(block 65) failed
[  142.068987][ T6360] FAT-fs (loop3): Directory bread(block 66) failed
[  142.073427][ T6360] FAT-fs (loop3): Directory bread(block 67) failed
[  142.075639][ T6360] FAT-fs (loop3): Directory bread(block 68) failed
[  142.077740][ T6360] FAT-fs (loop3): Directory bread(block 69) failed
[  142.080416][ T6360] FAT-fs (loop3): Directory bread(block 70) failed
[  142.081625][ T6360] FAT-fs (loop3): Directory bread(block 71) failed
[  142.083908][ T6360] FAT-fs (loop3): Directory bread(block 72) failed
[  142.085102][ T6360] FAT-fs (loop3): Directory bread(block 73) failed
[  142.304836][ T6368] syz.3.596: attempt to access beyond end of device
[  142.304836][ T6368] loop3: rw=2051, sector=1224, nr_sectors = 32 limit=256
[  142.550200][ T4376] tipc: Node number set to 2886997007
[  142.686765][ T4326] EXT4-fs (loop4): unmounting filesystem.
[  143.039529][ T6378] loop2: detected capacity change from 0 to 256
[  143.046707][ T6377] netlink: 16375 bytes leftover after parsing attributes in process `syz.1.604'.
[  143.073042][ T6378] FAT-fs (loop2): Directory bread(block 64) failed
[  143.075322][ T6378] FAT-fs (loop2): Directory bread(block 65) failed
[  143.076437][ T6378] FAT-fs (loop2): Directory bread(block 66) failed
[  143.077496][ T6378] FAT-fs (loop2): Directory bread(block 67) failed
[  143.078608][ T6378] FAT-fs (loop2): Directory bread(block 68) failed
[  143.086454][ T6378] FAT-fs (loop2): Directory bread(block 69) failed
[  143.087543][ T6378] FAT-fs (loop2): Directory bread(block 70) failed
[  143.088555][ T6378] FAT-fs (loop2): Directory bread(block 71) failed
[  143.089723][ T6378] FAT-fs (loop2): Directory bread(block 72) failed
[  143.096089][ T6378] FAT-fs (loop2): Directory bread(block 73) failed
[  143.320602][ T6398] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  143.322098][ T6398] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  143.950121][ T6403] loop2: detected capacity change from 0 to 1024
[  143.952993][ T6403] EXT4-fs: Ignoring removed nobh option
[  143.954002][ T6403] ext4: Unknown parameter 'noacl'
[  144.292493][ T6400] loop1: detected capacity change from 0 to 256
[  144.396984][ T6406] loop4: detected capacity change from 0 to 256
[  144.407171][ T6406] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  145.112401][ T6422] netlink: 16375 bytes leftover after parsing attributes in process `syz.2.616'.
[  145.200306][ T6427] loop2: detected capacity change from 0 to 256
[  145.215220][ T6427] FAT-fs (loop2): Directory bread(block 64) failed
[  145.216390][ T6427] FAT-fs (loop2): Directory bread(block 65) failed
[  145.217542][ T6427] FAT-fs (loop2): Directory bread(block 66) failed
[  145.224923][ T6427] FAT-fs (loop2): Directory bread(block 67) failed
[  145.226117][ T6427] FAT-fs (loop2): Directory bread(block 68) failed
[  145.228339][ T6427] FAT-fs (loop2): Directory bread(block 69) failed
[  145.229517][ T6427] FAT-fs (loop2): Directory bread(block 70) failed
[  145.232075][ T6427] FAT-fs (loop2): Directory bread(block 71) failed
[  145.234352][ T6427] FAT-fs (loop2): Directory bread(block 72) failed
[  145.235501][ T6427] FAT-fs (loop2): Directory bread(block 73) failed
[  145.429856][ T6436] loop0: detected capacity change from 0 to 256
[  145.760878][ T6436] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  145.790123][ T6436] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  145.834827][ T6435] netlink: 'syz.2.621': attribute type 12 has an invalid length.
[  147.011989][ T6455] netlink: 16375 bytes leftover after parsing attributes in process `syz.3.627'.
[  147.051217][ T6458] netlink: 40 bytes leftover after parsing attributes in process `syz.4.629'.
[  147.115587][ T6463] loop0: detected capacity change from 0 to 256
[  147.117023][ T6463] FAT-fs (loop0): Unrecognized mount option "" or missing value
[  147.262227][ T6465] netlink: 8 bytes leftover after parsing attributes in process `syz.4.629'.
[  147.268041][ T6465] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  147.269755][ T6465] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  147.662075][ T6461] loop2: detected capacity change from 0 to 256
[  147.668298][ T6461] FAT-fs (loop2): Directory bread(block 64) failed
[  147.674750][ T6461] FAT-fs (loop2): Directory bread(block 65) failed
[  147.676171][ T6461] FAT-fs (loop2): Directory bread(block 66) failed
[  147.682877][ T6461] FAT-fs (loop2): Directory bread(block 67) failed
[  147.688393][ T6461] FAT-fs (loop2): Directory bread(block 68) failed
[  147.689580][ T6461] FAT-fs (loop2): Directory bread(block 69) failed
[  147.697165][ T6461] FAT-fs (loop2): Directory bread(block 70) failed
[  147.700260][ T6461] FAT-fs (loop2): Directory bread(block 71) failed
[  147.701511][ T6461] FAT-fs (loop2): Directory bread(block 72) failed
[  147.708999][ T6461] FAT-fs (loop2): Directory bread(block 73) failed
[  148.865985][ T6487] netlink: 16375 bytes leftover after parsing attributes in process `syz.0.638'.
[  148.992419][ T6500] loop0: detected capacity change from 0 to 256
[  149.119849][ T6502] tipc: Started in network mode
[  149.120828][ T6502] tipc: Node identity ac14140f, cluster identity 4711
[  149.123558][ T6502] tipc: New replicast peer: 255.255.255.255
[  149.124970][ T6502] tipc: Enabled bearer <udp:syz2>, priority 10
[  149.342526][ T6500] FAT-fs (loop0): Directory bread(block 64) failed
[  149.343671][ T6500] FAT-fs (loop0): Directory bread(block 65) failed
[  149.344697][ T6500] FAT-fs (loop0): Directory bread(block 66) failed
[  149.345772][ T6500] FAT-fs (loop0): Directory bread(block 67) failed
[  149.346849][ T6500] FAT-fs (loop0): Directory bread(block 68) failed
[  149.347774][ T6500] FAT-fs (loop0): Directory bread(block 69) failed
[  149.348872][ T6500] FAT-fs (loop0): Directory bread(block 70) failed
[  149.356175][ T6500] FAT-fs (loop0): Directory bread(block 71) failed
[  149.357286][ T6500] FAT-fs (loop0): Directory bread(block 72) failed
[  149.358347][ T6500] FAT-fs (loop0): Directory bread(block 73) failed
[  151.191997][   T24] tipc: Node number set to 2886997007
[  155.228500][ T6532] loop1: detected capacity change from 0 to 1024
[  155.230185][ T6532] EXT4-fs: Ignoring removed orlov option
[  155.353569][ T6534] netlink: 16375 bytes leftover after parsing attributes in process `syz.2.652'.
[  155.459277][ T6532] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  156.776608][ T6559] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  156.778004][ T6559] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  158.219018][ T4321] EXT4-fs (loop1): unmounting filesystem.
[  159.179963][ T4329] Bluetooth: hci1: command 0x0406 tx timeout
[  159.180924][ T4329] Bluetooth: hci3: command 0x0406 tx timeout
[  159.181989][ T4329] Bluetooth: hci2: command 0x0406 tx timeout
[  160.344014][ T6559] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  160.416526][ T6575] loop4: detected capacity change from 0 to 256
[  160.418054][ T6575] exfat: Deprecated parameter 'utf8'
[  160.521985][ T6576] netlink: 16375 bytes leftover after parsing attributes in process `syz.2.663'.
[  160.541214][ T6575] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[  160.989856][ T6578] netlink: 20 bytes leftover after parsing attributes in process `syz.1.662'.
[  162.770310][ T6590] netlink: 64 bytes leftover after parsing attributes in process `syz.4.670'.
[  164.819996][ T6605] netlink: 20 bytes leftover after parsing attributes in process `syz.1.672'.
