last executing test programs:

2m43.163749456s ago: executing program 1 (id=228):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0x21}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
mkdir(&(0x7f0000000140)='./control\x00', 0x8)
r2 = inotify_init1(0x0)
inotify_add_watch(r2, &(0x7f0000000180)='./control\x00', 0xa4000960)
rmdir(&(0x7f0000000100)='./control\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff0b, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000500000008040000cd00000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x0, 0xc, &(0x7f0000000e40)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000080b7b8b4ce40cf00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='rss_stat\x00', r4}, 0x10)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000300)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_subtree(r5, &(0x7f0000000400), 0x2, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock}, 0x70)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000180)={@cgroup=r6, 0x2, 0x1, 0xbb, &(0x7f00000001c0)=[0x0], 0x1, 0x0, 0x0, 0x0, 0x0}, 0x40)

2m42.759230369s ago: executing program 1 (id=230):
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1804c65, &(0x7f0000000180)={[{@usrquota}, {@grpjquota}, {@grpjquota}], [{@uid_gt}, {@pcr={'pcr', 0x3d, 0x28}}]}, 0x1, 0x4ca, &(0x7f0000001d80)="$eJzs3c1rXOUaAPBnZpo0SXNvP+7l0vbCbaEXej9oJh9cmtx7N67URUEsuFGoMZnGmkkmZCa1CV2kuutCQRQFceHev8CNXVkEca17cSEVrRFUEEbOmZk2mWRi0DRjc34/OJ33fMx5ztvhefOed86ZE0BmnU7+yUUMRsQnEXG4Mbtxg9ONl7W716eSKRf1+sWvc+l2yXxr09b7DkXEakT0RcSTj0Y8l9sct7q8MjtZLpcWm/PF2txCsbq8cu7K3ORMaaY0PzJ+fmJifHhsdGLX6nrzlRduXnj/8d73vn/5zu3XPvwgOazB5rr19dhNjar3xNF1yw5ExP8fRLAuKDTr09/tA+FXST6/P0XEmTT/D0ch/TSBLKjX6/Wf6gc7rV6tA/tWPu0D5/JDEdEo5/NDQ40+/J9jIF+uVGv/vlxZmp9u9JWPRE/+8pVyabh5rnAkenLJ/Ehavj8/2jY/FpH2gV8v9KfzQ1OV8vTeNnVAm0Nt+f9doZH/QEY45Yfskv+QXfIfskv+Q3bJf8gu+Q/ZJf8hu+Q/ZJf8h+yS/5Bd8h8y6YkLF5Kp3rr/ffrq8tJs5eq56VJ1dmhuaWpoqrK4MDRTqcyk9+zM/dL+ypXKwsh/YulasVaq1orV5ZVLc5Wl+dql9L7+S6WePakVsBNHT936LBcRq//tT6dEb3OdXIX9rV7PRbfvQQa6o9DtBgjoGkN/kF3O8YH2n+ht7xf0dXrjwv3xQuDhku/2AQBdc/aE7/8gq4z/Q3YZ/4fs0scHtnhE3wbbjf8DDyfj/5Bdgx2e//WHiHj1ZOPZXcMR8ceI+LTQc7D1rC9gP8h/mWv2/88e/vtg+9re3A/pVwS9EfHi2xffvDZZqy2OJMu/ube89lZz+ei6N3Y8YQC6pZWnrTwGALJr7e71qda0l3G/eqRxEcLm+AeaY5N96XeUA2u5Ddcq5Hbp2oXVGxFxfKv4uebzzhsnMgNrhU3xjzVfc41dpMd7IH1u+q7Gr/U3t22Pf2Jd/L+ti3/yN/6fQFbcStqf4a3yL5/mdNzL/43tz+AuXTvRuf3L32v/Ch3av1M7jPH8Oy990TH+jYiTW8ZvxetLY7XHT47tbId9tl9TeueZp/7SKX793cZ+torfkpSKtbmFYnV55Vz6O3IzpfmR8fMTE+PDY6MTxXSMutgaqd7sf8c/vr1d/Qc6xN+u/smyf3baaZsf//rR06e3if+PM1t//se2iZ/8TfjXDuN/O/r5s53WJfGnO9Q/v038ZNnYDuNX33js4A43BQD2QHV5ZXayXC4tKigodKVw4/dxGG2FbrdMwINWXU5OzZOk7/aRAAAAAAAAAAAAADu1F5cTd7uOAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD7wc8BAAD//+mY1Ok=")
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x0, 0x0, &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xd, 0x6, 0x4, 0x1, 0x0, r1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, 0x0, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fallocate(0xffffffffffffffff, 0x8, 0x2000, 0x40000)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000900)={&(0x7f0000000780)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@enum]}}, &(0x7f0000000800)=""/196, 0x26, 0xc4, 0x1}, 0x20)

2m37.706807811s ago: executing program 1 (id=239):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
pipe2$9p(0x0, 0x800)
dup(0xffffffffffffffff)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000b40)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000022020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000000085000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9b8177defdce4918, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup(r1)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x6, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r6}, 0x18)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x840, &(0x7f0000000340), 0x4, 0x241, &(0x7f00000009c0)="$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")
r7 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r7, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=ANY=[], 0xfc}}, 0x0)
setsockopt$inet_opts(r7, 0x0, 0x4, &(0x7f0000000000)="890704", 0x3)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x4000000000000, 0x40, &(0x7f0000000400)=@raw={'raw\x00', 0xe501, 0x3, 0x270, 0x138, 0x6affffff, 0x3403000b, 0x0, 0x7, 0x210, 0x230, 0x230, 0x210, 0x223, 0x3, 0x0, {[{{@ip={@remote, @local, 0x0, 0x0, 'veth1_macvtap\x00', 'veth1_to_team\x00'}, 0x0, 0xb8, 0x100, 0x0, {}, [@common=@unspec=@limit={{0x48}, {0x7f510100, 0x4, 0x0, 0x0, 0x0, 0x2}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'syz0\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x2d0)
r8 = open(&(0x7f00000000c0)='.\x00', 0x800, 0x50)
getdents(r8, &(0x7f0000001fc0)=""/184, 0xb8)
ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

2m34.331806208s ago: executing program 1 (id=245):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000001c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x14008, &(0x7f0000000340)={[{@nodelalloc}, {@jqfmt_vfsv0}]}, 0x1, 0x52b, &(0x7f00000015c0)="$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")
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x141842, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)
r1 = gettid()
tkill(r1, 0x12)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000001400)=[{0x0}], 0x1, 0x21, 0x0)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
io_setup(0x3ff, &(0x7f0000000500)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f00000004c0)=[0x0])
setsockopt$inet6_tcp_buf(0xffffffffffffffff, 0x6, 0x1f, 0x0, 0x0)
r4 = open(&(0x7f0000000240)='./bus\x00', 0x1c7102, 0x1)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r4, 0x0)
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000300)='./file0\x00', 0x10081c, &(0x7f0000000400)={[{@barrier_val={'barrier', 0x3d, 0x100}}]}, 0x1, 0x506, &(0x7f0000001b00)="$eJzs3c9vG1kdAPCvnV9ONrvJLnsAhNiyLBRU1Unc3WjVA5QTQqgSokeQ2pC4URQ7jmKnNKGH9n9AohInOPIHcO6JPwHBjQsckPgRgZpKHAbN2G7dxG7c5ofT+PORRjNv3nS+77Wd9zLfun4BDK1LEfEwIsYj4k5EzLTO51pb3Ghu6XVP9x4s7+89WM5Fktz6Vy6rT89Fx69pS+9ZiIgffz/iZ7nDces7u+tLlUp5q1mcnGtUN+fqO7tX16pLq+XV8kaptLiwOP/5tc9KJ9bXj6rjzYORtIHf/kXarOlWXWc/TlKz62PP46RGI+KHpxFsAEZa/RkfdEN4I/mI+CAiPs6e/5kYyf40AYCLLElmIpnpLAMAF10+y4Hl8sVWLmA68vliMeKdiPgwpvKVWr1x5W5te2OlmSubjbH83bVKeb6VK5yNsVxaXsiOX5RLB8rXIuL9iPjlxGRWLi7XKiuD/MEHAIbYOwfm//9ONOd/AOCCKwy6AQDAmTP/A8DwMf8DwPAx/wPA8DH/A8DwMf8DwPAx/wPAUPnRzZvpluy3vv965d7O9nrt3tWVcn29WN1eLi7XtjaLq7XaavadPdWj7lep1TYXPo3t+7Pf2aw35uo7u7erte2Nxu3se71vl8fOpFcAwKu8/9GTP+ci4uH1yWyLjrUczNVwseUH3QBgYEYG3QBgYKz2BcPrGO/40gNwQXRZovclhYiYPHh1kiTJ6TYLOEWXvyT/D8OqI///mp8CPvKjQMA5J/8Pw6vf/P9R+QHg7ZMkuX7X/I9+LwQAzjc5fqDH+/0Hrf3vWv848NOVg1c8Ps1WAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwPnWXv+32FoLfDry+WIx4t2ImI2x3N21Snk+It6LiD9NjE2k5YUBtxkAOK7833Ot9b8uz3wyfbB2PPdsIttHxM9/fetX95caja0/puf//fx843HrfGkQ7QcAjtKep7N9x4v8070Hy+3tLNvzj+9FRKEZf39vPPafxx+N0WxfiLGImPpPrlVuynXkLo7j4aOI+GK3/udiOsuBNFc+PRg/jf3umcbPvxQ/n9U19+nvxRdeO3IycwLNh7fak3T8udHt+cvHpWzf/fkvZCPU8bXGv/RWy/vZGPgifnv8G+kx/l3qN8anf/hB82jycN2jiC+PRrRj73eMP+34uR7xP+kz/l++8tWPe9Ulv4m4HN3jd8aaa1Q35+o7u1fXqkur5dXyRqm0uLA4//m1z0pzWY56rvds8M/rV97rVZf2f6pH/MIR/f9Gn/3/7f/u/ORrr4j/ra93i5+PD18RP50Tv9ln/KWp3xd61aXxV7r2v613/6/0Gf+vf9s9tGw4ADA49Z3d9aVKpbx1lgftHyTONKiDC3CQ/q05B83oevDdk71h+33mcNV4vNYNk+SNmtFrxDiJrBtwHjSf9aS8FRHPBt0YAAAAAAAAAAAAAACgq7P431GD7iMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAX1/8DAAD//9Joy5M=")
unlink(&(0x7f0000000200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
r5 = socket$packet(0x11, 0xa, 0x300)
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000100)=[{0x80000006}]}, 0x10)
syz_emit_ethernet(0x3e, &(0x7f0000000080)={@multicast, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x100, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e20, 0x1c, 0x0, @opaque="72491acb03e274c972966f9764b12bfc413269d4"}}}}}, 0x0)

2m29.950870405s ago: executing program 1 (id=255):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f00000001c0)='./file0\x00', 0x880f54, &(0x7f0000000500), 0xff, 0x485, &(0x7f0000001040)="$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")
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xf0667000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000300)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x3}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
r5 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000100), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000180)={0x7, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="020100090a000000007fffffff0000000200100000e9000000e9000000000000030005000000000002000000ac1414000000000000000000030006000000000002"], 0x50}}, 0x0)
sendmmsg(r7, &(0x7f0000000180), 0x40000000000007b, 0x4004)
sendmsg$WG_CMD_SET_DEVICE(r6, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c020000", @ANYRES16=r5, @ANYBLOB="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"], 0x21c}, 0x1, 0x0, 0x0, 0x20040010}, 0x4008804)

2m27.599294621s ago: executing program 0 (id=260):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r2}, 0x10)
syz_clone(0x42000000, 0x0, 0x0, 0x0, 0x0, 0x0)

2m26.628918368s ago: executing program 1 (id=262):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/stat\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xf0667000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendfile(r0, r1, 0x0, 0xdc)

2m24.45287332s ago: executing program 32 (id=262):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/stat\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xf0667000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendfile(r0, r1, 0x0, 0xdc)

2m24.444654737s ago: executing program 0 (id=264):
r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x2, 0x842)
ioctl$EVIOCGBITSND(r0, 0x40044591, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000340)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})

2m22.986196387s ago: executing program 0 (id=270):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000780)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@dax_always}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@usrjquota}, {@grpquota}, {@nobh}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x200000}}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$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")
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r2}, 0x0, &(0x7f0000000040)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r4, 0x6, 0x1d, 0x0, 0x0)

2m18.556233832s ago: executing program 0 (id=283):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x88e, &(0x7f0000000080)={[{@errors_remount}, {@mblk_io_submit}, {@inlinecrypt}, {@test_dummy_encryption_v1}, {@barrier}, {@mblk_io_submit}, {@nogrpid}]}, 0x3, 0x445, &(0x7f0000000800)="$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")
mkdir(0x0, 0x0)
mkdir(0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})

2m17.767880975s ago: executing program 0 (id=288):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000006c0)={0x0, 0x0})

2m10.477872741s ago: executing program 0 (id=296):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@private2={0xfc, 0x2, '\x00', 0x28}, 0x800, 0x0, 0xff, 0x0, 0x0, 0x96}, 0x20)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01090000000000000f478e"])
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0xffffffffffffffff, 0x9, 0x4, 0x0, 0x10000, 0x0, 0x4002004c4, 0x1000, 0x0, 0x0, 0x0, 0x1, 0xa, 0x9, 0x8000, 0x4], 0xeeee8000, 0x2113c0})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

2m9.900277419s ago: executing program 33 (id=296):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@private2={0xfc, 0x2, '\x00', 0x28}, 0x800, 0x0, 0xff, 0x0, 0x0, 0x96}, 0x20)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01090000000000000f478e"])
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0xffffffffffffffff, 0x9, 0x4, 0x0, 0x10000, 0x0, 0x4002004c4, 0x1000, 0x0, 0x0, 0x0, 0x1, 0xa, 0x9, 0x8000, 0x4], 0xeeee8000, 0x2113c0})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1m47.521373403s ago: executing program 3 (id=345):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f00000002c0)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x18, 0x32, 0x829, 0x0, 0x0, {0x0, 0x0, 0x2}, [{0x4}]}, 0x18}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000580)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000000}}, {@noauto_da_alloc}, {@dioread_nolock}, {@test_dummy_encryption}, {@nobarrier}, {@nodelalloc}, {@minixdf}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}]}, 0x1, 0xba6, &(0x7f0000000c00)="$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")
recvmmsg(0xffffffffffffffff, &(0x7f0000001980)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000001380)=@pppoe={0x18, 0x0, {0x0, @local}}, 0x80, &(0x7f0000001840)=[{0x0}, {&(0x7f0000001600)=""/57, 0x39}, {&(0x7f0000001640)=""/135, 0x87}, {&(0x7f00000014c0)=""/101, 0x65}, {&(0x7f0000001780)=""/171, 0xab}], 0x5, &(0x7f00000018c0)=""/176, 0xb0}}], 0x2, 0x0, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0), 0x0, 0x0, 0x1)
listxattr(&(0x7f0000000a00)='./file1\x00', 0x0, 0x3b)

1m46.955729642s ago: executing program 3 (id=346):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sys_enter\x00'}, 0x18)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60303, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x0, 0x0, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil})
r3 = dup(r2)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000)=@x86={0xa0, 0x1, 0x5, 0x0, 0x3, 0x3, 0xb, 0xd, 0xf8, 0x15, 0x7, 0x3, 0x0, 0x9d, 0x4, 0x7, 0x6, 0x40, 0x0, '\x00', 0x4, 0xcaa})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f00000002c0)=0x10000)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1m46.325542635s ago: executing program 3 (id=349):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000780)=ANY=[@ANYBLOB="61154c000000000061138c0000000000bfa00000000000001503000008004e002d3501000000000095004100000000006916000000000000bf67000000000000350605000fff07206706000005000000160302000ee60060bf500000000000000f650000000000006507f9ff0100000007070000cddfffff1e75000000000000bf54000000000000070400000400f9ffbd4301000000000095000000000000001500000000000000950000000000000032ed3c12dc8c27df8ecf264e0f84f9f17d3c30e32f1754558f2278af6d71d79a5e12814cb1d8a5d4601d295c45a6a0b9bdb7dd3997f9c9c4f6f3be4b369289aa6812b8e007e733a9a4f1b0af3dda82ee45a010fb94fe9de57b9d8a814261bdb94a05000000c6c60bf70d742a81762bab8395fa64810b5b40d893ea8fe01c5473d51b546cad3f1d5ab2af27546e7c955ccefa1f6ab689b555202da2e0ec2871b4a7e65836429a527dc47ebe84a423b6c8d345dc8da3085b0ab71ca1b901627b562ed04ae76002d4519af619e3cca4d69e88158f0200000000c8fb730a5c1bf2b2bb71a629361997a75fd552bdc2300000008ac86d8a297dff0445a15f21dce4de9f29eff65aadc841848c9b562a31e56723888fb126a163f16f920ae2fb494059bba8e3b680324a188076ebae3f55c4e9b2ad9bc1172ba7cbebe174aba210d739a018f9bbec63222d20cecac4d03723f1c932b33e0f32f1ad2e99e0e67ab93716d20000009fbb0f53acbb40b4f8e2738270b31562ed834f2af97787f696649a462e7ee4bcf8b07a10d6735154beb4000000000000000000000000004000bc00f679629709e7e78f4ddc211bc3ebe6bd9d42ca0140a7afaab43176e65ec1118d50d1e827f3472f4445d253880800000000000000690884f800031e03a651bb96589a7e2e509bcc1d161347623cb5e7ac4629c8ab04871bc47287cd31cc43010000207b40407d000000210000000000000000005f37d83f84e98a523d80bd970d703f37ca364a601ae899a56715a0a62a34c6c94cce6994521629ab028acfc1d926a0f6a5489af8dc2f17923f3cd3cedd01fdc59589ea6bacde1e40dfd1970a55c22fe3a5ac000000f4000000000000000000000000c1eb2d91fb79ea00000000000000bb0d00000000000000000000e4007be511fe32fbc90e2364a55e9bb66ac64423d2d00fea2594e190deae46e26c596f84eba9000000000000003cc3aa39ee4b1386bab561cda886fa642994cacd473b543ccb5f0d7b63924f17c67b13631d22a11dc3c6939628950000000000000001c7205a6b068fff496d2da7d632bd1f61b007e1ff5f1be1969a1ba791ad46d800000000c7f26a0337302f3b41eae59809fd05d12f6186f117b062df67d3a63f3265dd1410eea68208a3f26b2989b832d8b34a34a4f08b34b30410856e858d27adee7daf32903d3fc78700d429a2d4c8b6d803eb83eecfe4c7ff9e6ab5a52e83d089dad7a8710e0254f1b11cced7bc3c8da0c44d2ebf9f6f3ff3be4d1458077c2253b0c7c7a0a9fdd63bf910dc20e5cb2a88e59febc47f1212a21f631dbaa74f22bad050e9856b48ae3a03a497c37758537650fe6db88aa3c41fdc3d78e046f6160e1741299e8dc29906870e6431ed1eab5d067a183f064b060a8ec12725d42e3a74863d66bee966b1574f8e01b3f34a267ff0afa1e1c758a0079b747067312e9815a21cb3f1f8150d999d788535a4d3114dbc7e2bf2402a75fd7a55733360040855ed5d1c0d634fb9fb38f84d9d87b27f8a5d91217b728f13e3ee20e69e0ffb2780b1a7af137ff7b4ff010404faf0a4da65396174b4563d54b52f06c870edf0c5d744b5272b44c23488b2bdbff947c4dfa108cbb88202ee1192b81f428a5b3c299848649e1a6bff52f657a67463d7dbf85ae9321fc2b517dc4a29b9b5a8ded5de8206c812439ab129ae818837ee1562078fc524b3baf49a0be9bb7d958d5e87c6c09bf71a894bad62934782cc308e936d7637e07c4a2a3bc87b0da23c00d9ef418cf19e7a8c4c328be0ce95798adc2dca871073f6bd61dc18402cde8b0100010000000000abc86b94f8cbde4d470667bee722a6a2af483ad0d3415ed0f9db059acaba9eaea93f811d434e00000000000000000000d154ba10a8e51489a614e69722bac30000000000000000000000000000c5dfd188ff555285b9743d3aac000583f42d168613151d681a2f71373f20d92c9048407c91fabecfe8b3f2d5454d127edab14ba61ba1cfc4336324c86f3dcb43e9a58208077e90f6ec1c7a7216f61dcc372cdd30b82507489f0bbfbd3c3f21752e81319c0161e154ceb16e00bc7f5a6962dff317f4d014786e432817064874d69a39cb0da31bcc5f81894d8a80756447322207b4007dff12eb95066cc6bc256f0a12282224d718b06ca80b57aa183dd0c3eee45891441f2b89b4c67aa9882281393954972046974f18df232cd7fca610e33f51c2d062020f403d85ff36c26e2f6bd1d82f4d3ceb3472d9a77e0057a3bfe697d9ab7585f4a1b381343d2cf855689232f4fc5135790662dc1419a374be9d7b3e5be2886d23add90d862f1a682ff11c798e338af3e5bb0f9d3952b15bf3e0c618c89d20ca1e18a031397693bf3cfbd8417e5b55e641c898c280356f2da222d5d68919d98158578dcf18efa404e508bcbbb8cfcf70086821ebdf34c9a1dff45af873df904c2bdbef81f246d26f4b40df949e12bdac18533d4e11c608cc31d60cb591c40a7b386fa1c753336d7220a35118d4919b45eff32aab684e62c6691de14e97aa7e9dc8ecf0cd50540246d2b746e41e5b4e2c095039dfe0f71db6265f7580d098be40ef36faee5d1695830d4242a23e541e6ce9fa1998d8961cf4fe3c8e8fbb566f148c8befc229614a4b7f80d237b8abc6fd0407de31d6e5532f360d379f20f054692b47207922fe6c14eba96c9a7ae906abc1ae1ae8c4fae92883cfa1978a04bbff4bbe00000000000000000000000000fdba1133066c4a21a7149f32"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48)

