last executing test programs:

16m14.956073216s ago: executing program 1 (id=1757):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
pipe(0x0)
splice(r4, 0x0, r3, 0x0, 0xf3a, 0x8)
splice(r2, 0x0, 0xffffffffffffffff, 0x0, 0x80, 0x8)
timer_settime(r1, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
write$FUSE_INIT(r3, &(0x7f0000000140)={0x50, 0x0, 0x0, {0x7, 0x2b, 0x7dc, 0x48000, 0x6, 0xf, 0x1, 0x16d1, 0x0, 0x0, 0x2a, 0x3}}, 0x50)

16m13.797663653s ago: executing program 1 (id=1759):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000005c0)=ANY=[@ANYBLOB], 0x34}, 0x1, 0x0, 0x0, 0x48815}, 0xc000)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x3)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000040)={0x0, @rand_addr, @multicast1}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000220005002abd7000fcdbdf250200"], 0x1c}, 0x1, 0x0, 0x0, 0x4000040}, 0x40800)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f00000002c0)={[0x8aba, 0x7, 0x3, 0x804, 0xb, 0x200000000000000f, 0x8000120000, 0xfffffffffffffff8, 0x0, 0xb35, 0x1, 0x2, 0x9, 0x3, 0x0, 0x101], 0x2, 0x141200})
ioctl$KVM_SET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000100)=@arm64={0x10, 0x2, 0xff, '\x00', 0x400009})
ioctl$KVM_RUN(r1, 0xae80, 0x0)

16m13.688601699s ago: executing program 1 (id=1760):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb4e02000)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet_tcp(0x2, 0x1, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
lseek(r3, 0xc6c3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x20004041)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x0, 0x0, 0x0}, 0x94)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc)=0x1, 0x1, 0x8, 0x0, &(0x7f0000048000)=0x1, 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000040), &(0x7f0000048000), 0x0)
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
exit(0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)

16m11.242699931s ago: executing program 1 (id=1763):
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="61636c2c757365725f78617474722c6e6f61636c2c63616368655f73747261746567793d64697361626c65642c6e6f757365725f78617474722c6e6f61636c2c00d4a87b439fa421753f060fe37a330d2dfca47c4e52e78d71fc65b972e2bb306bb4a29b1fe3019842462c5fee84a2e6eb90d57b8725e3a2eff0b0b471dac5c01bee53cd8d"], 0xfe, 0x17d, &(0x7f0000000340)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x80000, 0x50)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, r0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty1(0xc, 0x4, 0x1)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
signalfd(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x2d8, 0x0, 0x268, 0x33a, 0x258, 0x268, 0x390, 0x460, 0x460, 0x390, 0x460, 0xc, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0, 0xd8000000, {0x9402}}, @common=@inet=@TCPMSS={0x28}}, {{@uncond, 0x0, 0xd0, 0x138, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00', 0x2}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x338)

16m6.361988904s ago: executing program 1 (id=1775):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000140)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4000000}}, {@mblk_io_submit}, {@nodioread_nolock}, {@test_dummy_encryption}, {@nombcache}, {@nodelalloc}, {@minixdf}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}]}, 0x1, 0xbaf, &(0x7f00000017c0)="$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")
llistxattr(&(0x7f0000000240)='./file1\x00', 0x0, 0x0)

16m4.569640348s ago: executing program 1 (id=1778):
r0 = syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000004380)='./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x20, &(0x7f0000000200)={[], [{@mask={'mask', 0x3d, 'MAY_READ'}}, {@smackfsroot={'smackfsroot', 0x3d, '&{]-'}}, {@dont_appraise}, {@dont_measure}]}, 0xff, 0xc48, &(0x7f0000002380)="$eJzs3UFsHNd9B+D/G5JaSm4qJk4Uu42LdVukMmO5sqSYilW4q5pmG0CWiVDMLQBXJKUuTJEESTWykbZMLj30EKAoesiJQGsUSNHAqIugR7Z1geTiQ5FTT0QLG0HRA1sE8MlgMbNvpRVFWjRFSpT1fQb52515b+a9meEMLfDtCwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAg4vdeOX/y+fSgWwEA3E8Xx75x8pTnPwA8Ui75/38AAAAAAAAAAAAAADjoUhTxeKSYv7ieJqr3bf0XWrPXb4wPj2xd7XCqavZU5cuv/udPnT7z1ReGznby4+vvtSfjtbFL5+svz12bX5heXJyeqo/Ptibnpoq8/nt33cLW9ad33aLB8gDUIuL61JUri/VTz52+bfWNgQ9qjx0bODf0zImn2mVv1MeHR0bGusr09u1673fYboTHoSjiRKR49kc/T82IqA7YPR6Lu1w7++1w1YnBqhPjwyNVR2ZazdmlcuVo50AUEfWuSo3OMdruXPTc1z5srxGxXDa/bPBg2b2x+eZC8/LMdH20ubDUWmrNzY6m9pVT9qceRZxNESsRsVa7c3N9UURvpPjB0fV0OSJ6OsfhK9XA4O3bUexjH3egbGe9L2Kl+Jhztoc/P59WtSji1Ujxi3ePx2R5zPJXfDni1TJ/HPFWmS9FpPLCOBPx/hbXEQ+n3ijiz8vzf249TVX3g8595cI361+fvTLXVbZzX+l6PpQ/hp/w+bCRr577/nw4vCnvjwN+b+qPIprVHX897f6XHQAAAAAAAAAAAAAAAAD22uEo4slI8cq//1E1rjiqcelHzw39/sBnuof4PnGX7aSIeC4iloudjck9lIcQj6bRlB7wWOJHWX8U8cd5/N93H3RjAAAAAAAAAAAAAAAAAAAAHmlF/CxSvPje8bQS3XOKt2av1i81L8+0Z4XtzP3bmTN9Y2Njo57a2cg5kXM550rO1ZxrOaPI9XM2ck7kXM65knM151rO6Mn1czZyTuRczrmSczXnWk/0R3f7e3P9nBM5l3Ou5FzNuZYzDsjcvQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnyZFFPFRpPj+t9dTpIhoRExEO1drD7p1AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAECplop4J1LU/6Bxc1lvRKSIovP+ePntTDQOlfm5aAyV+VI0zudsVtnb+O4DaD/3pi8V8dNIUet/uzznlc+0z39f+126Wfat79x69yu97ezprBz4oPbYsaPnhkZ+7YntXqetGjB4oTV7/UZ9fHhkZKxrcW/e++e6lg3k/RZ703UiYvGNN19vzsxML+z+RXkJ3EN1L3b84pDjvLsXG/lq/6TVo/cANH7fX3Tuy5v6ziOgfP6/Hyl++73/6DzwO7///VL73c0nfHz4J7ee/y9u3tA+Pf8f71r2Yv5tpK83on/p2nzfsYj+xTfePNG61rw6fXV69szJk18bGvra6ZN9hyL6r7Rmprte3fOhAgAAAAAAAAAAAAAAALi/UhG/GymaP11P9Yi4UY3XGjg39MyJp3qipxpvddu4rdfGLp2vvzx3bX5henFxeqo+PtuanJua3unu+qvhXuPDI/vSmbs6vM/tP9z/8tz8Gwutq3+4tOX6I/3nLy8uLTQnt14dh6OIaHQvGawaPD48UjV6ptWcraqObjmY7pPrS0X8Z6SYPFNPT+dlefzf5hH+t43/X968oX0a//fZrmXlPlMq4sNI8Vt/8UQ8XbXzSNxxzHK5v4kUg2e/lMvFobJcpw3tzxVojwwsy/5vpPiHj24v2xkP+fitss/v+MA+JMrzfzRSvPNnP4xfz8t6b/v8h63P/5HNG9rh+d/400317nL+P9+17Mhtn1ewN/1/1JXn/0SkeOnxt+M38rLej/n8j85nbxzPhW9+Psc+/fx/oWvZQN7vb+5N1wEAAAAAAAAAAB5qfamIv40UT430phfysp38/d/U5g3t7u+/UsSF1myx/d9/fbFr2dTezFd01xd7cFgBAAAA4EDoS0X8LFJcXXr75hjq28d/d43//J1b4z+H06a11b/z/XL1uQF7Of6z20De78S9dxsAAAAAAAAAAAAAAAAAAAAOlJSKeCHPpz5xl/nUVyPFK//9bC6XjpXlOvPAD1Tf+y/OzZ44PzMzN9lcal6ema6PzTcnp8u6n48U63/9pVy3qOZXf3rTPjpzsS9EipG/65Rtz8XemZu8PR94ey72suxnI8V//f3tZTvzWH/hVtlTZdm/ihTf+qetyx67VfZ0WfaHkeIn36p3yh4py3Y+H/WLt8o+NzlX7On5AAAAAAAAAAAAAAAAAAAA4NHUl4r4XqT4n2srN8fy5/n/+7reVt76Ttd8/5vcqOb5H6jm/9/u9W7m/x+4s8ZHG20RG0d32WsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADjYUhTxZqSYv7ieVmvl+7b+C63Z6zfGh0e2rnY4VTV7qvLlV//zp06f+eoLQ2c7+fH199qT8drYpfP1l+euzS9MLy5OT9XHZ1uTc1PTO97CvdbfbLA6APVrr1+funJl8Y7VNwY+qD12bODc0DMnnuqUHR8eGRnrKtPbt+u93yFts/xQFPGXkeLZH/08/XMtooh7PxZ3uXb22+GqE4NVJ8aHR6qOzLSas0vlytHOgSgi6l2VGp1jdB/OxT1pRCyXzS8bPFh2b2y+udC8PDNdH20uLLWWWnOzo6nd2rI/9SjibIpYiYi12p2b64siXo8UPzi6nv6lFtHTOQ5fuTj2jZOntm9HsY993IGynfW+iJXiIThnB1gtivjHSPGLd4/Hv9YieqP9FV+OeLXMH0e8Fe3zncoL40zE+1tcRzyceqOI/yvP/7n19G6tvB907isXvln/+tI73WU795WH/vlwPx3we1N/FPGT6o6/nv7NzzUAAAAAAAAAAAAAAADAAVLEr0aKF987nqrxwZ1B0Qut2av1jVpEe1hfZ+xfZ/XGxsZGPbWzkXMi53LOlZyrOddyRpHr52yU2b+xMZHfL+dcybmacy1n9OT6ORs5J3Iu51zJuZpzLWf05vo5Gzknci7nXMm5mnMtZxyQsXsAAAAAAAAAAAAAAAAAAMCnS1H9l+L7315PG7X2/NIT0c5V84F+6v1/AAAA///TTPGM")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180), 0x4040, 0x0)
stat(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
lchown(&(0x7f0000000180)='./file1\x00', r2, 0x0)
mount$9p_fd(0x0, 0x0, &(0x7f0000000100), 0x1001000, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@noextend}, {@posixacl}, {@nodevmap}], [{@smackfsdef={'smackfsdef', 0x3d, '\xff\xff'}}, {@pcr={'pcr', 0x3d, 0x17}}, {@measure}, {@dont_measure}, {@fowner_eq={'fowner', 0x3d, 0xffffffffffffffff}}, {@euid_lt={'euid<', r2}}, {@hash}]}})
r3 = getpid()
sched_setscheduler(r3, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
ioctl$F2FS_IOC_RELEASE_COMPRESS_BLOCKS(r4, 0x8008f512, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
write$tcp_mem(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r6, 0x29, 0x6, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x79, 0x11, 0xa8}, [@ldst={0x6, 0x3}], {0x95, 0x0, 0xc00}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48)

16m4.246049937s ago: executing program 32 (id=1778):
r0 = syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000004380)='./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x20, &(0x7f0000000200)={[], [{@mask={'mask', 0x3d, 'MAY_READ'}}, {@smackfsroot={'smackfsroot', 0x3d, '&{]-'}}, {@dont_appraise}, {@dont_measure}]}, 0xff, 0xc48, &(0x7f0000002380)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180), 0x4040, 0x0)
stat(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
lchown(&(0x7f0000000180)='./file1\x00', r2, 0x0)
mount$9p_fd(0x0, 0x0, &(0x7f0000000100), 0x1001000, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@noextend}, {@posixacl}, {@nodevmap}], [{@smackfsdef={'smackfsdef', 0x3d, '\xff\xff'}}, {@pcr={'pcr', 0x3d, 0x17}}, {@measure}, {@dont_measure}, {@fowner_eq={'fowner', 0x3d, 0xffffffffffffffff}}, {@euid_lt={'euid<', r2}}, {@hash}]}})
r3 = getpid()
sched_setscheduler(r3, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
ioctl$F2FS_IOC_RELEASE_COMPRESS_BLOCKS(r4, 0x8008f512, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
write$tcp_mem(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r6, 0x29, 0x6, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x79, 0x11, 0xa8}, [@ldst={0x6, 0x3}], {0x95, 0x0, 0xc00}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48)

15m8.45311612s ago: executing program 4 (id=1878):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000300)='./file0\x00', 0x10, &(0x7f0000000000)={[{@grpjquota, 0x4a}, {@debug}, {@jqfmt_vfsold}, {@noquota}, {@bsdgroups}, {@usrjquota, 0x22}, {@dax}, {@errors_remount}], [], 0x2c}, 0x84, 0x4c2, &(0x7f0000000980)="$eJzs3DtvHEUcAPD/rh+JSYxNeOYBMQSExcOOnWdBAwIpDRIIhEJpbCcKcRIUGymJLGwQCiXKJwBKJD4BFTQIqEC0IFqEFCE3CRRo0d7tOWff+fyIz0dyv5909uzu7M7Mzoy9M6O9ANrWQP4jidgZEb9GRF95c2mEgfKvmwuz438vzI4nkWVv/JWU4t1YmB2vRK2ct6PYGEwj0o+T2Fsn3enLV86OTU1NXiy2h2fOvTc8ffnK82fOjZ2ePD15fvT48cOHeo4dHT2yKeXszfO654ML+3afePvaq+Mnr73zw1d5frPi+PaaM/rXmUJHzZ6BGFh6L6s8tc6r/9/1VoWTzhZmhHXJW21eXV2l/t8XHXGr8vrilY9amjmgqbIsy7bV7F38XzafVUuS8gnAXSLRpaFNVf7R31jIR6qz49Xj+XZw/cUojYDyct8sPuUjnZHmY/j+8tioWR6IiJPz/3yWf2LZfAoAQDN8kz//PFd+7qh8ykfSeKgq3r3F2lB/RNwXEbsi4v7i+eXBiFLchyPikSVXn1s1/YFl27XPPz/3bLhwa5A//71QrG0tff5LK1H6O4qt3lL5u5JTZ6YmDxb3ZDC6tuXbI7WXXpxW+/blXz5dKf2Bque//JOnX3kWLPLxZ+eyCbqJsZmx2y13xfUPS1N6c7XlTxZXAvKRwe6I2LOB6+f37MwzX+6re7ByixuWv4FNWGfKvoh4ulz/87Gs/LnuIlR/fXLk2NHRI8PbY2ry4HClVdT68aerrxXBmqHE6vXfXHn937PY/su/y0cWVy77k+r12un1p3H1t09WHNNstP13J2+Wwt3FvktjMzMXRyK6k/na/aO3zr001rMkfl7+wQP1+/+uiH8/L87bGxF5I340Ih6LiP1F3h+PiCci4kCD8n//0pPv1qv7tZW/ufLyT9T9+7dS/a8/0HH2u69XSn9t9X+4FBos9kyMzdQu1y+z1gzezr0DAACAO8X+iNgZSTpUTMftjDQdGorYsTiDMj3z7KkL75+fKL8j0B9daWWmq69qPnSkmBvOt/OzRqu28+OHSvPGWZZlPaXtofELU72tLTq0vR0r9P/cH7WvtAB3m3Wto630RhtwR9r4Onq2qfkAtp73taF96f/Qvtbc/5v5JhzQEvX6/1zEzRZkBdhi9fr/Wy3IB7D1jP+hfen/0L5q+3/aknwAW+p23utvFNh1okGcpLM5ia4cSKPxtwD0R6zvgr+nEZuTw45NLWnPGup0e2xGWpGuGqezwRcxvF57w/PoW9Qk0q1tfo0D2yJilda72NjmKoErzc5Yq/8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAbI7/AgAA//+7BdPO")
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f00000002c0)={[{@barrier}, {@nodioread_nolock}, {@noquota}, {@barrier}, {@auto_da_alloc}, {@nodioread_nolock}]}, 0x1, 0x59c, &(0x7f0000001840)="$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")
ftruncate(0xffffffffffffffff, 0x2007ffb)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x1a1)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000000)={0xd2f0, 0x2000, 0x8, 0xadea})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r1, 0x40086602, &(0x7f0000000f40)={@id={0x2, 0x0, @a}})

15m6.585642208s ago: executing program 4 (id=1880):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x1c, 0x4, 0x6, 0x101, 0x0, 0x0, {0x3, 0x0, 0x5}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000011}, 0x20000084)

15m2.597291488s ago: executing program 4 (id=1887):
io_setup(0x8, 0x0)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x7, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
r5 = syz_open_dev$video4linux(0x0, 0x7fff, 0x48b03)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r5, 0x4020565a, &(0x7f0000000000)={0x3, 0x9a090a, 0x1})
ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r5, 0x4020565b, &(0x7f00000001c0)={0x0, 0x7ff, 0x2})

15m1.205450788s ago: executing program 4 (id=1888):
syz_mount_image$hfsplus(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x80408a, &(0x7f0000000000)=ANY=[@ANYRES8=0x0], 0x11, 0x6c1, &(0x7f000000abc0)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x4080, 0x1e0)
lseek(r0, 0x1, 0x4)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x141042, 0x0)
openat$null(0xffffffffffffff9c, &(0x7f0000000180), 0x2a0202, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f0000000040)={[{@nobh}, {@abort}]}, 0xff, 0x258, &(0x7f0000000780)="$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")
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x24040040)
syz_mount_image$squashfs(&(0x7f0000000040), &(0x7f00000004c0)='./file0\x00', 0x2210c80, &(0x7f0000000500)=ANY=[@ANYRES8=0x0, @ANYBLOB="474bfbddc8673daa37ce65382f3b451399708380773a6f66ff70be5288b364bf028f82fcaffd5ecf2997cbd4ebf3847f44db99794bef6318602cd3e99d018027b205bf6fda74c8b585065dc4a91305ddb3b8808df024f44901974b39c116202302341a241938e004a64ead0ec5ae6b62", @ANYRESDEC=0x0, @ANYRES64, @ANYRES16=0x0, @ANYRESHEX], 0x1, 0x1ac, &(0x7f0000019ac0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000000ac0)=""/102392, 0x18ff8)
io_uring_register$IORING_REGISTER_BUFFERS2(0xffffffffffffffff, 0xf, 0x0, 0x0)
r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x241, 0x0)
pwritev(r2, 0x0, 0x0, 0xfaa2, 0x6)
r3 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_buf(r3, 0x1, 0x3f, &(0x7f0000001180)=""/74, &(0x7f0000001200)=0x4a)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x4000080, 0x0, 0x0)
getsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, &(0x7f0000000100), 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="000000005c553b8b00000000000e000100000000", @ANYRES32, @ANYBLOB="000000000500"/28], 0x50)

14m56.480109001s ago: executing program 4 (id=1894):
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r0 = openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x80)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$AUDIT_SET_FEATURE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x94}, 0x20000081)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x10000005)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x1, 0x3f, 0x40, 0x42}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000580)="c52c", &(0x7f0000000140), 0x1003, r4}, 0x38)

14m46.841686257s ago: executing program 4 (id=1912):
socket$alg(0x26, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
ioprio_get$pid(0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0xc67e7be33bfcd098, &(0x7f0000000180)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f0000000040), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102400, 0x19000)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000180)=0x221a, 0x4)

14m46.306287818s ago: executing program 33 (id=1912):
socket$alg(0x26, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
ioprio_get$pid(0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0xc67e7be33bfcd098, &(0x7f0000000180)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f0000000040), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102400, 0x19000)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000180)=0x221a, 0x4)

11m18.803238703s ago: executing program 5 (id=2216):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x0, 0x0)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000000ac0)=""/102392, 0x18ff8)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x2, 0x3, 0x0, 0x3, 0xe, 0x0, 0x70bd2c, 0x25dfdbfb, [@sadb_key={0x3, 0x9, 0x80, 0x0, "1cdc0dca1d9f68846960e56de42944af"}, @sadb_address={0x3, 0x6, 0x2b, 0x0, 0x0, @in={0x2, 0x4e24, @private=0xa010102}}, @sadb_sa={0x2, 0x1, 0x2, 0x0, 0x0, 0x7, 0xc}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e20, @empty}}, @sadb_x_nat_t_type={0x1, 0x14, 0x7}]}, 0x70}, 0x1, 0x7}, 0x0)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f00000002c0)={0x1f, 0x0, @any, 0xfffa}, 0xe)

11m16.823452578s ago: executing program 5 (id=2221):
userfaultfd(0x1)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000840)='./file1\x00', 0x2, &(0x7f00000000c0)={[{@jqfmt_vfsold}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4000000}}, {@orlov}, {@noload}, {@delalloc}, {@mblk_io_submit}, {@commit}, {@max_batch_time={'max_batch_time', 0x3d, 0x428}}, {@nogrpid}, {@init_itable_val={'init_itable', 0x3d, 0xfff}}]}, 0xfa, 0x477, &(0x7f0000001380)="$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")
creat(0x0, 0x9)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x100c08a, &(0x7f0000000300)={[{@utf8no}, {@shortname_winnt}, {@numtail}, {@utf8no}, {@uni_xlateno}, {@rodir}, {@shortname_lower}, {@uni_xlateno}, {@fat=@umask={'umask', 0x3d, 0x2}}, {@rodir}, {@shortname_win95}, {@uni_xlate}, {@shortname_mixed}, {@numtail}, {@fat=@dos1xfloppy}, {@shortname_winnt}, {@utf8}]}, 0x7, 0x2cd, &(0x7f0000000500)="$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")
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019c80)=""/102400, 0x19000)
inotify_init1(0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
accept$unix(0xffffffffffffffff, 0x0, &(0x7f0000000040))
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
socket$unix(0x1, 0x1, 0x0)
setresgid(0xee00, 0xee01, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000200)={0x2, &(0x7f00000001c0)=[{0x48, 0x5, 0x73, 0xffe00003}, {0x6, 0x83, 0x6, 0x10400}]}, 0x10)
r4 = creat(&(0x7f0000000240)='./file1\x00', 0x0)
fcntl$setstatus(r4, 0x4, 0x6000)
io_setup(0x200, &(0x7f0000000140)=<r5=>0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
io_submit(r5, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0x0, 0x2, 0x1, 0x0, r4, &(0x7f0000000000), 0x0, 0x4}])