[  165.040102][ T4329] Bluetooth: hci5: command 0x1003 tx timeout
[  165.042166][ T4331] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  165.121779][ T6606] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  165.123303][ T6606] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  165.177868][ T6613] netlink: 16375 bytes leftover after parsing attributes in process `syz.1.676'.
[  165.182358][ T6614] loop2: detected capacity change from 0 to 256
[  165.183775][ T6614] exfat: Deprecated parameter 'utf8'
[  165.218308][ T6614] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[  165.228290][ T6617] loop4: detected capacity change from 0 to 256
[  165.279656][ T6617] FAT-fs (loop4): Directory bread(block 64) failed
[  165.280849][ T6617] FAT-fs (loop4): Directory bread(block 65) failed
[  165.281848][ T6617] FAT-fs (loop4): Directory bread(block 66) failed
[  165.282857][ T6617] FAT-fs (loop4): Directory bread(block 67) failed
[  165.284663][ T6617] FAT-fs (loop4): Directory bread(block 68) failed
[  165.285752][ T6617] FAT-fs (loop4): Directory bread(block 69) failed
[  165.286865][ T6617] FAT-fs (loop4): Directory bread(block 70) failed
[  165.288001][ T6617] FAT-fs (loop4): Directory bread(block 71) failed
[  165.289037][ T6617] FAT-fs (loop4): Directory bread(block 72) failed
[  165.292463][ T6617] FAT-fs (loop4): Directory bread(block 73) failed
[  165.360306][ T4327] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  165.364761][ T6621] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  165.366142][ T6621] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  165.367565][ T4327] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  165.369131][ T4327] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  165.371055][ T4329] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  165.372476][ T4329] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  165.373702][ T4327] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  165.499590][ T6625] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  166.204189][ T6625] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  166.228465][ T6630] netlink: 20 bytes leftover after parsing attributes in process `syz.3.682'.
[  166.860783][ T6649] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  166.862507][ T6649] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  167.822328][ T4327] Bluetooth: hci5: command 0x0409 tx timeout
[  167.908481][ T6616] chnl_net:caif_netlink_parms(): no params data found
[  167.925123][ T6655] netlink: 9275 bytes leftover after parsing attributes in process `syz.2.688'.
[  167.996221][ T6616] bridge0: port 1(bridge_slave_0) entered blocking state
[  167.999634][ T6616] bridge0: port 1(bridge_slave_0) entered disabled state
[  168.007718][ T6616] device bridge_slave_0 entered promiscuous mode
[  168.015432][ T6616] bridge0: port 2(bridge_slave_1) entered blocking state
[  168.018417][ T6662] loop2: detected capacity change from 0 to 256
[  168.019613][ T6616] bridge0: port 2(bridge_slave_1) entered disabled state
[  168.023201][ T6616] device bridge_slave_1 entered promiscuous mode
[  168.029480][ T6662] exfat: Deprecated parameter 'utf8'
[  168.044263][ T6663] netlink: 20 bytes leftover after parsing attributes in process `syz.3.689'.
[  168.045803][ T6663] netlink: 28 bytes leftover after parsing attributes in process `syz.3.689'.
[  168.067037][ T6662] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[  168.086679][ T6616] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  168.095048][ T6616] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  168.131388][ T6616] team0: Port device team_slave_0 added
[  168.136155][ T6616] team0: Port device team_slave_1 added
[  168.156730][ T6616] batman_adv: batadv0: Adding interface: batadv_slave_0
[  168.159423][ T6616] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  168.194522][ T6616] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  168.196938][ T6616] batman_adv: batadv0: Adding interface: batadv_slave_1
[  168.198064][ T6616] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  168.202598][ T6616] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  169.219695][ T6670] loop4: detected capacity change from 0 to 512
[  169.224852][ T6670] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  169.302941][ T6616] device hsr_slave_0 entered promiscuous mode
[  169.432673][ T6616] device hsr_slave_1 entered promiscuous mode
[  169.455115][ T6670] EXT4-fs (loop4): 1 truncate cleaned up
[  169.456249][ T6670] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  170.233416][ T6679] loop1: detected capacity change from 0 to 1024
[  170.234884][ T6679] EXT4-fs: Ignoring removed nobh option
[  171.186883][ T4327] Bluetooth: hci5: command 0x041b tx timeout
[  171.190155][ T6616] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  171.191396][ T6616] Cannot create hsr debugfs directory
[  171.229736][ T4326] EXT4-fs (loop4): unmounting filesystem.
[  173.171695][ T6679] EXT4-fs: failed to create workqueue
[  173.172553][ T6679] EXT4-fs (loop1): mount failed
[  173.210023][ T4327] Bluetooth: hci5: command 0x040f tx timeout
[  173.831599][ T6616] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  173.851428][ T6699] netlink: 9275 bytes leftover after parsing attributes in process `syz.3.699'.
[  173.908788][ T6704] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  173.917715][ T6704] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  173.990823][ T6705] loop3: detected capacity change from 0 to 1024
[  175.022509][ T6705] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  175.053080][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  176.194005][ T4327] Bluetooth: hci5: command 0x0419 tx timeout
[  176.213439][ T6616] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  177.188699][ T6616] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  177.232959][ T6616] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  177.336995][ T6720] loop1: detected capacity change from 0 to 256
[  177.467977][ T6729] loop3: detected capacity change from 0 to 1024
[  177.473553][   T27] kauditd_printk_skb: 22 callbacks suppressed
[  177.473568][   T27] audit: type=1326 audit(177.460:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6725 comm="syz.2.709" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8fd75928 code=0x7ffc0000
[  177.488232][   T27] audit: type=1326 audit(177.460:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6725 comm="syz.2.709" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=6 compat=0 ip=0xffff8fd75928 code=0x7ffc0000
[  177.493406][ T6729] EXT4-fs: Ignoring removed nomblk_io_submit option
[  177.499144][   T27] audit: type=1326 audit(177.460:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6725 comm="syz.2.709" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8fd75928 code=0x7ffc0000
[  177.509650][   T27] audit: type=1326 audit(177.460:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6725 comm="syz.2.709" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=5 compat=0 ip=0xffff8fd75928 code=0x7ffc0000
[  177.523329][   T27] audit: type=1326 audit(177.460:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6725 comm="syz.2.709" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8fd75928 code=0x7ffc0000
[  177.536799][   T27] audit: type=1326 audit(177.460:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6725 comm="syz.2.709" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8fd75928 code=0x7ffc0000
[  177.546980][   T27] audit: type=1326 audit(177.460:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6725 comm="syz.2.709" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8fd75928 code=0x7ffc0000
[  177.555413][   T27] audit: type=1326 audit(177.460:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6725 comm="syz.2.709" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=199 compat=0 ip=0xffff8fd75928 code=0x7ffc0000
[  177.566590][   T27] audit: type=1326 audit(177.460:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6725 comm="syz.2.709" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8fd75928 code=0x7ffc0000
[  177.574240][ T6729] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  177.655773][   T27] audit: type=1326 audit(177.460:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6725 comm="syz.2.709" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=208 compat=0 ip=0xffff8fd75928 code=0x7ffc0000
[  179.757838][ T6726] netlink: 16 bytes leftover after parsing attributes in process `syz.2.709'.
[  179.771907][ T6735] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  180.621687][ T6735] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  180.659959][ T6745] netlink: 12 bytes leftover after parsing attributes in process `syz.4.711'.
[  180.709110][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  180.725260][ T6616] 8021q: adding VLAN 0 to HW filter on device bond0
[  180.778828][ T4624] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  180.779093][ T4624] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  180.803602][ T6616] 8021q: adding VLAN 0 to HW filter on device team0
[  180.806206][ T6755] netlink: 9275 bytes leftover after parsing attributes in process `syz.1.714'.
