last executing test programs:

5m44.664130488s ago: executing program 1 (id=102):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000180100006b6c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xffffff7a, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00'}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x50)

5m44.572200712s ago: executing program 2 (id=105):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, 0x0, 0x0, 0x0)
getdents64(0xffffffffffffffff, 0x0, 0xc0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.stat\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ftruncate(r1, 0x81ff)

5m44.168252439s ago: executing program 2 (id=111):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='freezer.state\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x26, &(0x7f0000000000))
fcntl$lock(r0, 0x25, &(0x7f0000000080)={0x2, 0x2, 0x8, 0xba})
fcntl$lock(r0, 0x25, &(0x7f00000000c0)={0x1, 0x0, 0x5, 0x345})
fcntl$lock(r0, 0x26, &(0x7f0000000580)={0x0, 0x0, 0x200000000000000, 0x730})
close(r0)

5m44.076754503s ago: executing program 1 (id=114):
r0 = syz_open_procfs(0x0, &(0x7f0000000200)='task\x00')
r1 = fanotify_init(0x0, 0x101000)
readv(r1, &(0x7f0000000940)=[{&(0x7f0000000280)=""/175, 0xaf}], 0x1)
fanotify_mark(r1, 0x1, 0x40001019, r0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
getdents64(r0, &(0x7f0000000000)=""/220, 0x39)

5m44.008361126s ago: executing program 2 (id=115):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x109201, 0x0)
ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f00000001c0))

5m43.935836109s ago: executing program 2 (id=117):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000100)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f00000000c0)='./file1\x00')
symlinkat(&(0x7f0000000400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, r0)
setpgid(0x0, r0)
lremovexattr(&(0x7f0000000180)='./file1\x00', 0x0)

5m43.833092224s ago: executing program 1 (id=118):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'lo\x00'})
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x6, 0x18, &(0x7f0000000040)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xa23, 0x0, 0x0, 0x0, 0xe}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x737621cb28556884}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r2, &(0x7f00000009c0)='\\', 0x1, 0x20000081, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback, 0x5}, 0x1c)

5m43.70423667s ago: executing program 2 (id=119):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$kcm(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
setsockopt$sock_attach_bpf(r1, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r1, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r2, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000180)="27030200590214000600002fb96dbcf706e10500000086ddffff1144ee163cd4b8bf4a31accbe1ba0777cfbf6ae77256da82f6184b8a34f9015cc99e570000002b21c90b000000000000721a5dbb56a3d9e16e7c2179c9b5b24722944820e624fc5b17d0822ca4232c98a9936ba722475ca5", 0x72}, {&(0x7f0000000440)="63f805d7649496db72959832930469edc7b700c9e37eed5653ecb716cdb8981cd819af0b33254465cc904b7b31789d65c0e0d33330e2ef36205dd154e363bcadf8f2ea93f45503c6d9fd8dfe5a638cfeb9f79c930a4d18260e5a08ffd35ed8371cff78119319b2b62c7cd9378c73ae90c801681f55ef26cb00"/135, 0x87}, {&(0x7f0000001400)="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", 0x17f}], 0x3}, 0x4)

5m43.627058922s ago: executing program 1 (id=121):
syz_mount_image$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x21000, 0x0, 0x0, 0x0, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, 0x0, 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000340)='./file0/../file0\x00', &(0x7f0000000280)='./file0/file0\x00', 0x0, 0xb101e, 0x0)
unshare(0x6020400)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002d80), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000002d00), &(0x7f0000002d40)='./file0\x00', 0x0, &(0x7f0000000100)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0)

5m43.204021091s ago: executing program 2 (id=126):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x1, 0xb, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000040)=r1, 0x4)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r2, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

5m43.039829238s ago: executing program 32 (id=126):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x1, 0xb, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000040)=r1, 0x4)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r2, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

5m42.648240825s ago: executing program 1 (id=130):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0xfbf, @empty}, 0x1c)
listen(r0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x80800)
mount$9p_tcp(&(0x7f0000000640), &(0x7f0000000680)='.\x00', &(0x7f00000006c0), 0x8010, &(0x7f00000000c0)=ANY=[@ANYBLOB='trans=tcp,port=0x0000000000004e22'])
sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[], 0x150}, 0x1, 0x0, 0x0, 0x800}, 0x8000)

5m42.239250953s ago: executing program 1 (id=134):
r0 = syz_open_dev$loop(&(0x7f0000000180), 0x2, 0x58000)
ioctl$BLKSECTGET(r0, 0x1267, &(0x7f00000001c0))

5m42.096559759s ago: executing program 33 (id=134):
r0 = syz_open_dev$loop(&(0x7f0000000180), 0x2, 0x58000)
ioctl$BLKSECTGET(r0, 0x1267, &(0x7f00000001c0))

2m1.316186489s ago: executing program 3 (id=1773):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$inet6(0xa, 0x2, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x5}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0xf, 0x7, 0x1, 0x5}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
socket(0x2, 0x5, 0x0)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
sendmmsg$inet(r1, 0x0, 0x0, 0x0)

1m59.768046576s ago: executing program 3 (id=1780):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xffffff7a, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x50)

1m57.710005815s ago: executing program 3 (id=1788):
syz_init_net_socket$ax25(0x3, 0x2, 0x8)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/tty/ldiscs\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000002180)='./file0\x00', 0x0, 0x0)
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(0x0, r3)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r5, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmsg$inet(r8, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r7, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmsg$inet(r10, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r9, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010028bd7000070000000200000008000100", @ANYRES32=r1], 0x1c}}, 0x8004)
r11 = socket$nl_xfrm(0x10, 0x3, 0x6)
write$nci(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="414601", @ANYRES8=r11], 0x4)

1m56.109244824s ago: executing program 3 (id=1792):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x21000, 0x0, 0x0, 0x0, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000340)='./file0/../file0\x00', &(0x7f0000000280)='./file0/file0\x00', 0x0, 0xb101e, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
open_tree(0xffffffffffffff9c, 0x0, 0x89901)
move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x1e)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)='securityfs\x00', 0x0, 0x0)
mount$bpf(0x0, 0x0, 0x0, 0x1840020, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0)

1m55.630450074s ago: executing program 3 (id=1794):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000026c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff3, 0x2}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x0, '\x00', 0x1, 0x200a, 0x6, 0x9}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r4)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), r5)
sendmsg$TIPC_CMD_ENABLE_BEARER(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x305200, 0x0)
close(r7)
r8 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
r10 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000006c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0x80000, {0x0, 0x0, 0x0, r9, {0x0, 0x9}, {0x9, 0xb}, {0xffe0, 0x3}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x1c, 0x2, [@TCA_GRED_LIMIT={0x8, 0x5, 0x43}, @TCA_GRED_DPS={0x10, 0x3, {0xb, 0x2, 0x0, 0x4}}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x2000c061}, 0x4008000)
ioctl$SIOCSIFHWADDR(r7, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

1m52.363833195s ago: executing program 3 (id=1804):
r0 = fsopen(&(0x7f0000000b00)='configfs\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000040)={0x0, 0x0}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x541c, &(0x7f0000000100)={0x2, {0x2, 0x13d, 0x0, 0xd6e}})
keyctl$set_timeout(0xf, 0x0, 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffffff, &(0x7f0000000040)='.\x00', 0x0, 0x0)
lseek(r3, 0x3, 0x1)
getdents64(r3, 0x0, 0x22)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xe4776000)

1m52.039456879s ago: executing program 34 (id=1804):
r0 = fsopen(&(0x7f0000000b00)='configfs\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000040)={0x0, 0x0}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x541c, &(0x7f0000000100)={0x2, {0x2, 0x13d, 0x0, 0xd6e}})
keyctl$set_timeout(0xf, 0x0, 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffffff, &(0x7f0000000040)='.\x00', 0x0, 0x0)
lseek(r3, 0x3, 0x1)
getdents64(r3, 0x0, 0x22)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xe4776000)

15.456992804s ago: executing program 6 (id=2240):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x19, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000080000000000000023000000850000003100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

14.242102626s ago: executing program 0 (id=2248):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0xab, @loopback, 0x10001}, 0x1c)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22, 0x7, @loopback, 0x23}, 0x1c)
r1 = dup(r0)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(r1, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[], 0x78}, 0x1, 0x0, 0x0, 0x4080}, 0x8080)
bind$packet(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f0000000100))
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NL80211_CMD_CONNECT(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000080)={&(0x7f0000000940)={0x58, 0x0, 0x10, 0x70bd25, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x5, 0x15}}}}, [@chandef_params, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xd}, @NL80211_ATTR_IE={0x28, 0x2a, [@ht={0x2d, 0x1a, {0x2, 0x2, 0x0, 0x0, {0xffffffff, 0x80, 0x0, 0xc, 0x0, 0x0, 0x0, 0x3, 0x1}, 0x400, 0x35}}, @channel_switch={0x25, 0x3, {0x0, 0xab, 0x1}}, @dsss={0x3, 0x1, 0x88}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x44)
r2 = socket(0xa, 0x3, 0xff)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty, 0x4000002}, 0x1c)
syz_emit_ethernet(0x6e, &(0x7f00000001c0)={@random="cfb14e407d33", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2e}, @void, {@ipv6={0x86dd, @icmpv6={0x9, 0x6, 'z&-', 0x38, 0x3a, 0x1, @local, @mcast2, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x8001, {0x2, 0x6, "081331", 0x9, 0xff, 0x0, @loopback, @loopback, [@fragment={0x3b, 0x0, 0xe, 0x0, 0x0, 0x3, 0x65}]}}}}}}}, 0x0)
write$RDMA_USER_CM_CMD_LISTEN(r1, &(0x7f00000000c0)={0x7, 0xffffffffffffffa0, 0xfa00, {0xffffffffffffffff, 0x10c}}, 0xfffffd88)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)

13.298963537s ago: executing program 0 (id=2253):
ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102400, 0x19000)
ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f00000000c0))
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000000)=0x200, 0x4)
r3 = syz_open_dev$evdev(&(0x7f0000000240), 0x20000, 0x0)
ioctl$EVIOCGLED(r3, 0x80284504, &(0x7f0000000000)=""/52)
add_key$keyring(&(0x7f00000000c0), &(0x7f0000000ac0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)

13.22795744s ago: executing program 6 (id=2255):
pipe(0x0)
socket$inet_udp(0x2, 0x2, 0x0)
pipe(&(0x7f0000000040))
io_setup(0x3ff, &(0x7f0000000500))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
getpid()
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f0000000180)='./mnt\x00', 0x0, &(0x7f0000000340)={[{@prjquota}]}, 0x0, 0x241, &(0x7f0000000540)="$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")
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x0, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102400, 0x19000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000440)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58)
r3 = accept$alg(r2, 0x0, 0x0)
r4 = dup(r3)
r5 = open(&(0x7f00000000c0)='./file0\x00', 0x1298c2, 0x14a)
ftruncate(r5, 0x200004)
sendfile(r4, r5, 0x0, 0x80001d00c0d1)
setsockopt(r4, 0x1, 0x20, &(0x7f0000000040)="c04bfa0a", 0x4)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

12.092756109s ago: executing program 0 (id=2256):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='status\x00')
lseek(r0, 0x10000000005, 0x0)

10.90294246s ago: executing program 6 (id=2265):
syz_mount_image$udf(&(0x7f0000000f00), &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xa00010, &(0x7f0000000080)=ANY=[@ANYBLOB='iocharset=iso8859-1,nostrict,iocharset=default,anchor=00000000000000000145,gid=', @ANYRESDEC=0x0, @ANYBLOB="2c706172746974696f6e3d30303030303030303030303030303030303030322c756e64656c6574652c706172746974696f6e3d30303030303030303030303030303030303030312c756e686964652c001e066340c987db28915dbe6892bc3dce41ae76eaf528dc889820692d753009e30e567403a6c30e933de68a0a923eec1dccf226b58adb7d968bafe76628bceade8672fb893f87dc88", @ANYRES8=0x0, @ANYRESOCT=0x0, @ANYRES8], 0x1, 0xc5a, &(0x7f0000001040)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fchown(r0, 0x0, 0xee01)
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffffb)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)

8.618437068s ago: executing program 0 (id=2270):
pipe2(&(0x7f0000000000)={0x0, 0x0}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0))
pipe(&(0x7f0000000040))
bind$inet(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x3)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x4, r0, 0x0, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = fsopen(&(0x7f0000000000)='pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
fsmount(r2, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, 0x0)
getresgid(0x0, 0x0, 0x0)

8.618001448s ago: executing program 4 (id=2271):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000001c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000480)="b19ccccf84f531d9ec214627c11430c1", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f00000009c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000640)=[@op={0x18, 0x117, 0x3, 0x2}], 0x18, 0x20000000}], 0x1, 0x24000040)

7.571973293s ago: executing program 7 (id=2272):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x70bd27, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x4, 0xffff2153, 0x2, 0xa, 0xd, 0x1c4, 0x7, 0x2, 0x6}}}}]}, 0x58}}, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
r5 = socket$kcm(0x11, 0x3, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r6)
socket$unix(0x1, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
r8 = socket(0x400000000010, 0x3, 0x0)
r9 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001300)=@newtfilter={0x87c, 0x2c, 0xd3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r10, {0xb, 0xfff3}, {}, {0x8, 0x300}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0xf, 0xa, 0x0, 0x80, 0x1, 0x7, 0x80000001, 0x6, 0x8, 0x46d, 0x400, 0x303, 0x214, 0xb0c, 0x100, 0x7, 0xe, 0x2, 0x7fff, 0x8, 0x7fff, 0x5, 0x80, 0x400, 0x4, 0x1, 0xff, 0x9, 0x1, 0x0, 0x5071, 0x1bf66fb9, 0x7, 0xf50c, 0x4, 0x0, 0x800, 0x1f01, 0x3, 0x0, 0xfffffffe, 0xffff, 0x6, 0xd17, 0x7fffffff, 0x1, 0x8, 0xc, 0xd6e1, 0x5, 0x2, 0x9, 0x970c, 0xffffffb2, 0x4, 0x101, 0x5, 0x40, 0x2, 0x2, 0xd0d5, 0x0, 0x2, 0x1, 0x3b05, 0x5, 0xfffffffd, 0x7, 0xc8b8, 0x0, 0x8, 0xe42, 0x8, 0x5, 0x7, 0x401, 0x5, 0x1000, 0x4, 0x10001, 0x6, 0x7, 0x0, 0x8001, 0x0, 0x1, 0xf, 0x5, 0xc1d6, 0x5, 0x100, 0x5, 0xa411, 0x8, 0x2, 0x3554, 0x80001, 0x10001, 0x6, 0xa6c, 0x7, 0x1ff, 0x20007ff, 0xfffffffa, 0x60, 0x6, 0x9f50, 0x400, 0x9, 0x1ff, 0x0, 0x101, 0x6, 0x1575, 0x2, 0x101, 0x6, 0xebc, 0x5, 0x5f0, 0x1, 0x0, 0x3, 0x7, 0x2, 0x6, 0x1ff, 0x80000000, 0x6, 0x86, 0x7d, 0x2, 0x8, 0xd386, 0x6, 0x10, 0x6, 0x2, 0x8001, 0x5a, 0x7, 0x8001, 0x1, 0x0, 0x4b2, 0x4, 0x1, 0xffffffff, 0x9, 0xffffffff, 0x5, 0x8000000, 0x0, 0x5, 0xcd16, 0x4, 0x1, 0x7b5000, 0x3, 0x0, 0x7, 0x4000, 0x6, 0xf497, 0x1, 0x4, 0x3, 0x9, 0x1, 0x3, 0x101, 0xa9, 0x300, 0x37, 0x4, 0x403d, 0x400, 0x0, 0x7ffffffc, 0x10001, 0xa, 0x5, 0x4, 0x8, 0x5247bda0, 0x1afeb244, 0x6, 0x10001, 0x0, 0xd7, 0xc, 0x2, 0x10, 0x4, 0x4, 0x100, 0x0, 0x2, 0x4000000, 0xf, 0xd886, 0x10000, 0x7, 0x3, 0xf, 0x2, 0xa, 0xc, 0x103, 0x1ff, 0xfffffffb, 0x8, 0x0, 0x0, 0xc0000000, 0x6, 0x80, 0x9a3f, 0x5, 0xfffffff9, 0x5, 0x7, 0x1, 0x4, 0xf7, 0x4, 0x1, 0x81, 0x4, 0x7, 0x6, 0xa91, 0x7, 0x0, 0x7, 0xff, 0xae6, 0x1000, 0x6, 0x7, 0x1, 0x10000, 0xa04, 0xfffffff9, 0x1, 0x3, 0x584, 0x1e0, 0x1, 0x0, 0x5, 0x5, 0x9, 0x80000000, 0x5, 0x8]}, @TCA_POLICE_TBF={0x3c, 0x1, {0xff, 0x8, 0x3, 0x4, 0x0, {0x4, 0x2, 0x8, 0x8, 0x4, 0x5}, {0xe, 0x2, 0xfff, 0xff00, 0x10, 0x1}, 0xb72, 0x8001, 0xdb}}, @TCA_POLICE_RATE={0x404, 0x2, [0xf, 0x1, 0x2, 0x800, 0x40, 0xfffff801, 0x79, 0x8001, 0xf22, 0x0, 0x1, 0x0, 0x8, 0x4a7, 0x1, 0x2, 0x81, 0x4, 0x5, 0x2, 0xd5d, 0x5268, 0x7e, 0x3, 0x0, 0x6, 0x5, 0x3, 0x2, 0x4455, 0xffffffff, 0xfffeffff, 0x8, 0x45e, 0xff, 0x2, 0x0, 0x7f, 0x7fd, 0x2, 0x7, 0x8, 0xffffff45, 0x4, 0xc, 0x6, 0x6cff1733, 0xd39, 0x4, 0x7, 0x7, 0x8, 0x8, 0x8, 0x3, 0x2, 0x1, 0x200, 0x12000000, 0x2, 0x9c, 0x7, 0x1, 0x2, 0x5, 0x2, 0x5, 0x9, 0x96, 0x37, 0xb6, 0x6, 0x1, 0x7, 0x7d, 0x2, 0xe2b, 0x10001, 0xfff, 0x3a, 0x100002, 0x10000, 0x81, 0x2, 0x7, 0x9, 0xd317, 0x9de, 0x6, 0x840, 0x1, 0x43, 0xff, 0x4, 0x0, 0x7fffffff, 0x8, 0x6, 0x8, 0x9, 0x5, 0x7, 0xd, 0x9e5, 0x0, 0x4, 0x76, 0x5, 0xffffffff, 0x7, 0x2, 0x5f, 0x0, 0x6, 0x865feb0b, 0x400002, 0x0, 0x1fb, 0x7fffffff, 0x401, 0x400, 0x5, 0xa2, 0x2, 0x195, 0x7, 0x3, 0x5, 0x6, 0xffff8c56, 0xfffffffb, 0x8, 0x2, 0x5, 0x7fffffff, 0x1, 0x6, 0x2, 0x7, 0x2, 0x4, 0x79d, 0x1, 0x48, 0x10001, 0x5, 0x1, 0x6, 0x5, 0x7, 0x7f, 0x36800, 0x0, 0x0, 0x3, 0xfffffffe, 0x6, 0xe000, 0xb1, 0x5, 0x8, 0x8001, 0xffffffff, 0x1000, 0x7ff, 0xb, 0x83, 0x1, 0x5, 0x80000000, 0x53, 0x6, 0x4, 0x0, 0x3ff, 0x838, 0x9, 0xfffffffc, 0x7, 0x9, 0x2, 0x2, 0x50001, 0x1, 0xfffffff8, 0x5, 0x80000001, 0xfffffffe, 0x4, 0x2, 0x400, 0x800, 0x4, 0xfffff4bb, 0x8, 0x6, 0xc, 0x6, 0x2001, 0x2006, 0x9, 0x0, 0x944, 0x70, 0x6, 0x5, 0x10000, 0x5, 0x3, 0xb52f, 0xfe, 0x0, 0xa0, 0x8, 0x203, 0x4, 0x6, 0x0, 0xff, 0x3, 0x0, 0x5c, 0x6, 0x8, 0x0, 0x15, 0xffff, 0x0, 0x9, 0x7f, 0x4, 0x6, 0x6, 0x7, 0x0, 0xa, 0x8, 0x5, 0x4, 0x9, 0xfffc, 0x9d1, 0x1, 0xf, 0x8, 0x40, 0x10000, 0xd3ae, 0x5f5a, 0x1, 0x6, 0xd00, 0x0, 0x24e00b6d, 0x8f3, 0x2]}]}]}}]}, 0x87c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
setsockopt$sock_attach_bpf(r5, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r5, &(0x7f0000000280)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r7, 0x3e}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000180)}, {&(0x7f00000004c0)="f058fe7dad777f8f", 0x8}], 0x2}, 0x5)