11m10.350077681s ago: executing program 5 (id=2225):
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f00000000c0)='./file0\x00', 0x2048cc, &(0x7f0000000300)=ANY=[@ANYBLOB="756e695f786c6174653d312c696f636861727365743d757466382c0097b75cbdde02821d0f899c2377ee9577397fc18b433d0c59e692b381740ca495e1c145c5922679338b5ff21c0653a98440a5725268a242c0263564f988d3c178704feaf8a412df818275708882ea9a4048c6e458a1f05b83f2e69b965b1df203b21de2b0ee3756cc76258ed52e2247f886a5310889982079aa7b1fb4eefe7f768eec58b19cf50faaf129503175f4262df740183df51d3641ff78b86127c1db8ef165bfa3bd20797fde6ff91a0e45d3d7c1c6d1ce0a72be8c1fdb00000000", @ANYRES16, @ANYRES8, @ANYRES8, @ANYRES32], 0x1, 0x343, &(0x7f0000000bc0)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

11m8.401582183s ago: executing program 5 (id=2227):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f00000000c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x4040, &(0x7f00000015c0)=ANY=[], 0x2, 0xc2d, &(0x7f00000001c0)="$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")
creat(&(0x7f0000000100)='./bus\x00', 0x44)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x301400, 0x0)
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x49)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x7a00, 0x0, 0x3)
r1 = fanotify_init(0x200, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='net_prio.prioidx\x00', 0x275a, 0x0)
fanotify_mark(r1, 0x161, 0x40000867, r2, 0x0)

11m3.666143317s ago: executing program 5 (id=2234):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000000)={0x73622a85, 0x10b})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000180)=[@increfs], 0x0, 0x0, 0x0})
dup3(r1, r0, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000540)='./binderfs/binder0\x00', 0x802, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0xffffffffffffff67, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x8, 0x0, &(0x7f0000000580)=[@increfs], 0x0, 0x0, 0x0})

11m1.857625061s ago: executing program 5 (id=2237):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, 0x0, 0x4000800)
r3 = syz_io_uring_setup(0x239, 0x0, &(0x7f0000000080)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x230}})
io_uring_enter(r3, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
poll(0x0, 0x0, 0x800)

11m0.065460595s ago: executing program 34 (id=2237):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, 0x0, 0x4000800)
r3 = syz_io_uring_setup(0x239, 0x0, &(0x7f0000000080)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x230}})
io_uring_enter(r3, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
poll(0x0, 0x0, 0x800)

7m8.965691192s ago: executing program 3 (id=2642):
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f00000002c0)=@file={0x1, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0x6e)

7m8.776440592s ago: executing program 3 (id=2644):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
r1 = openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
sync_file_range(r1, 0x2, 0x10000000000002, 0x3)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$inet6(0xa, 0x1, 0x0)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="02000000040000000410000009"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="0d000000060000000400000001000000010000", @ANYRES32=r6], 0x50)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000380)={0x0, @in6={{0xa, 0x4e24, 0xd4c3, @empty, 0x7}}, 0x5, 0x555e, 0x80000003, 0x3, 0xec9742544c25a00, 0x20000005, 0x7}, 0x9c)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000100)={0x0, @in={{0x2, 0x4e21, @empty}}, 0x0, 0x8, 0x2, 0x0, 0x20, 0x9, 0x6}, &(0x7f0000000040)=0x9c)
getsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, 0x0, &(0x7f0000000080))

7m7.44364608s ago: executing program 3 (id=2645):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@updpolicy={0xc0, 0x19, 0xfd3649826d894c67, 0x0, 0x0, {{@in6=@mcast1, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x2}}, [@XFRMA_IF_ID={0x8, 0x1f, 0x2}]}, 0xc0}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000100000000000000ac1e000100000000000000000000000000000000000000000a"], 0xb8}}, 0x20040014)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@updpolicy={0xb8, 0x15, 0x1, 0x0, 0x25dfdbfd, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in6=@loopback, 0x0, 0x0, 0x4e23, 0x0, 0xa, 0x10}, {0x8, 0x1, 0x0, 0x0, 0x8, 0x0, 0xffffffff, 0xffffffffffffffff}, {0x0, 0xfffffffffffffffa}, 0x4, 0x6e6bb5, 0x0, 0x1, 0x3, 0x3}}, 0xb8}}, 0x0)

7m5.269520035s ago: executing program 3 (id=2648):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000180)='./file1\x00', 0x4000, &(0x7f0000000580)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000102,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000011,fileset=00000000000000000011,uid=', @ANYBLOB="d6d84c0df937ed4a0cd30000f2e9ea9568eab74a46c525dc386983eade0b0ce5f1dd911706cf7d32d7d508d1823b8871e001000000eb4ce0a008f5cdea622fc6675e5486860a752ed0298a948efa72b2c8d8525181644a3124f3544a50f192b98f055ad125fd4674534413c6044136ea5aefac5267e43739626ea9391d8f346c4694f70400000000000000cee1f628d1cec3462830606bb612bfed91181cdc107bb91a2e86de2ad5", @ANYBLOB="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"], 0x12, 0xc49, &(0x7f0000001cc0)="$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")
open(&(0x7f0000000040)='./bus\x00', 0x400141042, 0x2a)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x8000, 0xa0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x8005, 0x0, 0x0, 0x12, 0xd, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x204]})
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)

7m3.477679038s ago: executing program 3 (id=2651):
r0 = socket$inet6(0xa, 0x80002, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000f00)={'veth0_to_batadv\x00', &(0x7f0000000180)=@ethtool_perm_addr={0x4b, 0x1b, "4372071e8426138c0100fd245c1497c85538300000000200000037"}})

7m1.227980758s ago: executing program 3 (id=2656):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x8000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x20000090)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, 0x0}], 0x1, 0x48, 0x0, 0x0)

7m0.298518232s ago: executing program 35 (id=2656):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x8000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x20000090)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, 0x0}], 0x1, 0x48, 0x0, 0x0)

6m47.1565549s ago: executing program 6 (id=2673):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x561, &(0x7f0000000f80)="$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")
mount(&(0x7f0000000ac0)=@loop={'/dev/loop', 0x0}, &(0x7f0000000b00)='./file1\x00', 0x0, 0x1000, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x104)
fallocate(r0, 0x10, 0x4000, 0x4000)

6m43.298439433s ago: executing program 6 (id=2677):
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
fchdir(r0)
openat$null(0xffffffffffffff9c, &(0x7f0000000100), 0x242, 0x0)
r1 = fsopen(&(0x7f00000000c0)='rpc_pipefs\x00', 0x1)
close_range(r1, 0xffffffffffffffff, 0x2)
epoll_create1(0x0)
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, &(0x7f000000b000)={0x77359400}, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000), 0x0)

6m42.82933416s ago: executing program 6 (id=2678):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = syz_open_procfs(0x0, &(0x7f0000002180)='net/mcfilter\x00')
preadv(r4, &(0x7f0000000140)=[{&(0x7f0000000a40)=""/65, 0x41}], 0x1, 0x400006, 0x7)

6m41.351165275s ago: executing program 6 (id=2679):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000180)='./file1\x00', 0x4000, &(0x7f0000000580)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000102,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000011,fileset=00000000000000000011,uid=', @ANYBLOB="d6d84c0df937ed4a0cd30000f2e9ea9568eab74a46c525dc386983eade0b0ce5f1dd911706cf7d32d7d508d1823b8871e001000000eb4ce0a008f5cdea622fc6675e5486860a752ed0298a948efa72b2c8d8525181644a3124f3544a50f192b98f055ad125fd4674534413c6044136ea5aefac5267e43739626ea9391d8f346c4694f70400000000000000cee1f628d1cec3462830606bb612bfed91181cdc107bb91a2e86de2ad5", @ANYBLOB="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"], 0x12, 0xc49, &(0x7f0000001cc0)="$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")
open(&(0x7f0000000040)='./bus\x00', 0x400141042, 0x2a)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x8000, 0xa0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x8005, 0x0, 0x0, 0x12, 0xd, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x204]})
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)

6m39.17845533s ago: executing program 6 (id=2684):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="1201000014da2108ab12a390eb1e000000010902240001b30000040904410017ff5d810009050f1f01040000000905830300"], 0x0)
ioctl$EVIOCSCLOCKID(0xffffffffffffffff, 0x400445a0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, 0x0, 0x0)
epoll_create1(0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=@ipv4_delroute={0x24, 0x18, 0x901, 0x70bd2c, 0x25dfdbff, {0x2, 0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, [@RTA_DST={0x8, 0x1, @dev}]}, 0x24}}, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
ioctl$TCSETA(0xffffffffffffffff, 0x5406, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000140)=0x4)
syz_usb_connect(0x0, 0x36, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x8, 0x0)
sendmsg$AUDIT_TTY_SET(0xffffffffffffffff, 0x0, 0x1)

6m26.609504056s ago: executing program 6 (id=2701):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
rseq(&(0x7f0000000300), 0x20, 0x0, 0x0)
r0 = open(0x0, 0x66842, 0x21)
pwritev2(r0, 0x0, 0x0, 0x2000, 0x0, 0x3)

6m26.057098518s ago: executing program 36 (id=2701):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
rseq(&(0x7f0000000300), 0x20, 0x0, 0x0)
r0 = open(0x0, 0x66842, 0x21)
pwritev2(r0, 0x0, 0x0, 0x2000, 0x0, 0x3)

5m32.85780709s ago: executing program 7 (id=2789):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000007c0)=[@text32={0x20, 0x0}], 0x1, 0x9, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x20040, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x74, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

5m28.866034061s ago: executing program 7 (id=2796):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
prlimit64(0x0, 0xe, 0x0, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0x0)
ioctl$USBDEVFS_SETCONFIGURATION(r0, 0x80045505, &(0x7f0000000000)=0x1)

5m28.609346826s ago: executing program 7 (id=2798):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000680)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01012abd7000000008002b00000008000300", @ANYRES32=r2, @ANYBLOB="0400460007003400768aae00080026006c0900002c00518028000080110001001f36a5ed75a04b91f507422f23000000"], 0x5c}, 0x1, 0x0, 0x0, 0x80}, 0x4804)

5m27.486232541s ago: executing program 7 (id=2800):
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x8010)
r0 = socket(0xa, 0x3, 0xff)
setsockopt$inet6_int(r0, 0x29, 0x38, &(0x7f0000000180)=0x7fffffff, 0x4)
syz_emit_ethernet(0x4e, &(0x7f00000000c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa3986dd6c370c8900182b01fe800000000000000000000000000025fe800000"], 0x0)
recvmmsg(r0, &(0x7f0000005b00)=[{{0x0, 0x0, 0x0}, 0x8f2}], 0x1, 0x62, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = epoll_create(0x48)
epoll_pwait(r3, &(0x7f0000000040)=[{}], 0x1, 0x7, 0x0, 0x0)
request_key(&(0x7f0000000040)='logon\x00', &(0x7f0000000000)={'syz', 0x3}, &(0x7f00000002c0)='\xa2\\\x04\xe9\x178\x1b\xda<\x95\x82o\xf8\x06\x1e\xfbPm\x87\xa0E<\x99b\xc2\x9c\xfd\xb5T\xfd\x1e\x82\x83\xbc\xd9\a\xd5\xd3\x88\xe3D~\xbd\xe8\xaa\xfe>\xd8\xa1\xb3M\x00\t\x00\x00\x00\x00\x00\xe5\xff\x00\x00\a\x00\x00\x00\x00\x00\xf0\x00\x00\\Ak\xbe\xec\x0e\x19\xe1\xca@\xb2\xf1', 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000200)={@cgroup, 0x6, 0x0, 0x50d6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
stat(&(0x7f0000000b00)='./file0\x00', &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
sendmsg$nl_xfrm(r0, &(0x7f0000000e00)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000dc0)={&(0x7f0000000e40)=ANY=[@ANYBLOB="c40100001500080027bd7000ffdbdf25ac14140c000000000000000000000000000000000000000000000000000000014e2000004e2200a7080020a01d000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="b86b6e000000000014000d00ac1414aa00000000000000000000000008001d000e00000028001a0064010101000000000000000000000000ac1e01010000000000000000000000000a0060032c00130064010102000000000000000000000000ff010000000000000000000000000001000000000a0000000c001c", @ANYRES32=0x0, @ANYBLOB="01000000e4000600ac14143b000000000000000000000000200100000000000000000000000000014e2000064e200d8602000080bc000000", @ANYRES32=0x0, @ANYRES32=r4], 0x1c4}}, 0x12)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000240)={0x0, r2}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0xc, 0x3, &(0x7f0000000100)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

5m25.989935847s ago: executing program 7 (id=2801):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x8, &(0x7f0000000180)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x4}}, {@noload}, {@noquota}, {@mb_optimize_scan}]}, 0x1, 0x783, &(0x7f0000001000)="$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")
socket$inet(0x2, 0x2, 0x0)
getpgrp(0x0)
openat$uhid(0xffffffffffffff9c, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x50603, 0x0)
r3 = socket(0xa, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f0000001f40)=@raw={'raw\x00', 0x8, 0x3, 0x1258, 0x10f0, 0x11, 0x148, 0x10f0, 0x10, 0x11c0, 0x2a8, 0x2a8, 0x11c0, 0x2a8, 0x7fffffe, 0x0, {[{{@uncond, 0x10, 0x10d0, 0x10f0, 0x1c, {0x6}, [@common=@unspec=@cgroup1={{0x1030}, {0x0, 0x1, 0x0, 0x0, './cgroup/syz0\x00'}}, @common=@unspec=@mark={{0x30}, {0x863, 0x7fff}}]}, @unspec=@NOTRACK={0x20}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, 0x9, 0x8, [0x3b, 0x29, 0x1f, 0x2, 0x29, 0x25, 0x38, 0x25, 0xa, 0x33, 0x28, 0x21, 0x25, 0x11, 0x16, 0x1b], 0x2, 0x3ff, 0x9}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x12b8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
r5 = openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
read$FUSE(r5, &(0x7f0000001c40)={0x2020}, 0x2020)
unshare(0xa000200)
write$cgroup_int(r4, &(0x7f0000000000)=0x5, 0x12)
sendfile(r5, r4, 0x0, 0xe3aa6e6)

5m23.313073992s ago: executing program 7 (id=2803):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000032680)=""/102392, 0x18ff8)
capset(&(0x7f0000000040)={0x20071026}, &(0x7f00000002c0)={0x6, 0x6, 0x1000002, 0x87, 0xffffffff, 0x3fe})
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000480)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x4000000}, 0x50)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000340)={0x1b, 0x0, 0x0, 0x40000, 0x0, r4, 0xfff}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x15, 0x1c, &(0x7f0000000100)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xbda}, {{0x18, 0x1, 0x1, 0x0, r5}, {}, {0x7, 0x0, 0xb, 0x6}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x0, 0x2}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x6, 0x1, 0xa, 0x9, 0x8}, {0x7, 0x0, 0x0, 0x8}, {0x7, 0x1, 0xb, 0x4, 0x8}, {}, {0x7, 0x0, 0xc}, {0x18, 0x6, 0x2, 0x0, r4}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

5m7.822631266s ago: executing program 37 (id=2803):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000032680)=""/102392, 0x18ff8)
capset(&(0x7f0000000040)={0x20071026}, &(0x7f00000002c0)={0x6, 0x6, 0x1000002, 0x87, 0xffffffff, 0x3fe})
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000480)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x4000000}, 0x50)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000340)={0x1b, 0x0, 0x0, 0x40000, 0x0, r4, 0xfff}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x15, 0x1c, &(0x7f0000000100)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xbda}, {{0x18, 0x1, 0x1, 0x0, r5}, {}, {0x7, 0x0, 0xb, 0x6}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x0, 0x2}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x6, 0x1, 0xa, 0x9, 0x8}, {0x7, 0x0, 0x0, 0x8}, {0x7, 0x1, 0xb, 0x4, 0x8}, {}, {0x7, 0x0, 0xc}, {0x18, 0x6, 0x2, 0x0, r4}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

13.733758608s ago: executing program 8 (id=3326):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

13.678378271s ago: executing program 8 (id=3327):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000380)={[{@data_err_abort}, {}, {@oldalloc}, {@noacl}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@nolazytime}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x570, &(0x7f0000000540)="$eJzs3U1rHGUcAPD/bF76qk2hFPUggR6s1G6axJcKQutRtFjQe12SaSjZdEt2U5pYaHuwFy9SBBEL4gfw7rH4BfwUBS0UKUEPXiKzmW23yW7eujVb5/eDaZ9nZpL/PPvM8+Q/M7tsAIU1mv1Ting1Ir5JIg61bRuMfOPo6n7Lj65PZUsSKyuf/ZlEkq9r7Z/k/x/IK69ExK9fRZworY9bX1yarVSr6XxeH2vMXRmrLy6dvDRXmUln0ssTk5On35mceP+9d3vW1jfP//39p/c+Ov31seXvfn5w+E4SZ+Ngvq29Hc/gZntlNEbz12Qozq7ZcbwHwfpJstsHwI4MRAxH8wzN5oBDMZCPeuD/70ZErAAFlRj/UFCtPKB1bd+j6+AXxsMPV290rG//4Oq9kdjbvDbav5w8dWWUXe+O9CB+FuOXP+7eyZbY5D7EjR7EA2i5eSsiTg0Orp//knz+27lTzZvHG1sbo2h/f2A33cvyn7c65T+lx/lPdMh/DnQYuzux+fgvPehBmK6y/O+Djvnv46lrZCCvvdTM+YaSi5eq6amIeDkijsfQnqy+0fOc08v3V7pta8//siWL38oF8+N4MLjn6Z+ZrjQqz9Lmdg9vRbz2JP9NYt38v7eZ667t/+z1OL/FGEfTu69327Z5+9v1PgNe+SnijY79/+SJVrLx88mx5vkw1jor1vvr9tHfusXfXvt7L+v//Ru3fyRpf15b336MH/f+k3bbttPzfzj5vFkeztddqzQa8+MRw8kn69dPPPnZVr21f9b+48c2nv86nf/7IuKLLbb/9pHbXXfth/6f3lb/b79w/+Mvf+gWf2v9/3azdDxfs5X5b6sH+CyvHQAAAAAAAPSbUkQcjKRUflwulcrl1fd3HIn9pWqt3jhxsbZweTqan5UdiaFS60n3obb3Q4zn74dt1SfW1Ccj4nBEfDuwr1kvT9Wq07vdeAAAAAAAAAAAAAAAAAAAAOgTB7p8/j/z+8BuHx3w3PnKbyiuTcd/L77pCehL/v5DcRn/UFzGPxSX8Q/FZfxDcRn/UFzGPxSX8Q8AAAAAAAAAAAAAAAAAAAAAAAAAAAA9df7cuWxZWX50fSqrT19dXJitXT05ndZny3MLU+Wp2vyV8kytNlNNy1O1uc1+X7VWuzI+EQvXxhppvTFWX1y6MFdbuNy4cGmuMpNeSIf+k1YBAAAAAAAAAAAAAAAAAADAi6W+uDRbqVbTeYWuhTOxhZ2Hoh8OtWMh2ayXz+Qnw45CDO5+AxWeQ2GXJyYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaPNvAAAA//9MTTL2")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00'})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
r6 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r6, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, &(0x7f0000032680)=""/102400, 0x19000)
socket$nl_generic(0x10, 0x3, 0x10)
r8 = gettid()
ioprio_get$pid(0x2, r8)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
sendmsg$NL80211_CMD_REGISTER_FRAME(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000040)={0x28, r2, 0x1, 0x70bd26, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x4}, @NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0x40}]}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x0)

12.359735977s ago: executing program 8 (id=3329):
r0 = getpgrp(0x0)
prlimit64(r0, 0xe, &(0x7f0000000000)={0x8, 0x100000001000089}, 0x0)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
connect$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000032680)=""/102392, 0x18ff8)
socket$netlink(0x10, 0x3, 0x7)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000002280)=@raw={'raw\x00', 0x3c1, 0x3, 0x398, 0x1d8, 0x12, 0x60a, 0x1d8, 0x202, 0x2c8, 0x2e8, 0x2e8, 0x2c8, 0x2c0, 0x4, 0x0, {[{{@ipv6={@empty, @ipv4={'\x00', '\xff\xff', @private}, [], [0x0, 0x0, 0x0, 0xff], 'veth1_to_bond\x00', 'ipvlan1\x00'}, 0x0, 0x190, 0x1d8, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "000000000000000617ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f34a214e6726401fe4b124e0f7323a587d2a1fcf07000000eca0a7b66c60c527bac2b5", 0x2, 0x3}}, @inet=@rpfilter={{0x28}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x80000001, 'syz1\x00', {0xfffffffffffffffd}}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x0, 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3f8)
pipe(&(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
read$FUSE(r5, &(0x7f0000000080)={0x2020, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}, 0x2020)
write$binfmt_elf32(r6, &(0x7f0000002180)={{0x7f, 0x45, 0x4c, 0x46, 0x4, 0xc, 0x2, 0x5, 0xf, 0x2, 0x3e, 0xe7d26f7, 0x65, 0x38, 0x212, 0x0, 0x7, 0x20, 0x1, 0x7, 0x4, 0x8001}, [{0x5, 0xfffffffe, 0x1, 0x3, 0x9, 0x9, 0x5}]}, 0x58)
getpriority(0x2, r7)