[  180.818500][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  180.820162][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  180.821625][ T5516] bridge0: port 1(bridge_slave_0) entered blocking state
[  180.822771][ T5516] bridge0: port 1(bridge_slave_0) entered forwarding state
[  180.824668][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  180.838882][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  180.840524][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  180.841907][ T4474] bridge0: port 2(bridge_slave_1) entered blocking state
[  180.842992][ T4474] bridge0: port 2(bridge_slave_1) entered forwarding state
[  180.848182][ T4624] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  180.857093][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  180.864653][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  180.866530][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  180.879415][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  180.888199][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  180.970611][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  180.975370][ T6616] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  180.979375][ T6616] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  180.984786][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  180.986194][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  180.987917][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  180.991214][ T6759] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  180.992784][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  180.995177][ T6759] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  181.003438][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  184.064947][   T27] kauditd_printk_skb: 13 callbacks suppressed
[  184.064960][   T27] audit: type=1107 audit(183.890:225): pid=6765 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  184.148863][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  184.150480][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  184.230726][ T6616] 8021q: adding VLAN 0 to HW filter on device batadv0
[  184.308292][ T6778] loop1: detected capacity change from 0 to 256
[  185.227261][ T6778] FAT-fs (loop1): bogus number of FAT sectors
[  185.228420][ T6778] FAT-fs (loop1): Can't find a valid FAT filesystem
[  185.503389][ T6794] netlink: 9275 bytes leftover after parsing attributes in process `syz.3.727'.
[  185.694687][ T6801] loop3: detected capacity change from 0 to 4096
[  185.708798][ T6801] EXT4-fs (loop3): Test dummy encryption mode enabled
[  185.728963][ T6801] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  185.919590][ T6801] Invalid ELF header len 10
[  186.058426][ T4624] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  186.064211][ T4624] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  186.076728][ T4323] EXT4-fs (loop3): unmounting filesystem.
[  186.094067][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  186.095781][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  186.097534][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  186.099134][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  186.107683][ T6616] device veth0_vlan entered promiscuous mode
[  186.116851][ T6616] device veth1_vlan entered promiscuous mode
[  186.137160][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  186.138875][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  186.144132][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  186.145805][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  186.150854][ T6616] device veth0_macvtap entered promiscuous mode
[  186.157799][ T6616] device veth1_macvtap entered promiscuous mode
[  186.176356][ T6616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.192006][ T6094] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  186.207446][ T6616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.208953][ T6616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.210716][ T6616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.212307][ T6616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.213906][ T6616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.215372][ T6616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.216910][ T6616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.225450][ T6616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.227098][ T6616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.229515][ T6616] batman_adv: batadv0: Interface activated: batadv_slave_0
[  186.242979][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  186.257252][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  186.266698][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  186.282446][   T61] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  186.347232][ T6812] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  186.350898][ T6812] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  186.352430][ T6616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.355316][ T6616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.358019][ T6616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.362787][ T6616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.364634][ T6616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.366501][ T6616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.368143][ T6616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.370794][ T6616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.372393][ T6616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.374157][ T6616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.376352][ T6616] batman_adv: batadv0: Interface activated: batadv_slave_1
[  186.391131][ T6616] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  186.392562][ T6616] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  186.393936][ T6616] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  186.395229][ T6616] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  186.465167][ T6815] netlink: 'syz.4.731': attribute type 13 has an invalid length.
[  186.469124][ T6815] gretap0: refused to change device tx_queue_len
[  186.470341][ T6815] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  187.523175][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  187.524724][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  187.592910][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  187.594473][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  187.718371][ T2061] ieee802154 phy0 wpan0: encryption failed: -22
[  187.719919][ T2061] ieee802154 phy1 wpan1: encryption failed: -22
[  187.770555][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  187.846953][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  187.855020][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  187.869562][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  191.228937][ T6836] netlink: 9275 bytes leftover after parsing attributes in process `syz.3.738'.
[  192.233464][ T6845] xt_CT: You must specify a L4 protocol and not use inversions on it
[  194.317549][ T6843] overlayfs: failed to resolve './bus': -2
[  198.775533][ T6884] netlink: 9275 bytes leftover after parsing attributes in process `syz.2.751'.
[  198.923607][ T6888] binder: tried to use weak ref as strong ref
[  198.924694][ T6888] binder: 6887:6888 Acquire 1 refcount change on invalid ref 0 ret -22
[  198.944948][ T6888] binder: 6887:6888 got transaction to invalid handle, 1
[  198.958833][ T6888] binder: 6888:6887 cannot find target node
[  198.959966][ T6888] binder: 6887:6888 transaction call to 0:0 failed 58/29201/-22, size 72-24 line 3045
[  198.976342][ T1964] binder: undelivered TRANSACTION_ERROR: 29201
[  199.017269][ T6865] loop3: detected capacity change from 0 to 40427
[  199.073204][ T6865] F2FS-fs (loop3): invalid crc value
[  199.094291][ T6865] F2FS-fs (loop3): Found nat_bits in checkpoint
[  199.164043][ T6865] F2FS-fs (loop3): Start checkpoint disabled!
[  199.174105][ T6872] loop5: detected capacity change from 0 to 40427
[  199.195672][ T6872] F2FS-fs (loop5): build fault injection attr: rate: 25, type: 0x3ffff
[  199.212001][ T6865] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  199.216452][ T6872] F2FS-fs (loop5): invalid crc value
[  199.230099][ T6872] F2FS-fs (loop5) : inject kmalloc in f2fs_kmalloc of f2fs_build_segment_manager+0x1434/0x4234
[  199.238676][ T6872] F2FS-fs (loop5): Failed to initialize F2FS segment manager (-12)
[  200.209879][   T27] audit: type=1326 audit(200.170:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6899 comm="syz.2.757" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8fd75928 code=0x7ffc0000
[  200.217123][   T27] audit: type=1326 audit(200.180:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6899 comm="syz.2.757" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=103 compat=0 ip=0xffff8fd75928 code=0x7ffc0000
[  200.228498][   T27] audit: type=1326 audit(200.180:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6899 comm="syz.2.757" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8fd75928 code=0x7ffc0000
[  200.434619][   T27] audit: type=1326 audit(200.180:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6899 comm="syz.2.757" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8fd75928 code=0x7ffc0000
[  204.200362][ T6919] netlink: 9275 bytes leftover after parsing attributes in process `syz.2.763'.
[  204.225377][ T6923] binder: 6922:6923 ioctl 4018620d 0 returned -22
[  205.203053][ T6923] binder: tried to use weak ref as strong ref
[  205.204040][ T6923] binder: 6922:6923 Acquire 1 refcount change on invalid ref 0 ret -22
[  205.210798][ T6923] binder: 6922:6923 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[  205.212957][ T6923] binder: 6923 RLIMIT_NICE not set
[  206.184235][ T6930] binder: 6922:6930 got transaction to invalid handle, 1
[  206.185355][ T6930] binder: 6930:6922 cannot find target node
[  206.186331][ T6930] binder: 6922:6930 transaction call to 0:0 failed 61/29201/-22, size 72-24 line 3045
[  206.942038][ T6936] loop5: detected capacity change from 0 to 512
[  207.192560][   T14] binder: undelivered TRANSACTION_ERROR: 29201
[  207.239954][ T6936] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  207.242084][ T6936] EXT4-fs: failed to create workqueue
[  207.242940][ T6936] EXT4-fs (loop5): mount failed
[  207.942781][ T6942] netlink: 8 bytes leftover after parsing attributes in process `syz.1.767'.
[  208.086529][ T6929] loop2: detected capacity change from 0 to 40427
[  208.097388][ T6929] F2FS-fs (loop2): invalid crc value
[  208.217705][ T6929] F2FS-fs (loop2): Found nat_bits in checkpoint
[  211.417690][ T6968] netlink: 9275 bytes leftover after parsing attributes in process `syz.3.775'.
[  211.454997][ T6969] loop4: detected capacity change from 0 to 128
[  211.542667][ T6975] binder: 6971:6975 ioctl 4018620d 0 returned -22
[  211.557613][ T6975] binder: tried to use weak ref as strong ref
[  211.558695][ T6975] binder: 6971:6975 Acquire 1 refcount change on invalid ref 0 ret -22
[  211.577700][ T6975] binder: 6971:6975 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[  211.594907][ T6975] binder: 6975 RLIMIT_NICE not set
[  211.628623][ T6978] binder: 6971:6978 got transaction to invalid handle, 1
[  211.631975][ T6978] binder: 6978:6971 cannot find target node
[  211.632893][ T6978] binder: 6971:6978 transaction call to 0:0 failed 64/29201/-22, size 72-24 line 3045
[  211.644145][ T6977] netlink: 8 bytes leftover after parsing attributes in process `syz.3.778'.
[  212.581506][ T6985] loop5: detected capacity change from 0 to 256
[  216.855825][ T6985] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x205ab87c, utbl_chksum : 0xe619d30d)
[  216.984701][   T24] binder: undelivered TRANSACTION_ERROR: 29201
[  218.202602][ T6102] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  219.083168][ T6994] netlink: 72 bytes leftover after parsing attributes in process `syz.1.783'.