1m45.7915165s ago: executing program 3 (id=350):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x49, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
chdir(&(0x7f0000000400)='./file0\x00')

1m45.540421568s ago: executing program 3 (id=353):
socketpair$unix(0x1, 0x1, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000240)='./bus\x00', 0x21085e, &(0x7f0000000780)={[{@journal_dev={'journal_dev', 0x3d, 0x3}}, {@dioread_lock}], [{@appraise}, {@subj_user={'subj_user', 0x3d, 'journal_dev'}}, {@fowner_gt}, {@euid_gt}, {@permit_directio}, {@uid_lt}, {@audit}, {@subj_type}]}, 0x1, 0x516, &(0x7f0000000840)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
r3 = socket$inet6(0x10, 0x3, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r5}, 0x10)
sendto$inet6(r3, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)

1m44.899146214s ago: executing program 3 (id=356):
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'sit0\x00', <r1=>0x0})
r2 = openat$tun(0xffffffffffffff9c, 0x0, 0x1c1341, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b70300000000002085000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x40200)
sendmsg$nl_route(r0, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="340000006800010000000000fedbdf250a00000000000000140006000000000000000000000000000000000108000500", @ANYRES32=r1], 0x34}}, 0x0)

1m29.678974027s ago: executing program 34 (id=356):
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'sit0\x00', <r1=>0x0})
r2 = openat$tun(0xffffffffffffff9c, 0x0, 0x1c1341, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b70300000000002085000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x40200)
sendmsg$nl_route(r0, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="340000006800010000000000fedbdf250a00000000000000140006000000000000000000000000000000000108000500", @ANYRES32=r1], 0x34}}, 0x0)

17.635799017s ago: executing program 4 (id=551):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x60)
socket$pppl2tp(0x18, 0x1, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000faff0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0xe4ffffff00000000, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0xf, &(0x7f0000001200)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x4}, {{0x18, 0x4, 0x1, 0x0, r5}, {}, {}, {0x85, 0x0, 0x0, 0x5a}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3, 0x9, 0x0, 0x1, 0x7}}, [], {{0x6, 0x1, 0x3, 0x8}, {0x6, 0x0, 0x2, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000700)={0x6, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x6, 0x0, 0x0, 0x41100, 0x30, '\x00', 0x0, 0x25, r0, 0x8, &(0x7f00000005c0)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000600)={0x3, 0x2, 0xfffffff8, 0x4}, 0x10, 0x0, 0x0, 0x8, &(0x7f0000000640)=[r5, r0], &(0x7f0000000680)=[{0x0, 0x4, 0x10, 0x3}, {0x4, 0x1, 0x2, 0x6}, {0x1, 0x4, 0x0, 0x9}, {0x5, 0x1, 0x0, 0xb}, {0x5, 0x1, 0x10, 0xa}, {0x3, 0x5, 0x2, 0xb}, {0x5, 0x1, 0x0, 0xe}, {0x4, 0x1, 0x3, 0x84109941b17ac6a8}]}, 0x94)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x2, 0xd, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, [@sadb_x_policy={0x8, 0x12, 0x2, 0x0, 0x0, 0x0, 0x0, {0x6, 0x32, 0x3, 0x0, 0x0, 0x0, 0x0, @in=@rand_addr=0x10003300, @in6=@mcast2}}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @local}}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0xffff, @private}}]}, 0x80}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r7 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
close(r7)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
io_setup(0x8, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)

14.04628794s ago: executing program 4 (id=558):
r0 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x5)
fchdir(r1)
r2 = openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
lseek(r2, 0x1, 0x0)

12.681524768s ago: executing program 4 (id=563):
ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000140)={0x0, {0x2, 0x0, @remote}, {0x2, 0x0, @local}, {0x2, 0xffff, @private}, 0x1d2, 0x0, 0x0, 0x0, 0xfffc, 0x0, 0x0, 0x9})
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c00000024000100000000000000000000000000060003"], 0x1c}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x100, 0xac}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_TYPE={0x6, 0xf, 0x2}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40001}, 0x20004090)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000000040))
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240), 0x50)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB], 0x4b)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000c80)=ANY=[], &(0x7f0000000200)='GPL\x00', 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
sendfile(0xffffffffffffffff, r7, &(0x7f0000000400)=0x3, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x4, 0x1c, &(0x7f00000002c0)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x4, 0x9, 0x0, 0x2, 0x300}, {0x6e}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfff0}, {0x5, 0x0, 0xc, 0x9}, {0x3, 0x0, 0x6, 0xa, 0xa}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {}, {0x18, 0x2, 0x2, 0x0, r5}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$key(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00008feff0)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000100)={0x4, 0x0, &(0x7f00008feff0)={&(0x7f00000002c0)=ANY=[@ANYBLOB], 0x80}}, 0x0)
r8 = socket$key(0xf, 0x3, 0x2)
sendmmsg(r8, &(0x7f00000000c0), 0x2c8, 0x0)

12.139310636s ago: executing program 6 (id=566):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'veth1_to_hsr\x00', <r1=>0x0})
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
prctl$PR_SET_NAME(0xf, 0x0)
socket$packet(0x11, 0xa, 0x300)
sendto$packet(r0, &(0x7f00000000c0)="3f031c000302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r1, 0x1, 0x0, 0x6, @multicast}, 0x14)

11.029701044s ago: executing program 4 (id=568):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x60)
socket$pppl2tp(0x18, 0x1, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000faff0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0xe4ffffff00000000, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0xf, &(0x7f0000001200)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x4}, {{0x18, 0x4, 0x1, 0x0, r5}, {}, {}, {0x85, 0x0, 0x0, 0x5a}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3, 0x9, 0x0, 0x1, 0x7}}, [], {{0x6, 0x1, 0x3, 0x8}, {0x6, 0x0, 0x2, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000700)={0x6, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x6, 0x0, 0x0, 0x41100, 0x30, '\x00', 0x0, 0x25, r0, 0x8, &(0x7f00000005c0)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000600)={0x3, 0x2, 0xfffffff8, 0x4}, 0x10, 0x0, 0x0, 0x8, &(0x7f0000000640)=[r5, r0], &(0x7f0000000680)=[{0x0, 0x4, 0x10, 0x3}, {0x4, 0x1, 0x2, 0x6}, {0x1, 0x4, 0x0, 0x9}, {0x5, 0x1, 0x0, 0xb}, {0x5, 0x1, 0x10, 0xa}, {0x3, 0x5, 0x2, 0xb}, {0x5, 0x1, 0x0, 0xe}, {0x4, 0x1, 0x3, 0x84109941b17ac6a8}]}, 0x94)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x2, 0xd, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, [@sadb_x_policy={0x8, 0x12, 0x2, 0x0, 0x0, 0x0, 0x0, {0x6, 0x32, 0x3, 0x0, 0x0, 0x0, 0x0, @in=@rand_addr=0x10003300, @in6=@mcast2}}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @local}}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0xffff, @private}}]}, 0x80}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r7 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
close(r7)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
io_setup(0x8, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)

10.979949616s ago: executing program 2 (id=569):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000000c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0xc0042, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0xade7, 0x100000000, 0x0, 0x81, 0x100000, 0xfffffffffffffffd, 0x2004c8, 0x8000000, 0xfffffffffffffffe, 0x1, 0xfffffffffffffffe, 0x0, 0x9, 0x0, 0x2], 0xeeee8000, 0x142010})
ioctl$KVM_INTERRUPT(0xffffffffffffffff, 0x4004ae86, &(0x7f0000000040)=0x93f)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f478ef8ed"])
r3 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x200000000000000, 0x110000, 0x0, 0x4002004c4, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x8d], 0xeeee8000, 0x2011c0})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10.379109065s ago: executing program 6 (id=571):
kcmp(0x0, 0x0, 0x6, 0xffffffffffffffff, 0xffffffffffffffff)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
eventfd2(0xc00, 0x80800)

9.787895686s ago: executing program 6 (id=572):
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r2, <r3=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f0000000380)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
write$P9_RVERSION(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r5 = dup(r1)
write$FUSE_BMAP(r5, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r5, &(0x7f0000000280)=ANY=[@ANYBLOB="b0"], 0xb0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000780)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r5}})
mknod$loop(&(0x7f00000002c0)='./file0/../file0/file0\x00', 0xffff8000, 0x0)

9.365078961s ago: executing program 6 (id=574):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000540)='mnt\x00', 0x0, 0x0)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0xc0506617, &(0x7f0000000580)={@id={0x2, 0x0, @a}, 0x40, 0x0, '\x00', @a})
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r0, 0xc0406618, &(0x7f0000000140)={@id={0x2, 0x0, @auto="a7efc444e70fd9e5f614645b065b2139"}})

9.364216017s ago: executing program 2 (id=575):
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x3, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
close_range(r0, 0xffffffffffffffff, 0x0)

8.722522261s ago: executing program 4 (id=576):
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48)

8.255875735s ago: executing program 2 (id=578):
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0xc)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x16, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @flow_dissector}, 0x48)

8.203932812s ago: executing program 6 (id=579):
syz_mount_image$vfat(&(0x7f0000000380), &(0x7f0000000040)='./file2\x00', 0x800094, &(0x7f0000000a00)=ANY=[@ANYBLOB='shortname=winnt,uni_xlate=1,rodir,uni_xlate=0,iocharset=macgaelic,shortname=lower,utf8=1,iocharset=iso8859-13,uni_xlate=1,rodir,shortname=win95,shortname=lower,codepage=874,shortname=lower,utf8=0,shortname=lower,uni_xlate=0,uni_xlate=0,nonumtail=0,short\b\x00\x00\x00\x00\x00\x00\x0095,rodir,uni_xlate=0,rodir,shortname=mixed,sFortname=lower,nnonumtail=1,showexec,\x00', @ANYRES8, @ANYRES16], 0x6, 0x2d2, &(0x7f0000000680)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = socket$inet(0x2, 0x3, 0x100)
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000500)=0x8, 0x4)
bind$inet(r0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x8}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0, 0x0)

7.029796655s ago: executing program 5 (id=581):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = inotify_init()
inotify_add_watch(r3, &(0x7f0000000000)='.\x00', 0x1400037e)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0xb)
read$FUSE(r3, &(0x7f0000001fc0)={0x2020}, 0x2020)

7.003386412s ago: executing program 2 (id=582):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x3, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1}}, &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
r2 = dup2(r1, r1)
write$tun(r2, 0x0, 0x46)

6.928005006s ago: executing program 7 (id=583):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x1800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000b62000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$x86(r2, &(0x7f0000000080)={0x0, 0x0})
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000000000000010000805166000004000000ff000000e80000006d7a00001d4de5fb92e8"])

6.58902196s ago: executing program 2 (id=584):
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000100)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmsg$unix(r0, &(0x7f00000000c0)={&(0x7f0000000200)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x4040801}, 0x20008840)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$xdp(0x2c, 0x3, 0x0)
mmap(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x6, 0x8012, r5, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x1000000, &(0x7f0000000400))
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000080)=0x7, 0x4)
recvmmsg(r0, &(0x7f0000000c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=""/57, 0x39}, 0x8}], 0x3ffffffffffff2e, 0x1000400000de, 0x0)

5.753898611s ago: executing program 5 (id=585):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000840)=@mangle={'mangle\x00', 0x44, 0x6, 0x448, 0x2e0, 0x138, 0xa0, 0x2e0, 0x138, 0x3b0, 0x3b0, 0x3b0, 0x3b0, 0x3b0, 0x6, 0x0, {[{{@ip={@broadcast, @multicast1=0xe0007600, 0x0, 0x0, 'geneve1\x00', 'ip6gre0\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x1, 0x72, @dev={0xac, 0x14, 0x14, 0x17}, 0x4e22}}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0xffffffff, 0x0, 'batadv_slave_1\x00', 'veth1_virt_wifi\x00', {}, {}, 0x11, 0x0, 0x44}, 0x0, 0x70, 0x98}, @ECN={0x28, 'ECN\x00', 0x0, {0x20, 0xc, 0x3}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'vlan1\x00', 'nr0\x00'}, 0x0, 0xb8, 0xe0, 0x0, {}, [@common=@unspec=@nfacct={{0x48}, {'syz1\x00', 0x8}}]}, @ECN={0x28}}, {{@ip={@loopback, @multicast2, 0x0, 0x0, 'syzkaller0\x00', 'veth1_to_team\x00'}, 0x0, 0x98, 0xc8, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x5}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x4, 0x0, @empty}}}, {{@ip={@rand_addr=0x64010102, @empty, 0x0, 0x0, 'lo\x00', 'batadv_slave_1\x00', {}, {}, 0x0, 0x0, 0x40}, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@unspec=@mac={{0x30}, {@multicast}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @remote}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x4a8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x15, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x69, 0x11, 0x12}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x6}, 0x70)

5.495500548s ago: executing program 7 (id=586):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x60)
socket$pppl2tp(0x18, 0x1, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000faff0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0xe4ffffff00000000, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0xf, &(0x7f0000001200)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x4}, {{0x18, 0x4, 0x1, 0x0, r5}, {}, {}, {0x85, 0x0, 0x0, 0x5a}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3, 0x9, 0x0, 0x1, 0x7}}, [], {{0x6, 0x1, 0x3, 0x8}, {0x6, 0x0, 0x2, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000700)={0x6, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x6, 0x0, 0x0, 0x41100, 0x30, '\x00', 0x0, 0x25, r0, 0x8, &(0x7f00000005c0)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000600)={0x3, 0x2, 0xfffffff8, 0x4}, 0x10, 0x0, 0x0, 0x8, &(0x7f0000000640)=[r5, r0], &(0x7f0000000680)=[{0x0, 0x4, 0x10, 0x3}, {0x4, 0x1, 0x2, 0x6}, {0x1, 0x4, 0x0, 0x9}, {0x5, 0x1, 0x0, 0xb}, {0x5, 0x1, 0x10, 0xa}, {0x3, 0x5, 0x2, 0xb}, {0x5, 0x1, 0x0, 0xe}, {0x4, 0x1, 0x3, 0x84109941b17ac6a8}]}, 0x94)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x2, 0xd, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, [@sadb_x_policy={0x8, 0x12, 0x2, 0x0, 0x0, 0x0, 0x0, {0x6, 0x32, 0x3, 0x0, 0x0, 0x0, 0x0, @in=@rand_addr=0x10003300, @in6=@mcast2}}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @local}}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0xffff, @private}}]}, 0x80}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r7 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
close(r7)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
io_setup(0x8, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)

4.589479867s ago: executing program 5 (id=587):
unshare(0x2040600)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, 0x0, 0x0)

4.408192734s ago: executing program 7 (id=588):
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket(0x11, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000400)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000540), 0x395}, 0x24048000)

4.168765106s ago: executing program 5 (id=589):
openat2$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

3.125951608s ago: executing program 7 (id=590):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file1\x00', 0x2008000, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2bc, &(0x7f0000000440)="$eJzs3EFrE08Yx/Hn37RNmtImfxBBQX3Qi16WNr4ADdKCGFBqU9SDsLUbDVmTshsiEbG5iFdfR/HoTVDfQC/ixbu3IgheehBXupttk5rWbU2a2H4/UGa2M7/OLN2WZwud9TuvHpcKrlEwqzKUUBkSaciGSHqz1/Rfsx3y+6PSqiGXxr9/PnP77r0b2VxuZk51Njt/OaOqk+fePXn2+vyH6vjCm8m3cVlL31//lvmydnLt1PrP+UdFV4uulitVNXWxUqmai7alS0W3ZKjesi3TtbRYdi2nbbxgV5aX62qWlyaSy47lumqW61qy6lqtaNWpq/nQLJbVMAydSMrxNhxhTn51bs7M7jrsxbq6I3RfvP1yrNMcx8k2Og/mV3u1LwAAMLj2rv+DWn/3+j+3ELRdrv9FqP97pNF29Yf6H0eC42TNZPPntx31PwAAAAAAAAAAAAAAAAAAAAAA/4INz0t5npcK2/AjLiIJEQmv+71P9MYBv/9X+rRddFnLP+4lROyXtXwtH7TBeLYgRbHFkilJyQ//eWgK+rPXczNT6htpfsnN/EotH/PPJvDzoXSn/Nn/p4O8yvvNXK2ZH5Fk6/oZScmJzutntvPhcQgrtfyoXLzQkjckJR8fSEVsWfKf6+3882nVazdzO9Yf8+ftJsrpGgAAAAAADApDt6Tb33+Dsx8Nf0JCfh8P8vv4+8CO9+thOc1LNAAAAAAAh8KtPy2Ztm05B+jEReQv4ke1E5OB2MaOzlUROfRFRaTRn1tOiEjwGT1I/OtWPFLKizBnWEQG4kmI2On3byYAAAAA3bZd9O8j9OlFD3cEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDxE/U8sHB+yVuRtvPtwoE94i3LxQ79BgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAB8isAAP//0KwZYw==")
r5 = inotify_init()
inotify_add_watch(r5, &(0x7f00000001c0)='.\x00', 0x4000423)
r6 = open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0)
write$FUSE_CREATE_OPEN(r6, &(0x7f0000000180)={0xa0, 0xfffffffffffffff5, 0x0, {{0x3, 0x1, 0x5, 0xa, 0x9, 0x1, {0x5, 0x17d, 0x4, 0x5, 0x100, 0x7cf4, 0x9, 0x7ffffffd, 0xfffffffe, 0x8000, 0x20000000, 0xee00, 0x0, 0x3ff, 0x8001}}, {0x0, 0x11}}}, 0xa0)
sendfile(r6, r6, &(0x7f0000000080)=0x2, 0x7f03)

