last executing test programs:

6m11.357903435s ago: executing program 3 (id=4):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0xfffffffffffffdbc, 0x2, {{0x1, 0xd, 0x0, 0x9, 0x8}, 0x6, 0x1, 0x1, 0x4, 0x8, 0xe, 0x7, 0x1d, 0x3, 0x9, {0xa2d6, 0x200, 0xb, 0x40, 0x2, 0x1ff}}}}]}, 0x78}}, 0x0)
r4 = socket$inet6(0xa, 0x2, 0x0)
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000027c0)=@newtfilter={0x8b0, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r7, {0x0, 0x4}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0x87c, 0x2, [@TCA_MATCHALL_ACT={0x878, 0x2, [@m_police={0x874, 0x1, 0x0, 0x0, {{0xb}, {0x848, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x1ff, 0x3, 0x10000, 0x7fff, 0x7f, 0xfffffffb, 0x4, 0x2, 0xffffffc0, 0x5, 0x2234, 0x7f, 0x81b, 0x800, 0x8, 0x1, 0x3, 0x7ed53619, 0x1, 0x2, 0x9644, 0x4, 0x58b, 0x852, 0x3ff, 0x46, 0x2, 0x1, 0x0, 0x80000000, 0x10001, 0x790, 0x5, 0xab2, 0xfffffff9, 0x1a77, 0x9, 0x3, 0x400, 0x63c, 0x4, 0xffffffff, 0x1, 0x5, 0x1, 0x5b1f, 0x7b0, 0x7, 0x100, 0x6, 0xd, 0xff, 0x3, 0x10000, 0x6, 0x6b7, 0x1ff, 0x80, 0x4, 0x7, 0x3, 0xa14, 0x3, 0x2, 0x80000000, 0x81, 0x7, 0x8, 0x5, 0x10001, 0xf7, 0x3, 0xfffffff9, 0x1, 0x4, 0x8, 0xfff, 0x3, 0x1, 0x6, 0x7, 0x8, 0x100, 0xc0000000, 0x6, 0x6, 0x6, 0x8, 0x80000001, 0x8, 0x1d24, 0x2, 0x9, 0x0, 0x7f, 0x7, 0x863c, 0x101, 0x24, 0x5, 0x7, 0x6, 0x7a, 0x8, 0x0, 0x7, 0x470, 0x7f, 0x6, 0x0, 0x1, 0x0, 0x4, 0x9, 0x61, 0x200, 0x6, 0x2, 0x2, 0x6, 0x10001, 0x8, 0x7, 0xf, 0xda56, 0x7ffffffe, 0x80, 0x2f0cb955, 0x7, 0xfed, 0xf, 0x6ae, 0x2, 0x1, 0x9, 0x8001, 0x0, 0xec000, 0x20, 0x1, 0x2, 0xfffffffb, 0x7, 0x8, 0x4, 0x1, 0xffffcf1b, 0x3, 0x5517bc7b, 0x3, 0x4, 0xb6b, 0x5, 0x0, 0xac, 0x9, 0x6, 0x10, 0x9, 0x8, 0x80000001, 0x0, 0x74, 0x5, 0x7fffffff, 0x0, 0xa, 0x6, 0xffffffff, 0x8, 0x2, 0x62, 0x7f, 0x5, 0x3, 0xa, 0x1, 0x200, 0x9, 0x300, 0x5, 0x3, 0x6, 0xffffffff, 0xffb, 0xff, 0x3, 0x8, 0x3, 0x2, 0x5, 0xfca, 0x399d, 0x6, 0x8ab2, 0x18000, 0x2, 0xfffffff9, 0x2, 0x2, 0x528c, 0x5, 0x1fc, 0xac, 0xf, 0xd05, 0x9a2ce73, 0x4, 0x6, 0xe074, 0x6b10, 0x5, 0x1, 0x6, 0xb, 0xa26, 0xaf6, 0x0, 0xec, 0x8, 0xde16, 0xc418, 0xffffffff, 0xffffffff, 0x9, 0x4, 0x1, 0x5, 0x354d, 0x5, 0x2, 0x1, 0x7, 0xfffffffe, 0x177, 0x7, 0x0, 0x80, 0x5, 0x8, 0xfffffffb, 0x9, 0xe7b, 0x0, 0x7, 0x42bf, 0x10000, 0x9, 0x9, 0x6, 0x8004b75, 0x80000001, 0xffc, 0x5915, 0x10001, 0x1]}], [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x1080, 0x4, 0x80000ec2, 0x6, 0x8, 0x400, 0x5, 0x1, 0x7, 0x470, 0x487, 0x100, 0xa99, 0xffffff01, 0x9, 0x37f, 0x8, 0x6, 0x3, 0x3, 0x800, 0xd2f5, 0x40, 0x4, 0x4, 0x5, 0x7, 0x12, 0x2, 0x8, 0x101, 0xffffffff, 0x2, 0x10000, 0xa6, 0x3, 0x10000, 0x5, 0x4, 0x0, 0x3, 0x0, 0xa17a, 0x6, 0x95, 0x8, 0x6, 0x9, 0x1000, 0xb3000, 0xf, 0x3, 0x9, 0xb4, 0x94d, 0x9, 0x8, 0x4, 0x100, 0xec0, 0xffff, 0x4, 0x2, 0x3ff, 0x3e, 0xb827, 0x0, 0x0, 0x365, 0x8, 0x8, 0xf, 0x1, 0xfffffffe, 0xfffffff6, 0x93, 0x1, 0x92, 0x0, 0x7, 0xfffffffc, 0x7ff, 0x9, 0x2, 0x0, 0x2, 0x8, 0x1, 0x3, 0x9, 0xc, 0x7, 0x3, 0x3, 0x400, 0x100000, 0x7f, 0x2, 0x8, 0x6, 0x7, 0x4, 0x7, 0xfffffffa, 0x101, 0xadd9, 0xe, 0x0, 0x7, 0x7ffbffff, 0x2, 0x4, 0x0, 0x1000005, 0x4, 0x3, 0x8, 0x1, 0x6, 0x6, 0x2, 0xb, 0x3, 0x7f, 0xffff, 0x401, 0x1685, 0xa252, 0x2, 0x200, 0x3, 0x1, 0x400, 0xfffffffc, 0xfffffffc, 0x1000, 0x7ff, 0x1, 0x1f6, 0x751, 0x7, 0x40000000, 0x4, 0xffffdbb7, 0x50, 0xf, 0xf, 0xe, 0x3, 0x0, 0x81, 0xfff80000, 0x7a7, 0x1, 0x6, 0x3, 0x8, 0x4, 0xfffff18b, 0x2, 0x0, 0x4e8, 0x80, 0x4, 0x8, 0x5, 0x0, 0x5, 0x7fff, 0x7, 0x8, 0x6a4941c5, 0x2ea567b4, 0x8, 0x80000000, 0x9, 0x40, 0x2, 0xfff, 0x8, 0x3, 0x1, 0x1, 0xfffffffe, 0x0, 0x4, 0x691f, 0x0, 0x2, 0x9, 0x6, 0x0, 0x1ff, 0x3, 0x3, 0x6, 0x5fc8462f, 0x0, 0x7, 0xffff, 0xfffffffc, 0x5, 0x0, 0xb9a6, 0x522, 0x2, 0x2, 0x900, 0x8, 0xbb99, 0xb8000000, 0x8, 0xffffff01, 0xc0a1, 0x8, 0x8, 0xa, 0x59, 0xe, 0x2, 0x101, 0x5f502dc7, 0x7, 0x0, 0x4, 0x6, 0x80000001, 0x3, 0xffffff97, 0x2, 0xfff, 0x1, 0x40, 0x8, 0x3, 0x710, 0x8, 0x1, 0xfffff339, 0x3, 0x8001, 0x1, 0x8001, 0x9, 0x8, 0xfffffffa, 0x8, 0x9, 0x3, 0xe, 0x10000, 0x9, 0x9, 0x7, 0xfffffff8]}, @TCA_POLICE_TBF={0x3c, 0x1, {0xfffffe00, 0x3, 0x5, 0x1, 0xdbe8, {0x8, 0x0, 0xb55, 0x5, 0x7, 0x5}, {0x6, 0x0, 0xd, 0x5, 0x1, 0x5d17}, 0x2, 0x0, 0x6}}]]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x3}}}}]}]}}]}, 0x8b0}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r8)
socket(0x2, 0x5, 0x0)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
r9 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmmsg$inet(r4, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r10, @dev={0xac, 0x14, 0x14, 0x41}, @empty}}}], 0x20}}], 0x27, 0x0)