7.571678683s ago: executing program 4 (id=2273):
socket(0x29, 0x5, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f00000001c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xchacha20\x00'}, 0x58)
r5 = accept4(r4, 0x0, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r5, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x91}, 0x24008000)
recvmmsg$unix(r5, &(0x7f0000004ac0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2124, 0x0)
unshare(0x6a040000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x40000000000006}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
read$msr(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)

7.571252604s ago: executing program 6 (id=2274):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket$kcm(0x11, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x7, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000600)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdbff, {0x0, 0x0, 0x0, r5, {0x0, 0x3}, {0x5, 0xb}, {0xfff3, 0xb}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x240040e0}, 0x40000)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
setsockopt$sock_attach_bpf(r3, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r3, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r6, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000180)="27030200590214000600002fb96dbcf706e10500000086ddffff1144ee163cd4b8bf4a31accbe1ba0777cfbf6ae77256da82f6184b8a34f9015cc99e570000002b21c90b000000000000721a5dbb56a3d9e16e7c2179c9b5b24722944820e624fc5b17d0822ca4232c98a9936ba722475ca5", 0x72}, {&(0x7f0000000440)="63f805d7649496db72959832930469edc7b700c9e37eed5653ecb716cdb8981cd819af0b33254465cc904b7b31789d65c0e0d33330e2ef36205dd154e363bcadf8f2ea93f45503c6d9fd8dfe5a638cfeb9f79c930a4d18260e5a08ffd35ed8371cff78119319b2b62c7cd9378c73ae90c801681f55ef26cb00"/135, 0x87}, {&(0x7f0000001400)="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", 0x174}], 0x3}, 0x4)

7.570913034s ago: executing program 0 (id=2275):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="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", @ANYRESHEX=0x0, @ANYRESDEC], 0x23, 0x34f, &(0x7f0000000840)="$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")
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000002900)='./file0\x00', 0x2000010, &(0x7f00000022c0)=ANY=[], 0x1, 0x6d8, &(0x7f0000000a00)="$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")
syz_mount_image$udf(&(0x7f0000000040), &(0x7f0000000480)='./file0\x00', 0x2018008, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="2f93edc77863113d68e33456dfe3c025878b46bc73df14f991a8f7a341a10f44c05fc1c37ad73b0239a18733e7436f3b54758b4ce59af971d50e53c14277216c0bba6ad052fa7a6d77f0b19c8b2381abc46dfa7e4bc6c37bbab3f908f48d1a6055a6457c5d503502300a69dc517cc08b955df0d19ae4c120c512eceffbf3fc154e4ba08f2497b14e95cfdef1c26e8623eab9941404ca9d84df9a2c44e453a0cfffbf23e5bf1e872ee040a582eda3d84714e82dde4c02836e5f66775f4df1bdcfbc28eb5ced2b332944d3ab2b9efe3cbb2111fe"], 0xfe, 0x4b1, &(0x7f0000001d00)="$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")
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000006c40)="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", 0x2000, &(0x7f0000003ec0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000024c0)={0x90, 0x0, 0x5, {0x2, 0x2, 0x80004, 0x1fffffffe, 0x101, 0xfffffffc, {0x0, 0x8000000000002, 0x0, 0x1, 0x7fffffffffffffff, 0x800, 0x94fa, 0x8, 0xfffffffc, 0x4000, 0xfffffffc, 0x0, 0x0, 0xfffff63d}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
creat(&(0x7f0000000ac0)='./file0\x00', 0x0)

6.996490199s ago: executing program 4 (id=2276):
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000300)={0x80000000, "65544000000000000000debd97c000"})
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r4 = getpid()
syz_pidfd_open(r4, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
getpriority(0x2, 0x0)

5.872447407s ago: executing program 4 (id=2277):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @multicast2}, 0x10)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000280)={@in={{0x2, 0x4e20, @loopback}}, 0x0, 0x0, 0x4, 0x0, "e83ae75240c2d6d8ec87bb53679fd0450078548ceb6c4414fab091000000000000000776aea5922406b64cddaeb9d339ba3c01c2c7d0df8e61740b9af2d4e499d58654a4cf0fa0ce1f830c3279cffcfd"}, 0xd8)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0xce, 0x4)
connect$inet(r0, &(0x7f00000001c0)={0x2, 0x4e20, @loopback}, 0x10)
sendmsg$inet(r0, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0x100120}], 0x1}, 0x0)

5.599560179s ago: executing program 7 (id=2278):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0xab, @loopback, 0x10001}, 0x1c)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22, 0x7, @loopback, 0x23}, 0x1c)
r1 = dup(r0)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(r1, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[], 0x78}, 0x1, 0x0, 0x0, 0x4080}, 0x8080)
bind$packet(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f0000000100))
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NL80211_CMD_CONNECT(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000080)={&(0x7f0000000940)={0x58, 0x0, 0x10, 0x70bd25, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x5, 0x15}}}}, [@chandef_params, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xd}, @NL80211_ATTR_IE={0x28, 0x2a, [@ht={0x2d, 0x1a, {0x2, 0x2, 0x0, 0x0, {0xffffffff, 0x80, 0x0, 0xc, 0x0, 0x0, 0x0, 0x3, 0x1}, 0x400, 0x35}}, @channel_switch={0x25, 0x3, {0x0, 0xab, 0x1}}, @dsss={0x3, 0x1, 0x88}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x44)
r2 = socket(0xa, 0x3, 0xff)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty, 0x4000002}, 0x1c)
syz_emit_ethernet(0x6e, &(0x7f00000001c0)={@random="cfb14e407d33", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2e}, @void, {@ipv6={0x86dd, @icmpv6={0x9, 0x6, 'z&-', 0x38, 0x3a, 0x1, @local, @mcast2, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x8001, {0x2, 0x6, "081331", 0x9, 0xff, 0x0, @loopback, @loopback, [@fragment={0x3b, 0x0, 0xe, 0x0, 0x0, 0x3, 0x65}]}}}}}}}, 0x0)
write$RDMA_USER_CM_CMD_LISTEN(r1, &(0x7f00000000c0)={0x7, 0xffffffffffffffa0, 0xfa00, {0xffffffffffffffff, 0x10c}}, 0xfffffd88)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)

5.416775447s ago: executing program 6 (id=2279):
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
pwrite64(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x3fff)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x6)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x9000)
ioctl$DMA_BUF_IOCTL_SYNC(0xffffffffffffffff, 0x40086200, 0x0)
mlock2(&(0x7f0000072000/0x4000)=nil, 0x4000, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
sendmsg$DCCPDIAG_GETSOCK(0xffffffffffffffff, 0x0, 0x4000000)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='proc\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r3, 0x102, 0x0)
getdents(r3, &(0x7f0000000000)=""/27, 0x1b)

5.167955467s ago: executing program 7 (id=2281):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x38}, 0x1, 0x300}, 0x24040015)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x843)
socket$packet(0x11, 0x2, 0x300)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x10840, &(0x7f00000001c0)=ANY=[@ANYBLOB='iocharset=utf8,shortname=winnt,shortname=win95,uni_xlate=1,shortname=winnt,shortname=winnt,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c73686f72746e616d653d77696e6e742c000000000000009e5fcf6469722c73687865d2068a008e48488cc8642c6e66733d6e6f73"], 0x1, 0x26c, &(0x7f0000000340)="$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")
syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), r1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[], &(0x7f0000000100)=""/227, 0x3e, 0xe3, 0x1}, 0x28)
lgetxattr(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='trusted.'], 0x0, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
syz_mount_image$fuse(0x0, &(0x7f0000000100)='.\x02\x00', 0xa9a080, 0x0, 0xc, 0x0, 0x0)

4.011340257s ago: executing program 6 (id=2282):
socket(0x10, 0x803, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x16, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4000000000000007910520000000000620000000000000095000000000000009e574bffff1729aba9b39a58e3cd8757e44cf3611b8e327a0279acba1f7791408d1efa421239728e2e5cc319b58520609dfd4a1a021d000000000000efffff75c3d894d99aef659f8b0000c515d8c219fbd9da31fc3ce3e9a2653000aec385a84a3d3f466bba30ac1486a70037fb03adef1a427fb0f4cb3072"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @flow_dissector}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
msgsnd(0x0, 0x0, 0x401, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write(r3, &(0x7f0000000080)="520003000100b8", 0x7)
setxattr$security_capability(0x0, 0x0, 0x0, 0x0, 0x0)

3.852208514s ago: executing program 5 (id=2283):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f0000003440)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000440)='1', 0x1}], 0x1, 0x0, 0x0, 0xcc4}}, {{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000000c0)="d1646dabc14542f3", 0x8}], 0x1, 0x0, 0x0, 0x20000040}}], 0x2, 0x4)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x10, &(0x7f00000002c0)=0x8001, 0x4)
splice(r0, 0x0, r2, 0x0, 0x39000, 0x0)

3.831307855s ago: executing program 5 (id=2284):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@nodiscard}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x66}}, {@user_xattr}, {@nolazytime}, {@quota}]}, 0x3, 0x43d, &(0x7f0000002200)="$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")
syz_emit_ethernet(0x6e9, 0x0, 0x0)
fsopen(0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r1 = getpid()
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr-aes-aesni\x00'}, 0x58)
r3 = accept4$alg(r2, 0x0, 0x0, 0x0)
sendmmsg$sock(r3, &(0x7f00000002c0), 0x1, 0x4080850)
io_setup(0xff, &(0x7f0000000380)=<r4=>0x0)
io_submit(r4, 0x27f, &(0x7f0000001440)=[&(0x7f0000000200)={0x1000000, 0x0, 0x700000000000000, 0x0, 0x0, r3, &(0x7f0000000340), 0x41}])
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
ioctl$VHOST_GET_FEATURES(0xffffffffffffffff, 0x8008af00, &(0x7f00000000c0))
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r7 = socket$packet(0x11, 0xa, 0x300)
getpeername$packet(r7, &(0x7f0000000540)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
ioctl$TIOCSSOFTCAR(0xffffffffffffffff, 0x541a, 0x0)

3.540913558s ago: executing program 7 (id=2285):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_ASSOCIATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)={0x2c, r1, 0x1, 0x70bd2c, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_DISABLE_VHT={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000815}, 0x850)

2.79180786s ago: executing program 4 (id=2286):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$eJzs3TFoM2UcBvDnLomf/b4gVRdBUEFEtFDqJrjURaEgpYgIKlREXJRWqC1urZOLg84qnVyKuFkdpUtxUQSnqh3qImhxsDjoELlcK9VGFFNz8t3vB5fcJe97//e4e95kOS5Aa00nmU/SSTKTpJekON/grnqZPt3cntpfTgaDx38shu3q7dpZv2tJtpI8mGSvLPJiN9nYffro54NH731jvXfPe7tPTU30IE8dHx0+dvLu4usfLjyw8fmX3y8WmU//D8d1+YoRn3WL5Jb/otj/RNFtegT8E0uvfvBVlftbk9w9zH8vZeqT9+baDXu93P/OX/V964cvbp/kWIHLNxj0qt/ArQHQOmWSfopyNkm9Xpazs/V/+K87V8uXVtdemXlhdX3l+aZnKuCy9JPDRz6+8tG1P+X/u06df+D6VeX/iaWdb6r1k07TowEmqcr/zLOb90X+oXXkH9pL/qG95B/aS/6hveQf2kv+ob3kH9pL/qG95B/a63z+AYB2GVxp+g5koClNzz8AAAAAAAAAAAAAAAAAAMBF21P7y2fLpGp++nZy/HCS7qj6neHziJMbh69XfyqqZr8r6m5jeebOMXcwpvcbvvv6pm+brf/ZHc3W31xJtl5LMtftXrz+itPr79+7+W++7z03ZoExPfRks/V/3Wm2/sJB8kk1/8yNmn/K3DZ8Hz3/9KvzN2b9l38ZcwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABMzG8BAAD//8n0bSk=")
mkdirat(0xffffffffffffff9c, &(0x7f0000000640)='mnt/encrypted_dir\x00', 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000680)='mnt/encrypted_dir\x00', 0x800, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f00000006c0)=@v1={0x0, @adiantum, 0x10, @desc1})

2.736270272s ago: executing program 7 (id=2287):
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000300)={0x80000000, "65544000000000000000debd97c000"})
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r4 = getpid()
syz_pidfd_open(r4, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
getpriority(0x2, 0x0)

2.656462875s ago: executing program 5 (id=2288):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000001c0))

1.581357512s ago: executing program 7 (id=2289):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x70bd27, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x4, 0xffff2153, 0x2, 0xa, 0xd, 0x1c4, 0x7, 0x2, 0x6}}}}]}, 0x58}}, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
r5 = socket$kcm(0x11, 0x3, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r6)
socket$unix(0x1, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
r8 = socket(0x400000000010, 0x3, 0x0)
r9 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001300)=@newtfilter={0x87c, 0x2c, 0xd3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r10, {0xb, 0xfff3}, {}, {0x8, 0x300}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0xf, 0xa, 0x0, 0x80, 0x1, 0x7, 0x80000001, 0x6, 0x8, 0x46d, 0x400, 0x303, 0x214, 0xb0c, 0x100, 0x7, 0xe, 0x2, 0x7fff, 0x8, 0x7fff, 0x5, 0x80, 0x400, 0x4, 0x1, 0xff, 0x9, 0x1, 0x0, 0x5071, 0x1bf66fb9, 0x7, 0xf50c, 0x4, 0x0, 0x800, 0x1f01, 0x3, 0x0, 0xfffffffe, 0xffff, 0x6, 0xd17, 0x7fffffff, 0x1, 0x8, 0xc, 0xd6e1, 0x5, 0x2, 0x9, 0x970c, 0xffffffb2, 0x4, 0x101, 0x5, 0x40, 0x2, 0x2, 0xd0d5, 0x0, 0x2, 0x1, 0x3b05, 0x5, 0xfffffffd, 0x7, 0xc8b8, 0x0, 0x8, 0xe42, 0x8, 0x5, 0x7, 0x401, 0x5, 0x1000, 0x4, 0x10001, 0x6, 0x7, 0x0, 0x8001, 0x0, 0x1, 0xf, 0x5, 0xc1d6, 0x5, 0x100, 0x5, 0xa411, 0x8, 0x2, 0x3554, 0x80001, 0x10001, 0x6, 0xa6c, 0x7, 0x1ff, 0x20007ff, 0xfffffffa, 0x60, 0x6, 0x9f50, 0x400, 0x9, 0x1ff, 0x0, 0x101, 0x6, 0x1575, 0x2, 0x101, 0x6, 0xebc, 0x5, 0x5f0, 0x1, 0x0, 0x3, 0x7, 0x2, 0x6, 0x1ff, 0x80000000, 0x6, 0x86, 0x7d, 0x2, 0x8, 0xd386, 0x6, 0x10, 0x6, 0x2, 0x8001, 0x5a, 0x7, 0x8001, 0x1, 0x0, 0x4b2, 0x4, 0x1, 0xffffffff, 0x9, 0xffffffff, 0x5, 0x8000000, 0x0, 0x5, 0xcd16, 0x4, 0x1, 0x7b5000, 0x3, 0x0, 0x7, 0x4000, 0x6, 0xf497, 0x1, 0x4, 0x3, 0x9, 0x1, 0x3, 0x101, 0xa9, 0x300, 0x37, 0x4, 0x403d, 0x400, 0x0, 0x7ffffffc, 0x10001, 0xa, 0x5, 0x4, 0x8, 0x5247bda0, 0x1afeb244, 0x6, 0x10001, 0x0, 0xd7, 0xc, 0x2, 0x10, 0x4, 0x4, 0x100, 0x0, 0x2, 0x4000000, 0xf, 0xd886, 0x10000, 0x7, 0x3, 0xf, 0x2, 0xa, 0xc, 0x103, 0x1ff, 0xfffffffb, 0x8, 0x0, 0x0, 0xc0000000, 0x6, 0x80, 0x9a3f, 0x5, 0xfffffff9, 0x5, 0x7, 0x1, 0x4, 0xf7, 0x4, 0x1, 0x81, 0x4, 0x7, 0x6, 0xa91, 0x7, 0x0, 0x7, 0xff, 0xae6, 0x1000, 0x6, 0x7, 0x1, 0x10000, 0xa04, 0xfffffff9, 0x1, 0x3, 0x584, 0x1e0, 0x1, 0x0, 0x5, 0x5, 0x9, 0x80000000, 0x5, 0x8]}, @TCA_POLICE_TBF={0x3c, 0x1, {0xff, 0x8, 0x3, 0x4, 0x0, {0x4, 0x2, 0x8, 0x8, 0x4, 0x5}, {0xe, 0x2, 0xfff, 0xff00, 0x10, 0x1}, 0xb72, 0x8001, 0xdb}}, @TCA_POLICE_RATE={0x404, 0x2, [0xf, 0x1, 0x2, 0x800, 0x40, 0xfffff801, 0x79, 0x8001, 0xf22, 0x0, 0x1, 0x0, 0x8, 0x4a7, 0x1, 0x2, 0x81, 0x4, 0x5, 0x2, 0xd5d, 0x5268, 0x7e, 0x3, 0x0, 0x6, 0x5, 0x3, 0x2, 0x4455, 0xffffffff, 0xfffeffff, 0x8, 0x45e, 0xff, 0x2, 0x0, 0x7f, 0x7fd, 0x2, 0x7, 0x8, 0xffffff45, 0x4, 0xc, 0x6, 0x6cff1733, 0xd39, 0x4, 0x7, 0x7, 0x8, 0x8, 0x8, 0x3, 0x2, 0x1, 0x200, 0x12000000, 0x2, 0x9c, 0x7, 0x1, 0x2, 0x5, 0x2, 0x5, 0x9, 0x96, 0x37, 0xb6, 0x6, 0x1, 0x7, 0x7d, 0x2, 0xe2b, 0x10001, 0xfff, 0x3a, 0x100002, 0x10000, 0x81, 0x2, 0x7, 0x9, 0xd317, 0x9de, 0x6, 0x840, 0x1, 0x43, 0xff, 0x4, 0x0, 0x7fffffff, 0x8, 0x6, 0x8, 0x9, 0x5, 0x7, 0xd, 0x9e5, 0x0, 0x4, 0x76, 0x5, 0xffffffff, 0x7, 0x2, 0x5f, 0x0, 0x6, 0x865feb0b, 0x400002, 0x0, 0x1fb, 0x7fffffff, 0x401, 0x400, 0x5, 0xa2, 0x2, 0x195, 0x7, 0x3, 0x5, 0x6, 0xffff8c56, 0xfffffffb, 0x8, 0x2, 0x5, 0x7fffffff, 0x1, 0x6, 0x2, 0x7, 0x2, 0x4, 0x79d, 0x1, 0x48, 0x10001, 0x5, 0x1, 0x6, 0x5, 0x7, 0x7f, 0x36800, 0x0, 0x0, 0x3, 0xfffffffe, 0x6, 0xe000, 0xb1, 0x5, 0x8, 0x8001, 0xffffffff, 0x1000, 0x7ff, 0xb, 0x83, 0x1, 0x5, 0x80000000, 0x53, 0x6, 0x4, 0x0, 0x3ff, 0x838, 0x9, 0xfffffffc, 0x7, 0x9, 0x2, 0x2, 0x50001, 0x1, 0xfffffff8, 0x5, 0x80000001, 0xfffffffe, 0x4, 0x2, 0x400, 0x800, 0x4, 0xfffff4bb, 0x8, 0x6, 0xc, 0x6, 0x2001, 0x2006, 0x9, 0x0, 0x944, 0x70, 0x6, 0x5, 0x10000, 0x5, 0x3, 0xb52f, 0xfe, 0x0, 0xa0, 0x8, 0x203, 0x4, 0x6, 0x0, 0xff, 0x3, 0x0, 0x5c, 0x6, 0x8, 0x0, 0x15, 0xffff, 0x0, 0x9, 0x7f, 0x4, 0x6, 0x6, 0x7, 0x0, 0xa, 0x8, 0x5, 0x4, 0x9, 0xfffc, 0x9d1, 0x1, 0xf, 0x8, 0x40, 0x10000, 0xd3ae, 0x5f5a, 0x1, 0x6, 0xd00, 0x0, 0x24e00b6d, 0x8f3, 0x2]}]}]}}]}, 0x87c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
setsockopt$sock_attach_bpf(r5, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r5, &(0x7f0000000280)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r7, 0x3e}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000180)="27030200000214000e00002fb96dffff1144ee", 0x13}, {&(0x7f00000004c0)="f058fe7dad777f8f", 0x8}], 0x2}, 0x5)