3.064772589s ago: executing program 5 (id=591):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f00000000c0)=ANY=[@ANYBLOB="98ccb68df2a729da112f20240ed8182ab4b44cfe4e5f005d7491001800380d390000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7020000140000e5b7030000000700008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='sched_switch\x00', r5}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xe, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000000), &(0x7f0000000180)}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000005000000005e002200850000006d00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000006c0)=ANY=[@ANYBLOB="0209fd09030000002dbd7000fbdbdf250100180009c30000f9c10490dad34ba0b46ea097f3c58b6abb6be07e270ef9fb204d1076bf6808ef3c69b66717d2f7800e504146912de668024a503ba8057675a08524767d9306a3b0a78943d2f77a8829dc2e8f5bef7f4d4e35df2d0b8d5da191691ad959366cf6b9dad8f764597adb555951e7b07da6c9dbb142c9ca07f8e68aca6c57a88ce445624af19716496bf8b2ec2afdfa80b7c82c03703ee216d55c4adc096c5965c2c858415b85f237e96d3b40dff9c175600a6f11a2d28ffafb7936c74860ea63"], 0x18}}, 0x44884)

1.503046521s ago: executing program 7 (id=592):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
pidfd_send_signal(r1, 0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r2}, &(0x7f0000000800), &(0x7f0000000840)=r3}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)={0xc0, 0x0, 0x1, 0x505, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @private2}}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x2c, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MAXIP={0x14, 0x5, @dev={0xfe, 0x80, '\x00', 0x31}}, @CTA_NAT_V6_MINIP={0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}]}, 0xc0}, 0x1, 0x0, 0x0, 0x4040081}, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
inotify_init1(0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB], 0x50)

527.27106ms ago: executing program 7 (id=593):
close(0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x1ffffffffffffdf4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x41000, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000180)={'rose0\x00', 0x112})
ioctl$TUNSETQUEUE(r2, 0x400454d9, &(0x7f0000000100)={'vlan0\x00', 0x400})

510.829373ms ago: executing program 5 (id=594):
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x533, &(0x7f0000000b00)="$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")
r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x46, 0x822f41)
write$char_usb(r0, &(0x7f0000000040)="e2", 0x2778)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x2d)
fcntl$lock(0xffffffffffffffff, 0x26, 0x0)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000003c0), 0x40400, 0x0)
ioctl$TCSETS2(r6, 0x402c542b, 0x0)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000500)=@polexpire={0xcc, 0x1b, 0x1, 0x0, 0x0, {{{@in6=@private0, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}}}, [@mark={0xc}]}, 0xcc}, 0x1, 0x0, 0x0, 0x4044001}, 0x0)

509.248508ms ago: executing program 4 (id=595):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7f, 0x8b}, 0x0)
syslog(0x4, 0xfffffffffffffffc, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r4}, 0x18)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB, @ANYBLOB="0000000000000000b702"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r5}, 0x18)
r6 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x14, 0x1012, 0x1, 0x0, 0x4, {0x2}}, 0x14}}, 0x40088c4)
add_key$fscrypt_v1(0x0, &(0x7f0000000440)={'fscrypt:', @desc2}, &(0x7f00000002c0)={0x0, "6035ae1e0fe721441705322225930e6c1e3e2a51a92fd780bc34d7cf6e0236805b4377f7ab1a9b01c103a4c6a7ef54e6763fd7264c39ea00c508ba6062696138", 0x18}, 0x48, 0xfffffffffffffffe)
r7 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r7}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
r8 = inotify_init()
r9 = inotify_add_watch(r8, &(0x7f0000000200)='.\x00', 0x82000714)
inotify_rm_watch(r8, r9)

180.649697ms ago: executing program 6 (id=596):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x915f}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000002fc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000540)={r1, 0x0, 0xe40, 0xfffffe6d, &(0x7f0000000100)="5c71f91b05c413550230b4c817a628", 0x0, 0x1, 0x0, 0x302, 0x0, &(0x7f0000000180)='\x00', 0x0}, 0x48)
sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="44000096e8641cf661341274ed9a566d00100000", @ANYRES32=0x0, @ANYBLOB="00a5020000000000240012800b00010062726964676500001400028005002c00020000000800040000000080"], 0x44}}, 0x0)
r2 = socket(0x10, 0x80003, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000340), 0xa982, 0x0)
futex(&(0x7f00000001c0)=0x1, 0x4, 0x1, &(0x7f0000000280)={0x77359400}, &(0x7f0000000300), 0x1)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/stat\x00', 0x0, 0x0)
sendfile(r3, r4, 0x0, 0x20000023896)
ioctl$TCXONC(r3, 0x540a, 0x2)
ioctl$TIOCSERGETLSR(r3, 0x5459, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), r2)
syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)

0s ago: executing program 2 (id=597):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
timer_create(0x3, 0x0, &(0x7f0000000280))
timer_delete(0x0)

kernel console output (not intermixed with test programs):