5m55.575884687s ago: executing program 32 (id=4):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0xfffffffffffffdbc, 0x2, {{0x1, 0xd, 0x0, 0x9, 0x8}, 0x6, 0x1, 0x1, 0x4, 0x8, 0xe, 0x7, 0x1d, 0x3, 0x9, {0xa2d6, 0x200, 0xb, 0x40, 0x2, 0x1ff}}}}]}, 0x78}}, 0x0)
r4 = socket$inet6(0xa, 0x2, 0x0)
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000027c0)=@newtfilter={0x8b0, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r7, {0x0, 0x4}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0x87c, 0x2, [@TCA_MATCHALL_ACT={0x878, 0x2, [@m_police={0x874, 0x1, 0x0, 0x0, {{0xb}, {0x848, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x1ff, 0x3, 0x10000, 0x7fff, 0x7f, 0xfffffffb, 0x4, 0x2, 0xffffffc0, 0x5, 0x2234, 0x7f, 0x81b, 0x800, 0x8, 0x1, 0x3, 0x7ed53619, 0x1, 0x2, 0x9644, 0x4, 0x58b, 0x852, 0x3ff, 0x46, 0x2, 0x1, 0x0, 0x80000000, 0x10001, 0x790, 0x5, 0xab2, 0xfffffff9, 0x1a77, 0x9, 0x3, 0x400, 0x63c, 0x4, 0xffffffff, 0x1, 0x5, 0x1, 0x5b1f, 0x7b0, 0x7, 0x100, 0x6, 0xd, 0xff, 0x3, 0x10000, 0x6, 0x6b7, 0x1ff, 0x80, 0x4, 0x7, 0x3, 0xa14, 0x3, 0x2, 0x80000000, 0x81, 0x7, 0x8, 0x5, 0x10001, 0xf7, 0x3, 0xfffffff9, 0x1, 0x4, 0x8, 0xfff, 0x3, 0x1, 0x6, 0x7, 0x8, 0x100, 0xc0000000, 0x6, 0x6, 0x6, 0x8, 0x80000001, 0x8, 0x1d24, 0x2, 0x9, 0x0, 0x7f, 0x7, 0x863c, 0x101, 0x24, 0x5, 0x7, 0x6, 0x7a, 0x8, 0x0, 0x7, 0x470, 0x7f, 0x6, 0x0, 0x1, 0x0, 0x4, 0x9, 0x61, 0x200, 0x6, 0x2, 0x2, 0x6, 0x10001, 0x8, 0x7, 0xf, 0xda56, 0x7ffffffe, 0x80, 0x2f0cb955, 0x7, 0xfed, 0xf, 0x6ae, 0x2, 0x1, 0x9, 0x8001, 0x0, 0xec000, 0x20, 0x1, 0x2, 0xfffffffb, 0x7, 0x8, 0x4, 0x1, 0xffffcf1b, 0x3, 0x5517bc7b, 0x3, 0x4, 0xb6b, 0x5, 0x0, 0xac, 0x9, 0x6, 0x10, 0x9, 0x8, 0x80000001, 0x0, 0x74, 0x5, 0x7fffffff, 0x0, 0xa, 0x6, 0xffffffff, 0x8, 0x2, 0x62, 0x7f, 0x5, 0x3, 0xa, 0x1, 0x200, 0x9, 0x300, 0x5, 0x3, 0x6, 0xffffffff, 0xffb, 0xff, 0x3, 0x8, 0x3, 0x2, 0x5, 0xfca, 0x399d, 0x6, 0x8ab2, 0x18000, 0x2, 0xfffffff9, 0x2, 0x2, 0x528c, 0x5, 0x1fc, 0xac, 0xf, 0xd05, 0x9a2ce73, 0x4, 0x6, 0xe074, 0x6b10, 0x5, 0x1, 0x6, 0xb, 0xa26, 0xaf6, 0x0, 0xec, 0x8, 0xde16, 0xc418, 0xffffffff, 0xffffffff, 0x9, 0x4, 0x1, 0x5, 0x354d, 0x5, 0x2, 0x1, 0x7, 0xfffffffe, 0x177, 0x7, 0x0, 0x80, 0x5, 0x8, 0xfffffffb, 0x9, 0xe7b, 0x0, 0x7, 0x42bf, 0x10000, 0x9, 0x9, 0x6, 0x8004b75, 0x80000001, 0xffc, 0x5915, 0x10001, 0x1]}], [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x1080, 0x4, 0x80000ec2, 0x6, 0x8, 0x400, 0x5, 0x1, 0x7, 0x470, 0x487, 0x100, 0xa99, 0xffffff01, 0x9, 0x37f, 0x8, 0x6, 0x3, 0x3, 0x800, 0xd2f5, 0x40, 0x4, 0x4, 0x5, 0x7, 0x12, 0x2, 0x8, 0x101, 0xffffffff, 0x2, 0x10000, 0xa6, 0x3, 0x10000, 0x5, 0x4, 0x0, 0x3, 0x0, 0xa17a, 0x6, 0x95, 0x8, 0x6, 0x9, 0x1000, 0xb3000, 0xf, 0x3, 0x9, 0xb4, 0x94d, 0x9, 0x8, 0x4, 0x100, 0xec0, 0xffff, 0x4, 0x2, 0x3ff, 0x3e, 0xb827, 0x0, 0x0, 0x365, 0x8, 0x8, 0xf, 0x1, 0xfffffffe, 0xfffffff6, 0x93, 0x1, 0x92, 0x0, 0x7, 0xfffffffc, 0x7ff, 0x9, 0x2, 0x0, 0x2, 0x8, 0x1, 0x3, 0x9, 0xc, 0x7, 0x3, 0x3, 0x400, 0x100000, 0x7f, 0x2, 0x8, 0x6, 0x7, 0x4, 0x7, 0xfffffffa, 0x101, 0xadd9, 0xe, 0x0, 0x7, 0x7ffbffff, 0x2, 0x4, 0x0, 0x1000005, 0x4, 0x3, 0x8, 0x1, 0x6, 0x6, 0x2, 0xb, 0x3, 0x7f, 0xffff, 0x401, 0x1685, 0xa252, 0x2, 0x200, 0x3, 0x1, 0x400, 0xfffffffc, 0xfffffffc, 0x1000, 0x7ff, 0x1, 0x1f6, 0x751, 0x7, 0x40000000, 0x4, 0xffffdbb7, 0x50, 0xf, 0xf, 0xe, 0x3, 0x0, 0x81, 0xfff80000, 0x7a7, 0x1, 0x6, 0x3, 0x8, 0x4, 0xfffff18b, 0x2, 0x0, 0x4e8, 0x80, 0x4, 0x8, 0x5, 0x0, 0x5, 0x7fff, 0x7, 0x8, 0x6a4941c5, 0x2ea567b4, 0x8, 0x80000000, 0x9, 0x40, 0x2, 0xfff, 0x8, 0x3, 0x1, 0x1, 0xfffffffe, 0x0, 0x4, 0x691f, 0x0, 0x2, 0x9, 0x6, 0x0, 0x1ff, 0x3, 0x3, 0x6, 0x5fc8462f, 0x0, 0x7, 0xffff, 0xfffffffc, 0x5, 0x0, 0xb9a6, 0x522, 0x2, 0x2, 0x900, 0x8, 0xbb99, 0xb8000000, 0x8, 0xffffff01, 0xc0a1, 0x8, 0x8, 0xa, 0x59, 0xe, 0x2, 0x101, 0x5f502dc7, 0x7, 0x0, 0x4, 0x6, 0x80000001, 0x3, 0xffffff97, 0x2, 0xfff, 0x1, 0x40, 0x8, 0x3, 0x710, 0x8, 0x1, 0xfffff339, 0x3, 0x8001, 0x1, 0x8001, 0x9, 0x8, 0xfffffffa, 0x8, 0x9, 0x3, 0xe, 0x10000, 0x9, 0x9, 0x7, 0xfffffff8]}, @TCA_POLICE_TBF={0x3c, 0x1, {0xfffffe00, 0x3, 0x5, 0x1, 0xdbe8, {0x8, 0x0, 0xb55, 0x5, 0x7, 0x5}, {0x6, 0x0, 0xd, 0x5, 0x1, 0x5d17}, 0x2, 0x0, 0x6}}]]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x3}}}}]}]}}]}, 0x8b0}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r8)
socket(0x2, 0x5, 0x0)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
r9 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmmsg$inet(r4, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r10, @dev={0xac, 0x14, 0x14, 0x41}, @empty}}}], 0x20}}], 0x27, 0x0)