1.500138966s ago: executing program 0 (id=2290):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket$kcm(0x11, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x7, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000600)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdbff, {0x0, 0x0, 0x0, r5, {0x0, 0x3}, {0x5, 0xb}, {0xfff3, 0xb}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x240040e0}, 0x40000)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
setsockopt$sock_attach_bpf(r3, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r3, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r6, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000180)="27030200590214000600002fb96dbcf706e10500000086ddffff1144ee163cd4b8bf4a31accbe1ba0777cfbf6ae77256da82f6184b8a34f9015cc99e570000002b21c90b000000000000721a5dbb56a3d9e16e7c2179c9b5b24722944820e624fc5b17d0822ca4232c98a9936ba722475ca5", 0x72}, {&(0x7f0000000440)="63f805d7649496db72959832930469edc7b700c9e37eed5653ecb716cdb8981cd819af0b33254465cc904b7b31789d65c0e0d33330e2ef36205dd154e363bcadf8f2ea93f45503c6d9fd8dfe5a638cfeb9f79c930a4d18260e5a08ffd35ed8371cff78119319b2b62c7cd9378c73ae90c801681f55ef26cb00"/135, 0x87}, {&(0x7f0000001400)="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", 0x17a}], 0x3}, 0x4)

1.499879186s ago: executing program 5 (id=2291):
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x140, 0x82)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002000), 0x2, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00'})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000002000)=""/102400, 0x19000)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000040)={0x3f2, @time={0xe0, 0x120}, 0x0, {0x3}, 0xfd})
syz_mount_image$fuse(&(0x7f0000002040), &(0x7f00000020c0)='./file0\x00', 0x208402, &(0x7f00000021c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0)
write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000002240)={0x30, 0x5, 0x0, {0x0, 0x1, 0x2, 0x101}}, 0x30)

1.17374752s ago: executing program 4 (id=2292):
r0 = socket$inet6(0xa, 0x80002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r1 = timerfd_create(0x0, 0x0)
timerfd_gettime(r1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000032680)=""/102400, 0x19000)
r5 = gettid()
recvmsg(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
sendmsg$unix(0xffffffffffffffff, 0x0, 0x4004881)
ptrace$ARCH_ENABLE_TAGGED_ADDR(0x1e, r5, 0x2, 0x4002)
io_setup(0x3, 0x0)
pipe(&(0x7f0000000380)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
socket$inet_tcp(0x2, 0x1, 0x0)
fcntl$setpipe(r6, 0x407, 0x0)
r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r7, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
ioctl$sock_bt_hidp_HIDPCONNADD(0xffffffffffffffff, 0x400448c8, &(0x7f0000000340)={r7, r7, 0x8, 0x700, 0x0, 0x82, 0x4a, 0x15c2, 0x5886, 0x801, 0x0, 0x8, 'syz1\x00'})
setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f0000000040)={0x200000000000001}, 0x8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @dev, 0x5}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

1.167641619s ago: executing program 5 (id=2293):
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
pwrite64(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x3fff)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x6)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x9000)
ioctl$DMA_BUF_IOCTL_SYNC(0xffffffffffffffff, 0x40086200, 0x0)
mlock2(&(0x7f0000072000/0x4000)=nil, 0x4000, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
sendmsg$DCCPDIAG_GETSOCK(0xffffffffffffffff, 0x0, 0x4000000)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='proc\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r3, 0x102, 0x0)
getdents(r3, &(0x7f0000000000)=""/27, 0x1b)