12.280499331s ago: executing program 0 (id=3330):
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'wlan0\x00'})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, &(0x7f0000000540)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41000, 0x7e}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = getpid()
syz_mount_image$erofs(&(0x7f00000002c0), &(0x7f0000000380)='./file1\x00', 0x200000, &(0x7f0000000280)=ANY=[@ANYRES8=0x0, @ANYRES16=<r1=>r0, @ANYRESHEX=r0, @ANYRES64=<r2=>r0, @ANYRES32], 0x8, 0x221, &(0x7f0000002080)="$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")
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000032680)=""/102400, 0x19000)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x40305829, 0x0)
msgrcv(0x0, 0xfffffffffffffffe, 0xfffffffffffffcb8, 0x1, 0x0)
r5 = msgget$private(0x0, 0x4df)
msgsnd(r5, &(0x7f0000000340)=ANY=[@ANYBLOB="3a2d49e20ba5bde4dd", @ANYRES32, @ANYRES32=r1, @ANYRES64=r2], 0x26, 0x0)
msgrcv(r5, 0x0, 0x0, 0x2, 0x1800)
socket$inet(0x2, 0xa, 0x5)
creat(&(0x7f0000000000)='./file1\x00', 0x40)
msgctl$IPC_RMID(r5, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl(r6, 0x8b2a, &(0x7f0000000040))

10.809629157s ago: executing program 0 (id=3333):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000005c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_DEL_STATION(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={0x24, r0, 0x121, 0x70bd2c, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0xc}]}, 0x24}}, 0x0)

9.725658539s ago: executing program 9 (id=3335):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

9.647296134s ago: executing program 9 (id=3337):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000000))

9.444928995s ago: executing program 9 (id=3338):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000380)={[{@data_err_abort}, {}, {@oldalloc}, {@noacl}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@nolazytime}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x570, &(0x7f0000000540)="$eJzs3U1rHGUcAPD/bF76qk2hFPUggR6s1G6axJcKQutRtFjQe12SaSjZdEt2U5pYaHuwFy9SBBEL4gfw7rH4BfwUBS0UKUEPXiKzmW23yW7eujVb5/eDaZ9nZpL/PPvM8+Q/M7tsAIU1mv1Ting1Ir5JIg61bRuMfOPo6n7Lj65PZUsSKyuf/ZlEkq9r7Z/k/x/IK69ExK9fRZworY9bX1yarVSr6XxeH2vMXRmrLy6dvDRXmUln0ssTk5On35mceP+9d3vW1jfP//39p/c+Ov31seXvfn5w+E4SZ+Ngvq29Hc/gZntlNEbz12Qozq7ZcbwHwfpJstsHwI4MRAxH8wzN5oBDMZCPeuD/70ZErAAFlRj/UFCtPKB1bd+j6+AXxsMPV290rG//4Oq9kdjbvDbav5w8dWWUXe+O9CB+FuOXP+7eyZbY5D7EjR7EA2i5eSsiTg0Orp//knz+27lTzZvHG1sbo2h/f2A33cvyn7c65T+lx/lPdMh/DnQYuzux+fgvPehBmK6y/O+Djvnv46lrZCCvvdTM+YaSi5eq6amIeDkijsfQnqy+0fOc08v3V7pta8//siWL38oF8+N4MLjn6Z+ZrjQqz9Lmdg9vRbz2JP9NYt38v7eZ667t/+z1OL/FGEfTu69327Z5+9v1PgNe+SnijY79/+SJVrLx88mx5vkw1jor1vvr9tHfusXfXvt7L+v//Ru3fyRpf15b336MH/f+k3bbttPzfzj5vFkeztddqzQa8+MRw8kn69dPPPnZVr21f9b+48c2nv86nf/7IuKLLbb/9pHbXXfth/6f3lb/b79w/+Mvf+gWf2v9/3azdDxfs5X5b6sH+CyvHQAAAAAAAPSbUkQcjKRUflwulcrl1fd3HIn9pWqt3jhxsbZweTqan5UdiaFS60n3obb3Q4zn74dt1SfW1Ccj4nBEfDuwr1kvT9Wq07vdeAAAAAAAAAAAAAAAAAAAAOgTB7p8/j/z+8BuHx3w3PnKbyiuTcd/L77pCehL/v5DcRn/UFzGPxSX8Q/FZfxDcRn/UFzGPxSX8Q8AAAAAAAAAAAAAAAAAAAAAAAAAAAA9df7cuWxZWX50fSqrT19dXJitXT05ndZny3MLU+Wp2vyV8kytNlNNy1O1uc1+X7VWuzI+EQvXxhppvTFWX1y6MFdbuNy4cGmuMpNeSIf+k1YBAAAAAAAAAAAAAAAAAADAi6W+uDRbqVbTeYWuhTOxhZ2Hoh8OtWMh2ayXz+Qnw45CDO5+AxWeQ2GXJyYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaPNvAAAA//9MTTL2")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00'})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
r6 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r6, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, &(0x7f0000032680)=""/102400, 0x19000)
socket$nl_generic(0x10, 0x3, 0x10)
r8 = gettid()
ioprio_get$pid(0x2, r8)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
sendmsg$NL80211_CMD_REGISTER_FRAME(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000040)={0x28, r2, 0x1, 0x70bd26, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x4}, @NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0x40}]}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x0)

9.444057055s ago: executing program 2 (id=3339):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000000)={0x50, r0, 0x801, 0x400, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_KEY={0x28, 0x50, 0x0, 0x1, [@NL80211_KEY_DATA_WEP104={0x11, 0x1, "4abee33908f8eef16f162471f4"}, @NL80211_KEY_IDX={0x5, 0x2, 0x2}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac05}]}]}, 0x50}}, 0x0)

8.189608208s ago: executing program 8 (id=3340):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2a08086, &(0x7f00000007c0)={[{@quota}]}, 0xfd, 0x49f, &(0x7f0000000ec0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r1, 0x0)
syz_mount_image$squashfs(&(0x7f00000000c0), &(0x7f00000001c0)='./file1\x00', 0x8000, &(0x7f0000000cc0)=ANY=[@ANYRESOCT, @ANYRESOCT, @ANYRESOCT, @ANYRES16=r1, @ANYRESHEX, @ANYRESHEX=r1, @ANYRES16=0x0, @ANYRES8, @ANYRESHEX, @ANYRES32, @ANYBLOB="a8df9c70785f8460bb90d69429d48b90abf421a50a81ae1674be6b17e3ec48509876f964cb2ee16c5fcab344f57d67c63992f0b2c08de21ddcacb7a04b", @ANYRES8], 0x10, 0x1d0, &(0x7f0000000440)="$eJzsVb2uEkEU/s4ysKAmYGsrESqBtfEFjDyADyBZ1p+4/rGbKIRitaGxML4EiU9hodHewhgTGyw00QJLEqOZmTPrAFvovZB7bzJfQs453/nZc4bdM7eSh4kP4NdyGqIBBcIZfCKCANAiza0qWv5k+ZvxVWi7x/xLll9YJuPJ+2dandwZxHE0SsYFCgZxqKMQEwFFMazUt5jCigdX3j1dZwibyu6edTglLfGRbbmerzF+UQzn4sin2J1S2hzHM+/Ut10/q3xl3+MAOUP/kPXxhR71uPwXe1K8/8pKwOsrufrEww9lfFhOQ6lc5y0muaH+mU9CxUjjtRVzTgAZ4NkxQm1LoAWgk9590HnDay+6Gd0LAmTdt6f5DYy6nRu346hLVhuqlkAO+Z3WLH8ZwOe//gwWyGpN4hRAdq5sxCzn9nkrsaZnMLl2DV33VV7DZ04exTVcQBXAo0y6A2abkNUE1Gh9EM7WoYyesPoEVvBQVY6L4f14OAOBTNocIq/RW6AsDcqAKGBDeS5drpoWZyybLPss5ywXLM3dZe4koQ7wO1vtDKjg8SBNR+ry0lrOBTkXNPKD9/ip5jYk04kPBwcHBwcHB4cTgj8BAAD//0IJSNA=")
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, 0x0)

8.111382232s ago: executing program 2 (id=3341):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]})
close_range(r0, 0xffffffffffffffff, 0x0)

7.060439373s ago: executing program 9 (id=3342):
socket(0x10, 0x3, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x12, 0x4, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000071180a0000000000"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @cgroup_sock_addr=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000032680)=""/102400, 0x19000)
r4 = openat$nvram(0xffffffffffffff9c, 0x0, 0x80801, 0x0)
write$uinput_user_dev(r4, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r5, 0x6, 0x0, 0x0, 0x0)
r6 = socket(0x10, 0x3, 0x9)
sendmsg$NFT_BATCH(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)={{0x14, 0x3f2, 0x1, 0x0, 0x0, {0x7}}, [], {0x14, 0x3f3}}, 0x28}, 0x1, 0x0, 0x0, 0x6c809}, 0x40000)
r7 = fsmount(r5, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000240)={r0, r7, 0xb, 0x0, @val=@netkit={@void, @value=r7}}, 0x1c)
waitid(0x1, 0x0, 0x0, 0x4, 0x0)
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
sendto$inet(r8, 0x0, 0x0, 0x24000840, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)

6.889532293s ago: executing program 2 (id=3343):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000032680)=""/102392, 0x18ff8)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000480)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x4000000}, 0x50)
r4 = openat$sysfs(0xffffff9c, &(0x7f0000000100)='/sys/power/pm_trace_dev_match', 0x0, 0x0)
readv(r4, &(0x7f00000003c0)=[{&(0x7f0000000500)=""/186, 0xba}], 0x1)
select(0x0, 0x0, 0x0, 0x0, 0x0)
r5 = getpgrp(r0)
sched_setaffinity(r5, 0x8, &(0x7f0000000040)=0x5)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r7 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r7, 0x1, 0x0)
r8 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r8, &(0x7f0000032680)=""/102392, 0x18ff8)

4.814997722s ago: executing program 2 (id=3344):
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
setrlimit(0xa, 0x0)
sendmsg$inet6(0xffffffffffffffff, 0x0, 0x4004000)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x8, 0x0, 0x7fff0000}]})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x3a, &(0x7f0000000000)=0xfffffffe, 0x4)
bind$inet6(r1, &(0x7f0000000280)={0xa, 0x4e22, 0x9, @loopback, 0x6}, 0x1c)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22, 0x23, @loopback, 0x23}, 0x1c)
close_range(r0, 0xffffffffffffffff, 0x0)

4.584989136s ago: executing program 0 (id=3345):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

3.229688254s ago: executing program 9 (id=3346):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0xfffffffffffffc2c)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0e0000000400000008"], 0x48)

3.229343524s ago: executing program 0 (id=3347):
sendto$inet(0xffffffffffffffff, &(0x7f00000000c0)="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", 0xb41, 0x20000, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x101343)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
ioctl$SNDRV_TIMER_IOCTL_PVERSION(r1, 0x400454a4, &(0x7f0000000c00))

2.860878705s ago: executing program 0 (id=3348):
r0 = getpgrp(0x0)
prlimit64(r0, 0xe, &(0x7f0000000000)={0x8, 0x100000001000089}, 0x0)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
connect$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000032680)=""/102392, 0x18ff8)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000002280)=@raw={'raw\x00', 0x3c1, 0x3, 0x398, 0x1d8, 0x12, 0x60a, 0x1d8, 0x202, 0x2c8, 0x2e8, 0x2e8, 0x2c8, 0x2c0, 0x4, 0x0, {[{{@ipv6={@empty, @ipv4={'\x00', '\xff\xff', @private}, [], [0x0, 0x0, 0x0, 0xff], 'veth1_to_bond\x00', 'ipvlan1\x00'}, 0x0, 0x190, 0x1d8, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "000000000000000617ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f34a214e6726401fe4b124e0f7323a587d2a1fcf07000000eca0a7b66c60c527bac2b5", 0x2, 0x3}}, @inet=@rpfilter={{0x28}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x80000001, 'syz1\x00', {0xfffffffffffffffd}}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x0, 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3f8)
pipe(&(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
read$FUSE(r5, &(0x7f0000000080)={0x2020, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}, 0x2020)
write$binfmt_elf32(r6, &(0x7f0000002180)={{0x7f, 0x45, 0x4c, 0x46, 0x4, 0xc, 0x2, 0x5, 0xf, 0x2, 0x3e, 0xe7d26f7, 0x65, 0x38, 0x212, 0x0, 0x7, 0x20, 0x1, 0x7, 0x4, 0x8001}, [{0x5, 0xfffffffe, 0x1, 0x3, 0x9, 0x9, 0x5}]}, 0x58)
getpriority(0x2, r7)

1.490870884s ago: executing program 0 (id=3349):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$BTRFS_IOC_WAIT_SYNC(r0, 0x40089416, 0x0)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0xfffffffffffff002, 0x0, 0x32, 0xffffffffffffffff, 0x0)
r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x6)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r5, 0x0)
openat$ptp0(0xffffffffffffff9c, 0x0, 0x42af03, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$SO_TIMESTAMP(r6, 0x1, 0x40, &(0x7f0000000080)=0x7fffffff, 0x4)
r7 = syz_open_procfs(0x0, &(0x7f00000042c0)='mounts\x00')
r8 = syz_io_uring_setup(0xec4, 0x0, &(0x7f0000000500), &(0x7f0000000600))
mremap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1000, 0x3, &(0x7f000000b000/0x1000)=nil)
io_uring_enter(r8, 0x0, 0xa9e7, 0x3, &(0x7f0000000040)={[0x8001]}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f00000000c0)={0x0, 0x0, 0x370}, 0x10}, 0x94)
read$FUSE(0xffffffffffffffff, &(0x7f0000000200)={0x2020}, 0x2020)
pread64(r7, 0x0, 0x0, 0x80000001)
write$tcp_mem(r1, &(0x7f0000000040)={0x1000000ff, 0x20, 0xa4, 0x20, 0x800}, 0x48)

1.258297287s ago: executing program 8 (id=3350):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000380)={[{@data_err_abort}, {}, {@oldalloc}, {@noacl}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@nolazytime}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x570, &(0x7f0000000540)="$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")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00'})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r5 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r5, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000032680)=""/102400, 0x19000)
socket$nl_generic(0x10, 0x3, 0x10)
r7 = gettid()
ioprio_get$pid(0x2, r7)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000800)=ANY=[@ANYBLOB="611234000000000061134c0000000000bf2000000000000015000200000000103d030100000000009500000000000000bc26000000000000bf67000000000000070300000fff070067020000030000001606000000000078bf050000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f909ad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a82983d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf719506d2d6b05fe70305865050df26469fac5202d6293c3d5e11f4f83e7455baeeba4f"], &(0x7f0000000100)='GPL\x00'}, 0x48)
sendmsg$NL80211_CMD_REGISTER_FRAME(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000040)={0x28, r2, 0x1, 0x70bd26, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x4}, @NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0x40}]}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x0)

235.012076ms ago: executing program 2 (id=3351):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x8}}}}}, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)={@random="5bb65d3f2511", @remote, @void, {@ipv4={0x800, @udp={{0x6, 0x4, 0x0, 0xe, 0x28, 0x65, 0x0, 0x3, 0x11, 0x0, @empty, @empty=0xe0000001, {[@generic={0x83, 0x2}]}}, {0x4e20, 0x4e20, 0x10, 0x0, @gue={{0x2, 0x0, 0x0, 0x6, 0x100}}}}}}}, 0x0)

181.6319ms ago: executing program 9 (id=3352):
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./bus\x00', 0x2218050, &(0x7f0000000140)=ANY=[], 0x1, 0x1528, &(0x7f0000001800)="$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")
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', 0x0, 0x404, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x442, 0x0)

75.806296ms ago: executing program 2 (id=3353):
r0 = getpgrp(0x0)
prlimit64(r0, 0xe, &(0x7f0000000000)={0x8, 0x100000001000089}, 0x0)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
connect$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000032680)=""/102392, 0x18ff8)
r5 = socket$netlink(0x10, 0x3, 0x7)
r6 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000002280)=@raw={'raw\x00', 0x3c1, 0x3, 0x398, 0x1d8, 0x12, 0x60a, 0x1d8, 0x202, 0x2c8, 0x2e8, 0x2e8, 0x2c8, 0x2c0, 0x4, 0x0, {[{{@ipv6={@empty, @ipv4={'\x00', '\xff\xff', @private}, [], [0x0, 0x0, 0x0, 0xff], 'veth1_to_bond\x00', 'ipvlan1\x00'}, 0x0, 0x190, 0x1d8, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "000000000000000617ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f34a214e6726401fe4b124e0f7323a587d2a1fcf07000000eca0a7b66c60c527bac2b5", 0x2, 0x3}}, @inet=@rpfilter={{0x28}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x80000001, 'syz1\x00', {0xfffffffffffffffd}}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x0, 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3f8)
writev(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}], 0x1)
sendmsg$nl_route(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x18}, 0x1, 0x0, 0x0, 0x8040045}, 0x48850)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}, 0x2020)
write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000002180)={{0x7f, 0x45, 0x4c, 0x46, 0x4, 0xc, 0x2, 0x5, 0xf, 0x2, 0x3e, 0xe7d26f7, 0x65, 0x38, 0x212, 0x0, 0x7, 0x20, 0x1, 0x7, 0x4, 0x8001}, [{0x5, 0xfffffffe, 0x1, 0x3, 0x9, 0x9, 0x5}]}, 0x58)
getpriority(0x2, r7)
dup(0xffffffffffffffff)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f0000000100)={0x9a, 0x6a, 0x3})