22.918056209s ago: executing program 1 (id=523):
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_usb_control_io$printer(0xffffffffffffffff, 0x0, &(0x7f00000011c0)={0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='\x00'/16, @ANYRES32=0x0, @ANYRES32], 0x50)
mount$fuse(0x0, 0x0, 0x0, 0x1, &(0x7f0000000ac0)=ANY=[@ANYBLOB="e7e4861f4bcfc6ea1143faf5be5b5e6bb7fabe3baafc310136a16290571ae8331b4e694ced800eb58807a40c5e77fb570e73ce84643ade9bd61334c3db831aa9838138efc968d22a37602fe9fbd34248422a878423c342d2dacc0f31a82f8b8dd66eb41a31a685e98b3080", @ANYBLOB=',rootmo'])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000440)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

20.232650422s ago: executing program 1 (id=530):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp256-generic\x00'}, 0x58)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
sendmmsg$sock(r1, &(0x7f0000002480)=[{{0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000000340)="8224aca5f41b9e0ec5e7a706c919e7c0e343f0cd0a779c17e7f992396b09252009d2d12e9475a57ec39f71417044cf4151af34ac1dfd5d87cdd80bc4c24478821f64d4d971bbc1fc7bdd181a839344917165bb9cd0fa568aac55d8e38ee30fd3a9bc63e2656b6941c812e6ea0692ec276deb2b7b817906cf8c5429a42164e8bb521e216e554d509a0fd0d86729b5f4b9a01fb336bef1be8a68a62845", 0x9c}, {0x0}, {0x0}], 0x3}}], 0x1, 0x0)
syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000002c0)}], 0x1, &(0x7f0000000b40)=[@hoplimit={{0x14, 0x29, 0x34, 0x4}}, @hoplimit={{0x14, 0x29, 0x34, 0xfffffffd}}, @dstopts_2292={{0x128, 0x29, 0x4, {0x4, 0x21, '\x00', [@calipso={0x7, 0x10, {0x1, 0x2, 0x9, 0x9f, [0x8]}}, @generic={0xfe, 0x72, "f4a4a3142ee1e12b9826287997a6b33d89f3d60da1641d9fe3896c3c1b6c130ef4f01be8f5836d417874540898619050b14420ab124b11de36afb16ef4fc1cf3f4e4fa0e647cd1b07b068d3894180b6aa7527a4a8252f6836a0d67a7782c675a838ea989e567e4774de1f52d188e0b0888c5"}, @generic={0x80, 0x14, "09e12e5f0b6bdcf72f2ec7008a15fa88b025e0ad"}, @calipso={0x7, 0x40, {0x1, 0xe, 0x7a, 0x8001, [0x5, 0x9, 0x4, 0x6, 0x4, 0x400, 0xb]}}, @ra={0x5, 0x2, 0xa7e}, @pad1, @ra={0x5, 0x2, 0xbf4}, @hao={0xc9, 0x10, @private2}, @generic={0x93, 0x11, "e80ee304ecb784ec4655260cecea14e498"}]}}}, @hoplimit={{0x14}}, @hopopts={{0x140, 0x29, 0x36, {0x5e, 0x24, '\x00', [@generic={0xff, 0x43, "50d650847249ad288702ebd0d654b985e8908defb7ec6c5ff115c58e128b9e3a21c34b45ef9de99984e143ca7c3509a971b2ec429ee1edc0bb903fe94b32c28f70dac4"}, @pad1, @pad1, @calipso={0x7, 0x10, {0x0, 0x2, 0x7, 0x6, [0x7fff]}}, @generic={0x8, 0xa0, "c8a110995d439fbfac9716a99c357bcb2d59a850490739734f6b321d19b3754df39cc2dc26cf263cbebbddb9a7f17b6771f74c46623f9e38bd23e6f0a2fd3a9a017f66738394aca44d1a9f0b35d9df0a964360ab0900a5e6fcac1cd41c91c97f6826ff706c41edc4e00205bbb53218ed58a1122d993b55a1b9a870a17e7869e3fc704b388202add651f628963a90fea5d8196d5e0373fd13584ae57b4f1c03d4"}, @calipso={0x7, 0x20, {0x3, 0x6, 0x3, 0x7, [0x0, 0x8000, 0xffffffffffffff04]}}, @generic={0x1, 0x4, "2bdb86d1"}]}}}, @rthdrdstopts={{0x18, 0x29, 0x37, {0x73}}}, @flowinfo={{0x14, 0x29, 0xb, 0x2}}, @rthdr={{0x18}}, @rthdr_2292={{0x38, 0x29, 0x39, {0x3a, 0x4, 0x2, 0x70, 0x0, [@mcast1, @mcast2]}}}], 0x330}}], 0x1, 0x810)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r5 = accept4(r4, 0x0, 0x0, 0x800)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