[  219.203329][ T6988] loop4: detected capacity change from 0 to 40427
[  220.210247][ T6988] F2FS-fs (loop4): Unrecognized mount option "whint_mode=fs-based" or missing value
[  220.244083][ T7004] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  220.246501][ T7004] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  221.216030][ T7005] netlink: 9275 bytes leftover after parsing attributes in process `syz.4.788'.
[  222.225662][ T7013] netlink: 8 bytes leftover after parsing attributes in process `syz.4.790'.
[  222.381941][ T7007] hub 8-0:1.0: USB hub found
[  222.383439][ T7007] hub 8-0:1.0: 8 ports detected
[  222.391471][ T7007] netlink: 12 bytes leftover after parsing attributes in process `syz.3.787'.
[  223.713988][ T7025] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  223.716135][ T7025] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  223.717368][ T7025] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  225.228662][ T7028] loop1: detected capacity change from 0 to 256
[  227.639900][ T6094] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  229.228141][ T4327] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  229.805812][ T4327] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  229.848251][ T4327] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  229.849777][ T4327] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  229.851539][ T4327] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  229.852843][ T4327] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  230.478130][ T7055] netlink: 8 bytes leftover after parsing attributes in process `syz.5.801'.
[  230.741201][ T7038] chnl_net:caif_netlink_parms(): no params data found
[  230.827521][ T7037] loop3: detected capacity change from 0 to 40427
[  230.883152][ T7037] F2FS-fs (loop3): invalid crc value
[  230.887382][ T7038] bridge0: port 1(bridge_slave_0) entered blocking state
[  230.913190][ T7038] bridge0: port 1(bridge_slave_0) entered disabled state
[  230.919351][ T7037] F2FS-fs (loop3): Found nat_bits in checkpoint
[  230.942640][ T7038] device bridge_slave_0 entered promiscuous mode
[  230.967789][ T7038] bridge0: port 2(bridge_slave_1) entered blocking state
[  230.978811][ T7038] bridge0: port 2(bridge_slave_1) entered disabled state
[  230.993363][ T7038] device bridge_slave_1 entered promiscuous mode
[  230.995637][ T7037] F2FS-fs (loop3): Start checkpoint disabled!
[  231.014380][ T7037] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  231.126445][ T7038] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  232.191234][ T4327] Bluetooth: hci6: command 0x0409 tx timeout
[  232.211654][ T7038] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  232.227183][ T7038] team0: Port device team_slave_0 added
[  232.229117][ T7038] team0: Port device team_slave_1 added
[  232.383891][ T4596] kworker/u4:11: attempt to access beyond end of device
[  232.383891][ T4596] loop3: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  232.487686][ T7038] batman_adv: batadv0: Adding interface: batadv_slave_0
[  232.506952][ T7038] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  232.575491][ T7038] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  232.603728][ T7038] batman_adv: batadv0: Adding interface: batadv_slave_1
[  232.604840][ T7038] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  232.639507][ T7038] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  232.705587][ T7072] loop4: detected capacity change from 0 to 256
[  232.769912][ T7072] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  232.807212][ T7038] device hsr_slave_0 entered promiscuous mode
[  232.853824][ T7038] device hsr_slave_1 entered promiscuous mode
[  232.971787][ T7038] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  232.973072][ T7038] Cannot create hsr debugfs directory
[  232.975553][ T7074] netlink: 4 bytes leftover after parsing attributes in process `syz.3.803'.
[  234.908029][ T4327] Bluetooth: hci6: command 0x041b tx timeout
[  234.995920][ T7084] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  235.059212][ T7084] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  235.104915][ T7038] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  235.191763][ T7038] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  235.266459][ T7038] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  236.209902][ T7038] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  237.185150][ T4331] Bluetooth: hci6: command 0x040f tx timeout
[  238.213394][ T7099] netlink: 8 bytes leftover after parsing attributes in process `syz.5.811'.
[  239.229874][   T27] audit: type=1326 audit(239.100:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7100 comm="syz.1.812" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb375928 code=0x0
[  239.232696][ T4327] Bluetooth: hci6: command 0x0419 tx timeout
[  239.307472][ T7099] netlink: 8 bytes leftover after parsing attributes in process `syz.5.811'.
[  240.227415][ T7038] 8021q: adding VLAN 0 to HW filter on device bond0
[  241.199750][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  241.205867][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  241.209352][ T7038] 8021q: adding VLAN 0 to HW filter on device team0
[  241.212186][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  241.215620][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  241.217175][ T4474] bridge0: port 1(bridge_slave_0) entered blocking state
[  241.218277][ T4474] bridge0: port 1(bridge_slave_0) entered forwarding state
[  241.221912][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  241.226967][ T4596] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  241.228505][ T4596] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  241.260226][ T4596] bridge0: port 2(bridge_slave_1) entered blocking state
[  241.261385][ T4596] bridge0: port 2(bridge_slave_1) entered forwarding state
[  241.262785][ T4596] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  241.266330][ T4596] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  241.376360][ T7038] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  241.378025][ T7038] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  241.493709][ T7127] loop5: detected capacity change from 0 to 512
[  241.710526][ T7127] EXT4-fs: Ignoring removed orlov option
[  241.711488][ T7127] EXT4-fs: Ignoring removed i_version option
[  242.231228][ T7135] loop1: detected capacity change from 0 to 256
[  242.232717][ T7135] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  245.211373][ T7127] EXT4-fs: error -4 creating inode table initialization thread
[  245.212975][ T7127] EXT4-fs (loop5): mount failed
[  245.322712][ T7135] FAT-fs (loop1): Directory bread(block 64) failed
[  245.323749][ T7135] FAT-fs (loop1): Directory bread(block 65) failed
[  245.324844][ T7135] FAT-fs (loop1): Directory bread(block 66) failed
[  245.325912][ T7135] FAT-fs (loop1): Directory bread(block 67) failed
[  245.326980][ T7135] FAT-fs (loop1): Directory bread(block 68) failed
[  245.328479][ T7135] FAT-fs (loop1): Directory bread(block 69) failed
[  245.329505][ T7135] FAT-fs (loop1): Directory bread(block 70) failed
[  245.330568][ T7135] FAT-fs (loop1): Directory bread(block 71) failed
[  245.331609][ T7135] FAT-fs (loop1): Directory bread(block 72) failed
[  245.332595][ T7135] FAT-fs (loop1): Directory bread(block 73) failed
[  245.396356][ T7038] 8021q: adding VLAN 0 to HW filter on device batadv0
[  245.801970][ T7144] loop1: detected capacity change from 0 to 512
[  247.319854][ T7144] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  249.198077][ T2061] ieee802154 phy0 wpan0: encryption failed: -22
[  249.199154][ T2061] ieee802154 phy1 wpan1: encryption failed: -22
[  249.320010][ T7144] EXT4-fs: error -4 creating inode table initialization thread
[  249.321365][ T7144] EXT4-fs (loop1): mount failed
[  249.485630][ T7038] device veth0_vlan entered promiscuous mode
[  249.508369][ T7038] device veth1_vlan entered promiscuous mode
[  249.585527][ T7038] device veth0_macvtap entered promiscuous mode
[  249.593216][ T7038] device veth1_macvtap entered promiscuous mode
[  249.627318][ T7038] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  249.629019][ T7038] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  249.644289][ T7038] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  249.645951][ T7038] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  249.647481][ T7038] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  249.649159][ T7038] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  249.696443][ T7038] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  249.698088][ T7038] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  249.699759][ T7038] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  249.714691][ T7038] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  249.716234][ T7038] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  249.732983][ T7038] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  249.738603][ T7038] batman_adv: batadv0: Interface activated: batadv_slave_0
[  249.741339][ T7038] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  249.743013][ T7038] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  249.744523][ T7038] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  249.746138][ T7038] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  249.747669][ T7038] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  249.779750][ T7038] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  249.781857][ T7038] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  249.783535][ T7038] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  249.785071][ T7038] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  249.786624][ T7038] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  249.788091][ T7038] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  249.789574][ T7038] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  249.815448][ T7038] batman_adv: batadv0: Interface activated: batadv_slave_1
[  249.825627][ T7038] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  249.826971][ T7038] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  249.828356][ T7038] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  249.829731][ T7038] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  250.005039][ T4474] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  250.006351][ T4474] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  250.030008][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  250.031306][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  252.670104][ T7165] hub 8-0:1.0: USB hub found
[  252.671018][ T7165] hub 8-0:1.0: 8 ports detected
[  252.679837][ T7165] netlink: 12 bytes leftover after parsing attributes in process `syz.3.822'.