0s ago: executing program 8 (id=3354):
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x204001, &(0x7f0000000240), 0x1, 0xb9f, &(0x7f0000000c00)="$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")
r0 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
write$binfmt_register(r0, &(0x7f00000001c0)={0x3a, 'syz1', 0x3a, 'M', 0x3a, 0x1, 0x3a, 'usrjquota=', 0x3a, '\x00\x03!\f\xee\x998r~\b\x13\x89\xae\xf1\x06hz\xcc\xd6\xbb\xb8\x19\x90\x9e\xdb\xa2F\xfa_F(\x05\b\x13\x82\x12\xad\x0f^\xdc\xf2\xb5', 0x3a, './file2', 0x3a, [0x46]}, 0x5c)
mount(0x0, &(0x7f0000000240)='.\x00', 0x0, 0x2390024, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x3000080, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fcntl$setownex(0xffffffffffffffff, 0xf, 0x0)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x4fed0)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$udf(&(0x7f00000019c0), &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xa00010, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], 0x1, 0xc56, &(0x7f0000002680)="$eJzs3U9sHNd9B/DfGy21S7mtmdhVnDQONm2Ryorl6l9MxSrcVU2zLSDLQijmFoArkVIXpkiCpBrZSAumlx56CFAUPeREoDUKpGhgNEXQI9O6QHLxocipJ6KFjaDogS0CBCgQMJjZt+KKIhNaFEVK/nxs6Ts7897MezPrGVrQmxcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQMTvvXrh5Km0xYZD+9AYAOChuDT2pZOnt3r+AwCPrSvb/f8/AAAAAAAAAAAAAABwUKQo4qlIMXdpLU1Un7saFzsDt26Pj4xuXW0wVTUPVeXLX41Tp8+c/cKLw+d6ebEz83PqP2ifitfHrlxovjJ7c25+amFharI5PtO5Njs5teM97Lb+ZserE9C8+catyevXF5qnXzhz1+bbQx/Unzg6dH74uRPP9sqOj4yOjm0UafSXr913Q7q2G+FxOIo4ESme//aPUjsiitj9uWg83Gu/2WDVieNVJ8ZHRquOTHfaM4vlxsu9E1FENPsqtXrnaOtrEbWBh9qH7bUilsrmlw0+XnZvbK493746PdW83J5f7Cx2Zmcup25ry/40o4hzKWI5Ilbr9+5uIIqoRYpvPrmWrua3flTn4fPVwODt21HsYR93oGxncyBiuXgErtkBVo8iXosUP373WFzL95nqXvO5iNfK/G7E22W+HJHKL8bZiPe3+B7xaKpFEX9RXv/za2myuh/07isXv9z8w5nrs31le/eVD/l8uOdOsU/Ph8FN+XAc8HtTI4poV3f8tXT/P+wAAAAAAAAAAAAAAAAA8KANRhGfjBSv/vsfV+OKoxqX/uT54d8f+uX+MePP/IL9lGVfiIilYmdjcg/ngYGX0+WU9nks8UdZI4r4kzz+7+v73RgAAAAAAAAAAAAAAAAAAICPtCJ+GCleeu9YWo7+OcU7MzeaV9pXp7uzwvbm/u3Nmb6+vr7eTN1s5ZzIuZRzOedKztWcUeT69e6OWvnzRM6lnMs5V3Ku5oxDuX7OVs6JnEs5l3Ou5FzNGbVcP2cr50TOpZzLOVdyruaMAzJ3LwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADA46SIIn4aKb7x1bUUKSJaERPRzZX6frcOAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACjVUxHfiRTNP2jdWVeLiFT923Ws/O1stA6X+fFoDZf5crQu5GxXWWt9fR/az+4MpCJ+ECnqjXfuXPB8/Qe6n+58DeLtr0UM5uVP1bp5qLdx6IP6E0efPD88+plntltOWzXg+MXOzK3bzfGR0dGxvtW1fPSP960bysctHkzXiYiFN996oz09PTV/PwuHq4XyK3Bf1R+5hVTbh57WPzKn9+AtRO1ANGN/+n6Xxn7doNhT5fP//Ujx2+/9R++B333+N+KXup/uPOHjJ3+68dPAS5t3tMPnf21zvfz8L5/pWz3/n+pb91L+aWSgFtFYvDk3cDSisfDmWyc6N9s3pm5MzZw9efKLw8NfPHNy4HBE43pneqpv6YGcLgAAAAAAAAAAAAAAAICHJxXxu5Gi/YO11IyI29V4raHzw8+dePZQHKrGW901bvv1sSsXmq/M3pybn1pYmJpsjs90rs1OTu30cI1quNf4yOiedOYXGtzj9g82Xpmde3O+c+OPFrfcfqRx4erC4nz72tabYzCKiFb/muNVg8dHRqtGT3faM1XVy1sOpv/wBlIR/xkprp1tps/mdXn8/+YR/tX4/95hlzbv6AGO///MkY3xfx/rK1oeM6UifhIpfusvn4nPVu08Evecs1zubyPF8XOfzuXicFmu14buewW6IwPLsv8bKf7xp3eX7Y2HfGqj7KkPdXIfAeX1fzJSfOfPvxW/ntfd/f6Hra//kc072qP3Pzzdt+7IXe8r2HXXydf/RKR4+al34jeqNf//c9//0Xv3xrFu4Y33c+zR9f/VvnVD+bi/+aA6DwAAAAAAAAAA8AgbSEX8XaT43mgtvZjX7eTv/01u3tEe/f2vT/Stm9ztfEU7XNj1SQUAAACAA2IgFfHDSHFj8Z07Y6jvHv/dN/7zdzbGf46kTVurP+f7leq9AQ/yz//6DeXjTuy+2wAAAAAAAAAAAAAAAAAAAHCgpFTEi3k+9YlqPP/ktvOpr0SKV//7+VwuHS3L9eaBH6p+b1yanTlxYXp6thGL7avTU82xufa1qbLu05Fi7W8+nesW1fzqvfnmu3O8b8zFPh8pRv++V7Y7F3tvbvKnN8qeKst+LFL81z/cXTZPTZ3njq7Kni7L/nWk+Mo/b1326EbZM2XZb0WK73+l2St7pCzbez/qJzbKvnBtttiDqwIAAAAAAAAAAAAAAAAAAMBHzUAq4s8ixf/cXL4zlj/P/z/Q97Hy9tf65vvf5HY1z/9QNf//dsv3M/9/9V6Bpe2OCgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAj6cURbwVKeYuraWVevm5q3GxU8Tt8ZHRrasNpqrmoap8+atx6vSZs194cfhcLy92Zm5tX/9B+2S8PnblQvOV2Ztz81MLC1OTzfGZzrXZyakd72G39Tc7Xp2A5s03bk1ev77QPP3Cmbs23x76oP7E0aHzw8+deLZXdnxkdHSsr0xt4L6Pfo+0zfrDUcRfRYrnv/2j9L16RBG7PxeNh3vtNxusOnG86sT4yGjVkelOe2ax3Hi5dyKKiGZfpVbvHD2Ea7ErrYilsvllg4+X3Ruba8+3r05PNS+35xc7i53Zmcup29qyP80o4lyKWI6I1fq9uxuIIt6IFN98ci39Sz3iUO88fP7S2JdOnt6+HcUe9nEHynY2ByKWi+2v2eF9bN+joh5F/FOk+PG7x+Jf6xG16P6Kz0W8VuZ3I96O7vVO5RfjbMT7W3yPeDTVooj/K6//+bX0br28H/TuKxe/nJYiZvvK9u4rj/zz4WE64M+TRhTx/eqOv5b+zX/XAAAAAAAAAAAAAAAAAAdIEb8WKV5671iqxgffGVPcmbnRvNK+Ot0d1tcb+9cbM72+vr7eTN1s5ZzIuZRzOedKztWcUeT6OVtlNtbXJ/LnpZzLOVdyruaMQ7l+zlbOiZxLOZdzruRczRm1XD9nK+dEzqWcyzlXcq7mjAMydg8AAAAAAAAAAAAAAAAAAHi8FNU/Kb7x1bW0Xu/OLz0R3VwxH+hj72cBAAD///9X9JQ=")
mkdir(0x0, 0x0)

kernel console output (not intermixed with test programs):