17.258548334s ago: executing program 1 (id=535):
ioctl$DRM_IOCTL_MODE_GETENCODER(0xffffffffffffffff, 0xc01464a6, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x18)
syz_open_dev$vbi(0x0, 0x2, 0x2)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
syz_open_dev$sg(0x0, 0x0, 0x8002)
write$sndseq(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff})
setsockopt$TIPC_SRC_DROPPABLE(r4, 0x10f, 0x80, &(0x7f0000001640)=0xc, 0x45)
sendmmsg$inet(r4, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)

13.504739554s ago: executing program 0 (id=540):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r4, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
r5 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x0, 0x2}, 0x10)
sendmsg$tipc(r5, &(0x7f0000000540)={&(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x4}}, 0x10, 0x0}, 0x10)
setsockopt$TIPC_GROUP_LEAVE(r5, 0x10f, 0x88)
r6 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_FILL_RING(r6, 0x11b, 0x5, 0x0, 0x0)

12.244347245s ago: executing program 2 (id=542):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
sched_setaffinity(0x0, 0x0, 0x0)
r4 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x201, 0xa401)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r4, 0x8108551b, &(0x7f0000000000)={0x0, 0x0, "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"})
sendmsg(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)=[{}], 0x1, 0x0, 0x0, 0x2c}, 0x4)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r5, r6, 0x0, 0x20000023896)

11.670985293s ago: executing program 4 (id=543):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x41, &(0x7f0000000040)=0x654a, 0x4)
bind$inet(r5, &(0x7f0000000200)={0x2, 0x400, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
sendmmsg(r5, &(0x7f0000007fc0), 0x800001d, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

11.655488606s ago: executing program 0 (id=544):
syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x10, &(0x7f0000000140)={[{@noload}]}, 0xea, 0x472, &(0x7f0000000f40)="$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")
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
capset(0x0, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x84042, 0x1fb)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = shmget$private(0x0, 0x2000, 0x100, &(0x7f0000ff9000/0x2000)=nil)
shmat(r5, &(0x7f0000000000/0x2000)=nil, 0x5000)
write$P9_RUNLINKAT(r0, &(0x7f0000000000)={0xfffffffffffffecb, 0x4d, 0x1}, 0xffffffd7)

10.704090678s ago: executing program 2 (id=545):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x54)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
pipe2$9p(&(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x0)
r2 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
splice(r1, 0x0, r2, 0x0, 0x10000000000016, 0x0)
r3 = open(0x0, 0x14103e, 0x18a)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
sync()
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x13)
ioctl$TCSETS2(r4, 0x402c542b, &(0x7f0000000080)={0x5, 0x0, 0x5, 0x1, 0x6, "d9d1ea7f3c4b3b3c1b6ef637937590538b6229", 0xfffffffd, 0xffffffff})
r5 = open(&(0x7f00000001c0)='./file0\x00', 0x14b042, 0x83)
ftruncate(r5, 0x3000000)
sendfile(r3, r5, 0x0, 0x80000001)

9.754205046s ago: executing program 4 (id=546):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x4, &(0x7f0000000340)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
r1 = getpid()
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r4, 0x10e, 0x4, &(0x7f0000000140)=0x6, 0x4)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000200), 0x4)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)=ANY=[@ANYBLOB="6c00000000010104000000000000000202000000240001801400018008000100e000000108000200000000000c0002800500010000000000240002800c00028005000100000000001400018008000100e00000010800020000000000080007"], 0x6c}}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="14000000020105"], 0x14}, 0x1, 0x0, 0x0, 0x20044804}, 0x40040)
openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)

8.367055467s ago: executing program 2 (id=547):
socketpair$tipc(0x1e, 0x2, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x2200c840)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x6000003, 0x42031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
write$UHID_INPUT(r5, &(0x7f0000000000)={0xc, {"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", 0x1000}}, 0x1006)

8.191652154s ago: executing program 0 (id=548):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
r4 = syz_open_dev$usbfs(&(0x7f0000000080), 0x70, 0x101301)
r5 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$sock_inet_SIOCSIFDSTADDR(r5, 0x8918, &(0x7f0000000180)={'macvlan0\x00', {0x2, 0x4e20, @remote}})
ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000000)={0x0, 0x6, &(0x7f0000000040)={&(0x7f0000000280)={0x80, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x100e}, @CTA_SEQ_ADJ_REPLY={0x14, 0x4, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x5}, @CTA_SEQADJ_OFFSET_BEFORE={0xe6ba7615268e7f7}]}]}, 0x80}}, 0x0)

8.190488556s ago: executing program 4 (id=549):
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_setup(0x2ddd, &(0x7f00000006c0)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_setup(0x5e2, &(0x7f0000000080)={0x0, 0x7935, 0x1}, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r3 = accept$alg(r2, 0x0, 0x0)
sendmsg$alg(r3, &(0x7f0000001840)={0x0, 0x0, 0x0, 0x0, &(0x7f00000017c0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
sendmmsg$alg(r3, &(0x7f0000000100)=[{0x0, 0x0, &(0x7f0000001780), 0x13}], 0x1, 0x0)
recvmsg(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000002540)=[{&(0x7f0000000080)=""/101, 0x65}], 0x1}, 0xf0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