0s ago: executing program 5 (id=2294):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder1\x00', 0x0, 0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000000c0))
ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  131.593401][ T2855] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  131.620723][ T2855] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  131.631812][ T2855] usb 7-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  131.649219][ T2855] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.659038][ T2855] usb 7-1: config 0 descriptor??
[  132.105504][ T6812] kvm [6811]: vcpu2, guest rIP: 0x9137 disabled perfctr wrmsr: 0xc1 data 0x98b8000000000000
[  132.108305][ T6815] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  132.143204][ T2855] keytouch 0003:0926:3333.0008: fixing up Keytouch IEC report descriptor
[  132.171191][ T2855] input: HID 0926:3333 as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/0003:0926:3333.0008/input/input16
[  132.186122][ T6812] kvm [6811]: vcpu2, guest rIP: 0x9137 disabled perfctr wrmsr: 0xc2 data 0x98b8000000000000
[  132.226561][ T6812] kvm [6811]: vcpu2, guest rIP: 0x9137 ignored wrmsr: 0x11e data 0x98b8000000000000
[  132.275527][ T6812] kvm [6811]: vcpu2, guest rIP: 0x9137 disabled perfctr wrmsr: 0x186 data 0x98b8000000000000
[  132.295439][ T2855] keytouch 0003:0926:3333.0008: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.6-1/input0
[  132.327803][ T6812] kvm [6811]: vcpu2, guest rIP: 0x9137 disabled perfctr wrmsr: 0x187 data 0x98b8000000000000
[  132.345924][ T6762] udc-core: couldn't find an available UDC or it's busy
[  132.361392][ T6762] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  132.508995][ T2855] usb 7-1: USB disconnect, device number 18
[  132.528059][ T6828] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  132.566843][ T6828] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  132.625456][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  132.631832][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  133.087081][ T6853] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  133.095938][ T6856] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  133.110547][ T6853] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  133.119439][ T6856] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  133.146230][ T6861] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  133.174910][ T6861] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  133.337499][ T6873] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  133.456668][ T6880] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  133.489973][ T6880] device syzkaller0 entered promiscuous mode
[  133.532680][ T6880] tipc: Resetting bearer <eth:syzkaller0>
[  133.661457][ T6879] tipc: Resetting bearer <eth:syzkaller0>
[  133.740521][ T6879] tipc: Disabling bearer <eth:syzkaller0>
[  134.077653][ T6912] syz.3.621 sent an empty control message without MSG_MORE.
[  134.294973][ T6935] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  134.548894][ T6952] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  134.578853][ T6952] device syzkaller0 entered promiscuous mode
[  134.621663][ T6952] tipc: Resetting bearer <eth:syzkaller0>
[  134.641498][ T6951] tipc: Resetting bearer <eth:syzkaller0>
[  134.656137][ T6951] tipc: Disabling bearer <eth:syzkaller0>
[  134.707168][ T2855] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  134.717603][ T2855] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  135.126667][ T6989] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  135.498811][ T7016] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  135.548022][ T7016] device syzkaller0 entered promiscuous mode
[  135.567664][ T7016] tipc: Resetting bearer <eth:syzkaller0>
[  135.585166][ T7015] tipc: Resetting bearer <eth:syzkaller0>
[  135.606068][ T7015] tipc: Disabling bearer <eth:syzkaller0>
[  135.777203][ T7032] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  135.812567][ T7024] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  135.822708][ T7032] device syzkaller0 entered promiscuous mode
[  135.856401][ T7030] kvm [7029]: vcpu2, guest rIP: 0x9137 disabled perfctr wrmsr: 0xc1 data 0x98b8000000000000
[  135.859411][ T7032] tipc: Resetting bearer <eth:syzkaller0>
[  135.871302][ T7030] kvm [7029]: vcpu2, guest rIP: 0x9137 disabled perfctr wrmsr: 0xc2 data 0x98b8000000000000
[  135.875090][ T7024] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  135.890410][ T7030] kvm [7029]: vcpu2, guest rIP: 0x9137 ignored wrmsr: 0x11e data 0x98b8000000000000
[  135.914508][ T7030] kvm [7029]: vcpu2, guest rIP: 0x9137 disabled perfctr wrmsr: 0x186 data 0x98b8000000000000
[  135.933441][ T7027] tipc: Resetting bearer <eth:syzkaller0>
[  135.967478][ T7030] kvm [7029]: vcpu2, guest rIP: 0x9137 disabled perfctr wrmsr: 0x187 data 0x98b8000000000000
[  135.978607][ T7027] tipc: Disabling bearer <eth:syzkaller0>
[  136.262240][ T7063] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  137.094002][ T7117] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  137.122982][ T7117] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  137.487148][ T7147] IPv6: addrconf: prefix option has invalid lifetime
[  137.610519][ T7151] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  137.747844][ T7154] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  138.104174][ T7180] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  138.125637][ T7180] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  138.477925][ T7215] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  138.937734][ T7250] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  138.967229][ T7250] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  139.007038][ T7264] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  139.022171][ T7264] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  139.022498][   T26] kauditd_printk_skb: 101 callbacks suppressed
[  139.022508][   T26] audit: type=1326 audit(1765130644.168:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7260 comm="syz.3.700" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fce80889749 code=0x0
[  139.171345][ T7255] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  139.179276][ T7255] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  139.222801][ T7268] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  139.240160][ T7268] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  139.584527][ T7287] loop5: detected capacity change from 0 to 8192
[  139.631227][ T7287] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  139.689371][ T7304] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  139.721356][ T7306] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  139.738031][ T7304] device syzkaller0 entered promiscuous mode
[  139.776708][ T7304] tipc: Resetting bearer <eth:syzkaller0>
[  139.796006][ T7303] tipc: Resetting bearer <eth:syzkaller0>
[  139.831342][ T7303] tipc: Disabling bearer <eth:syzkaller0>
[  140.192957][ T7328] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  140.823834][ T7366] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  141.418476][ T7390] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  141.914768][ T7423] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  141.952099][ T7420] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability
[  142.182522][ T7441] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  142.232944][ T7441] device syzkaller0 entered promiscuous mode
[  142.306728][ T7441] tipc: Resetting bearer <eth:syzkaller0>
[  142.343911][ T7440] tipc: Resetting bearer <eth:syzkaller0>
[  142.365579][ T7440] tipc: Disabling bearer <eth:syzkaller0>
[  142.407426][ T7451] loop3: detected capacity change from 0 to 128
[  142.438136][ T7447] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  142.511377][ T7451] FAT-fs (loop3): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  142.537794][ T7455] loop0: detected capacity change from 0 to 1024
[  142.624627][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #182!!!
[  142.646345][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #182!!!
[  142.656502][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #182!!!
[  142.668560][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #182!!!
[  142.678013][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #182!!!
[  142.686993][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #182!!!
[  142.698771][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #182!!!
[  142.709665][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #182!!!
[  142.718627][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #182!!!
[  143.800207][ T4254] Process accounting resumed
[  143.805006][ T4254] FAT-fs (loop3): error, corrupted file size (i_pos 548, 512)
[  143.819010][ T7455] EXT4-fs (loop0): Unrecognized mount option "mask=MAY_WRITE" or missing value
[  143.825887][ T4254] FAT-fs (loop3): Filesystem has been set read-only
[  145.097831][ T4189] FAT-fs (loop3): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  145.661722][ T7484] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  145.682896][ T7484] device syzkaller0 entered promiscuous mode
[  145.716416][ T7484] tipc: Resetting bearer <eth:syzkaller0>
[  145.751163][ T7483] tipc: Resetting bearer <eth:syzkaller0>
[  145.777392][ T7483] tipc: Disabling bearer <eth:syzkaller0>
[  145.795465][ T7486] loop6: detected capacity change from 0 to 8192
[  145.839871][ T7486] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  145.952773][ T7490] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  148.320120][ T7509] bridge0: port 1(bridge_slave_0) entered disabled state
[  149.253653][ T7520] xt_CT: You must specify a L4 protocol and not use inversions on it
[  149.464681][ T7528] loop6: detected capacity change from 0 to 512
[  149.510863][ T7528] EXT4-fs (loop6): Mount option "noacl" will be removed by 3.5
[  149.510863][ T7528] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  149.510863][ T7528] 
[  149.585196][ T7528] EXT4-fs (loop6): external journal device major/minor numbers have changed
[  149.713261][ T7531] device syzkaller0 entered promiscuous mode
[  149.790681][ T7528] EXT4-fs (loop6): failed to open journal device unknown-block(4,0) -6
[  149.986960][ T7528] loop6: detected capacity change from 0 to 512
[  150.055172][ T7528] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  150.159806][ T7528] EXT4-fs (loop6): filesystem is read-only
[  151.699286][ T7565] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  152.323551][ T7589] device syzkaller0 entered promiscuous mode
[  152.388914][ T7590] Invalid ELF header type: 25773 != 1
[  152.442150][ T7590] loop4: detected capacity change from 0 to 1024
[  153.711115][ T7616] loop0: detected capacity change from 0 to 8192
[  153.749069][ T7626] loop5: detected capacity change from 0 to 1024
[  153.859899][ T7632] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  154.328445][ T7645] device syzkaller0 entered promiscuous mode
[  154.406458][ T7649] device syzkaller0 entered promiscuous mode
[  154.599904][   T21] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  154.975713][ T7655] No such timeout policy "syz1"
[  155.799871][   T21] usb 1-1: Using ep0 maxpacket: 16
[  155.921802][   T21] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  155.950702][   T21] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  155.971598][   T21] usb 1-1: New USB device found, idVendor=056a, idProduct=0084, bcdDevice= 0.00
[  155.999991][   T21] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  156.070676][   T21] usb 1-1: config 0 descriptor??
[  156.222469][ T7690] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  157.459849][   T21] usbhid 1-1:0.0: can't add hid device: -71
[  157.465892][   T21] usbhid: probe of 1-1:0.0 failed with error -71
[  157.523267][   T21] usb 1-1: USB disconnect, device number 11
[  157.769775][    T7] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  158.069721][   T21] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  158.267147][    T7] usb 6-1: config 0 has an invalid interface number: 11 but max is 0
[  158.568838][    T7] usb 6-1: config 0 has no interface number 0
[  158.569938][   T21] usb 1-1: config 220 has an invalid interface number: 76 but max is 2
[  158.595832][    T7] usb 6-1: config 0 interface 11 altsetting 253 bulk endpoint 0x7 has invalid maxpacket 1024
[  158.619779][   T21] usb 1-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  158.626520][    T7] usb 6-1: config 0 interface 11 has no altsetting 0
[  158.655934][    T7] usb 6-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b
[  158.675423][   T21] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  158.685581][    T7] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  158.716679][   T21] usb 1-1: config 220 has no interface number 2
[  158.741851][    T7] usb 6-1: config 0 descriptor??
[  158.763346][   T21] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  158.769949][ T7699] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  158.790733][    T7] keyspan 6-1:0.11: Keyspan 2 port adapter converter detected
[  158.833073][    T7] keyspan 6-1:0.11: found no endpoint descriptor for endpoint 81
[  158.835720][   T21] usb 1-1: config 220 interface 0 has no altsetting 0
[  158.855233][    T7] keyspan 6-1:0.11: found no endpoint descriptor for endpoint 82
[  158.873821][    T7] keyspan 6-1:0.11: found no endpoint descriptor for endpoint 1
[  158.894080][    T7] keyspan 6-1:0.11: found no endpoint descriptor for endpoint 2
[  158.910830][   T21] usb 1-1: config 220 interface 76 has no altsetting 0
[  158.914362][    T7] keyspan 6-1:0.11: found no endpoint descriptor for endpoint 85
[  158.936032][    T7] keyspan 6-1:0.11: found no endpoint descriptor for endpoint 5
[  158.970293][   T21] usb 1-1: config 220 interface 1 has no altsetting 0
[  159.066366][    T7] usb 6-1: Keyspan 2 port adapter converter now attached to ttyUSB0
[  159.101925][    T7] keyspan 6-1:0.11: found no endpoint descriptor for endpoint 83
[  159.137002][    T7] keyspan 6-1:0.11: found no endpoint descriptor for endpoint 84
[  159.139897][   T21] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  159.195300][   T21] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  159.207956][    T7] keyspan 6-1:0.11: found no endpoint descriptor for endpoint 3
[  159.239178][   T21] usb 1-1: Product: syz
[  159.250690][   T21] usb 1-1: Manufacturer: syz
[  159.255324][   T21] usb 1-1: SerialNumber: syz
[  159.268991][    T7] keyspan 6-1:0.11: found no endpoint descriptor for endpoint 4
[  159.334105][    T7] keyspan 6-1:0.11: found no endpoint descriptor for endpoint 86
[  159.354772][ T7731] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  159.387238][    T7] keyspan 6-1:0.11: found no endpoint descriptor for endpoint 6
[  159.457751][ T7731] tipc: Resetting bearer <eth:syzkaller0>
[  159.466937][    T7] usb 6-1: Keyspan 2 port adapter converter now attached to ttyUSB1
[  159.539688][    T7] usb 6-1: USB disconnect, device number 12
[  159.611457][    T7] keyspan_2 ttyUSB0: Keyspan 2 port adapter converter now disconnected from ttyUSB0
[  159.670025][   T21] usb 1-1: Found UVC 7.01 device syz (8086:0b07)
[  159.670578][    T7] keyspan_2 ttyUSB1: Keyspan 2 port adapter converter now disconnected from ttyUSB1
[  159.686646][   T21] usb 1-1: No valid video chain found.
[  159.758707][   T21] usb 1-1: selecting invalid altsetting 0
[  159.809943][ T7730] tipc: Disabling bearer <eth:syzkaller0>
[  159.838404][    T7] keyspan 6-1:0.11: device disconnected
[  159.871525][   T21] usb 1-1: selecting invalid altsetting 0
[  159.897130][   T21] usbtest: probe of 1-1:220.1 failed with error -22
[  159.942818][   T21] usb 1-1: USB disconnect, device number 12
[  160.589744][   T21] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  160.604103][ T7750] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  160.926326][ T7760] netlink: 52 bytes leftover after parsing attributes in process `syz.5.819'.
[  160.960020][   T21] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  160.988931][   T21] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  161.037053][   T21] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  161.080749][   T21] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  161.125531][   T21] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  161.169191][   T21] usb 5-1: config 0 descriptor??
[  161.230940][ T4193] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  161.246387][ T4193] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  161.255435][ T7764] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  161.294470][    T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  161.406693][ T7771] loop0: detected capacity change from 0 to 512
[  161.522721][ T7772] device syzkaller0 entered promiscuous mode
[  161.537065][ T7771] EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5
[  161.537065][ T7771] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  161.537065][ T7771] 
[  161.655169][ T7771] EXT4-fs (loop0): external journal device major/minor numbers have changed
[  161.671393][   T21] plantronics 0003:047F:FFFF.0009: No inputs registered, leaving
[  161.746846][   T21] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  161.966975][ T7771] EXT4-fs (loop0): failed to open journal device unknown-block(4,0) -6
[  161.985103][ T7782] netlink: 52 bytes leftover after parsing attributes in process `syz.6.832'.
[  162.029691][ T7782] netlink: 52 bytes leftover after parsing attributes in process `syz.6.832'.
[  162.062734][ T7783] netlink: 52 bytes leftover after parsing attributes in process `syz.6.832'.
[  162.118449][ T2855] usb 5-1: USB disconnect, device number 13
[  162.154776][ T7771] loop0: detected capacity change from 0 to 512
[  162.252103][ T7771] EXT4-fs (loop0): filesystem is read-only
[  163.407541][ T7790] loop6: detected capacity change from 0 to 2048
[  163.552526][ T7794] loop5: detected capacity change from 0 to 512
[  163.580809][ T7796] netlink: 52 bytes leftover after parsing attributes in process `syz.4.836'.
[  163.595374][ T7790] EXT4-fs (loop6): Ignoring removed oldalloc option
[  163.698720][ T7790] EXT4-fs (loop6): mounted filesystem without journal. Opts: oldalloc,max_dir_size_kb=0x0000000000000004,norecovery,,errors=continue. Quota mode: none.
[  163.747672][ T7794] EXT4-fs (loop5): mounted filesystem without journal. Opts: minixdf,errors=remount-ro,errors=remount-ro,init_itable,barrier=0x0000000000000040,nodiscard,. Quota mode: writeback.
[  163.823475][ T7807] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  163.840892][ T7794] ext4 filesystem being mounted at /121/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  163.930938][ T7790] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1147: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  164.010978][ T7790] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 1 with error 28
[  164.097034][ T7819] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  164.249895][ T7790] EXT4-fs (loop6): This should not happen!! Data will be lost
[  164.249895][ T7790] 
[  164.306342][ T7790] EXT4-fs (loop6): Total free blocks count 0
[  164.351970][ T7790] EXT4-fs (loop6): Free/Dirty block details
[  164.373485][ T7819] EXT4-fs (loop6): This should not happen!! Data will be lost
[  164.373485][ T7819] 
[  164.394026][ T7819] EXT4-fs (loop6): Total free blocks count 0
[  164.406510][ T7790] EXT4-fs (loop6): free_blocks=2415919104
[  164.411561][ T7819] EXT4-fs (loop6): Free/Dirty block details
[  164.477726][ T7819] EXT4-fs (loop6): free_blocks=2415919104
[  165.532349][ T7836] device syzkaller0 entered promiscuous mode
[  165.548798][ T7844] loop4: detected capacity change from 0 to 512
[  165.607403][ T7842] loop6: detected capacity change from 0 to 2048
[  165.712880][ T7842] EXT4-fs (loop6): mounted filesystem without journal. Opts: dioread_lock,mb_optimize_scan=0x0000000000000001,quota,norecovery,auto_da_alloc,noquota,grpquota,barrier=0x0000000000000033,grpjquota=,jqfmt=vfsold,,errors=continue. Quota mode: writeback.
[  165.779524][ T7844] EXT4-fs (loop4): Mount option "noacl" will be removed by 3.5
[  165.779524][ T7844] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  165.779524][ T7844] 
[  167.037627][ T7844] EXT4-fs (loop4): external journal device major/minor numbers have changed
[  167.109538][ T7860] loop3: detected capacity change from 0 to 1024
[  167.162535][ T7844] EXT4-fs (loop4): failed to open journal device unknown-block(4,0) -6
[  167.229360][ T7860] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  167.260283][ T7863] netlink: 52 bytes leftover after parsing attributes in process `syz.5.849'.
[  167.335013][ T7844] loop4: detected capacity change from 0 to 512
[  167.443962][ T7844] EXT4-fs (loop4): filesystem is read-only
[  168.639703][ T4193] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  168.798248][ T7894] device syzkaller0 entered promiscuous mode
[  168.861165][ T7898] loop6: detected capacity change from 0 to 8
[  168.882276][ T7898] squashfs: Unknown parameter 'Nª'
[  169.039998][ T4193] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  169.049108][ T4193] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  169.072144][ T7905] netlink: 52 bytes leftover after parsing attributes in process `syz.3.864'.
[  170.168513][ T4193] usb 1-1: config 0 descriptor??
[  170.210688][ T4193] cp210x 1-1:0.0: cp210x converter detected
[  171.020897][ T7914] syz.3.867[7914] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  171.020953][ T7914] syz.3.867[7914] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  171.035269][ T7891] loop0: detected capacity change from 0 to 1024
[  171.301576][ T7917] loop6: detected capacity change from 0 to 1024
[  171.840433][ T7917] hfsplus: unable to parse mount options
[  171.895126][ T7891] EXT4-fs (loop0): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[  172.057993][ T7891] EXT4-fs (loop0): group descriptors corrupted!
[  172.169758][ T4193] cp210x 1-1:0.0: failed to get vendor val 0x370b size 1: -71
[  172.177272][ T4193] cp210x 1-1:0.0: querying part number failed
[  172.237482][ T4193] usb 1-1: cp210x converter now attached to ttyUSB0
[  172.289420][ T4193] usb 1-1: USB disconnect, device number 13
[  172.324215][ T4193] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  172.333426][ T7924] loop0: detected capacity change from 0 to 1024
[  172.342556][ T4193] cp210x 1-1:0.0: device disconnected
[  172.725429][ T7928] device syzkaller0 entered promiscuous mode
[  172.976120][ T7940] netlink: 52 bytes leftover after parsing attributes in process `syz.3.877'.
[  174.769962][ T7958] loop4: detected capacity change from 0 to 2048
[  175.097314][ T7958] UDF-fs: error (device loop4): udf_process_sequence: Primary Volume Descriptor not found!
[  175.110381][ T7958] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  175.343734][ T7963] loop3: detected capacity change from 0 to 1024
[  175.443196][ T7963] EXT4-fs (loop3): cluster size (1024) smaller than block size (4096)
[  175.584982][ T7974] capability: warning: `syz.5.886' uses deprecated v2 capabilities in a way that may be insecure
[  175.662855][ T4308] Bluetooth: hci1: command 0x0406 tx timeout
[  175.688240][ T7975] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  175.948316][ T7982] device syzkaller0 entered promiscuous mode
[  175.998788][ T7985] netlink: 52 bytes leftover after parsing attributes in process `syz.5.889'.
[  176.058513][ T7995] loop4: detected capacity change from 0 to 512
[  177.625250][ T8007] loop4: detected capacity change from 0 to 2048
[  177.654048][ T8007] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=3932051, location=3932051
[  177.677521][ T8014] loop3: detected capacity change from 0 to 8
[  177.681378][ T8013] loop0: detected capacity change from 0 to 512
[  177.702381][ T8014] squashfs: Unknown parameter 'Nª'
[  177.801570][ T8013] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  177.868577][ T8013] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2826: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  177.901387][ T8013] EXT4-fs (loop0): 1 truncate cleaned up
[  177.915126][ T8013] EXT4-fs (loop0): mounted filesystem without journal. Opts: init_itable=0x00000000000007ff,jqfmt=vfsold,debug_want_extra_isize=0x0000000000000066,user_xattr,nolazytime,quota,,errors=continue. Quota mode: writeback.