[  252.917278][ T7169] netlink: 8 bytes leftover after parsing attributes in process `syz.3.824'.
[  252.926018][ T7169] netlink: 8 bytes leftover after parsing attributes in process `syz.3.824'.
[  253.164243][ T7177] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  253.170858][ T7177] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[  253.189329][ T7177] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[  253.203708][ T7177] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[  253.215950][ T7177] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready
[  253.218108][ T7177] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[  253.249046][ T7177] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[  254.197511][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  254.200462][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  254.202029][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  254.203612][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  254.205188][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  254.206667][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  254.208317][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  254.209752][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  254.213297][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  254.214541][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  254.215733][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  254.217245][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  254.218794][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  254.220812][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  254.222295][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  254.223671][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  254.225215][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  254.226786][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  254.228273][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  254.229749][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  254.231761][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  254.366901][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  254.374465][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  254.382178][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  254.383648][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  254.405504][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  254.417199][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  254.426095][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  254.428427][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  254.436527][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  254.554449][ T7182] bridge0: port 3(gretap0) entered blocking state
[  254.562713][ T7182] bridge0: port 3(gretap0) entered disabled state
[  254.596608][ T7182] device gretap0 entered promiscuous mode
[  254.597997][ T7182] bridge0: port 3(gretap0) entered blocking state
[  254.599511][ T7182] bridge0: port 3(gretap0) entered forwarding state
[  257.054127][ T4327] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  257.062219][ T4327] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  257.063806][ T4327] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  257.065606][ T4327] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  257.067010][ T4327] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  257.068239][ T4327] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  257.357995][ T7197] chnl_net:caif_netlink_parms(): no params data found
[  257.411828][ T7197] bridge0: port 1(bridge_slave_0) entered blocking state
[  257.415717][ T7197] bridge0: port 1(bridge_slave_0) entered disabled state
[  257.422958][ T7197] device bridge_slave_0 entered promiscuous mode
[  257.429418][ T7197] bridge0: port 2(bridge_slave_1) entered blocking state
[  257.434651][ T7197] bridge0: port 2(bridge_slave_1) entered disabled state
[  257.439295][ T7197] device bridge_slave_1 entered promiscuous mode
[  257.473955][ T7197] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  257.488731][ T7197] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  257.525208][ T7197] team0: Port device team_slave_0 added
[  257.535529][ T7197] team0: Port device team_slave_1 added
[  257.565244][ T7197] batman_adv: batadv0: Adding interface: batadv_slave_0
[  257.569066][ T7197] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  257.585613][ T7197] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  257.597918][ T7197] batman_adv: batadv0: Adding interface: batadv_slave_1
[  257.604061][ T7197] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  257.617939][ T7197] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  259.129883][ T4331] Bluetooth: hci7: command 0x0409 tx timeout
[  259.252621][ T7197] device hsr_slave_0 entered promiscuous mode
[  259.352179][ T7197] device hsr_slave_1 entered promiscuous mode
[  259.404612][ T7216] loop1: detected capacity change from 0 to 512
[  259.416973][ T7216] EXT2-fs (loop1): warning: feature flags set on rev 0 fs, running e2fsck is recommended
[  259.426287][ T7216] EXT2-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended
[  259.428165][ T7216] EXT2-fs (loop1): 0.5b, 95/08/09, bs=2048, gc=1, bpg=16384, ipg=32, mo=8021c]
[  259.446894][ T7216] syz.1.838: attempt to access beyond end of device
[  259.446894][ T7216] loop1: rw=0, sector=511016, nr_sectors = 4 limit=512
[  260.977061][   T27] audit: type=1326 audit(260.960:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.3.839" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  260.985611][   T27] audit: type=1326 audit(260.970:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.3.839" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  260.989605][   T27] audit: type=1326 audit(260.970:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.3.839" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  260.995870][   T27] audit: type=1326 audit(260.970:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.3.839" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=208 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  260.999470][   T27] audit: type=1326 audit(260.980:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.3.839" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  261.007104][   T27] audit: type=1326 audit(260.980:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.3.839" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  261.010850][   T27] audit: type=1326 audit(260.980:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.3.839" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  261.014470][   T27] audit: type=1326 audit(260.980:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.3.839" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=201 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  261.018099][   T27] audit: type=1326 audit(260.980:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.3.839" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  261.025590][   T27] audit: type=1326 audit(260.980:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.3.839" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  261.209839][ T4327] Bluetooth: hci7: command 0x041b tx timeout
[  263.289860][ T4331] Bluetooth: hci7: command 0x040f tx timeout
[  264.200442][ T7197] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  264.201689][ T7197] Cannot create hsr debugfs directory
[  265.242345][ T7226] bridge0: port 1(bridge_slave_0) entered forwarding state
[  265.244054][ T7226] device bridge_slave_0 left promiscuous mode
[  265.245008][ T7226] bridge0: port 1(bridge_slave_0) entered disabled state
[  265.369928][ T4327] Bluetooth: hci7: command 0x0419 tx timeout
[  265.405416][ T7236] loop1: detected capacity change from 0 to 128
[  265.535321][ T7243] syz.1.842: attempt to access beyond end of device
[  265.535321][ T7243] loop1: rw=2049, sector=145, nr_sectors = 496 limit=128
[  265.723876][ T7236] syz.1.842: attempt to access beyond end of device
[  265.723876][ T7236] loop1: rw=524288, sector=145, nr_sectors = 224 limit=128
[  265.726324][ T7236] syz.1.842: attempt to access beyond end of device
[  265.726324][ T7236] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  265.728349][ T7236] syz.1.842: attempt to access beyond end of device
[  265.728349][ T7236] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  265.734076][ T7236] syz.1.842: attempt to access beyond end of device
[  265.734076][ T7236] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  265.736179][ T7236] syz.1.842: attempt to access beyond end of device
[  265.736179][ T7236] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  266.259877][ T7253] netlink: 'syz.4.846': attribute type 4 has an invalid length.
[  266.261110][ T7253] netlink: 17 bytes leftover after parsing attributes in process `syz.4.846'.
[  267.252142][ T7236] syz.1.842: attempt to access beyond end of device
[  267.252142][ T7236] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  267.254253][ T7236] syz.1.842: attempt to access beyond end of device
[  267.254253][ T7236] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  267.256377][ T7236] syz.1.842: attempt to access beyond end of device
[  267.256377][ T7236] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  267.258493][ T7236] syz.1.842: attempt to access beyond end of device
[  267.258493][ T7236] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  273.869632][ T7236] bio_check_eod: 1306 callbacks suppressed
[  273.869646][ T7236] syz.1.842: attempt to access beyond end of device
[  273.869646][ T7236] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  279.019883][ T7294] netlink: 4 bytes leftover after parsing attributes in process `syz.3.857'.
[  280.564250][   T27] kauditd_printk_skb: 32 callbacks suppressed
[  280.564259][   T27] audit: type=1326 audit(280.550:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7296 comm="syz.3.860" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  280.575666][   T27] audit: type=1326 audit(280.550:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7296 comm="syz.3.860" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  280.579169][   T27] audit: type=1326 audit(280.560:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7296 comm="syz.3.860" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=0 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  280.589907][   T27] audit: type=1326 audit(280.570:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7296 comm="syz.3.860" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  280.593402][   T27] audit: type=1326 audit(280.570:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7296 comm="syz.3.860" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  280.608353][   T27] audit: type=1326 audit(280.580:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7296 comm="syz.3.860" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=2 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  280.615095][   T27] audit: type=1326 audit(280.580:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7296 comm="syz.3.860" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  280.618544][   T27] audit: type=1326 audit(280.580:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7296 comm="syz.3.860" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e175928 code=0x7ffc0000
[  280.672061][ T7197] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  284.630544][ T7331] loop1: detected capacity change from 0 to 16
[  286.309884][ T7331] erofs: (device loop1): mounted with root inode @ nid 36.