8.110461507s ago: executing program 1 (id=550):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x1a, &(0x7f0000000100)=0x401, 0x4)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0xfffffffe, @empty, 0xffffffff}, 0x1c)
setuid(0xee01)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x3)
bind$inet6(r1, &(0x7f0000000080)={0xa, 0x14e22, 0xfffffff8, @ipv4}, 0x1c)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r3, 0x0)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r4, 0xa7ba)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r5, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r6, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r7, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r8, &(0x7f00000000c0)=[{&(0x7f0000000200)="580000001400192340834b80040d8c560a0677bc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd0000001000010002081000418e00000004fcff", 0x58}], 0x1)

7.056901037s ago: executing program 4 (id=551):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', 0xffffffffffffffff, 0x0, 0x1e0000}, 0x18)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x200000b, 0x59033, 0xffffffffffffffff, 0x0)
r3 = userfaultfd(0x801)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r3, 0xc028aa03, &(0x7f0000000080)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000582000/0x2000)=nil, 0x800000})
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000039c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc00e}, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r4 = memfd_create(&(0x7f0000000100)='\x103q}2[\xe0\x9a\xee\xaf\x03\x97\x9et\v\"|Ma\x86\xe7\xc0\x14\x9f\xb9h\xb1\x96\xe7=I\x860S6\xb5\xa8\xc2\x95Je%\xfeG\'e\xe5\x8f\xf8\xd2\x1c\xc0\xfb\x1c\xa6\xab\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94k\xcd\t\x00\x90k\xd6\x05\xb6&\xd0\x9daA\xc5\x9c_\xd4\x18,\f\xd4s\xb2\x99/\xc0\x9a\xf2Oc\xc0c\x03gB!\xb0\xb8n\x01\x9bT\x95\x10\x86\xe8$\x7f\r[\xf9\x0e1v\xb1\n\x88\v\x95uy\xb5:`\x8b\nC\x18A;\xaa%\xaf\xc7\xa3\xac\xa2D\xb5\xe2\xe1\xdc(\xfd\x05\x9fB\x84O\xfe@\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x1a\xa0\x17\xe3\xac\xe9\xc9\xa7\x8a\x1b\x03\"&\xac\xcap>\xccZ\x01\xbc\x18\xc1\xb9\xe9\v\x8b\x9c\xb4Q\xd4\x96EV<>\x99\xca\xb3\xe0\xc4tL\xed\xf5W\xbd#\xcf\x8a\x84\xed\x9f/\xd4\xbb\xea;-Dp\xf8\xd0F\x90\xf8\x92Ip6\xf4\x16\xe8\x14\xe0\x92!\x92-F\xe2\x14D\x91\xa8b\x04\xdd\x1d\a\xdc\xe0\x18\x85{\x80Q\xf6k\x96\xfaQ\x9fW\vO\xf0\xe4O\\\xceS\xf2\xde\x049d\x06#\x88\xc3\xdf\x85O\x1c\xc3\xad?r\xd7\x0e\x00\xd7\x83\xb0\x88\x9c\xf6Y-F\x98\xdd\x9c~\xfd\x95\xc3\xb6lC\xaa\"Y\xa2K\xecz\x84:*\xf5Y\xd1\x9b1\x91\x9b\x15\xd4\xec\x02o\x01&\xaa\x90w\xc4\xc7yn\xb5\x1ag\xab&?\xbe\xcb\xe8v\xa8\xe0\xa4\x81sW\xacf\x149\xd2}\xefCGa\x9a$4\x8c\xa5!p\x83\x05\x96%\x02%\xabj\n\b\xc8NC\x91}&y\xd3\xe1\xeep\'\xc5\xab\x19GsX5\x8c\n\x9fh\xee;4\xb1%V\xe0\xa9\x8e\xf30:\xd8\x18N~G\x139\xca', 0x2)
mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x13, r4, 0x0)
fcntl$addseals(r4, 0x409, 0x8)

6.102574497s ago: executing program 1 (id=552):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000080)=ANY=[], 0x50)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000000c0)='sched_switch\x00', r0, 0x0, 0x36}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, &(0x7f00000003c0)={0xc, 0x0, <r5=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r4, 0x3ba0, &(0x7f0000000d40)={0x48, 0x5, r5, 0x0, <r6=>0xffffffffffffffff})
ioctl$IOMMU_TEST_OP_ACCESS_RW(r4, 0x3ba0, &(0x7f0000000300)={0x48, 0x8, r6, 0x0, 0x3fff, 0x0, 0x0, 0x4})
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
timer_create(0x1, 0x0, 0x0)

5.807858061s ago: executing program 0 (id=553):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000080)='./file1\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='force,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c6e6f626172726965722c6e6f626172726965722c63726561746f723d154a38a42c6e6c733d6370313235352c666f7263652c008eb5fa1722dda5fbe9235a8df701619f85980541d7a0e26fe2fac5ae1352e7d2dcfe4a0500cee529e80e5c14103ca36a955d425c9805101fdd1490dd9d4a10a38755de8712ca45d8e7b68652a8ca9863b9ddee9f99f84ea007795e09d6373c14fa0fbe9074"], 0x1, 0x6e8, &(0x7f0000001f80)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000400)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
unshare(0x28060400)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
lseek(0xffffffffffffffff, 0x14, 0x1)
syz_io_uring_submit(0x0, 0x0, 0x0)
link(&(0x7f0000000080)='./file1\x00', &(0x7f0000000300)='./bus\x00')

3.744235048s ago: executing program 2 (id=554):
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000600)='./file0\x00', 0x0, &(0x7f0000000640), 0x1, 0x5b3, &(0x7f0000000680)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000008c0)={@ifindex, r5, 0x11, 0x4, 0x0, @void, @value=r4}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x18)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x13, 0x0, 0x0, 0x2}, 0x10}}, 0x0)

3.535325849s ago: executing program 1 (id=555):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000003c0), 0x42280, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = socket$unix(0x1, 0x5, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000026c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2, 0x2}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x0, '\x00', 0x1, 0x7, 0x100, 0x8}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x305200, 0x0)
r8 = socket$unix(0x1, 0x1, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x80000, {0x0, 0x0, 0x0, r10, {}, {0xffe6, 0xb}, {0xfff2, 0x3}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0xc, 0x2, [@TCA_FQ_CODEL_MEMORY_LIMIT={0x8, 0x9, 0x9}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x2000c061}, 0x4008080)
ioctl$SIOCSIFHWADDR(r7, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

3.268407798s ago: executing program 0 (id=556):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x7, @dev={0xac, 0x14, 0x14, 0x17}}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r4 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x84, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r4, 0x40045542, 0x0)
syz_open_dev$sndmidi(0x0, 0x2, 0xa02)
getsockopt$sock_buf(r2, 0x1, 0x1f, &(0x7f0000000180)=""/110, &(0x7f00000002c0)=0x6e)
socket$kcm(0x29, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48)