[  177.982963][   T26] audit: type=1800 audit(1765130683.128:114): pid=8013 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.882" name="file2" dev="loop0" ino=16 res=0 errno=0
[  178.678727][ T8033] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  178.738640][ T8036] netlink: 28 bytes leftover after parsing attributes in process `syz.3.904'.
[  178.873222][   T26] audit: type=1326 audit(1765130684.018:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8045 comm="syz.3.906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce80889749 code=0x7ffc0000
[  178.902621][ T8042] device syzkaller0 entered promiscuous mode
[  178.986958][   T26] audit: type=1326 audit(1765130684.048:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8045 comm="syz.3.906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce80889749 code=0x7ffc0000
[  179.089803][   T26] audit: type=1326 audit(1765130684.048:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8045 comm="syz.3.906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce80889749 code=0x7ffc0000
[  179.194113][ T8058] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  179.202551][   T26] audit: type=1326 audit(1765130684.058:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8045 comm="syz.3.906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fce80889749 code=0x7ffc0000
[  179.246995][ T8058] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  179.275947][   T26] audit: type=1326 audit(1765130684.058:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8045 comm="syz.3.906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce80889749 code=0x7ffc0000
[  180.477918][   T26] audit: type=1326 audit(1765130685.618:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8075 comm="syz.6.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda22e09749 code=0x7fc00000
[  180.545968][ T8083] netlink: 28 bytes leftover after parsing attributes in process `syz.3.918'.
[  180.790431][ T8093] device syzkaller0 entered promiscuous mode
[  180.806210][ T8090] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  180.849669][    T7] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  181.149776][    T7] usb 5-1: Using ep0 maxpacket: 32
[  181.217660][   T26] audit: type=1326 audit(1765130686.358:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8075 comm="syz.6.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fda22e005e7 code=0x7fc00000
[  181.263930][   T26] audit: type=1326 audit(1765130686.358:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8075 comm="syz.6.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fda22da5829 code=0x7fc00000
[  181.309453][   T26] audit: type=1326 audit(1765130686.358:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8075 comm="syz.6.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fda22da58ef code=0x7fc00000
[  181.332368][    T7] usb 5-1: config 0 has an invalid interface number: 12 but max is 0
[  181.346096][    T7] usb 5-1: config 0 has no interface number 0
[  181.475317][    T7] usb 5-1: config 0 interface 12 has no altsetting 0
[  183.091603][ T8137] netlink: 28 bytes leftover after parsing attributes in process `syz.5.933'.
[  183.109883][    T7] usb 5-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  183.118953][    T7] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  183.127523][    T7] usb 5-1: Product: syz
[  183.132346][    T7] usb 5-1: Manufacturer: syz
[  183.137146][    T7] usb 5-1: SerialNumber: syz
[  183.146255][    T7] usb 5-1: config 0 descriptor??
[  183.410192][ T8158] loop0: detected capacity change from 0 to 4096
[  183.464927][ T8166] device syzkaller0 entered promiscuous mode
[  183.547070][ T8158] EXT4-fs (loop0): Test dummy encryption mode enabled
[  183.576379][ T8158] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,grpquota,,errors=continue. Quota mode: writeback.
[  183.686590][ T8178] EXT4-fs (loop0): shut down requested (2)
[  183.690503][ T8158] EXT4-fs error (device loop0): ext4_do_update_inode:5218: inode #15: comm syz.0.937: corrupted inode contents
[  183.937273][ T8158] syz.0.937 (8158) used greatest stack depth: 20704 bytes left
[  183.959076][ T4895] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  183.988352][ T4895] __quota_error: 1 callbacks suppressed
[  183.988366][ T4895] Quota error (device loop0): write_blk: dquota write failed
[  183.991152][ T8183] netlink: 16 bytes leftover after parsing attributes in process `syz.3.945'.
[  183.994561][ T4895] Quota error (device loop0): free_dqentry: Can't write quota data block 5
[  185.489723][    T7] f81534 5-1:0.12: f81534_set_register: reg: 1002 data: 0 failed: -71
[  185.506017][    T7] f81534 5-1:0.12: f81534_find_config_idx: read failed: -71
[  185.531978][    T7] f81534 5-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  185.557200][    T7] f81534: probe of 5-1:0.12 failed with error -71
[  185.588214][ T8205] device syzkaller0 entered promiscuous mode
[  185.594593][    T7] usb 5-1: USB disconnect, device number 14
[  187.062041][ T4254] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  187.454694][   T13] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  187.469853][   T13] Bluetooth: hci0: Injecting HCI hardware error event
[  187.501295][ T4197] Bluetooth: hci0: hardware error 0x00
[  187.979791][ T4254] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  188.061960][ T4254] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  188.085401][ T8238] loop3: detected capacity change from 0 to 512
[  188.112536][ T4254] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  188.127826][ T4254] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  188.140260][ T4254] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.162447][ T4254] usb 6-1: config 0 descriptor??
[  188.186483][ T8238] EXT4-fs (loop3): 1 truncate cleaned up
[  188.207747][ T8238] EXT4-fs (loop3): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000003,,errors=continue. Quota mode: none.
[  188.281771][ T8238] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.963: bg 0: block 465: padding at end of block bitmap is not set
[  188.317679][ T8238] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  188.335408][ T8238] EXT4-fs (loop3): This should not happen!! Data will be lost
[  188.335408][ T8238] 
[  188.345218][ T8238] EXT4-fs (loop3): Total free blocks count 0
[  188.357026][ T8238] EXT4-fs (loop3): Free/Dirty block details
[  188.363056][ T8238] EXT4-fs (loop3): free_blocks=0
[  188.368170][ T8238] EXT4-fs (loop3): dirty_blocks=66
[  188.381469][ T8238] EXT4-fs (loop3): Block reservation details
[  188.387541][ T8238] EXT4-fs (loop3): i_reserved_data_blocks=66
[  188.485322][ T5760] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 64 with error 28
[  188.505049][ T5760] EXT4-fs (loop3): This should not happen!! Data will be lost
[  188.505049][ T5760] 
[  189.649828][ T4254] usbhid 6-1:0.0: can't add hid device: -71
[  189.655867][ T4254] usbhid: probe of 6-1:0.0 failed with error -71
[  189.675072][ T4254] usb 6-1: USB disconnect, device number 13
[  189.907619][ T8264] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  191.580327][ T4295] Bluetooth: hci2: command 0x0406 tx timeout
[  191.659180][ T8279] device syzkaller0 entered promiscuous mode
[  191.960441][ T8288] loop4: detected capacity change from 0 to 128
[  192.048387][ T8288] attempt to access beyond end of device
[  192.048387][ T8288] loop4: rw=2049, want=148, limit=128
[  193.957545][ T8288] attempt to access beyond end of device
[  193.957545][ T8288] loop4: rw=2049, want=745, limit=128
[  194.076220][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  194.082542][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  196.086595][ T8301] No such timeout policy "syz1"
[  196.328556][ T4193] Bluetooth: hci4: command 0x0406 tx timeout
[  196.518059][ T4895] attempt to access beyond end of device
[  196.518059][ T4895] loop4: rw=1, want=161, limit=128
[  196.564718][ T4895] attempt to access beyond end of device
[  196.564718][ T4895] loop4: rw=1, want=218, limit=128
[  197.771835][ T8313] loop4: detected capacity change from 0 to 128
[  198.331104][ T8315] loop0: detected capacity change from 0 to 2048
[  198.708794][ T8315] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found!
[  198.740417][ T8315] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  198.840530][ T8313] EXT4-fs (loop4): mounted filesystem without journal. Opts: quota,,errors=continue. Quota mode: writeback.
[  198.883093][ T8313] ext4 filesystem being mounted at /216/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  199.359808][ T8324] device syzkaller0 entered promiscuous mode
[  199.669884][ T4295] Bluetooth: hci2: command 0x0405 tx timeout
[  199.717537][   T21] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  199.979739][ T4295] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[  200.109928][   T21] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  201.224528][   T21] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  201.380862][   T21] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  201.389957][ T8364] device syzkaller0 entered promiscuous mode
[  201.733372][   T21] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  202.027470][   T21] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  202.129669][ T4295] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  202.199879][   T21] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  202.199961][ T4295] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  202.209026][   T21] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  202.209049][   T21] usb 6-1: Product: syz
[  202.209062][   T21] usb 6-1: Manufacturer: syz
[  202.270460][   T21] cdc_wdm 6-1:1.0: skipping garbage
[  202.275762][   T21] cdc_wdm 6-1:1.0: skipping garbage
[  202.300968][ T4295] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  202.310414][   T21] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  202.328094][ T4295] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  202.337554][ T4295] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  202.340656][   T21] cdc_wdm 6-1:1.0: Unknown control protocol
[  202.373304][ T4295] usb 7-1: config 0 descriptor??
[  202.447778][ T4695] usb 6-1: USB disconnect, device number 14
[  202.717423][ T8379] 9pnet: Insufficient options for proto=fd
[  202.882029][ T4295] plantronics 0003:047F:FFFF.000A: No inputs registered, leaving
[  202.927066][ T4295] plantronics 0003:047F:FFFF.000A: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[  203.232549][    T7] usb 7-1: USB disconnect, device number 19
[  205.319176][ T8417] device syzkaller0 entered promiscuous mode
[  205.619642][ T8431] 9pnet: Insufficient options for proto=fd
[  206.868787][ T8445] 9pnet: Insufficient options for proto=fd
[  207.099899][   T24] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  207.530126][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  207.549753][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  207.642939][   T24] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  207.659371][   T24] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  207.699805][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  207.768666][   T24] usb 4-1: config 0 descriptor??
[  208.221051][ T8467] netlink: 104 bytes leftover after parsing attributes in process `syz.5.1023'.
[  209.351782][   T24] plantronics 0003:047F:FFFF.000B: No inputs registered, leaving
[  209.423824][   T24] plantronics 0003:047F:FFFF.000B: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  211.628665][   T24] usb 4-1: USB disconnect, device number 15
[  211.899458][ T8487] fido_id[8487]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  212.775275][ T8490] device syzkaller0 entered promiscuous mode
[  212.969709][ T4193] usb 4-1: new full-speed USB device number 16 using dummy_hcd
[  213.119265][ T8496] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1040'.
[  213.240821][ T8503] device syzkaller0 entered promiscuous mode
[  214.491713][ T4193] usb 4-1: config 0 has an invalid interface number: 3 but max is 0
[  214.500335][ T8514] device syzkaller0 entered promiscuous mode
[  214.500546][ T4193] usb 4-1: config 0 has no interface number 0
[  214.512923][ T4193] usb 4-1: New USB device found, idVendor=1199, idProduct=6821, bcdDevice=98.59
[  214.522223][ T4193] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  214.585009][ T8516] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  214.591298][ T4193] usb 4-1: config 0 descriptor??
[  214.648876][ T4193] hub 4-1:0.3: bad descriptor, ignoring hub
[  214.688902][ T4193] hub: probe of 4-1:0.3 failed with error -5
[  214.697143][ T4193] sierra 4-1:0.3: Sierra USB modem converter detected
[  214.722199][ T8516] device syzkaller0 entered promiscuous mode
[  214.743869][ T8527] tipc: Resetting bearer <eth:syzkaller0>
[  214.814912][ T8515] tipc: Resetting bearer <eth:syzkaller0>
[  214.846657][ T8515] tipc: Disabling bearer <eth:syzkaller0>
[  214.861374][ T4193] usb 4-1: Sierra USB modem converter now attached to ttyUSB0
[  214.930827][ T4193] usb 4-1: USB disconnect, device number 16
[  214.968707][ T4193] sierra ttyUSB0: Sierra USB modem converter now disconnected from ttyUSB0
[  215.025678][ T4193] sierra 4-1:0.3: device disconnected
[  215.051497][ T8535] device syzkaller0 entered promiscuous mode
[  215.265678][ T8542] device syzkaller0 entered promiscuous mode
[  215.479313][ T8548] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1053'.
[  215.626556][ T8553] device syzkaller0 entered promiscuous mode
[  215.931824][ T8567] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  215.939240][ T8567] device syzkaller0 entered promiscuous mode
[  215.948035][ T8569] device syzkaller0 entered promiscuous mode
[  215.960837][ T8567] tipc: Resetting bearer <eth:syzkaller0>
[  215.969268][ T8565] tipc: Resetting bearer <eth:syzkaller0>
[  215.978465][ T8565] tipc: Disabling bearer <eth:syzkaller0>
[  216.171184][ T8579] 9pnet: Insufficient options for proto=fd
[  216.287669][ T8581] device syzkaller0 entered promiscuous mode
[  216.437635][ T8589] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1066'.
[  216.559002][ T8592] device syzkaller0 entered promiscuous mode
[  216.624320][ T8597] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  216.733082][ T8593] device syzkaller0 entered promiscuous mode
[  216.842283][ T8608] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  216.849165][ T8611] device syzkaller0 entered promiscuous mode
[  216.856452][ T8608] device syzkaller0 entered promiscuous mode
[  216.879458][ T8608] tipc: Resetting bearer <eth:syzkaller0>
[  216.895340][ T8606] tipc: Resetting bearer <eth:syzkaller0>
[  216.938750][ T8606] tipc: Disabling bearer <eth:syzkaller0>
[  216.968154][ T8619] 9pnet: Insufficient options for proto=fd
[  217.223697][ T8637] device syzkaller0 entered promiscuous mode
[  217.342392][ T8642] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1081'.
[  217.497788][ T8648] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  217.639248][ T8651] device syzkaller0 entered promiscuous mode
[  218.951040][ T8663] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  218.958495][ T8666] device syzkaller0 entered promiscuous mode
[  218.973997][ T8663] device syzkaller0 entered promiscuous mode
[  219.040370][ T8663] tipc: Resetting bearer <eth:syzkaller0>
[  219.060704][ T8669] 9pnet: Insufficient options for proto=fd
[  219.082757][ T8662] tipc: Resetting bearer <eth:syzkaller0>
[  219.120650][ T8662] tipc: Disabling bearer <eth:syzkaller0>
[  219.337907][ T8681] device syzkaller0 entered promiscuous mode
[  219.351799][ T8685] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1096'.
[  219.373242][ T8686] device syzkaller0 entered promiscuous mode
[  219.515024][ T8689] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  219.795106][ T8703] device syzkaller0 entered promiscuous mode
[  219.858660][ T8717] device syzkaller0 entered promiscuous mode
[  220.034125][ T8725] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  220.051303][ T8725] device syzkaller0 entered promiscuous mode
[  220.079714][ T8725] tipc: Resetting bearer <eth:syzkaller0>
[  220.097269][ T8724] tipc: Resetting bearer <eth:syzkaller0>
[  220.200374][ T8724] tipc: Disabling bearer <eth:syzkaller0>
[  220.217744][ T8737] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1109'.
[  220.383950][ T8742] device syzkaller0 entered promiscuous mode
[  220.438064][ T8745] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  220.716138][ T8761] device syzkaller0 entered promiscuous mode
[  220.811320][ T8763] device syzkaller0 entered promiscuous mode
[  220.965251][ T8777] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  220.997814][ T8777] device syzkaller0 entered promiscuous mode
[  221.035813][ T8777] tipc: Resetting bearer <eth:syzkaller0>
[  221.048022][ T8775] tipc: Resetting bearer <eth:syzkaller0>
[  221.063885][ T8775] tipc: Disabling bearer <eth:syzkaller0>
[  221.190499][ T8791] device syzkaller0 entered promiscuous mode
[  221.267643][ T8796] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  221.672063][ T8825] device syzkaller0 entered promiscuous mode
[  221.823032][ T8828] device syzkaller0 entered promiscuous mode
[  221.920985][ T8837] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  221.933440][ T8837] device syzkaller0 entered promiscuous mode
[  221.950959][ T8837] tipc: Resetting bearer <eth:syzkaller0>
[  221.964113][ T8836] tipc: Resetting bearer <eth:syzkaller0>
[  221.976964][ T8836] tipc: Disabling bearer <eth:syzkaller0>
[  222.132292][ T8850] device syzkaller0 entered promiscuous mode
[  222.152252][ T8844] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  222.615213][ T8882] device syzkaller0 entered promiscuous mode
[  222.775149][ T8889] device syzkaller0 entered promiscuous mode
[  222.847613][ T8899] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  222.864456][ T8899] device syzkaller0 entered promiscuous mode
[  222.904242][ T8901] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  222.916607][ T8899] tipc: Resetting bearer <eth:syzkaller0>
[  222.929482][ T8898] tipc: Resetting bearer <eth:syzkaller0>
[  222.946081][ T8898] tipc: Disabling bearer <eth:syzkaller0>
[  222.964334][ T8905] device syzkaller0 entered promiscuous mode
[  223.015176][ T8907] netlink: 'syz.6.1162': attribute type 5 has an invalid length.
[  223.026673][ T8907] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1162'.
[  223.510063][ T8936] device syzkaller0 entered promiscuous mode
[  223.695925][ T8948] device syzkaller0 entered promiscuous mode
[  223.745426][ T8953] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  223.773747][ T8950] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  223.790879][ T8956] netlink: 'syz.3.1175': attribute type 5 has an invalid length.
[  223.799152][ T8956] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1175'.
[  223.817820][ T8953] device syzkaller0 entered promiscuous mode
[  223.867750][ T8958] device syzkaller0 entered promiscuous mode
[  223.884473][ T8953] tipc: Resetting bearer <eth:syzkaller0>
[  223.923077][ T8964] 9pnet: Insufficient options for proto=fd
[  223.950120][ T8952] tipc: Resetting bearer <eth:syzkaller0>
[  223.977478][ T8952] tipc: Disabling bearer <eth:syzkaller0>
[  224.413909][ T8994] device syzkaller0 entered promiscuous mode
[  224.511714][ T9005] netlink: 'syz.3.1188': attribute type 5 has an invalid length.
[  224.521760][ T9005] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1188'.
[  224.692617][ T9017] device syzkaller0 entered promiscuous mode
[  224.713560][ T9019] 9pnet: Insufficient options for proto=fd
[  224.820923][ T9022] device syzkaller0 entered promiscuous mode
[  224.909159][ T9026] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  224.918211][ T9026] device syzkaller0 entered promiscuous mode
[  224.934823][ T9026] tipc: Resetting bearer <eth:syzkaller0>
[  224.979556][ T9025] tipc: Resetting bearer <eth:syzkaller0>
[  225.013773][ T9025] tipc: Disabling bearer <eth:syzkaller0>
[  225.319147][ T9051] device syzkaller0 entered promiscuous mode
[  225.513682][ T9059] device syzkaller0 entered promiscuous mode
[  225.585408][ T9076] 9pnet: Insufficient options for proto=fd
[  225.591959][ T9071] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  225.752475][ T9080] device syzkaller0 entered promiscuous mode
[  225.768046][ T9078] device syzkaller0 entered promiscuous mode
[  225.816562][ T9090] 9pnet: Insufficient options for proto=fd
[  225.872369][ T9089] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  225.880293][ T9089] device syzkaller0 entered promiscuous mode
[  225.945271][ T9089] tipc: Resetting bearer <eth:syzkaller0>
[  226.002943][ T9088] tipc: Resetting bearer <eth:syzkaller0>
[  226.057557][ T9088] tipc: Disabling bearer <eth:syzkaller0>
[  226.275980][ T9112] device syzkaller0 entered promiscuous mode
[  226.424710][ T9124] device syzkaller0 entered promiscuous mode
[  226.459909][ T9122] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  226.531420][ T9130] device syzkaller0 entered promiscuous mode
[  226.605905][ T9134] device syzkaller0 entered promiscuous mode
[  226.842460][ T9149] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  226.855022][ T9149] device syzkaller0 entered promiscuous mode
[  226.914886][ T9149] tipc: Resetting bearer <eth:syzkaller0>
[  226.989814][ T9148] tipc: Resetting bearer <eth:syzkaller0>
[  227.006461][ T9148] tipc: Disabling bearer <eth:syzkaller0>
[  227.238987][ T9170] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  227.406613][ T9168] device syzkaller0 entered promiscuous mode
[  227.467547][ T9195] 9pnet: Insufficient options for proto=fd
[  227.569789][ T9197] device syzkaller0 entered promiscuous mode
[  227.625389][ T9202] device syzkaller0 entered promiscuous mode
[  227.835286][ T9212] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  227.866737][ T9212] device syzkaller0 entered promiscuous mode
[  227.914533][ T9212] tipc: Resetting bearer <eth:syzkaller0>
[  227.976440][ T9211] tipc: Resetting bearer <eth:syzkaller0>
[  228.003606][ T9211] tipc: Disabling bearer <eth:syzkaller0>
[  228.136186][ T9234] device syzkaller0 entered promiscuous mode
[  228.276751][ T9240] device syzkaller0 entered promiscuous mode
[  228.328803][ T9245] device syzkaller0 entered promiscuous mode
[  228.362879][ T9242] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  228.527106][ T9256] device syzkaller0 entered promiscuous mode
[  228.896455][ T9282] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  228.909330][ T9282] device syzkaller0 entered promiscuous mode
[  228.976036][ T9282] tipc: Resetting bearer <eth:syzkaller0>
[  229.021468][ T9292] 9pnet: Insufficient options for proto=fd
[  229.035198][ T9289] device syzkaller0 entered promiscuous mode
[  229.044405][ T9291] device syzkaller0 entered promiscuous mode
[  229.056811][ T9279] tipc: Resetting bearer <eth:syzkaller0>
[  229.073537][ T9279] tipc: Disabling bearer <eth:syzkaller0>
[  229.185499][ T9297] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  229.274452][ T9303] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1272'.
[  229.315940][ T9307] device syzkaller0 entered promiscuous mode
[  229.326212][ T9308] device syzkaller0 entered promiscuous mode
[  229.666032][ T9325] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  229.747819][ T9334] device syzkaller0 entered promiscuous mode
[  229.777356][ T9325] tipc: Resetting bearer <eth:syzkaller0>
[  229.827390][ T9324] tipc: Resetting bearer <eth:syzkaller0>
[  229.866349][ T9324] tipc: Disabling bearer <eth:syzkaller0>
[  229.941274][ T9345] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  229.964861][ T9341] device syzkaller0 entered promiscuous mode
[  230.008272][ T9337] device syzkaller0 entered promiscuous mode
[  230.112169][ T9355] netlink: 52 bytes leftover after parsing attributes in process `syz.6.1287'.
[  230.149846][ T9357] device syzkaller0 entered promiscuous mode
[  230.165353][ T9360] device syzkaller0 entered promiscuous mode
[  230.568794][ T9379] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  230.590632][ T9379] tipc: Resetting bearer <eth:syzkaller0>
[  230.647475][ T9378] tipc: Disabling bearer <eth:syzkaller0>
[  230.720679][ T9385] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  230.740287][ T9390] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1300'.
[  230.832653][ T9396] device syzkaller0 entered promiscuous mode