[  289.231573][ T7347] overlayfs: failed to resolve './file0': -2
[  290.072846][ T7351] loop1: detected capacity change from 0 to 40427
[  290.085308][ T7351] F2FS-fs (loop1): build fault injection attr: rate: 771, type: 0x3ffff
[  290.091413][ T7351] F2FS-fs (loop1): invalid crc value
[  290.123667][ T7351] F2FS-fs (loop1): Found nat_bits in checkpoint
[  290.133410][ T7351] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  290.196159][ T7197] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  290.204018][ T4321] syz-executor: attempt to access beyond end of device
[  290.204018][ T4321] loop1: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  290.223576][ T7356] xt_hashlimit: size too large, truncated to 1048576
[  290.231602][ T7197] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  290.395051][ T7358] ipt_CLUSTERIP: Please specify destination IP
[  291.197356][ T7197] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  292.382690][ T7371] loop6: detected capacity change from 0 to 256
[  292.386052][ T7371] FAT-fs (loop6): count of clusters too big (67107838)
[  292.387137][ T7371] FAT-fs (loop6): Can't find a valid FAT filesystem
[  293.209943][ T7263] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  294.171983][ T7378] loop1: detected capacity change from 0 to 512
[  294.349979][ T7378] EXT4-fs (loop1): Test dummy encryption mode enabled
[  294.351081][ T7378] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  295.190484][ T4331] Bluetooth: hci7: command 0x0407 tx timeout
[  296.267580][ T7378] EXT4-fs: error -4 creating inode table initialization thread
[  296.268996][ T7378] EXT4-fs (loop1): mount failed
[  299.391715][ T7388] loop6: detected capacity change from 0 to 4096
[  301.315846][ T7388] EXT4-fs: failed to create workqueue
[  301.316775][ T7388] EXT4-fs (loop6): mount failed
[  301.496242][ T7391] ipt_CLUSTERIP: Please specify destination IP
[  301.639278][ T4327] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  301.645208][ T4327] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  301.648149][ T4327] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  301.654689][ T4327] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  301.656103][ T4327] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  301.657469][ T4327] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  303.623497][    T9] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  303.628435][ T7386] netlink: 12 bytes leftover after parsing attributes in process `syz.6.884'.
[  303.689979][ T4331] Bluetooth: hci4: command 0x0409 tx timeout
[  303.801257][    T9] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  304.862440][    T9] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.041567][    T9] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.206720][ T7402] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  305.249933][ T7402] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  305.422322][    T9] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.562140][    T9] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.615948][ T4331] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  305.618080][ T4331] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  305.620446][ T4331] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  305.623977][ T4331] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  305.625619][ T4331] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  305.626810][ T4331] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  305.701398][    T9] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.770632][ T4327] Bluetooth: hci4: command 0x041b tx timeout
[  305.815350][    T9] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  306.231470][ T7197] 8021q: adding VLAN 0 to HW filter on device bond0
[  306.380255][ T7197] 8021q: adding VLAN 0 to HW filter on device team0
[  308.185025][ T4331] Bluetooth: hci5: command 0x0409 tx timeout
[  308.186288][ T4331] Bluetooth: hci4: command 0x040f tx timeout
[  309.201738][    T9] tipc: Disabling bearer <udp:syz2>
[  309.202893][    T9] tipc: Left network mode
[  309.207306][ T7197] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  309.209002][ T7197] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  309.216918][ T4671] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  309.218481][ T4671] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  309.220724][ T4671] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  309.222339][ T4671] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  309.229977][ T4671] bridge0: port 1(bridge_slave_0) entered blocking state
[  309.231084][ T4671] bridge0: port 1(bridge_slave_0) entered forwarding state
[  309.232517][ T4671] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  310.207726][ T4671] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  310.212687][ T4671] bridge0: port 2(bridge_slave_1) entered blocking state
[  310.213896][ T4671] bridge0: port 2(bridge_slave_1) entered forwarding state
[  310.215318][ T4671] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  310.217311][ T4671] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  310.219182][ T4671] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  310.221256][ T4671] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  310.222794][ T4671] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  310.224372][ T4671] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  310.225919][ T4671] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  310.227404][ T4671] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  310.228976][ T4671] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  310.230998][ T4671] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  310.232458][ T4671] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  310.276158][ T2061] ieee802154 phy0 wpan0: encryption failed: -22
[  310.277191][ T2061] ieee802154 phy1 wpan1: encryption failed: -22
[  310.278629][ T4327] Bluetooth: hci4: command 0x0419 tx timeout
[  310.279564][ T4327] Bluetooth: hci5: command 0x041b tx timeout
[  310.334379][ T4671] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  310.335886][ T4671] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  310.593631][   T27] audit: type=1326 audit(310.580:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7437 comm="syz.6.894" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb1575928 code=0x7ffc0000
[  310.596902][   T27] audit: type=1326 audit(310.580:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7437 comm="syz.6.894" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb1575928 code=0x7ffc0000
[  310.610314][   T27] audit: type=1326 audit(310.600:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7437 comm="syz.6.894" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=99 compat=0 ip=0xffffb1553e90 code=0x7ffc0000
[  310.613790][   T27] audit: type=1326 audit(310.600:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7437 comm="syz.6.894" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=135 compat=0 ip=0xffffb1553ef0 code=0x7ffc0000
[  310.623875][   T27] audit: type=1326 audit(310.600:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7437 comm="syz.6.894" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=29 compat=0 ip=0xffffb1575550 code=0x7ffc0000
[  310.627180][   T27] audit: type=1326 audit(310.600:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7437 comm="syz.6.894" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb1575928 code=0x7ffc0000
[  311.203957][   T27] audit: type=1326 audit(310.600:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7437 comm="syz.6.894" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb1575928 code=0x7ffc0000
[  311.552993][ T7441] hub 2-0:1.0: USB hub found
[  311.553943][ T7441] hub 2-0:1.0: 8 ports detected
[  311.660658][   T27] audit: type=1326 audit(311.620:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7437 comm="syz.6.894" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb1575928 code=0x7ffc0000
[  311.713540][   T27] audit: type=1326 audit(311.630:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7437 comm="syz.6.894" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=436 compat=0 ip=0xffffb1575928 code=0x7ffc0000
[  311.717185][   T27] audit: type=1326 audit(311.630:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7437 comm="syz.6.894" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=94 compat=0 ip=0xffffb1575928 code=0x7ffc0000
[  312.330412][ T4331] Bluetooth: hci5: command 0x040f tx timeout
[  312.397021][ T7451] tipc: Started in network mode
[  312.397845][ T7451] tipc: Node identity ac1414aa, cluster identity 4711
[  312.399570][ T7451] tipc: Enabled bearer <udp:syz2>, priority 10
[  314.121448][ T7473] loop6: detected capacity change from 0 to 256
[  314.189552][   T24] tipc: Node number set to 2886997162
[  315.196156][ T4327] Bluetooth: hci5: command 0x0419 tx timeout
[  316.298398][ T7473] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d)