:aa:aa:3f) already exists on: batadv_slave_1
[ 1439.344055][T14847] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1439.354785][T14847] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1439.374475][T14847] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1439.396604][T14847] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1439.435505][T14847] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1439.464236][T14847] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1439.576854][T14847] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1439.611688][T14847] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1440.279647][ T2971] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1440.306949][ T2971] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1440.447376][  T993] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1440.462410][  T993] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1442.715634][T15103] loop0: detected capacity change from 0 to 512
[ 1442.737059][T15103] EXT4-fs (loop0): Test dummy encryption mode enabled
[ 1442.781949][T15103] EXT4-fs error (device loop0): ext4_orphan_get:1398: inode #15: comm syz.0.2497: inode has both inline data and extents flags
[ 1442.814665][T15103] EXT4-fs error (device loop0): ext4_orphan_get:1403: comm syz.0.2497: couldn't read orphan inode 15 (err -117)
[ 1442.845436][T15103] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1443.082507][T14847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1443.302586][T15110] loop0: detected capacity change from 0 to 256
[ 1443.399341][T15110] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[ 1443.643025][ T5779] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1443.656115][ T5779] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1443.739639][T13864] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1443.772443][T13864] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1443.794409][T13864] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1443.807362][T13864] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1444.834175][T10007] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[ 1444.962019][T15113] chnl_net:caif_netlink_parms(): no params data found
[ 1445.070190][T10007] usb 1-1: config 0 interface 0 altsetting 12 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1445.096027][T10007] usb 1-1: config 0 interface 0 altsetting 12 endpoint 0x87 has invalid wMaxPacketSize 0
[ 1445.150660][T10007] usb 1-1: config 0 interface 0 has no altsetting 0
[ 1445.174200][T10007] usb 1-1: New USB device found, idVendor=06cd, idProduct=0115, bcdDevice=d9.c3
[ 1445.189912][T10007] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1445.208226][T10007] usb 1-1: Product: syz
[ 1445.212452][T10007] usb 1-1: Manufacturer: syz
[ 1445.265385][T10007] usb 1-1: SerialNumber: syz
[ 1445.285201][T10007] usb 1-1: config 0 descriptor??
[ 1445.309942][T10007] keyspan 1-1:0.0: Keyspan 2 port adapter converter detected
[ 1446.101303][T13864] Bluetooth: hci3: command tx timeout
[ 1446.134316][T10007] keyspan 1-1:0.0: found no endpoint descriptor for endpoint 7
[ 1446.143191][T10007] keyspan 1-1:0.0: found no endpoint descriptor for endpoint 81
[ 1446.154391][T10007] keyspan 1-1:0.0: found no endpoint descriptor for endpoint 1
[ 1446.162052][T10007] keyspan 1-1:0.0: found no endpoint descriptor for endpoint 2
[ 1446.196210][T15113] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1446.214151][T10007] keyspan 1-1:0.0: found no endpoint descriptor for endpoint 85
[ 1446.215193][T15113] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1446.221888][T10007] keyspan 1-1:0.0: found no endpoint descriptor for endpoint 5
[ 1446.261464][T10007] usb 1-1: Keyspan 2 port adapter converter now attached to ttyUSB0
[ 1446.291666][T15113] bridge_slave_0: entered allmulticast mode
[ 1446.303269][T10007] keyspan 1-1:0.0: found no endpoint descriptor for endpoint 83
[ 1446.311924][T15113] bridge_slave_0: entered promiscuous mode
[ 1446.339207][T15113] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1446.344420][T10007] keyspan 1-1:0.0: found no endpoint descriptor for endpoint 3
[ 1446.374809][T10007] keyspan 1-1:0.0: found no endpoint descriptor for endpoint 4
[ 1446.388576][T15113] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1446.404216][T10007] keyspan 1-1:0.0: found no endpoint descriptor for endpoint 86
[ 1446.416817][T15113] bridge_slave_1: entered allmulticast mode
[ 1446.434377][T10007] keyspan 1-1:0.0: found no endpoint descriptor for endpoint 6
[ 1446.455541][T15113] bridge_slave_1: entered promiscuous mode
[ 1446.472275][T10007] usb 1-1: Keyspan 2 port adapter converter now attached to ttyUSB1
[ 1446.510603][T10007] usb 1-1: USB disconnect, device number 12
[ 1446.574932][T10007] keyspan_2 ttyUSB0: Keyspan 2 port adapter converter now disconnected from ttyUSB0
[ 1446.632920][T10007] keyspan_2 ttyUSB1: Keyspan 2 port adapter converter now disconnected from ttyUSB1
[ 1446.673193][T10007] keyspan 1-1:0.0: device disconnected
[ 1446.680039][T15113] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1446.757159][T15113] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1446.933887][T15151] loop0: detected capacity change from 0 to 2048
[ 1446.957465][T15113] team0: Port device team_slave_0 added
[ 1447.015469][T15113] team0: Port device team_slave_1 added
[ 1447.030237][T15151] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1447.072251][T15155] loop6: detected capacity change from 0 to 512
[ 1447.177239][T15155] EXT4-fs (loop6): Test dummy encryption mode enabled
[ 1447.191385][T15113] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1447.213586][T15113] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1448.463726][T15157] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[ 1448.478705][T15157] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 3 with error 28
[ 1448.491075][T15157] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 1448.491075][T15157] 
[ 1448.500737][T15157] EXT4-fs (loop0): Total free blocks count 0
[ 1448.506824][T15157] EXT4-fs (loop0): Free/Dirty block details
[ 1448.513175][T15157] EXT4-fs (loop0): free_blocks=2415919504
[ 1448.519165][T15157] EXT4-fs (loop0): dirty_blocks=32976
[ 1448.524595][T15157] EXT4-fs (loop0): Block reservation details
[ 1448.530629][T15157] EXT4-fs (loop0): i_reserved_data_blocks=2061
[ 1448.677883][T13864] Bluetooth: hci3: command tx timeout
[ 1448.846129][T15113] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1449.056406][T15113] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1449.063568][T15113] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1449.125515][T15155] EXT4-fs error (device loop6): ext4_orphan_get:1398: inode #15: comm syz.6.2506: inode has both inline data and extents flags
[ 1449.174127][T15113] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1449.202100][   T49] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 4 with max blocks 2048 with error 28
[ 1449.203420][T15155] EXT4-fs error (device loop6): ext4_orphan_get:1403: comm syz.6.2506: couldn't read orphan inode 15 (err -117)
[ 1449.266384][T15155] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1449.499808][T15113] hsr_slave_0: entered promiscuous mode
[ 1449.530645][T15113] hsr_slave_1: entered promiscuous mode
[ 1449.578737][T15113] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1449.594402][T15113] Cannot create hsr debugfs directory
[ 1449.826343][T13861] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1450.085608][T15166] loop6: detected capacity change from 0 to 8
[ 1450.375384][T15113] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1450.724251][   T51] Bluetooth: hci3: command tx timeout
[ 1451.665772][T15113] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1451.832869][T15113] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1452.774576][T15113] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1452.795761][T13864] Bluetooth: hci3: command tx timeout
[ 1453.047093][T15113] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1453.183109][T15113] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1453.290655][T15186] loop6: detected capacity change from 0 to 1024
[ 1453.355995][T15186] EXT4-fs: Ignoring removed oldalloc option
[ 1453.362053][T15186] EXT4-fs: Ignoring removed bh option
[ 1453.468908][T15186] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1453.637439][T15186] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1453.707239][T15113] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1453.718014][T15113] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1454.255826][T13861] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1454.334469][T14847] EXT4-fs: 15 callbacks suppressed
[ 1454.334482][T14847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1455.847426][T15210] binder: 15205:15210 ioctl c018620c 200000000240 returned -22
[ 1456.192801][T15113] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1457.255024][T15113] 8021q: adding VLAN 0 to HW filter on device team0
[ 1457.277862][T13686] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1457.285095][T13686] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1457.431693][T13686] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1457.438931][T13686] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1458.327166][ T1080] hsr_slave_0: left promiscuous mode
[ 1458.333633][ T1080] hsr_slave_1: left promiscuous mode
[ 1458.401900][ T1080] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1458.402265][T15232] loop0: detected capacity change from 0 to 512
[ 1458.409909][ T1080] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1458.452741][ T1080] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1458.493831][T15232] EXT4-fs (loop0): Test dummy encryption mode enabled
[ 1458.530218][ T1080] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1458.546580][T15232] EXT4-fs error (device loop0): ext4_orphan_get:1398: inode #15: comm syz.0.2525: inode has both inline data and extents flags
[ 1458.564433][T15232] EXT4-fs error (device loop0): ext4_orphan_get:1403: comm syz.0.2525: couldn't read orphan inode 15 (err -117)
[ 1458.579263][ T1080] bridge_slave_1: left allmulticast mode
[ 1458.591524][T15232] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1458.635137][ T1080] bridge_slave_1: left promiscuous mode
[ 1458.640981][ T1080] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1458.683379][ T1080] bridge_slave_0: left allmulticast mode
[ 1458.691367][ T1080] bridge_slave_0: left promiscuous mode
[ 1458.828763][ T1080] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1459.521877][T15235] xt_hashlimit: invalid interval
[ 1460.786801][T14847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1460.881457][ T1080] veth1_macvtap: left promiscuous mode
[ 1460.888826][ T1080] veth0_macvtap: left promiscuous mode
[ 1460.946572][ T1080] veth1_vlan: left promiscuous mode
[ 1460.952675][ T1080] veth0_vlan: left promiscuous mode
[ 1461.118205][   T27] kauditd_printk_skb: 3 callbacks suppressed
[ 1461.118220][   T27] audit: type=1326 audit(1771135479.101:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15241 comm="syz.0.2527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1461.210300][   T27] audit: type=1326 audit(1771135479.101:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15241 comm="syz.0.2527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1461.270690][   T27] audit: type=1326 audit(1771135479.101:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15241 comm="syz.0.2527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1461.302765][   T27] audit: type=1326 audit(1771135479.111:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15241 comm="syz.0.2527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1461.333562][   T27] audit: type=1326 audit(1771135479.111:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15241 comm="syz.0.2527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1461.363011][   T27] audit: type=1326 audit(1771135479.111:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15241 comm="syz.0.2527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1461.394269][   T27] audit: type=1326 audit(1771135479.111:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15241 comm="syz.0.2527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1461.428548][   T27] audit: type=1326 audit(1771135479.111:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15241 comm="syz.0.2527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1461.529862][   T27] audit: type=1326 audit(1771135479.111:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15241 comm="syz.0.2527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1463.583476][T15253] loop6: detected capacity change from 0 to 1024
[ 1463.756647][T11808] hfsplus: b-tree write err: -5, ino 4
[ 1463.900734][T15256] loop6: detected capacity change from 0 to 512
[ 1463.912765][T15256] EXT4-fs (loop6): Test dummy encryption mode enabled
[ 1463.972729][T15256] EXT4-fs error (device loop6): ext4_orphan_get:1398: inode #15: comm syz.6.2534: inode has both inline data and extents flags
[ 1464.015058][T15256] EXT4-fs error (device loop6): ext4_orphan_get:1403: comm syz.6.2534: couldn't read orphan inode 15 (err -117)
[ 1464.043939][T15256] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1464.207573][T13861] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1464.464539][ T1196] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[ 1465.213655][T15265] xt_hashlimit: invalid interval
[ 1465.274182][ T1196] usb 1-1: Using ep0 maxpacket: 32
[ 1465.301895][ T1196] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1465.337484][ T1196] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1465.354255][ T1196] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1465.363444][ T1196] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1465.407165][ T1196] usb 1-1: config 0 descriptor??
[ 1465.415277][ T1196] hub 1-1:0.0: USB hub found
[ 1466.789730][ T1080] team0 (unregistering): Port device team_slave_1 removed
[ 1466.819901][ T1196] hub 1-1:0.0: 1 port detected
[ 1467.015081][ T1080] team0 (unregistering): Port device team_slave_0 removed
[ 1467.111290][T15261] loop0: detected capacity change from 0 to 1024
[ 1467.223807][T15261] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1467.255158][ T1080] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1467.546162][ T1080] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1467.568482][ T1196] hub 1-1:0.0: hub_hub_status failed (err = -71)
[ 1467.595740][ T1196] hub 1-1:0.0: config failed, can't get hub status (err -71)
[ 1467.633231][ T1196] usbhid 1-1:0.0: can't add hid device: -71
[ 1467.674678][ T1196] usbhid: probe of 1-1:0.0 failed with error -71
[ 1467.746890][ T1196] usb 1-1: USB disconnect, device number 13
[ 1469.140346][T14847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1469.309232][T15283] loop0: detected capacity change from 0 to 16
[ 1469.342307][T15283] erofs: (device loop0): mounted with root inode @ nid 36.
[ 1470.809959][T15288] xt_hashlimit: invalid interval
[ 1470.833662][ T1080] bond0 (unregistering): Released all slaves
[ 1472.202235][T15113] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1472.426865][T15113] veth0_vlan: entered promiscuous mode
[ 1472.467299][T15113] veth1_vlan: entered promiscuous mode
[ 1472.619981][T15113] veth0_macvtap: entered promiscuous mode
[ 1472.702792][T15113] veth1_macvtap: entered promiscuous mode
[ 1472.768598][T15113] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1472.838927][T15113] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1472.854223][T15113] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1472.875881][T15302] binder: BINDER_SET_CONTEXT_MGR already set
[ 1472.879292][T15113] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1472.882494][T15302] binder: 15301:15302 ioctl 4018620d 200000000040 returned -16
[ 1472.914271][T15113] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1472.935164][T15302] binder: 15301:15302 ioctl c0306201 2000000003c0 returned -14
[ 1472.935715][T15113] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1472.975636][T15113] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1473.018038][T15113] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1473.049142][T15113] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1473.083115][T15113] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1473.114669][T15113] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1473.137560][T15306] loop6: detected capacity change from 0 to 128
[ 1473.144210][T15113] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1473.165314][T15306] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1473.177376][T15113] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1473.206146][T15113] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1473.232332][T15305] loop0: detected capacity change from 0 to 4096
[ 1473.233702][T15306] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1473.253662][T15113] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1473.274852][T15113] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1473.283666][T15113] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1473.307859][T15305] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1473.345925][T15113] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1473.482836][T14847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1473.525722][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1473.533593][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1473.652389][ T1080] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1473.662336][ T1080] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1473.890908][T15315] overlayfs: overlapping lowerdir path
[ 1474.561662][T15316] loop3: detected capacity change from 0 to 512
[ 1474.734648][T15316] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1474.998927][T15326] loop6: detected capacity change from 0 to 512
[ 1475.844513][T15321] xt_hashlimit: invalid interval
[ 1476.148587][T15326] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1477.032386][T15113] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1477.229974][T13861] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1478.296635][T15340] loop3: detected capacity change from 0 to 512
[ 1478.556745][T15340] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1478.584858][T15340] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[ 1478.597605][T15340] ext4 filesystem being mounted at /1/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1478.735408][T15113] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[ 1478.899495][T15345] loop6: detected capacity change from 0 to 256
[ 1478.999957][T15345] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x46ae1815, utbl_chksum : 0xe619d30d)
[ 1479.037768][T15345] exFAT-fs (loop6): bogus allocation bitmap size(need : 2, cur : 17179869186)
[ 1479.710766][T15353] 9pnet: p9_errstr2errno: server reported unknown error aaaaaaaaaaa
[ 1480.854369][T15355] xt_hashlimit: invalid interval
[ 1481.063047][T15359] loop3: detected capacity change from 0 to 4096
[ 1482.044359][   T28] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[ 1482.117212][T15359] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1482.268675][   T28] usb 1-1: Using ep0 maxpacket: 32
[ 1482.306648][   T28] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1482.344337][   T28] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1482.375457][   T28] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[ 1482.406318][   T28] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1482.417431][T15113] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1482.435548][   T28] usb 1-1: config 0 descriptor??
[ 1484.387162][   T28] usbhid 1-1:0.0: can't add hid device: -71
[ 1484.393645][   T28] usbhid: probe of 1-1:0.0 failed with error -71
[ 1484.416775][   T28] usb 1-1: USB disconnect, device number 14
[ 1484.632636][T15377] loop0: detected capacity change from 0 to 512
[ 1484.664479][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[ 1484.670849][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[ 1484.731604][T15377] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[ 1486.004381][T15377] ext4 filesystem being mounted at /20/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1486.598519][   T27] audit: type=1800 audit(1771135504.581:66): pid=15377 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2572" name="file1" dev="loop0" ino=18 res=0 errno=0
[ 1487.273282][T14847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[ 1488.855505][T15402] loop3: detected capacity change from 0 to 8
[ 1488.988832][T15402] SQUASHFS error: Failed to read block 0x4de: -5
[ 1489.896626][T15402] SQUASHFS error: Failed to read block 0x4de: -5
[ 1489.925967][   T27] audit: type=1800 audit(1771135507.881:67): pid=15402 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2570" name="file1" dev="loop3" ino=5 res=0 errno=0
[ 1490.250153][T15415] loop3: detected capacity change from 0 to 1024
[ 1491.954735][ T2971] hfsplus: b-tree write err: -5, ino 4
[ 1492.295882][T15426] loop3: detected capacity change from 0 to 128
[ 1494.774120][T10007] usb 4-1: new full-speed USB device number 20 using dummy_hcd
[ 1496.158256][T10007] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1496.166925][T10007] usb 4-1: not running at top speed; connect to a high speed hub
[ 1496.209097][T10007] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1496.231438][T10007] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1496.259681][T10007] usb 4-1: string descriptor 0 read error: -22
[ 1496.271923][T10007] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1496.289040][T10007] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1496.337965][T10007] usb 4-1: 0:2 : does not exist
[ 1496.496342][T10007] usb 4-1: 5:0: failed to get current value for ch 0 (-22)
[ 1496.525552][T10007] usb 4-1: 5:0: cannot get min/max values for control 2 (id 5)
[ 1496.560711][T10007] usb 4-1: 5:0: cannot get min/max values for control 3 (id 5)
[ 1496.588899][T10007] usb 4-1: 5:0: failed to get current value for ch 1 (-22)
[ 1496.730624][T10007] usb 4-1: 5:0: cannot get min/max values for control 3 (id 5)
[ 1496.787774][T10007] usb 4-1: 5:0: cannot get min/max values for control 2 (id 5)
[ 1496.836310][T10007] usb 4-1: USB disconnect, device number 20
[ 1497.187917][T15459] loop0: detected capacity change from 0 to 128
[ 1497.196329][T15459] EXT4-fs (loop0): Test dummy encryption mode enabled
[ 1500.070675][T15459] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1500.183947][T15459] ext4 filesystem being mounted at /26/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1500.312104][T14847] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1505.513718][T15508] loop6: detected capacity change from 0 to 512
[ 1505.552092][T15508] EXT4-fs error (device loop6): ext4_get_branch:178: inode #13: block 2: comm syz.6.2613: invalid block
[ 1505.614194][ T1196] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[ 1505.635688][T15508] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #13: comm syz.6.2613: invalid indirect mapped block 10 (level 1)
[ 1505.692853][T15508] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #13: comm syz.6.2613: invalid indirect mapped block 8 (level 1)
[ 1505.735309][T15508] EXT4-fs (loop6): 1 truncate cleaned up
[ 1505.753392][T15508] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1505.795975][ T1196] usb 4-1: Using ep0 maxpacket: 16
[ 1505.822702][ T1196] usb 4-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[ 1505.844956][ T1196] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1505.865586][T15508] EXT4-fs error (device loop6): ext4_validate_block_bitmap:421: comm syz.6.2613: bg 0: bad block bitmap checksum
[ 1505.884182][ T1196] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1505.906309][ T1196] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1505.923095][ T1196] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1505.935099][T15508] EXT4-fs error (device loop6): ext4_lookup:1858: inode #12: comm syz.6.2613: inode has both inline data and extents flags
[ 1505.954843][ T1196] usb 4-1: Product: syz
[ 1505.959060][ T1196] usb 4-1: Manufacturer: syz
[ 1505.963676][ T1196] usb 4-1: SerialNumber: syz
[ 1505.987939][T13861] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1506.496252][ T1196] usb 4-1: 0:2 : does not exist
[ 1507.125585][T15521] loop6: detected capacity change from 0 to 2048
[ 1507.134165][    T8] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[ 1507.206065][T15521] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1507.481637][    T8] usb 1-1: config 220 has an invalid interface number: 76 but max is 2
[ 1507.629761][    T8] usb 1-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[ 1508.000472][T13511] usb 4-1: USB disconnect, device number 21
[ 1509.354999][T15529] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[ 1509.369827][T15529] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 3 with error 28
[ 1509.382019][T15529] EXT4-fs (loop6): This should not happen!! Data will be lost
[ 1509.382019][T15529] 
[ 1509.391667][T15529] EXT4-fs (loop6): Total free blocks count 0
[ 1509.397647][T15529] EXT4-fs (loop6): Free/Dirty block details
[ 1509.403521][T15529] EXT4-fs (loop6): free_blocks=2415919504
[ 1509.409263][T15529] EXT4-fs (loop6): dirty_blocks=38720
[ 1509.414659][T15529] EXT4-fs (loop6): Block reservation details
[ 1509.420634][T15529] EXT4-fs (loop6): i_reserved_data_blocks=2420
[ 1509.437262][    T8] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[ 1509.529415][    T8] usb 1-1: config 220 has no interface number 2
[ 1509.545071][    T8] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[ 1509.559594][    T8] usb 1-1: config 220 interface 0 has no altsetting 0
[ 1509.569535][    T8] usb 1-1: config 220 interface 76 has no altsetting 0
[ 1509.577880][    T8] usb 1-1: config 220 interface 1 has no altsetting 0
[ 1509.591420][    T8] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1509.603185][    T8] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1509.624631][    T8] usb 1-1: Product: syz
[ 1509.631389][    T8] usb 1-1: Manufacturer: syz
[ 1509.641531][    T8] usb 1-1: SerialNumber: syz
[ 1512.040277][   T11] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 4 with max blocks 2048 with error 28
[ 1512.101947][    T8] usb 1-1: selecting invalid altsetting 0
[ 1512.219290][    T8] usb 1-1: Found UVC 7.01 device syz (8086:0b07)
[ 1512.231444][   T11] EXT4-fs: 15 callbacks suppressed
[ 1512.231458][   T11] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 4104 with max blocks 2048 with error 28
[ 1512.244269][    T8] usb 1-1: No valid video chain found.
[ 1513.537205][   T11] EXT4-fs (loop6): This should not happen!! Data will be lost
[ 1513.537205][   T11] 
[ 1513.564101][   T11] EXT4-fs (loop6): Total free blocks count 0
[ 1513.570514][   T11] EXT4-fs (loop6): Free/Dirty block details
[ 1513.579993][    T8] usb 1-1: selecting invalid altsetting 0
[ 1513.595164][   T11] EXT4-fs (loop6): free_blocks=2415919504
[ 1513.600928][   T11] EXT4-fs (loop6): dirty_blocks=34640
[ 1513.604301][    T8] usbtest: probe of 1-1:220.1 failed with error -22
[ 1513.634604][   T11] EXT4-fs (loop6): Block reservation details
[ 1513.640652][   T11] EXT4-fs (loop6): i_reserved_data_blocks=2165
[ 1513.647319][    T8] usb 1-1: USB disconnect, device number 15
[ 1516.384206][   T28] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[ 1517.344323][   T28] usb 4-1: Using ep0 maxpacket: 8
[ 1517.391821][   T28] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[ 1517.414135][   T28] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1517.434157][   T28] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1517.443867][   T28] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[ 1517.474210][   T28] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[ 1517.500380][   T28] usb 4-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[ 1517.524143][   T28] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1517.557067][   T28] usb 4-1: config 0 descriptor??
[ 1517.619313][T13864] Bluetooth: hci0: urb ffff88805fa39b00 submission failed (90)
[ 1517.775515][   T28] usb 4-1: USB disconnect, device number 22
[ 1518.031903][T15566] loop0: detected capacity change from 0 to 512
[ 1518.146250][T15566] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1518.234807][T13861] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1518.354369][T14847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1518.383237][T15571] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1519.872341][T15575] overlay: ./file1 is not a directory
[ 1522.020926][T15596] x_tables: unsorted underflow at hook 3
[ 1522.068803][T15596] input: syz0 as /devices/virtual/input/input47
[ 1522.453303][T15601] loop0: detected capacity change from 0 to 2048
[ 1522.460437][T15601] UDF-fs: bad mount option "0x0000000000000007" or missing value
[ 1522.864347][T15595] loop0: detected capacity change from 0 to 128
[ 1526.422852][T13864] Bluetooth: hci3: command tx timeout
[ 1526.434397][T15615] xt_hashlimit: invalid interval
[ 1527.705081][T15634] netlink: 104 bytes leftover after parsing attributes in process `syz.3.2645'.
[ 1527.942392][T15636] loop3: detected capacity change from 0 to 2048
[ 1527.995883][T15636] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found!
[ 1528.022348][T15636] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1529.494678][T15636] loop3: detected capacity change from 2048 to 0
[ 1529.514507][    C0] I/O error, dev loop3, sector 1408 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1529.575587][T15113] syz-executor: attempt to access beyond end of device