2.116760351s ago: executing program 4 (id=557):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
futex(&(0x7f000000cffc), 0x5, 0xffffffff, 0x0, 0x0, 0x1)
mbind(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r5, 0x400448e6, &(0x7f0000000080))
ioctl$sock_bt_hci(r5, 0x400448e6, 0x0)
bind$alg(r4, &(0x7f00000001c0)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes128\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, 0x0, 0x0)

1.808875357s ago: executing program 2 (id=558):
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c0000000203030100000000000000000400000a0800010001"], 0x1c}, 0x1, 0x0, 0x0, 0x40841}, 0x2000c010)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port0\x00', 0x511e36599023629, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r1, 0x0)
r2 = syz_io_uring_setup(0x24fa, &(0x7f00000002c0)={0x0, 0x0, 0x10100}, &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000680)=<r4=>0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r5, &(0x7f00000001c0)=ANY=[@ANYBLOB='2'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r5, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READ_FIXED)
io_uring_enter(r2, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
wait4(0x0, 0xfffffffffffffffe, 0x8, 0x0)

555.533406ms ago: executing program 0 (id=559):
write$RDMA_USER_CM_CMD_BIND(0xffffffffffffffff, &(0x7f00000005c0)={0x18, 0x44, 0xfa00, {0xffffffffffffffff, 0x10, 0x0, @in={0x2, 0x4e23, @loopback}}}, 0x90)
ioctl$SNDRV_TIMER_IOCTL_STATUS64(0xffffffffffffffff, 0x80605414, &(0x7f0000000000))
ioctl$KDGKBMODE(0xffffffffffffffff, 0x4b44, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
socket$nl_generic(0x10, 0x3, 0x10)
mount(&(0x7f00000001c0)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000080)='hpfs\x00', 0x4080, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
madvise(&(0x7f0000519000/0x1000)=nil, 0x1000, 0x66)
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000000100), 0x0)
gettid()
timer_create(0x0, 0x0, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)

480.408164ms ago: executing program 4 (id=560):
syz_open_dev$media(0x0, 0x3, 0x0)
r0 = socket$kcm(0xa, 0x1, 0x106)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000003000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0x1, 0x43, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f00003e1000/0x18000)=nil, &(0x7f00000001c0)=[@text64={0x40, 0x0}], 0x1, 0x40, 0x0, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000340)={[0x3ffffd, 0x4, 0x0, 0x0, 0x0, 0xfffffffffffffffb, 0x213f85fe, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x5, 0x7, 0x100000000], 0x3000, 0x280384})
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r3, 0x0)
socket$qrtr(0x2a, 0x2, 0x0)
socket$qrtr(0x2a, 0x2, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
setsockopt$sock_attach_bpf(r0, 0x29, 0x4e, 0x0, 0x4)
syz_emit_ethernet(0x3e, &(0x7f0000000680)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010100, @local}, @time_exceeded={0xb, 0x0, 0x0, 0x3, 0x2c, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x89, 0x0, @private, @local}}}}}}, 0x0)
getsockopt$inet_sctp_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f0000000000)={0x0, 0x4, 0x2, 0x9, 0x2, 0x9}, &(0x7f0000000040)=0x14)