2 compat=0 ip=0x7f815ab8e929 code=0x7ffc0000
[  102.706646][   T30] audit: type=1326 audit(1751176273.901:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5980 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f815ab8e929 code=0x7ffc0000
[  102.736967][   T30] audit: type=1326 audit(1751176273.901:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5980 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815ab8e929 code=0x7ffc0000
[  102.759738][ T5986] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  102.759787][ T5986] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  103.777350][   T30] audit: type=1326 audit(1751176273.911:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5980 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f815ab8e929 code=0x7ffc0000
[  103.845077][ T5986] EXT4-fs (loop4): 1 truncate cleaned up
[  103.898461][   T30] audit: type=1326 audit(1751176273.911:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5980 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815ab8e929 code=0x7ffc0000
[  103.920950][   T30] audit: type=1326 audit(1751176273.931:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5980 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f815ab8e929 code=0x7ffc0000
[  103.979131][ T5986] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.152859][ T6006] netlink: 'syz.4.12': attribute type 16 has an invalid length.
[  106.160958][ T6006] netlink: 64138 bytes leftover after parsing attributes in process `syz.4.12'.
[  107.061993][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.416676][ T5832] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.781624][ T6011] loop3: detected capacity change from 0 to 256
[  107.864792][ T6011] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  107.912448][ T6011] exFAT-fs (loop3): Medium has reported failures. Some data may be lost.
[  107.980746][ T6011] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d)
[  109.209493][ T6028] loop2: detected capacity change from 0 to 256
[  110.356571][ T6037] netlink: 12 bytes leftover after parsing attributes in process `syz.2.23'.
[  110.484276][ T6043] loop3: detected capacity change from 0 to 128
[  111.461981][ T6048] loop1: detected capacity change from 0 to 128
[  111.482659][ T6050] loop2: detected capacity change from 0 to 256
[  111.597985][ T6050] FAT-fs (loop2): count of clusters too big (66845694)
[  111.659453][ T6050] FAT-fs (loop2): Can't find a valid FAT filesystem
[  113.805345][ T6061] loop4: detected capacity change from 0 to 512
[  114.088900][ T6064] tipc: Started in network mode
[  114.094195][ T6064] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  114.107130][ T6064] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  114.119172][ T6064] tipc: Enabled bearer <udp:syz1>, priority 10
[  114.813442][ T6061] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  114.900442][ T6061] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  114.911606][ T6061] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c01c, mo2=0002]
[  114.920357][ T6061] System zones: 0-2, 18-18, 34-34
[  114.945931][ T6061] EXT4-fs error (device loop4): ext4_orphan_get:1393: inode #15: comm syz.4.31: iget: bad i_size value: 360287970189639680
[  114.964877][ T6061] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.31: couldn't read orphan inode 15 (err -117)
[  114.989686][ T6061] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.890134][ T5932] tipc: Node number set to 1
[  116.690000][ T6072] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  116.719098][ T6061] kthread_run failed with err -4
[  118.189583][ T5832] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.430210][ T6088] loop3: detected capacity change from 0 to 128
[  118.458998][ T6088] EXT4-fs (loop3): couldn't mount as ext2 due to feature incompatibilities
[  119.818634][ T6096] 9pnet_fd: Insufficient options for proto=fd
[  120.665146][ T6101] loop1: detected capacity change from 0 to 1024
[  120.799168][ T6101] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  122.192444][ T5837] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.318752][ T6121] loop0: detected capacity change from 0 to 128
[  122.601634][ T6125] loop1: detected capacity change from 0 to 2048
[  122.781392][ T6125] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  123.593767][ T5837] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.952415][ T6141] loop1: detected capacity change from 0 to 512
[  124.054069][ T6141] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  124.131990][ T6141] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  124.145267][ T6141] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c01c, mo2=0002]
[  124.155138][ T6141] System zones: 0-2, 18-18, 34-34
[  124.172744][ T6141] EXT4-fs error (device loop1): ext4_orphan_get:1393: inode #15: comm syz.1.49: iget: bad i_size value: 360287970189639680
[  124.205453][ T6141] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.49: couldn't read orphan inode 15 (err -117)
[  124.238562][ T6141] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  124.991290][ T6147] loop4: detected capacity change from 0 to 256
[  125.226045][ T6147] FAT-fs (loop4): Directory bread(block 64) failed
[  126.217828][ T6147] FAT-fs (loop4): Directory bread(block 65) failed
[  126.224546][ T6147] FAT-fs (loop4): Directory bread(block 66) failed
[  127.203533][ T6147] FAT-fs (loop4): Directory bread(block 67) failed
[  127.253517][ T6147] FAT-fs (loop4): Directory bread(block 68) failed
[  127.392490][ T6147] FAT-fs (loop4): Directory bread(block 69) failed
[  127.440385][ T6147] FAT-fs (loop4): Directory bread(block 70) failed
[  127.490363][ T6147] FAT-fs (loop4): Directory bread(block 71) failed
[  127.560128][ T6147] FAT-fs (loop4): Directory bread(block 72) failed
[  127.605735][ T6147] FAT-fs (loop4): Directory bread(block 73) failed
[  127.740137][ T5837] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.973968][ T6161] loop2: detected capacity change from 0 to 512
[  129.316795][ T6161] EXT4-fs (loop2): 1 orphan inode deleted
[  129.335356][ T6161] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.354077][ T6161] ext4 filesystem being mounted at /10/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.749513][   T37] __quota_error: 7 callbacks suppressed
[  129.749537][   T37] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  129.799353][   T37] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:3: Failed to release dquot type 1
[  129.966052][ T6173] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  130.307981][ T6176] Bluetooth: MGMT ver 1.23
[  130.743676][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.078080][ T6198] loop0: detected capacity change from 0 to 256
[  132.148491][   T30] audit: type=1326 audit(1751176303.821:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6200 comm="syz.1.68" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815ab8e929 code=0x7ffc0000
[  132.236511][   T30] audit: type=1326 audit(1751176303.841:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6200 comm="syz.1.68" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815ab8e929 code=0x7ffc0000
[  132.364099][   T30] audit: type=1326 audit(1751176303.841:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6200 comm="syz.1.68" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f815ab8e929 code=0x7ffc0000
[  132.458409][   T30] audit: type=1326 audit(1751176303.841:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6200 comm="syz.1.68" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815ab8e929 code=0x7ffc0000
[  132.853883][ T6207] bridge0: port 3(syz_tun) entered blocking state
[  132.861171][ T6207] bridge0: port 3(syz_tun) entered disabled state
[  132.869036][ T6207] syz_tun: entered allmulticast mode
[  132.885812][ T6207] syz_tun: entered promiscuous mode
[  132.894945][ T6207] bridge0: port 3(syz_tun) entered blocking state
[  132.901675][ T6207] bridge0: port 3(syz_tun) entered forwarding state
[  132.961567][ T6207] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  132.992309][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  132.999515][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  133.121124][   T30] audit: type=1326 audit(1751176303.841:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6200 comm="syz.1.68" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815ab8e929 code=0x7ffc0000
[  133.170374][   T30] audit: type=1326 audit(1751176303.851:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6200 comm="syz.1.68" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f815ab8e929 code=0x7ffc0000
[  133.212229][   T30] audit: type=1326 audit(1751176303.851:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6200 comm="syz.1.68" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815ab8e929 code=0x7ffc0000
[  133.236009][   T30] audit: type=1326 audit(1751176303.861:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6200 comm="syz.1.68" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f815ab8e929 code=0x7ffc0000
[  133.265892][   T30] audit: type=1326 audit(1751176303.861:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6200 comm="syz.1.68" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815ab8e929 code=0x7ffc0000
[  133.780110][ T6222] loop3: detected capacity change from 0 to 256
[  134.720558][ T6222] FAT-fs (loop3): Directory bread(block 64) failed
[  134.732997][ T6199] loop4: detected capacity change from 0 to 40427
[  134.777330][ T6222] FAT-fs (loop3): Directory bread(block 65) failed
[  134.795848][ T6199] F2FS-fs (loop4): build fault injection rate: 690
[  134.817195][ T6199] F2FS-fs (loop4): heap/no_heap options were deprecated
[  134.828449][ T6222] FAT-fs (loop3): Directory bread(block 66) failed
[  134.835047][ T6222] FAT-fs (loop3): Directory bread(block 67) failed
[  134.870478][ T6199] F2FS-fs (loop4): Image doesn't support compression
[  134.897961][ T6222] FAT-fs (loop3): Directory bread(block 68) failed
[  134.943118][ T6222] FAT-fs (loop3): Directory bread(block 69) failed
[  134.960305][ T6199] F2FS-fs (loop4): invalid crc value
[  135.009597][ T6222] FAT-fs (loop3): Directory bread(block 70) failed
[  135.016188][ T6222] FAT-fs (loop3): Directory bread(block 71) failed
[  135.037244][ T6222] FAT-fs (loop3): Directory bread(block 72) failed
[  135.043845][ T6222] FAT-fs (loop3): Directory bread(block 73) failed
[  135.050974][ T6199] F2FS-fs (loop4): Failed to start F2FS issue_checkpoint_thread (-4)
[  135.306775][ T6235] loop0: detected capacity change from 0 to 1024
[  135.401501][ T6235] EXT4-fs (loop0): stripe (8) is not aligned with cluster size (4096), stripe is disabled
[  135.787574][ T6235] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  135.873309][ T6235] EXT4-fs (loop0): orphan cleanup on readonly fs
[  135.957522][ T6235] EXT4-fs error (device loop0): __ext4_get_inode_loc:4791: comm syz.0.78: Invalid inode table block 0 in block_group 0
[  136.094518][ T6235] EXT4-fs (loop0): Remounting filesystem read-only
[  136.126112][ T6235] __quota_error: 38 callbacks suppressed
[  136.126133][ T6235] Quota error (device loop0): write_blk: dquota write failed
[  136.172638][ T6235] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  136.193085][ T6235] EXT4-fs (loop0): 1 truncate cleaned up
[  136.281461][ T6235] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  136.491852][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.594764][   T30] audit: type=1326 audit(1751176308.271:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6258 comm="syz.1.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815ab8e929 code=0x7ffc0000
[  136.701545][ T6261] loop2: detected capacity change from 0 to 1024
[  136.709271][   T30] audit: type=1326 audit(1751176308.271:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6258 comm="syz.1.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815ab8e929 code=0x7ffc0000
[  136.802664][ T6261] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.818103][   T30] audit: type=1326 audit(1751176308.281:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6258 comm="syz.1.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=333 compat=0 ip=0x7f815ab8e929 code=0x7ffc0000
[  137.543423][   T30] audit: type=1326 audit(1751176308.281:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6258 comm="syz.1.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815ab8e929 code=0x7ffc0000
[  137.650745][   T30] audit: type=1326 audit(1751176308.321:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6258 comm="syz.1.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815ab8e929 code=0x7ffc0000
[  137.718781][ T6272] loop4: detected capacity change from 0 to 2048
[  137.776525][   T30] audit: type=1800 audit(1751176309.121:71): pid=6261 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.88" name="bus" dev="loop2" ino=18 res=0 errno=0
[  137.820327][ T5886] Alternate GPT is invalid, using primary GPT.
[  137.827451][   T30] audit: type=1326 audit(1751176309.491:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6277 comm="syz.0.92" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd736f8e929 code=0x7ffc0000
[  137.838422][ T6279] loop3: detected capacity change from 0 to 1024
[  137.874824][ T6261] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.88: Allocating blocks 497-513 which overlap fs metadata
[  137.889550][ T5886]  loop4: p1 p2 p3
[  137.946530][ T6279] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.055320][   T30] audit: type=1326 audit(1751176309.491:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6277 comm="syz.0.92" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd736f8e929 code=0x7ffc0000
[  138.154542][ T6261] EXT4-fs (loop2): pa ffff888022dbe3a0: logic 256, phys. 385, len 8
[  138.163030][ T6261] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 1
[  138.231368][ T5886] udevd[5886]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  138.233929][ T6246] udevd[6246]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[  138.258470][ T6077] udevd[6077]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[  138.332836][ T6287] process 'syz.0.92' launched '/dev/fd/8' with NULL argv: empty string added
[  138.624884][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.624849][ T5842] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.787941][ T6289] loop4: detected capacity change from 0 to 40427
[  139.844153][ T6289] F2FS-fs (loop4): invalid crc value
[  140.275587][ T6289] F2FS-fs (loop4): Start checkpoint disabled!
[  140.376675][ T6305] loop0: detected capacity change from 0 to 1024
[  140.384549][ T6289] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  140.398548][ T6305] EXT4-fs: Ignoring removed nobh option
[  140.414623][ T6305] EXT4-fs: Ignoring removed bh option
[  140.469692][ T6305] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.650114][ T5971] kworker/u8:8: attempt to access beyond end of device
[  140.650114][ T5971] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  140.674148][ T5971] CPU: 1 UID: 0 PID: 5971 Comm: kworker/u8:8 Not tainted 6.16.0-rc3-next-20250627-syzkaller #0 PREEMPT(full) 
[  140.674180][ T5971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  140.674195][ T5971] Workqueue: writeback wb_workfn (flush-7:4)
[  140.674250][ T5971] Call Trace:
[  140.674259][ T5971]  <TASK>
[  140.674269][ T5971]  dump_stack_lvl+0x189/0x250
[  140.674309][ T5971]  ? __pfx_dump_stack_lvl+0x10/0x10
[  140.674341][ T5971]  ? __pfx_queue_work_on+0x10/0x10
[  140.674373][ T5971]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[  140.674403][ T5971]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  140.674435][ T5971]  ? f2fs_hw_is_readonly+0x39b/0x470
[  140.674472][ T5971]  f2fs_handle_critical_error+0x37c/0x540
[  140.674515][ T5971]  f2fs_write_end_io+0x495/0x810
[  140.674532][ T5971]  ? blkg_put+0x22/0x240
[  140.674580][ T5971]  __submit_merged_bio+0x27a/0x6a0
[  140.674619][ T5971]  __submit_merged_write_cond+0x255/0x530
[  140.674657][ T5971]  f2fs_write_data_pages+0x261d/0x3000
[  140.674731][ T5971]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  140.674760][ T5971]  ? __local_bh_enable_ip+0x12d/0x1c0
[  140.674811][ T5971]  ? rcu_is_watching+0x15/0xb0
[  140.674944][ T5971]  ? unwind_next_frame+0xa5/0x2390
[  140.674972][ T5971]  ? unwind_next_frame+0x19ae/0x2390
[  140.675004][ T5971]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  140.675038][ T5971]  do_writepages+0x32b/0x550
[  140.675076][ T5971]  ? reacquire_held_locks+0x127/0x1d0
[  140.675105][ T5971]  ? writeback_sb_inodes+0x384/0x1010
[  140.675145][ T5971]  __writeback_single_inode+0x145/0xff0
[  140.675173][ T5971]  ? do_raw_spin_unlock+0x122/0x240
[  140.675200][ T5971]  writeback_sb_inodes+0x6c7/0x1010
[  140.675228][ T5971]  ? unwind_next_frame+0xa5/0x2390
[  140.675290][ T5971]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  140.675376][ T5971]  ? rcu_is_watching+0x15/0xb0
[  140.675418][ T5971]  wb_writeback+0x43b/0xaf0
[  140.675458][ T5971]  ? queue_io+0x321/0x590
[  140.675491][ T5971]  ? __pfx_wb_writeback+0x10/0x10
[  140.675539][ T5971]  ? _raw_spin_unlock_irq+0x23/0x50
[  140.675575][ T5971]  wb_workfn+0x409/0xef0
[  140.675620][ T5971]  ? __pfx_wb_workfn+0x10/0x10
[  140.675650][ T5971]  ? __lock_acquire+0xab9/0xd20
[  140.675690][ T5971]  ? process_scheduled_works+0x9ef/0x17b0
[  140.675727][ T5971]  ? _raw_spin_unlock_irq+0x23/0x50
[  140.675753][ T5971]  ? process_scheduled_works+0x9ef/0x17b0
[  140.675779][ T5971]  ? process_scheduled_works+0x9ef/0x17b0
[  140.675809][ T5971]  process_scheduled_works+0xade/0x17b0
[  140.675874][ T5971]  ? __pfx_process_scheduled_works+0x10/0x10
[  140.675926][ T5971]  worker_thread+0x8a0/0xda0
[  140.675957][ T5971]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  140.675999][ T5971]  ? __kthread_parkme+0x7b/0x200
[  140.676042][ T5971]  kthread+0x711/0x8a0
[  140.676068][ T5971]  ? __pfx_worker_thread+0x10/0x10
[  140.676096][ T5971]  ? __pfx_kthread+0x10/0x10
[  140.676120][ T5971]  ? _raw_spin_unlock_irq+0x23/0x50
[  140.676148][ T5971]  ? lockdep_hardirqs_on+0x9c/0x150
[  140.676176][ T5971]  ? __pfx_kthread+0x10/0x10
[  140.676199][ T5971]  ret_from_fork+0x3fc/0x770
[  140.676232][ T5971]  ? __pfx_ret_from_fork+0x10/0x10
[  140.676268][ T5971]  ? __switch_to_asm+0x39/0x70
[  140.676287][ T5971]  ? __switch_to_asm+0x33/0x70
[  140.676306][ T5971]  ? __pfx_kthread+0x10/0x10
[  140.676328][ T5971]  ret_from_fork_asm+0x1a/0x30
[  140.676368][ T5971]  </TASK>
[  140.676378][ T5971] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  140.709971][ T6311] loop3: detected capacity change from 0 to 128
[  141.040337][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.084906][ T6311] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  141.114615][ T6311] ext4 filesystem being mounted at /20/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  142.414524][ T5842] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  143.121322][ T6342] netlink: 4 bytes leftover after parsing attributes in process `syz.4.107'.
[  143.224782][ T6336] loop3: detected capacity change from 0 to 40427
[  143.251747][ T6336] F2FS-fs (loop3): Image doesn't support compression
[  143.259267][ T6336] F2FS-fs (loop3): Unrecognized mount option "whint_mode=fs-based" or missing value
[  144.421944][   T30] kauditd_printk_skb: 22 callbacks suppressed
[  144.421964][   T30] audit: type=1326 audit(1751176572.100:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6350 comm="syz.3.109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5563f8e929 code=0x7ffc0000
[  144.460834][   T30] audit: type=1326 audit(1751176572.110:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6350 comm="syz.3.109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5563f8e929 code=0x7ffc0000
[  144.485369][   T30] audit: type=1326 audit(1751176572.110:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6350 comm="syz.3.109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5563f8e929 code=0x7ffc0000
[  144.513928][   T30] audit: type=1326 audit(1751176572.110:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6350 comm="syz.3.109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5563f8e929 code=0x7ffc0000
[  144.552604][ T6317] syzkaller0: entered allmulticast mode
[  144.859762][ T6357] loop3: detected capacity change from 0 to 128
[  144.867633][ T6357] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  144.880177][   T30] audit: type=1326 audit(1751176572.110:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6350 comm="syz.3.109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5563f8e929 code=0x7ffc0000
[  145.237060][ T6357] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  145.928818][   T30] audit: type=1326 audit(1751176572.110:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6350 comm="syz.3.109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5563f8e929 code=0x7ffc0000
[  145.955047][   T30] audit: type=1326 audit(1751176572.110:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6350 comm="syz.3.109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5563f8e929 code=0x7ffc0000
[  146.547724][ T6367] loop0: detected capacity change from 0 to 128
[  146.613915][ T6367] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  146.742869][ T6367] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  146.929664][   T30] audit: type=1326 audit(1751176572.110:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6350 comm="syz.3.109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5563f8e929 code=0x7ffc0000
[  146.952220][   T30] audit: type=1326 audit(1751176572.110:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6350 comm="syz.3.109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=265 compat=0 ip=0x7f5563f8e929 code=0x7ffc0000
[  146.974570][   T30] audit: type=1326 audit(1751176572.110:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6350 comm="syz.3.109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5563f8e929 code=0x7ffc0000
[  147.336421][ T6377] loop4: detected capacity change from 0 to 512
[  147.368582][ T6377] EXT4-fs: Ignoring removed mblk_io_submit option
[  147.419153][ T6377] EXT4-fs: Ignoring removed mblk_io_submit option
[  147.670230][ T6377] EXT4-fs (loop4): Test dummy encryption mode enabled
[  147.695735][ T6377] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  147.826850][ T6377] EXT4-fs (loop4): 1 truncate cleaned up
[  147.859061][ T6377] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  148.105891][ T5832] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.293232][ T6391] loop4: detected capacity change from 0 to 512
[  148.375708][ T6391] EXT4-fs error (device loop4): ext4_orphan_get:1393: inode #15: comm syz.4.120: casefold flag without casefold feature
[  148.427462][ T6391] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.120: couldn't read orphan inode 15 (err -117)
[  148.482426][ T6391] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.526892][ T6394] fuse: root generation should be zero
[  148.819407][ T6397] loop3: detected capacity change from 0 to 512
[  148.887543][ T6397] EXT4-fs: Ignoring removed nomblk_io_submit option
[  148.921930][ T6397] EXT4-fs (loop3): Test dummy encryption mode enabled
[  148.972923][ T6397] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2848: Unable to expand inode 17. Delete some EAs or run e2fsck.
[  149.012803][ T6397] EXT4-fs (loop3): 1 truncate cleaned up
[  149.024655][ T6397] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  149.328698][ T5832] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.501627][ T6404] usb usb8: usbfs: process 6404 (syz.3.122) did not claim interface 0 before use
[  149.717962][   T24] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  149.924195][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  149.940852][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  149.969367][   T24] usb 5-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[  149.992698][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  150.019182][   T24] usb 5-1: config 0 descriptor??
[  150.471626][   T24] cp2112 0003:10C4:EA90.0001: unknown main item tag 0x0
[  150.518668][   T24] cp2112 0003:10C4:EA90.0001: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.4-1/input0
[  150.648340][ T6379] bridge0: port 1(bridge_slave_0) entered disabled state
[  150.676478][ T6379] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  150.677527][   T24] cp2112 0003:10C4:EA90.0001: Part Number: 0x82 Device Version: 0xFE
[  151.035255][ T6414] loop1: detected capacity change from 0 to 1024
[  151.045960][ T6414] EXT4-fs: Ignoring removed bh option
[  151.125771][ T6414] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.569171][ T5842] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.023371][   T24] cp2112 0003:10C4:EA90.0001: error reading lock byte: -71
[  153.781002][   T24] usb 5-1: USB disconnect, device number 2
[  153.794396][ T5837] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.107164][ T5887] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  154.412883][ T6442] syzkaller0: entered promiscuous mode