[ 1529.575587][T15113] loop3: rw=0, sector=1408, nr_sectors = 1 limit=0
[ 1529.660163][T15113] syz-executor: attempt to access beyond end of device
[ 1529.660163][T15113] loop3: rw=0, sector=1408, nr_sectors = 1 limit=0
[ 1531.299324][T15490] syz.3.2599: attempt to access beyond end of device
[ 1531.299324][T15490] loop3: rw=2049, sector=128, nr_sectors = 1 limit=0
[ 1531.358899][T15490] Buffer I/O error on dev loop3, logical block 128, lost sync page write
[ 1532.408377][   T11] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1532.581514][T15663] loop6: detected capacity change from 0 to 2048
[ 1532.667906][   T11] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1532.725177][T15663] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1535.880628][   T11] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1537.492313][   T11] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1538.283101][   T51] Bluetooth: hci2: command 0x0406 tx timeout
[ 1538.486108][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1538.521253][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1538.543468][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1538.585472][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1538.598409][   T51] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1538.606796][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1539.720676][T15703] loop6: detected capacity change from 0 to 512
[ 1539.796418][T15703] EXT4-fs (loop6): orphan cleanup on readonly fs
[ 1539.967768][T15703] EXT4-fs error (device loop6): ext4_orphan_get:1424: comm syz.6.2662: bad orphan inode 13
[ 1539.981957][T15708] loop0: detected capacity change from 0 to 8
[ 1540.036074][T15703] ext4_test_bit(bit=12, block=18) = 1
[ 1540.041511][T15703] is_bad_inode(inode)=0
[ 1540.124335][T15703] NEXT_ORPHAN(inode)=2130706432
[ 1540.129248][T15703] max_ino=32
[ 1540.148015][T15684] chnl_net:caif_netlink_parms(): no params data found
[ 1540.157745][T15703] i_nlink=1
[ 1540.162275][T15703] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1540.326266][T13861] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1540.554530][T15712] loop0: detected capacity change from 0 to 8192
[ 1541.312065][T13864] Bluetooth: hci0: command tx timeout
[ 1541.318989][   T27] audit: type=1800 audit(1771135559.291:68): pid=15712 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2664" name="file2" dev="loop0" ino=1048643 res=0 errno=0
[ 1541.347325][T15712] syz.0.2664: attempt to access beyond end of device
[ 1541.347325][T15712] loop0: rw=0, sector=57847, nr_sectors = 1 limit=8192
[ 1541.628883][T15684] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1541.639718][T15684] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1541.652911][T15684] bridge_slave_0: entered allmulticast mode
[ 1541.682898][T15684] bridge_slave_0: entered promiscuous mode
[ 1541.897995][T15684] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1541.958708][T15684] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1541.974514][T15684] bridge_slave_1: entered allmulticast mode
[ 1541.981809][T15684] bridge_slave_1: entered promiscuous mode
[ 1542.055541][T15724] loop0: detected capacity change from 0 to 2048
[ 1542.145196][T15724] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1542.404653][T15684] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1542.519247][T15684] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1543.354291][T13864] Bluetooth: hci0: command tx timeout
[ 1544.249961][T15684] team0: Port device team_slave_0 added
[ 1544.259258][T15684] team0: Port device team_slave_1 added
[ 1544.609668][T15684] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1544.644271][T15684] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1545.934745][T13864] Bluetooth: hci0: command tx timeout
[ 1546.014264][T15684] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1546.083591][T15684] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1546.090679][T15684] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1546.117361][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[ 1546.117413][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[ 1546.214116][T15684] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1548.738377][T13864] Bluetooth: hci0: command tx timeout
[ 1548.994192][   T11] hsr_slave_0: left promiscuous mode
[ 1549.006031][   T11] hsr_slave_1: left promiscuous mode
[ 1549.012458][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1549.026381][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1549.055034][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1549.062504][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1549.105323][   T11] bridge_slave_1: left allmulticast mode
[ 1549.111027][   T11] bridge_slave_1: left promiscuous mode
[ 1549.121448][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1549.166088][   T11] bridge_slave_0: left allmulticast mode
[ 1549.173127][   T11] bridge_slave_0: left promiscuous mode
[ 1549.185302][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1549.285003][   T11] veth1_macvtap: left promiscuous mode
[ 1549.290599][   T11] veth0_macvtap: left promiscuous mode
[ 1549.321012][   T11] veth1_vlan: left promiscuous mode
[ 1549.334442][   T11] veth0_vlan: left promiscuous mode
[ 1549.499105][T15764] loop6: detected capacity change from 0 to 1024
[ 1549.592276][T15764] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1549.917378][T13861] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1550.087801][T15769] loop0: detected capacity change from 0 to 512
[ 1550.295592][T15769] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1551.759023][T15769] ext4 filesystem being mounted at /44/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1551.851097][T15769] EXT4-fs error (device loop0): ext4_do_update_inode:5248: inode #2: comm syz.0.2676: corrupted inode contents
[ 1551.888307][T15769] EXT4-fs error (device loop0): ext4_dirty_inode:6124: inode #2: comm syz.0.2676: mark_inode_dirty error
[ 1551.950207][T15769] EXT4-fs error (device loop0): ext4_do_update_inode:5248: inode #2: comm syz.0.2676: corrupted inode contents
[ 1551.988843][T15769] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #2: comm syz.0.2676: mark_inode_dirty error
[ 1552.156786][T14847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1553.437881][T15789] loop6: detected capacity change from 0 to 2048
[ 1553.471633][T15789] UDF-fs: error (device loop6): udf_process_sequence: Primary Volume Descriptor not found!
[ 1553.582523][T15789] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1553.720474][T15789] loop6: detected capacity change from 2048 to 0
[ 1553.746228][T15794] syz.6.2679: attempt to access beyond end of device
[ 1553.746228][T15794] loop6: rw=0, sector=1408, nr_sectors = 1 limit=0
[ 1553.767618][    C0] I/O error, dev loop6, sector 256 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1553.902300][T13861] syz-executor: attempt to access beyond end of device
[ 1553.902300][T13861] loop6: rw=0, sector=1408, nr_sectors = 1 limit=0
[ 1553.944452][T13861] syz-executor: attempt to access beyond end of device
[ 1553.944452][T13861] loop6: rw=0, sector=1408, nr_sectors = 1 limit=0
[ 1554.145760][T13861] syz-executor: attempt to access beyond end of device
[ 1554.145760][T13861] loop6: rw=2049, sector=128, nr_sectors = 1 limit=0
[ 1554.160357][T13861] Buffer I/O error on dev loop6, logical block 128, lost sync page write
[ 1556.006951][T15801] fuse: Bad value for 'fd'
[ 1557.166228][   T11] team0 (unregistering): Port device team_slave_1 removed
[ 1557.313589][   T11] team0 (unregistering): Port device team_slave_0 removed
[ 1557.336812][T15809] loop0: detected capacity change from 0 to 512
[ 1557.393416][T15809] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1558.476754][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1558.617119][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1559.757948][T14847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1562.448459][   T11] bond0 (unregistering): Released all slaves
[ 1563.210159][T15684] hsr_slave_0: entered promiscuous mode
[ 1563.297085][T15684] hsr_slave_1: entered promiscuous mode
[ 1563.342580][T15684] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1563.373825][T15684] Cannot create hsr debugfs directory
[ 1566.821172][T15684] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1566.884364][T15684] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1566.930206][T15684] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1567.021115][T15684] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1567.131878][T15866] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2704'.
[ 1567.303894][T15684] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1567.469388][   T11] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1567.629705][T15684] 8021q: adding VLAN 0 to HW filter on device team0
[ 1567.707302][   T11] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1568.660137][ T1080] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1568.667366][ T1080] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1568.669875][   T51] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1568.722135][   T51] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1568.738940][   T51] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1568.748195][   T51] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1568.758506][   T51] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1568.766208][   T51] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1568.911896][   T11] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1568.957891][ T1080] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1568.965338][ T1080] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1569.171141][   T11] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1571.115832][   T51] Bluetooth: hci1: command tx timeout
[ 1571.612351][T15684] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1571.758644][T15885] chnl_net:caif_netlink_parms(): no params data found
[ 1572.877065][T15885] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1572.934282][T15885] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1572.941584][T15885] bridge_slave_0: entered allmulticast mode
[ 1572.950760][T15885] bridge_slave_0: entered promiscuous mode
[ 1573.080097][T15885] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1573.100623][T15885] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1573.116622][T15935] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2712'.
[ 1573.124296][T15885] bridge_slave_1: entered allmulticast mode
[ 1573.157260][T15885] bridge_slave_1: entered promiscuous mode
[ 1573.194198][T13864] Bluetooth: hci1: command tx timeout
[ 1573.362143][T15885] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1573.402579][T15885] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1573.552341][T15885] team0: Port device team_slave_0 added
[ 1573.576656][T15885] team0: Port device team_slave_1 added
[ 1573.761792][T15885] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1573.779579][T15885] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1573.826251][T15885] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1573.846994][T15684] veth0_vlan: entered promiscuous mode
[ 1573.912171][T15885] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1573.921926][T15885] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1573.978016][T15885] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1574.187383][T15684] veth1_vlan: entered promiscuous mode
[ 1574.224497][T15885] hsr_slave_0: entered promiscuous mode
[ 1574.244572][T15885] hsr_slave_1: entered promiscuous mode
[ 1574.271299][T15885] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1574.294188][T15885] Cannot create hsr debugfs directory
[ 1574.534318][   T11] hsr_slave_0: left promiscuous mode
[ 1574.556235][   T11] hsr_slave_1: left promiscuous mode
[ 1574.569039][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1574.578673][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1574.597892][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1574.745287][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1574.754620][   T11] bridge_slave_1: left promiscuous mode
[ 1574.760422][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1574.771314][   T11] bridge_slave_0: left allmulticast mode
[ 1574.777146][   T11] bridge_slave_0: left promiscuous mode
[ 1574.782916][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1575.720412][T13864] Bluetooth: hci1: command tx timeout
[ 1576.233871][   T11] veth1_macvtap: left promiscuous mode
[ 1576.242107][   T11] veth0_macvtap: left promiscuous mode
[ 1576.264573][   T11] veth1_vlan: left promiscuous mode
[ 1576.269939][   T11] veth0_vlan: left promiscuous mode
[ 1576.559264][T15965] loop0: detected capacity change from 0 to 128
[ 1577.653349][T15971] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2719'.
[ 1577.765294][T13864] Bluetooth: hci1: command tx timeout
[ 1577.886680][   T11] team0 (unregistering): Port device team_slave_1 removed
[ 1577.947407][   T11] team0 (unregistering): Port device team_slave_0 removed
[ 1578.007064][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1578.071691][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1578.550838][   T11] bond0 (unregistering): Released all slaves
[ 1580.007183][T15684] veth0_macvtap: entered promiscuous mode
[ 1580.036925][T15684] veth1_macvtap: entered promiscuous mode
[ 1580.273897][T15684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1580.392180][T15684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1580.402799][T15684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1580.441242][T15684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1580.495788][T15684] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1580.599463][T15684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1580.678724][T15684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1580.734109][T15684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1580.762862][T15684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1580.820867][T15684] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1580.908683][T15684] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1580.948737][T15684] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1580.994267][T15684] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1581.051564][T15684] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1581.976154][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1582.033558][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1582.115143][T15885] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1582.147516][T15885] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1582.258361][T15885] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1582.266192][   T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1582.297080][   T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1582.305414][T15885] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1582.324859][T16003] syzkaller0: entered promiscuous mode
[ 1582.330410][T16003] syzkaller0: entered allmulticast mode
[ 1583.121430][T16016] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2727'.
[ 1584.399066][T15885] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1584.490681][T15885] 8021q: adding VLAN 0 to HW filter on device team0
[ 1584.550009][ T2116] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1584.557215][ T2116] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1585.428182][T16035] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[ 1585.440394][T16035] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:1)
[ 1585.520441][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1585.527625][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1586.981996][T15885] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1587.497995][T15885] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1588.661243][T16072] loop0: detected capacity change from 0 to 128
[ 1590.961676][T15885] veth0_vlan: entered promiscuous mode
[ 1591.023958][T16087] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2737'.
[ 1591.047057][T15885] veth1_vlan: entered promiscuous mode
[ 1591.070657][T16084] 9pnet: p9_errstr2errno: server reported unknown error ½
[ 1591.187499][T15885] veth0_macvtap: entered promiscuous mode
[ 1591.236627][T15885] veth1_macvtap: entered promiscuous mode
[ 1591.302481][T15885] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1591.344315][T15885] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1591.374098][T15885] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1591.404107][T15885] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1591.430636][T15885] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1591.488595][T15885] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1591.535929][T15885] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1591.563882][T15885] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1592.537232][T16098] xt_hashlimit: invalid interval
[ 1593.205257][T15885] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1593.224184][T15885] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1593.244150][T15885] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1593.264070][T15885] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1593.300461][T15885] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1593.341672][T15885] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1593.405560][T15885] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1593.424140][T15885] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1593.432883][T15885] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1593.514350][T15885] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1593.734168][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1593.742039][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1593.816307][   T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1593.840001][   T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1595.610359][T16127] loop0: detected capacity change from 0 to 128
[ 1596.810785][T16137] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2748'.
[ 1598.141000][T16152] loop7: detected capacity change from 0 to 512
[ 1598.348679][T16152] EXT4-fs error (device loop7): ext4_free_branches:1030: inode #13: comm syz.7.2751: invalid indirect mapped block 10 (level 1)
[ 1598.615836][T16152] EXT4-fs error (device loop7): ext4_free_branches:1030: inode #13: comm syz.7.2751: invalid indirect mapped block 8 (level 1)
[ 1599.133907][T16152] EXT4-fs (loop7): 1 truncate cleaned up
[ 1599.145332][T16152] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1600.606463][T16152] EXT4-fs error (device loop7): ext4_validate_block_bitmap:421: comm syz.7.2751: bg 0: bad block bitmap checksum
[ 1601.892610][T15684] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1603.215951][T16192] netlink: 16 bytes leftover after parsing attributes in process `syz.7.2759'.
[ 1606.629621][T13748] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[ 1606.831576][T13748] usb 1-1: config 0 has no interfaces?
[ 1606.838692][T13748] usb 1-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b
[ 1606.883033][T13748] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1606.923171][T13748] usb 1-1: config 0 descriptor??
[ 1607.239986][   T28] usb 1-1: USB disconnect, device number 16
[ 1607.531379][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[ 1607.538372][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[ 1609.516047][T16259] netlink: 16 bytes leftover after parsing attributes in process `syz.8.2769'.
[ 1614.012628][T16284] loop0: detected capacity change from 0 to 8
[ 1614.425581][T16293] binder: BINDER_SET_CONTEXT_MGR already set
[ 1614.464935][T16293] binder: 16291:16293 ioctl 4018620d 200000004a80 returned -16
[ 1614.561281][T16288] loop7: detected capacity change from 0 to 8192
[ 1614.656170][T16288] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1616.514354][T16304] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1050)
[ 1616.535899][T16304] FAT-fs (loop7): Filesystem has been set read-only
[ 1616.614501][T16304] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1050)
[ 1617.916877][T16321] loop8: detected capacity change from 0 to 128
[ 1617.950850][T16321] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256
[ 1619.165128][   T27] audit: type=1800 audit(1771135637.061:69): pid=16324 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.2776" name="file1" dev="loop8" ino=94 res=0 errno=0
[ 1619.667968][   T27] audit: type=1326 audit(1771135637.651:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16335 comm="syz.0.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1619.822632][   T27] audit: type=1326 audit(1771135637.651:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16335 comm="syz.0.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1619.877414][   T27] audit: type=1326 audit(1771135637.691:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16335 comm="syz.0.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1619.929762][T16341] netlink: 'syz.0.2786': attribute type 17 has an invalid length.
[ 1619.938094][   T27] audit: type=1326 audit(1771135637.691:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16335 comm="syz.0.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1619.968447][T16341] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1619.989792][   T27] audit: type=1326 audit(1771135637.711:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16335 comm="syz.0.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1620.021445][   T27] audit: type=1326 audit(1771135637.711:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16335 comm="syz.0.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1620.084285][   T27] audit: type=1326 audit(1771135637.711:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16335 comm="syz.0.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1620.108527][   T27] audit: type=1326 audit(1771135637.711:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16335 comm="syz.0.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1620.148593][   T27] audit: type=1326 audit(1771135637.711:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16335 comm="syz.0.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1620.174563][   T28] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[ 1620.243493][T16347] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2787'.
[ 1620.326723][T15684] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1050)
[ 1620.381444][   T28] usb 9-1: New USB device found, idVendor=2c42, idProduct=1602, bcdDevice=da.64
[ 1620.417815][   T28] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1620.447410][   T28] usb 9-1: Product: syz
[ 1620.451637][   T28] usb 9-1: Manufacturer: syz
[ 1620.471382][   T28] usb 9-1: SerialNumber: syz
[ 1620.491572][   T28] usb 9-1: config 0 descriptor??
[ 1620.518054][   T28] hub 9-1:0.0: bad descriptor, ignoring hub
[ 1620.534338][   T28] hub: probe of 9-1:0.0 failed with error -5
[ 1620.565080][   T28] f81232 9-1:0.0: f81534a converter detected
[ 1620.723757][   T28] f81534a ttyUSB0: f81232_set_register failed status: -71
[ 1620.746970][T16362] loop0: detected capacity change from 0 to 2048
[ 1620.751253][   T28] f81534a: probe of ttyUSB0 failed with error -5
[ 1620.819912][T16362] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1620.874305][T13864] Bluetooth: hci1: command tx timeout
[ 1622.904587][T16368] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[ 1622.957709][T16372] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 3 with error 28
[ 1622.969947][T16372] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 1622.969947][T16372] 
[ 1622.979699][T16372] EXT4-fs (loop0): Total free blocks count 0
[ 1622.985698][T16372] EXT4-fs (loop0): Free/Dirty block details
[ 1622.991575][T16372] EXT4-fs (loop0): free_blocks=2415919504
[ 1622.997864][T16372] EXT4-fs (loop0): dirty_blocks=38736
[ 1623.003228][T16372] EXT4-fs (loop0): Block reservation details
[ 1623.009224][T16372] EXT4-fs (loop0): i_reserved_data_blocks=2421
[ 1623.104139][   T28] usb 9-1: reset high-speed USB device number 2 using dummy_hcd
[ 1624.048726][T16383] loop8: detected capacity change from 0 to 128
[ 1624.096253][T16383] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256
[ 1624.181892][T16384] UDF-fs: error (device loop8): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[ 1624.360560][T16388] usb usb1: usbfs: interface 0 claimed by hub while 'syz.7.2796' sets config #1
[ 1625.496186][T16395] netlink: 16 bytes leftover after parsing attributes in process `syz.7.2798'.
[ 1625.545419][   T28] usb 9-1: USB disconnect, device number 2
[ 1625.552523][   T28] f81232 9-1:0.0: device disconnected
[ 1627.394159][T13864] Bluetooth: hci4: unexpected event for opcode 0x0c5a
[ 1627.429232][T16412] loop7: detected capacity change from 0 to 2048
[ 1627.590545][T16412] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1629.667698][T16427] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[ 1629.682495][T16427] EXT4-fs (loop7): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 3 with error 28
[ 1629.694675][T16427] EXT4-fs (loop7): This should not happen!! Data will be lost
[ 1629.694675][T16427] 
[ 1629.704312][T16427] EXT4-fs (loop7): Total free blocks count 0
[ 1629.710271][T16427] EXT4-fs (loop7): Free/Dirty block details
[ 1629.716183][T16427] EXT4-fs (loop7): free_blocks=2415919504
[ 1629.721886][T16427] EXT4-fs (loop7): dirty_blocks=38720
[ 1629.727273][T16427] EXT4-fs (loop7): Block reservation details
[ 1629.733234][T16427] EXT4-fs (loop7): i_reserved_data_blocks=2420
[ 1629.893178][ T2971] EXT4-fs (loop7): Delayed block allocation failed for inode 18 at logical offset 4 with max blocks 2048 with error 28
[ 1631.168805][T16440] loop8: detected capacity change from 0 to 1024
[ 1631.517423][T14847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1632.098854][T16457] loop0: detected capacity change from 0 to 2048
[ 1632.175993][T16457] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[ 1632.239498][T16457] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1632.564464][ T2116] hfsplus: b-tree write err: -5, ino 8
[ 1632.892935][T16471] loop0: detected capacity change from 0 to 2048
[ 1633.029975][T16471] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1635.188064][T16486] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[ 1635.202929][T16486] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 3 with error 28
[ 1635.215133][T16486] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 1635.215133][T16486] 
[ 1635.224797][T16486] EXT4-fs (loop0): Total free blocks count 0
[ 1635.230763][T16486] EXT4-fs (loop0): Free/Dirty block details
[ 1635.236676][T16486] EXT4-fs (loop0): free_blocks=2415919504
[ 1635.242378][T16486] EXT4-fs (loop0): dirty_blocks=38736
[ 1635.247757][T16486] EXT4-fs (loop0): Block reservation details
[ 1635.253713][T16486] EXT4-fs (loop0): i_reserved_data_blocks=2421
[ 1635.390871][   T12] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 4 with max blocks 2048 with error 28
[ 1637.962726][T16517] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2821'.
[ 1639.257948][T16526] loop8: detected capacity change from 0 to 2048
[ 1639.433084][T16526] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1641.075402][T15885] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[ 1641.191547][T16531] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 3 with error 28
[ 1641.203808][T16531] EXT4-fs (loop8): This should not happen!! Data will be lost
[ 1641.203808][T16531] 
[ 1641.213493][T16531] EXT4-fs (loop8): Total free blocks count 0
[ 1641.219496][T16531] EXT4-fs (loop8): Free/Dirty block details
[ 1641.225683][T16531] EXT4-fs (loop8): free_blocks=2415919504
[ 1641.231387][T16531] EXT4-fs (loop8): dirty_blocks=38736
[ 1641.236769][T16531] EXT4-fs (loop8): Block reservation details
[ 1641.242724][T16531] EXT4-fs (loop8): i_reserved_data_blocks=2421
[ 1642.789544][T15684] EXT4-fs: 15 callbacks suppressed
[ 1642.789563][T15684] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1643.060409][T16560] Bluetooth: MGMT ver 1.22
[ 1645.643106][T14847] EXT4-fs: 15 callbacks suppressed
[ 1645.643121][T14847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1647.705532][   T51] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1647.724584][   T51] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1647.739154][T15885] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1647.777405][   T51] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1647.787225][   T51] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1647.813421][   T51] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1647.824339][   T51] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1648.405384][T16593] chnl_net:caif_netlink_parms(): no params data found
[ 1648.568864][T16610] loop8: detected capacity change from 0 to 512
[ 1648.746302][T16610] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #13: comm syz.8.2831: invalid indirect mapped block 10 (level 1)
[ 1648.811788][T16610] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #13: comm syz.8.2831: invalid indirect mapped block 8 (level 1)
[ 1648.850207][T16610] EXT4-fs (loop8): 1 truncate cleaned up
[ 1650.280716][T16610] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1650.293817][T13864] Bluetooth: hci3: command tx timeout
[ 1650.410748][T16593] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1650.420217][T16593] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1650.427728][T16593] bridge_slave_0: entered allmulticast mode
[ 1650.436447][T16593] bridge_slave_0: entered promiscuous mode
[ 1650.454598][T16593] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1650.461875][T16593] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1650.469199][T16593] bridge_slave_1: entered allmulticast mode
[ 1650.477035][T16593] bridge_slave_1: entered promiscuous mode
[ 1650.513620][T16593] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1650.581172][T15885] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1650.628254][   T49] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1650.746967][T16593] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1650.773382][T16631] binder: Bad value for 'max'
[ 1650.793908][T16633] loop8: detected capacity change from 0 to 1024
[ 1650.803266][T16629] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1650.812349][T16633] EXT4-fs: Ignoring removed orlov option
[ 1650.877303][T16633] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1650.921830][   T49] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1651.025767][   T49] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1651.051036][T16593] team0: Port device team_slave_0 added
[ 1651.086880][T15885] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1651.134722][   T49] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1651.195869][T16593] team0: Port device team_slave_1 added
[ 1651.463735][T16645] x_tables: ip_tables: REDIRECT target: used from hooks POSTROUTING, but only usable from PREROUTING/OUTPUT
[ 1652.552382][T13864] Bluetooth: hci3: command tx timeout
[ 1652.735840][T16593] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1652.742836][T16593] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1652.840620][T16593] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1652.901310][T16593] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1652.942263][T16593] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1653.012992][T16593] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1654.157462][T16593] hsr_slave_0: entered promiscuous mode
[ 1654.184643][T16593] hsr_slave_1: entered promiscuous mode
[ 1654.645020][T13864] Bluetooth: hci3: command tx timeout
[ 1655.949865][T16593] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1655.979839][T16593] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1656.075916][T16593] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1656.116660][T16593] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1657.174592][T13864] Bluetooth: hci3: command tx timeout
[ 1657.729908][T16593] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1659.112542][T16593] 8021q: adding VLAN 0 to HW filter on device team0
[ 1659.187480][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1659.194679][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1659.416907][T16728] loop8: detected capacity change from 0 to 128
[ 1659.482620][T11808] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1659.489802][T11808] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1659.512948][T15632] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1660.143979][   T49] hsr_slave_0: left promiscuous mode
[ 1660.339291][   T49] hsr_slave_1: left promiscuous mode
[ 1660.441955][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1660.531682][   T49] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1660.649084][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1660.742847][   T49] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1661.028364][   T49] bridge_slave_1: left allmulticast mode
[ 1661.056993][T16731] loop8: detected capacity change from 0 to 1024
[ 1661.073705][   T49] bridge_slave_1: left promiscuous mode
[ 1661.080770][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1661.136633][   T49] bridge_slave_0: left allmulticast mode
[ 1661.182825][   T49] bridge_slave_0: left promiscuous mode
[ 1661.235452][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1661.831771][   T49] veth1_macvtap: left promiscuous mode
[ 1661.863265][   T49] veth0_macvtap: left promiscuous mode
[ 1661.905448][   T49] veth1_vlan: left promiscuous mode
[ 1661.911148][   T49] veth0_vlan: left promiscuous mode
[ 1661.973348][T16739] loop8: detected capacity change from 0 to 1024
[ 1663.416794][T16751] loop0: detected capacity change from 0 to 512
[ 1663.533116][T16751] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1663.604311][T16751] ext4 filesystem being mounted at /102/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1663.755577][T16751] EXT4-fs error (device loop0): ext4_empty_dir:3136: inode #12: comm syz.0.2860: invalid size
[ 1663.856371][T14847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1664.068010][T16760] loop0: detected capacity change from 0 to 1024
[ 1664.086934][T16760] EXT4-fs: Ignoring removed oldalloc option
[ 1664.121847][T16760] ext4: Unknown parameter 'noacl'
[ 1667.176682][   T49] team0 (unregistering): Port device team_slave_1 removed
[ 1667.262399][   T49] team0 (unregistering): Port device team_slave_0 removed
[ 1667.398582][   T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1667.499834][   T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1669.320576][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[ 1669.328572][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[ 1669.699259][   T49] bond0 (unregistering): Released all slaves
[ 1671.272543][T16593] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1672.208840][T16810] loop0: detected capacity change from 0 to 2048
[ 1672.223665][T16593] veth0_vlan: entered promiscuous mode
[ 1672.275406][T16593] veth1_vlan: entered promiscuous mode
[ 1672.303555][T16810] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1672.362772][T16593] veth0_macvtap: entered promiscuous mode
[ 1672.375389][T16593] veth1_macvtap: entered promiscuous mode
[ 1672.397161][T16593] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1672.410075][T16593] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1672.420143][T16593] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1672.441320][T16593] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1672.464274][T16593] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1674.568930][T16822] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[ 1674.583811][T16822] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 3 with error 28
[ 1674.596028][T16822] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 1674.596028][T16822] 
[ 1674.605782][T16822] EXT4-fs (loop0): Total free blocks count 0
[ 1674.612312][T16822] EXT4-fs (loop0): Free/Dirty block details
[ 1674.618330][T16822] EXT4-fs (loop0): free_blocks=2415919504
[ 1674.624149][T16822] EXT4-fs (loop0): dirty_blocks=38736
[ 1674.629555][T16822] EXT4-fs (loop0): Block reservation details
[ 1674.635578][T16822] EXT4-fs (loop0): i_reserved_data_blocks=2421
[ 1674.705265][T16593] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1674.753968][T16593] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1674.797514][T16593] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1674.825828][T16593] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1674.858402][T16593] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1674.874677][T16593] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1674.894387][T16593] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1674.922261][T16593] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1674.973447][   T11] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 4 with max blocks 2048 with error 28
[ 1675.835875][T16593] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1675.863723][T16593] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1675.904184][T16593] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1675.938730][T16593] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1675.994145][T16593] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1676.361639][ T1080] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1676.378636][T16844] loop8: detected capacity change from 0 to 128
[ 1676.399137][ T1080] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1676.462106][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1676.485420][T15632] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1676.494071][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1678.438240][T16847] loop8: detected capacity change from 0 to 1024
[ 1679.347866][T16853] loop9: detected capacity change from 0 to 2048
[ 1679.432747][T16853] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1682.544689][T16885] loop8: detected capacity change from 0 to 1024
[ 1683.978844][T14847] EXT4-fs: 15 callbacks suppressed
[ 1683.978861][T14847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1685.894886][T16926] loop0: detected capacity change from 0 to 1024
[ 1686.063380][T16933] loop8: detected capacity change from 0 to 128
[ 1688.185682][T13864] Bluetooth: Unknown BR/EDR signaling command 0x0d
[ 1688.192919][T13864] Bluetooth: Wrong link type (-22)
[ 1689.534773][T16968] loop8: detected capacity change from 0 to 1024
[ 1689.942289][T16974] xt_CHECKSUM: unsupported CHECKSUM operation 68
[ 1693.685041][T17004] loop8: detected capacity change from 0 to 512
[ 1694.631326][T17004] EXT4-fs: Ignoring removed i_version option
[ 1694.643613][T17004] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[ 1694.676876][T17004] EXT4-fs (loop8): 1 truncate cleaned up
[ 1694.748910][T17004] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1694.868895][T17004] Non-string source
[ 1694.878340][   T27] audit: type=1800 audit(1771135712.851:79): pid=17004 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.2906" name="bus" dev="loop8" ino=18 res=0 errno=0
[ 1695.965736][T15885] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1697.122668][T17033] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2904'.
[ 1699.631346][T17035] overlay: ./file1 is not a directory
[ 1706.637607][T17112] overlay: ./file1 is not a directory
[ 1707.963758][T17125] netlink: 104 bytes leftover after parsing attributes in process `syz.2.2926'.
[ 1713.450066][T17164] overlay: ./file1 is not a directory
[ 1714.792432][T17179] xt_nat: multiple ranges no longer supported
[ 1716.525124][T17206] xt_hashlimit: invalid interval
[ 1719.327109][T17221] overlayfs: failed to resolve './file0': -2
[ 1727.811180][T17276] xt_hashlimit: invalid interval
[ 1728.978089][T17282] loop0: detected capacity change from 0 to 512
[ 1728.994820][T17282] EXT4-fs: Ignoring removed nobh option
[ 1729.116489][T17282] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.2950: invalid indirect mapped block 256 (level 2)
[ 1729.140711][T17282] EXT4-fs (loop0): 2 truncates cleaned up
[ 1729.152008][T17282] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1729.368601][T17287] loop8: detected capacity change from 0 to 2048
[ 1729.485749][T17287] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1729.560967][T14847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1730.455757][T17292] overlayfs: failed to resolve './file0': -2
[ 1730.464442][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[ 1730.526572][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[ 1732.659703][   T27] audit: type=1326 audit(1771135750.641:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17320 comm="syz.9.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95399bf79 code=0x7ffc0000
[ 1732.810673][T17322] loop0: detected capacity change from 0 to 1024
[ 1733.468406][   T27] audit: type=1326 audit(1771135750.641:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17320 comm="syz.9.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95399bf79 code=0x7ffc0000
[ 1733.559107][   T27] audit: type=1326 audit(1771135750.641:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17320 comm="syz.9.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95399bf79 code=0x7ffc0000
[ 1733.620060][   T27] audit: type=1326 audit(1771135750.641:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17320 comm="syz.9.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95399bf79 code=0x7ffc0000
[ 1733.739030][   T27] audit: type=1326 audit(1771135750.641:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17320 comm="syz.9.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95399bf79 code=0x7ffc0000
[ 1733.829427][   T27] audit: type=1326 audit(1771135750.641:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17320 comm="syz.9.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=90 compat=0 ip=0x7fe95399bf79 code=0x7ffc0000
[ 1733.913566][   T27] audit: type=1326 audit(1771135750.641:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17320 comm="syz.9.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95399bf79 code=0x7ffc0000
[ 1733.984179][   T27] audit: type=1326 audit(1771135750.641:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17320 comm="syz.9.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95399bf79 code=0x7ffc0000
[ 1734.041878][   T27] audit: type=1326 audit(1771135750.641:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17320 comm="syz.9.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95399bf79 code=0x7ffc0000
[ 1734.376649][   T27] audit: type=1326 audit(1771135750.641:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17320 comm="syz.9.2954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=263 compat=0 ip=0x7fe95399bf79 code=0x7ffc0000
[ 1734.925076][T17340] overlayfs: failed to resolve './file0': -2
[ 1740.144445][T17390] netlink: 104 bytes leftover after parsing attributes in process `syz.9.2973'.
[ 1742.244440][T10007] usb 10-1: new full-speed USB device number 2 using dummy_hcd
[ 1742.464644][T10007] usb 10-1: config 4 has an invalid interface number: 121 but max is 0
[ 1742.493931][T10007] usb 10-1: config 4 has no interface number 0
[ 1742.502102][T10007] usb 10-1: config 4 interface 121 has no altsetting 0
[ 1743.940785][   T51] Bluetooth: hci1: command 0x0406 tx timeout
[ 1744.044280][T10007] usb 10-1: string descriptor 0 read error: -71
[ 1744.050877][T10007] usb 10-1: New USB device found, idVendor=6b86, idProduct=c211, bcdDevice=25.ca
[ 1744.084639][T10007] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1744.124321][T10007] usb 10-1: can't set config #4, error -71
[ 1744.133341][T10007] usb 10-1: USB disconnect, device number 2
[ 1747.159818][T17445] loop0: detected capacity change from 0 to 1024
[ 1747.202260][T17445] EXT4-fs: Ignoring removed oldalloc option
[ 1747.254365][T17445] ext4: Unknown parameter 'noacl'
[ 1751.824325][   T27] kauditd_printk_skb: 50 callbacks suppressed
[ 1751.824398][   T27] audit: type=1326 audit(1771135769.801:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17472 comm="syz.9.2985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95399bf79 code=0x7ffc0000
[ 1751.960614][   T27] audit: type=1326 audit(1771135769.801:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17472 comm="syz.9.2985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95399bf79 code=0x7ffc0000
[ 1752.013287][   T27] audit: type=1326 audit(1771135769.811:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17472 comm="syz.9.2985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95399bf79 code=0x7ffc0000
[ 1752.056583][T17482] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2988'.
[ 1752.085088][   T27] audit: type=1326 audit(1771135769.811:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17472 comm="syz.9.2985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95399bf79 code=0x7ffc0000
[ 1752.134597][   T27] audit: type=1326 audit(1771135769.811:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17472 comm="syz.9.2985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95399bf79 code=0x7ffc0000
[ 1752.208477][   T27] audit: type=1326 audit(1771135769.811:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17472 comm="syz.9.2985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=432 compat=0 ip=0x7fe95399bf79 code=0x7ffc0000
[ 1752.259296][   T27] audit: type=1326 audit(1771135769.811:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17472 comm="syz.9.2985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95399bf79 code=0x7ffc0000
[ 1753.043750][   T28] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[ 1753.100177][   T27] audit: type=1326 audit(1771135769.811:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17472 comm="syz.9.2985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95399bf79 code=0x7ffc0000
[ 1753.263226][   T27] audit: type=1326 audit(1771135769.811:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17472 comm="syz.9.2985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95399bf79 code=0x7ffc0000
[ 1753.314157][   T28] usb 1-1: Using ep0 maxpacket: 8
[ 1753.326283][   T28] usb 1-1: config 0 interface 0 altsetting 41 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1753.353146][   T27] audit: type=1326 audit(1771135769.811:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17472 comm="syz.9.2985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95399bf79 code=0x7ffc0000
[ 1753.364596][   T28] usb 1-1: config 0 interface 0 has no altsetting 0
[ 1753.404103][   T28] usb 1-1: New USB device found, idVendor=046d, idProduct=c086, bcdDevice= 0.00
[ 1753.413197][   T28] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1753.463411][   T28] usb 1-1: config 0 descriptor??
[ 1753.524931][T10007] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[ 1753.598701][T17500] netlink: 20 bytes leftover after parsing attributes in process `syz.8.2995'.
[ 1753.743638][T17505] loop8: detected capacity change from 0 to 1024
[ 1753.755754][T10007] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1753.778932][T17505] EXT4-fs: Ignoring removed oldalloc option
[ 1753.798379][T17505] ext4: Unknown parameter 'noacl'
[ 1753.804218][T10007] usb 10-1: config 1 interface 0 altsetting 77 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[ 1753.826204][T10007] usb 10-1: config 1 interface 0 has no altsetting 0
[ 1753.835220][T10007] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1753.849121][T10007] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1753.869427][T10007] usb 10-1: SerialNumber: syz
[ 1755.430015][   T28] usbhid 1-1:0.0: can't add hid device: -71
[ 1755.439392][   T28] usbhid: probe of 1-1:0.0 failed with error -71
[ 1755.448888][   T28] usb 1-1: USB disconnect, device number 17
[ 1755.641747][T17512] loop0: detected capacity change from 0 to 1024
[ 1755.660117][T10007] usb 10-1: bad CDC descriptors
[ 1755.702567][T10007] usb 10-1: USB disconnect, device number 3
[ 1755.741886][T17512] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 1755.754216][T17512] ext4 filesystem being mounted at /137/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1755.889729][   T49] EXT4-fs error (device loop0): ext4_map_blocks:718: inode #15: comm kworker/u4:3: lblock 0 mapped to illegal pblock 0 (length 1)
[ 1755.948425][   T49] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[ 1755.984117][   T49] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 1755.984117][   T49] 
[ 1756.035327][T14847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 1756.096694][T17524] fuse: Unknown parameter 'grouV_iŻ00000000000000000000'
[ 1762.381775][T17574] loop9: detected capacity change from 0 to 1024
[ 1763.704329][T17594] loop8: detected capacity change from 0 to 164
[ 1763.738104][T17594] Unable to read rock-ridge attributes
[ 1763.772354][T17594] Unable to read rock-ridge attributes
[ 1763.810011][T17594] iso9660: Corrupted directory entry in block 4 of inode 1792
[ 1765.219078][T17609] loop0: detected capacity change from 0 to 128
[ 1766.995836][T17609] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[ 1767.016135][T17609] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1769.488059][T17643] loop0: detected capacity change from 0 to 128
[ 1769.656074][T17645] loop9: detected capacity change from 0 to 4096
[ 1769.770271][T17645] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1769.806595][T17643] fuse: Unknown parameter 'grouV_iŻ00000000000000000000'
[ 1770.009308][T16593] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1772.282176][T17654] xt_hashlimit: invalid interval
[ 1772.341790][T17662] loop8: detected capacity change from 0 to 1024
[ 1772.387003][T17662] EXT4-fs: inline encryption not supported
[ 1772.474618][T17662] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1772.713218][T17662] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1772.907834][T17662] EXT4-fs error (device loop8): ext4_mb_mark_diskspace_used:4047: comm syz.8.3024: Allocating blocks 449-513 which overlap fs metadata
[ 1773.074985][T17662] EXT4-fs (loop8): Remounting filesystem read-only
[ 1773.245677][T15885] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1775.873024][T17708] loop9: detected capacity change from 0 to 512
[ 1775.958107][T17708] EXT4-fs error (device loop9): ext4_get_branch:178: inode #13: block 2: comm syz.9.3036: invalid block
[ 1775.972667][T17712] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1776.125793][T17708] EXT4-fs error (device loop9): ext4_free_branches:1030: inode #13: comm syz.9.3036: invalid indirect mapped block 10 (level 1)
[ 1776.207502][T17708] EXT4-fs error (device loop9): ext4_free_branches:1030: inode #13: comm syz.9.3036: invalid indirect mapped block 8 (level 1)
[ 1776.291282][T17708] EXT4-fs (loop9): 1 truncate cleaned up
[ 1776.307778][T17708] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1777.268729][T17167] udevd[17167]: incorrect jbd checksum on /dev/loop9
[ 1777.323966][T16593] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1777.349345][T17167] udevd[17167]: incorrect jbd checksum on /dev/loop9
[ 1777.536738][T17736] loop9: detected capacity change from 0 to 512
[ 1777.612043][T17736] EXT4-fs error (device loop9): ext4_get_branch:178: inode #13: block 1024: comm syz.9.3041: invalid block
[ 1777.655041][T17736] EXT4-fs (loop9): Remounting filesystem read-only
[ 1777.661808][T17736] EXT4-fs (loop9): 1 truncate cleaned up
[ 1777.673359][T17736] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1777.693716][T17736] EXT4-fs warning (device loop9): ext4_resize_begin:84: There are errors in the filesystem, so online resizing is not allowed
[ 1777.755378][T16593] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1779.264312][T13864] Bluetooth: hci3: command 0x0406 tx timeout
[ 1779.781662][T17759] loop0: detected capacity change from 0 to 1024
[ 1779.828072][T17759] EXT4-fs: Ignoring removed oldalloc option
[ 1779.871143][T17759] ext4: Unknown parameter 'noacl'
[ 1782.271655][T17773] loop8: detected capacity change from 0 to 128
[ 1782.329714][T17773] FAT-fs (loop8): Directory bread(block 414) failed
[ 1782.352906][T17773] FAT-fs (loop8): Directory bread(block 415) failed
[ 1782.374239][T17773] FAT-fs (loop8): Directory bread(block 416) failed
[ 1782.380914][T17773] FAT-fs (loop8): Directory bread(block 417) failed
[ 1782.402825][T17773] FAT-fs (loop8): Directory bread(block 418) failed
[ 1782.410040][T17773] FAT-fs (loop8): Directory bread(block 419) failed
[ 1782.417328][T17773] FAT-fs (loop8): Directory bread(block 420) failed
[ 1782.444143][T17773] FAT-fs (loop8): Directory bread(block 421) failed
[ 1782.613536][T17773] FAT-fs (loop8): FAT read failed (blocknr 128)
[ 1782.961102][T17775] loop0: detected capacity change from 0 to 512
[ 1783.004670][T17775] EXT4-fs: Ignoring removed oldalloc option
[ 1783.065563][T17775] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1783.131220][T17775] ext4 filesystem being mounted at /151/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1783.287986][T17775] EXT4-fs error (device loop0): ext4_lookup:1858: inode #12: comm syz.0.3048: iget: bad i_size value: 2533274857506816
[ 1783.541303][T17785] loop8: detected capacity change from 0 to 512
[ 1783.666184][T17785] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #13: comm syz.8.3050: invalid indirect mapped block 10 (level 1)
[ 1783.770503][T14847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1783.807072][T17785] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #13: comm syz.8.3050: invalid indirect mapped block 8 (level 1)
[ 1783.859451][T17785] EXT4-fs (loop8): 1 truncate cleaned up
[ 1783.870783][T17785] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1784.040248][T17169] udevd[17169]: incorrect jbd checksum on /dev/loop8
[ 1785.373688][T17167] udevd[17167]: incorrect jbd checksum on /dev/loop8
[ 1785.415708][T15885] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1789.259371][T17822] loop9: detected capacity change from 0 to 128
[ 1789.406828][T17822] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1789.534731][T17823] netlink: 'syz.2.3058': attribute type 72 has an invalid length.
[ 1789.542583][T17823] netlink: 64 bytes leftover after parsing attributes in process `syz.2.3058'.
[ 1789.626013][T17822] ext4 filesystem being mounted at /39/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1789.946869][T16593] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1792.534706][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[ 1792.541058][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[ 1792.550187][T17853] loop9: detected capacity change from 0 to 4096
[ 1792.552809][T17857] loop8: detected capacity change from 0 to 1024
[ 1792.588638][T17857] hfsplus: invalid length 32517 has been corrected to 255
[ 1792.614313][T17853] EXT4-fs (loop9): Test dummy encryption mode enabled
[ 1792.659475][   T27] kauditd_printk_skb: 15 callbacks suppressed
[ 1792.659550][   T27] audit: type=1800 audit(1771135810.641:165): pid=17857 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.3057" name="file1" dev="loop8" ino=20 res=0 errno=0
[ 1792.701961][T17853] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a856c018, mo2=0103]
[ 1793.244376][T17853] System zones: 0-5
[ 1793.270962][T17857] hfsplus: invalid length 32517 has been corrected to 255
[ 1793.317351][T17853] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1793.696252][  T993] hfsplus: b-tree write err: -5, ino 4
[ 1793.702971][  T993] hfsplus: invalid length 32517 has been corrected to 255
[ 1793.786276][T16593] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1794.029081][T17876] netlink: 'syz.8.3068': attribute type 72 has an invalid length.
[ 1794.055642][T17876] netlink: 64 bytes leftover after parsing attributes in process `syz.8.3068'.
[ 1794.102434][T17878] loop9: detected capacity change from 0 to 512
[ 1795.497221][T17878] EXT4-fs (loop9): 1 orphan inode deleted
[ 1795.503601][T17878] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1795.524171][  T993] Quota error (device loop9): do_check_range: Getting dqdh_entries 15 out of range 0-14
[ 1795.531189][T17878] ext4 filesystem being mounted at /42/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1795.552756][  T993] EXT4-fs error (device loop9): ext4_release_dquot:6985: comm kworker/u4:5: Failed to release dquot type 1
[ 1795.859793][T16593] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1805.365578][T17955] loop9: detected capacity change from 0 to 512
[ 1805.434261][T17955] EXT4-fs (loop9): Test dummy encryption mode enabled
[ 1805.441090][T17955] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[ 1805.579676][T17955] EXT4-fs error (device loop9): ext4_orphan_get:1424: comm syz.9.3083: bad orphan inode 131083
[ 1806.475319][T17955] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1806.721865][T16593] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1807.011379][T17973] loop0: detected capacity change from 0 to 1024
[ 1807.842153][T17978] syz.8.3081 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[ 1817.635791][T18064] netlink: 64 bytes leftover after parsing attributes in process `syz.0.3094'.
[ 1821.697988][T18097] netlink: 64 bytes leftover after parsing attributes in process `syz.0.3109'.
[ 1821.920497][T18100] loop0: detected capacity change from 0 to 512
[ 1822.080483][T18100] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.3110: invalid indirect mapped block 10 (level 1)
[ 1822.138109][T18100] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.3110: invalid indirect mapped block 8 (level 1)
[ 1823.477285][T18100] EXT4-fs (loop0): 1 truncate cleaned up
[ 1823.520629][T18100] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1823.630245][T18063] udevd[18063]: incorrect jbd checksum on /dev/loop0
[ 1823.652791][T18100] EXT4-fs error (device loop0): ext4_validate_block_bitmap:421: comm syz.0.3110: bg 0: bad block bitmap checksum
[ 1823.858357][T14847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1824.117764][   T27] audit: type=1326 audit(1771135842.101:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18116 comm="syz.0.3113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1824.565928][   T27] audit: type=1326 audit(1771135842.101:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18116 comm="syz.0.3113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1824.944841][T18128] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3115'.
[ 1825.143016][T18133] loop8: detected capacity change from 0 to 2048
[ 1825.182593][T18133] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1827.026514][T18141] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[ 1827.041466][T18141] EXT4-fs (loop8): Delayed block allocation failed for inode 19 at logical offset 0 with max blocks 3 with error 28
[ 1827.053653][T18141] EXT4-fs (loop8): This should not happen!! Data will be lost
[ 1827.053653][T18141] 
[ 1827.063286][T18141] EXT4-fs (loop8): Total free blocks count 0
[ 1827.069274][T18141] EXT4-fs (loop8): Free/Dirty block details
[ 1827.075166][T18141] EXT4-fs (loop8): free_blocks=2415919504
[ 1827.081317][T18141] EXT4-fs (loop8): dirty_blocks=39760
[ 1827.086722][T18141] EXT4-fs (loop8): Block reservation details
[ 1827.092680][T18141] EXT4-fs (loop8): i_reserved_data_blocks=2485
[ 1828.464576][ T2116] EXT4-fs (loop8): Delayed block allocation failed for inode 19 at logical offset 4 with max blocks 2048 with error 28