0s ago: executing program 2 (id=561):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$erofs(&(0x7f00000002c0), &(0x7f0000000380)='./file1\x00', 0x4002, &(0x7f0000000f80)=ANY=[@ANYRES16=0x0], 0x1, 0x215, &(0x7f0000000080)="$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")
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000002d00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40042}}], 0x1, 0x20000000)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
fadvise64(r3, 0xfcff, 0x0, 0x3)
mkdirat(0xffffffffffffff9c, 0x0, 0x1a4)
symlinkat(&(0x7f0000000040)='./file1/file3\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00')
renameat2(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0xffffffffffffffff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
renameat2(0xffffffffffffff9c, &(0x7f0000000780)='./file7\x00', 0xffffffffffffff9c, &(0x7f0000000380)='./file1/file3\x00', 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.19' (ED25519) to the list of known hosts.
[   80.790988][ T5810] cgroup: Unknown subsys name 'net'
[   80.921457][ T5810] cgroup: Unknown subsys name 'cpuset'
[   80.930628][ T5810] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   82.610104][ T5810] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   84.768855][ T5823] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   84.788122][ T5823] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   84.796072][ T5823] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   84.807746][ T5823] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   84.827776][ T5823] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   84.845109][ T5144] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   84.857699][   T52] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   84.867713][   T52] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   84.875999][   T52] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   84.884766][   T52] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   84.913271][ T5823] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   84.929282][ T5823] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   84.937804][ T5823] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   84.946208][ T5823] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   84.955223][ T5823] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   85.013413][   T52] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   85.028247][   T52] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   85.037388][   T52] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   85.045757][   T52] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   85.060625][ T5826] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   85.068449][ T5826] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   85.077062][ T5834] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   85.095023][ T5834] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   85.104983][ T5826] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   85.119931][ T5826] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   85.549413][ T5820] chnl_net:caif_netlink_parms(): no params data found
[   85.735730][ T5827] chnl_net:caif_netlink_parms(): no params data found
[   85.790198][ T5830] chnl_net:caif_netlink_parms(): no params data found
[   85.859023][ T5820] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.866295][ T5820] bridge0: port 1(bridge_slave_0) entered disabled state
[   85.874405][ T5820] bridge_slave_0: entered allmulticast mode
[   85.882099][ T5820] bridge_slave_0: entered promiscuous mode
[   85.897901][ T5824] chnl_net:caif_netlink_parms(): no params data found
[   85.936595][ T5820] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.944428][ T5820] bridge0: port 2(bridge_slave_1) entered disabled state
[   85.952010][ T5820] bridge_slave_1: entered allmulticast mode
[   85.959653][ T5820] bridge_slave_1: entered promiscuous mode
[   86.049602][ T5820] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   86.109824][ T5820] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   86.169000][ T5827] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.176798][ T5827] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.184612][ T5827] bridge_slave_0: entered allmulticast mode
[   86.192728][ T5827] bridge_slave_0: entered promiscuous mode
[   86.239311][ T5827] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.246546][ T5827] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.253920][ T5827] bridge_slave_1: entered allmulticast mode
[   86.261812][ T5827] bridge_slave_1: entered promiscuous mode
[   86.277055][ T5820] team0: Port device team_slave_0 added
[   86.320610][ T5820] team0: Port device team_slave_1 added
[   86.326637][ T5831] chnl_net:caif_netlink_parms(): no params data found
[   86.343344][ T5830] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.350742][ T5830] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.358304][ T5830] bridge_slave_0: entered allmulticast mode
[   86.365709][ T5830] bridge_slave_0: entered promiscuous mode
[   86.419109][ T5830] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.426339][ T5830] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.433616][ T5830] bridge_slave_1: entered allmulticast mode
[   86.441436][ T5830] bridge_slave_1: entered promiscuous mode
[   86.451463][ T5827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   86.526614][ T5827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   86.536364][ T5824] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.543774][ T5824] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.551765][ T5824] bridge_slave_0: entered allmulticast mode
[   86.559328][ T5824] bridge_slave_0: entered promiscuous mode
[   86.568191][ T5820] batman_adv: batadv0: Adding interface: batadv_slave_0
[   86.575153][ T5820] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   86.601129][ T5820] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   86.645686][ T5824] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.653169][ T5824] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.660798][ T5824] bridge_slave_1: entered allmulticast mode
[   86.668562][ T5824] bridge_slave_1: entered promiscuous mode
[   86.676231][ T5820] batman_adv: batadv0: Adding interface: batadv_slave_1
[   86.683554][ T5820] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   86.709710][ T5820] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   86.729087][ T5830] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   86.782377][ T5830] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   86.807918][ T5827] team0: Port device team_slave_0 added
[   86.885600][ T5830] team0: Port device team_slave_0 added
[   86.894482][ T5827] team0: Port device team_slave_1 added
[   86.900599][ T5826] Bluetooth: hci1: command tx timeout
[   86.906233][ T5826] Bluetooth: hci0: command tx timeout
[   86.916577][ T5824] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   86.966994][ T5830] team0: Port device team_slave_1 added
[   86.977473][ T5826] Bluetooth: hci2: command tx timeout
[   87.021128][ T5824] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   87.039205][ T5820] hsr_slave_0: entered promiscuous mode
[   87.046373][ T5820] hsr_slave_1: entered promiscuous mode
[   87.054651][ T5831] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.062848][ T5831] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.070996][ T5831] bridge_slave_0: entered allmulticast mode
[   87.079300][ T5831] bridge_slave_0: entered promiscuous mode
[   87.138460][ T5826] Bluetooth: hci4: command tx timeout
[   87.144115][ T5826] Bluetooth: hci3: command tx timeout
[   87.157776][ T5831] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.164987][ T5831] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.172830][ T5831] bridge_slave_1: entered allmulticast mode
[   87.181268][ T5831] bridge_slave_1: entered promiscuous mode
[   87.190226][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_0
[   87.197295][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   87.223693][ T5830] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   87.235822][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_0
[   87.242865][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   87.268955][ T5827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   87.321085][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_1
[   87.328428][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   87.354629][ T5830] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   87.366603][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_1
[   87.373965][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   87.400475][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   87.427492][ T5824] team0: Port device team_slave_0 added
[   87.475332][ T5824] team0: Port device team_slave_1 added
[   87.498834][ T5831] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   87.511826][ T5831] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   87.609367][ T5830] hsr_slave_0: entered promiscuous mode
[   87.616059][ T5830] hsr_slave_1: entered promiscuous mode
[   87.623297][ T5830] debugfs: 'hsr0' already exists in 'hsr'
[   87.629185][ T5830] Cannot create hsr debugfs directory
[   87.635592][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_0
[   87.642707][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   87.669149][ T5824] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   87.722194][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_1
[   87.729245][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   87.755861][ T5824] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   87.769430][ T5831] team0: Port device team_slave_0 added
[   87.788818][ T5827] hsr_slave_0: entered promiscuous mode
[   87.795360][ T5827] hsr_slave_1: entered promiscuous mode
[   87.801774][ T5827] debugfs: 'hsr0' already exists in 'hsr'
[   87.807587][ T5827] Cannot create hsr debugfs directory
[   87.842634][ T5831] team0: Port device team_slave_1 added
[   87.998337][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_0
[   88.005328][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   88.031817][ T5831] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   88.049186][ T5824] hsr_slave_0: entered promiscuous mode
[   88.055627][ T5824] hsr_slave_1: entered promiscuous mode
[   88.062378][ T5824] debugfs: 'hsr0' already exists in 'hsr'
[   88.068160][ T5824] Cannot create hsr debugfs directory
[   88.093104][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_1
[   88.100271][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   88.126428][ T5831] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   88.269774][ T5831] hsr_slave_0: entered promiscuous mode
[   88.276263][ T5831] hsr_slave_1: entered promiscuous mode
[   88.282893][ T5831] debugfs: 'hsr0' already exists in 'hsr'
[   88.288825][ T5831] Cannot create hsr debugfs directory
[   88.571056][ T5820] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   88.584722][ T5820] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   88.629499][ T5820] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   88.655890][ T5820] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   88.721980][ T5827] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   88.732689][ T5827] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   88.744312][ T5827] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   88.770831][ T5827] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   88.845613][ T5830] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   88.864270][ T5830] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   88.875426][ T5830] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   88.887857][ T5830] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   88.979342][   T52] Bluetooth: hci1: command tx timeout
[   88.984864][ T5826] Bluetooth: hci0: command tx timeout
[   88.989870][ T5824] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   89.030832][ T5824] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   89.042703][ T5824] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   89.057337][ T5826] Bluetooth: hci2: command tx timeout