[  154.418564][ T6442] syzkaller0: entered allmulticast mode
[  154.489391][ T5887] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  154.651259][ T6448] 9pnet_fd: Insufficient options for proto=fd
[  154.685349][ T5887] usb 1-1: config 1 interface 0 altsetting 253 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  154.859564][ T5887] usb 1-1: config 1 interface 0 has no altsetting 0
[  154.956713][ T5887] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  155.113096][ T5887] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  155.137146][ T5887] usb 1-1: SerialNumber: syz
[  155.279429][ T5887] cdc_ether 1-1:1.0: probe with driver cdc_ether failed with error -22
[  155.471255][ T5887] usb 1-1: USB disconnect, device number 2
[  155.518301][ T6437] loop2: detected capacity change from 0 to 40427
[  155.562393][ T6437] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  155.595012][ T6437] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  155.810199][ T6437] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  155.821677][ T6437] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  156.009811][ T5831] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  156.031898][ T5831] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  156.060447][ T5831] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  156.090471][ T5831] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  156.134756][ T5831] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  156.157929][ T5831] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  156.182822][ T5831] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  156.428395][ T5887] usb 1-1: new low-speed USB device number 3 using dummy_hcd
[  156.605747][ T5887] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  156.641199][ T5887] usb 1-1: config 0 interface 0 altsetting 6 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  156.675690][ T5887] usb 1-1: config 0 interface 0 has no altsetting 0
[  156.693716][ T5887] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  156.713213][ T5887] usb 1-1: config 0 interface 0 altsetting 6 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  156.743273][ T5887] usb 1-1: config 0 interface 0 has no altsetting 0
[  156.762110][ T5887] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  156.781872][ T5887] usb 1-1: config 0 interface 0 altsetting 6 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  156.829616][ T5887] usb 1-1: config 0 interface 0 has no altsetting 0
[  156.840348][ T5887] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  156.854913][ T5887] usb 1-1: config 0 interface 0 altsetting 6 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  156.920340][ T5887] usb 1-1: config 0 interface 0 has no altsetting 0
[  156.941617][ T5887] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  156.968695][ T5887] usb 1-1: config 0 interface 0 altsetting 6 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  157.002247][ T5887] usb 1-1: config 0 interface 0 has no altsetting 0
[  157.032268][ T5887] usb 1-1: New USB device found, idVendor=046d, idProduct=c286, bcdDevice= 0.00
[  157.061153][ T5887] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.084436][ T5887] usb 1-1: config 0 descriptor??
[  157.118863][ T5887] hub 1-1:0.0: Invalid hub with more than one config or interface
[  157.151427][ T5887] hub 1-1:0.0: probe with driver hub failed with error -22
[  157.311019][ T5887] usb 1-1: USB disconnect, device number 3
[  157.579673][ T6468] loop2: detected capacity change from 0 to 1024
[  157.648345][ T6468] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  157.916274][ T6478] loop4: detected capacity change from 0 to 512
[  157.933774][ T6478] EXT4-fs: Ignoring removed oldalloc option
[  158.633783][ T6478] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  158.854590][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.865906][ T6478] EXT4-fs (loop4): orphan cleanup on readonly fs
[  158.932318][ T6478] __quota_error: 9 callbacks suppressed
[  158.932341][ T6478] Quota error (device loop4): do_check_range: Getting block 196613 out of range 1-5
[  158.970917][ T6478] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  159.089760][ T6478] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.145: Failed to acquire dquot type 1
[  159.216665][ T6478] EXT4-fs (loop4): 1 truncate cleaned up
[  159.249142][ T6478] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  160.334382][ T6508] netlink: 16 bytes leftover after parsing attributes in process `syz.1.154'.
[  160.343403][ T6508] netlink: 12 bytes leftover after parsing attributes in process `syz.1.154'.
[  160.966283][ T6510] loop0: detected capacity change from 0 to 1024
[  161.086465][ T6510] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.335514][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.319181][ T6533] loop1: detected capacity change from 0 to 512
[  163.358346][ T6533] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  163.414252][ T6533] EXT4-fs (loop1): 1 truncate cleaned up
[  163.444058][ T6533] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.603288][ T6531] loop0: detected capacity change from 0 to 40427
[  163.655588][ T6531] F2FS-fs (loop0): Image doesn't support compression
[  163.660881][ T5837] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.676250][ T6531] F2FS-fs (loop0): Unrecognized mount option "whint_mode=fs-based" or missing value
[  165.090526][ T5832] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.940269][ T6556] syz.2.169 (6556) used greatest stack depth: 17992 bytes left
[  166.150977][ T6561] loop1: detected capacity change from 0 to 512
[  166.182209][ T6561] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  166.202892][ T6564] netlink: 24 bytes leftover after parsing attributes in process `syz.0.173'.
[  167.970455][ T6583] loop2: detected capacity change from 0 to 1024
[  168.230514][ T6561] EXT4-fs (loop1): 1 truncate cleaned up
[  168.288319][ T6561] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.321826][ T6594] loop3: detected capacity change from 0 to 256
[  169.477480][ T6596] loop0: detected capacity change from 0 to 512
[  169.503918][ T6594] FAT-fs (loop3): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  169.571555][ T6596] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.628119][ T5837] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.634504][ T6596] ext4 filesystem being mounted at /38/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  169.765762][   T33] FAT-fs (loop3): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  169.818074][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.994830][ T6612] loop3: detected capacity change from 0 to 512
[  170.015544][ T6612] EXT4-fs: journaled quota format not specified
[  170.075655][   T30] audit: type=1326 audit(1751176597.750:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6611 comm="syz.3.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5563f8e929 code=0x7ffc0000
[  170.102375][   T30] audit: type=1326 audit(1751176597.750:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6611 comm="syz.3.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5563f8e929 code=0x7ffc0000
[  170.164592][   T30] audit: type=1326 audit(1751176597.750:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6611 comm="syz.3.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5563f8e929 code=0x7ffc0000
[  170.874830][   T30] audit: type=1326 audit(1751176597.750:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6611 comm="syz.3.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5563f8e929 code=0x7ffc0000
[  170.920135][   T30] audit: type=1326 audit(1751176597.750:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6611 comm="syz.3.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5563f8e929 code=0x7ffc0000
[  170.960526][   T30] audit: type=1326 audit(1751176597.750:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6611 comm="syz.3.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5563f8e929 code=0x7ffc0000
[  170.997240][   T30] audit: type=1326 audit(1751176597.750:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6611 comm="syz.3.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5563f8e929 code=0x7ffc0000
[  171.064948][   T30] audit: type=1326 audit(1751176597.750:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6611 comm="syz.3.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f5563f8e929 code=0x7ffc0000
[  171.205731][   T30] audit: type=1326 audit(1751176597.750:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6611 comm="syz.3.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5563f8e929 code=0x7ffc0000
[  171.338859][   T30] audit: type=1326 audit(1751176597.750:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6611 comm="syz.3.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f5563f8e929 code=0x7ffc0000
[  171.390806][ T6624] kvm: pic: non byte write
[  171.581318][ T6628] loop1: detected capacity change from 0 to 512
[  171.589144][ T6628] EXT4-fs: Ignoring removed i_version option
[  171.595284][ T6628] ext4: Unknown parameter 'seclabel'
[  172.547686][ T6638] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  173.502458][ T6645] loop0: detected capacity change from 0 to 512
[  173.525775][ T6645] EXT4-fs: Ignoring removed mblk_io_submit option
[  173.579406][ T6645] EXT4-fs: inline encryption not supported
[  173.585359][ T6645] EXT4-fs: Ignoring removed mblk_io_submit option
[  173.668517][ T6645] EXT4-fs (loop0): Test dummy encryption mode enabled
[  173.690394][ T6645] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  173.734955][ T6645] EXT4-fs (loop0): 1 truncate cleaned up
[  173.749006][ T6645] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.789997][ T6645] fscrypt: AES-256-XTS using implementation "xts-aes-aesni-avx"
[  174.256000][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.102036][ T6641] loop2: detected capacity change from 0 to 40427
[  175.183060][ T6641] F2FS-fs (loop2): Image doesn't support compression
[  175.212039][ T6641] F2FS-fs (loop2): Unrecognized mount option "whint_mode=fs-based" or missing value
[  175.778701][ T6667] loop0: detected capacity change from 0 to 512
[  175.893059][ T6667] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  175.901247][ T6667] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  175.910185][ T6667] System zones: 0-1, 15-15, 18-18, 34-34
[  175.918460][ T6667] EXT4-fs (loop0): orphan cleanup on readonly fs
[  175.925513][ T6667] __quota_error: 22 callbacks suppressed
[  175.925553][ T6667] Quota error (device loop0): v2_read_header: Failed header read: expected=8 got=0
[  175.941446][ T6667] EXT4-fs warning (device loop0): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  175.956101][ T6667] EXT4-fs (loop0): Cannot turn on quotas: error -22
[  176.002376][ T6667] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.198: bg 0: block 40: padding at end of block bitmap is not set
[  176.024533][ T6667] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  176.041880][ T6667] EXT4-fs (loop0): 1 truncate cleaned up
[  176.060946][ T6667] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  176.359771][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.489013][ T6663] syzkaller0: entered promiscuous mode
[  176.494587][ T6663] syzkaller0: entered allmulticast mode
[  177.176318][ T6682] loop2: detected capacity change from 0 to 2048
[  177.244601][ T5876]  loop2: p1 < > p3
[  177.280289][ T5876] loop2: p3 size 134217728 extends beyond EOD, truncated
[  177.333814][ T6682]  loop2: p1 < > p3
[  177.368017][ T6682] loop2: p3 size 134217728 extends beyond EOD, truncated
[  177.374009][ T6684] loop1: detected capacity change from 0 to 512
[  177.385493][ T6684] EXT4-fs: Ignoring removed i_version option
[  177.424423][ T6684] ext4: Unknown parameter 'seclabel'
[  177.755760][ T5876] udevd[5876]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  177.766477][ T5886] udevd[5886]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  177.834995][ T5886] udevd[5886]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  177.844526][ T5876] udevd[5876]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  178.028391][ T6693] loop2: detected capacity change from 0 to 1024
[  178.052594][ T6693] EXT4-fs: Ignoring removed nomblk_io_submit option
[  178.100061][ T6693] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  178.280570][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.021271][ T6689] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wireguard%d": -EINTR
[  181.211449][ T6712] loop4: detected capacity change from 0 to 256
[  181.234874][ T6712] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  181.254078][ T6714] netlink: 12 bytes leftover after parsing attributes in process `syz.0.213'.
[  181.263418][ T6712] exFAT-fs (loop4): Medium has reported failures. Some data may be lost.
[  181.284444][ T6712] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  181.306709][ T6714] netlink: 10 bytes leftover after parsing attributes in process `syz.0.213'.
[  181.368818][ T6712] xt_bpf: check failed: parse error
[  181.782885][   T30] audit: type=1326 audit(1751176609.450:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6717 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815ab8e929 code=0x7fc00000
[  182.069821][   T30] audit: type=1326 audit(1751176609.450:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6717 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f815ab8e929 code=0x7fc00000
[  182.356135][   T30] audit: type=1326 audit(1751176609.450:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6717 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815ab8e929 code=0x7fc00000
[  182.497312][   T30] audit: type=1326 audit(1751176609.450:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6717 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815ab8e929 code=0x7fc00000
[  182.616104][   T30] audit: type=1326 audit(1751176609.450:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6717 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815ab8e929 code=0x7fc00000
[  182.746587][   T30] audit: type=1326 audit(1751176609.450:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6717 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815ab8e929 code=0x7fc00000
[  182.804434][   T30] audit: type=1326 audit(1751176609.450:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6717 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815ab8e929 code=0x7fc00000
[  182.864896][   T30] audit: type=1326 audit(1751176609.450:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6717 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815ab8e929 code=0x7fc00000
[  182.929285][   T30] audit: type=1326 audit(1751176609.450:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6717 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815ab8e929 code=0x7fc00000
[  182.961465][   T30] audit: type=1326 audit(1751176609.450:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6717 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815ab8e929 code=0x7fc00000
[  182.994347][ T5885] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  183.165374][ T6730] xt_CT: You must specify a L4 protocol and not use inversions on it
[  184.087159][ T5885] usb 1-1: Using ep0 maxpacket: 32
[  184.099417][ T5885] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  184.264659][ T5885] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  184.274691][ T5885] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  184.288009][ T5885] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  184.315233][ T5885] usb 1-1: config 0 descriptor??
[  184.368628][ T5885] hub 1-1:0.0: USB hub found
[  184.502365][ T6743] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  184.513817][ T6743] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  184.567425][ T5885] hub 1-1:0.0: 2 ports detected
[  184.587289][ T6743] loop4: detected capacity change from 0 to 256
[  184.970199][ T6729] Zero length message leads to an empty skb
[  185.153369][ T6756] loop4: detected capacity change from 0 to 128
[  185.175701][ T6756] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  185.253497][ T6756] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  185.996034][ T5885] usb 1-1: USB disconnect, device number 4
[  186.684567][ T6764] loop1: detected capacity change from 0 to 512
[  186.736472][ T6763] loop2: detected capacity change from 0 to 2048
[  186.874593][ T6763]  loop2: p1 < > p3
[  186.957623][ T6763] loop2: p3 size 134217728 extends beyond EOD, truncated
[  187.197933][   T33] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  187.337299][ T5876] udevd[5876]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  187.585161][ T6781] loop0: detected capacity change from 0 to 1024
[  187.592800][ T6781] EXT4-fs: Ignoring removed bh option
[  187.879681][ T5886] udevd[5886]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  188.780205][ T6781] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  189.570597][ T6793] loop3: detected capacity change from 0 to 256
[  190.440354][ T6783] netlink: 4 bytes leftover after parsing attributes in process `syz.4.233'.
[  191.047816][ T6788] netlink: 12 bytes leftover after parsing attributes in process `syz.4.233'.
[  191.469185][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.791824][ T6813] loop1: detected capacity change from 0 to 128
[  193.152327][ T6813] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  193.183544][ T6813] ext4 filesystem being mounted at /46/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  193.827856][ T6819] 
@ÿ: renamed from bond_slave_0 (while UP)
[  194.803941][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  194.818286][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  194.833203][ T5837] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  196.343851][ T6833] loop3: detected capacity change from 0 to 128
[  196.352984][ T6833] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  196.415044][ T6833] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  197.040925][ T6839] loop1: detected capacity change from 0 to 512
[  197.137229][ T6839] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  197.215343][ T6838] loop2: detected capacity change from 0 to 2048
[  197.278590][ T6839] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  197.396733][ T6838] EXT4-fs (loop2): mounted filesystem 00000000-0700-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  197.419521][ T6839] ext4 filesystem being mounted at /47/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  198.050577][ T6851] netlink: 'syz.2.246': attribute type 4 has an invalid length.
[  198.888998][   T30] kauditd_printk_skb: 56 callbacks suppressed
[  198.889017][   T30] audit: type=1326 audit(1751176626.560:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6852 comm="syz.4.251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbcd8e929 code=0x7ffc0000
[  199.009779][   T30] audit: type=1326 audit(1751176626.560:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6852 comm="syz.4.251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbcd8e929 code=0x7ffc0000
[  199.047130][   T30] audit: type=1326 audit(1751176626.600:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6852 comm="syz.4.251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3bbcd8e929 code=0x7ffc0000
[  199.126230][   T30] audit: type=1326 audit(1751176626.600:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6852 comm="syz.4.251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbcd8e929 code=0x7ffc0000
[  199.168955][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0700-0000-0000-000000000000.
[  199.202696][ T6859] loop4: detected capacity change from 0 to 512
[  199.224737][   T30] audit: type=1326 audit(1751176626.600:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6852 comm="syz.4.251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbcd8e929 code=0x7ffc0000
[  199.272442][ T5837] EXT4-fs error (device loop1): ext4_ext_check_inode:523: inode #12: comm syz-executor: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  199.292400][ T6859] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  199.305414][   T30] audit: type=1326 audit(1751176626.600:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6852 comm="syz.4.251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3bbcd8e929 code=0x7ffc0000
[  199.353483][ T5837] EXT4-fs error (device loop1): ext4_ext_check_inode:523: inode #12: comm syz-executor: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  199.386956][ T6859] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  199.468199][   T30] audit: type=1326 audit(1751176626.600:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6852 comm="syz.4.251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbcd8e929 code=0x7ffc0000
[  199.558025][ T6864] loop3: detected capacity change from 0 to 16
[  199.590410][ T6864] erofs (device loop3): mounted with root inode @ nid 36.
[  199.605828][ T6864] capability: warning: `syz.3.250' uses deprecated v2 capabilities in a way that may be insecure
[  199.640202][ T6859] ext4 filesystem being mounted at /47/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  200.355328][ T5832] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.388270][   T30] audit: type=1326 audit(1751176626.600:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6852 comm="syz.4.251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbcd8e929 code=0x7ffc0000
[  200.414462][   T30] audit: type=1326 audit(1751176626.610:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6852 comm="syz.4.251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f3bbcd8e929 code=0x7ffc0000
[  200.451889][   T30] audit: type=1326 audit(1751176626.610:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6852 comm="syz.4.251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbcd8e929 code=0x7ffc0000
[  201.554238][ T6875] loop3: detected capacity change from 0 to 1024
[  201.652492][ T6875] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  201.860230][ T5837] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  202.796224][ T6887] loop4: detected capacity change from 0 to 128
[  202.811187][ T6887] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  202.853019][ T6887] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  203.363033][ T5842] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.601523][ T6114] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  204.732475][ T6114] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  204.932072][ T6114] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.093601][ T6114] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.117597][ T5915] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  205.277299][ T5915] usb 3-1: Using ep0 maxpacket: 16
[  205.292910][ T5915] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  205.363332][ T5915] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  205.391103][ T5915] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  206.067250][ T5915] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  206.084463][ T5915] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  206.104110][ T5915] usb 3-1: config 0 descriptor??
[  206.506892][ T5830] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  206.516933][ T5830] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  206.536492][ T5830] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  206.798978][ T5830] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  206.806793][ T5830] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  206.825422][ T5915] microsoft 0003:045E:07DA.0002: unknown main item tag 0x0
[  206.887494][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[  206.935620][ T5915] microsoft 0003:045E:07DA.0002: unknown main item tag 0x0
[  206.995577][ T5915] microsoft 0003:045E:07DA.0002: unknown main item tag 0x0
[  207.007845][ T5915] microsoft 0003:045E:07DA.0002: unexpected long global item
[  207.045048][ T5915] microsoft 0003:045E:07DA.0002: parse failed
[  207.055061][ T5915] microsoft 0003:045E:07DA.0002: probe with driver microsoft failed with error -22
[  207.153279][ T6114] bridge_slave_1: left allmulticast mode
[  207.216222][ T6114] bridge_slave_1: left promiscuous mode
[  207.350054][ T6114] bridge0: port 2(bridge_slave_1) entered disabled state
[  207.351182][ T6912] loop0: detected capacity change from 0 to 1024
[  207.419562][ T5915] usb 3-1: USB disconnect, device number 2
[  207.443834][ T6114] bridge_slave_0: left allmulticast mode
[  207.451205][ T6912] EXT4-fs: Ignoring removed nobh option
[  207.460346][ T6114] bridge_slave_0: left promiscuous mode
[  207.460803][ T6912] EXT4-fs: Ignoring removed bh option
[  207.469307][ T6114] bridge0: port 1(bridge_slave_0) entered disabled state
[  207.488477][ T6912] EXT4-fs (loop0): Cannot use DAX on a filesystem that may contain inline data
[  207.790255][ T6917] x_tables: duplicate underflow at hook 4
[  208.083341][ T6924] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  208.243556][ T6927] loop3: detected capacity change from 0 to 1024