[ 1831.497380][T18165] loop0: detected capacity change from 0 to 512
[ 1831.559031][T18165] EXT4-fs error (device loop0): ext4_get_branch:178: inode #13: block 2: comm syz.0.3122: invalid block
[ 1831.608973][T18165] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.3122: invalid indirect mapped block 10 (level 1)
[ 1831.688040][T18165] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.3122: invalid indirect mapped block 8 (level 1)
[ 1831.757321][T18165] EXT4-fs (loop0): 1 truncate cleaned up
[ 1831.786385][T18165] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1831.895989][T18063] udevd[18063]: incorrect jbd checksum on /dev/loop0
[ 1831.904935][T18165] EXT4-fs error (device loop0): ext4_validate_block_bitmap:421: comm syz.0.3122: bg 0: bad block bitmap checksum
[ 1832.970171][T14847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1833.641840][T18182] loop0: detected capacity change from 0 to 2048
[ 1833.762093][T18182] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1835.562910][T18187] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[ 1835.577792][T18187] EXT4-fs (loop0): Delayed block allocation failed for inode 19 at logical offset 0 with max blocks 3 with error 28
[ 1835.590279][T18187] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 1835.590279][T18187] 
[ 1835.599944][T18187] EXT4-fs (loop0): Total free blocks count 0
[ 1835.605941][T18187] EXT4-fs (loop0): Free/Dirty block details
[ 1835.611899][T18187] EXT4-fs (loop0): free_blocks=2415919504
[ 1835.617641][T18187] EXT4-fs (loop0): dirty_blocks=39760
[ 1835.622994][T18187] EXT4-fs (loop0): Block reservation details
[ 1835.628986][T18187] EXT4-fs (loop0): i_reserved_data_blocks=2485
[ 1836.919687][T18192] xt_hashlimit: invalid interval
[ 1837.028050][T15885] EXT4-fs: 15 callbacks suppressed
[ 1837.028067][T15885] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1837.547983][T18203] loop8: detected capacity change from 0 to 2048
[ 1837.649634][T18203] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1837.661992][T18203] ext4 filesystem being mounted at /99/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1837.685674][T18203] fs-verity: sha512 using implementation "sha512-avx2"
[ 1838.968709][T15885] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1842.320935][T14847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1843.323598][T18238] loop9: detected capacity change from 0 to 1024
[ 1843.331271][T18238] EXT4-fs: Ignoring removed oldalloc option
[ 1844.605514][T18238] ext4: Unknown parameter 'noacl'
[ 1845.545357][   T27] audit: type=1326 audit(1771135863.511:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18244 comm="syz.0.3150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1845.641237][   T27] audit: type=1326 audit(1771135863.511:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18244 comm="syz.0.3150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1845.725619][   T27] audit: type=1326 audit(1771135863.531:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18244 comm="syz.0.3150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1845.794313][   T27] audit: type=1326 audit(1771135863.531:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18244 comm="syz.0.3150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1845.874421][   T27] audit: type=1326 audit(1771135863.531:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18244 comm="syz.0.3150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff30759bf79 code=0x7ffc0000
[ 1847.179029][T18258] netlink: 36 bytes leftover after parsing attributes in process `syz.8.3156'.
[ 1847.770519][T18259] loop8: detected capacity change from 0 to 512
[ 1847.783071][T18259] journal_path: Lookup failure for './file0/file0/file0'
[ 1847.790446][T18259] EXT4-fs: error: could not find journal device path
[ 1848.459707][T18063] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1848.920943][T18269] loop9: detected capacity change from 0 to 1024
[ 1848.955431][T18269] EXT4-fs (loop9): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 1848.974345][T18269] ext4 filesystem being mounted at /62/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1849.334117][ T5411] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[ 1849.524210][ T5411] usb 10-1: Using ep0 maxpacket: 8
[ 1849.564516][T18273] EXT4-fs error (device loop9): ext4_validate_block_bitmap:439: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set
[ 1849.574459][ T5411] usb 10-1: unable to get BOS descriptor or descriptor too short
[ 1849.618131][ T5411] usb 10-1: no configurations
[ 1849.622915][ T5411] usb 10-1: can't read configurations, error -22
[ 1851.684739][T10007] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[ 1851.890255][T16593] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 1851.909346][T10007] usb 1-1: Using ep0 maxpacket: 16
[ 1851.941041][T10007] usb 1-1: config 0 has an invalid interface number: 214 but max is 0
[ 1851.974212][T10007] usb 1-1: config 0 has no interface number 0
[ 1851.980696][T10007] usb 1-1: config 0 interface 214 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[ 1852.034756][T10007] usb 1-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5
[ 1852.054131][T10007] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1852.062235][T10007] usb 1-1: Product: syz
[ 1852.074218][T10007] usb 1-1: Manufacturer: syz
[ 1852.078877][T10007] usb 1-1: SerialNumber: syz
[ 1852.100333][T10007] usb 1-1: config 0 descriptor??
[ 1852.624383][T10007] usbtouchscreen: probe of 1-1:0.214 failed with error -71
[ 1852.679323][T10007] usb 1-1: USB disconnect, device number 18
[ 1854.651587][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[ 1854.664212][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[ 1854.683929][T18307] loop9: detected capacity change from 0 to 1024
[ 1854.922114][T18307] hfsplus: inconsistency in B*Tree (128,1,255,1,0)
[ 1854.933796][T18307] hfsplus: xattr search failed
[ 1854.948394][T18307] syz.9.3168: attempt to access beyond end of device
[ 1854.948394][T18307] loop9: rw=0, sector=917504, nr_sectors = 2 limit=1024
[ 1855.799265][T18307] Buffer I/O error on dev loop9, logical block 458752, async page read
[ 1855.814446][T18307] hfsplus: unable to mark blocks free: error -5
[ 1855.820742][T18307] hfsplus: can't free extent
[ 1858.610186][T18327] loop8: detected capacity change from 0 to 512
[ 1858.684279][T18327] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #13: comm syz.8.3169: invalid indirect mapped block 10 (level 1)
[ 1858.784314][T18327] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #13: comm syz.8.3169: invalid indirect mapped block 8 (level 1)
[ 1858.869576][T18327] EXT4-fs (loop8): 1 truncate cleaned up
[ 1858.889333][T18327] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1859.024695][T18327] EXT4-fs error (device loop8): ext4_validate_block_bitmap:421: comm syz.8.3169: bg 0: bad block bitmap checksum
[ 1859.263812][T15885] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1868.491328][T18373] loop0: detected capacity change from 0 to 1024
[ 1868.566579][T18373] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1868.738110][T18373] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1869.714228][T18385] loop0: detected capacity change from 1024 to 1
[ 1869.818749][T14847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1869.834770][T18389] loop8: detected capacity change from 0 to 256
[ 1869.857037][T14847] syz-executor: attempt to access beyond end of device
[ 1869.857037][T14847] loop0: rw=133121, sector=2, nr_sectors = 2 limit=1
[ 1869.884087][T18389] exFAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1869.894910][T14847] Buffer I/O error on dev loop0, logical block 1, lost sync page write
[ 1869.903183][T14847] EXT4-fs (loop0): I/O error while writing superblock
[ 1869.944253][T18389] exFAT-fs (loop8): Medium has reported failures. Some data may be lost.
[ 1869.957682][T18379] kmmpd-loop0: attempt to access beyond end of device
[ 1869.957682][T18379] loop0: rw=14337, sector=128, nr_sectors = 2 limit=1
[ 1870.004142][T18379] Buffer I/O error on dev loop0, logical block 64, lost sync page write
[ 1870.070161][T18389] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1871.691873][T18398] loop0: detected capacity change from 0 to 512
[ 1872.243918][T18398] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1872.298819][T18398] EXT4-fs error (device loop0): ext4_orphan_get:1398: inode #15: comm syz.0.3194: inode has both inline data and extents flags
[ 1872.312411][T18398] EXT4-fs error (device loop0): ext4_orphan_get:1403: comm syz.0.3194: couldn't read orphan inode 15 (err -117)
[ 1872.326075][T18398] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1872.535363][T14847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1872.762817][T18419] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3198'.
[ 1873.172576][T18421] loop8: detected capacity change from 0 to 256
[ 1873.335754][T18421] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1873.445741][T18421] FAT-fs (loop8): Filesystem has been set read-only
[ 1880.003825][T18464] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1880.028534][T18464] loop8: detected capacity change from 0 to 512
[ 1880.035371][T18464] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1880.078128][T18464] EXT4-fs (loop8): revision level too high, forcing read-only mode
[ 1880.086117][T18464] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c018, mo2=0002]
[ 1880.094328][T18464] System zones: 0-1, 15-15, 18-18, 34-34
[ 1880.100163][T18464] EXT4-fs (loop8): orphan cleanup on readonly fs
[ 1880.112523][T18464] EXT4-fs error (device loop8): ext4_orphan_get:1398: inode #16: comm syz.8.3215: inode has both inline data and extents flags
[ 1880.146490][T18464] EXT4-fs error (device loop8): ext4_orphan_get:1403: comm syz.8.3215: couldn't read orphan inode 16 (err -117)
[ 1880.159519][T18464] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1881.097261][T15885] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1881.418194][T18474] loop0: detected capacity change from 0 to 512
[ 1881.537136][T18474] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1881.604306][T18474] ext4 filesystem being mounted at /190/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1882.115742][T14847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1884.401669][T18494] loop8: detected capacity change from 0 to 2048
[ 1884.483708][T18494] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1886.747162][T18506] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1886.758460][T18506] loop9: detected capacity change from 0 to 512
[ 1886.765309][T18506] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1886.794815][T18506] EXT4-fs (loop9): revision level too high, forcing read-only mode
[ 1886.802759][T18506] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c018, mo2=0002]
[ 1886.810851][T18506] System zones: 0-1, 15-15, 18-18, 34-34
[ 1886.816693][T18506] EXT4-fs (loop9): orphan cleanup on readonly fs
[ 1886.834402][T18506] EXT4-fs error (device loop9): ext4_orphan_get:1398: inode #16: comm syz.9.3226: inode has both inline data and extents flags
[ 1886.848252][T18506] EXT4-fs error (device loop9): ext4_orphan_get:1403: comm syz.9.3226: couldn't read orphan inode 16 (err -117)
[ 1886.861566][T18506] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1887.135908][T16593] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1889.374334][T18525] xt_hashlimit: invalid interval
[ 1890.612707][T18534] loop8: detected capacity change from 0 to 2048
[ 1891.167520][T18534] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1891.378334][T18534] EXT4-fs error (device loop8): ext4_find_extent:936: inode #2: comm syz.8.3234: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[ 1891.406061][T18543] loop0: detected capacity change from 0 to 2048
[ 1891.428201][T18543] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1891.473822][T18545] loop9: detected capacity change from 0 to 2048
[ 1891.519757][T18545] UDF-fs: error (device loop9): udf_process_sequence: Primary Volume Descriptor not found!
[ 1891.711673][T18545] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1892.505327][T15885] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1894.654339][T18557] xt_hashlimit: invalid interval
[ 1895.636717][T18564] loop8: detected capacity change from 0 to 8192
[ 1895.696773][T18564] FAT-fs (loop8): Unrecognized mount option "’’’’’’’’000000000000000000000xffffffffffffffff18446744073709551615" or missing value
[ 1901.808273][T18594] loop9: detected capacity change from 0 to 128
[ 1901.871615][T18063] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1903.934329][T18605] xt_hashlimit: invalid interval
[ 1911.288923][T18640] loop9: detected capacity change from 0 to 1024
[ 1911.323692][T18640] EXT4-fs: inline encryption not supported
[ 1913.401413][T18640] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1913.517891][T18640] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1914.347289][T16593] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1914.581122][T18668] loop8: detected capacity change from 0 to 128
[ 1914.615532][T18668] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1914.637717][T18670] loop9: detected capacity change from 0 to 128
[ 1914.655305][T18668] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1914.675235][T18670] FAT-fs (loop9): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1914.721413][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[ 1914.727848][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[ 1914.789607][T18670] FAT-fs (loop9): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1915.038624][ T1080] FAT-fs (loop9): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1920.174123][ T1196] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[ 1920.378928][ T1196] usb 1-1: Using ep0 maxpacket: 32
[ 1920.419224][ T1196] usb 1-1: config 0 has an invalid interface number: 184 but max is 0
[ 1920.449667][ T1196] usb 1-1: config 0 has no interface number 0
[ 1920.476055][ T1196] usb 1-1: config 0 interface 184 has no altsetting 0
[ 1920.514793][ T1196] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1920.528894][ T1196] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1920.564288][ T1196] usb 1-1: Product: syz
[ 1920.570988][ T1196] usb 1-1: Manufacturer: syz
[ 1920.578794][ T1196] usb 1-1: SerialNumber: syz
[ 1920.597561][ T1196] usb 1-1: config 0 descriptor??
[ 1920.626525][ T1196] smsc75xx v1.0.0
[ 1920.649738][T18715] loop8: detected capacity change from 0 to 128
[ 1920.775920][T18717] loop9: detected capacity change from 0 to 256
[ 1920.790070][T18715] FAT-fs (loop8): error, invalid access to FAT (entry 0x0fff0000)
[ 1920.818872][T18715] FAT-fs (loop8): Filesystem has been set read-only
[ 1920.848047][T18717] exFAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1920.849124][T18715] FAT-fs (loop8): error, invalid access to FAT (entry 0x0fff0000)
[ 1920.895156][T18717] exFAT-fs (loop9): Medium has reported failures. Some data may be lost.
[ 1920.950901][T18717] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1921.083239][T18717] exFAT-fs (loop9): error, invalid access to FAT (entry 0xffffffff)
[ 1921.122916][T18717] exFAT-fs (loop9): Filesystem has been set read-only
[ 1922.716511][ T1196] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[ 1922.758800][ T1196] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[ 1922.954583][T18723] loop9: detected capacity change from 0 to 128
[ 1924.757176][ T1196] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000010: -71
[ 1924.803895][ T1196] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to write HW_CFG: -71
[ 1924.844432][ T1196] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[ 1924.873048][ T1196] smsc75xx: probe of 1-1:0.184 failed with error -71
[ 1924.934560][ T1196] usb 1-1: USB disconnect, device number 19
[ 1927.951343][T18753] netlink: 36 bytes leftover after parsing attributes in process `syz.8.3296'.
[ 1928.571639][T18754] loop8: detected capacity change from 0 to 512
[ 1928.585435][T18754] journal_path: Lookup failure for './file0/file0/file0'
[ 1928.592641][T18754] EXT4-fs: error: could not find journal device path
[ 1929.302582][T18647] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1932.540459][T18774] loop9: detected capacity change from 0 to 512
[ 1932.632691][T18774] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1932.664491][T18774] ext4 filesystem being mounted at /95/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1932.930181][T18783] loop0: detected capacity change from 0 to 256
[ 1933.096288][T18783] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[ 1933.330326][T13864] Bluetooth: hci4: Received unexpected HCI Event 0x00
[ 1933.391461][T18791] loop0: detected capacity change from 0 to 512
[ 1933.479850][T18791] EXT4-fs error (device loop0): ext4_get_branch:178: inode #13: block 2: comm syz.0.3305: invalid block
[ 1933.518948][T18791] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.3305: invalid indirect mapped block 10 (level 1)
[ 1933.553856][T18791] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.3305: invalid indirect mapped block 8 (level 1)
[ 1933.605510][T18791] EXT4-fs (loop0): 1 truncate cleaned up
[ 1933.612356][T18791] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1935.044977][T16593] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1935.271457][   T49] Ignoring NSS change in VHT Operating Mode Notification from 08:02:11:00:00:00 with invalid nss 2
[ 1935.295860][T14847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1935.365327][T18817] xt_hashlimit: max too large, truncated to 1048576
[ 1935.817640][T18832] loop0: detected capacity change from 0 to 256
[ 1938.592299][T18855] loop8: detected capacity change from 0 to 1024
[ 1939.182604][    C0] Unknown status report in ack skb
[ 1939.442358][T18872] loop9: detected capacity change from 0 to 512
[ 1939.482443][T18872] EXT4-fs error (device loop9): ext4_get_branch:178: inode #13: block 2: comm syz.9.3321: invalid block
[ 1939.546418][T18872] EXT4-fs error (device loop9): ext4_free_branches:1030: inode #13: comm syz.9.3321: invalid indirect mapped block 10 (level 1)
[ 1939.568207][T18876] loop8: detected capacity change from 0 to 1024
[ 1939.576266][T18872] EXT4-fs error (device loop9): ext4_free_branches:1030: inode #13: comm syz.9.3321: invalid indirect mapped block 8 (level 1)
[ 1939.593322][T18876] EXT4-fs: Ignoring removed oldalloc option
[ 1939.618661][T18876] ext4: Unknown parameter 'noacl'
[ 1939.654800][T18872] EXT4-fs (loop9): 1 truncate cleaned up
[ 1939.663368][T18872] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1940.799348][T16593] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1940.907156][T18886] loop0: detected capacity change from 0 to 16
[ 1940.915510][T18886] erofs: (device loop0): erofs_read_superblock: blkszbits 0 isn't supported
[ 1942.164165][T18645] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1944.844593][T18912] loop9: detected capacity change from 0 to 1024
[ 1944.876604][T18912] EXT4-fs: Ignoring removed oldalloc option
[ 1944.882570][T18912] ext4: Unknown parameter 'noacl'
[ 1950.233221][T18938] loop8: detected capacity change from 0 to 512
[ 1950.340154][T18938] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #13: comm syz.8.3340: invalid indirect mapped block 10 (level 1)
[ 1950.357916][T18938] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #13: comm syz.8.3340: invalid indirect mapped block 8 (level 1)
[ 1951.595413][T18938] EXT4-fs (loop8): 1 truncate cleaned up
[ 1951.640754][T18938] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1951.755298][T18647] udevd[18647]: incorrect jbd checksum on /dev/loop8
[ 1951.835501][T15885] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1951.852280][T18647] udevd[18647]: incorrect jbd checksum on /dev/loop8
[ 1952.003593][T18950] loop8: detected capacity change from 0 to 1024
[ 1952.026219][T18950] EXT4-fs: Ignoring removed oldalloc option
[ 1952.056424][T18950] ext4: Unknown parameter 'noacl'
[ 1952.955610][T18958] loop9: detected capacity change from 0 to 256
[ 1953.056235][T18958] exFAT-fs (loop9): failed to load upcase table (idx : 0x00011bf5, chksum : 0xcea91b8a, utbl_chksum : 0xe619d30d)
[ 1953.124542][T18958] exFAT-fs (loop9): bogus allocation bitmap size(need : 2, cur : 17179869186)
[ 1954.774041][    C1] ------------[ cut here ]------------
[ 1954.779578][    C1] WARNING: CPU: 1 PID: 0 at net/mac80211/tx.c:5031 __ieee80211_beacon_get+0x1233/0x1600
[ 1954.789553][    C1] Modules linked in:
[ 1954.793482][    C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted syzkaller #0
[ 1954.800622][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1954.810711][    C1] RIP: 0010:__ieee80211_beacon_get+0x1233/0x1600
[ 1954.817100][    C1] Code: 24 4c 89 e7 e8 3e 42 c2 f7 45 31 f6 4c 8b bc 24 a0 00 00 00 e9 7a fe ff ff e8 79 88 84 f7 0f 0b e9 f6 f7 ff ff e8 6d 88 84 f7 <0f> 0b e9 48 fb ff ff e8 61 88 84 f7 48 c7 c7 60 51 64 8e 4c 89 e6
[ 1954.836840][    C1] RSP: 0018:ffffc900001f0a18 EFLAGS: 00010246
[ 1954.843017][    C1] RAX: ffffffff8a028b33 RBX: ffffffff8a027936 RCX: ffff88801c263c00
[ 1954.850989][    C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[ 1954.858999][    C1] RBP: 0000000000000000 R08: ffff88801c263c00 R09: 0000000000000003
[ 1954.867008][    C1] R10: 0000000000000007 R11: 0000000000000100 R12: ffff88805f32a3c0
[ 1954.874988][    C1] R13: dffffc0000000000 R14: ffff88805f32a8b0 R15: ffff888034522824
[ 1954.882954][    C1] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[ 1954.891917][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1954.898518][    C1] CR2: 00007ff307585180 CR3: 000000000cf32000 CR4: 00000000003506e0
[ 1954.906496][    C1] Call Trace:
[ 1954.909830][    C1]  <IRQ>
[ 1954.912676][    C1]  ? __ieee80211_beacon_get+0x36/0x1600
[ 1954.918307][    C1]  ieee80211_beacon_get_tim+0xbf/0x580
[ 1954.923761][    C1]  ? ieee80211_beacon_get_template_ema_list+0x90/0x90
[ 1954.930546][    C1]  mac80211_hwsim_beacon_tx+0x3c7/0x780
[ 1954.936147][    C1]  __iterate_interfaces+0x243/0x500
[ 1954.941343][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[ 1954.947585][    C1]  ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[ 1954.954787][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[ 1954.961036][    C1]  ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
[ 1954.968074][    C1]  mac80211_hwsim_beacon+0xbb/0x1b0
[ 1954.973262][    C1]  __hrtimer_run_queues+0x52a/0xc40
[ 1954.978531][    C1]  ? hw_scan_work+0xf60/0xf60
[ 1954.983217][    C1]  ? hrtimer_interrupt+0x9c0/0x9c0
[ 1954.988340][    C1]  ? ktime_get_update_offsets_now+0x3d2/0x3f0
[ 1954.994415][    C1]  hrtimer_run_softirq+0x187/0x2b0
[ 1954.999544][    C1]  handle_softirqs+0x280/0x820
[ 1955.004327][    C1]  ? __irq_exit_rcu+0xd3/0x190
[ 1955.009078][    C1]  ? do_softirq+0x1a0/0x1a0
[ 1955.013563][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[ 1955.018761][    C1]  __irq_exit_rcu+0xd3/0x190
[ 1955.023333][    C1]  ? irq_exit_rcu+0x20/0x20
[ 1955.027836][    C1]  irq_exit_rcu+0x9/0x20
[ 1955.032059][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[ 1955.037761][    C1]  </IRQ>
[ 1955.040682][    C1]  <TASK>
[ 1955.043648][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1955.049689][    C1] RIP: 0010:pv_native_safe_halt+0xf/0x10
[ 1955.055323][    C1] Code: d7 22 02 c3 cc cc cc cc cc cc cc f3 0f 1e fa 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 66 90 0f 00 2d 83 e1 43 00 fb f4 <c3> 66 0f 1f 00 55 41 57 41 56 41 54 53 50 8b 2f eb 2e 41 89 de 80
[ 1955.075023][    C1] RSP: 0018:ffffc90000187de0 EFLAGS: 000002c2
[ 1955.081080][    C1] RAX: 01868d6cb736ab00 RBX: ffffffff8162a490 RCX: 01868d6cb736ab00
[ 1955.089052][    C1] RDX: 0000000000000001 RSI: ffffffff8acac900 RDI: ffffffff8b1c81e0
[ 1955.097022][    C1] RBP: ffffc90000187f20 R08: ffff8880b8f36b2b R09: 1ffff110171e6d65
[ 1955.104995][    C1] R10: dffffc0000000000 R11: ffffed10171e6d66 R12: 1ffff1100384c780
[ 1955.112957][    C1] R13: 1ffff92000030fc8 R14: 0000000000000001 R15: dffffc0000000000
[ 1955.120928][    C1]  ? do_idle+0x1f0/0x4e0
[ 1955.125179][    C1]  default_idle+0x13/0x20
[ 1955.129495][    C1]  default_idle_call+0x6c/0xa0
[ 1955.134261][    C1]  do_idle+0x1f0/0x4e0
[ 1955.138317][    C1]  ? idle_inject_timer_fn+0x60/0x60
[ 1955.143509][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[ 1955.148725][    C1]  ? asm_sysvec_call_function_single+0x1a/0x20
[ 1955.154894][    C1]  cpu_startup_entry+0x43/0x60
[ 1955.159643][    C1]  start_secondary+0xee/0xf0
[ 1955.164262][    C1]  secondary_startup_64_no_verify+0x179/0x17b
[ 1955.170421][    C1]  </TASK>
[ 1955.173425][    C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1955.180686][    C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted syzkaller #0
[ 1955.187693][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1955.197727][    C1] Call Trace:
[ 1955.200989][    C1]  <IRQ>
[ 1955.203813][    C1]  dump_stack_lvl+0x18c/0x250
[ 1955.208503][    C1]  ? show_regs_print_info+0x20/0x20
[ 1955.213684][    C1]  ? load_image+0x400/0x400
[ 1955.218186][    C1]  panic+0x2dc/0x730
[ 1955.222065][    C1]  ? bpf_jit_dump+0xd0/0xd0
[ 1955.226553][    C1]  ? secondary_startup_64_no_verify+0x179/0x17b
[ 1955.232776][    C1]  __warn+0x2e0/0x470
[ 1955.236738][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[ 1955.242440][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[ 1955.248138][    C1]  report_bug+0x2be/0x4f0
[ 1955.252527][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[ 1955.258230][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[ 1955.263930][    C1]  ? __ieee80211_beacon_get+0x1235/0x1600
[ 1955.269629][    C1]  handle_bug+0xcf/0x120
[ 1955.273856][    C1]  exc_invalid_op+0x1a/0x50
[ 1955.278340][    C1]  asm_exc_invalid_op+0x1a/0x20
[ 1955.283173][    C1] RIP: 0010:__ieee80211_beacon_get+0x1233/0x1600
[ 1955.289496][    C1] Code: 24 4c 89 e7 e8 3e 42 c2 f7 45 31 f6 4c 8b bc 24 a0 00 00 00 e9 7a fe ff ff e8 79 88 84 f7 0f 0b e9 f6 f7 ff ff e8 6d 88 84 f7 <0f> 0b e9 48 fb ff ff e8 61 88 84 f7 48 c7 c7 60 51 64 8e 4c 89 e6
[ 1955.309105][    C1] RSP: 0018:ffffc900001f0a18 EFLAGS: 00010246
[ 1955.315159][    C1] RAX: ffffffff8a028b33 RBX: ffffffff8a027936 RCX: ffff88801c263c00
[ 1955.323112][    C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[ 1955.331064][    C1] RBP: 0000000000000000 R08: ffff88801c263c00 R09: 0000000000000003
[ 1955.339105][    C1] R10: 0000000000000007 R11: 0000000000000100 R12: ffff88805f32a3c0
[ 1955.347057][    C1] R13: dffffc0000000000 R14: ffff88805f32a8b0 R15: ffff888034522824
[ 1955.355013][    C1]  ? __ieee80211_beacon_get+0x36/0x1600
[ 1955.360543][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[ 1955.366253][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[ 1955.371951][    C1]  ? __ieee80211_beacon_get+0x36/0x1600
[ 1955.377480][    C1]  ieee80211_beacon_get_tim+0xbf/0x580
[ 1955.382924][    C1]  ? ieee80211_beacon_get_template_ema_list+0x90/0x90
[ 1955.389676][    C1]  mac80211_hwsim_beacon_tx+0x3c7/0x780
[ 1955.395211][    C1]  __iterate_interfaces+0x243/0x500
[ 1955.400396][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[ 1955.406615][    C1]  ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[ 1955.413793][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[ 1955.420014][    C1]  ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
[ 1955.427024][    C1]  mac80211_hwsim_beacon+0xbb/0x1b0
[ 1955.432202][    C1]  __hrtimer_run_queues+0x52a/0xc40
[ 1955.437389][    C1]  ? hw_scan_work+0xf60/0xf60
[ 1955.442048][    C1]  ? hrtimer_interrupt+0x9c0/0x9c0
[ 1955.447140][    C1]  ? ktime_get_update_offsets_now+0x3d2/0x3f0
[ 1955.453190][    C1]  hrtimer_run_softirq+0x187/0x2b0
[ 1955.458284][    C1]  handle_softirqs+0x280/0x820
[ 1955.463028][    C1]  ? __irq_exit_rcu+0xd3/0x190
[ 1955.467772][    C1]  ? do_softirq+0x1a0/0x1a0
[ 1955.472255][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[ 1955.477437][    C1]  __irq_exit_rcu+0xd3/0x190
[ 1955.482025][    C1]  ? irq_exit_rcu+0x20/0x20
[ 1955.486523][    C1]  irq_exit_rcu+0x9/0x20
[ 1955.490753][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[ 1955.496373][    C1]  </IRQ>
[ 1955.499296][    C1]  <TASK>
[ 1955.502215][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1955.508188][    C1] RIP: 0010:pv_native_safe_halt+0xf/0x10
[ 1955.513803][    C1] Code: d7 22 02 c3 cc cc cc cc cc cc cc f3 0f 1e fa 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 66 90 0f 00 2d 83 e1 43 00 fb f4 <c3> 66 0f 1f 00 55 41 57 41 56 41 54 53 50 8b 2f eb 2e 41 89 de 80
[ 1955.533393][    C1] RSP: 0018:ffffc90000187de0 EFLAGS: 000002c2
[ 1955.539446][    C1] RAX: 01868d6cb736ab00 RBX: ffffffff8162a490 RCX: 01868d6cb736ab00
[ 1955.547401][    C1] RDX: 0000000000000001 RSI: ffffffff8acac900 RDI: ffffffff8b1c81e0
[ 1955.555361][    C1] RBP: ffffc90000187f20 R08: ffff8880b8f36b2b R09: 1ffff110171e6d65
[ 1955.563311][    C1] R10: dffffc0000000000 R11: ffffed10171e6d66 R12: 1ffff1100384c780
[ 1955.571263][    C1] R13: 1ffff92000030fc8 R14: 0000000000000001 R15: dffffc0000000000
[ 1955.579250][    C1]  ? do_idle+0x1f0/0x4e0
[ 1955.583483][    C1]  default_idle+0x13/0x20
[ 1955.587797][    C1]  default_idle_call+0x6c/0xa0
[ 1955.592552][    C1]  do_idle+0x1f0/0x4e0
[ 1955.596627][    C1]  ? idle_inject_timer_fn+0x60/0x60
[ 1955.601806][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[ 1955.607021][    C1]  ? asm_sysvec_call_function_single+0x1a/0x20
[ 1955.613163][    C1]  cpu_startup_entry+0x43/0x60
[ 1955.617922][    C1]  start_secondary+0xee/0xf0
[ 1955.622496][    C1]  secondary_startup_64_no_verify+0x179/0x17b
[ 1955.628554][    C1]  </TASK>
[ 1955.631884][    C1] Kernel Offset: disabled
[ 1955.636248][    C1] Rebooting in 86400 seconds..