[  316.645738][ T7407] chnl_net:caif_netlink_parms(): no params data found
[  316.703590][ T7407] bridge0: port 1(bridge_slave_0) entered blocking state
[  316.704887][ T7407] bridge0: port 1(bridge_slave_0) entered disabled state
[  316.706614][ T7407] device bridge_slave_0 entered promiscuous mode
[  316.711339][ T7407] bridge0: port 2(bridge_slave_1) entered blocking state
[  316.712586][ T7407] bridge0: port 2(bridge_slave_1) entered disabled state
[  316.724797][ T7407] device bridge_slave_1 entered promiscuous mode
[  316.747608][ T7407] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  316.754756][ T7407] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  316.784333][ T7407] team0: Port device team_slave_0 added
[  316.787057][ T7407] team0: Port device team_slave_1 added
[  316.807105][ T7407] batman_adv: batadv0: Adding interface: batadv_slave_0
[  316.808355][ T7407] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  316.824021][ T7407] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  316.830829][ T7407] batman_adv: batadv0: Adding interface: batadv_slave_1
[  316.832090][ T7407] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  316.850568][ T7407] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  316.925495][ T7407] device hsr_slave_0 entered promiscuous mode
[  316.970603][ T7407] device hsr_slave_1 entered promiscuous mode
[  317.011867][ T7407] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  317.013659][ T7407] Cannot create hsr debugfs directory
[  317.090884][ T7407] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  317.151427][ T7407] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  317.625132][ T4327] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  317.627159][ T4327] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  317.628775][ T4327] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  317.631194][ T4327] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  317.632367][ T4327] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  317.633806][ T4327] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  317.650761][ T7496] x_tables: duplicate underflow at hook 3
[  317.867637][ T7504] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  318.429893][ T7407] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  319.367199][ T7393] chnl_net:caif_netlink_parms(): no params data found
[  319.675976][ T7407] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  319.689937][ T4331] Bluetooth: hci2: command 0x0409 tx timeout
[  319.969452][ T7532] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  319.970789][ T7532] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  320.153909][ T7542] loop1: detected capacity change from 0 to 128
[  322.199927][ T4327] Bluetooth: hci2: command 0x041b tx timeout
[  322.451442][ T7559] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  322.452947][ T7559] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  323.203287][ T7393] bridge0: port 1(bridge_slave_0) entered blocking state
[  323.204456][ T7393] bridge0: port 1(bridge_slave_0) entered disabled state
[  323.205989][ T7393] device bridge_slave_0 entered promiscuous mode
[  323.208060][ T7393] bridge0: port 2(bridge_slave_1) entered blocking state
[  323.209348][ T7393] bridge0: port 2(bridge_slave_1) entered disabled state
[  323.211424][ T7393] device bridge_slave_1 entered promiscuous mode
[  323.218786][ T7393] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  323.556326][ T7493] chnl_net:caif_netlink_parms(): no params data found
[  323.573245][ T7493] bridge0: port 1(bridge_slave_0) entered blocking state
[  323.574405][ T7493] bridge0: port 1(bridge_slave_0) entered disabled state
[  324.191851][ T7493] device bridge_slave_0 entered promiscuous mode
[  324.208794][ T7493] bridge0: port 2(bridge_slave_1) entered blocking state
[  324.210385][ T7493] bridge0: port 2(bridge_slave_1) entered disabled state
[  324.215330][ T7493] device bridge_slave_1 entered promiscuous mode
[  324.512187][ T4327] Bluetooth: hci2: command 0x040f tx timeout
[  324.532774][ T7393] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  324.582288][ T7393] team0: Port device team_slave_0 added
[  324.584306][ T7393] team0: Port device team_slave_1 added
[  324.606835][ T7393] batman_adv: batadv0: Adding interface: batadv_slave_0
[  324.607938][ T7393] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  324.626206][ T7393] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  324.637632][ T7393] batman_adv: batadv0: Adding interface: batadv_slave_1
[  324.638821][ T7393] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  324.657035][ T7393] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  325.263664][ T7393] device hsr_slave_0 entered promiscuous mode
[  325.301244][ T7393] device hsr_slave_1 entered promiscuous mode
[  325.380126][ T7393] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  325.381348][ T7393] Cannot create hsr debugfs directory
[  326.570203][ T4331] Bluetooth: hci2: command 0x0419 tx timeout
[  328.352526][ T7577] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  328.353990][ T7577] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  329.504056][ T7613] fuse: Unknown parameter 'fd0x000000000000000400000000000000000000'
[  331.225756][ T7493] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  331.909877][ T7197] unregister_netdevice: waiting for syz_tun to become free. Usage count = 10
[  331.911290][ T7197] leaked reference.
[  331.912007][ T7197]  dst_init+0xc8/0x3c0
[  331.912582][ T7197]  dst_alloc+0x120/0x170
[  331.913265][ T7197]  ip_route_output_key_hash_rcu+0xff4/0x1e38
[  331.914185][ T7197]  ip_route_output_key_hash+0x1b0/0x300
[  331.915023][ T7197]  ip_route_output_flow+0x3c/0x160
[  331.915773][ T7197]  geneve_link_config+0x16c/0x544
[  331.916534][ T7197]  geneve_newlink+0x130/0x198
[  331.917283][ T7197]  rtnl_newlink+0x1058/0x1a50
[  331.918011][ T7197]  rtnetlink_rcv_msg+0x698/0xcdc
[  331.918741][ T7197]  netlink_rcv_skb+0x218/0x3e8
[  331.919446][ T7197]  rtnetlink_rcv+0x28/0x38
[  331.920145][ T7197]  netlink_unicast+0x60c/0x814
[  331.920894][ T7197]  netlink_sendmsg+0x6f4/0x9c0
[  331.921648][ T7197]  __sys_sendto+0x324/0x440
[  331.922408][ T7197]  __arm64_sys_sendto+0xd8/0xf8
[  331.923203][ T7197]  invoke_syscall+0x98/0x2b4
[  331.923880][ T7197] leaked reference.
[  331.924489][ T7197]  fib6_nh_init+0x630/0x1ad4
[  331.925204][ T7197]  ip6_route_info_create+0x7b0/0xf78
[  331.926057][ T7197]  ip6_route_add+0x34/0x154
[  331.926790][ T7197]  addrconf_add_linklocal+0x3ac/0x608
[  331.927629][ T7197]  addrconf_addr_gen+0x3ec/0x4fc
[  331.928428][ T7197]  addrconf_init_auto_addrs+0x5e0/0x94c
[  331.929285][ T7197]  addrconf_notify+0x8c4/0xc8c
[  331.930023][ T7197]  raw_notifier_call_chain+0xd4/0x164
[  331.930867][ T7197]  __dev_notify_flags+0x250/0x480
[  331.931714][ T7197]  dev_change_flags+0xc8/0x154
[  331.932492][ T7197]  do_setlink+0xa5c/0x3434
[  331.933186][ T7197]  rtnl_newlink+0x13cc/0x1a50
[  331.933889][ T7197]  rtnetlink_rcv_msg+0x698/0xcdc
[  331.934661][ T7197]  netlink_rcv_skb+0x218/0x3e8
[  331.935439][ T7197]  rtnetlink_rcv+0x28/0x38
[  331.936160][ T7197]  netlink_unicast+0x60c/0x814
[  331.936902][ T7197] leaked reference.
[  331.937534][ T7197]  fib6_nh_init+0x630/0x1ad4
[  331.938258][ T7197]  ip6_route_info_create+0x7b0/0xf78
[  331.939113][ T7197]  addrconf_f6i_alloc+0x1a8/0x36c
[  331.939887][ T7197]  ipv6_add_addr+0x3c8/0xce0
[  331.940609][ T7197]  addrconf_add_linklocal+0x23c/0x608
[  331.941401][ T7197]  addrconf_addr_gen+0x3ec/0x4fc
[  331.942232][ T7197]  addrconf_init_auto_addrs+0x5e0/0x94c
[  331.943096][ T7197]  addrconf_notify+0x8c4/0xc8c
[  331.943820][ T7197]  raw_notifier_call_chain+0xd4/0x164
[  331.944696][ T7197]  __dev_notify_flags+0x250/0x480
[  331.945483][ T7197]  dev_change_flags+0xc8/0x154
[  331.946249][ T7197]  do_setlink+0xa5c/0x3434
[  331.946946][ T7197]  rtnl_newlink+0x13cc/0x1a50
[  331.947633][ T7197]  rtnetlink_rcv_msg+0x698/0xcdc
[  331.948377][ T7197]  netlink_rcv_skb+0x218/0x3e8
[  331.949080][ T7197]  rtnetlink_rcv+0x28/0x38
[  331.949762][ T7197] leaked reference.
[  331.950305][ T7197]  fib6_nh_init+0x630/0x1ad4
[  331.951012][ T7197]  ip6_route_info_create+0x7b0/0xf78
[  331.951905][ T7197]  ip6_route_add+0x34/0x154
[  331.952703][ T7197]  addrconf_add_dev+0x228/0x324
[  331.953499][ T7197]  addrconf_init_auto_addrs+0x510/0x94c
[  331.954411][ T7197]  addrconf_notify+0x8c4/0xc8c
[  331.955192][ T7197]  raw_notifier_call_chain+0xd4/0x164
[  331.956017][ T7197]  __dev_notify_flags+0x250/0x480
[  331.956819][ T7197]  dev_change_flags+0xc8/0x154
[  331.957643][ T7197]  do_setlink+0xa5c/0x3434
[  331.958312][ T7197]  rtnl_newlink+0x13cc/0x1a50
[  331.959039][ T7197]  rtnetlink_rcv_msg+0x698/0xcdc
[  331.959856][ T7197]  netlink_rcv_skb+0x218/0x3e8
[  331.960606][ T7197]  rtnetlink_rcv+0x28/0x38
[  331.961324][ T7197]  netlink_unicast+0x60c/0x814
[  331.962116][ T7197]  netlink_sendmsg+0x6f4/0x9c0
[  331.962965][ T7197] leaked reference.