[  208.312537][ T6927] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  209.028101][ T5830] Bluetooth: hci3: command tx timeout
[  209.365160][ T5842] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.529071][ T6114] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  209.577695][ T6114] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  209.623608][ T6114] bond0 (unregistering): Released all slaves
[  209.684877][ T6913] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[  209.714069][ T6913] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[  209.761591][ T6913] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  210.079401][ T6943] loop3: detected capacity change from 0 to 1024
[  210.127667][ T6943] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  210.186558][ T6943] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  210.242186][ T6943] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  210.307188][ T6943] JBD2: no valid journal superblock found
[  210.312999][ T6943] EXT4-fs (loop3): Could not load journal inode
[  210.753336][ T6957] loop0: detected capacity change from 0 to 512
[  210.810246][ T6957] EXT4-fs: Ignoring removed mblk_io_submit option
[  210.866414][ T6957] EXT4-fs: inline encryption not supported
[  210.931464][ T6957] EXT4-fs: Ignoring removed mblk_io_submit option
[  210.978272][ T6957] EXT4-fs (loop0): Test dummy encryption mode enabled
[  210.986012][ T6957] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  211.087077][ T5838] Bluetooth: hci3: command tx timeout
[  211.097663][ T6957] EXT4-fs (loop0): 1 truncate cleaned up
[  211.115184][ T6957] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  211.173743][ T6957] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[  211.437533][ T5827] EXT4-fs error (device loop0): ext4_readdir:264: inode #11: block 54: comm syz-executor: path /59/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  211.504699][ T5827] EXT4-fs (loop0): Remounting filesystem read-only
[  211.654357][ T6114] hsr_slave_0: left promiscuous mode
[  211.683434][ T6114] hsr_slave_1: left promiscuous mode
[  211.698187][ T6114] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  211.727267][ T6114] batman_adv: batadv0: Removing interface: batadv_slave_0
[  211.747300][ T5915] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  211.768058][ T6114] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  211.775535][ T6114] batman_adv: batadv0: Removing interface: batadv_slave_1
[  211.800155][ T5838] Bluetooth: hci0: command 0x0406 tx timeout
[  211.809478][ T5838] Bluetooth: hci1: command 0x0406 tx timeout
[  211.815438][ T5150] Bluetooth: hci4: command 0x0406 tx timeout
[  211.816718][ T5838] Bluetooth: hci2: command 0x0406 tx timeout
[  211.948084][ T6114] veth1_macvtap: left promiscuous mode
[  211.951037][ T5915] usb 5-1: Using ep0 maxpacket: 16
[  211.954061][ T6114] veth0_macvtap: left promiscuous mode
[  211.971620][ T6114] veth1_vlan: left promiscuous mode
[  211.977232][ T6114] veth0_vlan: left promiscuous mode
[  211.978043][ T5915] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  212.035372][ T5915] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  212.074504][ T5915] usb 5-1: config 0 interface 0 has no altsetting 0
[  212.093813][ T5915] usb 5-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  212.117061][ T5915] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  212.136139][ T5915] usb 5-1: config 0 descriptor??
[  212.361035][ T6978] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  212.372743][ T6978] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  212.779090][ T5915] usbhid 5-1:0.0: can't add hid device: -71
[  212.798939][ T5915] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  212.820232][ T5915] usb 5-1: USB disconnect, device number 3
[  212.879526][ T6114] team0 (unregistering): Port device team_slave_1 removed
[  212.960384][ T6114] team0 (unregistering): Port device team_slave_0 removed
[  213.169757][ T5830] Bluetooth: hci3: command tx timeout
[  213.559923][ T6987] loop4: detected capacity change from 0 to 512
[  213.574339][ T6987] EXT4-fs: Ignoring removed mblk_io_submit option
[  213.605583][ T6987] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  213.617262][ T6987] EXT4-fs (loop4): can't mount with data_err=abort, fs mounted w/o journal
[  215.347248][ T5830] Bluetooth: hci3: command tx timeout
[  215.476171][ T6993] loop2: detected capacity change from 0 to 128
[  215.550179][ T6993] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  215.621405][ T6993] ext4 filesystem being mounted at /58/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  215.856390][ T6997] loop4: detected capacity change from 0 to 512
[  215.930220][ T6997] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  215.943127][ T6997] ext4 filesystem being mounted at /60/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  216.482797][ T5832] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.649725][ T5831] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  216.711803][ T6909] chnl_net:caif_netlink_parms(): no params data found
[  216.881882][ T7005] loop4: detected capacity change from 0 to 1024
[  216.899391][ T7005] EXT4-fs: Ignoring removed i_version option
[  217.678326][ T7005] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  217.699267][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  217.834196][ T7005] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.294: Invalid block bitmap block 0 in block_group 0
[  217.855632][ T7005] __quota_error: 13 callbacks suppressed
[  217.855687][ T7005] Quota error (device loop4): write_blk: dquota write failed
[  217.869403][ T7005] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  217.879872][ T7005] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.294: Failed to acquire dquot type 0
[  217.901313][ T7005] EXT4-fs error (device loop4): ext4_free_blocks:6587: comm syz.4.294: Freeing blocks not in datazone - block = 0, count = 4096
[  217.918413][ T7005] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.294: Invalid inode bitmap blk 0 in block_group 0
[  217.934554][ T7005] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  217.944896][ T7005] EXT4-fs (loop4): 1 orphan inode deleted
[  217.989312][   T13] Quota error (device loop4): do_check_range: Getting block 0 out of range 1-8
[  218.048574][ T7005] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  218.465546][   T13] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:1: Failed to release dquot type 0
[  219.511669][ T5832] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.873113][ T6909] bridge0: port 1(bridge_slave_0) entered blocking state
[  219.924574][ T6909] bridge0: port 1(bridge_slave_0) entered disabled state
[  219.944704][ T6909] bridge_slave_0: entered allmulticast mode
[  219.990261][ T6909] bridge_slave_0: entered promiscuous mode
[  220.036133][ T6909] bridge0: port 2(bridge_slave_1) entered blocking state
[  220.063910][ T6909] bridge0: port 2(bridge_slave_1) entered disabled state
[  220.105775][ T6909] bridge_slave_1: entered allmulticast mode
[  220.139527][ T6909] bridge_slave_1: entered promiscuous mode
[  220.206110][ T7032] loop2: detected capacity change from 0 to 128
[  220.277199][  T981] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  220.320604][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  220.331652][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  220.343512][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  220.353843][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  220.363556][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  220.378344][ T6909] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  220.395438][ T6909] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  220.447286][  T981] usb 5-1: Using ep0 maxpacket: 32
[  220.462244][  T981] usb 5-1: config 0 interface 0 altsetting 74 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  220.520739][  T981] usb 5-1: config 0 interface 0 has no altsetting 0
[  220.540088][  T981] usb 5-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.00
[  220.560504][ T6909] team0: Port device team_slave_0 added
[  220.567362][  T981] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  220.584846][ T6909] team0: Port device team_slave_1 added
[  220.594074][  T981] usb 5-1: config 0 descriptor??
[  220.623222][  T981] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  220.735976][ T6909] batman_adv: batadv0: Adding interface: batadv_slave_0
[  220.749813][ T6909] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  220.808344][ T6909] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  220.839116][ T6909] batman_adv: batadv0: Adding interface: batadv_slave_1
[  220.860102][ T6909] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  220.894226][ T6909] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  221.842592][ T6909] hsr_slave_0: entered promiscuous mode
[  221.891029][ T6909] hsr_slave_1: entered promiscuous mode
[  221.900767][ T6909] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  221.912366][ T6909] Cannot create hsr debugfs directory
[  222.005017][ T6114] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.133589][ T6114] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.422451][ T7036] chnl_net:caif_netlink_parms(): no params data found
[  222.437635][ T5830] Bluetooth: hci0: command tx timeout
[  223.229418][ T5945] usb 5-1: USB disconnect, device number 4
[  223.419740][ T6114] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  223.449395][ T7068] loop4: detected capacity change from 0 to 512
[  223.472448][ T7068] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  223.944032][ T7068] EXT4-fs (loop4): failed to open journal device unknown-block(0,0) -6
[  223.957477][ T6114] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  224.099529][ T7082] loop2: detected capacity change from 0 to 256
[  224.113244][ T7082] exfat: Deprecated parameter 'utf8'
[  224.165979][ T7082] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  224.582834][ T5830] Bluetooth: hci0: command tx timeout
[  224.662719][ T7084] loop3: detected capacity change from 0 to 1024
[  224.681793][ T7084] EXT4-fs: Ignoring removed nomblk_io_submit option
[  224.734240][ T7084] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  225.842067][ T5842] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.398182][ T7036] bridge0: port 1(bridge_slave_0) entered blocking state
[  226.417118][ T7036] bridge0: port 1(bridge_slave_0) entered disabled state
[  226.429288][ T7036] bridge_slave_0: entered allmulticast mode
[  227.317685][ T5830] Bluetooth: hci0: command tx timeout
[  227.360207][ T7036] bridge_slave_0: entered promiscuous mode
[  229.392029][ T7036] bridge0: port 2(bridge_slave_1) entered blocking state
[  229.406934][ T7036] bridge0: port 2(bridge_slave_1) entered disabled state
[  229.411462][ T5830] Bluetooth: hci0: command tx timeout
[  229.425623][ T7036] bridge_slave_1: entered allmulticast mode
[  229.441246][ T7036] bridge_slave_1: entered promiscuous mode
[  230.185572][ T7036] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  230.245552][ T7036] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  230.419448][ T6114] bridge_slave_1: left allmulticast mode
[  230.432564][ T6114] bridge_slave_1: left promiscuous mode
[  230.449714][ T6114] bridge0: port 2(bridge_slave_1) entered disabled state
[  230.469741][ T6114] bridge_slave_0: left allmulticast mode
[  230.475842][ T6114] bridge0: port 1(bridge_slave_0) entered disabled state
[  231.691362][ T7144] loop3: detected capacity change from 0 to 256
[  232.986198][ T7158] loop3: detected capacity change from 0 to 2048
[  233.089537][ T7158] EXT4-fs (loop3): mounted filesystem 00000000-0700-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  233.233328][ T6114] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  233.282981][ T6114] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  233.322228][ T6114] bond0 (unregistering): Released all slaves
[  233.424043][ T7036] team0: Port device team_slave_0 added
[  233.433492][ T7036] team0: Port device team_slave_1 added
[  233.441586][ T6909] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  233.700351][ T6909] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  233.721671][ T6909] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  233.742081][ T6114] tipc: Disabling bearer <udp:syz1>
[  233.753093][ T6114] tipc: Left network mode
[  233.757317][ T6909] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  233.812633][ T7036] batman_adv: batadv0: Adding interface: batadv_slave_0
[  233.837057][ T7036] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  233.927096][   T44] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  233.927107][ T7036] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  233.942475][ T7036] batman_adv: batadv0: Adding interface: batadv_slave_1
[  233.958207][ T7036] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  234.017105][ T7036] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  234.123635][   T44] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  234.159770][   T44] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  234.179056][   T44] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  234.197141][   T44] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  234.205248][   T44] usb 5-1: Product: syz
[  234.218069][   T44] usb 5-1: Manufacturer: syz
[  234.227467][   T44] usb 5-1: SerialNumber: syz
[  234.269078][   T44] cdc_mbim 5-1:1.0: skipping garbage
[  234.383228][ T5842] EXT4-fs (loop3): unmounting filesystem 00000000-0700-0000-0000-000000000000.
[  234.471500][ T7174] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  235.112478][ T7174] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  235.169926][   T44] cdc_mbim 5-1:1.0: cdc-wdm0: USB WDM device
[  235.213809][   T44] wwan wwan0: port wwan0mbim0 attached
[  235.498786][ T7197] loop3: detected capacity change from 0 to 512
[  235.548878][ T7197] EXT4-fs (loop3): blocks per group (95) and clusters per group (32768) inconsistent
[  239.155255][   T44] cdc_mbim 5-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.4-1, CDC MBIM, e2:d7:9f:0c:e4:6b
[  239.155286][ T7209] wg2: entered promiscuous mode
[  239.155305][ T7209] wg2: entered allmulticast mode
[  239.218175][   T44] usb 5-1: USB disconnect, device number 5
[  239.235732][   T44] cdc_mbim 5-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.4-1, CDC MBIM
[  239.289992][ T6114] hsr_slave_0: left promiscuous mode
[  239.313281][ T6114] hsr_slave_1: left promiscuous mode
[  239.338044][ T6114] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  239.345529][ T6114] batman_adv: batadv0: Removing interface: batadv_slave_0
[  239.362965][ T7214] binfmt_misc: register: failed to install interpreter file ./file0
[  239.431536][ T6114] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  239.439467][ T6114] batman_adv: batadv0: Removing interface: batadv_slave_1
[  239.504035][ T6114] veth1_macvtap: left promiscuous mode
[  239.524584][ T6114] veth0_macvtap: left promiscuous mode
[  239.541370][ T6114] veth1_vlan: left promiscuous mode
[  239.550969][ T6114] veth0_vlan: left promiscuous mode
[  240.742561][ T6114] team0 (unregistering): Port device team_slave_1 removed
[  240.788343][ T6114] team0 (unregistering): Port device team_slave_0 removed
[  241.213429][ T7036] hsr_slave_0: entered promiscuous mode
[  241.224805][ T7036] hsr_slave_1: entered promiscuous mode
[  241.284861][ T7217] netlink: 96 bytes leftover after parsing attributes in process `syz.2.341'.
[  241.443477][   T44] wwan wwan0: port wwan0mbim0 disconnected
[  241.640331][ T7227] loop4: detected capacity change from 0 to 256
[  241.962091][ T7231] loop3: detected capacity change from 0 to 4096
[  241.990068][ T7231] EXT4-fs (loop3): Test dummy encryption mode enabled
[  242.051845][ T7231] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  242.151814][ T6909] 8021q: adding VLAN 0 to HW filter on device bond0
[  242.283082][ T5842] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  242.350845][ T6909] 8021q: adding VLAN 0 to HW filter on device team0
[  242.479090][ T6114] bridge0: port 1(bridge_slave_0) entered blocking state
[  242.486449][ T6114] bridge0: port 1(bridge_slave_0) entered forwarding state
[  242.555921][ T6114] bridge0: port 2(bridge_slave_1) entered blocking state
[  242.563187][ T6114] bridge0: port 2(bridge_slave_1) entered forwarding state
[  242.702020][ T7036] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  242.776828][ T7036] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  242.793134][ T7036] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  242.849118][ T7036] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  243.161388][ T7036] 8021q: adding VLAN 0 to HW filter on device bond0
[  243.196261][ T7036] 8021q: adding VLAN 0 to HW filter on device team0
[  243.212671][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  243.219977][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  243.313629][   T33] bridge0: port 2(bridge_slave_1) entered blocking state
[  243.320901][   T33] bridge0: port 2(bridge_slave_1) entered forwarding state
[  243.783682][ T7275] bridge: RTM_NEWNEIGH with invalid ether address
[  243.870545][ T7279] loop3: detected capacity change from 0 to 512
[  243.896767][ T7279] ext4: Unknown parameter 'appraise'
[  243.915313][ T6909] 8021q: adding VLAN 0 to HW filter on device batadv0
[  244.145404][   T44] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  244.159300][ T7279] netlink: 96 bytes leftover after parsing attributes in process `syz.3.353'.
[  244.317072][   T44] usb 3-1: Using ep0 maxpacket: 32
[  244.366177][   T44] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  244.412186][   T44] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  244.472579][   T44] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  244.591127][ T7298] fuse: Bad value for 'fd'
[  244.714655][ T7036] 8021q: adding VLAN 0 to HW filter on device batadv0
[  244.737596][   T44] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  244.864695][   T44] usb 3-1: config 0 descriptor??
[  245.508059][   T44] hub 3-1:0.0: USB hub found
[  245.587848][    T0] NOHZ tick-stop error: local softirq work is pending, handler #300!!!
[  245.674466][   T44] hub 3-1:0.0: 1 port detected
[  245.792257][ T6909] veth0_vlan: entered promiscuous mode
[  245.844687][ T6909] veth1_vlan: entered promiscuous mode
[  245.949134][ T6909] veth0_macvtap: entered promiscuous mode
[  245.994641][ T6909] veth1_macvtap: entered promiscuous mode
[  246.052292][ T6909] batman_adv: batadv0: Interface activated: batadv_slave_0
[  246.073699][ T6909] batman_adv: batadv0: Interface activated: batadv_slave_1
[  246.136625][ T1113] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  246.158994][ T1113] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  246.203886][ T1113] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  246.246497][ T1113] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  246.424230][ T7036] veth0_vlan: entered promiscuous mode
[  246.473819][ T7036] veth1_vlan: entered promiscuous mode
[  246.477384][   T44] hub 3-1:0.0: activate --> -90
[  246.620499][ T7327] loop4: detected capacity change from 0 to 128
[  247.483671][ T5914] usb 3-1: USB disconnect, device number 3
[  247.491535][   T44] hub 3-1:0.0: hub_ext_port_status failed (err = -71)
[  247.548177][ T7327] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  247.694481][ T7327] ext4 filesystem being mounted at /86/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  247.777999][ T7327] netlink: 32 bytes leftover after parsing attributes in process `syz.4.358'.
[  248.214581][ T7036] veth0_macvtap: entered promiscuous mode
[  248.352792][ T6114] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  248.388629][ T7036] veth1_macvtap: entered promiscuous mode
[  248.394917][ T6114] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  248.863439][ T5832] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  248.918132][ T7036] batman_adv: batadv0: Interface activated: batadv_slave_0
[  248.935359][ T6114] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  248.960451][ T7036] batman_adv: batadv0: Interface activated: batadv_slave_1
[  248.972915][ T6114] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  249.031665][ T5971] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  249.081074][ T5971] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  249.107212][   T30] audit: type=1326 audit(1751176677.775:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7338 comm="syz.4.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbcd8e929 code=0x7ffc0000
[  249.130555][ T5971] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  249.148571][ T5971] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  249.174741][   T30] audit: type=1326 audit(1751176677.775:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7338 comm="syz.4.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbcd8e929 code=0x7ffc0000
[  249.272591][   T30] audit: type=1326 audit(1751176677.775:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7338 comm="syz.4.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3bbcd8e929 code=0x7ffc0000
[  249.366276][   T30] audit: type=1326 audit(1751176677.775:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7338 comm="syz.4.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbcd8e929 code=0x7ffc0000
[  249.400213][ T7343] loop4: detected capacity change from 0 to 256
[  249.426238][   T30] audit: type=1326 audit(1751176677.775:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7338 comm="syz.4.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbcd8e929 code=0x7ffc0000
[  249.449726][   T30] audit: type=1326 audit(1751176677.775:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7338 comm="syz.4.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3bbcd8e929 code=0x7ffc0000
[  249.474415][   T30] audit: type=1326 audit(1751176677.775:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7338 comm="syz.4.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbcd8e929 code=0x7ffc0000
[  249.500020][   T30] audit: type=1326 audit(1751176677.775:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7338 comm="syz.4.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbcd8e929 code=0x7ffc0000
[  249.533544][   T30] audit: type=1326 audit(1751176677.785:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7338 comm="syz.4.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7f3bbcd8e929 code=0x7ffc0000
[  249.564539][ T5971] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  249.584469][ T5971] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  249.635370][   T30] audit: type=1326 audit(1751176677.785:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7338 comm="syz.4.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbcd8e929 code=0x7ffc0000
[  249.944329][   T33] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  250.479528][   T33] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  251.218429][ T7370] netlink: 8 bytes leftover after parsing attributes in process `syz.5.366'.
[  253.095664][ T7382] loop4: detected capacity change from 0 to 128
[  253.179120][ T7382] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  253.267291][ T7382] ext4 filesystem being mounted at /91/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  254.013051][ T7382] fscrypt (loop4, inode 12): Error allocating 'adiantum(xchacha12,aes)' transform: -4
[  254.652259][ T5832] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  255.837324][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  255.843700][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  256.265476][ T7400] loop6: detected capacity change from 0 to 40427
[  256.440695][ T7400] F2FS-fs (loop6): Image doesn't support compression
[  256.465476][ T7400] F2FS-fs (loop6): Unrecognized mount option "whint_mode=fs-based" or missing value
[  262.431855][   T51] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  262.466525][   T51] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  262.476265][   T51] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  262.498324][   T51] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  262.508957][   T51] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  264.071990][ T7485] chnl_net:caif_netlink_parms(): no params data found
[  264.599478][ T5830] Bluetooth: hci5: command tx timeout
[  265.046134][ T7526] loop6: detected capacity change from 0 to 16
[  265.081543][ T7526] erofs (device loop6): mounted with root inode @ nid 36.
[  265.628718][ T7526] serio: Serial port pts0
[  267.057130][ T5830] Bluetooth: hci5: command tx timeout
[  267.075913][ T7485] bridge0: port 1(bridge_slave_0) entered blocking state
[  268.039821][ T7485] bridge0: port 1(bridge_slave_0) entered disabled state
[  268.049845][ T7485] bridge_slave_0: entered allmulticast mode
[  268.070386][ T7485] bridge_slave_0: entered promiscuous mode
[  268.093432][ T7485] bridge0: port 2(bridge_slave_1) entered blocking state
[  268.229775][ T7485] bridge0: port 2(bridge_slave_1) entered disabled state
[  268.245180][ T7485] bridge_slave_1: entered allmulticast mode
[  268.254829][ T7485] bridge_slave_1: entered promiscuous mode
[  269.367124][ T5830] Bluetooth: hci5: command tx timeout
[  269.456723][ T7485] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  269.523349][ T7485] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  269.966690][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  269.966712][   T30] audit: type=1326 audit(1751176698.635:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7550 comm="syz.6.410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff5d78e929 code=0x7ffc0000
[  270.537031][   T30] audit: type=1326 audit(1751176698.675:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7550 comm="syz.6.410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff5d78e929 code=0x7ffc0000
[  270.576483][ T7553] loop5: detected capacity change from 0 to 256
[  271.062317][   T30] audit: type=1326 audit(1751176698.675:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7550 comm="syz.6.410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7eff5d78e929 code=0x7ffc0000
[  271.428182][ T5830] Bluetooth: hci5: command tx timeout
[  271.480256][ T7485] team0: Port device team_slave_0 added
[  271.499530][ T7485] team0: Port device team_slave_1 added
[  271.639070][   T30] audit: type=1326 audit(1751176698.685:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7550 comm="syz.6.410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff5d78e929 code=0x7ffc0000
[  272.286715][   T30] audit: type=1326 audit(1751176698.685:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7550 comm="syz.6.410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff5d78e929 code=0x7ffc0000
[  272.770435][   T30] audit: type=1326 audit(1751176698.685:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7550 comm="syz.6.410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7eff5d78e929 code=0x7ffc0000
[  272.915921][ T7560] netlink: 12 bytes leftover after parsing attributes in process `syz.4.411'.
[  273.679216][   T24] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  273.695814][ T7563] loop6: detected capacity change from 0 to 256
[  273.732398][   T30] audit: type=1326 audit(1751176698.685:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7550 comm="syz.6.410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff5d78e929 code=0x7ffc0000
[  273.760412][   T30] audit: type=1326 audit(1751176698.685:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7550 comm="syz.6.410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff5d78e929 code=0x7ffc0000
[  273.842082][   T30] audit: type=1326 audit(1751176698.685:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7550 comm="syz.6.410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7eff5d78e929 code=0x7ffc0000
[  273.905808][   T24] usb 3-1: Using ep0 maxpacket: 32
[  273.916483][   T30] audit: type=1326 audit(1751176698.685:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7550 comm="syz.6.410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff5d78e929 code=0x7ffc0000
[  274.161919][   T24] usb 3-1: config 1 interface 1 altsetting 3 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  274.175627][   T24] usb 3-1: config 1 interface 1 has no altsetting 2
[  274.184688][ T7485] batman_adv: batadv0: Adding interface: batadv_slave_0
[  274.194764][ T7485] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  274.227938][ T7485] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  274.240712][   T24] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  274.250659][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  274.309534][ T7485] batman_adv: batadv0: Adding interface: batadv_slave_1
[  274.316541][ T7485] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  274.344169][   T24] usb 3-1: Product: syz
[  274.359037][   T24] usb 3-1: Manufacturer: syz
[  274.363719][   T24] usb 3-1: SerialNumber: syz
[  274.422945][ T7485] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  274.662294][   T24] usb 3-1: 2:1 : UAC_AS_GENERAL descriptor not found
[  274.751555][   T24] usb 3-1: USB disconnect, device number 4
[  275.209456][ T7583] netlink: 12 bytes leftover after parsing attributes in process `syz.6.416'.
[  275.831453][ T6869] udevd[6869]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  276.092325][ T7485] hsr_slave_0: entered promiscuous mode
[  276.126208][ T7485] hsr_slave_1: entered promiscuous mode
[  276.148731][ T7485] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  276.180761][ T7485] Cannot create hsr debugfs directory
[  276.612125][ T7581] netlink: 8 bytes leftover after parsing attributes in process `syz.4.417'.
[  277.232186][ T7599] loop6: detected capacity change from 0 to 1024
[  277.277198][   T44] usb 3-1: new full-speed USB device number 5 using dummy_hcd
[  277.303511][ T7599] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  277.619616][   T44] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0
[  277.645264][   T44] usb 3-1: New USB device found, idVendor=4752, idProduct=0011, bcdDevice=32.4f
[  277.657295][   T44] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  277.665844][   T44] usb 3-1: Product: syz
[  277.673871][   T44] usb 3-1: Manufacturer: syz
[  277.815708][   T44] usb 3-1: SerialNumber: syz
[  278.251082][   T44] usb 3-1: config 0 descriptor??
[  278.312590][   T44] hub 3-1:0.0: bad descriptor, ignoring hub
[  278.350596][   T44] hub 3-1:0.0: probe with driver hub failed with error -5
[  278.400898][   T44] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  278.613374][ T7485] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  278.779226][   T44] snd-usb-audio 3-1:0.0: probe with driver snd-usb-audio failed with error -2
[  278.799833][ T7485] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  279.284874][ T7036] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  279.514666][ T7485] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  279.533728][ T5876] udevd[5876]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  279.581001][ T7485] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  279.819071][ T7626] loop6: detected capacity change from 0 to 256
[  279.831793][ T7625] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  279.965106][ T7626] FAT-fs (loop6): Directory bread(block 64) failed
[  279.965908][ T7485] 8021q: adding VLAN 0 to HW filter on device bond0
[  279.995305][ T7626] FAT-fs (loop6): Directory bread(block 65) failed
[  280.023519][ T7626] FAT-fs (loop6): Directory bread(block 66) failed
[  280.052288][ T7626] FAT-fs (loop6): Directory bread(block 67) failed
[  280.082436][ T7626] FAT-fs (loop6): Directory bread(block 68) failed
[  280.100938][ T7485] 8021q: adding VLAN 0 to HW filter on device team0
[  280.116049][ T7626] FAT-fs (loop6): Directory bread(block 69) failed
[  280.136552][   T37] bridge0: port 1(bridge_slave_0) entered blocking state
[  280.143815][   T37] bridge0: port 1(bridge_slave_0) entered forwarding state
[  280.172318][ T7626] FAT-fs (loop6): Directory bread(block 70) failed
[  280.189281][ T7626] FAT-fs (loop6): Directory bread(block 71) failed
[  280.196132][ T7626] FAT-fs (loop6): Directory bread(block 72) failed
[  280.215442][ T7626] FAT-fs (loop6): Directory bread(block 73) failed
[  280.245153][   T37] bridge0: port 2(bridge_slave_1) entered blocking state
[  280.252433][   T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[  280.427956][ T7636] loop5: detected capacity change from 0 to 512
[  280.505776][ T7636] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2
[  280.516300][ T7636] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -2
[  280.543719][ T7636] EXT4-fs (loop5): 1 truncate cleaned up
[  280.561865][ T7636] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  281.598456][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  281.598478][   T30] audit: type=1326 audit(1751176710.245:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7639 comm="syz.2.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26f318e929 code=0x7ffc0000
[  282.303174][ T5914] usb 3-1: USB disconnect, device number 5
[  282.934543][   T30] audit: type=1326 audit(1751176710.265:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7639 comm="syz.2.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26f318e929 code=0x7ffc0000
[  283.416430][   T30] audit: type=1326 audit(1751176710.965:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7639 comm="syz.2.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f26f318e929 code=0x7ffc0000
[  283.458481][ T6909] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  283.618293][   T30] audit: type=1326 audit(1751176711.005:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7639 comm="syz.2.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26f318e929 code=0x7ffc0000
[  283.769277][   T30] audit: type=1326 audit(1751176711.365:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7639 comm="syz.2.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26f318e929 code=0x7ffc0000
[  284.093240][   T30] audit: type=1326 audit(1751176711.525:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7639 comm="syz.2.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f26f318e929 code=0x7ffc0000
[  284.286565][   T30] audit: type=1326 audit(1751176711.525:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7639 comm="syz.2.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26f318e929 code=0x7ffc0000
[  284.470301][   T30] audit: type=1326 audit(1751176711.545:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7639 comm="syz.2.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f26f318e929 code=0x7ffc0000
[  284.795028][   T30] audit: type=1326 audit(1751176711.685:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7639 comm="syz.2.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26f318e929 code=0x7ffc0000
[  284.877173][   T30] audit: type=1326 audit(1751176711.685:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7639 comm="syz.2.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26f318e929 code=0x7ffc0000
[  286.489130][ T7485] 8021q: adding VLAN 0 to HW filter on device batadv0
[  286.587109][ T7675] bridge_slave_1: left allmulticast mode
[  286.592828][ T7675] bridge_slave_1: left promiscuous mode
[  286.629268][ T7675] bridge0: port 2(bridge_slave_1) entered disabled state
[  286.678892][   T51] Bluetooth: hci5: command 0x0405 tx timeout
[  287.854812][ T7700] loop5: detected capacity change from 0 to 256
[  288.062927][ T7700] FAT-fs (loop5): Directory bread(block 64) failed
[  288.097694][ T7700] FAT-fs (loop5): Directory bread(block 65) failed
[  288.104469][ T7700] FAT-fs (loop5): Directory bread(block 66) failed
[  288.161657][ T7700] FAT-fs (loop5): Directory bread(block 67) failed
[  288.212912][ T7700] FAT-fs (loop5): Directory bread(block 68) failed
[  288.228186][ T7700] FAT-fs (loop5): Directory bread(block 69) failed
[  288.234861][ T7700] FAT-fs (loop5): Directory bread(block 70) failed
[  288.258338][ T7700] FAT-fs (loop5): Directory bread(block 71) failed
[  288.265114][ T7700] FAT-fs (loop5): Directory bread(block 72) failed
[  288.295952][ T7700] FAT-fs (loop5): Directory bread(block 73) failed
[  288.306164][ T7711] loop4: detected capacity change from 0 to 512
[  288.358761][ T7711] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  288.404462][ T7711] EXT4-fs (loop4): 1 truncate cleaned up
[  288.408828][ T7485] veth0_vlan: entered promiscuous mode
[  288.449038][ T7485] veth1_vlan: entered promiscuous mode
[  288.463662][ T7711] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  288.519956][ T7485] veth0_macvtap: entered promiscuous mode
[  288.615519][ T7485] veth1_macvtap: entered promiscuous mode
[  288.691636][ T7485] batman_adv: batadv0: Interface activated: batadv_slave_0
[  288.726711][ T7485] batman_adv: batadv0: Interface activated: batadv_slave_1
[  288.760956][ T5976] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  289.490319][ T5976] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  289.515075][ T5976] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  289.537222][ T5832] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.575809][ T5976] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  290.861618][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  291.048616][ T7746] loop6: detected capacity change from 0 to 256
[  291.085460][ T7746] exfat: Unknown parameter '00000000000000000000'
[  291.740244][ T7746] loop6: detected capacity change from 0 to 2048
[  291.777106][    T0] NOHZ tick-stop error: local softirq work is pending, handler #c0!!!
[  291.785031][ T7746] EXT4-fs (loop6): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  291.882153][ T7746] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  291.966440][ T7746] ext4 filesystem being mounted at /19/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  292.001187][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  292.143775][ T7036] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  292.422751][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  292.523025][ T7767] loop5: detected capacity change from 0 to 512
[  292.548056][ T7767] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  292.615548][ T7767] EXT4-fs (loop5): 1 truncate cleaned up
[  292.641253][ T7767] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  292.904352][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  292.927786][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  293.649422][ T6909] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.670364][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  296.898253][    T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!!
[  297.210545][ T7803] loop5: detected capacity change from 0 to 512
[  297.278414][ T7803] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  297.340544][ T7803] EXT4-fs (loop5): 1 truncate cleaned up
[  297.357390][ T7803] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  298.243796][ T6909] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  299.392587][ T7819] loop5: detected capacity change from 0 to 256
[  299.404914][ T7819] exfat: Deprecated parameter 'utf8'
[  299.410674][ T7819] exfat: Deprecated parameter 'namecase'
[  299.416479][ T7819] exfat: Deprecated parameter 'utf8'
[  299.422461][ T7819] exfat: Bad value for 'uid'
[  299.427172][ T7819] exfat: Bad value for 'uid'
[  301.606356][ T7821] loop5: detected capacity change from 0 to 40427
[  301.662068][ T7821] F2FS-fs (loop5): invalid crc value
[  301.854164][ T7821] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  302.600087][ T6362] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  302.611345][ T6362] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  302.820702][ T6362] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  302.881950][ T6362] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  305.279220][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  305.279240][   T30] audit: type=1326 audit(1751176733.935:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7850 comm="syz.7.389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19f3f8e929 code=0x7ffc0000
[  305.390593][   T30] audit: type=1326 audit(1751176733.935:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7850 comm="syz.7.389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19f3f8e929 code=0x7ffc0000
[  305.669784][   T30] audit: type=1326 audit(1751176734.005:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7850 comm="syz.7.389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19f3f8e929 code=0x7ffc0000
[  306.688149][   T30] audit: type=1326 audit(1751176734.005:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7850 comm="syz.7.389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19f3f8e929 code=0x7ffc0000
[  306.710494][   T30] audit: type=1326 audit(1751176734.005:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7850 comm="syz.7.389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19f3f8e929 code=0x7ffc0000
[  307.479092][ T6909] syz-executor: attempt to access beyond end of device
[  307.479092][ T6909] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  307.557372][ T7877] loop6: detected capacity change from 0 to 4096
[  307.575411][ T6909] CPU: 1 UID: 0 PID: 6909 Comm: syz-executor Not tainted 6.16.0-rc3-next-20250627-syzkaller #0 PREEMPT(full) 
[  307.575445][ T6909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  307.575469][ T6909] Call Trace:
[  307.575479][ T6909]  <TASK>
[  307.575488][ T6909]  dump_stack_lvl+0x189/0x250
[  307.575532][ T6909]  ? __pfx_dump_stack_lvl+0x10/0x10
[  307.575560][ T6909]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  307.575591][ T6909]  ? __pfx_queue_work_on+0x10/0x10
[  307.575622][ T6909]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  307.575652][ T6909]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  307.575683][ T6909]  ? f2fs_hw_is_readonly+0x39b/0x470
[  307.575717][ T6909]  f2fs_handle_critical_error+0x37c/0x540
[  307.575754][ T6909]  f2fs_write_end_io+0x495/0x810
[  307.575773][ T6909]  ? blkg_put+0x22/0x240
[  307.575820][ T6909]  __submit_merged_bio+0x27a/0x6a0
[  307.575856][ T6909]  __submit_merged_write_cond+0x255/0x530
[  307.575893][ T6909]  f2fs_write_data_pages+0x261d/0x3000
[  307.575923][ T6909]  ? __lock_acquire+0xab9/0xd20
[  307.575998][ T6909]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  307.576108][ T6909]  ? __lock_acquire+0xab9/0xd20
[  307.576143][ T6909]  ? do_raw_spin_lock+0x121/0x290
[  307.576176][ T6909]  ? do_raw_spin_unlock+0x122/0x240
[  307.576197][ T6909]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  307.576230][ T6909]  do_writepages+0x32b/0x550
[  307.576274][ T6909]  ? do_raw_spin_unlock+0x122/0x240
[  307.576300][ T6909]  filemap_fdatawrite+0x199/0x240
[  307.576331][ T6909]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  307.576414][ T6909]  ? do_raw_spin_unlock+0x122/0x240
[  307.576440][ T6909]  f2fs_sync_dirty_inodes+0x31f/0x830
[  307.576479][ T6909]  f2fs_write_checkpoint+0x95a/0x1df0
[  307.576527][ T6909]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  307.576595][ T6909]  ? try_to_wake_up+0x7e5/0x1290
[  307.576623][ T6909]  ? kill_f2fs_super+0x298/0x6c0
[  307.576650][ T6909]  kill_f2fs_super+0x2c3/0x6c0
[  307.576677][ T6909]  ? __pfx_kill_f2fs_super+0x10/0x10
[  307.576695][ T6909]  ? radix_tree_delete_item+0x2b6/0x400
[  307.576735][ T6909]  ? shrinker_free+0x2ce/0x3e0
[  307.576762][ T6909]  deactivate_locked_super+0xb9/0x130
[  307.576792][ T6909]  cleanup_mnt+0x425/0x4c0
[  307.576817][ T6909]  ? lockdep_hardirqs_on+0x9c/0x150
[  307.576851][ T6909]  task_work_run+0x1d4/0x260
[  307.576877][ T6909]  ? __pfx_task_work_run+0x10/0x10
[  307.576897][ T6909]  ? __x64_sys_umount+0x122/0x160
[  307.576932][ T6909]  ? exit_to_user_mode_loop+0x40/0x110
[  307.576968][ T6909]  exit_to_user_mode_loop+0xec/0x110
[  307.576992][ T6909]  do_syscall_64+0x2bd/0x3b0
[  307.577011][ T6909]  ? lockdep_hardirqs_on+0x9c/0x150
[  307.577039][ T6909]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  307.577059][ T6909]  ? clear_bhb_loop+0x60/0xb0
[  307.577085][ T6909]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  307.577106][ T6909] RIP: 0033:0x7f7841b8fc57
[  307.577133][ T6909] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  307.577151][ T6909] RSP: 002b:00007ffc1afc47a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  307.577174][ T6909] RAX: 0000000000000000 RBX: 00007f7841c10925 RCX: 00007f7841b8fc57
[  307.577189][ T6909] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc1afc4860
[  307.577202][ T6909] RBP: 00007ffc1afc4860 R08: 0000000000000000 R09: 0000000000000000
[  307.577215][ T6909] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc1afc58f0
[  307.577228][ T6909] R13: 00007f7841c10925 R14: 0000000000049eca R15: 00007ffc1afc5930
[  307.577263][ T6909]  </TASK>
[  307.667407][   T30] audit: type=1326 audit(1751176734.015:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7850 comm="syz.7.389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19f3f8e929 code=0x7ffc0000
[  307.979504][ T6909] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  308.148032][ T7877] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  308.217381][ T5945] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  308.226727][   T30] audit: type=1326 audit(1751176734.015:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7850 comm="syz.7.389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19f3f8e929 code=0x7ffc0000
[  308.305818][   T30] audit: type=1326 audit(1751176734.015:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7850 comm="syz.7.389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19f3f8e929 code=0x7ffc0000
[  308.387680][ T5945] usb 5-1: config 0 has an invalid interface number: 156 but max is 0
[  308.475026][ T5945] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  308.579918][   T30] audit: type=1326 audit(1751176734.015:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7850 comm="syz.7.389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19f3f8e929 code=0x7ffc0000
[  308.642528][ T5945] usb 5-1: config 0 has no interface number 0
[  308.716248][ T5945] usb 5-1: config 0 interface 156 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  309.136233][ T5945] usb 5-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[  309.145778][   T30] audit: type=1326 audit(1751176734.015:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7850 comm="syz.7.389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f19f3f8e929 code=0x7ffc0000
[  309.234472][ T5945] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  309.301291][ T5945] usb 5-1: config 0 descriptor??
[  309.330055][ T5945] gspca_main: spca561-2.14.0 probing abcd:cdee
[  309.537392][ T5945] spca561 5-1:0.156: probe with driver spca561 failed with error -22
[  309.569202][ T5945] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  309.617539][ T5945] usb 5-1: MIDIStreaming interface descriptor not found
[  310.956315][ T7036] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  311.278501][ T7908] loop7: detected capacity change from 0 to 512
[  311.950183][ T7908] EXT4-fs (loop7): 1 orphan inode deleted
[  311.959099][ T7908] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  312.000679][ T7908] ext4 filesystem being mounted at /2/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  312.012170][   T79] __quota_error: 5 callbacks suppressed
[  312.012190][   T79] Quota error (device loop7): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  312.032785][ T5945] usb 5-1: USB disconnect, device number 6
[  312.805458][   T30] audit: type=1326 audit(1751176741.475:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7921 comm="syz.5.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7841b8e929 code=0x7ffc0000
[  312.860454][   T30] audit: type=1326 audit(1751176741.505:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7921 comm="syz.5.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=117 compat=0 ip=0x7f7841b8e929 code=0x7ffc0000
[  312.939786][   T30] audit: type=1326 audit(1751176741.505:289): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=unconfined pid=7921 comm="syz.5.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7841b8e929 code=0x7ffc0000
[  312.983395][   T79] EXT4-fs error (device loop7): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 1
[  313.051773][ T7924] loop5: detected capacity change from 0 to 256
[  313.133539][ T7924] exfat: Unknown parameter '00000000000000000000'
[  313.345633][ T7485] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  313.364293][ T7924] loop5: detected capacity change from 0 to 2048
[  313.417397][ T7924] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  313.558646][ T7924] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  313.617164][ T7924] ext4 filesystem being mounted at /41/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  313.843624][ T7938] loop4: detected capacity change from 0 to 256
[  313.858263][ T7938] exfat: Deprecated parameter 'namecase'
[  313.913502][ T6909] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  314.608292][ T7938] exFAT-fs (loop4): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[  314.959360][ T7961] bpf: Bad value for 'uid'
[  315.252647][ T7969] loop7: detected capacity change from 0 to 512
[  315.291092][ T7969] EXT4-fs error (device loop7): ext4_orphan_get:1393: inode #15: comm syz.7.510: iget: bad extended attribute block 1
[  315.406261][ T7969] EXT4-fs error (device loop7): ext4_orphan_get:1398: comm syz.7.510: couldn't read orphan inode 15 (err -117)
[  315.495234][ T7969] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  315.996423][ T7485] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.169403][ T7995] loop4: detected capacity change from 0 to 512
[  316.329548][ T7995] EXT4-fs (loop4): blocks per group (95) and clusters per group (32768) inconsistent
[  317.515480][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  317.522041][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  319.005380][ T8005] loop5: detected capacity change from 0 to 2048
[  319.229046][ T8006] loop7: detected capacity change from 0 to 16
[  319.878892][ T8006] erofs (device loop7): mounted with root inode @ nid 36.
[  320.777375][ T5886]  loop5: p2 p3 < > p4 < p5 >
[  320.971132][ T5886] loop5: partition table partially beyond EOD, truncated
[  321.697113][ T5886] loop5: p2 start 16908804 is beyond EOD, truncated
[  321.759299][ T5886] loop5: p3 start 4284289 is beyond EOD, truncated
[  321.847840][ T5886] loop5: p5 start 16908804 is beyond EOD, truncated
[  322.979465][ T8029] loop4: detected capacity change from 0 to 16
[  322.996659][ T8029] erofs (device loop4): mounted with root inode @ nid 36.
[  323.062774][ T8029] erofs (device loop4): bogus lookback distance 1388 @ lcn 42 of nid 36
[  323.101208][ T8029] erofs (device loop4): failed to decompress -43 in[46, 4050] out[1851]
[  323.128883][ T8029] erofs (device loop4): read error -117 @ 43 of nid 36
[  323.156161][ T8031] erofs (device loop4): bogus lookback distance 1388 @ lcn 42 of nid 36
[  323.175897][ T8031] erofs (device loop4): failed to decompress -43 in[46, 4050] out[1851]
[  323.234828][ T8031] erofs (device loop4): read error -117 @ 43 of nid 36
[  323.344746][ T5876] udevd[5876]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory
[  324.803129][   T30] audit: type=1326 audit(1751176753.475:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz.5.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7841b8e929 code=0x7ffc0000
[  325.097051][   T30] audit: type=1326 audit(1751176753.475:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz.5.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7841b8e929 code=0x7ffc0000
[  325.146025][   T30] audit: type=1326 audit(1751176753.495:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz.5.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f7841b8e929 code=0x7ffc0000
[  325.399196][   T30] audit: type=1326 audit(1751176753.495:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz.5.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7841b8e929 code=0x7ffc0000
[  325.749077][   T30] audit: type=1326 audit(1751176753.495:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz.5.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7841b8e929 code=0x7ffc0000
[  325.871723][   T30] audit: type=1326 audit(1751176753.495:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz.5.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f7841b8e929 code=0x7ffc0000
[  325.966526][   T30] audit: type=1326 audit(1751176753.495:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz.5.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7841b8e929 code=0x7ffc0000
[  326.036747][   T30] audit: type=1326 audit(1751176753.495:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz.5.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7841b8e929 code=0x7ffc0000
[  326.114300][   T30] audit: type=1326 audit(1751176753.505:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz.5.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f7841b8e929 code=0x7ffc0000
[  326.166649][ T8072] loop5: detected capacity change from 0 to 512
[  326.178759][ T8072] EXT4-fs: Ignoring removed nobh option
[  326.207046][   T30] audit: type=1326 audit(1751176753.505:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz.5.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7841b8e929 code=0x7ffc0000
[  327.190823][ T8072] EXT4-fs error (device loop5): ext4_orphan_get:1393: inode #15: comm syz.5.534: iget: bad i_size value: 38620345925642
[  327.474144][ T8072] EXT4-fs error (device loop5): ext4_orphan_get:1398: comm syz.5.534: couldn't read orphan inode 15 (err -117)
[  327.734723][ T8072] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  327.902809][ T8086] loop6: detected capacity change from 0 to 512
[  327.924531][ T8086] EXT4-fs: Ignoring removed nomblk_io_submit option
[  328.625250][ T8086] EXT4-fs (loop6): Test dummy encryption mode enabled
[  328.632204][ T8086] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  328.672901][ T8086] EXT4-fs (loop6): 1 truncate cleaned up
[  328.709501][ T8086] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  329.637933][ T5830] Bluetooth: hci3: command 0x0406 tx timeout
[  329.835234][   T30] kauditd_printk_skb: 29 callbacks suppressed
[  329.835256][   T30] audit: type=1326 audit(1751176758.325:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8095 comm="syz.2.540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26f318e929 code=0x7ffc0000
[  329.956631][ T6909] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  330.065984][ T7036] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  330.342887][ T8112] loop4: detected capacity change from 0 to 256
[  330.460685][ T8112] FAT-fs (loop4): count of clusters too big (66845694)
[  330.500632][ T8112] FAT-fs (loop4): Can't find a valid FAT filesystem
[  330.638457][ T8123] loop6: detected capacity change from 0 to 256
[  331.558822][ T8133] loop5: detected capacity change from 0 to 512
[  331.566560][ T8133] EXT4-fs: Ignoring removed mblk_io_submit option
[  331.640660][ T8133] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  331.743118][ T8133] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a043c11c, mo2=0002]
[  331.807218][ T8133] System zones: 1-12
[  332.585530][ T8133] EXT4-fs error (device loop5): ext4_iget_extra_inode:5034: inode #15: comm syz.5.550: corrupted in-inode xattr: e_value size too large
[  332.688699][ T8133] EXT4-fs error (device loop5): ext4_orphan_get:1398: comm syz.5.550: couldn't read orphan inode 15 (err -117)
[  333.030045][ T8133] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  334.245692][ T5830] Bluetooth: hci5: command 0x0405 tx timeout
[  334.845104][ T6909] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  335.051471][   T30] audit: type=1326 audit(1751176763.715:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8164 comm="syz.6.557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff5d78e929 code=0x7ffc0000
[  335.167226][   T30] audit: type=1326 audit(1751176763.775:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8164 comm="syz.6.557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7eff5d78e929 code=0x7ffc0000
[  335.225776][   T30] audit: type=1326 audit(1751176763.775:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8164 comm="syz.6.557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff5d78e929 code=0x7ffc0000
[  335.249473][   T30] audit: type=1326 audit(1751176763.775:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8164 comm="syz.6.557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff5d78e929 code=0x7ffc0000
[  335.272732][   T30] audit: type=1326 audit(1751176763.785:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8164 comm="syz.6.557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7eff5d78e929 code=0x7ffc0000
[  335.297263][   T30] audit: type=1326 audit(1751176763.785:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8164 comm="syz.6.557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff5d78e929 code=0x7ffc0000
[  335.367035][   T30] audit: type=1326 audit(1751176763.785:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8164 comm="syz.6.557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff5d78e929 code=0x7ffc0000
[  335.645638][   T30] audit: type=1326 audit(1751176763.785:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8164 comm="syz.6.557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7eff5d78e929 code=0x7ffc0000
[  335.695229][   T30] audit: type=1326 audit(1751176763.785:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8164 comm="syz.6.557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff5d78e929 code=0x7ffc0000
[  336.727044][   T30] audit: type=1326 audit(1751176763.785:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8164 comm="syz.6.557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7eff5d78e929 code=0x7ffc0000
[  338.283093][ T8206] veth0_vlan: entered allmulticast mode
[  338.457600][ T8198] netlink: 12 bytes leftover after parsing attributes in process `syz.5.565'.
[  339.969541][ T8229] loop6: detected capacity change from 0 to 128
[  340.734873][ T8229] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  340.791474][ T8229] ext4 filesystem being mounted at /48/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  341.022726][ T7036] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  342.195175][ T8254] loop6: detected capacity change from 0 to 256
[  344.920498][ T5830] Bluetooth: hci0: command 0x0406 tx timeout
[  345.894650][   T30] kauditd_printk_skb: 17 callbacks suppressed
[  345.894672][   T30] audit: type=1326 audit(1751176774.565:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8298 comm="syz.5.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7841b8e929 code=0x7ffc0000
[  346.021683][   T30] audit: type=1326 audit(1751176774.605:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8298 comm="syz.5.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f7841b8e929 code=0x7ffc0000
[  346.044320][   T30] audit: type=1326 audit(1751176774.605:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8298 comm="syz.5.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7841b8e929 code=0x7ffc0000
[  346.067637][   T30] audit: type=1326 audit(1751176774.605:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8298 comm="syz.5.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f7841b8e929 code=0x7ffc0000
[  346.104856][   T30] audit: type=1326 audit(1751176774.605:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8298 comm="syz.5.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7841b8e929 code=0x7ffc0000
[  346.135627][   T30] audit: type=1326 audit(1751176774.605:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8298 comm="syz.5.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7f7841b8e929 code=0x7ffc0000
[  346.225196][   T30] audit: type=1326 audit(1751176774.605:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8298 comm="syz.5.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7841b8e929 code=0x7ffc0000
[  346.306907][ T8311] loop7: detected capacity change from 0 to 128
[  346.315760][ T8311] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  346.437483][ T8311] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  347.739317][ T6362] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  349.017211][ T8332] loop5: detected capacity change from 0 to 512
[  349.237178][   T31] INFO: task kworker/0:1:10 blocked for more than 143 seconds.
[  349.248705][   T30] audit: type=1326 audit(1751176777.895:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8329 comm="syz.4.595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbcd8e929 code=0x7ffc0000
[  349.409175][   T31]       Not tainted 6.16.0-rc3-next-20250627-syzkaller #0
[  349.655855][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  350.029145][   T30] audit: type=1326 audit(1751176777.895:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8329 comm="syz.4.595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbcd8e929 code=0x7ffc0000
[  350.071264][   T31] task:kworker/0:1     state:D stack:24936 pid:10    tgid:10    ppid:2      task_flags:0x4208060 flags:0x00004000
[  350.125971][ T8332] EXT4-fs (loop5): 1 orphan inode deleted
[  350.135647][ T8332] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  350.154471][   T31] Workqueue: events_power_efficient hub_init_func2
[  350.174955][   T31] Call Trace:
[  350.196672][   T30] audit: type=1326 audit(1751176777.895:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8329 comm="syz.4.595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=253 compat=0 ip=0x7f3bbcd8e929 code=0x7ffc0000
[  350.225227][   T31]  <TASK>
[  350.242109][ T8332] ext4 filesystem being mounted at /63/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  350.253224][   T31]  __schedule+0x16f5/0x4d00
[  350.277320][   T31]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  350.292576][   T31]  ? schedule+0x165/0x360
[  350.318600][   T31]  ? __pfx___schedule+0x10/0x10
[  350.345092][   T31]  ? schedule+0x91/0x360
[  350.363371][   T31]  schedule+0x165/0x360
[  350.383526][   T31]  schedule_preempt_disabled+0x13/0x30
[  350.400467][   T31]  __mutex_lock+0x724/0xe80
[  350.419934][   T31]  ? __mutex_lock+0x51b/0xe80
[  350.435585][   T31]  ? hub_activate+0xb7/0x1ea0
[  350.451040][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  350.482626][   T31]  ? do_raw_spin_lock+0x121/0x290
[  350.499565][   T31]  ? __lock_acquire+0xab9/0xd20
[  350.515962][   T31]  hub_activate+0xb7/0x1ea0
[  350.532416][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  350.551759][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  350.577599][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  350.606464][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  350.625192][   T31]  process_scheduled_works+0xade/0x17b0
[  350.644622][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[  350.664390][   T31]  worker_thread+0x8a0/0xda0
[  350.684410][   T31]  kthread+0x711/0x8a0
[  350.704201][   T31]  ? __pfx_worker_thread+0x10/0x10
[  350.725948][   T31]  ? __pfx_kthread+0x10/0x10
[  350.742886][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  350.761373][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  350.778413][   T31]  ? __pfx_kthread+0x10/0x10
[  350.805894][   T31]  ret_from_fork+0x3fc/0x770
[  350.820600][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  350.843053][   T31]  ? __switch_to_asm+0x39/0x70
[  350.858494][   T31]  ? __switch_to_asm+0x33/0x70
[  350.876091][   T31]  ? __pfx_kthread+0x10/0x10
[  350.894661][   T31]  ret_from_fork_asm+0x1a/0x30
[  350.910436][   T31]  </TASK>
[  350.924844][   T31] INFO: task kworker/0:4:5885 blocked for more than 145 seconds.
[  350.960170][   T31]       Not tainted 6.16.0-rc3-next-20250627-syzkaller #0
[  350.986993][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  351.016039][   T31] task:kworker/0:4     state:D stack:22792 pid:5885  tgid:5885  ppid:2      task_flags:0x4288060 flags:0x00004000
[  351.071661][   T31] Workqueue: usb_hub_wq hub_event
[  351.133489][   T31] Call Trace:
[  351.159253][   T31]  <TASK>
[  351.177839][   T31]  __schedule+0x16f5/0x4d00
[  351.207170][   T31]  ? schedule+0x165/0x360
[  351.237314][   T31]  ? __pfx___schedule+0x10/0x10
[  351.276161][   T31]  ? preempt_schedule_common+0x83/0xd0
[  351.286993][   T31]  ? __pfx_preempt_schedule+0x10/0x10
[  351.307063][   T31]  ? schedule+0x91/0x360
[  351.311410][   T31]  schedule+0x165/0x360
[  351.337453][   T31]  schedule_timeout+0x9a/0x270
[  351.347928][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  351.354158][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  351.360424][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  351.365894][   T31]  ? wait_for_completion+0x267/0x5d0
[  351.371936][   T31]  wait_for_completion+0x2bf/0x5d0
[  351.379014][   T31]  ? __pfx_wait_for_completion+0x10/0x10
[  351.384973][   T31]  ? __flush_work+0xd2/0xbc0
[  351.390249][   T31]  ? __flush_work+0xd2/0xbc0
[  351.395220][   T31]  __flush_work+0x9b9/0xbc0
[  351.409315][   T31]  ? __flush_work+0xd2/0xbc0
[  351.425430][   T31]  ? __pfx___flush_work+0x10/0x10
[  351.443220][   T31]  ? __pfx_wq_barrier_func+0x10/0x10
[  351.460223][   T31]  ? __queue_work+0xc56/0xfb0
[  351.471801][   T31]  ? flush_delayed_work+0x11d/0x190
[  351.497126][   T31]  flush_delayed_work+0x13e/0x190
[  351.509062][   T31]  ? __pfx_flush_delayed_work+0x10/0x10
[  351.524940][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  351.535042][   T31]  ? usb_hcd_flush_endpoint+0x3e9/0x400
[  351.545276][   T31]  hub_quiesce+0x1f0/0x330
[  351.553370][   T31]  hub_disconnect+0xc8/0x470
[  351.562150][   T31]  usb_unbind_interface+0x26e/0x910
[  351.588553][   T31]  ? __pfx_usb_unbind_interface+0x10/0x10
[  351.594418][   T31]  device_release_driver_internal+0x4d9/0x7c0
[  351.600656][   T31]  bus_remove_device+0x34d/0x410
[  351.606630][   T31]  device_del+0x511/0x8e0
[  351.611100][   T31]  ? kfree+0x18e/0x440
[  351.615314][   T31]  ? __pfx_device_del+0x10/0x10
[  351.620283][   T31]  ? kobject_put+0x446/0x480
[  351.625537][   T31]  usb_disable_device+0x3e9/0x8a0
[  351.630872][   T31]  usb_disconnect+0x330/0x950
[  351.635612][   T31]  hub_event+0x1cdb/0x4a00
[  351.640262][   T31]  ? do_raw_spin_lock+0x121/0x290
[  351.645325][   T31]  ? register_lock_class+0x51/0x320
[  351.650636][   T31]  ? __pfx_hub_event+0x10/0x10
[  351.655443][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  351.677315][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  351.694208][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  351.700182][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  351.710315][   T31]  process_scheduled_works+0xade/0x17b0
[  351.715981][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[  351.732405][   T31]  worker_thread+0x8a0/0xda0
[  351.737422][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  351.754085][   T31]  ? __kthread_parkme+0x7b/0x200
[  351.759181][   T31]  kthread+0x711/0x8a0
[  351.763294][   T31]  ? __pfx_worker_thread+0x10/0x10
[  351.778810][   T31]  ? __pfx_kthread+0x10/0x10
[  351.783859][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  351.799911][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  351.805217][   T31]  ? __pfx_kthread+0x10/0x10
[  351.817017][   T31]  ret_from_fork+0x3fc/0x770
[  351.827124][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  351.837008][   T31]  ? __switch_to_asm+0x39/0x70
[  351.841843][   T31]  ? __switch_to_asm+0x33/0x70
[  351.857101][   T31]  ? __pfx_kthread+0x10/0x10
[  351.861869][   T31]  ret_from_fork_asm+0x1a/0x30
[  351.866776][   T31]  </TASK>
[  351.912707][   T31] 
[  351.912707][   T31] Showing all locks held in the system:
[  351.942244][   T31] 3 locks held by kworker/0:1/10:
[  351.953306][   T31]  #0: ffff88801a482148 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  352.021653][   T31]  #1: ffffc900000f7bc0 ((work_completion)(&(&hub->init_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  352.044931][   T31]  #2: ffff88807bfab198 (&dev->mutex){....}-{4:4}, at: hub_activate+0xb7/0x1ea0
[  352.071296][   T31] 1 lock held by khungtaskd/31:
[  352.076306][   T31]  #0: ffffffff8e13bf20 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[  352.090161][   T31] 3 locks held by kworker/u8:7/1148:
[  352.100021][   T31]  #0: ffff8880b8639f58 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  352.113544][   T31]  #1: ffff8880b8623f08 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x39a/0x6d0
[  352.136997][   T31]  #2: ffff888030db8768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: cfg80211_wiphy_work+0xc4/0x460
[  352.147225][   T31] 2 locks held by getty/5592:
[  352.152027][   T31]  #0: ffff88814d73c0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  352.165745][   T31]  #1: ffffc9000331b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400
[  352.179781][   T31] 5 locks held by kworker/0:4/5885:
[  352.187005][   T31]  #0: ffff88823be1cf48 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  352.200751][   T31]  #1: ffffc900047c7bc0 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  352.212883][   T31]  #2: ffff888027a36198 (&dev->mutex){....}-{4:4}, at: hub_event+0x184/0x4a00
[  352.223608][   T31]  #3: ffff88807bfab198 (&dev->mutex){....}-{4:4}, at: usb_disconnect+0xf8/0x950
[  352.233035][   T31]  #4: ffff88807c6a0160 (&dev->mutex){....}-{4:4}, at: device_release_driver_internal+0xb6/0x7c0
[  352.251721][   T31] 1 lock held by syz.3.356/7302:
[  352.257183][   T31]  #0: ffff888027a36198 (&dev->mutex){....}-{4:4}, at: usbdev_open+0x16e/0x760
[  352.266314][   T31] 1 lock held by syz.5.594/8353:
[  352.276641][   T31] 
[  352.300810][   T31] =============================================
[  352.300810][   T31] 
[  352.313568][   T31] NMI backtrace for cpu 0
[  352.313588][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc3-next-20250627-syzkaller #0 PREEMPT(full) 
[  352.313613][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  352.313626][   T31] Call Trace:
[  352.313635][   T31]  <TASK>
[  352.313644][   T31]  dump_stack_lvl+0x189/0x250
[  352.313677][   T31]  ? __wake_up_klogd+0xd9/0x110
[  352.313702][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  352.313733][   T31]  ? __pfx__printk+0x10/0x10
[  352.313768][   T31]  nmi_cpu_backtrace+0x39e/0x3d0
[  352.313800][   T31]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  352.313824][   T31]  ? _printk+0xcf/0x120
[  352.313850][   T31]  ? __pfx__printk+0x10/0x10
[  352.313875][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  352.313904][   T31]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[  352.313934][   T31]  watchdog+0xfee/0x1030
[  352.313960][   T31]  ? watchdog+0x1de/0x1030
[  352.313992][   T31]  kthread+0x711/0x8a0
[  352.314016][   T31]  ? __pfx_watchdog+0x10/0x10
[  352.314037][   T31]  ? __pfx_kthread+0x10/0x10
[  352.314059][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  352.314087][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  352.314116][   T31]  ? __pfx_kthread+0x10/0x10
[  352.314145][   T31]  ret_from_fork+0x3fc/0x770
[  352.314175][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  352.314208][   T31]  ? __switch_to_asm+0x39/0x70
[  352.314227][   T31]  ? __switch_to_asm+0x33/0x70
[  352.314246][   T31]  ? __pfx_kthread+0x10/0x10
[  352.314267][   T31]  ret_from_fork_asm+0x1a/0x30
[  352.314303][   T31]  </TASK>
[  352.314310][   T31] Sending NMI from CPU 0 to CPUs 1:
[  352.475615][    C1] NMI backtrace for cpu 1
[  352.475635][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.16.0-rc3-next-20250627-syzkaller #0 PREEMPT(full) 
[  352.475656][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  352.475667][    C1] RIP: 0010:pv_native_safe_halt+0x13/0x20
[  352.475699][    C1] Code: cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 63 19 19 00 f3 0f 1e fa fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90
[  352.475715][    C1] RSP: 0018:ffffc90000197de0 EFLAGS: 000002c2
[  352.475732][    C1] RAX: c8c4e146ccd37800 RBX: ffffffff8196c578 RCX: c8c4e146ccd37800
[  352.475745][    C1] RDX: 0000000000000001 RSI: ffffffff8d992a42 RDI: ffffffff8be31f80
[  352.475758][    C1] RBP: ffffc90000197f20 R08: ffff8880b8732f1b R09: 1ffff110170e65e3
[  352.475771][    C1] R10: dffffc0000000000 R11: ffffed10170e65e4 R12: ffffffff8fa18930
[  352.475784][    C1] R13: 0000000000000001 R14: 0000000000000001 R15: 1ffff110039d5b40
[  352.475799][    C1] FS:  0000000000000000(0000) GS:ffff888125d1e000(0000) knlGS:0000000000000000
[  352.475813][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  352.475825][    C1] CR2: 00007ffc1afc3ff8 CR3: 0000000076d78000 CR4: 00000000003526f0
[  352.475842][    C1] Call Trace:
[  352.475850][    C1]  <TASK>
[  352.475857][    C1]  default_idle+0x13/0x20
[  352.475876][    C1]  default_idle_call+0x74/0xb0
[  352.475895][    C1]  do_idle+0x1e8/0x510
[  352.475922][    C1]  ? __pfx_do_idle+0x10/0x10
[  352.475954][    C1]  cpu_startup_entry+0x44/0x60
[  352.475978][    C1]  start_secondary+0x101/0x110
[  352.475997][    C1]  common_startup_64+0x13e/0x147
[  352.476023][    C1]  </TASK>
[  352.476742][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  352.645236][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc3-next-20250627-syzkaller #0 PREEMPT(full) 
[  352.656529][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  352.666679][   T31] Call Trace:
[  352.669966][   T31]  <TASK>
[  352.672921][   T31]  dump_stack_lvl+0x99/0x250
[  352.677549][   T31]  ? __asan_memcpy+0x40/0x70
[  352.682253][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  352.687478][   T31]  ? __pfx__printk+0x10/0x10
[  352.692092][   T31]  panic+0x2db/0x790
[  352.696008][   T31]  ? __pfx_panic+0x10/0x10
[  352.700439][   T31]  ? nmi_backtrace_stall_check+0x433/0x440
[  352.706286][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  352.711678][   T31]  ? nmi_trigger_cpumask_backtrace+0x2b6/0x300
[  352.717855][   T31]  watchdog+0x102d/0x1030
[  352.722204][   T31]  ? watchdog+0x1de/0x1030
[  352.726636][   T31]  kthread+0x711/0x8a0
[  352.730750][   T31]  ? __pfx_watchdog+0x10/0x10
[  352.735437][   T31]  ? __pfx_kthread+0x10/0x10
[  352.740037][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  352.745254][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  352.750465][   T31]  ? __pfx_kthread+0x10/0x10
[  352.755061][   T31]  ret_from_fork+0x3fc/0x770
[  352.759668][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  352.764797][   T31]  ? __switch_to_asm+0x39/0x70
[  352.769563][   T31]  ? __switch_to_asm+0x33/0x70
[  352.774329][   T31]  ? __pfx_kthread+0x10/0x10
[  352.778930][   T31]  ret_from_fork_asm+0x1a/0x30
[  352.783715][   T31]  </TASK>
[  352.787021][   T31] Kernel Offset: disabled
[  352.791350][   T31] Rebooting in 86400 seconds..