[  230.923910][ T9400] device syzkaller0 entered promiscuous mode
[  231.004949][ T9407] device syzkaller0 entered promiscuous mode
[  231.013132][ T9404] device syzkaller0 entered promiscuous mode
[  231.288671][ T9422] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  231.348245][ T9426] tipc: Resetting bearer <eth:syzkaller0>
[  231.383407][ T9428] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  231.408925][ T9421] tipc: Disabling bearer <eth:syzkaller0>
[  231.547683][ T9435] netlink: 52 bytes leftover after parsing attributes in process `syz.5.1313'.
[  231.814171][ T9453] device syzkaller0 entered promiscuous mode
[  231.823925][ T9461] device syzkaller0 entered promiscuous mode
[  231.988236][ T9470] device syzkaller0 entered promiscuous mode
[  232.075278][ T9476] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  232.155266][ T9480] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  232.165653][ T9480] tipc: Resetting bearer <eth:syzkaller0>
[  232.174904][ T9479] tipc: Disabling bearer <eth:syzkaller0>
[  232.264018][ T9485] netlink: 52 bytes leftover after parsing attributes in process `syz.6.1329'.
[  232.328586][ T9487] device syzkaller0 entered promiscuous mode
[  233.658145][ T9495] device syzkaller0 entered promiscuous mode
[  233.915095][ T9514] device syzkaller0 entered promiscuous mode
[  233.982382][ T9519] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  234.028440][ T9522] device syzkaller0 entered promiscuous mode
[  234.165886][ T9524] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1342'.
[  234.287045][ T9535] device syzkaller0 entered promiscuous mode
[  234.371775][ T9541] device syzkaller0 entered promiscuous mode
[  234.544014][ T9548] device syzkaller0 entered promiscuous mode
[  234.794046][ T9560] device syzkaller0 entered promiscuous mode
[  234.851899][ T9566] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  234.924828][ T9569] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1356'.
[  234.986708][ T9571] device syzkaller0 entered promiscuous mode
[  235.118389][ T9576] device syzkaller0 entered promiscuous mode
[  235.375961][ T9590] device syzkaller0 entered promiscuous mode
[  235.530157][ T9603] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  235.555261][ T9598] device syzkaller0 entered promiscuous mode
[  235.704443][ T9609] device syzkaller0 entered promiscuous mode
[  235.770816][ T9616] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1369'.
[  235.977498][ T9633] device syzkaller0 entered promiscuous mode
[  236.294529][ T9649] device syzkaller0 entered promiscuous mode
[  236.328705][ T9644] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  236.385748][ T9644] device syzkaller0 entered promiscuous mode
[  236.440262][ T9655] netlink: 52 bytes leftover after parsing attributes in process `syz.5.1382'.
[  236.529741][ T9658] device syzkaller0 entered promiscuous mode
[  236.557058][ T9660] device syzkaller0 entered promiscuous mode
[  236.828506][ T9674] device syzkaller0 entered promiscuous mode
[  237.089135][ T9698] netlink: 52 bytes leftover after parsing attributes in process `syz.6.1396'.
[  237.199381][ T9696] device syzkaller0 entered promiscuous mode
[  237.225955][ T9703] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  237.246889][ T9699] device syzkaller0 entered promiscuous mode
[  237.274004][ T9701] device syzkaller0 entered promiscuous mode
[  238.418825][ T9705] device syzkaller0 entered promiscuous mode
[  238.728104][ T9721] device syzkaller0 entered promiscuous mode
[  238.951298][ T9734] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1410'.
[  239.050567][ T9730] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  239.260829][ T9750] device syzkaller0 entered promiscuous mode
[  239.282764][ T9749] device syzkaller0 entered promiscuous mode
[  239.327745][ T9755] device syzkaller0 entered promiscuous mode
[  239.417800][ T9757] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  239.473626][ T9762] device syzkaller0 entered promiscuous mode
[  239.632616][ T9771] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1422'.
[  239.729740][ T9768] device syzkaller0 entered promiscuous mode
[  239.845656][ T9789] 9pnet: Insufficient options for proto=fd
[  239.924498][ T9783] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  240.113894][ T9801] device syzkaller0 entered promiscuous mode
[  240.150120][ T9802] device syzkaller0 entered promiscuous mode
[  240.222410][ T9808] device syzkaller0 entered promiscuous mode
[  241.615767][ T9827] 9pnet: Insufficient options for proto=fd
[  241.780238][ T9822] device syzkaller0 entered promiscuous mode
[  241.973322][ T9842] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[  242.019616][ T9842] device syzkaller0 entered promiscuous mode
[  242.099047][ T9846] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  242.145669][ T9852] device syzkaller0 entered promiscuous mode
[  243.342151][ T9866] device syzkaller0 entered promiscuous mode
[  243.414541][ T9869] 9pnet: Insufficient options for proto=fd
[  243.814582][ T9887] device syzkaller0 entered promiscuous mode
[  243.989963][ T9896] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[  244.030191][ T9897] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  244.056505][ T9896] device syzkaller0 entered promiscuous mode
[  245.211243][ T9903] device syzkaller0 entered promiscuous mode
[  245.434205][ T9914] device syzkaller0 entered promiscuous mode
[  245.827105][ T9941] device syzkaller0 entered promiscuous mode
[  245.876480][ T9939] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  247.162076][ T9953] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[  247.201644][ T9957] device syzkaller0 entered promiscuous mode
[  247.220355][ T9953] device syzkaller0 entered promiscuous mode
[  247.267141][ T9960] device syzkaller0 entered promiscuous mode
[  248.980667][ T9984] device syzkaller0 entered promiscuous mode
[  249.242806][ T9999] device syzkaller0 entered promiscuous mode
[  249.272965][T10006] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[  249.315349][T10009] device syzkaller0 entered promiscuous mode
[  249.368711][T10006] device syzkaller0 entered promiscuous mode
[  249.512146][T10016] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  251.116241][T10052] device syzkaller0 entered promiscuous mode
[  251.144235][T10051] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[  251.182076][T10051] device syzkaller0 entered promiscuous mode
[  251.191598][T10053] device syzkaller0 entered promiscuous mode
[  252.180496][T10075] device syzkaller0 entered promiscuous mode
[  252.563542][T10094] device syzkaller0 entered promiscuous mode
[  252.629698][T10096] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[  252.654502][T10096] device syzkaller0 entered promiscuous mode
[  253.444691][T10104] device syzkaller0 entered promiscuous mode
[  253.756161][T10118] device syzkaller0 entered promiscuous mode
[  254.017780][T10134] device syzkaller0 entered promiscuous mode
[  254.143796][T10136] device syzkaller0 entered promiscuous mode
[  254.390082][T10156] device syzkaller0 entered promiscuous mode
[  254.784215][T10174] device syzkaller0 entered promiscuous mode
[  254.924311][T10182] device syzkaller0 entered promiscuous mode
[  254.977194][T10180] device syzkaller0 entered promiscuous mode
[  255.511396][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  255.517699][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  256.596831][T10229] device syzkaller0 entered promiscuous mode
[  256.602099][T10222] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  257.579931][T10245] device syzkaller0 entered promiscuous mode
[  257.677393][T10247] device syzkaller0 entered promiscuous mode
[  257.776123][T10250] device syzkaller0 entered promiscuous mode
[  258.003936][T10267] device syzkaller0 entered promiscuous mode
[  258.046147][T10263] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  259.157488][T10293] device syzkaller0 entered promiscuous mode
[  259.238463][T10297] device syzkaller0 entered promiscuous mode
[  259.482511][T10305] device syzkaller0 entered promiscuous mode
[  259.522341][T10308] device syzkaller0 entered promiscuous mode
[  260.458132][T10327] device syzkaller0 entered promiscuous mode
[  260.785181][T10341] device syzkaller0 entered promiscuous mode
[  260.855662][T10348] device syzkaller0 entered promiscuous mode
[  262.595115][T10373] device syzkaller0 entered promiscuous mode
[  263.835336][T10397] device syzkaller0 entered promiscuous mode
[  263.876783][T10400] device syzkaller0 entered promiscuous mode
[  264.031188][T10402] device syzkaller0 entered promiscuous mode
[  264.378135][T10420] device syzkaller0 entered promiscuous mode
[  265.403534][T10442] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  265.419781][T10442] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  265.548048][T10450] device syzkaller0 entered promiscuous mode
[  265.617219][T10451] device syzkaller0 entered promiscuous mode
[  265.735970][T10455] device syzkaller0 entered promiscuous mode
[  267.442817][T10492] device syzkaller0 entered promiscuous mode
[  267.535337][T10501] device syzkaller0 entered promiscuous mode
[  267.797990][T10508] device syzkaller0 entered promiscuous mode
[  267.827896][T10509] device syzkaller0 entered promiscuous mode
[  270.140662][T10555] device syzkaller0 entered promiscuous mode
[  270.300481][T10558] device syzkaller0 entered promiscuous mode
[  270.623196][T10564] device syzkaller0 entered promiscuous mode
[  270.855864][T10574] device syzkaller0 entered promiscuous mode
[  271.661624][T10604] device syzkaller0 entered promiscuous mode
[  271.785998][T10611] device syzkaller0 entered promiscuous mode
[  272.489944][T10622] device syzkaller0 entered promiscuous mode
[  272.545458][T10625] device syzkaller0 entered promiscuous mode
[  272.640095][T10627] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  273.553027][T10654] device syzkaller0 entered promiscuous mode
[  274.361587][T10680] device syzkaller0 entered promiscuous mode
[  274.504020][T10688] device syzkaller0 entered promiscuous mode
[  274.573542][T10691] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  276.232981][T10717] device syzkaller0 entered promiscuous mode
[  276.780712][T10731] device syzkaller0 entered promiscuous mode
[  278.804676][T10755] device syzkaller0 entered promiscuous mode
[  279.180972][ T4308] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  279.200749][ T4308] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  279.230303][ T4696] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  279.300740][T10774] device syzkaller0 entered promiscuous mode
[  281.976179][T10812] device syzkaller0 entered promiscuous mode
[  282.709998][T10826] device syzkaller0 entered promiscuous mode
[  282.973840][T10835] device syzkaller0 entered promiscuous mode
[  286.152356][T10897] device syzkaller0 entered promiscuous mode
[  286.408140][ T4696] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  286.441338][ T4696] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  286.467631][ T4241] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  286.769360][T10918] loop2: detected capacity change from 0 to 7
[  286.834201][T10915] device syzkaller0 entered promiscuous mode
[  286.875091][T10918] Dev loop2: unable to read RDB block 7
[  286.968387][T10918]  loop2: unable to read partition table
[  287.109114][T10918] loop2: partition table beyond EOD, truncated
[  287.215703][T10918] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  289.004863][T10956] device syzkaller0 entered promiscuous mode
[  291.738803][T11025] netlink: 'syz.5.1778': attribute type 1 has an invalid length.
[  291.752831][T11021] loop4: detected capacity change from 0 to 164
[  291.839707][T11025] netlink: 'syz.5.1778': attribute type 2 has an invalid length.
[  291.961328][T11029] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  292.002365][T11029] device syzkaller0 entered promiscuous mode
[  292.348631][T11021] ISOFS: unable to read i-node block
[  292.421301][T11021] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  295.463595][T11068] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  295.563250][T11068] tipc: Resetting bearer <eth:syzkaller0>
[  295.582834][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  295.600622][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  295.641395][ T4193] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  295.857572][T11067] tipc: Disabling bearer <eth:syzkaller0>
[  295.893302][T11076] device syzkaller0 entered promiscuous mode
[  297.858281][ T4895] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  297.959118][ T4895] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  298.212600][ T4895] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  299.051746][ T4895] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  299.509726][ T4895] tipc: Left network mode
[  299.637530][T11128] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  299.657381][T11128] tipc: Resetting bearer <eth:syzkaller0>
[  299.702218][T11126] tipc: Disabling bearer <eth:syzkaller0>
[  299.878908][ T4241] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  299.901597][ T4241] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  299.959402][ T4695] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  300.308849][T11162] device syzkaller0 entered promiscuous mode
[  301.357543][T11155] device syzkaller0 entered promiscuous mode
[  301.424869][T11152] chnl_net:caif_netlink_parms(): no params data found
[  301.445587][T11171] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  301.495888][T11172] device syzkaller0 entered promiscuous mode
[  301.755132][T11152] bridge0: port 1(bridge_slave_0) entered blocking state
[  301.768877][T11152] bridge0: port 1(bridge_slave_0) entered disabled state
[  301.778292][T11152] device bridge_slave_0 entered promiscuous mode
[  301.787029][T11152] bridge0: port 2(bridge_slave_1) entered blocking state
[  301.794359][T11152] bridge0: port 2(bridge_slave_1) entered disabled state
[  301.802827][T11152] device bridge_slave_1 entered promiscuous mode
[  302.059708][ T4695] Bluetooth: hci4: command 0x0409 tx timeout
[  302.504235][T11189] loop5: detected capacity change from 0 to 2048
[  302.578289][T11189] UDF-fs: error (device loop5): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  302.633565][T11152] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  302.640185][T11189] UDF-fs: error (device loop5): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  302.672345][T11152] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  302.711101][T11189] UDF-fs: error (device loop5): udf_read_tagged: tag checksum failed, block 160: 0x0b != 0xd4
[  302.737539][T11189] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  303.599022][T11152] team0: Port device team_slave_0 added
[  303.641599][T11152] team0: Port device team_slave_1 added
[  303.980809][T11152] batman_adv: batadv0: Adding interface: batadv_slave_0
[  303.993918][T11152] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  304.114150][T11152] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  304.144791][ T4695] Bluetooth: hci4: command 0x041b tx timeout
[  304.154238][T11224] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  304.235722][T11224] tipc: Disabling bearer <eth:syzkaller0>
[  304.279267][T11152] batman_adv: batadv0: Adding interface: batadv_slave_1
[  304.315083][T11152] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  304.440178][T11152] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  305.587001][ T4895] device hsr_slave_0 left promiscuous mode
[  305.596506][ T4895] device hsr_slave_1 left promiscuous mode
[  305.603433][ T4895] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  305.611205][ T4895] batman_adv: batadv0: Removing interface: batadv_slave_0
[  305.621148][ T4895] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  305.639706][ T4895] batman_adv: batadv0: Removing interface: batadv_slave_1
[  305.676536][ T4895] device bridge_slave_1 left promiscuous mode
[  305.709847][ T4895] bridge0: port 2(bridge_slave_1) entered disabled state
[  305.745658][ T4895] device bridge_slave_0 left promiscuous mode
[  305.759861][ T4895] bridge0: port 1(bridge_slave_0) entered disabled state
[  305.819963][ T4895] device veth1_macvtap left promiscuous mode
[  305.836505][ T4895] device veth0_macvtap left promiscuous mode
[  305.849890][ T4895] device veth1_vlan left promiscuous mode
[  305.867094][ T4895] device veth0_vlan left promiscuous mode
[  306.195786][ T4895] team0 (unregistering): Port device team_slave_1 removed
[  306.211383][ T4895] team0 (unregistering): Port device team_slave_0 removed
[  306.219881][T11247] Bluetooth: hci4: command 0x040f tx timeout
[  306.233434][ T4895] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  306.262101][ T4895] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  306.327754][ T4895] bond0 (unregistering): Released all slaves
[  306.411801][T11239] device syzkaller0 entered promiscuous mode
[  306.441452][T11152] device hsr_slave_0 entered promiscuous mode
[  306.448098][T11152] device hsr_slave_1 entered promiscuous mode
[  306.455078][T11152] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  306.463122][T11152] Cannot create hsr debugfs directory
[  306.482176][T11249] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[  306.537316][T11250] device syzkaller0 entered promiscuous mode
[  306.950613][T11273] device syzkaller0 entered promiscuous mode
[  306.990418][T11152] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  307.035737][T11152] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  307.088839][T11152] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  307.217502][T11152] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  307.330765][T11300] loop4: detected capacity change from 0 to 512
[  307.451552][T11300] EXT4-fs (loop4): Mount option "noacl" will be removed by 3.5
[  307.451552][T11300] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  307.451552][T11300] 
[  307.535308][T11300] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #11: comm syz.4.1834: ea_inode with extended attributes
[  307.620701][T11307] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  307.628189][T11300] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.1834: error while reading EA inode 11 err=-117
[  307.660580][T11300] EXT4-fs (loop4): 1 orphan inode deleted
[  307.702801][T11300] EXT4-fs (loop4): mounted filesystem without journal. Opts: nodioread_nolock,journal_dev=0x00000000000100ff,debug_want_extra_isize=0x000000000000004c,nouid32,resgid=0x0000000000000000,noacl,init_itable=0x0000000000008d55,,errors=continue. Quota mode: none.
[  307.744986][T11307] device syzkaller0 entered promiscuous mode
[  307.779853][T11152] 8021q: adding VLAN 0 to HW filter on device bond0
[  308.429165][T11247] Bluetooth: hci4: command 0x0419 tx timeout
[  308.487484][T11304] tipc: Resetting bearer <eth:syzkaller0>
[  308.607354][T11304] tipc: Disabling bearer <eth:syzkaller0>
[  308.633117][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  308.641522][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  308.692035][T11152] 8021q: adding VLAN 0 to HW filter on device team0
[  308.762654][T11152] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  308.803569][T11152] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  309.709353][T11338] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[  309.764415][T11338] device syzkaller0 entered promiscuous mode
[  310.249751][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  310.258479][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  310.267635][ T5760] bridge0: port 1(bridge_slave_0) entered blocking state
[  310.274738][ T5760] bridge0: port 1(bridge_slave_0) entered forwarding state
[  310.284868][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  310.293662][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  310.302193][ T5760] bridge0: port 2(bridge_slave_1) entered blocking state
[  310.309302][ T5760] bridge0: port 2(bridge_slave_1) entered forwarding state
[  310.317079][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  310.325894][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  310.335410][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  310.345967][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  310.355493][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  310.372112][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  310.393600][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  310.406887][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  310.416115][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  310.425054][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  310.434432][T11317] device syzkaller0 entered promiscuous mode
[  310.472066][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  310.493545][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  310.588714][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  310.859414][T11364] device syzkaller0 entered promiscuous mode
[  311.181347][ T4285] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  311.188864][ T4285] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  311.203385][T11152] 8021q: adding VLAN 0 to HW filter on device batadv0
[  311.445898][T11389] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  311.459708][T11389] device syzkaller0 entered promiscuous mode
[  311.483628][T11387] tipc: Resetting bearer <eth:syzkaller0>
[  311.533621][T11387] tipc: Disabling bearer <eth:syzkaller0>
[  311.955991][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  311.978896][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  312.315559][T11152] device veth0_vlan entered promiscuous mode
[  312.403722][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  312.432906][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  312.484453][T11152] device veth1_vlan entered promiscuous mode
[  312.503049][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  312.522539][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  312.542439][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  312.618247][T11423] device syzkaller0 entered promiscuous mode
[  313.504099][T11152] device veth0_macvtap entered promiscuous mode
[  313.561817][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  313.580736][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  313.595332][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  313.622977][T11152] device veth1_macvtap entered promiscuous mode
[  313.695068][T11152] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  313.735617][T11152] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  313.756320][T11152] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  313.777677][T11152] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  313.798043][T11152] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  313.822909][T11152] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  313.843206][T11152] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  313.879595][T11152] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  313.911154][T11152] batman_adv: batadv0: Interface activated: batadv_slave_0
[  313.935380][T11458] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  313.960255][ T4285] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  313.978180][ T4285] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  314.001234][T11152] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  314.017740][T11152] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  314.074666][T11152] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  314.085201][T11152] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  314.113829][T11152] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  314.139668][T11152] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  314.159588][T11152] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  314.189581][T11152] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  314.210589][T11152] batman_adv: batadv0: Interface activated: batadv_slave_1
[  314.220776][T11455] tipc: Disabling bearer <eth:syzkaller0>
[  314.278925][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  314.296754][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  314.319467][T11152] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  314.339858][T11152] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  314.364555][T11152] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  314.394642][T11152] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  314.642640][T11471] loop0: detected capacity change from 0 to 256
[  314.690384][T11471] exfat: Deprecated parameter 'namecase'
[  314.709690][T11471] exfat: Unknown parameter 'sys_tz'
[  314.856759][ T4318] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  314.878468][ T4318] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  314.930171][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  314.964471][T11485] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[  314.984700][ T4285] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  315.052290][T11488] device syzkaller0 entered promiscuous mode
[  315.089656][ T4285] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  315.255234][ T5760] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  315.675504][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  315.694356][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  315.728263][ T4695] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  315.859041][T11509] device syzkaller0 entered promiscuous mode
[  315.909094][T11513] device syzkaller0 entered promiscuous mode
[  315.972957][T11516] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  316.024687][T11516] device syzkaller0 entered promiscuous mode
[  316.078322][T11516] tipc: Resetting bearer <eth:syzkaller0>
[  316.095952][T11514] tipc: Resetting bearer <eth:syzkaller0>
[  316.114119][T11524] loop6: detected capacity change from 0 to 512
[  316.135933][T11514] tipc: Disabling bearer <eth:syzkaller0>
[  316.157342][T11524] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  316.219178][T11524] EXT4-fs error (device loop6): ext4_orphan_get:1401: inode #15: comm syz.6.1877: inode has both inline data and extents flags
[  316.350031][T11524] EXT4-fs error (device loop6): ext4_orphan_get:1406: comm syz.6.1877: couldn't read orphan inode 15 (err -117)
[  316.386060][T11524] EXT4-fs (loop6): mounted filesystem without journal. Opts: quota,,errors=continue. Quota mode: writeback.
[  316.965591][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  316.973243][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  317.788707][T11550] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[  317.859674][T11551] device syzkaller0 entered promiscuous mode
[  318.358720][T11577] device syzkaller0 entered promiscuous mode
[  318.463982][T11582] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  318.517080][T11582] device syzkaller0 entered promiscuous mode
[  318.550296][T11582] tipc: Resetting bearer <eth:syzkaller0>
[  318.583655][T11580] tipc: Resetting bearer <eth:syzkaller0>
[  318.623881][T11580] tipc: Disabling bearer <eth:syzkaller0>
[  318.983726][T11594] device syzkaller0 entered promiscuous mode
[  319.303700][T11601] loop7: detected capacity change from 0 to 512
[  319.403085][T11601] EXT4-fs (loop7): Ignoring removed nomblk_io_submit option
[  319.454072][T11601] EXT4-fs (loop7): Ignoring removed bh option
[  319.463460][T11601] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem
[  319.655111][T11601] EXT4-fs error (device loop7): mb_free_blocks:1860: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  319.749846][T11601] EXT4-fs error (device loop7): ext4_do_update_inode:5218: inode #11: comm syz.7.1894: corrupted inode contents
[  319.765855][T11601] EXT4-fs error (device loop7): ext4_dirty_inode:6054: inode #11: comm syz.7.1894: mark_inode_dirty error
[  319.799915][T11601] EXT4-fs error (device loop7): ext4_free_branches:1030: inode #11: comm syz.7.1894: invalid indirect mapped block 1 (level 1)
[  319.875693][T11601] EXT4-fs error (device loop7): ext4_do_update_inode:5218: inode #11: comm syz.7.1894: corrupted inode contents
[  319.943210][T11601] EXT4-fs error (device loop7) in ext4_orphan_del:301: Corrupt filesystem
[  319.962951][T11622] loop4: detected capacity change from 0 to 256
[  320.019959][T11601] EXT4-fs error (device loop7): ext4_do_update_inode:5218: inode #11: comm syz.7.1894: corrupted inode contents
[  320.048424][T11601] EXT4-fs error (device loop7): ext4_truncate:4279: inode #11: comm syz.7.1894: mark_inode_dirty error
[  320.067241][T11622] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  320.092714][T11622] exFAT-fs (loop4): Medium has reported failures. Some data may be lost.
[  320.126850][T11601] EXT4-fs error (device loop7) in ext4_process_orphan:343: Corrupt filesystem
[  320.151237][T11622] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  320.168121][T11601] EXT4-fs (loop7): 1 truncate cleaned up
[  320.175135][T11624] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[  320.193510][ T4296] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  320.199700][T11601] EXT4-fs (loop7): mounted filesystem without journal. Opts: nomblk_io_submit,bh,,errors=continue. Quota mode: none.
[  320.239753][ T4296] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  320.275926][ T4254] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  320.276247][T11624] device syzkaller0 entered promiscuous mode
[  320.338829][T11622] exFAT-fs (loop4): hint_cluster is invalid (17)
[  320.545505][T11634] tipc: Started in network mode
[  320.621168][T11634] tipc: Node identity 3ef7cba85478, cluster identity 4711
[  320.646064][T11634] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  320.735462][T11637] device syzkaller0 entered promiscuous mode
[  320.807251][T11634] tipc: Resetting bearer <eth:syzkaller0>
[  320.936045][T11633] tipc: Resetting bearer <eth:syzkaller0>
[  321.038576][T11633] tipc: Disabling bearer <eth:syzkaller0>
[  321.069439][T11647] device syzkaller0 entered promiscuous mode
[  321.254898][T11656] device syzkaller0 entered promiscuous mode
[  321.767097][T11675] device syzkaller0 entered promiscuous mode
[  321.897125][ T4308] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  321.923752][ T4308] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  321.941290][ T4695] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  322.066556][T11688] loop4: detected capacity change from 0 to 512
[  322.205193][T11688] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  322.273638][T11690] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  322.296153][T11690] device syzkaller0 entered promiscuous mode
[  322.327581][T11688] EXT4-fs (loop4): 1 truncate cleaned up
[  322.341472][T11688] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  322.378579][T11690] tipc: Resetting bearer <eth:syzkaller0>
[  322.418735][T11689] tipc: Resetting bearer <eth:syzkaller0>
[  322.548379][T11689] tipc: Disabling bearer <eth:syzkaller0>
[  322.579846][T11703] device syzkaller0 entered promiscuous mode
[  322.792506][T11712] device syzkaller0 entered promiscuous mode
[  323.602682][T11725] device syzkaller0 entered promiscuous mode
[  323.638686][ T4695] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  323.655326][ T4695] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  323.669965][ T4308] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  324.359710][ T4308] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  324.403524][T11740] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  325.190119][T11741] device syzkaller0 entered promiscuous mode
[  325.219707][ T4308] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  325.230160][T11748] tipc: Resetting bearer <eth:syzkaller0>
[  325.269779][ T4308] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  325.271510][T11739] tipc: Resetting bearer <eth:syzkaller0>
[  325.283938][ T4308] usb 5-1: Product: syz
[  325.288257][ T4308] usb 5-1: Manufacturer: syz
[  325.293392][ T4308] usb 5-1: SerialNumber: syz
[  325.410390][T11739] tipc: Disabling bearer <eth:syzkaller0>
[  325.467980][T11767] device syzkaller0 entered promiscuous mode
[  325.661552][T11765] device syzkaller0 entered promiscuous mode
[  325.776802][T11777] loop5: detected capacity change from 0 to 512
[  325.955626][T11777] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  326.062528][ T4296] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  326.079460][T11777] EXT4-fs (loop5): 1 truncate cleaned up
[  326.088769][ T4296] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  326.098486][T11777] EXT4-fs (loop5): mounted filesystem without journal. Opts: init_itable=0x00000000000007ff,jqfmt=vfsold,debug_want_extra_isize=0x0000000000000066,user_xattr,nolazytime,quota,,errors=continue. Quota mode: writeback.
[  326.167145][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  326.185879][   T26] audit: type=1800 audit(1765130831.328:125): pid=11777 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1941" name="file2" dev="loop5" ino=16 res=0 errno=0
[  326.271618][T11787] device syzkaller0 entered promiscuous mode
[  326.700325][ T4308] cdc_ncm 5-1:1.0: MAC-Address: 42:42:42:42:42:42
[  327.138439][ T4308] cdc_ncm 5-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.4-1, CDC NCM, 42:42:42:42:42:42
[  327.333527][ T4308] usb 5-1: USB disconnect, device number 15
[  327.355117][ T4308] cdc_ncm 5-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.4-1, CDC NCM
[  327.503502][T11813] loop6: detected capacity change from 0 to 4096
[  327.667752][T11813] EXT4-fs (loop6): Test dummy encryption mode enabled
[  327.715875][T11813] EXT4-fs (loop6): mounted filesystem without journal. Opts: test_dummy_encryption,grpquota,,errors=continue. Quota mode: writeback.
[  327.905831][T11813] EXT4-fs error (device loop6): ext4_do_update_inode:5218: inode #15: comm syz.6.1947: corrupted inode contents
[  327.990130][T11813] EXT4-fs error (device loop6): ext4_dirty_inode:6054: inode #15: comm syz.6.1947: mark_inode_dirty error
[  328.039743][T11833] EXT4-fs (loop6): shut down requested (2)
[  328.072016][T11813] EXT4-fs error (device loop6): ext4_do_update_inode:5218: inode #15: comm syz.6.1947: corrupted inode contents
[  328.239739][T11813] EXT4-fs error (device loop6): __ext4_ext_dirty:183: inode #15: comm syz.6.1947: mark_inode_dirty error
[  328.618971][  T154] EXT4-fs (loop6): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  328.671152][  T154] Quota error (device loop6): write_blk: dquota write failed
[  328.732814][  T154] Quota error (device loop6): free_dqentry: Can't write quota data block 5
[  329.028982][T11842] device syzkaller0 entered promiscuous mode
[  329.132937][T11846] device syzkaller0 entered promiscuous mode
[  329.195698][T11844] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  329.239933][T11844] device syzkaller0 entered promiscuous mode
[  329.319109][T11853] loop6: detected capacity change from 0 to 16
[  329.344672][T11844] tipc: Resetting bearer <eth:syzkaller0>
[  329.424957][T11853] erofs: (device loop6): mounted with root inode @ nid 36.
[  329.525260][T11843] tipc: Resetting bearer <eth:syzkaller0>
[  329.567377][T11843] tipc: Disabling bearer <eth:syzkaller0>
[  329.662087][   T21] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  329.683488][   T21] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  329.720370][ T4308] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  329.938689][T11867] device syzkaller0 entered promiscuous mode
[  331.018361][T11899] device syzkaller0 entered promiscuous mode
[  331.284807][T11907] loop0: detected capacity change from 0 to 256
[  331.362111][T11913] device syzkaller0 entered promiscuous mode
[  331.480562][T11907] exfat: Unknown parameter 'sys_tz'
[  331.807743][T11922] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  331.908744][T11932] device syzkaller0 entered promiscuous mode
[  331.949421][T11933] loop0: detected capacity change from 0 to 256
[  331.981893][T11922] tipc: Resetting bearer <eth:syzkaller0>
[  332.012706][T11925] device syzkaller0 entered promiscuous mode
[  332.041477][T11921] tipc: Resetting bearer <eth:syzkaller0>
[  332.087104][T11921] tipc: Disabling bearer <eth:syzkaller0>
[  332.292906][T11944] loop4: detected capacity change from 0 to 512
[  332.373657][T11944] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  332.513151][T11955] device syzkaller0 entered promiscuous mode
[  332.571303][T11944] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1978: invalid indirect mapped block 4294967295 (level 1)
[  332.784295][T11944] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1978: invalid indirect mapped block 4294967295 (level 1)
[  332.844273][T11944] EXT4-fs (loop4): 2 truncates cleaned up
[  332.875811][T11944] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpjquota=,init_itable=0x0000000000000007,dioread_nolock,auto_da_alloc=0x000000007fffffff,,errors=continue. Quota mode: writeback.
[  333.005809][T11972] device syzkaller0 entered promiscuous mode
[  333.068525][   T26] audit: type=1800 audit(1765130838.208:126): pid=11944 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1978" name="file1" dev="loop4" ino=15 res=0 errno=0
[  333.101274][T11944] EXT4-fs error (device loop4): ext4_validate_block_bitmap:429: comm syz.4.1978: bg 0: block 5: invalid block bitmap
[  334.374775][T11998] loop4: detected capacity change from 0 to 512
[  334.626059][T12004] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  336.677341][T11998] EXT4-fs (loop4): 1 truncate cleaned up
[  336.816402][T11998] EXT4-fs (loop4): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000003,,errors=continue. Quota mode: none.
[  336.918085][T11998] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1991: bg 0: block 465: padding at end of block bitmap is not set
[  336.970459][T11998] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  337.027956][T11998] EXT4-fs (loop4): This should not happen!! Data will be lost
[  337.027956][T11998] 
[  337.061864][T12022] device syzkaller0 entered promiscuous mode
[  337.079736][T11998] EXT4-fs (loop4): Total free blocks count 0
[  337.099135][T11998] EXT4-fs (loop4): Free/Dirty block details
[  337.157583][T11998] EXT4-fs (loop4): free_blocks=0
[  337.180084][T11998] EXT4-fs (loop4): dirty_blocks=66
[  337.201202][T11998] EXT4-fs (loop4): Block reservation details
[  337.207301][T11998] EXT4-fs (loop4): i_reserved_data_blocks=66
[  337.259232][ T5760] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 64 with error 28
[  337.281197][ T5760] EXT4-fs (loop4): This should not happen!! Data will be lost
[  337.281197][ T5760] 
[  337.309420][T12027] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  337.338204][T12027] device syzkaller0 entered promiscuous mode
[  337.374782][T12027] tipc: Resetting bearer <eth:syzkaller0>
[  337.459194][T12026] tipc: Resetting bearer <eth:syzkaller0>
[  337.553311][T12026] tipc: Disabling bearer <eth:syzkaller0>
[  337.858862][T12039] device syzkaller0 entered promiscuous mode
[  340.995131][T12075] loop0: detected capacity change from 0 to 128
[  341.004036][T12073] device syzkaller0 entered promiscuous mode
[  341.073178][T12075] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  341.146243][T12075] ext4 filesystem being mounted at /399/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  341.319364][T12082] loop4: detected capacity change from 0 to 512
[  341.408471][T12082] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  341.753250][T12082] EXT4-fs (loop4): 1 truncate cleaned up
[  341.869388][T12082] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable=0x00000000000007ff,jqfmt=vfsold,debug_want_extra_isize=0x0000000000000066,user_xattr,nolazytime,quota,,errors=continue. Quota mode: writeback.
[  342.161616][T12097] loop0: detected capacity change from 0 to 256
[  342.173997][   T26] audit: type=1800 audit(1765130847.318:127): pid=12082 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2011" name="file2" dev="loop4" ino=16 res=0 errno=0
[  342.268293][T12097] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  342.302245][T12097] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  342.352097][T12097] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  342.511682][T12097] exFAT-fs (loop0): hint_cluster is invalid (17)
[  343.135755][T12119] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  343.179133][T12119] device syzkaller0 entered promiscuous mode
[  343.265529][T12119] tipc: Resetting bearer <eth:syzkaller0>
[  343.329819][T12118] tipc: Resetting bearer <eth:syzkaller0>
[  343.418942][T12118] tipc: Disabling bearer <eth:syzkaller0>
[  346.112929][T12143] sched: RT throttling activated
[  346.436089][T12145] device syzkaller0 entered promiscuous mode
[  348.705516][ T4295] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  348.887378][T12170] device syzkaller0 entered promiscuous mode
[  349.249859][ T4295] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  349.258925][ T4295] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  349.292792][T12180] loop5: detected capacity change from 0 to 256
[  349.321221][ T4295] usb 7-1: Product: syz
[  349.325400][ T4295] usb 7-1: Manufacturer: syz
[  349.379585][ T4295] usb 7-1: SerialNumber: syz
[  349.418778][T12180] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  349.639689][ T4295] cdc_ncm 7-1:1.0: bind() failure
[  349.659197][ T4295] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found
[  349.674636][T12180] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  349.679573][ T4295] cdc_ncm 7-1:1.1: bind() failure
[  350.449862][ T4295] usb 7-1: USB disconnect, device number 20
[  350.487835][T12191] device syzkaller0 entered promiscuous mode
[  350.585150][T12180] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  351.164167][T12206] loop0: detected capacity change from 0 to 1024
[  351.204978][T12180] exFAT-fs (loop5): hint_cluster is invalid (17)
[  351.267445][T12206] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option
[  351.312730][T12206] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  351.345917][T12214] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  351.365734][T12214] device syzkaller0 entered promiscuous mode
[  351.377089][T12206] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  351.494224][T12206] System zones: 0-1, 3-36
[  351.593003][T12216] tipc: Resetting bearer <eth:syzkaller0>
[  352.026991][T12206] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,delalloc,resuid=0x0000000000000000,debug,dioread_nolock,bsddf,nomblk_io_submit,noauto_da_alloc,,errors=continue. Quota mode: writeback.
[  352.094148][T12213] tipc: Resetting bearer <eth:syzkaller0>
[  352.220812][T12213] tipc: Disabling bearer <eth:syzkaller0>
[  352.456075][T12242] device syzkaller0 entered promiscuous mode
[  352.471128][T12232] Page cache invalidation failure on direct I/O.  Possible data corruption due to collision with buffered I/O!
[  352.538970][T12232] File: /405/bus/file1 PID: 12232 Comm: syz.0.2034
[  352.575626][T12246] capability: warning: `syz.4.2040' uses 32-bit capabilities (legacy support in use)
[  352.886219][T12257] loop7: detected capacity change from 0 to 2048
[  353.912225][T12277] device syzkaller0 entered promiscuous mode
[  353.916506][T12257] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  353.919471][T12279] loop4: detected capacity change from 0 to 16
[  353.952019][T12273] device syzkaller0 entered promiscuous mode
[  353.984003][T12279] erofs: (device loop4): erofs_superblock_csum_verify: invalid checksum 0xa623e400, 0xc32427af expected
[  354.070006][T12257] loop_set_status: loop7 () has still dirty pages (nrpages=5)
[  355.673071][T12299] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  355.694247][T11247] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  355.959680][T11247] usb 1-1: Using ep0 maxpacket: 8
[  356.190439][T11247] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  356.389700][T11247] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  356.422822][T11247] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  356.477759][T11247] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  356.526329][T11247] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[  356.572402][T12313] loop5: detected capacity change from 0 to 512
[  356.619670][T11247] usb 1-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  356.628748][T11247] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  356.683545][T12313] EXT4-fs (loop5): Ignoring removed nobh option
[  356.694296][T11247] usb 1-1: config 0 descriptor??
[  356.758053][ T4197] Bluetooth: hci5: urb ffff888019f8fb00 submission failed (90)
[  356.851368][T12313] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #11: comm syz.5.2055: invalid indirect mapped block 256 (level 2)
[  356.954879][T11598] usb 1-1: USB disconnect, device number 14
[  357.021285][T12313] EXT4-fs (loop5): Remounting filesystem read-only
[  357.111924][T12326] device syzkaller0 entered promiscuous mode
[  357.135208][T12313] EXT4-fs (loop5): 2 truncates cleaned up
[  357.192370][T12313] EXT4-fs (loop5): mounted filesystem without journal. Opts: nobh,auto_da_alloc,errors=remount-ro,. Quota mode: writeback.
[  358.063770][T12348] Illegal XDP return value 4294967294, expect packet loss!
[  361.386321][T12374] loop0: detected capacity change from 0 to 16
[  361.420866][T12374] erofs: (device loop0): mounted with root inode @ nid 36.
[  361.444496][T12375] device syzkaller0 entered promiscuous mode
[  362.594368][T12374] erofs: (device loop0): erofs_readdir: invalid de[0].nameoff 0 @ nid 36
[  362.880416][T12382] device syzkaller0 entered promiscuous mode
[  363.194822][    T7] usb 1-1: new full-speed USB device number 15 using dummy_hcd
[  363.274972][T12392] xt_cgroup: xt_cgroup: no path or classid specified
[  363.610978][    T7] usb 1-1: config 0 has an invalid interface number: 3 but max is 2
[  363.627674][    T7] usb 1-1: config 0 has an invalid interface number: 176 but max is 2
[  363.657033][    T7] usb 1-1: config 0 has no interface number 1
[  363.669608][    T7] usb 1-1: config 0 has no interface number 2
[  363.684361][    T7] usb 1-1: too many endpoints for config 0 interface 0 altsetting 255: 255, using maximum allowed: 30
[  364.452966][    T7] usb 1-1: config 0 interface 0 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  364.517421][    T7] usb 1-1: config 0 interface 0 has no altsetting 0
[  365.105228][    T7] usb 1-1: New USB device found, idVendor=05c6, idProduct=9205, bcdDevice=29.ac
[  365.111046][T12407] device syzkaller0 entered promiscuous mode
[  365.114650][    T7] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  365.142596][    T7] usb 1-1: config 0 descriptor??
[  365.860931][    T7] usb 1-1: Could not set interface, error -71
[  365.892352][    T7] qmi_wwan: probe of 1-1:0.0 failed with error -22
[  365.959210][    T7] usb 1-1: USB disconnect, device number 15
[  366.074745][T12417] device syzkaller0 entered promiscuous mode
[  367.371046][T12437] loop7: detected capacity change from 0 to 1024
[  367.831623][T12443] loop5: detected capacity change from 0 to 2048
[  369.282549][T12437] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  369.307795][T12443] UDF-fs: warning (device loop5): udf_fill_super: No partition found (2)
[  369.344094][   T26] audit: type=1326 audit(1765130874.488:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12435 comm="syz.7.2089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bdb378749 code=0x7ffc0000
[  369.394458][T12452] device syzkaller0 entered promiscuous mode
[  369.419395][   T26] audit: type=1326 audit(1765130874.528:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12435 comm="syz.7.2089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bdb378749 code=0x7ffc0000
[  369.446431][   T26] audit: type=1326 audit(1765130874.528:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12435 comm="syz.7.2089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bdb378749 code=0x7ffc0000
[  369.482141][   T26] audit: type=1326 audit(1765130874.528:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12435 comm="syz.7.2089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=194 compat=0 ip=0x7f5bdb378749 code=0x7ffc0000
[  369.592636][T12454] loop4: detected capacity change from 0 to 2048
[  369.655555][   T26] audit: type=1326 audit(1765130874.548:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12435 comm="syz.7.2089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bdb378749 code=0x7ffc0000
[  369.712436][   T26] audit: type=1326 audit(1765130874.548:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12435 comm="syz.7.2089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f5bdb378749 code=0x7ffc0000
[  369.781264][T12458] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2096'.
[  369.810606][   T26] audit: type=1326 audit(1765130874.548:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12435 comm="syz.7.2089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f5bdb378749 code=0x7ffc0000
[  369.815997][T12454] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  371.046596][T12454] ext4 filesystem being mounted at /444/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  371.892899][T12493] loop0: detected capacity change from 0 to 164
[  371.921599][T12494] device syzkaller0 entered promiscuous mode
[  372.075121][T12498] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability
[  374.195377][   T21] Bluetooth: hci4: command 0x0406 tx timeout
[  374.523224][T12516] loop5: detected capacity change from 0 to 164
[  374.556297][T12518] loop0: detected capacity change from 0 to 128
[  375.437587][T12527] loop0: detected capacity change from 0 to 256
[  375.505633][T12529] loop5: detected capacity change from 0 to 512
[  375.527571][T12527] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  375.629677][T12529] EXT4-fs (loop5): Ignoring removed bh option
[  375.635786][T12529] EXT4-fs (loop5): Ignoring removed mblk_io_submit option
[  375.675364][T12529] EXT4-fs (loop5): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  375.794312][T12531] device syzkaller0 entered promiscuous mode
[  375.854760][T12529] EXT4-fs (loop5): mounted filesystem without journal. Opts: bh,mblk_io_submit,nojournal_checksum,init_itable=0x0000000000000006,dioread_nolock,,errors=continue. Quota mode: writeback.
[  375.947250][T12536] loop4: detected capacity change from 0 to 16
[  375.959706][T12529] ext4 filesystem being mounted at /393/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  376.026195][T12529] EXT4-fs error (device loop5): ext4_ext_remove_space:2929: inode #15: comm syz.5.2120: pblk 0 bad header/extent: invalid magic - magic 0, entries 0, max 0(0), depth 0(0)
[  376.066308][T12536] erofs: (device loop4): mounted with root inode @ nid 36.
[  376.091994][T12529] EXT4-fs error (device loop5): ext4_evict_inode:293: comm syz.5.2120: couldn't truncate inode 15 (err -117)
[  376.133144][T12536] erofs: (device loop4): erofs_readdir: invalid de[0].nameoff 0 @ nid 36
[  376.387105][T12550] loop7: detected capacity change from 0 to 512
[  377.071606][T12550] EXT4-fs error (device loop7): ext4_validate_block_bitmap:438: comm syz.7.2127: bg 0: block 393: padding at end of block bitmap is not set
[  377.141081][T12550] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6178: Corrupt filesystem
[  377.150638][T12550] EXT4-fs (loop7): 2 truncates cleaned up
[  377.158379][T12550] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  377.929871][T12578] 9pnet: p9_errstr2errno: server reported unknown error �@
[  377.941142][T12573] loop7: detected capacity change from 0 to 2048
[  377.967313][T12576] device syzkaller0 entered promiscuous mode
[  378.051369][T12573] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  378.076064][T12573] ext4 filesystem being mounted at /51/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  378.194924][T12584] loop0: detected capacity change from 0 to 512
[  379.232752][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  379.239075][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  379.325148][   T21] Bluetooth: hci4: command 0x0405 tx timeout
[  379.366481][T12584] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option
[  379.426665][T12584] EXT4-fs (loop0): mounted filesystem without journal. Opts: nomblk_io_submit,inode_readahead_blks=0x0000000000000800,discard,,errors=continue. Quota mode: writeback.
[  379.453822][T12584] ext4 filesystem being mounted at /428/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  379.489315][T12584] EXT4-fs error (device loop0): ext4_lookup:1858: inode #12: comm syz.0.2137: iget: bad i_size value: 2533274857506816
[  379.929763][ T4695] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  380.169599][ T4695] usb 6-1: Using ep0 maxpacket: 16
[  380.237358][T12612] loop6: detected capacity change from 0 to 256
[  380.293633][ T4695] usb 6-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  380.304733][ T4695] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  380.318604][T12615] device syzkaller0 entered promiscuous mode
[  380.332523][ T4695] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  380.342030][T12612] exFAT-fs (loop6): failed to load upcase table
[  380.349238][T12612] exFAT-fs (loop6): failed to recognize exfat type
[  380.579464][T12624] loop4: detected capacity change from 0 to 8
[  380.659676][ T4695] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  380.668750][ T4695] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  380.680549][ T4695] usb 6-1: Product: syz
[  380.685004][ T4695] usb 6-1: Manufacturer: syz
[  380.879887][T12626] loop0: detected capacity change from 0 to 2048
[  381.004032][ T4695] usb 6-1: SerialNumber: syz
[  381.037383][T12626] UDF-fs: warning (device loop0): udf_fill_super: No partition found (2)
[  381.684308][ T4695] usb 6-1: 0:2 : does not exist
[  381.896981][T12654] loop7: detected capacity change from 0 to 512
[  382.033803][T12654] EXT4-fs error (device loop7): ext4_expand_extra_isize_ea:2776: inode #11: comm syz.7.2163: corrupted xattr block 95
[  382.055436][T12654] EXT4-fs error (device loop7): ext4_validate_block_bitmap:429: comm syz.7.2163: bg 0: block 7: invalid block bitmap
[  382.086815][T12658] device syzkaller0 entered promiscuous mode
[  382.114259][T12654] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6178: Corrupt filesystem
[  382.166846][T12654] EXT4-fs error (device loop7): ext4_xattr_delete_inode:2942: inode #11: comm syz.7.2163: corrupted xattr block 95
[  382.218120][T12654] EXT4-fs warning (device loop7): ext4_evict_inode:302: xattr delete (err -117)
[  382.258933][T12654] EXT4-fs (loop7): 1 orphan inode deleted
[  382.270441][T12654] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  383.545493][T12654] EXT4-fs (loop7): shut down requested (1)
[  383.656252][   T26] audit: type=1326 audit(1765130888.798:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12680 comm="syz.0.2173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac0686749 code=0x7ffc0000
[  383.790062][   T26] audit: type=1326 audit(1765130888.838:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12680 comm="syz.0.2173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac0686749 code=0x7ffc0000
[  383.845418][   T26] audit: type=1326 audit(1765130888.848:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12680 comm="syz.0.2173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f7ac0686749 code=0x7ffc0000
[  383.899719][   T26] audit: type=1326 audit(1765130888.848:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12680 comm="syz.0.2173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac0686749 code=0x7ffc0000
[  383.976988][   T26] audit: type=1326 audit(1765130888.848:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12680 comm="syz.0.2173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac0686749 code=0x7ffc0000
[  384.017887][T12687] device syzkaller0 entered promiscuous mode
[  384.034312][   T26] audit: type=1326 audit(1765130888.848:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12680 comm="syz.0.2173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f7ac0686749 code=0x7ffc0000
[  384.074971][   T26] audit: type=1326 audit(1765130888.848:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12680 comm="syz.0.2173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac0686749 code=0x7ffc0000
[  384.110088][   T13] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  384.147068][   T26] audit: type=1326 audit(1765130888.848:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12680 comm="syz.0.2173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ac0686749 code=0x7ffc0000
[  384.218147][ T4695] usb 6-1: USB disconnect, device number 15
[  385.185366][   T13] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  385.201731][   T13] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  385.269620][ T4695] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  385.310008][   T13] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  385.327913][   T13] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=67
[  386.482312][   T13] usb 1-1: SerialNumber: syz
[  386.689587][ T4695] usb 6-1: Using ep0 maxpacket: 16
[  386.811105][   T13] usb 1-1: 0:2 : does not exist
[  386.884233][   T13] usb 1-1: USB disconnect, device number 16
[  386.889679][ T4695] usb 6-1: unable to read config index 0 descriptor/start: -71
[  386.928368][ T4695] usb 6-1: can't read configurations, error -71
[  387.085849][   T26] audit: type=1326 audit(1765130892.228:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12707 comm="syz.5.2185" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb28dc25749 code=0x0
[  387.510862][T12714] loop0: detected capacity change from 0 to 1024
[  387.611092][T12714] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  387.630573][T12714] EXT4-fs (loop0): orphan cleanup on readonly fs
[  387.651409][T12714] EXT4-fs error (device loop0): ext4_free_blocks:6218: comm syz.0.2186: Freeing blocks not in datazone - block = 0, count = 4096
[  387.708541][T12714] EXT4-fs (loop0): 1 orphan inode deleted
[  387.720687][T12714] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  387.866941][T12720] device syzkaller0 entered promiscuous mode
[  387.978739][ T6772] udevd[6772]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  388.825485][T12726] loop4: detected capacity change from 0 to 128
[  388.871395][T12730] loop5: detected capacity change from 0 to 128
[  388.966434][T12726] attempt to access beyond end of device
[  388.966434][T12726] loop4: rw=2049, want=148, limit=128
[  388.974295][T12732] loop0: detected capacity change from 0 to 512
[  389.065770][T12735] attempt to access beyond end of device
[  389.065770][T12735] loop4: rw=2049, want=1041, limit=128
[  389.128816][T12735] attempt to access beyond end of device
[  389.128816][T12735] loop4: rw=0, want=218, limit=128
[  389.682355][T12724] attempt to access beyond end of device
[  389.682355][T12724] loop4: rw=524288, want=217, limit=128
[  389.704441][T12724] attempt to access beyond end of device
[  389.704441][T12724] loop4: rw=524288, want=409, limit=128
[  389.773587][T12732] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0003]
[  389.782264][T12724] attempt to access beyond end of device
[  389.782264][T12724] loop4: rw=0, want=161, limit=128
[  389.840216][T12732] System zones: 1-2, 4-12, 8-8
[  389.855167][T12724] attempt to access beyond end of device
[  389.855167][T12724] loop4: rw=0, want=161, limit=128
[  389.929595][T12732] EXT4-fs error (device loop0): ext4_orphan_get:1401: inode #15: comm syz.0.2192: iget: bad i_size value: 38620345925642
[  390.008783][T12726] attempt to access beyond end of device
[  390.008783][T12726] loop4: rw=0, want=161, limit=128
[  390.023572][T12726] attempt to access beyond end of device
[  390.023572][T12726] loop4: rw=0, want=161, limit=128
[  390.036731][T12732] EXT4-fs error (device loop0): ext4_orphan_get:1406: comm syz.0.2192: couldn't read orphan inode 15 (err -117)
[  390.039671][T12726] attempt to access beyond end of device
[  390.039671][T12726] loop4: rw=0, want=161, limit=128
[  390.153448][T12732] EXT4-fs (loop0): mounted filesystem without journal. Opts: quota,delalloc,data_err=ignore,debug,usrjquota=,bsdgroups,,errors=continue. Quota mode: writeback.
[  390.565421][T12757] device syzkaller0 entered promiscuous mode
[  390.678517][T12761] loop0: detected capacity change from 0 to 512
[  390.807417][T12761] EXT4-fs error (device loop0): ext4_expand_extra_isize_ea:2776: inode #11: comm syz.0.2201: corrupted xattr block 95
[  390.906098][T12761] EXT4-fs error (device loop0): ext4_validate_block_bitmap:429: comm syz.0.2201: bg 0: block 7: invalid block bitmap
[  390.934428][T12769] loop6: detected capacity change from 0 to 4096
[  390.939719][T12761] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6178: Corrupt filesystem
[  390.979968][T12761] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2942: inode #11: comm syz.0.2201: corrupted xattr block 95
[  391.001621][T12761] EXT4-fs warning (device loop0): ext4_evict_inode:302: xattr delete (err -117)
[  391.018394][T12761] EXT4-fs (loop0): 1 orphan inode deleted
[  391.032935][T12761] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  391.047030][T12769] EXT4-fs (loop6): Test dummy encryption mode enabled
[  391.135815][T12778] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  391.559079][T12769] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0103]
[  391.635723][T12769] System zones: 0-5
[  391.748564][T12769] EXT4-fs (loop6): mounted filesystem without journal. Opts: debug,delalloc,journal_ioprio=0x0000000000000000,test_dummy_encryption,nodiscard,min_batch_time=0x0000000000000004,nodiscard,abort,,errors=continue. Quota mode: writeback.
[  391.814557][T12761] EXT4-fs (loop0): shut down requested (1)
[  391.976681][T12790] loop4: detected capacity change from 0 to 128
[  391.995578][T12769] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  392.021643][T12769] fscrypt: AES-256-XTS using implementation "xts-aes-aesni"
[  392.056010][T12795] loop7: detected capacity change from 0 to 512
[  392.069596][   T26] audit: type=1800 audit(1765130897.218:144): pid=12769 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2204" name="file1" dev="loop6" ino=20 res=0 errno=0
[  392.124503][   T26] audit: type=1800 audit(1765130897.218:145): pid=12769 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2204" name="file2" dev="loop6" ino=21 res=0 errno=0
[  392.253239][T12795] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0003]
[  392.320287][T12795] System zones: 1-2, 4-12, 8-8
[  392.356923][T12802] device syzkaller0 entered promiscuous mode
[  392.363543][T12795] EXT4-fs error (device loop7): ext4_orphan_get:1401: inode #15: comm syz.7.2211: iget: bad i_size value: 38620345925642
[  392.419091][T12795] EXT4-fs error (device loop7): ext4_orphan_get:1406: comm syz.7.2211: couldn't read orphan inode 15 (err -117)
[  392.438031][T12795] EXT4-fs (loop7): mounted filesystem without journal. Opts: quota,delalloc,data_err=ignore,debug,usrjquota=,bsdgroups,,errors=continue. Quota mode: writeback.
[  393.261373][T12831] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  393.270302][T12831] device syzkaller0 entered promiscuous mode
[  393.320059][T12831] tipc: Resetting bearer <eth:syzkaller0>
[  393.357691][T12830] tipc: Resetting bearer <eth:syzkaller0>
[  393.380234][T12830] tipc: Disabling bearer <eth:syzkaller0>
[  393.447097][T12844] loop0: detected capacity change from 0 to 128
[  393.537914][T12846] device syzkaller0 entered promiscuous mode
[  394.147587][T12844] handle_bad_sector: 115 callbacks suppressed
[  394.147606][T12844] attempt to access beyond end of device
[  394.147606][T12844] loop0: rw=2049, want=148, limit=128
[  394.223229][T12849] loop5: detected capacity change from 0 to 8192
[  394.271501][T12863] attempt to access beyond end of device
[  394.271501][T12863] loop0: rw=2049, want=649, limit=128
[  394.290239][T12844] attempt to access beyond end of device
[  394.290239][T12844] loop0: rw=0, want=218, limit=128
[  394.317905][T12841] attempt to access beyond end of device
[  394.317905][T12841] loop0: rw=524288, want=217, limit=128
[  394.327355][T12849] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  394.341446][T12841] attempt to access beyond end of device
[  394.341446][T12841] loop0: rw=524288, want=409, limit=128
[  394.354851][T12841] attempt to access beyond end of device
[  394.354851][T12841] loop0: rw=0, want=161, limit=128
[  394.412187][T12841] attempt to access beyond end of device
[  394.412187][T12841] loop0: rw=0, want=161, limit=128
[  394.426313][T12844] attempt to access beyond end of device
[  394.426313][T12844] loop0: rw=0, want=161, limit=128
[  394.482483][T12863] attempt to access beyond end of device
[  394.482483][T12863] loop0: rw=524288, want=649, limit=128
[  394.486813][T12844] attempt to access beyond end of device
[  394.486813][T12844] loop0: rw=0, want=161, limit=128
[  394.971513][T12867] loop6: detected capacity change from 0 to 128
[  395.025679][T12867] EXT4-fs (loop6): Project quota feature not enabled. Cannot enable project quota enforcement.
[  396.206866][T12879] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2239'.
[  396.338950][T12884] device syzkaller0 entered promiscuous mode
[  397.041705][T12890] device syzkaller0 entered promiscuous mode
[  397.482862][T12903] loop4: detected capacity change from 0 to 128
[  397.910464][   T13] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  399.492105][T12924] loop6: detected capacity change from 0 to 128
[  399.544425][T12924] EXT4-fs (loop6): Project quota feature not enabled. Cannot enable project quota enforcement.
[  399.740072][   T13] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  400.259605][   T13] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  400.284386][   T13] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  400.300318][   T13] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  400.309471][   T13] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  400.328373][T12937] device syzkaller0 entered promiscuous mode
[  400.338047][   T13] usb 8-1: config 0 descriptor??
[  400.350563][T12938] device syzkaller0 entered promiscuous mode
[  400.608687][T12941] loop4: detected capacity change from 0 to 2048
[  400.779692][   T13] usbhid 8-1:0.0: can't add hid device: -71
[  400.793540][   T13] usbhid: probe of 8-1:0.0 failed with error -71
[  400.811963][T12941] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  400.823325][   T13] usb 8-1: USB disconnect, device number 2
[  400.972609][T12951] loop6: detected capacity change from 0 to 2048
[  402.725746][T12951] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  402.836919][T12951] UDF-fs: error (device loop6): udf_read_inode: (ino 1345) failed !bh
[  404.560242][T12989] device syzkaller0 entered promiscuous mode
[  405.866908][T12996] device syzkaller0 entered promiscuous mode
[  407.542510][T13007] loop0: detected capacity change from 0 to 256
[  407.572718][T13011] loop7: detected capacity change from 0 to 256
[  407.638654][T13007] FAT-fs (loop0): Directory bread(block 64) failed
[  407.668825][T13007] FAT-fs (loop0): Directory bread(block 65) failed
[  407.686030][T13007] FAT-fs (loop0): Directory bread(block 66) failed
[  407.703047][T13007] FAT-fs (loop0): Directory bread(block 67) failed
[  407.719699][T13007] FAT-fs (loop0): Directory bread(block 68) failed
[  407.736567][T13007] FAT-fs (loop0): Directory bread(block 69) failed
[  407.743797][T13011] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  407.764752][T13007] FAT-fs (loop0): Directory bread(block 70) failed
[  407.817461][T13007] FAT-fs (loop0): Directory bread(block 71) failed
[  407.963740][T13007] FAT-fs (loop0): Directory bread(block 72) failed
[  407.979775][T13007] FAT-fs (loop0): Directory bread(block 73) failed
[  408.835767][T13023] loop4: detected capacity change from 0 to 128
[  410.199465][T13023] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  410.211256][T13023] ext4 filesystem being mounted at /483/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  410.230880][T13023] fscrypt (loop4, inode 12): Unsupported encryption flags (0x10)
[  410.328592][T13036] device syzkaller0 entered promiscuous mode
[  412.716528][ T4197] ------------[ cut here ]------------
[  412.722840][ T4197] WARNING: CPU: 1 PID: 4197 at net/bluetooth/hci_conn.c:443 hci_conn_timeout+0x24f/0x450
[  412.734908][ T4197] Modules linked in:
[  412.738810][ T4197] CPU: 1 PID: 4197 Comm: kworker/u5:7 Not tainted syzkaller #0
[  412.746489][ T4197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  412.756578][ T4197] Workqueue: hci4 hci_conn_timeout
[  412.761905][ T4197] RIP: 0010:hci_conn_timeout+0x24f/0x450
[  412.767538][ T4197] Code: 69 8d e8 c4 c1 f7 f8 48 8b 35 e5 c2 a4 04 bf 08 00 00 00 48 89 da 5b 41 5c 41 5d 41 5e 41 5f 5d e9 06 94 88 f8 e8 01 59 b3 f8 <0f> 0b e9 35 fe ff ff 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c dd fd
[  412.787179][ T4197] RSP: 0018:ffffc9000305fc08 EFLAGS: 00010293
[  412.793282][ T4197] RAX: ffffffff88c4730f RBX: ffff88802021a138 RCX: ffff88801a1bd940
[  412.802198][ T4197] RDX: 0000000000000000 RSI: 00000000ffffffff RDI: 0000000000000000
[  412.810246][ T4197] RBP: 00000000ffffffff R08: dffffc0000000000 R09: ffffed1004043403
[  412.818214][ T4197] R10: ffffed1004043403 R11: 1ffff11004043402 R12: dffffc0000000000
[  412.826215][ T4197] R13: dffffc0000000000 R14: ffff88802021a000 R15: ffff88802021a010
[  412.834210][ T4197] FS:  0000000000000000(0000) GS:ffff8880b9100000(0000) knlGS:0000000000000000
[  412.843170][ T4197] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  412.849774][ T4197] CR2: 0000000000000000 CR3: 00000000636de000 CR4: 00000000003506e0
[  412.858394][ T4197] Call Trace:
[  412.862087][ T4197]  <TASK>
[  412.866757][ T4197]  process_one_work+0x863/0x1000
[  412.871751][ T4197]  ? worker_detach_from_pool+0x240/0x240
[  412.877389][ T4197]  ? lockdep_hardirqs_off+0x70/0x100
[  412.882712][ T4197]  ? _raw_spin_lock_irq+0xab/0xe0
[  412.887737][ T4197]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  412.893134][ T4197]  ? wq_worker_running+0x97/0x170
[  412.898155][ T4197]  worker_thread+0xaa8/0x12a0
[  412.902888][ T4197]  kthread+0x436/0x520
[  412.906952][ T4197]  ? rcu_lock_release+0x20/0x20
[  412.914563][ T4197]  ? kthread_blkcg+0xd0/0xd0
[  412.919168][ T4197]  ret_from_fork+0x1f/0x30
[  412.923665][ T4197]  </TASK>
[  412.926689][ T4197] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  412.933943][ T4197] CPU: 1 PID: 4197 Comm: kworker/u5:7 Not tainted syzkaller #0
[  412.941462][ T4197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  412.951495][ T4197] Workqueue: hci4 hci_conn_timeout
[  412.956594][ T4197] Call Trace:
[  412.959852][ T4197]  <TASK>
[  412.962762][ T4197]  dump_stack_lvl+0x168/0x230
[  412.967422][ T4197]  ? show_regs_print_info+0x20/0x20
[  412.972614][ T4197]  ? load_image+0x3b0/0x3b0
[  412.977101][ T4197]  panic+0x2c9/0x7f0
[  412.980977][ T4197]  ? bpf_jit_dump+0xd0/0xd0
[  412.985464][ T4197]  ? ret_from_fork+0x1f/0x30
[  412.990037][ T4197]  ? hci_conn_timeout+0x24f/0x450
[  412.995037][ T4197]  __warn+0x248/0x2b0
[  412.998995][ T4197]  ? hci_conn_timeout+0x24f/0x450
[  413.003994][ T4197]  report_bug+0x1b7/0x2e0
[  413.008301][ T4197]  handle_bug+0x3a/0x70
[  413.012430][ T4197]  exc_invalid_op+0x16/0x40
[  413.016907][ T4197]  asm_exc_invalid_op+0x16/0x20
[  413.021731][ T4197] RIP: 0010:hci_conn_timeout+0x24f/0x450
[  413.027338][ T4197] Code: 69 8d e8 c4 c1 f7 f8 48 8b 35 e5 c2 a4 04 bf 08 00 00 00 48 89 da 5b 41 5c 41 5d 41 5e 41 5f 5d e9 06 94 88 f8 e8 01 59 b3 f8 <0f> 0b e9 35 fe ff ff 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c dd fd
[  413.046921][ T4197] RSP: 0018:ffffc9000305fc08 EFLAGS: 00010293
[  413.052966][ T4197] RAX: ffffffff88c4730f RBX: ffff88802021a138 RCX: ffff88801a1bd940
[  413.060914][ T4197] RDX: 0000000000000000 RSI: 00000000ffffffff RDI: 0000000000000000
[  413.068857][ T4197] RBP: 00000000ffffffff R08: dffffc0000000000 R09: ffffed1004043403
[  413.076803][ T4197] R10: ffffed1004043403 R11: 1ffff11004043402 R12: dffffc0000000000
[  413.084750][ T4197] R13: dffffc0000000000 R14: ffff88802021a000 R15: ffff88802021a010
[  413.092702][ T4197]  ? hci_conn_timeout+0x24f/0x450
[  413.097707][ T4197]  ? hci_conn_timeout+0x24f/0x450
[  413.102705][ T4197]  process_one_work+0x863/0x1000
[  413.107624][ T4197]  ? worker_detach_from_pool+0x240/0x240
[  413.113226][ T4197]  ? lockdep_hardirqs_off+0x70/0x100
[  413.118484][ T4197]  ? _raw_spin_lock_irq+0xab/0xe0
[  413.123481][ T4197]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  413.128830][ T4197]  ? wq_worker_running+0x97/0x170
[  413.133833][ T4197]  worker_thread+0xaa8/0x12a0
[  413.138514][ T4197]  kthread+0x436/0x520
[  413.142560][ T4197]  ? rcu_lock_release+0x20/0x20
[  413.147390][ T4197]  ? kthread_blkcg+0xd0/0xd0
[  413.151956][ T4197]  ret_from_fork+0x1f/0x30
[  413.156353][ T4197]  </TASK>
[  413.159599][ T4197] Kernel Offset: disabled
[  413.164178][ T4197] Rebooting in 86400 seconds..