[  331.963639][ T7197]  fib6_nh_init+0x630/0x1ad4
[  331.964441][ T7197]  ip6_route_info_create+0x7b0/0xf78
[  331.965326][ T7197]  ip6_route_add+0x34/0x154
[  331.966062][ T7197]  addrconf_permanent_addr+0x5d8/0x8d4
[  331.966932][ T7197]  addrconf_notify+0x7b0/0xc8c
[  331.967772][ T7197]  raw_notifier_call_chain+0xd4/0x164
[  331.968637][ T7197]  __dev_notify_flags+0x250/0x480
[  331.969418][ T7197]  dev_change_flags+0xc8/0x154
[  331.970153][ T7197]  do_setlink+0xa5c/0x3434
[  331.970842][ T7197]  rtnl_newlink+0x13cc/0x1a50
[  331.971591][ T7197]  rtnetlink_rcv_msg+0x698/0xcdc
[  331.972414][ T7197]  netlink_rcv_skb+0x218/0x3e8
[  331.973155][ T7197]  rtnetlink_rcv+0x28/0x38
[  331.973837][ T7197]  netlink_unicast+0x60c/0x814
[  331.974569][ T7197]  netlink_sendmsg+0x6f4/0x9c0
[  331.975309][ T7197]  __sys_sendto+0x324/0x440
[  331.975992][ T7197] leaked reference.
[  331.976566][ T7197]  fib6_nh_init+0x630/0x1ad4
[  331.977351][ T7197]  ip6_route_info_create+0x7b0/0xf78
[  331.978188][ T7197]  addrconf_f6i_alloc+0x1a8/0x36c
[  331.978935][ T7197]  addrconf_permanent_addr+0x288/0x8d4
[  331.979800][ T7197]  addrconf_notify+0x7b0/0xc8c
[  331.980514][ T7197]  raw_notifier_call_chain+0xd4/0x164
[  331.981359][ T7197]  __dev_notify_flags+0x250/0x480
[  331.982164][ T7197]  dev_change_flags+0xc8/0x154
[  331.982839][ T7197]  do_setlink+0xa5c/0x3434
[  331.983511][ T7197]  rtnl_newlink+0x13cc/0x1a50
[  331.984193][ T7197]  rtnetlink_rcv_msg+0x698/0xcdc
[  331.984915][ T7197]  netlink_rcv_skb+0x218/0x3e8
[  331.985618][ T7197]  rtnetlink_rcv+0x28/0x38
[  331.986298][ T7197]  netlink_unicast+0x60c/0x814
[  331.987035][ T7197]  netlink_sendmsg+0x6f4/0x9c0
[  331.987715][ T7197]  __sys_sendto+0x324/0x440
[  331.988448][ T7197] leaked reference.
[  331.989042][ T7197]  fib_check_nh+0xa0c/0x15fc
[  331.989811][ T7197]  fib_create_info+0x1090/0x1e58
[  331.990593][ T7197]  fib_table_insert+0xac/0x13a8
[  331.991364][ T7197]  fib_magic+0x26c/0x344
[  331.992019][ T7197]  fib_add_ifaddr+0x33c/0x4f8
[  331.992726][ T7197]  fib_netdev_event+0x360/0x4a0
[  331.993459][ T7197]  raw_notifier_call_chain+0xd4/0x164
[  331.994333][ T7197]  __dev_notify_flags+0x250/0x480
[  331.995132][ T7197]  dev_change_flags+0xc8/0x154
[  331.995837][ T7197]  do_setlink+0xa5c/0x3434
[  331.996534][ T7197]  rtnl_newlink+0x13cc/0x1a50
[  331.997297][ T7197]  rtnetlink_rcv_msg+0x698/0xcdc
[  331.998034][ T7197]  netlink_rcv_skb+0x218/0x3e8
[  331.998722][ T7197]  rtnetlink_rcv+0x28/0x38
[  331.999388][ T7197]  netlink_unicast+0x60c/0x814
[  332.000102][ T7197]  netlink_sendmsg+0x6f4/0x9c0
[  332.000866][ T7197] leaked reference.
[  332.001398][ T7197]  fib_check_nh+0xa0c/0x15fc
[  332.002049][ T7197]  fib_create_info+0x1090/0x1e58
[  332.002787][ T7197]  fib_table_insert+0xac/0x13a8
[  332.003507][ T7197]  fib_magic+0x26c/0x344
[  332.004138][ T7197]  fib_add_ifaddr+0x2ec/0x4f8
[  332.004862][ T7197]  fib_netdev_event+0x360/0x4a0
[  332.005590][ T7197]  raw_notifier_call_chain+0xd4/0x164
[  332.006406][ T7197]  __dev_notify_flags+0x250/0x480
[  332.007182][ T7197]  dev_change_flags+0xc8/0x154
[  332.007920][ T7197]  do_setlink+0xa5c/0x3434
[  332.008577][ T7197]  rtnl_newlink+0x13cc/0x1a50
[  332.009337][ T7197]  rtnetlink_rcv_msg+0x698/0xcdc
[  332.010106][ T7197]  netlink_rcv_skb+0x218/0x3e8
[  332.010862][ T7197]  rtnetlink_rcv+0x28/0x38
[  332.011547][ T7197]  netlink_unicast+0x60c/0x814
[  332.012281][ T7197]  netlink_sendmsg+0x6f4/0x9c0
[  332.012989][ T7197] leaked reference.
[  332.013570][ T7197]  netdev_tracker_alloc+0x68/0xb0
[  332.014387][ T7197]  fib_create_info+0x1990/0x1e58
[  332.015167][ T7197]  fib_table_insert+0xac/0x13a8
[  332.015908][ T7197]  fib_magic+0x26c/0x344
[  332.016555][ T7197]  fib_add_ifaddr+0x118/0x4f8
[  332.017285][ T7197]  fib_inetaddr_event+0x12c/0x1f8
[  332.018136][ T7197]  blocking_notifier_call_chain+0xf0/0x198
[  332.019061][ T7197]  __inet_insert_ifa+0x85c/0xa10
[  332.019804][ T7197]  inet_rtm_newaddr+0x8a0/0x15b0
[  332.020554][ T7197]  rtnetlink_rcv_msg+0x698/0xcdc
[  332.021365][ T7197]  netlink_rcv_skb+0x218/0x3e8
[  332.022138][ T7197]  rtnetlink_rcv+0x28/0x38
[  332.022965][ T7197]  netlink_unicast+0x60c/0x814
[  332.023732][ T7197]  netlink_sendmsg+0x6f4/0x9c0
[  332.024496][ T7197]  __sys_sendto+0x324/0x440
[  332.025268][ T7197]  __arm64_sys_sendto+0xd8/0xf8
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  337.712189][    T9] device hsr_slave_0 left promiscuous mode
[  337.784284][    T9] device hsr_slave_1 left promiscuous mode
[  337.889930][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  337.891124][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[  337.893468][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  337.894634][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[  337.896050][    T9] device bridge_slave_1 left promiscuous mode
[  337.897710][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  337.950855][    T9] device bridge_slave_0 left promiscuous mode
[  337.951913][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  337.992887][    T9] device hsr_slave_0 left promiscuous mode
[  338.029936][    T9] device hsr_slave_1 left promiscuous mode
[  338.109845][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  338.111088][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[  338.113329][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  338.114528][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[  338.115993][    T9] device bridge_slave_1 left promiscuous mode
[  338.117004][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  338.150270][    T9] device bridge_slave_0 left promiscuous mode
[  338.151310][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  338.300120][    T9] device veth1_macvtap left promiscuous mode
[  338.301190][    T9] device veth0_macvtap left promiscuous mode
[  338.302215][    T9] device veth1_vlan left promiscuous mode
[  338.303171][    T9] device veth0_vlan left promiscuous mode
[  338.420333][    T9] device veth1_macvtap left promiscuous mode
[  338.421357][    T9] device veth0_macvtap left promiscuous mode
[  338.422877][    T9] device veth1_vlan left promiscuous mode
[  338.423803][    T9] device veth0_vlan left promiscuous mode
[  341.062181][    T9] team0 (unregistering): Port device team_slave_1 removed
[  341.241007][    T9] team0 (unregistering): Port device team_slave_0 removed
[  341.451039][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  341.672017][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface