last executing test programs:

9m22.527394723s ago: executing program 32 (id=144):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0xc0)
write$P9_RLERRORu(r1, &(0x7f0000000300)=ANY=[@ANYRESHEX], 0x10)
write$binfmt_misc(r1, &(0x7f0000000040)="2084", 0x2)
r2 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x63)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x10012, r2, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r0, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000240)=[0x4], 0x0, 0x0, 0x1, 0x1}}, 0x40)

8m17.430619226s ago: executing program 33 (id=394):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, 0x0, 0x0)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
setsockopt$inet_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000040), 0x3)

8m8.466555807s ago: executing program 34 (id=420):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000200)=0x474c, 0x4)
bind$inet(r0, &(0x7f0000000240)={0x2, 0x0, @local}, 0x6f)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x300)
setsockopt$inet_int(r0, 0x0, 0x14, &(0x7f0000000000)=0x1f5, 0x4)
recvmmsg(r0, &(0x7f0000002ac0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000002c00)=""/4109, 0x100d}, 0xffffff81}], 0x1, 0x45833af96e4a39ff, 0x0)

7m47.289970205s ago: executing program 35 (id=470):
pipe(&(0x7f00000045c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f00000001c0)=[{&(0x7f0000000280)="af2178d12dd14c1ac862abd8b7fcf7ae604f7d0a81689f3144e9fcc51ed382a7b2528534af423fb98e8567e0b8a1702153", 0x31}], 0x1, 0x2)
r2 = socket$inet(0x2, 0x3, 0x7f)
sendmmsg$sock(0xffffffffffffffff, &(0x7f00000072c0)=[{{&(0x7f0000000280)=@xdp={0x2c, 0x5, 0x0, 0x2d}, 0x80, 0x0}}], 0x1, 0x8841)
setsockopt$inet_int(r2, 0x0, 0x3, &(0x7f0000000080)=0xfffffffa, 0x4)
connect$inet(r2, &(0x7f0000000040)={0x2, 0x20, @remote}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x8000, 0x0)

7m8.537770805s ago: executing program 36 (id=551):
socket$nl_route(0x10, 0x3, 0x0)
unshare(0x62040200)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x20, 0xfb, 0x6}]})
sendmsg$NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

7m0.804465199s ago: executing program 37 (id=570):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc08000309000000000000004000000e45400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d103000014000000110001"], 0xb4}, 0x1, 0x0, 0x0, 0x40088c0}, 0x40)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4451099e661a63b1}, 0x0)

7m0.75234925s ago: executing program 38 (id=572):
io_setup(0x9, &(0x7f0000000080)=<r0=>0x0)
r1 = epoll_create1(0x0)
r2 = eventfd2(0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x184)
io_getevents(r0, 0x6, 0x6, &(0x7f00000000c0)=[{}, {}, {}, {}, {}, {}], 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000040)={0x6000000e})
io_submit(r0, 0x1, &(0x7f00000009c0)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x4, r3, 0x0, 0x0, 0x3, 0x0, 0x1, r2}])

5m52.015500984s ago: executing program 39 (id=712):
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x2, 0x4001, @local}, 0x10, 0x0}, 0x34004000)
r1 = socket$kcm(0xa, 0x1, 0x106)
sendmsg$kcm(r1, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x20000011)
sendmsg$kcm(r1, &(0x7f0000000780)={&(0x7f0000000000)=@in6={0xa, 0xfffe, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0x2}, 0x80, 0x0}, 0xe07e872420dfefca)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000c40)={0x14, 0x24, 0x1, 0x70bd26, 0x25dfdbfc, {0x4}}, 0x14}, 0x1, 0x0, 0x0, 0x4000d}, 0x20000000)

3m59.876192965s ago: executing program 40 (id=1007):
socket(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a31000000000c00078008000640000007010500050002000000050004000000000016000300686173683a6e65742c706f7274"], 0x5c}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'batadv_slave_1\x00'})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="50000000090601020000ffff00000000020000000900020073797a31000000000500010007000000280007800c00018008000140ffffffff0500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)

3m46.830337705s ago: executing program 0 (id=1088):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
close(0x3)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
getsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f00000009c0), &(0x7f0000000a00)=0x4)

3m46.079278143s ago: executing program 0 (id=1090):
r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000100), 0x2)
r1 = memfd_create(&(0x7f0000000340)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\xdenJ\xeb\x87\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38\x14\xcb\xfa\xb3j\x92\f\xe0\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf0\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x2)
ftruncate(r1, 0xffff)
fcntl$addseals(r1, 0x409, 0x7)
r2 = ioctl$UDMABUF_CREATE(r0, 0x40187542, &(0x7f0000000140)={r1, 0x0, 0x0, 0x4000})
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000007, 0x11, r2, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

3m44.666358019s ago: executing program 0 (id=1094):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @empty, 0xffffffff}, 0x1c)
r1 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000180)=0x20800001, 0x4)
setsockopt$inet6_int(r1, 0x29, 0x4e, &(0x7f0000000000)=0x1, 0x4)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22, 0x3596, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x6}, 0x1c)

3m43.726926066s ago: executing program 0 (id=1098):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f00000003c0)={[{@max_batch_time={'max_batch_time', 0x3d, 0x4}}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@nombcache}]}, 0x1, 0x42f, &(0x7f0000000940)="$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")
setxattr$trusted_overlay_origin(&(0x7f0000000180)='./file0\x00', &(0x7f0000000000), &(0x7f0000000080), 0x2, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r0, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5412, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305829, &(0x7f0000000140)={0x17c04, 0xffffffffffffffff, 0x2, 0x973f, 0x84, 0x8000})
syz_mount_image$fuse(0x0, &(0x7f0000000000)='./bus\x00', 0x300f401, 0x0, 0x2, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@index_on}]})

3m42.024469146s ago: executing program 0 (id=1102):
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x63)
write$P9_RLERRORu(r0, &(0x7f0000000300)=ANY=[@ANYRESHEX], 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x3], 0x0, 0x0, 0x1, 0x1}}, 0x40)
write$FUSE_DIRENTPLUS(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="81"], 0x650)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x10012, r0, 0x0)

3m40.765412568s ago: executing program 0 (id=1107):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000400)={@in={{0x2, 0x4e20, @local}}, 0x0, 0x0, 0x4c, 0x0, "023d9f9842360fd6efdad82a09a2b01aa09a7eac52f9467e610a0c4996ec3f91ef1e30c2a7f7f9cdf978cefc34f4d0a02ca0585556b03580f09a14fe5fa56785ae9fda917b42837b6ad2191f8d3618ba"}, 0xd8)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x18, &(0x7f0000000100)=0xfefffff9, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000340)=[@timestamp, @sack_perm, @window={0x3, 0x9, 0x2}, @mss={0x2, 0x400}, @mss={0x2, 0xcb2}, @mss={0x2, 0x3}, @timestamp, @sack_perm], 0x26)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)

3m38.438874618s ago: executing program 41 (id=1107):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000400)={@in={{0x2, 0x4e20, @local}}, 0x0, 0x0, 0x4c, 0x0, "023d9f9842360fd6efdad82a09a2b01aa09a7eac52f9467e610a0c4996ec3f91ef1e30c2a7f7f9cdf978cefc34f4d0a02ca0585556b03580f09a14fe5fa56785ae9fda917b42837b6ad2191f8d3618ba"}, 0xd8)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x18, &(0x7f0000000100)=0xfefffff9, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000340)=[@timestamp, @sack_perm, @window={0x3, 0x9, 0x2}, @mss={0x2, 0x400}, @mss={0x2, 0xcb2}, @mss={0x2, 0x3}, @timestamp, @sack_perm], 0x26)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)

3m18.092257212s ago: executing program 1 (id=1163):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000100)={0xaa, 0x380})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000040)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00001b1000/0x4000)=nil, 0x400000, 0x2, 0x2})
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0xf, 0x204031, 0xffffffffffffffff, 0x2d5c000)
connect$inet(0xffffffffffffffff, &(0x7f0000000340)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x19)

3m16.925007272s ago: executing program 1 (id=1167):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@dioread_nolock}, {@data_err_abort}, {@inlinecrypt}, {@noauto_da_alloc}, {@data_err_ignore}, {@delalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@grpquota}, {@noblock_validity}, {@user_xattr}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@errors_remount}]}, 0x11, 0x553, &(0x7f0000001080)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000100)='./bus\x00', 0xd01ce0, 0x0, 0x82, 0x0, &(0x7f0000000080))
chdir(&(0x7f00000003c0)='./bus\x00')
creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x165840, 0x2)
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
unlink(&(0x7f0000000780)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

3m15.930595229s ago: executing program 1 (id=1170):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r0, 0xfffffffc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x18, r2, 0x7, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x4}]}, 0x18}}, 0x0)

3m14.366452227s ago: executing program 1 (id=1174):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f00000003c0)={[{@max_batch_time={'max_batch_time', 0x3d, 0x4}}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@nombcache}]}, 0x1, 0x42f, &(0x7f0000000940)="$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")
setxattr$trusted_overlay_origin(&(0x7f0000000180)='./file0\x00', &(0x7f0000000000), &(0x7f0000000080), 0x2, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r0, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5412, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305829, &(0x7f0000000140)={0x17c04, 0xffffffffffffffff, 0x2, 0x973f, 0x84, 0x8000})
syz_mount_image$fuse(0x0, &(0x7f0000000000)='./bus\x00', 0x300f401, 0x0, 0x2, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@index_on}]})

3m12.466636558s ago: executing program 1 (id=1177):
r0 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x1, 0x1)
fchdir(r1)
r2 = open(&(0x7f0000000180)='.\x00', 0x40080, 0x1a8)
r3 = inotify_init1(0x0)
inotify_add_watch(r3, &(0x7f0000000200)='.\x00', 0x10000a0)
getdents(r2, &(0x7f0000000680)=""/235, 0x18)

3m12.36567406s ago: executing program 4 (id=1179):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000000a00)=@file={0x1, './file1\x00'}, 0x6e)
listen(r0, 0x3)
r1 = syz_io_uring_setup(0x51e, &(0x7f0000000000)={0x0, 0x9e92, 0x10100}, &(0x7f0000000400)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000280)=@IORING_OP_ACCEPT={0xd, 0x0, 0x4, r0, 0x0})
io_uring_enter(r1, 0xa3d, 0x0, 0x0, 0x0, 0x0)
shutdown(r0, 0x0)

3m11.164009375s ago: executing program 4 (id=1181):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000000340)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f0000001840)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)="c6", 0x1}], 0x1, 0x0, 0x0, 0x20048054}}], 0x1, 0x8800)
sendto$inet(r1, &(0x7f00000002c0)="cc", 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000200)={0x0, 0x2}, 0x8)
close(r1)

3m10.126873968s ago: executing program 1 (id=1184):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f00000002c0)="cc", 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000300)={0x0, 0x0, 0x47a}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000180)={0x0, 0x6, 0x7a}, 0x8)

3m9.854061413s ago: executing program 4 (id=1185):
r0 = syz_io_uring_setup(0x496, &(0x7f0000000280)={0x0, 0x7945, 0x10, 0x8000, 0x8000e1}, &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_FILES_UPDATE={0x14, 0x18, 0x0, 0x0, 0x0, &(0x7f0000000180)})
write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[@ANYBLOB="06"], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x29, 0x6000, @fd=r3, 0x9f, 0x0, 0x0, 0x1c})
io_uring_enter(r0, 0x627, 0xc1040000, 0x43, 0x0, 0x0)

3m6.960956088s ago: executing program 42 (id=1184):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f00000002c0)="cc", 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000300)={0x0, 0x0, 0x47a}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000180)={0x0, 0x6, 0x7a}, 0x8)

3m6.890465878s ago: executing program 4 (id=1187):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f00000003c0)={[{@max_batch_time={'max_batch_time', 0x3d, 0x4}}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@nombcache}]}, 0x1, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
setxattr$trusted_overlay_origin(&(0x7f0000000180)='./file0\x00', &(0x7f0000000000), &(0x7f0000000080), 0x2, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r0, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5412, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305829, &(0x7f0000000140)={0x17c04, 0xffffffffffffffff, 0x2, 0x973f, 0x84, 0x8000})
syz_mount_image$fuse(0x0, &(0x7f0000000000)='./bus\x00', 0x300f401, 0x0, 0x2, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@index_on}]})

3m4.949732733s ago: executing program 4 (id=1192):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]})
close_range(r0, 0xffffffffffffffff, 0x200000000000000)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r1, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r2, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001500add427323b472545b45602117fffffff81004e230e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7102d000000ffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)
preadv2(r1, &(0x7f00000000c0), 0x0, 0x0, 0x0, 0x1)

3m0.742312861s ago: executing program 4 (id=1200):
r0 = userfaultfd(0x80801)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2000009, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000002c0)={0xaa, 0x100})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000000000/0x400000)=nil, 0x400000}, 0x1})
syz_genetlink_get_family_id$tipc2(&(0x7f00000020c0), 0xffffffffffffffff)
read(r0, &(0x7f0000000000)=""/76, 0x4c)
r1 = syz_open_procfs(0x0, &(0x7f00000002c0)='fdinfo/3\x00')
read$FUSE(r1, &(0x7f0000002080)={0x2020}, 0x54)

2m58.595097758s ago: executing program 43 (id=1200):
r0 = userfaultfd(0x80801)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2000009, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000002c0)={0xaa, 0x100})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000000000/0x400000)=nil, 0x400000}, 0x1})
syz_genetlink_get_family_id$tipc2(&(0x7f00000020c0), 0xffffffffffffffff)
read(r0, &(0x7f0000000000)=""/76, 0x4c)
r1 = syz_open_procfs(0x0, &(0x7f00000002c0)='fdinfo/3\x00')
read$FUSE(r1, &(0x7f0000002080)={0x2020}, 0x54)

2m51.375379725s ago: executing program 7 (id=1220):
io_uring_setup(0x32a6, &(0x7f00000001c0)={0x0, 0x5f57, 0x0, 0x4, 0x200010c})
ioctl$FE_SET_PROPERTY(0xffffffffffffffff, 0x40086f52, &(0x7f0000000180)={0xe, &(0x7f00000001c0)=[{0x22, '\x00', @data, 0x80000001}]})
r0 = syz_io_uring_setup(0x3a65, &(0x7f00000005c0)={0x0, 0xa011, 0x10100, 0x0, 0xffffffff}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000980)='freezer.parent_freezing\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_LINK_TIMEOUT={0xf, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1, 0x20, 0x1})
io_uring_enter(r0, 0x5d62, 0x0, 0x0, 0x0, 0x0)

2m50.607121176s ago: executing program 7 (id=1223):
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r1 = socket$unix(0x1, 0x2, 0x0)
ioctl$int_in(r1, 0x5421, &(0x7f0000000000)=0x5)
connect$unix(r1, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmmsg(r1, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x0)
connect$unix(r0, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
close(0x3)

2m50.253117914s ago: executing program 7 (id=1225):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000480)={0xa, 0x4e20, 0x0, @mcast1, 0x1}, 0x1c)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000f59ffc)=0x4, 0x4)
bind$inet6(r1, &(0x7f0000000480)={0xa, 0x4e20, 0x0, @mcast1, 0x2}, 0x1c)
r2 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000f59ffc)=0x4, 0x4)
bind$inet6(r2, &(0x7f0000000480)={0xa, 0x4e20, 0x0, @mcast1, 0x2}, 0x1c)

2m49.821952206s ago: executing program 7 (id=1226):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x23e9c9e, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000280)='./file0/../file0\x00', &(0x7f0000000100)='./file0/file0\x00', 0x0, 0x28a5291, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000300)='devpts\x00', 0x101c040, 0x0)
umount2(&(0x7f0000000340)='./file0/../file0\x00', 0x1)

2m49.262434495s ago: executing program 7 (id=1228):
sendmsg$TCPDIAG_GETSOCK(0xffffffffffffffff, 0x0, 0x0)
r0 = socket(0x2a, 0x2, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000240)="f2435f0100088000000000850800", 0xe, 0x1, &(0x7f0000000200)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}}, 0x14)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c00000013000100000000000000000000000002", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=r2, @ANYBLOB="1400350064756d6d7930"], 0x3c}}, 0x0)
ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f0000000080)={'dummy0\x00'})

2m48.783739938s ago: executing program 7 (id=1231):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000040), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000002c80)=@gcm_256={{0x303}, "b4446984ab48e00f", "12e8718eabf68cb38024ceaecbd59788b6c5572a36268da23500", '\x00', "612ae691fedd1ad6"}, 0x38)
sendto$inet6(r0, &(0x7f0000000340)="d1", 0x1, 0x8000, 0x0, 0x0)
write$binfmt_aout(r0, 0x0, 0xfdef)
write$binfmt_elf64(r0, 0x0, 0xfdd6)

2m47.281044309s ago: executing program 44 (id=1231):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000040), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000002c80)=@gcm_256={{0x303}, "b4446984ab48e00f", "12e8718eabf68cb38024ceaecbd59788b6c5572a36268da23500", '\x00', "612ae691fedd1ad6"}, 0x38)
sendto$inet6(r0, &(0x7f0000000340)="d1", 0x1, 0x8000, 0x0, 0x0)
write$binfmt_aout(r0, 0x0, 0xfdef)
write$binfmt_elf64(r0, 0x0, 0xfdd6)

1m58.370535021s ago: executing program 8 (id=1370):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
r1 = inotify_init1(0x0)
inotify_add_watch(r1, &(0x7f0000000040)='./file1\x00', 0x7f7)
link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00')
r2 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
write$cgroup_int(r2, &(0x7f0000000540), 0xfffffdd8)
pipe(&(0x7f00000002c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r0, 0x0, r3, 0x0, 0xffc, 0x800000000000000)

1m55.374165201s ago: executing program 8 (id=1373):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
close(r0)
r2 = open(&(0x7f0000000200)='./file0\x00', 0x800, 0x1a1)
fcntl$setlease(r2, 0x400, 0x1)
execve(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)

1m43.741548405s ago: executing program 8 (id=1377):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
unshare(0xc000400)
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe2(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RGETLOCK(r2, &(0x7f0000000040)=ANY=[], 0xffffff6a)
pipe2(&(0x7f0000000280)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x80000)
tee(r1, r3, 0xfffffffffffffc01, 0x0)

1m43.215938651s ago: executing program 8 (id=1384):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000380)={[{@discard}, {@debug}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@norecovery}, {@inode_readahead_blks}, {@nodelalloc}, {@noblock_validity}, {@discard}]}, 0x4, 0xbaf, &(0x7f00000017c0)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x31056, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000006b40)={0x2020}, 0x2020)

1m41.103618215s ago: executing program 8 (id=1391):
r0 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local}, 0xc)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x4e23, @multicast2}, 0x10)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x1c)
setsockopt$inet_mreq(r1, 0x0, 0x23, 0x0, 0x0)

1m39.667632742s ago: executing program 8 (id=1398):
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x3, 0x10000, 0x0, 0x3, 0x9, 0x6, 0x30002, 0x739, 0x1, 0x73e, 0x7, 0x100000000, 0x1000008, 0x6, 0x3ff, 0xf6], 0x1001, 0x80440})
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$setregs(0xd, r0, 0x8, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
io_submit(0x0, 0x0, 0x0)
ptrace$getregset(0x4205, r0, 0x2, &(0x7f0000000080)={&(0x7f0000000000)=""/120, 0x78})
ptrace$getregset(0x4204, r0, 0x2, &(0x7f0000000740)={0x0})

1m37.077818994s ago: executing program 45 (id=1398):
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x3, 0x10000, 0x0, 0x3, 0x9, 0x6, 0x30002, 0x739, 0x1, 0x73e, 0x7, 0x100000000, 0x1000008, 0x6, 0x3ff, 0xf6], 0x1001, 0x80440})
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$setregs(0xd, r0, 0x8, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
io_submit(0x0, 0x0, 0x0)
ptrace$getregset(0x4205, r0, 0x2, &(0x7f0000000080)={&(0x7f0000000000)=""/120, 0x78})
ptrace$getregset(0x4204, r0, 0x2, &(0x7f0000000740)={0x0})

17.439587622s ago: executing program 2 (id=1687):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
accept4$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x0, @my=0x1}, 0x10, 0x0)
connect$vsock_stream(r1, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
shutdown(r1, 0x1)
ppoll(&(0x7f0000000100)=[{r1, 0x408}], 0x1, 0x0, 0x0, 0x0)

16.735512603s ago: executing program 2 (id=1690):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000280))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffc000/0x4000)=nil, 0x4000}, 0x1})
ioctl$UFFDIO_COPY(r2, 0xc028aa05, &(0x7f0000000040)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000000/0x3000)=nil, 0x3000})

9.940318371s ago: executing program 3 (id=1712):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x5e22, 0x0, @empty}, 0x1c)
listen(r0, 0x5)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
bind$inet6(r1, &(0x7f0000000540)={0xa, 0x4e22, 0x7, @empty, 0x200}, 0x1c)
listen(r1, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x30}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00\x00 ', 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2, 0x11, 0x0, 0x1ff}}}}}}}, 0x0)

9.086819671s ago: executing program 3 (id=1717):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e)
connect$unix(r0, &(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e)
renameat2(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000140)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
listen(r1, 0xffffffff)

8.555893997s ago: executing program 9 (id=1719):
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
syz_io_uring_setup(0x50d0, &(0x7f0000000000)={0x0, 0xfffffffd, 0x2, 0x2, 0x332}, &(0x7f0000000100), &(0x7f0000ff4000))

8.153620056s ago: executing program 3 (id=1721):
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)
r0 = syz_create_resource$binfmt(&(0x7f0000000100)='./file1\x00')
r1 = openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff)
close(r1)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000400)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
execveat$binfmt(0xffffffffffffff9c, r0, 0x0, &(0x7f0000004780)={[], 0xf000}, 0x1000)

7.972553255s ago: executing program 5 (id=1722):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0xca02})
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f00000002c0)={0x0, 'syzkaller0\x00', {0x1}, 0xb5})
r2 = socket$netlink(0x10, 0x3, 0x0)
preadv(r0, &(0x7f0000000140)=[{&(0x7f0000000100)=""/17, 0x11}, {&(0x7f00000000c0)=""/10, 0xa}, {&(0x7f0000000540)=""/119, 0x77}], 0x3, 0xe, 0x6)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

7.459283492s ago: executing program 2 (id=1723):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x442, 0x1ff)
write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="7f454c460d04000c028000000000000003003e"], 0x51)
close(r2)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)

6.889787142s ago: executing program 9 (id=1725):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141102)
writev(r0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
r2 = syz_io_uring_setup(0x512, &(0x7f0000000280)={0x0, 0xc65f, 0x0, 0x9, 0x40}, &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000000c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r1, 0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xa}, 0x0, 0x2121, 0x0, {0x3}})
io_uring_enter(r2, 0x47f6, 0xb277, 0x0, 0x0, 0x0)

6.636602507s ago: executing program 2 (id=1726):
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000004c0)={[{}]}, 0x1, 0x453, &(0x7f0000001040)="$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")
open(&(0x7f0000000040)='./bus\x00', 0x400141042, 0x2a)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x8000, 0xa0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x8005, 0x0, 0x0, 0x12, 0xd, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x204]})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x4842, 0x1cb)
ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f0000000300)={0x5, 0xa, 0x2, 0x3})

6.271694648s ago: executing program 6 (id=1727):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x7, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000000)=@gcm_128={{0x304}, "bd88818314ff7d84", "0b3ea924c47b25d7624cd362581725c7", "000400", "d5a1d50399459b68"}, 0x28)
shutdown(r0, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000500)={'veth1\x00', &(0x7f0000000200)=@ethtool_per_queue_op={0x4b, 0xf, [0xa, 0x1, 0x7fff, 0x1, 0x4, 0x9, 0xa4, 0xffb, 0x7, 0xb69, 0xc1, 0x4, 0x1, 0x3, 0x5, 0x101, 0x1000, 0x9, 0x3, 0x3, 0x1, 0xfffffffa, 0x0, 0x6, 0x9, 0x4, 0x7, 0x5, 0x100000, 0x762, 0x3, 0xd, 0xe, 0x2b12, 0x100, 0x6, 0x1c00, 0xb, 0x7, 0xbed4, 0x8, 0x8000100, 0x3, 0x0, 0x11000, 0x8, 0x5, 0x79b, 0x2, 0x1, 0x7f, 0x4, 0xa, 0x7, 0xf, 0x101, 0xd7, 0x1fa0860a, 0x7, 0xaa, 0x81, 0x2, 0x180000, 0x4007, 0x8b, 0x5, 0x2af, 0xf7, 0x5, 0x2, 0x6, 0x9, 0x4, 0x7, 0x4009, 0x0, 0x4, 0x100002, 0x8, 0x752, 0x0, 0x1005, 0x0, 0x10001, 0x2, 0xffffffff, 0x6, 0x6, 0x9, 0x80000000, 0xfdffffff, 0x2, 0x2, 0x84, 0x100, 0x5, 0x252, 0x81, 0xb, 0x5, 0x20006, 0x5, 0x2, 0xb, 0x2, 0xd9a, 0xd, 0x2a2, 0xfffffffd, 0x3, 0x2, 0x5, 0x8, 0x0, 0x4, 0x2, 0x40, 0x8, 0x4, 0x3, 0x401, 0x66cd, 0x8, 0x8, 0x1, 0x1fc, 0xc5c, 0xffffffff]}})
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)

6.157385923s ago: executing program 3 (id=1728):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2, 0x4)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x2000010, &(0x7f00000000c0)=ANY=[@ANYBLOB='fd=', @ANYRESOCT=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f000000c3c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x9, 0x1100, 0x40, 0x0, 0x6, 0x0, 0x0, 0x0, 0x40}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="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", 0x2000, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)={0x20, 0x0, 0x7, {0x0, 0x1}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x22801, 0x10)
pselect6(0x40, &(0x7f0000000100), 0x0, &(0x7f0000000240)={0x1f, 0xfffffffffffffffe, 0xe, 0x0, 0x7, 0x4, 0x0, 0xfffffffffffffffc}, 0x0, 0x0)

5.914832197s ago: executing program 5 (id=1729):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x42}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0x4}, {}, {0x6, 0xffff}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8, 0x1, {0x3, 0x9}}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0xc858}, 0x80)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@gettfilter={0x24, 0x2e, 0x205, 0x70bd2c, 0x25dfdafd, {0x0, 0x0, 0x0, r3, {0xc, 0xc}, {0x0, 0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000801}, 0x4041080)

5.401385385s ago: executing program 6 (id=1730):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x4})
r1 = open(&(0x7f0000000280)='.\x00', 0x20000, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r3 = openat$cgroup_ro(r1, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000180), 0xfea7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})

5.056058161s ago: executing program 2 (id=1731):
unshare(0x22020600)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1, 0xfffffffc}, 0x50)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x8, 0x94, 0x7fff0000}]})
close_range(r0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0xe654, 0x1, 0x1, 0x80000}, 0x0, 0x0)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x0, 0x0, @hyper}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x1f, &(0x7f0000000000)=[0xffffffffffffffff], 0x1)

4.88787323s ago: executing program 9 (id=1732):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000000040)={0x0, 0x2000, 0x0, {0x0, 0xa}, {0x1, 0x8db}, @const={0x0, {0x0, 0x8, 0x2, 0x81}}})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4808000010001fff3a4ee9bfd5c3a3696c40af0b", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800a00010076786c616e"], 0x3}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0)

4.712667847s ago: executing program 5 (id=1733):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@userxattr}]})

4.518632874s ago: executing program 6 (id=1734):
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x11c0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
r1 = epoll_create1(0x80000)
close(r1)
r2 = socket(0x28, 0x801, 0x0)
connect$vsock_stream(r2, &(0x7f0000000880)={0x28, 0x0, 0x0, @local}, 0x10)
shutdown(r2, 0x1)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000000)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

4.461104949s ago: executing program 3 (id=1735):
r0 = syz_io_uring_setup(0x82e, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x20, 0x2, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0}})
r3 = userfaultfd(0x801)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x48c})
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
io_uring_enter(r0, 0x27e2, 0x0, 0x0, 0x0, 0x0)

3.89290169s ago: executing program 6 (id=1736):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)
r2 = syz_clone(0x10000011, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x2, 0x0, 0x0, 0x4, 0x0)
r3 = syz_pidfd_open(r2, 0x0)
pidfd_send_signal(r3, 0x2, 0x0, 0x0)

3.81879325s ago: executing program 5 (id=1737):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300))
socket$can_bcm(0x1d, 0x2, 0x2)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r0 = socket(0xa, 0x2, 0x0)
r1 = dup(r0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{}, 0x0, &(0x7f0000000080)=r1}, 0x20)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="4400000001010102000000000000000002000000240002800c000280040001003a00000014000180080001cd4bde2a0192000000000000000c001980080002"], 0x44}, 0x1, 0x0, 0x0, 0x40080}, 0x0)

3.580034538s ago: executing program 2 (id=1738):
r0 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
r1 = openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff)
close(r1)
execveat$binfmt(0xffffffffffffff9c, r0, 0x0, 0x0, 0x0)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r2, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
listen(r3, 0x7f)

1.395860747s ago: executing program 46 (id=1738):
r0 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
r1 = openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff)
close(r1)
execveat$binfmt(0xffffffffffffff9c, r0, 0x0, 0x0, 0x0)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r2, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
listen(r3, 0x7f)

1.343637567s ago: executing program 9 (id=1740):
socket$netlink(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000080), 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r1=>0x0})
sendmsg$can_bcm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)=ANY=[@ANYBLOB="05"], 0x48}}, 0x80)
sendmsg$can_bcm(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)=ANY=[@ANYBLOB="0500000000e0ffffffffffff", @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="0000008001"], 0x48}}, 0x40000)
sendmsg$can_bcm(r0, &(0x7f00000002c0)={&(0x7f0000000000)={0x1d, r1}, 0x10, &(0x7f0000000280)={&(0x7f0000000140)=ANY=[@ANYRES32=r0], 0x48}}, 0x0)

1.301177365s ago: executing program 6 (id=1741):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = memfd_create(&(0x7f00000003c0)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xact\xf4\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xfbF\x99V4\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xe8\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`\x01Os\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x8f\x13\xda\x95\xec\"\x95\xc5B\x9dE\xe1\xd0_b\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W\x06|\x1c\x80\xbc\x84<o?\xb1\x14\xb6\xf4h\xf2\x198\xf6', 0x3)
write$binfmt_elf64(r2, &(0x7f0000000080)=ANY=[], 0x78)
sendfile(r1, r2, &(0x7f00000001c0), 0x8)
fcntl$addseals(r2, 0x409, 0x8)
ftruncate(r2, 0x2)
close_range(r0, 0xffffffffffffffff, 0x0)

1.260660044s ago: executing program 3 (id=1742):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f00000002c0)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}, 0x1, 0x0, 0x0, 0x4008001}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000080)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}, 0x1, 0x0, 0x0, 0x880}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000540)=@delchain={0x24, 0x66, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x9, 0xffe0}, {0x0, 0xffff}, {0xffe0}}}, 0x24}}, 0x0)

1.233696866s ago: executing program 5 (id=1743):
syz_emit_vhci(&(0x7f0000000340)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_name={{0x7, 0xff}, {0x76, @any, "0ac2854fbb104aa3c3f2dc903bf55c80479c5d750c43117bf2e6799588d693686812fc734d9f00c6a2a607addd1f3289c5567dc885c211b505b5edf91d25f83db47e4cd1c8164b2e7ed4ede0d173151a6f539bbeb483524735ddd9061716d778186eb02c894647d150171d24a581b08625739e8693ba396d2d2b8e9dbb50f9ce4dd1a1a57554f472c0e7b73a308aabff621fa446334ff41710ee9dc1e115a0e26712864b6f46e94dacc2e74fe6f89aa063b84119e105ae0e75f086f78f122451b313ac97cc98ffd3a7c3180da90302ef3ded08f2b435db4d123e907bb005b94ee131c1ca9f4ce20e90203f4cbcfeb6a7de2746d8fe5d3d90"}}}, 0x102)
munmap(&(0x7f000045e000/0x1000)=nil, 0x1000)
mremap(&(0x7f0000dde000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000bb3000/0x1000)=nil)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
mremap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1000, 0x3, &(0x7f0000050000/0x1000)=nil)
mremap(&(0x7f0000d2f000/0x4000)=nil, 0x4000, 0x1000, 0x3, &(0x7f0000769000/0x1000)=nil)
munmap(&(0x7f00003fe000/0xc00000)=nil, 0xc00000)

793.004078ms ago: executing program 9 (id=1744):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000240)='oom_adj\x00')
fchdir(r1)
r2 = inotify_init()
inotify_add_watch(r2, &(0x7f0000000000)='./file0\x00', 0x701)
write(r0, &(0x7f0000000280)="80f47a", 0x3)

719.157634ms ago: executing program 6 (id=1745):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000100)={[{@grpid}, {@auto_da_alloc}, {@lazytime}, {@minixdf}]}, 0x7, 0x4d4, &(0x7f0000000180)="$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")
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
inotify_init()
inotify_init1(0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000000)='./bus\x00', 0x300f401, 0x0, 0x2, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
chown(&(0x7f0000000080)='./file1\x00', 0x0, 0x0)

679.163285ms ago: executing program 5 (id=1746):
r0 = userfaultfd(0x1)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x270})
mremap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000fff000/0x1000)=nil)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f00000000c0)={{&(0x7f0000ffb000/0x3000)=nil, 0x3000}, 0x1})
r1 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000001440)={0xaa, 0x145})
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000100)={{&(0x7f0000ffe000/0x2000)=nil, 0x2000}, 0x1})
mremap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000, 0x3, &(0x7f0000390000/0x1000)=nil)

0s ago: executing program 9 (id=1747):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x1, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f0000006e80)={0x2020, 0x0, <r1=>0x0, <r2=>0x0, <r3=>0x0}, 0x2082)
statx(0xffffffffffffff9c, &(0x7f0000002040)='./file0/file0\x00', 0x4800, 0x100, 0x0)
write$FUSE_INIT(r0, &(0x7f0000004300)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0x11812410, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x4}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000000000)="03684a7b99a4fde940f3ec0d105ea2c8267323117153aa4a4f099c3835a607cd5cbd77b83cc33d13bbb6c6bcae59db739af84a4b5d34bffc145f3cc27ed3d4f9d9b3103699a1e1cc4ddfb6c1afd07ddfc18e358cd62649479724ce867fefc0a15041bee9f6084842fb982d5c2cf1488d668b741c64f0a6fd2643e729ac5a56462a6b64d5a0a751fda4fadf63ba0dc2fd14ecbf546918db77095545b41ab170e5d6e8ec8bf9ce9b8d53b832e90c701fe52af7999f8fd509577ead1be27891ada8564167f2c7d2eea1c1c9c65d8e151c58ddee43ec34e74d330ec50cbbb2bb21892c7ca995066e3cbea8a69d94dc6bcef5f3c0ef630e774d092ea58627f3e09c66a9c7d1abcf4f8f8af87f4269df288aca9bbf758275ce9695256e764d185a91a7570fca3aab16c75ecaff6b8dda371c3226d6ec6e55c5c4d8cfc5c33892bacc956a3613bcfa849da1b5e070a7911d7488b3e628d9339718e8b821f1bb5d5c45f0316bb563d0a442801412dfd5a4d61ca657e04d6686f7d5863d57954400aeee8e79be8f3cc4cbb3d4b91269df039c3d3543e500b90a2bdc6eb60cc7afab7b5187d88fbd76e6212ea29e872b73f925287bdc808b4a4f8ec7f8aa08bc90b29e217c3eef69d8deae4141f4f9bd110b7bde9320e7b45f422e9a6111bcaf99c9911e46e219d3bab477926bd5d2e78d4cd0eca133c232b1e863fd7799dbf609f3670b323e5518e8f4bd36e9b3da2c68a28eaec9cac688b4dd0b73adc24a8c7acc264399b7facbc2f43e8e40b6cae9f8e956d1dbfe259f12bae75ad362c354050ffdd6e954f2d7615fafce888bd6f672a81c9fd4318caba765069c0a425e898bf7611b77f0fe61c27d318159dba42f011900246c64557d27b77aef928ab04a147baca37863cf998a2ac30b903c0314449ddb218887c309ec7184c8c733f5d4e7b2d79516e9531c9a5becf8294d6ccd777f285b13160e1c949d3069c6c66c0daa62bac679bc9b69825398d1c290d765e882fa2c8708b20ccec885ab6785dc22696b61c109ff84bc5407932c3e5bf12069a68b8e3333a26d3dd390ef9bc01b86013fbcb5c28a1f4d2b8084f1502fccc4027a124c3629d8f4a8befd14b597cebda5f94f36050a31b95087cbac347788a71a90e87f2187fae600aa42719c05c2859cb30ae0fd58a7bba681f7a6027a00583071def2c9a94456e5d9acb9fd2d11fdea524582489c02377bf7f590948985c769b3822cb6366681d79113c6a6c752f2475caba77b7b2e8f293d7fd9b991f63e254c98dec94f4f3def4fee9cdb56ff3ba7fe6a718cbe9a7f04710e257ea8a49d6605266048fc122d4f3173d4b04b3e282bd3c5198d7fcb72ec38e0b07dd8a541b2807e601e5a0a01f07a281e0e1a261c65977088a54597efd0997c59647aeebb2605a89705eeff3ec780e302e24b23a0cbe4f81367c3f118545f01328d22eb8e802667389143166a9db9477c9b58eb5c76a19b8f8b2692b0d356003f08ae54dfc820d8e357ecbf91fb7e212cbef1262171abaf2f613a5bb59b783cad476fec50d16ca0ac13c08a59a3097e6e3fde700a4b987d10311fc22d4aa210956cd859799f78010e4c0f25b715876aa253df15009490f71be3b0022875161f537c70b14bdb9e2d87a5a11b414a1198533c7de6fc4d22228133bc26b19d9f1e7627b14c72e3c39d3fa2186a42e50a0d1867dc312f94c7209d51475ed4aa80b2ccb0557a40422bf7317de2fdf3296727723a2d23babd5e23f7c3edf4942bb485b95a122e6aba41b8f80f684f84605462448d5a4fd66dfe9bbf80590b9999b4780d4f4f189a20f4400b2975df85b584c8c8f9fa3095f13aede1f52dac98be358b0a0d72bed4df71cd23973e326179580268c4e5d1be4b2ae2e1e2dba913998faa6088af128fc8fd3ae26203a898882b67d86d63f6ee8f8e216337330db6d928facf9d0ca273845ee5b33a0a136aeb48b7c52d3b95fe73efaf06197ec8753ee0349f19db8730917d0f18a2de9602d3b887bc583ff64dfee67e2bdf4d5cc1c341b89acd3dd5176d2c15ec2a77120b8a49591ca438ae36c52845e5dca550e539da9ba2a2eda49be316f3d6d4b7c83666bd4759940347c29dedd273adac722630a940e104316b4806553ded47132be4e31a50600f5a4dd56825b245b7aae853f56f79e0ec31f7b5db945ee3bb92865acb0d8828598e77446ee50ecd8bf5e7ccbd963445a09e3be215709b0b3bff2e9d12e6549924338f236b4ff973682e2e03fbf6b167e3b3a0f8c3f3c1e8d0e21a71937c918cabab50dd74c011a1a5531cfcf88a5df5fa58f17715f7c7b3a64d9dab6f20a596288969191420ed71daccbae7c1ec88bf74811b5e1f4bd306f3d810c4f3600df2903ffdf8db40ac7153fd93327a1065cf2c4590c8ba9f9391eb6aa600cb42aff8793e4721afeb3d470beda45dad9adfc6f4fdb24eafc63792f5015c656ca37cee82b7ee382bda31d786d6e03d4c8611c4ca464e2360ca747815c9eebd38c8fc7d5eea2db96b29d771a96dc5c884029077125bcc31980564555d21ecce5d0388e1bc1e618c7dfb31b02b1a6730db7eda387dd4ceb96f65178bb088e81133e5086f73c458f84139685ef930945a51979faeab539e4964244709dcb8b38f575d3a3ec1328a0df65fb34241db7cb3250b8ae0dbc44670d2b5cc3a1785d8d281c05256ef2beee3b202d8bce053e55ce1fb2bb208e65d488ae24484b00c2e343fc3544ca546406688022db6e29ceca9539ec095a2a2cfc5f516230f75fc961c5de1e8d33222331f57db02cac5f9208029c6114d041bb1cc7f959f77511f5790a564600c018afc253e5ecd5010bd769b45a04296ca09e87fb63bf3d3b51dd8b3f6d4426a03c0944d09dff654c5718ab1fef063caba34029be6811502e8bb785011dd1e34b0c192915adeeb40faad0725a8f9a62acf61b944a271d20567f350cdee22d76e3cc5966ba742d9c43823af19ba74c60da0df0c5f4e7e26af7224147774a1f8ae09f929066e1769ffb3c40ba9fed13d2670b9e865a155426ed5c83648c0ad34e46f5308b455e0835730fe529668b606f3f52b0d04534d0e14bc0ff0f742359550e6980ac9978455adb3de0f292af12a3700453e035a49eafe98fc0d7f26e42a6c41f380448607b7c96291f98fa6bbd7e32c249a49171f8fa81762a490a1ce5c39d66d35c6ed6c0679440c06197c2e24d48e1de81c711164c02820816afb5393d3d6c801c3c062ac46d1494f52c45ca36faf94894eec9d71e1be6c7256f4aee8dc080156b28623c821ef8d1826ebf0a41332620f42589270e142561374c825e828e2bd9ae41fd34959db48319d54ffe7a1b58ae8f7361cbaee8e26e0e7e1b7f125f8cd99788825efd01c38ec987904190a0ad52bc20cd36cc7209f9269ac87b2fa44d2456661d3056d893cf912c69ae6b2b83d0c781a6d6c33df1910867b71257ab74e244e3ebbac07445069418fe2e440a384e16feedf8e3165676e67866430eb6a8a5334620d8c2cda15b0328bb0c50630886353f95241cf4f3b647a4ff812c70e1b074c4befdc70fbfdbf868bcc81652034b5bfa831f1b686724046dcd17ac91ace83711e9ec7465d14c9d508bce93676a58ef7dae37221436865ad34ac2fd691e3b3e12aee6736dbdeec9b1c05fcedf8b9ced547259a1a40471ebe8b4bfda69d2f884da025e2809fb9f159150bbcb331ca3c502012a7fe76b4fc2771976aeb624ad7f2d72c707f5f19d8ded84581ac5afa697ff99d27d88c9588fe769839c9cc9d6786a0f814667527c53b6253b1825bfe17e7d734d96d61da0ae7349d0922774fa9b4baf332a4568e32cafa417ec659c4ad72cd656a1e2c59c8dee38890ed3acd8b4f8657de41f670106c38c38ba1a553f0f589a57c61f5105d70e0c0953459383cb9337ca972cda1d2cd3056eb07f21c1f5b995a04997fecf501bb201c67fd2afe4d44fedea595969b6b3706087b0f59d2ddbb099d60436a94f0ba33282b29f6e914fe92add4b33cf70b680b905cfa2b2ccb00b9967f99806e8d69783fd35a2d7fbb424e9fde2647609aecb0208bc3864bf95f05e50ba12123edaca8de927b338dfcb3cc597947c606c08315061a7fec98c48f480e2febd26fcc8dc12289aeb0adefa2c2be1766a5bc74ef1aab6c2cdbdfbf1810d956bc889c8e614b7b933ff6e336bb208db5b592775fe71c3ebfad5f47e0d074e1c0cb36761481ec677794f23c3698bd35875719f242e3fc939bc3668f9723f31effe189dabdf4ebbed073eab952c88f13059eee22230bc7724d7266b15726a0b0898cdd274e3e56d0a356166b5d16456249e9e92e84e39f61c0ecdf99ec2cd230440c03fd21cf68f27306628d35ea47367775f39d20a07f3959b38d49e3674061fc1018b647047ad39f77027878badd29927c5806f95aebde5f070fed28ed34052550678d3c6b677a3b5a46f76a98264c42206bf62caa95df5437092b68e025ee9ce2ad733b6db3ec97fd33cdc3b2f77ee90dd86d8bd289ae1a437c86f4153ddcff5e846347bfecc1499bb42980e4fa91790faee1b1991dfead5d7c460348631f0469b2b9e8f65207a00985511e0c41f441d9a3154f5a0298c172fd7135d4bf95c11cdf1769db1cc55f392aec309037599327a7c53c10a56d1ace8ad19186a2fc75dfa9d657c114eae99c1c1a6b4a58440718bea82290bd1c2a67048938c381648ea2b2c7110d748c9c8d782f20430b1427b51d7036e55b0997c6f75717db67a82c88d3647ee036b49392f0467d6010b32f9de3e5e79ef082c5bb975d11d2bf76a97f7159c11a7753db8a065d3126ccda9abbebd2c54374e389942c24b27435868fadb45bb060d3c1084b211e2afa8dfaa2d8dab8dc47fe10e6c32afece7c4976176a7c66d704125c0948c238c843b41b0246be1f50f8e07884cfe7ae8885ca06339a339c8d5978b079e0eb78facfa1dc67ca70733dfefc6c868ca149e0661b70e0134870a3107c8c46711fed14f892d6fc66d95306838688f13b19e904416a8d161cc33527878b38ad10b1c08db21457b2075608be7300d39748e4fcebe02b190f3e8ed32a0ef734b11ca43a21f5f809bba795f5aa0ea01050021d0f5213620af5b08fda6421a42b7c82804a20a6ef6d471babf76f46538327f943476d1d109a3f0dc531233d6f93d8dc27f4745735085f92adf63d617b373fba24f289035710e69eb80da12d36e8eaec22620ffaabadfb824bd5fc309a2c74959505856b5b890bba8f22bc571a9d87e93ba3b9aba6dcf26f7076c0c2e271641835ea25fd49d96c69d4fb8bb8731bd2cbc75146aed10d269f9060462339cde8830b535920be3dbf143eace0f1ea9469b95a64fbd7e5057eb880d4422cbf97cfc3f7140251d4923580ca2113f345cf24a66499ceffd2e39dc4fd74cf448638962957b409f0d218c165c13ffe107aa1dd1d9a02092cd46cf2b353dd2d2ca7b8a7ae8eda0ee18bba269bbffed0c7d400497aee4da0896cf6329d76ccea098fbef9075412d1c2a3644cf0f202b884303d204314ae92c56217b2feb5e7c1e15a99fbdd655fb8f6bbc3ab1259bf03b2ee17c5b7e9443695177ec5040eeff3fc36ceafe143393d76a3d735cfe6c9b632e52dbe64dc1265961e8a27ee9f76c0add9e0581e474d7678214f5b64c932903715befc6b766611f1d7e495573b9a3e009cfcb0ffef7ac57c3561badbfa41c119e541180aa2364de61a601699cd1bf3de01d15794b728e1444efd6ffa1e57d95489c8df91fbc057b66dd6d9f3a01b19f36bc99f0b54ed1f9905067dd1608bce47f5ff1981a25184aacd39e331d8ff3dfa7c012d7e667a69249cb4803b23f7eeaab8ed29c69ba3d2a1b88821ffefc5825650c53b6364f38e0a178312f5d29d5375423cceabc8e1c4e51a566ba3f9b176b858c8860440ff8ebdde725640d2dff6b9160bb69f188755b0ff766b410704cda4c33e1ae2c73b5799a00d2f55de73109728b350302b64df2ce3eaf2e0c6561009b60c2701ac493076305e97ed20c3b42f40b2bc7f13bba4ab8181e2085b07930c6f5579205dff696902be824e65ddc774e886e8d261fe74712a31e406b0f7725b4559d7ad0f27a1a870261aa5bb8a720e7c89ba933770d48821416de070df1abcc6eee1147c20bda090d940aeee2bd48c0f3d94675d9b9cf1a62ba50e31a7af0714dd8325d5fb7142e88c4d22ddb8f0278ee6ba88e361524e291b6d000f6523ad4188b021da9ef4a634ed09eb2002b9c726746c9ffc32f261edb448106aa1e2daaed865255fd1d296fedbbb2de3f7c1f15935e52006492b632ad125aa1e000c9d71bdb945792668e16b26122a3fd7cba1a40db8083068c5c48fd2aaa621c87d9f5621bba442fc26839030dbe4e37fda4046d6503bb03e0f928de25d4cd4e2a40ec93c9021dfcbb25f6e2c943cc85eba8123340d6364949581e8c8c2913d59dafe4297672c0b9e7418485f00cbcf672a588904beb3c074bebf339815b91c7c374ceed5a701e1ade8f5d87ca536120116307ac259577a8e12958425317c482d2c7089bf3d83e12318d1526107a050f3c094492de7255b22e18ca2ff261b3ed197f2f8e67b71b1c5a6a04b99158b58e9baad75201aabe13254617d0de0a9073af62491c67fc18d1ccbf7686a85a99b39e9d7d9c85a0777e47c9fd0e10c932c20f13ef287b44b9b706ec818aa0c48a10caac58a9b8355e84bc820698c2501f0c12e1b67df701cfcbe72dc47a2c87d43753ebfdb24cc838507e241d9fcd3d4955a373209ccda903a3ffced05e4232f2cca9bba197fdba8a9357cb1d6da6d9b4095027dc03e17d59ebc2d358e171da0044df102b193c79390ebcb58023b40c621df71e064b0056bfcf1eaee1eca85357cd1ac78feaa54bbbd85596977ba85003ea60d8685f4e3b756e4f81453077396590fa214f672929e81569442023667b798c24e06ee20dbf64cfccb51b2bca4e2a5b0df137bb37ab3e2854dc7e1b879866a72a5809b563596cc9fd3e53abdbccfd5dbc60662252ddc5c290d72230d79b7504b40fdb45ded2f02e926652c1e04ea4c1c488025ad1098adeebe98e385ab1caec4b9eb4d3bbd5ef3ddf1fd0d72784604a989558fd37f6d4fee20609090b3331e254fec98414a2c54589ee01c9429b7cb574b9167efede1d966a227bf2a8e422f38680d77d3c555cf1117e7d7e804ad730c36a78b7846473d6481bd0839bd3e6982ed47246c370a90b76e5b88de202346fb20b8b6b5ecb6a90b8478d17b175a1821df75b48ecc34866fe5c8960bf64d5ff92831bb9357474bec65e0dd1699b0f0340ee5ac5e9e9d3df66edca20201371fc21ad80aacd49c6b0abcfee9c876c15edcfccde823b55b61cb7b254487ef8c8781a22043f4adaf25df34580a6b3904fd014b50c59fa90eff75fa5fd32aaec9aa10df8a2b9b824952e475c964533942bbe30f4167a11fc15d548e0a31f911030569722f0c67e79e90483f6f0bee1c7f80face1a1b0f940c891be688cb16394f6c07fd29b5f248c211d1f76ec1292755d8bd963e191b3a8851472fbbd2cb732f4fd9fef3a8fb29aea097328173fdeaf56fa2279e86fb954306b040c960d0b601b3a741c96cf1f0bd1172f848585cb3b57d7d2e2a84914526f5a6f9895cf5aa4425b4dbf9f59037756a0321bba204a737e36277e86fd268f6047921f4f8fab69dfee137c07874f12f89084e7117e2c9221690a27f880f17d08d56f9dbc96ffef3920b55fb773dde72e1ba35f3e0c9872e339508281426ab04941df4885f7e0293149f1642c2573e2b6594b8fd953ae2468cf917cdaa0692cf461e3628860935def39af78af5e1540147ab1c70c3ab7f7c76abea0d8541feb43e632d7a2cc7bef15a4700304048ecf135968d0a9644ce899aad05b186a2224bab3836248cc6137472203ebceb29b3e87610df12417ee722f309c54b2e65591d8b929440f3ec43ee9ff8f7b7710668e4312610d1591303d5270394da0ab61e4515af5215dc81137f0dc90f951972731f8d98ceb8b4ea38da7d8dc153ccbae5068781eaf9a4a7b11b4319090261b61aa65a8536292eb5392020eb285b2db07f81e7f764d65037050f1e3748593474c6c1dc11cfcb56e1c916157280098a437265e1c682cbfed717e7275bc6c3bb6c6ef7f0f9fdd19ef82ff2c82284c3a061f57b21d3705aff97710108a7d1217a7ea3feda021d20f1fdca94bbef67e0aeaa3db6ccc2d060f7b33707fe19cb2d0232f1239373bb38e666cbbbf3a697c6d0e957ec6730f56034440e789a7a37304d09eb742f21019a77c608cf578162a55d0aea113c051b110b5281ed8b6638d2b31604e965cb019f2f106bc4e96d1313c70612f1ff18afdce7926270dd242c49cc53792f160d1e143e04d7eb3ca40828b153fac466bc53a084281987b47b806a4ef668859eb9035ef68e9c20bd6bb790fdf6f921569b4e97fae5b7edc761b4944c1d6d90f4df40bc3203ed838d4c61cdeb7a9bbb68d59b2cc00125eecaf06b759ac1b9dd68028225d0a60efa499e4436962362727011eef6cc55962dd4ffe2fd3892907e837045883cc9ba8892ab265a31924f3055d4dee68feff05d9f10ebdf1e8c1c1e7001b5b02a7fe26b9c0641e054ae37854187fb1bb6e9fae05b09e85a1e0e14bc801f2d8b9a178a9a72b147e137e0d83192664a88a3aca4fb6a4f0c5787b20c31bc5975dfbc8bcff8987573bd14b1ca434d93452e67ed01c60be99e535bb3f848888d224520b61cfc1de2d6b2ebef9f24674c31aada52784a0b7b60f351653c71d546cf951e6b4a0d917ac6afd0a713f41833f9f74a3a7d3c19b523299666da2b48676ca7aafebadef05b3bbf4b6b62834046f51d3d4582fb4c9de27a3f5e992853368e4f17f9dba27c8c4438307fc7405f53fb27cc81c1521452a1a5edb0cabdf7a73b1cab0675b619fd5a0fadb7147776e74695c042d9d8bfda045bcef7542b42249f34c7590605d0201a762390f2fee5f3cdb488426609c663c9fc4dc2a5277f3f589a14e6dcc202dfcd89bb148a368ff1792d230c19934143d2c260dbdfb334af863b856e415febd22fba01c568d8f48dba6d92f493cd1164a376f006d55db609cc2c9532a9f56da3b06e3db2a05f797eed57892e2fb677541324bcd763cf4669e7a871e322d0cc6e21befe3c767976f058dbe7a059d673c94c7ac5d49178bf19d32907b6fe66a92cc8ea30a858da43f74354390d6e97021da50812c59a78915e5b33221531bfa054c594ce3a2300e5a7d712773181901dfcf6922e980566fa62b1f2b669a27fbecce29e9be6d22058463e350163f33d18ce92a72d1b470857b6a37998aec5672521a8f0d66ab2bd01de516036ec47d1f63b95b437dc6d5a0168189d5a963cb0a80a9a5f20b03515396e3525f0ab13b0c1e5dd051b4c930da6d57ab6f7dd94ab3e689e0355af0b34871296152a76cce170d7b14d471ee4d9daa93de4ed755f30d45344f724288c17e4b22583158f1305ff55fecf7d526e207fa609886e14c9a168bf364b049409f63590f18a5515de8c1fd8c5a9710b6e33d2ecd01466b799f14be787612b8f17df0c05483a16097c0a504880249e28f1e067663c640a550a8c7ad9d090f7b2e902c5c20936869a5f3d3a014817f90babf847b43cf67ec23f120ae4abc63a418d1d99f359fc2c33a5bb34e1f5780576111a88c5ede834bc41e498548ddd128f9e884f4cd3e1bf1aaa1204079ce74e709306f38f2d6859128fc35d3a74c534ff1dccadfc8fe41f1be9510349af8710eb6d2dbc758be12b65622dad1cf48abc2fc409f5ed6a3af8d0b6548643c46dfba9db4e5827475e6e317c9c018a4dd5de391cc9cca85ec527537e26949e5091baca4f0b563d4c3969f15115e5ccdeb9e40788fe12f9d32d9488a70ae53b819726e4483ea6bbcb76f99775ca5e4f93c76edae462c08d596209f985aa55ef5e786701edcee8d831dd6dc0fee9ad01b6bdd63e886a5e55bdc593390c81e18dfd8c685b81306bad6b7a19a86b2bab5cbf4754708422e99f8f2497d798b3db565e709bcbba4c376c1c60b22b994fe8fdcb25215d505511cc1927f6a35344023d5da0a3ac0830e6aa80f5f7f0d94a67c99c6b22717078aecba2a599daa2acc054cda25e3965172e5fef464ec19aa71de5e84b6de30cc673fbab8c441ea37bfb3fc321a504371bc0996702e9be38db762e339ad7ad66dc2caa887e4ab60272d7963f85b14c941d31e545b85c640427302efe7142f0e0897a8c623ce57da213fbc2d1f90677142fd48cafca0b2934e572833ed6473218d0513dd1f6ecc578e5a1109ddae552b3be0cfe7246d7682a59fe9ae783a0f318d1800d5c466c80c5fd3facd0340f455f081068dd2cda5cda744018d902217152b6c05d37c090f8348b0471053152c2a4570fbab3f6dc30c8e49a63b88a00b3aac75180a633692e35ea976821694e133eb8bb4d31237d002fce1dd2ce55528dafcef2f0e00690562d144bb0e19576ce6ab72deac22067d8edac916b1b07e4eb57ff0b885b1b79f37dcf88135eedc17ffd948b61e4df4985033bcf891dd5b1448c8668947a271d93d03ce31216810a6bb45a6c5a12e290d97a60ad4b5c7384cf19421ac1ca64d346b50771e0b50e5caf1d9dfe056e8da247aa502ff04c8e29ca810a1d3ec7a89bc17dba2936f03a80228171f7999b3f2768617970efe57b14011c80666ac4999a568ebef74e2ca14df0ff6f0fcd47c538be96aaca1e65b53b98447101e49672b48167c0afc1afffe669b0f9718bd3305805c292db9738740b362564e4691cbdf061db1ed3f9db1f8bed82939f835d14f46818e3eb4e25f7a8d77d9d0d7913c45d8a81115c1a5e37b1d3bd1b7b5e6afaaefc81d9700bf83506fbf15457bc0f59f7008cc803efdcb6d39e388f6b28e80d47134265cc5438804b12d50e61a489da829dca05792d2ac182ba747331e88a7118f7dd38067f7d38f37be362260effacbc33863bb47aeebbadeae648a1090718266eedd2ed5a2c23f168759198aa92b2ac45c2a68ff212f29260e641a38541b066d39df4e95cd1c8e7e6ffae1b8017e6f629db3910b07496c8a81e4e66ac2321fd9e7ebfecf5bf6e922d7a79fb710a2d42dad1916c9b186c2c50c818fdb1afa19be867d943ee98f732fe3a01364281c0f6d0eb64a278721dc7bff5316256b0f4251abbd9b8ba7c7c12a3bf02a1fbc9ca94b965588fbc82343d07df8e06eaa5ed2137fec129351d80a9048a7d78b31ffaf2e388864a763c4af7aa53000e0bb2eb8ac0e4272cbb79dc6a7d65890f125c523c7cfddacdedbe87938aca915c92c807dab26be7d748827d4e3188676312ef1ac8460b29e8e715f4075e33104ce82e6785aadf17a7cf82d2a705e9f2d0fd25810ba33d76e54b48eda3effc01f37c89db38af81922fadc8c3361fe74ed51eac5e4437108106ffdedb339b406c082d62a8bf718989846d23f966e1ea39103010f767b3a6f0a0a2041b1dafcb787e69ffad75ed2a0081b92a4136ad5ae557c55a4b6219a390103428181ab36f329ad182a92957495c", 0x2000, &(0x7f0000006dc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000004480)={0x90, 0x0, 0x6, {0x3, 0x0, 0x7fffffff, 0x1fffffffffffd, 0x400, 0xc, {0x1, 0x9, 0x8, 0x1, 0x1, 0x4, 0x8, 0x123, 0xdab5, 0xa000, 0x0, r2, r3, 0x6, 0xffff}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
fspick(0xffffffffffffff9c, &(0x7f0000002000)='./file0/file0\x00', 0x0)

kernel console output (not intermixed with test programs):

782] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  444.312960][ T8715] bridge0: port 2(bridge_slave_1) entered disabled state
[  444.332852][ T8715] bridge_slave_1: entered allmulticast mode
[  444.349011][ T5782] usb 10-1: Product: syz
[  444.353474][ T5782] usb 10-1: Manufacturer: syz
[  444.389251][ T8715] bridge_slave_1: entered promiscuous mode
[  444.403540][ T5782] usb 10-1: SerialNumber: syz
[  444.464361][ T5782] usb 10-1: config 0 descriptor??
[  444.559976][ T5782] em28xx 10-1:0.89: New device syz syz @ 480 Mbps (0ccd:10af, interface 89, class 89)
[  444.633586][ T5782] em28xx 10-1:0.89: Video interface 89 found: bulk
[  444.791953][ T8715] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  444.861768][ T8715] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  445.302954][ T5782] em28xx 10-1:0.89: unknown em28xx chip ID (0)
[  445.361161][ T8715] team0: Port device team_slave_0 added
[  445.483038][ T8715] team0: Port device team_slave_1 added
[  445.815757][ T5782] em28xx 10-1:0.89: AC97 command still being executed: not handled properly!
[  445.891090][ T8715] batman_adv: batadv0: Adding interface: batadv_slave_0
[  445.898634][ T8715] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  445.970736][ T8715] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  445.995352][ T5782] em28xx 10-1:0.89: reading from i2c device at 0xa0 failed (error=-5)
[  446.033967][ T5782] em28xx 10-1:0.89: board has no eeprom
[  446.046957][ T8715] batman_adv: batadv0: Adding interface: batadv_slave_1
[  446.054061][ T8715] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  446.187270][ T5782] em28xx 10-1:0.89: Identified as Terratec Grabby (card=67)
[  446.195012][ T5782] em28xx 10-1:0.89: analog set to bulk mode.
[  446.201617][ T8715] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  446.217167][   T10] em28xx 10-1:0.89: Registering V4L2 extension
[  446.317156][ T5782] usb 10-1: USB disconnect, device number 2
[  446.324832][ T5782] em28xx 10-1:0.89: Disconnecting em28xx
[  446.757332][   T10] em28xx 10-1:0.89: Config register raw data: 0xffffffed
[  446.764603][   T10] em28xx 10-1:0.89: AC97 chip type couldn't be determined
[  446.833008][   T10] em28xx 10-1:0.89: No AC97 audio processor
[  446.928018][   T10] usb 10-1: Decoder not found
[  446.932910][   T10] em28xx 10-1:0.89: failed to create media graph
[  446.975778][   T10] em28xx 10-1:0.89: V4L2 device video103 deregistered
[  447.057066][   T10] em28xx 10-1:0.89: Registering snapshot button...
[  447.071401][ T8715] hsr_slave_0: entered promiscuous mode
[  447.127043][   T10] input: em28xx snapshot button as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.89/input/input5
[  447.153324][ T8715] hsr_slave_1: entered promiscuous mode
[  447.243132][ T8715] debugfs: 'hsr0' already exists in 'hsr'
[  447.283392][ T8715] Cannot create hsr debugfs directory
[  447.301832][   T10] em28xx 10-1:0.89: Remote control support is not available for this card.
[  447.415707][ T5782] em28xx 10-1:0.89: Closing input extension
[  447.421822][ T5782] em28xx 10-1:0.89: Deregistering snapshot button
[  447.609663][ T5782] em28xx 10-1:0.89: Freeing device
[  448.412845][ T8858] loop0: detected capacity change from 0 to 2048
[  448.604254][ T8861] sctp: [Deprecated]: syz.9.761 (pid 8861) Use of int in max_burst socket option.
[  448.604254][ T8861] Use struct sctp_assoc_value instead
[  448.637727][ T8858] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  448.819859][ T8858] ext4 filesystem being mounted at /34/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  449.202849][ T8858] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000.
[  449.221257][ T8715] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  449.464143][ T8871] netlink: 4 bytes leftover after parsing attributes in process `syz.3.764'.
[  449.530308][ T8715] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  449.600136][ T8873] loop9: detected capacity change from 0 to 256
[  449.619744][ T8871] netlink: 80 bytes leftover after parsing attributes in process `syz.3.764'.
[  449.679534][ T8029] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  449.686132][ T8871] netlink: 80 bytes leftover after parsing attributes in process `syz.3.764'.
[  449.802703][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  449.809556][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  449.893922][ T8715] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  450.287922][ T8715] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  451.218367][ T8715] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  451.515354][ T8715] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  451.600256][ T8715] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  451.715941][ T8715] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  453.347719][ T8715] 8021q: adding VLAN 0 to HW filter on device bond0
[  453.597537][ T8715] 8021q: adding VLAN 0 to HW filter on device team0
[  453.777236][  T143] bridge0: port 1(bridge_slave_0) entered blocking state
[  453.784726][  T143] bridge0: port 1(bridge_slave_0) entered forwarding state
[  453.947870][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  453.955335][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  454.275887][ T1928] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  454.505932][ T1928] usb 1-1: Using ep0 maxpacket: 8
[  454.587127][ T1928] usb 1-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  454.635967][ T1928] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  454.680605][ T1928] usb 1-1: Product: syz
[  454.704207][ T1928] usb 1-1: Manufacturer: syz
[  454.722357][ T1928] usb 1-1: SerialNumber: syz
[  454.758926][ T1928] usb 1-1: config 0 descriptor??
[  455.060496][ T1928] usb 1-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  455.418188][ T8927] loop1: detected capacity change from 0 to 128
[  455.463550][ T8927] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  455.619175][ T8927] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  455.999848][ T1928] dvb_usb_rtl28xxu 1-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -32
[  456.119916][ T1928] usb 1-1: USB disconnect, device number 2
[  456.335042][ T8027] FAT-fs (loop1): error, corrupted directory (invalid entries)
[  456.364011][ T8027] FAT-fs (loop1): Filesystem has been set read-only
[  456.420429][ T8027] FAT-fs (loop1): error, corrupted directory (invalid entries)
[  457.050764][ T6083] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.204847][ T6083] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.301090][ T8715] 8021q: adding VLAN 0 to HW filter on device batadv0
[  457.363334][ T6083] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.530981][ T6083] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.043516][ T6083] bridge_slave_1: left allmulticast mode
[  458.069124][ T6083] bridge_slave_1: left promiscuous mode
[  458.087727][ T6083] bridge0: port 2(bridge_slave_1) entered disabled state
[  458.129605][ T6083] bridge_slave_0: left allmulticast mode
[  458.160254][ T6083] bridge_slave_0: left promiscuous mode
[  458.202110][ T6083] bridge0: port 1(bridge_slave_0) entered disabled state
[  459.074206][ T6083] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  459.124523][ T6083] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  459.154741][ T6083] bond0 (unregistering): Released all slaves
[  459.770179][ T6083] hsr_slave_0: left promiscuous mode
[  459.782273][ T6083] hsr_slave_1: left promiscuous mode
[  459.799209][ T6083] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  459.812325][ T6083] batman_adv: batadv0: Removing interface: batadv_slave_0
[  459.828683][ T6083] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  459.840334][ T6083] batman_adv: batadv0: Removing interface: batadv_slave_1
[  459.880768][ T6083] veth1_macvtap: left promiscuous mode
[  459.886892][ T6083] veth0_macvtap: left promiscuous mode
[  459.892751][ T6083] veth1_vlan: left promiscuous mode
[  459.902703][ T6083] veth0_vlan: left promiscuous mode
[  460.867464][ T6083] team0 (unregistering): Port device team_slave_1 removed
[  460.925516][ T6083] team0 (unregistering): Port device team_slave_0 removed
[  461.352553][ T8715] veth0_vlan: entered promiscuous mode
[  461.435397][ T8715] veth1_vlan: entered promiscuous mode
[  461.635339][ T8715] veth0_macvtap: entered promiscuous mode
[  461.686632][ T8715] veth1_macvtap: entered promiscuous mode
[  461.789590][ T8715] batman_adv: batadv0: Interface activated: batadv_slave_0
[  461.892849][ T8715] batman_adv: batadv0: Interface activated: batadv_slave_1
[  461.983023][  T143] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  461.997572][  T143] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  462.044905][  T143] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  462.069955][ T6079] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  464.595764][ T6083] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  464.603786][ T6083] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  464.723802][ T6085] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  464.741901][ T6085] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  465.329469][ T9030] loop4: detected capacity change from 0 to 512
[  465.453622][ T9030] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  465.515717][ T9030] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  465.595363][ T9030] EXT4-fs (loop4): 1 truncate cleaned up
[  465.603308][ T9030] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  465.618507][ T5779] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  465.627728][ T5779] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  465.637022][ T5779] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  465.658758][ T5779] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  465.670307][ T5779] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  465.671226][ T9029] EXT4-fs (loop4): shut down requested (2)
[  465.716829][ T9030] EXT4-fs error (device loop4): ext4_lookup:1785: inode #14: comm syz.4.713: invalid fast symlink length 39
[  465.780037][ T9030] EXT4-fs (loop4): Remounting filesystem read-only
[  466.014675][ T8715] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  466.180181][ T9041] IPv6: NLM_F_REPLACE set, but no existing node found!
[  467.249288][ T9033] chnl_net:caif_netlink_parms(): no params data found
[  467.765921][ T5779] Bluetooth: hci1: command tx timeout
[  467.918025][ T9062] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  469.012803][ T9073] fuse: Bad value for 'fd'
[  469.165687][ T9033] bridge0: port 1(bridge_slave_0) entered blocking state
[  469.206402][ T9033] bridge0: port 1(bridge_slave_0) entered disabled state
[  469.246587][ T9033] bridge_slave_0: entered allmulticast mode
[  469.280102][ T9033] bridge_slave_0: entered promiscuous mode
[  469.370394][ T9033] bridge0: port 2(bridge_slave_1) entered blocking state
[  469.456535][ T9033] bridge0: port 2(bridge_slave_1) entered disabled state
[  469.464326][ T9033] bridge_slave_1: entered allmulticast mode
[  469.598140][ T9033] bridge_slave_1: entered promiscuous mode
[  469.846619][ T5779] Bluetooth: hci1: command tx timeout
[  470.027984][ T9033] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  470.084251][ T9033] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  470.596876][ T9033] team0: Port device team_slave_0 added
[  470.736244][ T9033] team0: Port device team_slave_1 added
[  471.251382][ T9033] batman_adv: batadv0: Adding interface: batadv_slave_0
[  471.287381][ T9033] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  471.486224][ T9033] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  471.570277][ T9033] batman_adv: batadv0: Adding interface: batadv_slave_1
[  471.595866][ T9033] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  471.696015][ T9033] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  471.929016][ T5779] Bluetooth: hci1: command tx timeout
[  471.947001][   T10] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  472.115836][   T10] usb 10-1: Using ep0 maxpacket: 32
[  472.134345][   T10] usb 10-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA6, changing to 0x86
[  472.180832][   T10] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x86 has an invalid bInterval 0, changing to 7
[  472.223813][   T10] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x86 has invalid wMaxPacketSize 0
[  472.280884][   T10] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x7 has an invalid bInterval 255, changing to 11
[  472.336309][   T10] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid maxpacket 59391, setting to 1024
[  472.406615][   T10] usb 10-1: New USB device found, idVendor=05ef, idProduct=020a, bcdDevice=91.36
[  472.419310][ T9033] hsr_slave_0: entered promiscuous mode
[  472.455695][   T10] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  472.464124][   T10] usb 10-1: Product: syz
[  472.471981][ T9033] hsr_slave_1: entered promiscuous mode
[  472.475634][   T10] usb 10-1: Manufacturer: syz
[  472.529955][   T10] usb 10-1: SerialNumber: syz
[  472.531533][ T9033] debugfs: 'hsr0' already exists in 'hsr'
[  472.541647][   T10] usb 10-1: config 0 descriptor??
[  472.572408][ T9033] Cannot create hsr debugfs directory
[  472.616056][ T1928] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  472.828267][ T1928] usb 5-1: Using ep0 maxpacket: 32
[  472.889002][ T1928] usb 5-1: config 0 has no interfaces?
[  472.936837][ T1928] usb 5-1: New USB device found, idVendor=0582, idProduct=008d, bcdDevice=b8.a2
[  473.026359][   T10] iforce 10-1:0.0: usb_submit_urb failed: -32
[  473.032759][   T10] input input6: Device does not respond to id packet M
[  473.090748][ T1928] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  473.100166][ T1928] usb 5-1: Product: syz
[  473.105189][   T10] iforce 10-1:0.0: usb_submit_urb failed: -32
[  473.122617][   T10] input input6: Device does not respond to id packet P
[  473.153984][ T1928] usb 5-1: Manufacturer: syz
[  473.165683][ T1928] usb 5-1: SerialNumber: syz
[  473.176988][   T10] iforce 10-1:0.0: usb_submit_urb failed: -32
[  473.183370][   T10] input input6: Device does not respond to id packet B
[  473.204780][ T1928] usb 5-1: config 0 descriptor??
[  473.546279][   T10] iforce 10-1:0.0: usb_submit_urb failed: -71
[  473.566218][ T1928] usb 5-1: USB disconnect, device number 3
[  473.580182][   T10] iforce 10-1:0.0: usb_submit_urb failed: -71
[  473.611803][   T10] iforce 10-1:0.0: usb_submit_urb failed: -71
[  473.622984][   T10] iforce 10-1:0.0: usb_submit_urb failed: -71
[  473.698276][   T10] input: Unknown I-Force Device [%04x:%04x] as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.0/input/input6
[  473.914526][   T10] usb 10-1: USB disconnect, device number 3
[  474.005797][ T5779] Bluetooth: hci1: command tx timeout
[  474.775086][ T9119] loop4: detected capacity change from 0 to 512
[  474.917567][ T9119] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  475.306513][   T29] audit: type=1800 audit(1772249962.127:50): pid=9133 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.809" name="ext4" dev="loop4" ino=19 res=0 errno=0
[  475.889779][ T8715] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  476.012363][ T9033] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  476.175258][ T9033] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  476.326801][ T9033] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  476.443494][ T9033] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  476.533136][ T9146] 9pnet: p9_errstr2errno: server reported unknown error 0x0000000
[  476.708792][ T9151] Bluetooth: MGMT ver 1.23
[  476.715192][ T9148] loop4: detected capacity change from 0 to 128
[  477.910486][ T9157] bridge0: port 2(bridge_slave_1) entered disabled state
[  477.919005][ T9157] bridge0: port 1(bridge_slave_0) entered disabled state
[  478.487522][ T9182] Invalid ELF header magic: != ELF
[  479.489943][ T9157] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  479.634814][ T9157] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  482.595766][ T5779] Bluetooth: hci0: command 0x0406 tx timeout
[  483.094475][ T6096] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  483.147066][ T6096] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  483.195624][ T6096] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  483.204857][ T6096] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  483.336332][ T6096] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  483.404401][ T6096] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  483.477412][ T6096] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  483.535799][ T6096] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  484.464089][ T9033] 8021q: adding VLAN 0 to HW filter on device bond0
[  484.761463][ T9033] 8021q: adding VLAN 0 to HW filter on device team0
[  484.900065][ T6096] bridge0: port 1(bridge_slave_0) entered blocking state
[  484.907601][ T6096] bridge0: port 1(bridge_slave_0) entered forwarding state
[  485.191647][ T6096] bridge0: port 2(bridge_slave_1) entered blocking state
[  485.199233][ T6096] bridge0: port 2(bridge_slave_1) entered forwarding state
[  486.713210][ T9280] syzkaller0: entered promiscuous mode
[  486.748075][ T9280] syzkaller0: entered allmulticast mode
[  487.514995][ T9033] 8021q: adding VLAN 0 to HW filter on device batadv0
[  488.235069][ T9033] veth0_vlan: entered promiscuous mode
[  488.436284][ T9033] veth1_vlan: entered promiscuous mode
[  488.914940][ T9033] veth0_macvtap: entered promiscuous mode
[  489.040833][ T9033] veth1_macvtap: entered promiscuous mode
[  489.450676][ T9033] batman_adv: batadv0: Interface activated: batadv_slave_0
[  489.580574][ T9033] batman_adv: batadv0: Interface activated: batadv_slave_1
[  489.653947][ T9319] loop4: detected capacity change from 0 to 512
[  489.708908][  T143] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  489.716005][ T9319] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  489.751221][ T6079] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  489.829664][ T9319] EXT4-fs error (device loop4): xattr_find_entry:337: inode #15: comm syz.4.860: corrupted xattr entries
[  489.847153][ T9319] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  489.855790][    C0] EXT4-fs (loop4): error count since last fsck: 1
[  489.871765][    C0] EXT4-fs (loop4): initial error at time 1772249976: xattr_find_entry:337: inode 15
[  489.881574][    C0] EXT4-fs (loop4): last error at time 1772249976: xattr_find_entry:337: inode 15
[  489.902148][ T9319] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2858: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  489.988237][ T6079] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  490.017470][ T9319] EXT4-fs (loop4): 1 orphan inode deleted
[  490.044531][ T6079] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  490.061382][ T9319] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  490.648814][ T8715] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  491.885682][ T1928] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  492.080473][ T1928] usb 10-1: Using ep0 maxpacket: 32
[  492.133865][ T1928] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  492.164431][ T1928] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  492.200062][ T1928] usb 10-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  492.249645][ T1928] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  492.318133][ T1928] usb 10-1: config 0 descriptor??
[  492.805703][ T5779] Bluetooth: hci2: command 0x0406 tx timeout
[  492.835324][ T1928] ft260 0003:0403:6030.0002: unknown main item tag 0x0
[  493.002002][ T1928] ft260 0003:0403:6030.0002: chip code: 5e81 abf2
[  493.019466][ T9367] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  493.047743][ T9367] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[  493.139110][ T9367] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  493.151528][ T9367] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  493.204047][ T9367] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  493.210874][ T1928] ft260 0003:0403:6030.0002: USB HID v0.00 Device [HID 0403:6030] on usb-dummy_hcd.9-1/input0
[  493.236676][ T9367] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  493.328309][ T9367] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  493.334526][ T9367] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[  493.407697][ T1928] ft260 0003:0403:6030.0002: failed to retrieve status: -32, no wakeup
[  493.506394][ T9367] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  493.546257][ T9367] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  493.642084][ T9206] usb 10-1: USB disconnect, device number 4
[  495.144135][ T9392] loop9: detected capacity change from 0 to 1024
[  495.305664][ T9392] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  495.314383][ T9392] System zones: 0-1, 3-36
[  495.459618][ T9392] EXT4-fs error (device loop9): ext4_orphan_get:1417: comm syz.9.877: bad orphan inode 134217728
[  495.555619][ T9392] loop9: lost filesystem error report for type 5 error -117
[  495.564225][ T9392] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  495.755828][ T9392] EXT4-fs (loop9): shut down requested (2)
[  496.197638][ T7955] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  497.806356][ T9433] 9p: Bad value for 'wfdno'
[  498.320631][ T6789] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  498.385910][ T6789] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  498.693833][ T6083] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  498.785571][ T6083] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  501.231351][ T9476] netlink: 4 bytes leftover after parsing attributes in process `syz.9.898'.
[  505.353799][ T9537] loop4: detected capacity change from 0 to 256
[  505.395756][   T29] audit: type=1804 audit(1772249992.197:51): pid=9538 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.9.921" name="file0" dev="ramfs" ino=27782 res=1 errno=0
[  505.614113][   T29] audit: type=1326 audit(1772249992.427:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9535 comm="syz.4.919" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc8f6c code=0x7ffc0000
[  505.649703][ T9529] loop1: detected capacity change from 0 to 8192
[  505.738228][   T29] audit: type=1326 audit(1772249992.427:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9535 comm="syz.4.919" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc8f6c code=0x7ffc0000
[  506.177495][ T9546] netlink: 8 bytes leftover after parsing attributes in process `syz.3.922'.
[  506.257831][ T9546] netlink: 7 bytes leftover after parsing attributes in process `syz.3.922'.
[  508.277080][ T9556] loop1: detected capacity change from 0 to 8192
[  508.414829][ T9556] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  508.457449][ T9573] netlink: 'syz.4.933': attribute type 4 has an invalid length.
[  508.557456][ T9582] netlink: 'syz.4.933': attribute type 4 has an invalid length.
[  509.554176][ T9164] libceph: connect (1)[c::]:6789 error -101
[  509.643012][ T9164] libceph: mon0 (1)[c::]:6789 connect error
[  509.677127][ T1928] libceph: connect (1)[c::]:6789 error -101
[  509.683517][ T1928] libceph: mon0 (1)[c::]:6789 connect error
[  510.009716][ T1928] libceph: connect (1)[c::]:6789 error -101
[  510.020871][ T1928] libceph: mon0 (1)[c::]:6789 connect error
[  510.037375][ T9164] libceph: connect (1)[c::]:6789 error -101
[  510.090076][ T9164] libceph: mon0 (1)[c::]:6789 connect error
[  510.200543][ T9591] ceph: No mds server is up or the cluster is laggy
[  510.251522][ T9595] ceph: No mds server is up or the cluster is laggy
[  511.242066][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  511.249217][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  512.823195][ T9632] loop1: detected capacity change from 0 to 4096
[  512.944283][ T9632] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  513.519861][ T9632] ntfs3(loop1): ino=1a, mi_enum_attr
[  513.525394][ T9632] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  513.598950][ T9632] ntfs3(loop1): ino=1a, mi_enum_attr
[  513.604465][ T9632] ntfs3(loop1): Failed to initialize $Extend/$Reparse.
[  515.961720][ T9673] loop4: detected capacity change from 0 to 128
[  516.157751][ T9673] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  516.305161][ T9673] ext4 filesystem being mounted at /44/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  517.273081][ T8715] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  517.317398][ T9681] loop9: detected capacity change from 0 to 4096
[  517.376174][ T9687] netlink: 'syz.1.961': attribute type 3 has an invalid length.
[  517.384012][ T9687] netlink: 8 bytes leftover after parsing attributes in process `syz.1.961'.
[  517.601559][ T9681] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  517.934276][ T9681] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  518.759965][ T7955] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  521.847285][ T9736] loop9: detected capacity change from 0 to 128
[  521.931237][ T9736] UDF-fs: error (device loop9): udf_read_tagged: read failed, block=256, location=256
[  522.192553][   T29] audit: type=1800 audit(1772250009.007:54): pid=9736 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.975" name="file2" dev="loop9" ino=95 res=0 errno=0
[  523.338705][ T9754] netlink: 44 bytes leftover after parsing attributes in process `syz.1.981'.
[  525.196477][ T9773] netlink: 'syz.4.986': attribute type 83 has an invalid length.
[  527.967105][ T9803] netlink: 'syz.9.995': attribute type 4 has an invalid length.
[  529.632598][ T9826] overlayfs: failed to clone upperpath
[  530.066223][ T9833] loop4: detected capacity change from 0 to 64
[  530.352349][ T9833] bio_check_eod: 26 callbacks suppressed
[  530.352427][ T9833] syz.4.1005: attempt to access beyond end of device
[  530.352427][ T9833] loop4: rw=34817, sector=39, nr_sectors = 125 limit=64
[  530.436596][ T9833] syz.4.1005: attempt to access beyond end of device
[  530.436596][ T9833] loop4: rw=8423425, sector=167, nr_sectors = 1 limit=64
[  530.506482][ T9833] syz.4.1005: attempt to access beyond end of device
[  530.506482][ T9833] loop4: rw=8423425, sector=169, nr_sectors = 1 limit=64
[  530.676139][ T9833] syz.4.1005: attempt to access beyond end of device
[  530.676139][ T9833] loop4: rw=8423425, sector=171, nr_sectors = 1 limit=64
[  532.264239][ T9849] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1011'.
[  532.625800][ T9849] erspan0: entered promiscuous mode
[  532.651381][ T9849] macvtap1: entered promiscuous mode
[  532.727900][ T9849] macvtap1: entered allmulticast mode
[  532.827496][ T9849] erspan0: entered allmulticast mode
[  533.055844][ T9852] erspan0: left allmulticast mode
[  533.096739][ T9852] erspan0: left promiscuous mode
[  535.823316][ T9891] syz.1.1021 (9891): /proc/9890/oom_adj is deprecated, please use /proc/9890/oom_score_adj instead.
[  536.994518][ T9898] batman_adv: batadv0: Adding interface: dummy0
[  537.096097][ T9898] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  537.186222][ T9898] batman_adv: batadv0: Interface activated: dummy0
[  537.493452][ T9902] batadv0: mtu less than device minimum
[  537.560396][ T9902] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  537.573620][ T9902] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  537.586656][ T9902] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  537.599603][ T9902] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  537.612712][ T9902] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  537.625785][ T9902] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  537.638750][ T9902] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  537.651749][ T9902] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  537.664739][ T9902] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  538.839541][ T9916] Driver unsupported XDP return value 0 on prog  (id 66) dev N/A, expect packet loss!
[  539.699790][ T9167] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  539.925947][ T9167] usb 2-1: Using ep0 maxpacket: 16
[  539.959655][ T9167] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  540.016271][ T9167] usb 2-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  540.043778][ T9167] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  540.064004][ T5830] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  540.130978][ T5830] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  540.158037][ T9167] usb 2-1: config 0 descriptor??
[  540.348988][ T9934] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1035'.
[  540.676476][ T9930] loop0: detected capacity change from 0 to 4096
[  540.678539][ T9167] mcp2221 0003:04D8:00DD.0004: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.1-1/input0
[  541.065880][ T9930] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  541.236028][ T9167] usb 2-1: USB disconnect, device number 3
[  542.598439][ T8029] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  545.692075][T10020] netlink: 65039 bytes leftover after parsing attributes in process `syz.4.1044'.
[  546.810685][T10031] team0 (unregistering): Port device team_slave_0 removed
[  546.839673][T10031] team0 (unregistering): Port device team_slave_1 removed
[  547.398424][ T5779] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  547.420747][ T5779] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  547.439650][ T5779] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  547.466707][ T5779] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  547.510016][ T5779] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  547.973107][T10045] netlink: 'syz.4.1052': attribute type 10 has an invalid length.
[  548.028480][T10046] netlink: 'syz.4.1052': attribute type 10 has an invalid length.
[  548.291498][T10046] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  549.625846][ T5779] Bluetooth: hci5: command tx timeout
[  550.759518][T10083] netlink: 7 bytes leftover after parsing attributes in process `syz.0.1060'.
[  550.845842][T10036] chnl_net:caif_netlink_parms(): no params data found
[  551.713771][ T5779] Bluetooth: hci5: command tx timeout
[  551.747991][ T9838] net_ratelimit: 10 callbacks suppressed
[  551.748065][ T9838] Set syz1 is full, maxelem 65536 reached
[  552.012622][T10093] overlayfs: overlapping lowerdir path
[  553.145666][T10036] bridge0: port 1(bridge_slave_0) entered blocking state
[  553.183629][T10036] bridge0: port 1(bridge_slave_0) entered disabled state
[  553.246828][T10036] bridge_slave_0: entered allmulticast mode
[  553.307730][T10036] bridge_slave_0: entered promiscuous mode
[  553.366175][T10036] bridge0: port 2(bridge_slave_1) entered blocking state
[  553.400575][T10036] bridge0: port 2(bridge_slave_1) entered disabled state
[  553.439141][T10036] bridge_slave_1: entered allmulticast mode
[  553.491842][T10036] bridge_slave_1: entered promiscuous mode
[  553.771368][ T5779] Bluetooth: hci5: command tx timeout
[  554.149346][T10036] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  554.280270][T10036] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  554.660723][T10123] fuse: Bad value for 'fd'
[  554.802621][ T9167] IPVS: starting estimator thread 0...
[  554.820166][T10036] team0: Port device team_slave_0 added
[  554.925943][T10128] IPVS: using max 240 ests per chain, 12000 per kthread
[  554.948176][T10036] team0: Port device team_slave_1 added
[  555.426409][T10036] batman_adv: batadv0: Adding interface: batadv_slave_0
[  555.510291][T10036] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  555.711830][T10036] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  555.794077][T10036] batman_adv: batadv0: Adding interface: batadv_slave_1
[  555.846199][ T5779] Bluetooth: hci5: command tx timeout
[  555.895717][T10036] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  556.092048][T10036] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  557.012449][T10036] hsr_slave_0: entered promiscuous mode
[  557.073743][T10036] hsr_slave_1: entered promiscuous mode
[  557.108857][T10036] debugfs: 'hsr0' already exists in 'hsr'
[  557.114772][T10036] Cannot create hsr debugfs directory
[  557.268675][ T6111] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  557.305106][T10154] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1079'.
[  557.772573][ T6111] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  558.080804][ T6111] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  558.480874][ T6111] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  559.801162][T10181] ------------[ cut here ]------------
[  559.807433][T10181] WARNING: fs/exec.c:119 at path_noexec+0x2ac/0x310, CPU#1: syz.0.1090/10181
[  559.816827][T10181] Modules linked in:
[  559.820964][T10181] CPU: 1 UID: 0 PID: 10181 Comm: syz.0.1090 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  559.834420][T10181] Tainted: [L]=SOFTLOCKUP
[  559.839205][T10181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  559.855214][T10181] RIP: 0010:path_noexec+0x2ac/0x310
[  559.862545][T10181] Code: 49 89 ff 8b 7d d4 e8 f3 7b e1 ff 4c 89 ff e9 c8 fe ff ff 44 89 e7 e8 e3 7b e1 ff 4d 85 ed 0f 85 a3 fe ff ff e8 85 16 36 ff 90 <0f> 0b 90 48 8b 7d c0 4c 8b 37 e8 d5 70 e1 ff 48 8b 00 48 89 45 c8
[  559.882710][T10181] RSP: 0018:ffff8880261f3b80 EFLAGS: 00010283
[  559.889196][T10181] RAX: ffffffff82c9a89b RBX: ffff888056cc4d78 RCX: 0000000000080000
[  559.897630][T10181] RDX: ffffc90008fe2000 RSI: 000000000000005d RDI: 000000000000005e
[  559.905931][T10181] RBP: ffff8880261f3bc0 R08: ffffea000000000f R09: 0000000000000003
[  559.914095][T10181] R10: 0000000000000003 R11: 0000000000000002 R12: 0000000000000000
[  559.922731][T10181] R13: 0000000000000000 R14: ffff8881007d6da0 R15: 0000000000000000
[  559.931075][T10181] FS:  0000000000000000(0000) GS:ffff8881aa4cd000(0063) knlGS:00000000f54bdb40
[  559.940360][T10181] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  559.947282][T10181] CR2: 0000000032121ff8 CR3: 0000000056ca8000 CR4: 00000000003526f0
[  559.961520][T10181] Call Trace:
[  559.964958][T10181]  <TASK>
[  559.969726][T10181]  do_mmap+0x1572/0x1d70
[  559.974257][T10181]  vm_mmap_pgoff+0x40c/0x760
[  559.979309][T10181]  ksys_mmap_pgoff+0x524/0x7d0
[  559.984325][T10181]  __ia32_sys_mmap_pgoff+0x11a/0x1d0
[  559.990148][T10181]  ia32_sys_call+0x3743/0x4360
[  559.995113][T10181]  __do_fast_syscall_32+0x17f/0x3f0
[  560.000783][T10181]  do_fast_syscall_32+0x37/0x80
[  560.005996][T10181]  do_SYSENTER_32+0x1f/0x30
[  560.010711][T10181]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  560.017478][T10181] RIP: 0023:0xf70cef6c
[  560.021748][T10181] Code: 90 85 d2 74 0a 89 ce 81 e6 ff 0f 00 00 89 32 85 c0 74 05 c1 e9 0c 89 08 31 c0 5e 5d c3 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 90 90 90 90 90 90 b8 ad
[  560.041817][T10181] RSP: 002b:00000000f54bd50c EFLAGS: 00000206 ORIG_RAX: 00000000000000c0
[  560.053257][T10181] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000000003000
[  560.065958][T10181] RDX: 0000000003000007 RSI: 0000000000000011 RDI: 0000000000000005
[  560.074126][T10181] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  560.083644][T10181] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  560.092020][T10181] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  560.100347][T10181]  </TASK>
[  560.103536][T10181] ---[ end trace 0000000000000000 ]---
[  560.372275][ T6111] vlan2: left promiscuous mode
[  560.389515][ T6111] bridge0: port 3(vlan2) entered disabled state
[  560.453661][ T6111] bridge_slave_1: left allmulticast mode
[  560.470909][ T6111] bridge_slave_1: left promiscuous mode
[  560.516686][ T6111] bridge0: port 2(bridge_slave_1) entered disabled state
[  560.672445][ T6111] bridge_slave_0: left promiscuous mode
[  560.683453][ T6111] bridge0: port 1(bridge_slave_0) entered disabled state
[  562.061762][T10201] fuse: Bad value for 'fd'
[  562.115084][T10204] loop0: detected capacity change from 0 to 512
[  562.225842][T10204] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  562.351332][T10204] EXT4-fs (loop0): 1 truncate cleaned up
[  562.368694][T10204] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  562.836067][T10213] overlayfs: invalid origin (0000)
[  563.219001][ T8029] EXT4-fs error (device loop0): mb_free_blocks:2047: group 0, inode 11: block 54:freeing already freed block (bit 53); block bitmap corrupt.
[  563.342690][ T8029] EXT4-fs (loop0): Remounting filesystem read-only
[  563.351569][ T6111] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  563.664312][ T6111] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  563.813023][ T6111] bond0 (unregistering): Released all slaves
[  564.342801][ T8029] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  565.438844][ T6111] hsr_slave_0: left promiscuous mode
[  565.476044][ T6111] hsr_slave_1: left promiscuous mode
[  565.508115][ T6111] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  565.526095][ T6111] batman_adv: batadv0: Removing interface: batadv_slave_0
[  565.553935][ T6111] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  565.566227][ T6111] batman_adv: batadv0: Removing interface: batadv_slave_1
[  565.636119][ T6111] veth1_macvtap: left promiscuous mode
[  565.657166][ T6111] veth0_macvtap: left promiscuous mode
[  565.666055][ T6111] veth1_vlan: left promiscuous mode
[  565.671587][ T6111] veth0_vlan: left promiscuous mode
[  567.100432][ T6111] team0 (unregistering): Port device team_slave_1 removed
[  567.213535][ T6111] team0 (unregistering): Port device team_slave_0 removed
[  567.465883][ T9206] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  567.662719][ T9206] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  567.692920][ T9206] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  567.729877][ T9206] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  567.810032][ T9206] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  567.857462][ T9206] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  567.874361][ T9206] usb 2-1: config 0 descriptor??
[  568.110248][ T5793] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  568.130701][ T5793] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  568.147250][ T5793] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  568.207587][ T5793] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  568.219888][ T5793] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  568.389085][ T9206] plantronics 0003:047F:FFFF.0005: reserved main item tag 0xd
[  568.458687][ T9206] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  568.595307][T10036] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  568.672012][ T9206] usb 2-1: USB disconnect, device number 4
[  568.719455][T10036] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  568.832947][T10036] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  569.007031][T10036] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  569.129681][T10250] fido_id[10250]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  570.334509][ T5779] Bluetooth: hci0: command tx timeout
[  570.955179][T10275] tipc: Started in network mode
[  570.973829][T10275] tipc: Node identity ac14140f, cluster identity 4711
[  571.007005][T10275] tipc: New replicast peer: 255.255.255.255
[  571.068521][T10275] tipc: Enabled bearer <udp:syz2>, priority 10
[  571.196662][T10247] chnl_net:caif_netlink_parms(): no params data found
[  571.820150][T10036] 8021q: adding VLAN 0 to HW filter on device bond0
[  572.150696][T10036] 8021q: adding VLAN 0 to HW filter on device team0
[  572.244984][ T9167] tipc: Node number set to 2886997007
[  572.335263][ T6105] bridge0: port 1(bridge_slave_0) entered blocking state
[  572.342822][ T6105] bridge0: port 1(bridge_slave_0) entered forwarding state
[  572.416042][ T5779] Bluetooth: hci0: command tx timeout
[  572.593915][  T143] bridge0: port 2(bridge_slave_1) entered blocking state
[  572.601523][  T143] bridge0: port 2(bridge_slave_1) entered forwarding state
[  572.696040][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  572.702665][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  573.147968][T10299] bond0: (slave dummy0): Releasing backup interface
[  573.204955][T10299] batman_adv: batadv0: Adding interface: dummy0
[  573.236290][T10299] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  573.332486][T10299] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[  573.868466][T10247] bridge0: port 1(bridge_slave_0) entered blocking state
[  573.934123][T10247] bridge0: port 1(bridge_slave_0) entered disabled state
[  573.986939][T10247] bridge_slave_0: entered allmulticast mode
[  574.037871][T10247] bridge_slave_0: entered promiscuous mode
[  574.130738][T10247] bridge0: port 2(bridge_slave_1) entered blocking state
[  574.159714][T10247] bridge0: port 2(bridge_slave_1) entered disabled state
[  574.195331][T10247] bridge_slave_1: entered allmulticast mode
[  574.216111][T10247] bridge_slave_1: entered promiscuous mode
[  574.502887][ T5779] Bluetooth: hci0: command tx timeout
[  574.740937][T10247] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  574.838891][T10247] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  575.304766][T10247] team0: Port device team_slave_0 added
[  575.452779][T10247] team0: Port device team_slave_1 added
[  575.918548][T10247] batman_adv: batadv0: Adding interface: batadv_slave_0
[  575.951178][T10247] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  576.108375][T10247] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  576.173490][T10247] batman_adv: batadv0: Adding interface: batadv_slave_1
[  576.215817][T10247] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  576.360057][T10247] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  576.565828][ T5779] Bluetooth: hci0: command tx timeout
[  576.646069][  T795] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  576.816454][  T795] usb 2-1: Using ep0 maxpacket: 32
[  576.846387][  T795] usb 2-1: config index 0 descriptor too short (expected 4132, got 36)
[  576.871510][  T795] usb 2-1: config 9 has an invalid descriptor of length 0, skipping remainder of the config
[  576.902933][  T795] usb 2-1: config 9 has no interfaces?
[  576.938601][  T795] usb 2-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  577.015698][  T795] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  577.024031][  T795] usb 2-1: Product: syz
[  577.077618][  T795] usb 2-1: Manufacturer: syz
[  577.082434][  T795] usb 2-1: SerialNumber: syz
[  577.086861][T10247] hsr_slave_0: entered promiscuous mode
[  577.102250][T10247] hsr_slave_1: entered promiscuous mode
[  577.132262][T10247] debugfs: 'hsr0' already exists in 'hsr'
[  577.163355][T10247] Cannot create hsr debugfs directory
[  577.715979][T10036] 8021q: adding VLAN 0 to HW filter on device batadv0
[  577.850106][  T795] usb 2-1: USB disconnect, device number 5
[  579.578362][T10360] bridge0: port 2(bridge_slave_1) entered disabled state
[  579.588213][T10360] bridge0: port 1(bridge_slave_0) entered disabled state
[  579.736717][T10360] batman_adv: batadv0: Interface deactivated: dummy0
[  579.967524][T10370] loop4: detected capacity change from 0 to 128
[  579.998437][T10370] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  580.150485][   T29] audit: type=1800 audit(1772250322.960:55): pid=10370 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1144" name="file2" dev="loop4" ino=95 res=0 errno=0
[  580.324890][T10360] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  580.452874][T10360] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  581.226385][ T6079] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  581.267332][ T6079] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  581.389219][ T6079] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  581.421495][ T6079] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  582.675267][T10247] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  582.809389][T10247] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  582.848939][T10395] batman_adv: batadv0: Adding interface: dummy0
[  582.855403][T10395] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  582.952186][T10395] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[  583.009823][T10247] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  583.067097][T10036] veth0_vlan: entered promiscuous mode
[  583.102908][T10247] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  583.420997][T10036] veth1_vlan: entered promiscuous mode
[  584.018742][T10036] veth0_macvtap: entered promiscuous mode
[  584.241159][T10036] veth1_macvtap: entered promiscuous mode
[  584.278068][T10414] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1155'.
[  584.559549][T10036] batman_adv: batadv0: Interface activated: batadv_slave_0
[  584.882814][T10036] batman_adv: batadv0: Interface activated: batadv_slave_1
[  585.110651][T10247] 8021q: adding VLAN 0 to HW filter on device bond0
[  585.146686][   T73] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  585.176072][   T73] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  585.185095][   T73] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  585.300133][   T73] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  585.578684][T10247] 8021q: adding VLAN 0 to HW filter on device team0
[  585.731902][   T73] bridge0: port 1(bridge_slave_0) entered blocking state
[  585.739559][   T73] bridge0: port 1(bridge_slave_0) entered forwarding state
[  585.823767][   T73] bridge0: port 2(bridge_slave_1) entered blocking state
[  585.831423][   T73] bridge0: port 2(bridge_slave_1) entered forwarding state
[  587.009792][T10433] bridge0: port 2(bridge_slave_1) entered disabled state
[  587.019506][T10433] bridge0: port 1(bridge_slave_0) entered disabled state
[  587.726150][T10433] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  587.817623][T10433] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  588.704203][T10463] loop1: detected capacity change from 0 to 1024
[  588.741517][T10463] EXT4-fs: inline encryption not supported
[  588.811561][T10463] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  588.900270][ T6105] bridge_slave_1: left allmulticast mode
[  588.910843][ T6105] bridge_slave_1: left promiscuous mode
[  588.957759][ T6105] bridge0: port 2(bridge_slave_1) entered disabled state
[  589.018560][   T29] audit: type=1800 audit(1772250331.830:56): pid=10463 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1167" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop1" ino=20 res=0 errno=0
[  589.106390][ T6105] bridge_slave_0: left allmulticast mode
[  589.112246][ T6105] bridge_slave_0: left promiscuous mode
[  589.176539][ T6105] bridge0: port 1(bridge_slave_0) entered disabled state
[  589.353289][ T9033] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  590.046830][ T6105] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  590.085317][ T6105] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  590.112901][ T6105] bond0 (unregistering): Released all slaves
[  590.137025][ T6105] bond1 (unregistering): (slave dummy0): Releasing active interface
[  590.186411][ T6105] bond1 (unregistering): Released all slaves
[  590.207056][   T48] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  590.222575][   T48] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  590.325418][   T48] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  590.415166][   T48] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  591.483951][T10496] loop1: detected capacity change from 0 to 512
[  591.636176][T10496] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  591.778048][ T6105] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  591.787563][ T6105] batman_adv: batadv0: Removing interface: batadv_slave_0
[  591.825876][T10496] EXT4-fs (loop1): 1 truncate cleaned up
[  591.833654][T10496] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  591.869819][ T6105] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  591.973445][ T6105] batman_adv: batadv0: Removing interface: batadv_slave_1
[  592.076365][ T6105] veth1_macvtap: left promiscuous mode
[  592.100418][ T6105] veth0_macvtap: left promiscuous mode
[  592.130022][ T6105] veth1_vlan: left promiscuous mode
[  592.156455][ T6105] veth0_vlan: left promiscuous mode
[  592.301768][T10510] overlayfs: invalid origin (0000)
[  592.816731][ T9033] EXT4-fs error (device loop1): ext4_lookup:1785: inode #14: comm syz-executor: invalid fast symlink length 39
[  592.937387][ T9033] EXT4-fs (loop1): Remounting filesystem read-only
[  594.087920][ T6105] team0 (unregistering): Port device team_slave_1 removed
[  594.258372][ T6105] team0 (unregistering): Port device team_slave_0 removed
[  594.933807][ T9033] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  595.158081][T10247] 8021q: adding VLAN 0 to HW filter on device batadv0
[  596.969958][ T6105] bridge_slave_1: left allmulticast mode
[  596.993004][ T6105] bridge_slave_1: left promiscuous mode
[  597.027367][ T6105] bridge0: port 2(bridge_slave_1) entered disabled state
[  597.073421][ T6105] bridge_slave_0: left allmulticast mode
[  597.105856][ T6105] bridge_slave_0: left promiscuous mode
[  597.112510][ T6105] bridge0: port 1(bridge_slave_0) entered disabled state
[  597.747337][ T6105] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  597.772081][ T6105] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  597.808530][ T6105] bond0 (unregistering): Released all slaves
[  598.182049][ T6079] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  598.234561][ T6079] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  598.631071][   T48] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  598.675587][   T48] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  598.756193][ T6105] hsr_slave_0: left promiscuous mode
[  598.818460][ T6105] hsr_slave_1: left promiscuous mode
[  598.827904][ T6105] batman_adv: batadv0: Removing interface: batadv_slave_0
[  598.843697][T10567] loop4: detected capacity change from 0 to 512
[  598.872923][ T6105] batman_adv: batadv0: Removing interface: batadv_slave_1
[  598.899340][ T6105] batman_adv: batadv0: Removing interface: dummy0
[  598.966932][T10567] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  599.266823][T10567] EXT4-fs (loop4): 1 truncate cleaned up
[  599.288985][T10567] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  599.549983][T10574] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  599.585821][T10574] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  599.599196][T10574] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  599.612192][T10574] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  599.643686][T10574] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  599.744859][T10577] overlayfs: invalid origin (0000)
[  599.767454][ T6105] team0 (unregistering): Port device team_slave_1 removed
[  599.846577][ T6105] team0 (unregistering): Port device team_slave_0 removed
[  600.274340][ T8715] EXT4-fs error (device loop4): mb_free_blocks:2047: group 0, inode 11: block 54:freeing already freed block (bit 53); block bitmap corrupt.
[  600.353187][ T8715] EXT4-fs (loop4): Remounting filesystem read-only
[  600.402958][T10247] veth0_vlan: entered promiscuous mode
[  600.563568][T10247] veth1_vlan: entered promiscuous mode
[  600.979226][ T8715] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  601.520031][T10247] veth0_macvtap: entered promiscuous mode
[  601.732753][T10247] veth1_macvtap: entered promiscuous mode
[  601.766248][T10574] Bluetooth: hci1: command tx timeout
[  602.370435][T10600] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1195'.
[  602.562827][T10247] batman_adv: batadv0: Interface activated: batadv_slave_0
[  602.739717][T10573] chnl_net:caif_netlink_parms(): no params data found
[  602.823419][T10247] batman_adv: batadv0: Interface activated: batadv_slave_1
[  603.032820][ T6089] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  603.096185][ T6089] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  603.105206][ T6089] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  603.207252][ T6089] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  603.556068][ T9167] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  603.766126][ T9167] usb 6-1: Using ep0 maxpacket: 16
[  603.800272][ T9167] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  603.822463][ T9167] usb 6-1: config 0 has no interface number 0
[  603.847105][T10574] Bluetooth: hci1: command tx timeout
[  603.927618][ T9167] usb 6-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[  603.966389][ T6075] bridge_slave_1: left allmulticast mode
[  603.972244][ T6075] bridge_slave_1: left promiscuous mode
[  603.987801][ T9167] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  604.043873][ T9167] usb 6-1: Product: syz
[  604.050026][ T6075] bridge0: port 2(bridge_slave_1) entered disabled state
[  604.065708][ T9167] usb 6-1: Manufacturer: syz
[  604.071650][ T9167] usb 6-1: SerialNumber: syz
[  604.092827][ T6075] bridge_slave_0: left allmulticast mode
[  604.114653][ T9167] usb 6-1: config 0 descriptor??
[  604.120695][ T6075] bridge_slave_0: left promiscuous mode
[  604.150927][ T6075] bridge0: port 1(bridge_slave_0) entered disabled state
[  604.180116][ T9167] gspca_main: spca1528-2.14.0 probing 04fc:1528
[  604.607194][ T6075] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  604.653377][ T6075] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  604.681696][ T6075] bond0 (unregistering): Released all slaves
[  605.452829][ T6075] hsr_slave_0: left promiscuous mode
[  605.489567][ T6075] hsr_slave_1: left promiscuous mode
[  605.503994][ T6075] batman_adv: batadv0: Removing interface: batadv_slave_0
[  605.537075][ T6075] batman_adv: batadv0: Removing interface: batadv_slave_1
[  605.552475][ T6075] batman_adv: batadv0: Removing interface: dummy0
[  605.856598][ T9167] gspca_spca1528: reg_r err -71
[  605.861865][ T9167] spca1528 6-1:0.1: probe with driver spca1528 failed with error -71
[  605.925369][ T9167] usb 6-1: USB disconnect, device number 2
[  605.930794][T10574] Bluetooth: hci1: command tx timeout
[  607.246080][T10573] bridge0: port 1(bridge_slave_0) entered blocking state
[  607.253587][T10573] bridge0: port 1(bridge_slave_0) entered disabled state
[  607.323308][T10573] bridge_slave_0: entered allmulticast mode
[  607.364403][T10573] bridge_slave_0: entered promiscuous mode
[  607.437756][T10573] bridge0: port 2(bridge_slave_1) entered blocking state
[  607.485781][T10573] bridge0: port 2(bridge_slave_1) entered disabled state
[  607.493503][T10573] bridge_slave_1: entered allmulticast mode
[  607.547884][T10573] bridge_slave_1: entered promiscuous mode
[  607.826871][ T5779] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  607.839876][ T5779] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  607.880618][ T5779] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  607.905298][ T5779] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  607.946469][ T5779] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  608.005830][ T5779] Bluetooth: hci1: command tx timeout
[  608.050572][T10573] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  608.154286][T10573] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  608.616483][T10573] team0: Port device team_slave_0 added
[  608.772094][T10573] team0: Port device team_slave_1 added
[  609.252750][T10573] batman_adv: batadv0: Adding interface: batadv_slave_0
[  609.271620][T10573] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  609.325995][T10573] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  609.352047][T10573] batman_adv: batadv0: Adding interface: batadv_slave_1
[  609.383251][T10573] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  609.435611][T10573] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  610.081556][T10573] hsr_slave_0: entered promiscuous mode
[  610.087535][ T5793] Bluetooth: hci2: command tx timeout
[  610.110024][T10573] hsr_slave_1: entered promiscuous mode
[  610.136746][T10573] debugfs: 'hsr0' already exists in 'hsr'
[  610.142666][T10573] Cannot create hsr debugfs directory
[  610.730327][T10683] loop5: detected capacity change from 0 to 1024
[  610.761605][T10683] EXT4-fs: Ignoring removed mblk_io_submit option
[  610.819224][T10683] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  610.874178][T10683] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  610.981143][T10683] EXT4-fs error (device loop5): ext4_ext_check_inode:521: inode #11: comm syz.5.1211: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  611.057913][T10683] loop5: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  611.058720][T10683] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.1211: couldn't read orphan inode 11 (err -117)
[  611.068394][    C1] EXT4-fs (loop5): error count since last fsck: 1
[  611.068494][    C1] EXT4-fs (loop5): initial error at time 1772250353: ext4_ext_check_inode:521: inode 11
[  611.068654][    C1] EXT4-fs (loop5): last error at time 1772250353: ext4_ext_check_inode:521: inode 11
[  611.112129][T10683] loop5: lost filesystem error report for type 5 error -117
[  611.114872][T10683] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  611.241285][T10683] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.1211: Invalid block bitmap block 0 in block_group 0
[  611.339677][T10683] Quota error (device loop5): write_blk: dquota write failed
[  611.347347][   T29] audit: type=1326 audit(1772250354.150:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10681 comm="syz.5.1211" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5f6c code=0x7ffc0000
[  611.427708][   T29] audit: type=1326 audit(1772250354.230:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10681 comm="syz.5.1211" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5f6c code=0x7ffc0000
[  611.525956][   T29] audit: type=1326 audit(1772250354.230:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10681 comm="syz.5.1211" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5f6c code=0x7ffc0000
[  611.605286][   T29] audit: type=1326 audit(1772250354.240:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10681 comm="syz.5.1211" exe="/root/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf7ff5f6c code=0x7ffc0000
[  611.655947][   T29] audit: type=1326 audit(1772250354.320:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10681 comm="syz.5.1211" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5f6c code=0x7ffc0000
[  611.687391][T10647] chnl_net:caif_netlink_parms(): no params data found
[  611.727581][T10683] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  611.748539][   T29] audit: type=1326 audit(1772250354.320:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10681 comm="syz.5.1211" exe="/root/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7ff5f6c code=0x7ffc0000
[  611.805174][   T29] audit: type=1326 audit(1772250354.320:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10681 comm="syz.5.1211" exe="/root/syz-executor" sig=0 arch=40000003 syscall=125 compat=1 ip=0xf7ff5f6c code=0x7ffc0000
[  611.855095][T10683] EXT4-fs error (device loop5): ext4_acquire_dquot:7001: comm syz.5.1211: Failed to acquire dquot type 0
[  611.902038][   T29] audit: type=1326 audit(1772250354.320:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10681 comm="syz.5.1211" exe="/root/syz-executor" sig=0 arch=40000003 syscall=175 compat=1 ip=0xf7ff5f6c code=0x7ffc0000
[  612.140470][T10683] EXT4-fs error (device loop5): __ext4_get_inode_loc:4782: comm syz.5.1211: Invalid inode table block 8589934593 in block_group 0
[  612.166255][ T5793] Bluetooth: hci2: command tx timeout
[  612.199608][T10683] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6246: Corrupt filesystem
[  612.337869][   T73] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  612.365904][   T73] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  612.453349][  T143] EXT4-fs error (device loop5): __ext4_get_inode_loc:4782: comm kworker/u8:5: Invalid inode table block 8589934593 in block_group 0
[  612.542128][T10036] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  612.781102][  T143] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  612.845934][  T143] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  613.462911][T10647] bridge0: port 1(bridge_slave_0) entered blocking state
[  613.491018][T10647] bridge0: port 1(bridge_slave_0) entered disabled state
[  613.528236][T10647] bridge_slave_0: entered allmulticast mode
[  613.544414][T10647] bridge_slave_0: entered promiscuous mode
[  613.578647][T10713] loop5: detected capacity change from 0 to 64
[  613.590640][T10647] bridge0: port 2(bridge_slave_1) entered blocking state
[  613.615028][T10647] bridge0: port 2(bridge_slave_1) entered disabled state
[  613.624836][T10647] bridge_slave_1: entered allmulticast mode
[  613.644389][T10647] bridge_slave_1: entered promiscuous mode
[  613.663590][T10573] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  613.712198][T10573] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  613.748675][T10573] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  614.093677][T10647] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  614.110941][T10573] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  614.191902][T10647] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  614.249031][ T5793] Bluetooth: hci2: command tx timeout
[  614.489898][T10647] team0: Port device team_slave_0 added
[  614.572198][T10647] team0: Port device team_slave_1 added
[  614.927431][T10647] batman_adv: batadv0: Adding interface: batadv_slave_0
[  614.946087][T10647] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  614.986929][T10647] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  615.017345][T10647] batman_adv: batadv0: Adding interface: batadv_slave_1
[  615.066219][T10647] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  615.099040][T10647] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  615.412893][T10730] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1224'.
[  615.460152][T10647] hsr_slave_0: entered promiscuous mode
[  615.470743][T10647] hsr_slave_1: entered promiscuous mode
[  615.481705][T10647] debugfs: 'hsr0' already exists in 'hsr'
[  615.489160][T10647] Cannot create hsr debugfs directory
[  615.585092][T10730] vxlan1: entered promiscuous mode
[  615.684593][ T6089] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  615.915612][ T6089] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  615.936831][ T6089] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  616.124696][ T6089] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  616.326139][ T5793] Bluetooth: hci2: command tx timeout
[  616.671463][ T6089] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  617.050354][ T6089] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  617.173638][ T6089] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  617.333491][ T6089] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  617.484472][T10573] 8021q: adding VLAN 0 to HW filter on device bond0
[  617.950580][T10573] 8021q: adding VLAN 0 to HW filter on device team0
[  617.982028][ T6089] bridge_slave_1: left allmulticast mode
[  617.990182][ T6089] bridge_slave_1: left promiscuous mode
[  617.996989][ T6089] bridge0: port 2(bridge_slave_1) entered disabled state
[  618.023374][ T6089] bridge_slave_0: left allmulticast mode
[  618.045905][ T6089] bridge_slave_0: left promiscuous mode
[  618.052373][ T6089] bridge0: port 1(bridge_slave_0) entered disabled state
[  618.172541][   T29] kauditd_printk_skb: 54 callbacks suppressed
[  618.172615][   T29] audit: type=1326 audit(1772250360.980:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10740 comm="syz.3.1233" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82f6c code=0x7ffc0000
[  618.273400][   T29] audit: type=1326 audit(1772250361.030:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10740 comm="syz.3.1233" exe="/root/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f82f6c code=0x7ffc0000
[  618.355891][   T29] audit: type=1326 audit(1772250361.030:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10740 comm="syz.3.1233" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82f6c code=0x7ffc0000
[  618.428318][   T29] audit: type=1326 audit(1772250361.040:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10740 comm="syz.3.1233" exe="/root/syz-executor" sig=0 arch=40000003 syscall=358 compat=1 ip=0xf7f82f6c code=0x7ffc0000
[  618.515870][   T29] audit: type=1326 audit(1772250361.040:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10740 comm="syz.3.1233" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82f6c code=0x7ffc0000
[  618.546865][   T29] audit: type=1326 audit(1772250361.040:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10740 comm="syz.3.1233" exe="/root/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf7f82f6c code=0x7ffc0000
[  618.622945][   T29] audit: type=1326 audit(1772250361.040:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10740 comm="syz.3.1233" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82f6c code=0x7ffc0000
[  618.672711][   T29] audit: type=1326 audit(1772250361.040:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10740 comm="syz.3.1233" exe="/root/syz-executor" sig=0 arch=40000003 syscall=163 compat=1 ip=0xf7f82f6c code=0x7ffc0000
[  618.700082][   T29] audit: type=1326 audit(1772250361.040:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10740 comm="syz.3.1233" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82f6c code=0x7ffc0000
[  618.785922][   T29] audit: type=1326 audit(1772250361.070:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10740 comm="syz.3.1233" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7185cab code=0x7ffc0000
[  619.080565][T10574] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  619.090524][T10574] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  619.104807][T10574] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  619.133063][T10574] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  619.172488][T10574] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  619.173535][ T6089] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  619.295215][ T6089] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  619.363058][ T6089] bond0 (unregistering): Released all slaves
[  619.399806][ T6105] bridge0: port 1(bridge_slave_0) entered blocking state
[  619.407198][ T6105] bridge0: port 1(bridge_slave_0) entered forwarding state
[  619.502428][ T6079] bridge0: port 2(bridge_slave_1) entered blocking state
[  619.509968][ T6079] bridge0: port 2(bridge_slave_1) entered forwarding state
[  620.244466][T10647] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  620.286357][T10647] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  620.324848][T10647] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  620.394865][T10647] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  620.531724][ T6089] hsr_slave_0: left promiscuous mode
[  620.540319][ T6089] hsr_slave_1: left promiscuous mode
[  620.551700][ T6089] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  620.560555][ T6089] batman_adv: batadv0: Removing interface: batadv_slave_0
[  620.575187][ T6089] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  620.583207][ T6089] batman_adv: batadv0: Removing interface: batadv_slave_1
[  620.603679][ T6089] veth1_macvtap: left promiscuous mode
[  620.610308][ T6089] veth0_macvtap: left promiscuous mode
[  620.617008][ T6089] veth1_vlan: left promiscuous mode
[  620.622456][ T6089] veth0_vlan: left promiscuous mode
[  621.191576][ T6089] team0 (unregistering): Port device team_slave_1 removed
[  621.249323][ T6089] team0 (unregistering): Port device team_slave_0 removed
[  621.289943][ T5793] Bluetooth: hci0: command tx timeout
[  622.337393][T10765] netlink: 'syz.5.1240': attribute type 1 has an invalid length.
[  623.099439][T10748] chnl_net:caif_netlink_parms(): no params data found
[  623.366974][ T5793] Bluetooth: hci0: command tx timeout
[  623.522611][T10647] 8021q: adding VLAN 0 to HW filter on device bond0
[  623.700944][T10573] 8021q: adding VLAN 0 to HW filter on device batadv0
[  623.734777][T10647] 8021q: adding VLAN 0 to HW filter on device team0
[  623.788834][ T6089] bridge0: port 1(bridge_slave_0) entered blocking state
[  623.796379][ T6089] bridge0: port 1(bridge_slave_0) entered forwarding state
[  623.891044][ T6105] bridge0: port 2(bridge_slave_1) entered blocking state
[  623.898587][ T6105] bridge0: port 2(bridge_slave_1) entered forwarding state
[  624.422884][T10748] bridge0: port 1(bridge_slave_0) entered blocking state
[  624.435285][T10748] bridge0: port 1(bridge_slave_0) entered disabled state
[  624.444852][T10748] bridge_slave_0: entered allmulticast mode
[  624.456528][T10748] bridge_slave_0: entered promiscuous mode
[  624.511957][T10748] bridge0: port 2(bridge_slave_1) entered blocking state
[  624.528413][T10748] bridge0: port 2(bridge_slave_1) entered disabled state
[  624.544370][T10748] bridge_slave_1: entered allmulticast mode
[  624.557176][T10748] bridge_slave_1: entered promiscuous mode
[  624.833708][T10748] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  624.894952][T10748] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  625.262126][T10748] team0: Port device team_slave_0 added
[  625.332657][T10748] team0: Port device team_slave_1 added
[  625.447512][ T5793] Bluetooth: hci0: command tx timeout
[  625.501350][T10748] batman_adv: batadv0: Adding interface: batadv_slave_0
[  625.509057][T10748] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  625.536900][T10748] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  625.573963][T10748] batman_adv: batadv0: Adding interface: batadv_slave_1
[  625.581603][T10748] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  625.612995][T10748] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  625.923461][T10748] hsr_slave_0: entered promiscuous mode
[  625.933979][T10748] hsr_slave_1: entered promiscuous mode
[  625.944762][T10748] debugfs: 'hsr0' already exists in 'hsr'
[  625.951771][T10748] Cannot create hsr debugfs directory
[  626.009339][T10647] 8021q: adding VLAN 0 to HW filter on device batadv0
[  626.686997][T10573] veth0_vlan: entered promiscuous mode
[  626.771411][T10810] netlink: 9 bytes leftover after parsing attributes in process `syz.3.1248'.
[  626.869073][T10810] gretap0: entered promiscuous mode
[  627.254775][T10573] veth1_vlan: entered promiscuous mode
[  627.526020][ T5793] Bluetooth: hci0: command tx timeout
[  627.838734][T10821] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1252'.
[  628.150498][T10573] veth0_macvtap: entered promiscuous mode
[  628.276260][T10573] veth1_macvtap: entered promiscuous mode
[  628.689713][T10647] veth0_vlan: entered promiscuous mode
[  628.788845][T10829] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  628.921145][T10573] batman_adv: batadv0: Interface activated: batadv_slave_0
[  628.958560][T10647] veth1_vlan: entered promiscuous mode
[  629.018432][T10748] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  629.088772][T10748] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  629.103626][T10834] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1257'.
[  629.194720][T10573] batman_adv: batadv0: Interface activated: batadv_slave_1
[  629.306541][T10748] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  629.400061][T10748] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  629.602622][ T6111] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  629.660172][ T6111] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  629.780541][ T6111] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  629.835388][ T6089] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  630.066668][T10647] veth0_macvtap: entered promiscuous mode
[  630.162319][T10647] veth1_macvtap: entered promiscuous mode
[  630.620522][T10647] batman_adv: batadv0: Interface activated: batadv_slave_0
[  630.724558][T10647] batman_adv: batadv0: Interface activated: batadv_slave_1
[  630.883107][ T6075] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  630.945819][ T6075] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  630.980973][ T6075] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  631.056305][ T6075] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  631.524230][T10748] 8021q: adding VLAN 0 to HW filter on device bond0
[  632.000948][T10748] 8021q: adding VLAN 0 to HW filter on device team0
[  632.114039][ T6079] bridge0: port 1(bridge_slave_0) entered blocking state
[  632.121618][ T6079] bridge0: port 1(bridge_slave_0) entered forwarding state
[  632.285396][ T6079] bridge0: port 2(bridge_slave_1) entered blocking state
[  632.292961][ T6079] bridge0: port 2(bridge_slave_1) entered forwarding state
[  632.713801][T10876] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1264'.
[  633.673965][T10890] netlink: 'syz.3.1266': attribute type 4 has an invalid length.
[  634.106741][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  634.113358][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  634.891990][T10748] 8021q: adding VLAN 0 to HW filter on device batadv0
[  635.611592][T10748] veth0_vlan: entered promiscuous mode
[  635.771943][T10748] veth1_vlan: entered promiscuous mode
[  636.152797][T10925] netlink: 'syz.3.1271': attribute type 13 has an invalid length.
[  636.220127][ T6089] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  636.261104][ T6089] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  636.509069][T10929] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1272'.
[  636.751739][    C1] vcan0: j1939_tp_rxtimer: 0xffff8880533e9a00: rx timeout, send abort
[  637.187562][ T6111] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  637.214396][T10748] veth0_macvtap: entered promiscuous mode
[  637.275320][ T6111] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  637.312835][T10748] veth1_macvtap: entered promiscuous mode
[  637.379683][ T6079] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  637.399835][ T6079] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  637.493879][ T6075] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  637.533353][ T6075] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  637.713244][T10748] batman_adv: batadv0: Interface activated: batadv_slave_0
[  637.860567][T10748] batman_adv: batadv0: Interface activated: batadv_slave_1
[  638.001814][ T6075] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  638.044231][ T6075] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  638.073784][ T6075] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  638.260931][ T6075] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  638.351882][   T29] kauditd_printk_skb: 6 callbacks suppressed
[  638.351957][   T29] audit: type=1326 audit(1772250381.160:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10946 comm="syz.3.1275" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f82f6c code=0x0
[  638.573068][ T6079] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  638.616078][ T6079] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  639.030572][ T6075] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  639.055889][ T6075] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  640.102779][T10970] loop6: detected capacity change from 0 to 512
[  640.291479][T10970] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  640.325886][T10970] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  641.092837][T10987] loop8: detected capacity change from 0 to 128
[  641.353830][T10647] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  641.387370][T10987] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  641.483485][T10987] ext4 filesystem being mounted at /2/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  642.120072][T10573] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  644.043235][T11030] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1288'.
[  644.507053][T11037] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1290'.
[  645.745997][   T73] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  645.788595][   T73] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  646.133163][ T6079] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  646.174294][ T6079] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  646.531853][T11070] futex_wake_op: syz.3.1297 tries to shift op by 32; fix this program
[  648.104302][T11089] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1304'.
[  649.112206][T11106] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1309'.
[  651.735577][T11136] bridge0: port 2(bridge_slave_1) entered disabled state
[  653.607064][T11168] random: crng reseeded on system resumption
[  653.793824][T11173] netlink: 'syz.5.1328': attribute type 12 has an invalid length.
[  653.831375][T11173] netlink: 'syz.5.1328': attribute type 29 has an invalid length.
[  653.859392][T11173] netlink: 148 bytes leftover after parsing attributes in process `syz.5.1328'.
[  653.911526][T11173] netlink: 'syz.5.1328': attribute type 1 has an invalid length.
[  653.976609][T11173] netlink: 'syz.5.1328': attribute type 2 has an invalid length.
[  656.153372][T11198] input: syz0 as /devices/virtual/input/input7
[  659.920288][T11234] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1346'.
[  661.974698][ T9206] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  662.177305][ T9206] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  662.225715][ T9206] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  662.275751][ T9206] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  662.308265][ T9206] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  662.335684][ T9206] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  662.378272][ T9206] usb 9-1: config 0 descriptor??
[  662.897146][ T9206] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  662.937704][ T9206] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  662.945404][ T9206] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x3
[  663.018123][ T9206] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.8-1/input0
[  663.139609][T11257] loop8: detected capacity change from 0 to 256
[  663.198721][T11257] exfat: Deprecated parameter 'utf8'
[  663.204428][T11257] exfat: Deprecated parameter 'namecase'
[  663.259632][T11257] exfat: Deprecated parameter 'utf8'
[  663.500360][T11257] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  663.645407][ T9167] usb 9-1: USB disconnect, device number 2
[  665.501432][T11291] tipc: Started in network mode
[  665.513863][T11291] tipc: Node identity c22e5f2d78f7, cluster identity 4711
[  665.568760][T11291] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  665.609070][T11295] syzkaller0: entered promiscuous mode
[  665.736919][T11295] syzkaller0: entered allmulticast mode
[  665.836923][T11289] tipc: Resetting bearer <eth:syzkaller0>
[  665.980904][T11289] tipc: Disabling bearer <eth:syzkaller0>
[  667.586296][   T73] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  667.917185][   T73] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  668.210813][   T73] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  668.460513][   T73] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  668.868047][   T73] bridge_slave_1: left allmulticast mode
[  668.873905][   T73] bridge_slave_1: left promiscuous mode
[  668.916574][   T73] bridge0: port 2(bridge_slave_1) entered disabled state
[  668.946746][   T73] bridge_slave_0: left allmulticast mode
[  668.952609][   T73] bridge_slave_0: left promiscuous mode
[  668.976402][   T73] bridge0: port 1(bridge_slave_0) entered disabled state
[  669.839514][   T73] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  669.874904][   T73] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  669.902014][   T73] bond0 (unregistering): Released all slaves
[  670.228746][T11342] binder: 11341:11342 ioctl c0306201 80000180 returned -14
[  671.023710][   T73] hsr_slave_0: left promiscuous mode
[  671.039517][   T73] hsr_slave_1: left promiscuous mode
[  671.062737][   T73] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  671.100413][   T73] batman_adv: batadv0: Removing interface: batadv_slave_0
[  671.153912][   T73] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  671.178672][T11353] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  671.190660][T11353] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  671.194704][   T73] batman_adv: batadv0: Removing interface: batadv_slave_1
[  671.207981][T11353] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  671.235170][T11353] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  671.247203][T11353] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  671.333466][   T73] veth1_macvtap: left promiscuous mode
[  671.344072][   T73] veth0_macvtap: left promiscuous mode
[  671.352912][   T73] veth1_vlan: left promiscuous mode
[  671.367654][   T73] veth0_vlan: left promiscuous mode
[  672.006115][T11353] Bluetooth: hci5: command 0x0406 tx timeout
[  672.231227][   T73] team0 (unregistering): Port device team_slave_1 removed
[  672.316137][   T73] team0 (unregistering): Port device team_slave_0 removed
[  673.341569][T11350] chnl_net:caif_netlink_parms(): no params data found
[  673.367471][ T5793] Bluetooth: hci0: command tx timeout
[  673.961445][T11350] bridge0: port 1(bridge_slave_0) entered blocking state
[  673.979377][T11350] bridge0: port 1(bridge_slave_0) entered disabled state
[  673.989448][T11350] bridge_slave_0: entered allmulticast mode
[  674.000035][T11350] bridge_slave_0: entered promiscuous mode
[  674.036263][T11350] bridge0: port 2(bridge_slave_1) entered blocking state
[  674.043956][T11350] bridge0: port 2(bridge_slave_1) entered disabled state
[  674.053345][T11350] bridge_slave_1: entered allmulticast mode
[  674.069520][T11350] bridge_slave_1: entered promiscuous mode
[  674.165639][T11350] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  674.187703][T11350] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  674.271702][T11350] team0: Port device team_slave_0 added
[  674.290233][T11350] team0: Port device team_slave_1 added
[  674.453594][T11350] batman_adv: batadv0: Adding interface: batadv_slave_0
[  674.461014][T11350] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  674.489124][T11350] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  674.512560][T11350] batman_adv: batadv0: Adding interface: batadv_slave_1
[  674.520920][T11350] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  674.559722][T11350] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  674.754110][T11350] hsr_slave_0: entered promiscuous mode
[  674.765022][T11350] hsr_slave_1: entered promiscuous mode
[  674.780389][T11350] debugfs: 'hsr0' already exists in 'hsr'
[  674.786435][T11350] Cannot create hsr debugfs directory
[  675.449103][ T5793] Bluetooth: hci0: command tx timeout
[  675.889886][T11350] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  675.973110][T11350] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  676.001321][T11350] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  676.028085][T11350] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  676.554025][T11350] 8021q: adding VLAN 0 to HW filter on device bond0
[  676.643334][T11350] 8021q: adding VLAN 0 to HW filter on device team0
[  676.711033][ T6111] bridge0: port 1(bridge_slave_0) entered blocking state
[  676.718571][ T6111] bridge0: port 1(bridge_slave_0) entered forwarding state
[  676.771994][ T6111] bridge0: port 2(bridge_slave_1) entered blocking state
[  676.779552][ T6111] bridge0: port 2(bridge_slave_1) entered forwarding state
[  677.527196][ T5793] Bluetooth: hci0: command tx timeout
[  677.724646][T11350] 8021q: adding VLAN 0 to HW filter on device batadv0
[  677.988030][T11350] veth0_vlan: entered promiscuous mode
[  678.041330][T11350] veth1_vlan: entered promiscuous mode
[  678.240505][T11350] veth0_macvtap: entered promiscuous mode
[  678.285111][T11350] veth1_macvtap: entered promiscuous mode
[  678.378158][T11350] batman_adv: batadv0: Interface activated: batadv_slave_0
[  678.443657][T11350] batman_adv: batadv0: Interface activated: batadv_slave_1
[  678.484174][ T6795] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  678.501258][ T6795] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  678.520726][ T6795] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  678.542646][ T6795] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  679.606012][ T5793] Bluetooth: hci0: command tx timeout
[  680.876596][ T6118] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  680.920055][ T6118] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  681.024552][   T73] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  681.035280][   T73] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  683.199525][T11505] loop8: detected capacity change from 0 to 4096
[  683.329838][T11505] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=c042c118, mo2=0002]
[  683.463014][T11505] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  684.175247][T11528] loop5: detected capacity change from 0 to 128
[  684.834748][T11532] ceph: No mds server is up or the cluster is laggy
[  684.855887][  T795] libceph: connect (1)[c::]:6789 error -101
[  684.862193][  T795] libceph: mon0 (1)[c::]:6789 connect error
[  685.488097][T10573] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  685.660672][ T6795] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  685.970503][ T6795] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  686.331958][ T6795] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  686.665412][ T6795] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  687.263155][ T6795] bridge_slave_1: left allmulticast mode
[  687.283034][ T6795] bridge_slave_1: left promiscuous mode
[  687.304796][ T6795] bridge0: port 2(bridge_slave_1) entered disabled state
[  687.319598][ T6795] bridge_slave_0: left allmulticast mode
[  687.342990][ T6795] bridge_slave_0: left promiscuous mode
[  687.350106][ T6795] bridge0: port 1(bridge_slave_0) entered disabled state
[  688.098899][ T6795] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  688.137188][ T6795] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  688.175837][ T6795] bond0 (unregistering): Released all slaves
[  688.440461][T11577] netlink: 112 bytes leftover after parsing attributes in process `syz.2.1401'.
[  689.374434][ T6795] hsr_slave_0: left promiscuous mode
[  689.465802][ T6795] hsr_slave_1: left promiscuous mode
[  689.507155][ T6795] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  689.514726][ T6795] batman_adv: batadv0: Removing interface: batadv_slave_0
[  689.637257][ T6795] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  689.644834][ T6795] batman_adv: batadv0: Removing interface: batadv_slave_1
[  689.844902][ T6795] veth1_macvtap: left promiscuous mode
[  689.877147][T11353] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  689.889011][T11353] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  689.899809][ T6795] veth0_macvtap: left promiscuous mode
[  689.907887][T11353] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  689.930345][ T6795] veth1_vlan: left promiscuous mode
[  689.931091][T11353] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  689.948555][T11353] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  690.018559][ T6795] veth0_vlan: left promiscuous mode
[  692.006103][ T5793] Bluetooth: hci1: command tx timeout
[  692.534569][ T6795] team0 (unregistering): Port device team_slave_1 removed
[  692.623207][ T6795] team0 (unregistering): Port device team_slave_0 removed
[  694.087187][ T5793] Bluetooth: hci1: command tx timeout
[  694.363738][T11645] netlink: 'syz.2.1419': attribute type 4 has an invalid length.
[  694.418321][T11646] netlink: 'syz.2.1419': attribute type 4 has an invalid length.
[  695.548644][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  695.566102][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  696.009948][T11598] chnl_net:caif_netlink_parms(): no params data found
[  696.175628][ T5793] Bluetooth: hci1: command tx timeout
[  697.038188][T11679] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1426'.
[  697.099649][T11679] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1426'.
[  697.466103][T11682] loop6: detected capacity change from 0 to 2048
[  697.722379][T11682] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  698.048515][T11598] bridge0: port 1(bridge_slave_0) entered blocking state
[  698.083145][T11598] bridge0: port 1(bridge_slave_0) entered disabled state
[  698.163882][T11598] bridge_slave_0: entered allmulticast mode
[  698.227173][T11598] bridge_slave_0: entered promiscuous mode
[  698.247399][ T5793] Bluetooth: hci1: command tx timeout
[  698.325793][T11598] bridge0: port 2(bridge_slave_1) entered blocking state
[  698.366280][T11598] bridge0: port 2(bridge_slave_1) entered disabled state
[  698.374015][T11598] bridge_slave_1: entered allmulticast mode
[  698.419024][T11598] bridge_slave_1: entered promiscuous mode
[  698.422601][ T6111] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  698.466620][ T6111] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 92 with error 28
[  698.479565][ T6111] EXT4-fs (loop6): This should not happen!! Data will be lost
[  698.479565][ T6111] 
[  698.501146][ T6111] EXT4-fs (loop6): Total free blocks count 0
[  698.527135][ T6111] EXT4-fs (loop6): Free/Dirty block details
[  698.533224][ T6111] EXT4-fs (loop6): free_blocks=2415919504
[  698.617345][ T6111] EXT4-fs (loop6): dirty_blocks=96
[  698.622665][ T6111] EXT4-fs (loop6): Block reservation details
[  698.643221][T11700] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1431'.
[  698.671071][ T6111] EXT4-fs (loop6): i_reserved_data_blocks=6
[  698.752080][T10647] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  698.834778][T11598] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  698.883508][T11705] netlink: 'syz.2.1431': attribute type 1 has an invalid length.
[  698.943375][T11598] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  699.350530][T11598] team0: Port device team_slave_0 added
[  699.421711][T11598] team0: Port device team_slave_1 added
[  699.860568][T11598] batman_adv: batadv0: Adding interface: batadv_slave_0
[  699.890075][T11598] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  700.002705][T11598] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  700.122074][T11598] batman_adv: batadv0: Adding interface: batadv_slave_1
[  700.150094][T11598] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  700.275745][T11598] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  700.732438][T11598] hsr_slave_0: entered promiscuous mode
[  700.771706][T11598] hsr_slave_1: entered promiscuous mode
[  700.831998][T11598] debugfs: 'hsr0' already exists in 'hsr'
[  700.877834][T11598] Cannot create hsr debugfs directory
[  704.178913][T11598] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  704.298566][T11598] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  704.393151][T11598] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  704.652131][T11598] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  706.393695][T11598] 8021q: adding VLAN 0 to HW filter on device bond0
[  706.696652][T11598] 8021q: adding VLAN 0 to HW filter on device team0
[  706.830729][ T6079] bridge0: port 1(bridge_slave_0) entered blocking state
[  706.838480][ T6079] bridge0: port 1(bridge_slave_0) entered forwarding state
[  706.909784][T11790] netlink: 'syz.5.1454': attribute type 12 has an invalid length.
[  706.956999][T11790] netlink: 9472 bytes leftover after parsing attributes in process `syz.5.1454'.
[  706.988117][ T6079] bridge0: port 2(bridge_slave_1) entered blocking state
[  706.995772][ T6079] bridge0: port 2(bridge_slave_1) entered forwarding state
[  708.581875][T11801] loop2: detected capacity change from 0 to 4096
[  708.815996][T11801] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  708.978456][T11801] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1457'.
[  709.081485][T11801] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1457'.
[  709.158363][T11801] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1457'.
[  709.646469][T11350] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  709.851147][T11817] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1459'.
[  711.488727][T11825] bridge0: port 2(bridge_slave_1) entered disabled state
[  711.498459][T11825] bridge0: port 1(bridge_slave_0) entered disabled state
[  712.619712][T11846] loop5: detected capacity change from 0 to 256
[  712.772806][T11825] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  712.821265][T11846] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x1d73664b, utbl_chksum : 0xe619d30d)
[  712.923155][T11825] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  713.193091][T11846] exFAT-fs (loop5): valid_size(150994954) is greater than size(10)
[  714.039877][ T6075] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  714.069563][ T6075] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  714.207332][ T6075] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  714.256345][ T6075] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  714.356103][T11598] 8021q: adding VLAN 0 to HW filter on device batadv0
[  714.375777][ T6075] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 20000 - 0
[  714.384936][ T6075] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 20000 - 0
[  714.491516][ T6111] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 20000 - 0
[  714.590887][ T6111] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 20000 - 0
[  714.830909][T11870] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1473'.
[  715.527439][T11879] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1474'.
[  715.717044][T11887] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1475'.
[  717.242728][T11598] veth0_vlan: entered promiscuous mode
[  717.396836][T11598] veth1_vlan: entered promiscuous mode
[  717.475189][T11906] ref_ctr_offset mismatch. inode: 0x103 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x300000018
[  717.856467][T11598] veth0_macvtap: entered promiscuous mode
[  717.963577][T11598] veth1_macvtap: entered promiscuous mode
[  718.272871][T11598] batman_adv: batadv0: Interface activated: batadv_slave_0
[  718.404776][T11598] batman_adv: batadv0: Interface activated: batadv_slave_1
[  718.586292][ T6795] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  718.645960][ T6795] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  718.654982][ T6795] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  718.757679][ T6795] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  720.550506][   T29] audit: type=1800 audit(1772250463.360:136): pid=11954 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1494" name="file1" dev="overlay" ino=284 res=0 errno=0
[  720.695953][   T29] audit: type=1326 audit(1772250463.490:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11956 comm="syz.3.1493" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82f6c code=0x7ffc0000
[  720.791773][   T29] audit: type=1326 audit(1772250463.500:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11956 comm="syz.3.1493" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82f6c code=0x7ffc0000
[  720.896471][   T29] audit: type=1326 audit(1772250463.500:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11956 comm="syz.3.1493" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82f6c code=0x7ffc0000
[  720.998974][   T29] audit: type=1326 audit(1772250463.540:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11956 comm="syz.3.1493" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7185cab code=0x7ffc0000
[  721.120982][   T29] audit: type=1326 audit(1772250463.540:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11956 comm="syz.3.1493" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82f6c code=0x7ffc0000
[  721.255897][   T29] audit: type=1326 audit(1772250463.540:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11956 comm="syz.3.1493" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82f6c code=0x7ffc0000
[  721.386002][   T29] audit: type=1326 audit(1772250463.540:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11956 comm="syz.3.1493" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82f6c code=0x7ffc0000
[  721.474380][   T29] audit: type=1326 audit(1772250463.540:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11956 comm="syz.3.1493" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82f6c code=0x7ffc0000
[  721.568315][   T29] audit: type=1326 audit(1772250463.540:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11956 comm="syz.3.1493" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f82f6c code=0x7ffc0000
[  722.957828][ T5793] Bluetooth: hci5: Invalid connection link type handle 0x00c9
[  723.590907][T11992] tipc: Failed to remove unknown binding: 66,0,0/0:3749616067/3749616068
[  724.569211][T12007] loop5: detected capacity change from 0 to 8
[  724.651581][T12007] unable to read xattr id index table
[  726.004284][ T6105] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  726.032373][ T6105] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  726.233877][   T73] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  726.296091][   T73] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  726.712821][T12032] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1511'.
[  727.357779][T12040] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  727.563783][T12037] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  729.774188][T12075] IPv4: Oversized IP packet from 172.20.20.24
[  729.785290][    C1] IPv4: Oversized IP packet from 172.20.20.24
[  729.793731][    C1] IPv4: Oversized IP packet from 172.20.20.24
[  733.445973][T11353] Bluetooth: hci2: command 0x0406 tx timeout
[  737.404876][T12178] loop9: detected capacity change from 0 to 16
[  737.487705][T12178] erofs (device loop9): mounted with root inode @ nid 36.
[  737.748046][T12178] erofs (device loop9): compressed inode (nid 89) is invalid in a plain filesystem
[  741.533921][T12219] overlayfs: failed to get inode (-116)
[  741.561991][T12219] overlayfs: failed to get inode (-116)
[  742.407246][T12232] netlink: 56 bytes leftover after parsing attributes in process `syz.6.1573'.
[  742.568004][T12232] vlan2: entered promiscuous mode
[  742.601534][T12232] bond0: entered promiscuous mode
[  742.675901][T12232] bond_slave_0: entered promiscuous mode
[  742.682755][T12232] bond_slave_1: entered promiscuous mode
[  742.973135][T12237] bridge_slave_0: left allmulticast mode
[  742.988842][T12237] bridge0: port 1(bridge_slave_0) entered disabled state
[  743.064713][T12237] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  743.150855][T12241] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1576'.
[  745.075839][ T1928] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  745.288067][ T1928] usb 7-1: Using ep0 maxpacket: 32
[  745.327732][ T1928] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  745.353541][ T1928] usb 7-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  745.412506][ T1928] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  745.506309][ T1928] usb 7-1: config 0 descriptor??
[  745.756084][ T9206] usb 7-1: USB disconnect, device number 3
[  746.175235][T12289] netlink: 14 bytes leftover after parsing attributes in process `syz.9.1590'.
[  746.241383][T12286] 8021q: adding VLAN 0 to HW filter on device bond1
[  746.321925][T12286] bond0: (slave bond1): Enslaving as an active interface with an up link
[  746.509770][T12289] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  746.648477][T12289] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  746.753714][T12289] bond0 (unregistering): (slave bond1): Releasing backup interface
[  746.842674][T12289] bond0 (unregistering): Released all slaves
[  747.083781][T12301] loop6: detected capacity change from 0 to 1024
[  748.506023][ T1928] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  748.685686][ T1928] usb 7-1: Using ep0 maxpacket: 8
[  748.714394][ T1928] usb 7-1: config 0 has an invalid interface number: 101 but max is 12
[  748.738812][ T1928] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 13
[  748.791864][ T1928] usb 7-1: config 0 has no interface number 0
[  748.831192][ T1928] usb 7-1: too many endpoints for config 0 interface 101 altsetting 115: 51, using maximum allowed: 30
[  748.895137][ T1928] usb 7-1: config 0 interface 101 altsetting 115 has 0 endpoint descriptors, different from the interface descriptor's value: 51
[  748.953940][ T1928] usb 7-1: config 0 interface 101 has no altsetting 0
[  749.015232][ T1928] usb 7-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58
[  749.024817][ T1928] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  749.055857][ T1928] usb 7-1: Product: syz
[  749.065714][ T1928] usb 7-1: Manufacturer: syz
[  749.077089][ T1928] usb 7-1: SerialNumber: syz
[  749.130891][ T1928] usb 7-1: config 0 descriptor??
[  749.274895][T12331] overlayfs: failed to get inode (-116)
[  749.309164][T12331] overlayfs: failed to get inode (-116)
[  749.383849][ T1928] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08ae
[  750.387928][ T1928] gspca_zc3xx: reg_w_i err -71
[  750.995682][ T1928] gspca_zc3xx: Unknown sensor - set to TAS5130C
[  751.017003][ T1928] gspca_zc3xx 7-1:0.101: probe with driver gspca_zc3xx failed with error -71
[  751.081328][ T1928] usb 7-1: USB disconnect, device number 4
[  753.548001][T12396] netlink: 'syz.3.1620': attribute type 13 has an invalid length.
[  755.257939][T12418] netlink: 'syz.3.1626': attribute type 3 has an invalid length.
[  755.306318][T12418] netlink: 'syz.3.1626': attribute type 3 has an invalid length.
[  757.008362][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  757.014973][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  759.150098][T12472] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1645'.
[  761.356546][T12501] binder: 12499:12501 ioctl c0306201 800000c0 returned -14
[  761.658695][T12509] nbd2: detected capacity change from 0 to 112
[  761.723354][T12506] block nbd2: shutting down sockets
[  761.750612][    C0] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  761.760635][    C0] Buffer I/O error on dev nbd2, logical block 0, async page read
[  761.772849][T12510] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  761.825387][T12510] Buffer I/O error on dev nbd2, logical block 0, async page read
[  761.876001][T12510] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  761.936107][T12510] Buffer I/O error on dev nbd2, logical block 0, async page read
[  762.012911][T12510] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  762.052718][T12510] Buffer I/O error on dev nbd2, logical block 0, async page read
[  762.085419][T12510] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  762.186531][T12510] Buffer I/O error on dev nbd2, logical block 0, async page read
[  762.226904][T12510] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  762.305256][T12510] Buffer I/O error on dev nbd2, logical block 0, async page read
[  762.411894][T12510] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  762.456358][T12510] Buffer I/O error on dev nbd2, logical block 0, async page read
[  762.464490][T12510] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  762.552690][T12510] Buffer I/O error on dev nbd2, logical block 0, async page read
[  762.602309][T12510] ldm_validate_partition_table(): Disk read failed.
[  762.632759][T12510] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  762.676113][T12510] Buffer I/O error on dev nbd2, logical block 0, async page read
[  762.716004][T12510] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  762.782259][T12510] Buffer I/O error on dev nbd2, logical block 0, async page read
[  762.826301][T12510] Dev nbd2: unable to read RDB block 0
[  762.866772][T12510]  nbd2: unable to read partition table
[  762.877518][T11541] ldm_validate_partition_table(): Disk read failed.
[  762.912785][T11541] Dev nbd2: unable to read RDB block 0
[  762.936693][T11541]  nbd2: unable to read partition table
[  762.998601][T11541] ldm_validate_partition_table(): Disk read failed.
[  763.037717][T11541] Dev nbd2: unable to read RDB block 0
[  763.059363][T11541]  nbd2: unable to read partition table
[  763.700259][T12542] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1667'.
[  764.407780][T12551] loop5: detected capacity change from 0 to 256
[  764.496024][T12551] exFAT-fs (loop5): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  764.560220][T12551] exFAT-fs (loop5): failed to load alloc-bitmap
[  764.596027][T12551] exFAT-fs (loop5): failed to recognize exfat type
[  765.228852][T12555] loop2: detected capacity change from 0 to 4096
[  765.615994][ T5934] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  765.778434][T12571] binder: 12569:12571 ioctl 4018620d 0 returned -22
[  765.813379][ T5934] usb 10-1: Using ep0 maxpacket: 8
[  765.848139][ T5934] usb 10-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  765.905227][ T5934] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  765.935337][ T5934] usb 10-1: Product: syz
[  765.944638][ T5934] usb 10-1: Manufacturer: syz
[  765.975703][ T5934] usb 10-1: SerialNumber: syz
[  766.013984][ T5934] usb 10-1: config 0 descriptor??
[  766.303881][ T5934] usb 10-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  766.366301][T12580] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1678'.
[  766.722338][T12587] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1680'.
[  767.342504][ T5934] dvb_usb_rtl28xxu 10-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -32
[  767.421498][ T5934] usb 10-1: USB disconnect, device number 5
[  771.328938][T12650] overlayfs: failed to clone upperpath
[  771.685957][ T1928] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  771.873214][ T1928] usb 7-1: Using ep0 maxpacket: 32
[  771.887533][ T1928] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  771.935755][ T1928] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  771.965803][ T1928] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  772.003817][ T1928] usb 7-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  772.054998][ T1928] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  772.098180][ T1928] usb 7-1: config 0 descriptor??
[  772.108926][T12654] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  772.144132][ T1928] hub 7-1:0.0: USB hub found
[  772.407166][ T1928] hub 7-1:0.0: 2 ports detected
[  773.954798][ T5934] usb 7-1: USB disconnect, device number 5
[  773.955858][ T6795] usb 7-1: Failed to suspend device, error -19
[  774.868926][T12689] 9pnet: p9_errstr2errno: server reported unknown error 0x000000
[  775.014522][T12692] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1710'.
[  778.554637][T12740] netlink: 'syz.6.1724': attribute type 83 has an invalid length.
[  779.016064][T12747] loop2: detected capacity change from 0 to 512
[  779.137124][T12747] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  779.517569][T12747] loop2: detected capacity change from 512 to 0
[  779.525405][T12755] EXT4-fs error (device loop2): ext4_get_inode_loc:4920: inode #15: block 12: comm syz.2.1726: unable to read itable block
[  779.528098][    C1] blk_print_req_error: 43 callbacks suppressed
[  779.528167][    C1] I/O error, dev loop2, sector 10 op 0x0:(READ) flags 0x880700 phys_seg 1 prio class 2
[  779.686392][T12755] buffer_io_error: 43 callbacks suppressed
[  779.686473][T12755] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  779.779116][T12755] EXT4-fs (loop2): I/O error while writing superblock
[  780.171836][T11350] EXT4-fs warning (device loop2): htree_dirblock_to_tree:1051: inode #2: lblock 0: comm syz-executor: error -5 reading directory block
[  780.246741][T11350] EXT4-fs error (device loop2): ext4_get_inode_loc:4920: inode #2: block 5: comm syz-executor: unable to read itable block
[  780.293176][T11350] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  780.312459][T11350] EXT4-fs (loop2): I/O error while writing superblock
[  780.341312][T11350] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6246: IO failure
[  780.366390][T11350] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  780.445795][T11350] EXT4-fs (loop2): I/O error while writing superblock
[  780.471836][T11350] EXT4-fs error (device loop2): ext4_dirty_inode:6450: inode #2: comm syz-executor: mark_inode_dirty error
[  780.535997][T11350] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  780.568768][T11350] EXT4-fs (loop2): I/O error while writing superblock
[  780.881309][ T6079] EXT4-fs error (device loop2): __ext4_get_inode_loc_noinmem:4905: inode #15: block 12: comm kworker/u8:14: unable to read itable block
[  780.948765][ T6079] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  780.990432][ T6079] EXT4-fs (loop2): I/O error while writing superblock
[  781.009787][T12770] netlink: 2028 bytes leftover after parsing attributes in process `syz.9.1732'.
[  781.010692][T12768] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  781.056108][ T6079] EXT4-fs error (device loop2): __ext4_get_inode_loc_noinmem:4905: inode #2: block 5: comm kworker/u8:14: unable to read itable block
[  781.073015][T12770] netlink: 24 bytes leftover after parsing attributes in process `syz.9.1732'.
[  781.077306][T12768] overlayfs: failed to set xattr on upper
[  781.100561][ T6079] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  781.105412][T12768] overlayfs: ...falling back to index=off.
[  781.136849][T12768] overlayfs: ...falling back to uuid=null.
[  781.142820][ T6079] EXT4-fs (loop2): I/O error while writing superblock
[  781.169024][T11350] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  781.222629][T11350] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  781.278871][T11350] EXT4-fs (loop2): I/O error while writing superblock
[  781.891833][T12782] netlink: 'syz.5.1737': attribute type 1 has an invalid length.
[  782.662811][ T6089] bridge_slave_1: left allmulticast mode
[  782.715904][ T6089] bridge_slave_1: left promiscuous mode
[  782.722509][ T6089] bridge0: port 2(bridge_slave_1) entered disabled state
[  782.786107][ T6089] bridge_slave_0: left allmulticast mode
[  782.791953][ T6089] bridge_slave_0: left promiscuous mode
[  782.827247][ T6089] bridge0: port 1(bridge_slave_0) entered disabled state
[  783.199373][ T6089] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  783.233466][ T6089] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  783.259170][ T6089] bond0 (unregistering): Released all slaves
[  783.707962][ T6089] hsr_slave_0: left promiscuous mode
[  783.716233][ T6089] hsr_slave_1: left promiscuous mode
[  783.724512][ T6089] batman_adv: batadv0: Removing interface: batadv_slave_0
[  783.752565][ T6089] batman_adv: batadv0: Removing interface: batadv_slave_1
[  784.186851][T12804] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1742'.
[  784.882952][ T6089] team0 (unregistering): Port device team_slave_1 removed
[  785.030252][ T6089] team0 (unregistering): Port device team_slave_0 removed
[  785.050134][T12816] loop6: detected capacity change from 0 to 512
[  785.183786][T12816] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.1745: invalid indirect mapped block 256 (level 2)
[  785.236932][T12816] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  785.241040][T12816] EXT4-fs (loop6): 2 truncates cleaned up
[  785.250640][    C1] EXT4-fs (loop6): error count since last fsck: 1
[  785.250732][    C1] EXT4-fs (loop6): initial error at time 1772250528: ext4_free_branches:1023: inode 11
[  785.250896][    C1] EXT4-fs (loop6): last error at time 1772250528: ext4_free_branches:1023: inode 11
[  785.314957][T11353] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  785.326096][T11353] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  785.347811][T11353] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  785.377872][T11353] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  785.415634][T11353] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  785.548279][T12816] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  785.725288][T12816] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.1745: bg 0: block 5: invalid block bitmap
[  785.790553][T12828] =====================================================
[  785.798387][T12828] BUG: KMSAN: uninit-value in fuse_dentry_revalidate+0x150/0x13d0
[  785.806700][T12828]  fuse_dentry_revalidate+0x150/0x13d0
[  785.812369][T12828]  __lookup_slow+0x2ea/0x770
[  785.817508][T12828]  lookup_slow+0x6a/0xd0
[  785.821900][T12828]  path_lookupat+0x7d1/0xdf0
[  785.826737][T12828]  filename_lookup+0x2bc/0x800
[  785.831757][T12828]  __se_sys_fspick+0x13d/0x690
[  785.836908][T12828]  __ia32_sys_fspick+0x96/0xe0
[  785.841826][T12828]  ia32_sys_call+0x2628/0x4360
[  785.850431][T12828]  __do_fast_syscall_32+0x17f/0x3f0
[  785.860818][T12828]  do_fast_syscall_32+0x37/0x80
[  785.866005][T12828]  do_SYSENTER_32+0x1f/0x30
[  785.870656][T12828]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  785.877350][T12828] 
[  785.879756][T12828] Uninit was created at:
[  785.884232][T12828]  kmem_cache_alloc_lru_noprof+0x382/0x1280
[  785.890521][T12828]  __d_alloc+0x55/0xa00
[  785.894833][T12828]  d_alloc_parallel+0x99/0x2740
[  785.900075][T12828]  __lookup_slow+0x138/0x770
[  785.904859][T12828]  lookup_slow+0x6a/0xd0
[  785.910721][T12828]  path_lookupat+0x7d1/0xdf0
[  785.915757][T12828]  filename_lookup+0x2bc/0x800
[  785.920677][T12828]  vfs_statx+0xcf/0x290
[  785.925028][T12828]  __se_sys_statx+0x298/0x340
[  785.926221][T12816] overlayfs: failed to verify upper root origin
[  785.930118][T12828]  __ia32_sys_statx+0xe2/0x150
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  785.941200][T12828]  ia32_sys_call+0x4067/0x4360
[  785.947853][T12828]  __do_fast_syscall_32+0x17f/0x3f0
[  785.953228][T12828]  do_fast_syscall_32+0x37/0x80
[  785.960282][T12828]  do_SYSENTER_32+0x1f/0x30
[  785.965687][T12828]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  785.972219][T12828] 
[  785.974655][T12828] CPU: 1 UID: 0 PID: 12828 Comm: syz.9.1747 Tainted: G        W    L      syzkaller #0 PREEMPT(full) 
[  785.986848][T12828] Tainted: [W]=WARN, [L]=SOFTLOCKUP
[  785.992141][T12828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  786.002472][T12828] =====================================================
[  786.009668][T12828] Disabling lock debugging due to kernel taint
[  786.166164][T12828] Kernel panic - not syncing: kmsan.panic set ...
[  786.172763][T12828] CPU: 0 UID: 0 PID: 12828 Comm: syz.9.1747 Tainted: G    B   W    L      syzkaller #0 PREEMPT(full) 
[  786.183917][T12828] Tainted: [B]=BAD_PAGE, [W]=WARN, [L]=SOFTLOCKUP
[  786.190434][T12828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  786.200614][T12828] Call Trace:
[  786.203997][T12828]  <TASK>
[  786.207008][T12828]  __dump_stack+0x26/0x30
[  786.211506][T12828]  dump_stack_lvl+0x50/0x1c0
[  786.216265][T12828]  ? dump_stack+0x12/0x25
[  786.220765][T12828]  dump_stack+0x1e/0x25
[  786.225077][T12828]  vpanic+0x7b4/0x1430
[  786.229343][T12828]  panic+0x15d/0x160
[  786.233477][T12828]  kmsan_report+0x31a/0x320
[  786.238176][T12828]  ? __msan_warning+0x1b/0x30
[  786.243019][T12828]  ? fuse_dentry_revalidate+0x150/0x13d0
[  786.249008][T12828]  ? __lookup_slow+0x2ea/0x770
[  786.253908][T12828]  ? lookup_slow+0x6a/0xd0
[  786.258486][T12828]  ? path_lookupat+0x7d1/0xdf0
[  786.263375][T12828]  ? filename_lookup+0x2bc/0x800
[  786.268437][T12828]  ? __se_sys_fspick+0x13d/0x690
[  786.273529][T12828]  ? __ia32_sys_fspick+0x96/0xe0
[  786.278600][T12828]  ? ia32_sys_call+0x2628/0x4360
[  786.283672][T12828]  ? __do_fast_syscall_32+0x17f/0x3f0
[  786.289182][T12828]  ? do_fast_syscall_32+0x37/0x80
[  786.294336][T12828]  ? do_SYSENTER_32+0x1f/0x30
[  786.299133][T12828]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  786.305804][T12828]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[  786.312312][T12828]  ? kmsan_get_metadata+0xf1/0x160
[  786.317621][T12828]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  786.323609][T12828]  ? kmsan_get_metadata+0xf1/0x160
[  786.328907][T12828]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[  786.335434][T12828]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  786.341689][T12828]  ? _raw_spin_unlock+0x30/0x50
[  786.346699][T12828]  ? __dentry_kill+0x9a8/0xb20
[  786.351686][T12828]  ? kmsan_get_metadata+0xf1/0x160
[  786.356992][T12828]  __msan_warning+0x1b/0x30
[  786.361655][T12828]  fuse_dentry_revalidate+0x150/0x13d0
[  786.367320][T12828]  ? d_alloc_parallel+0x2714/0x2740
[  786.372692][T12828]  ? __pfx_default_wake_function+0x10/0x10
[  786.378698][T12828]  ? kmsan_get_metadata+0xf1/0x160
[  786.383987][T12828]  ? __pfx_fuse_dentry_revalidate+0x10/0x10
[  786.390083][T12828]  ? __pfx_fuse_dentry_revalidate+0x10/0x10
[  786.396168][T12828]  __lookup_slow+0x2ea/0x770
[  786.400924][T12828]  lookup_slow+0x6a/0xd0
[  786.405305][T12828]  path_lookupat+0x7d1/0xdf0
[  786.410047][T12828]  ? kmsan_get_metadata+0xf1/0x160
[  786.415337][T12828]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  786.421336][T12828]  filename_lookup+0x2bc/0x800
[  786.426253][T12828]  ? kmsan_get_metadata+0xf1/0x160
[  786.431540][T12828]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  786.437563][T12828]  __se_sys_fspick+0x13d/0x690
[  786.442472][T12828]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  786.448471][T12828]  __ia32_sys_fspick+0x96/0xe0
[  786.453420][T12828]  ia32_sys_call+0x2628/0x4360
[  786.458313][T12828]  __do_fast_syscall_32+0x17f/0x3f0
[  786.463685][T12828]  do_fast_syscall_32+0x37/0x80
[  786.468673][T12828]  do_SYSENTER_32+0x1f/0x30
[  786.473309][T12828]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  786.479812][T12828] RIP: 0023:0xf70aef6c
[  786.483979][T12828] Code: 90 85 d2 74 0a 89 ce 81 e6 ff 0f 00 00 89 32 85 c0 74 05 c1 e9 0c 89 08 31 c0 5e 5d c3 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 90 90 90 90 90 90 b8 ad
[  786.503723][T12828] RSP: 002b:00000000f547c50c EFLAGS: 00000206 ORIG_RAX: 00000000000001b1
[  786.512278][T12828] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080002000
[  786.520385][T12828] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  786.528453][T12828] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  786.536525][T12828] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  786.544597][T12828] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  786.552701][T12828]  </TASK>
[  786.556159][T12828] Kernel Offset: disabled
[  786.560529][T12828] Rebooting in 86400 seconds..