[   89.075102][ T5824] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   89.152850][ T5831] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   89.176557][ T5831] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   89.189814][ T5831] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   89.201600][ T5831] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   89.217509][   T52] Bluetooth: hci4: command tx timeout
[   89.223144][ T5826] Bluetooth: hci3: command tx timeout
[   89.262070][ T5820] 8021q: adding VLAN 0 to HW filter on device bond0
[   89.281211][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0
[   89.359752][ T5820] 8021q: adding VLAN 0 to HW filter on device team0
[   89.372669][ T5827] 8021q: adding VLAN 0 to HW filter on device team0
[   89.403345][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.410660][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[   89.421900][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.429116][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[   89.459668][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.466918][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[   89.492569][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.499838][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[   89.556399][ T5830] 8021q: adding VLAN 0 to HW filter on device bond0
[   89.626955][ T5830] 8021q: adding VLAN 0 to HW filter on device team0
[   89.654525][ T5824] 8021q: adding VLAN 0 to HW filter on device bond0
[   89.676034][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.683276][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   89.732486][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.739775][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   89.801402][ T5824] 8021q: adding VLAN 0 to HW filter on device team0
[   89.850685][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.857941][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[   89.912074][ T5831] 8021q: adding VLAN 0 to HW filter on device bond0
[   89.963041][   T44] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.970404][   T44] bridge0: port 2(bridge_slave_1) entered forwarding state
[   90.079753][ T5831] 8021q: adding VLAN 0 to HW filter on device team0
[   90.096073][ T5820] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.151137][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.158376][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[   90.170352][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.177603][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[   90.252549][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.391100][ T5820] veth0_vlan: entered promiscuous mode
[   90.482513][ T5820] veth1_vlan: entered promiscuous mode
[   90.524253][ T5827] veth0_vlan: entered promiscuous mode
[   90.595801][ T5827] veth1_vlan: entered promiscuous mode
[   90.640460][ T5830] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.711125][ T5820] veth0_macvtap: entered promiscuous mode
[   90.749681][ T5820] veth1_macvtap: entered promiscuous mode
[   90.765761][ T5824] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.796106][ T5827] veth0_macvtap: entered promiscuous mode
[   90.842862][ T5827] veth1_macvtap: entered promiscuous mode
[   90.936704][ T5820] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.948598][ T5830] veth0_vlan: entered promiscuous mode
[   90.966353][ T5820] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.999619][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.014113][ T5831] 8021q: adding VLAN 0 to HW filter on device batadv0
[   91.026552][ T5830] veth1_vlan: entered promiscuous mode
[   91.054232][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.069365][ T5826] Bluetooth: hci0: command tx timeout
[   91.075294][   T52] Bluetooth: hci1: command tx timeout
[   91.094527][ T1150] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.106641][ T1150] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.138728][   T52] Bluetooth: hci2: command tx timeout
[   91.146454][ T1150] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.165200][ T1150] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.188850][ T1150] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.200077][ T1150] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.223572][ T1150] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.252476][ T1150] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.297546][   T52] Bluetooth: hci3: command tx timeout
[   91.303005][   T52] Bluetooth: hci4: command tx timeout
[   91.352805][ T5830] veth0_macvtap: entered promiscuous mode
[   91.375306][ T5830] veth1_macvtap: entered promiscuous mode
[   91.406858][ T5831] veth0_vlan: entered promiscuous mode
[   91.438702][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.446664][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.486766][ T5831] veth1_vlan: entered promiscuous mode
[   91.509764][ T1150] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.522699][ T1150] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.534962][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.550017][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.582872][ T5824] veth0_vlan: entered promiscuous mode
[   91.612798][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.630843][   T36] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.630854][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.643083][   T36] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.668860][ T5824] veth1_vlan: entered promiscuous mode
[   91.680262][   T36] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.698236][   T36] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.713225][ T1145] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.728976][ T5831] veth0_macvtap: entered promiscuous mode
[   91.738714][ T1145] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.764938][ T5820] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   91.815836][ T5831] veth1_macvtap: entered promiscuous mode
[   91.942355][  T978] cfg80211: failed to load regulatory.db
[   91.961977][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0
[   92.039724][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1
[   92.048578][ T5824] veth0_macvtap: entered promiscuous mode
[   92.097934][ T1150] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   92.121321][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.130099][ T5824] veth1_macvtap: entered promiscuous mode
[   92.152171][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.171896][ T1150] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   92.259364][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   92.268380][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   92.276701][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   92.285461][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   92.294400][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   92.302999][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   92.311781][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   92.508627][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   92.517789][    T0] NOHZ tick-stop error: local softirq work is pending, handler #c2!!!
[   92.611030][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   92.963259][ T1150] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   93.018031][ T1150] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   93.148134][   T52] Bluetooth: hci1: command tx timeout
[   93.148255][ T5826] Bluetooth: hci0: command tx timeout
[   93.218643][ T5826] Bluetooth: hci2: command tx timeout
[   93.376524][ T5947] mmap: syz.1.2 (5947) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   93.394091][ T5826] Bluetooth: hci3: command tx timeout
[   93.407952][   T52] Bluetooth: hci4: command tx timeout
[   93.600003][ T1150] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   93.623882][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_0
[   93.632551][ T1150] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.171875][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_1
[   94.270143][   T44] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.279875][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.292657][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.301008][   T44] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.483421][   T44] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   94.515103][   T44] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   95.190426][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.317523][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.138337][ T1150] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.147039][ T1150] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.145029][ T5946] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.456659][ T5946] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.707218][ T5983] netlink: 60 bytes leftover after parsing attributes in process `syz.2.12'.
[   97.757324][ T5984] netlink: 76 bytes leftover after parsing attributes in process `syz.3.4'.
[  104.186154][ T6030] loop1: detected capacity change from 0 to 1024
[  105.787097][   T12] hfsplus: b-tree write err: -5, ino 4
[  106.932821][ T6046] process 'syz.1.24' launched './file1' with NULL argv: empty string added
[  107.298084][ T6041] loop4: detected capacity change from 0 to 2048
[  107.444912][ T6050] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  109.147962][ T6059] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  112.851902][ T6096] netlink: 'syz.4.34': attribute type 1 has an invalid length.
[  112.996713][ T5826] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  113.009093][ T5826] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  113.017007][ T5826] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  113.026481][ T6099] af_packet: tpacket_rcv: packet too big, clamped from 92 to 4294967272. macoff=96
[  113.037687][ T5826] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  113.045306][ T5826] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  113.671916][ T6007] tipc: Started in network mode
[  113.676900][ T6007] tipc: Node identity aaaaaaaaaa2a, cluster identity 4711
[  113.684535][ T6007] tipc: Enabled bearer <eth:batadv0>, priority 15
[  113.768332][ T6075] syzkaller0: entered promiscuous mode
[  113.774291][ T6075] syzkaller0: entered allmulticast mode
[  113.798355][ T6097] 8021q: VLANs not supported on vxcan0
[  114.854802][ T5872] tipc: Node number set to 8432298
[  115.390170][ T5826] Bluetooth: hci5: command tx timeout
[  116.586602][ T6123] loop0: detected capacity change from 0 to 512
[  116.718396][ T6123] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.731157][ T6123] ext4 filesystem being mounted at /8/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  117.177044][ T5820] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.167062][ T5826] Bluetooth: hci5: command tx timeout
[  118.419051][   T30] audit: type=1804 audit(1762525044.325:2): pid=6145 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.41" name="/newroot/6/file0" dev="tmpfs" ino=50 res=1 errno=0
[  120.437477][ T5826] Bluetooth: hci5: command tx timeout
[  120.622497][ T6159] loop4: detected capacity change from 0 to 1024
[  120.739619][ T6159] =======================================================
[  120.739619][ T6159] WARNING: The mand mount option has been deprecated and
[  120.739619][ T6159]          and is ignored by this kernel. Remove the mand
[  120.739619][ T6159]          option from the mount to silence this warning.
[  120.739619][ T6159] =======================================================
[  120.988630][ T6159] EXT4-fs: Ignoring removed nobh option
[  120.994247][ T6159] EXT4-fs: Ignoring removed bh option
[  121.191497][ T6166] o2cb: This node has not been configured.
[  121.197745][ T6166] o2cb: Cluster check failed. Fix errors before retrying.
[  121.205100][ T6166] (syz.1.46,6166,0):user_dlm_register:674 ERROR: status = -22
[  121.212776][ T6166] (syz.1.46,6166,0):dlmfs_mkdir:438 ERROR: Error -22 could not register domain "bus"
[  121.423078][ T6159] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.507377][ T5826] Bluetooth: hci5: command tx timeout
[  123.425588][ T5824] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.512473][ T6188] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  123.539972][ T6188] CIFS mount error: No usable UNC path provided in device string!
[  123.539972][ T6188] 
[  123.551218][ T6188] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  125.344134][ T6184] loop1: detected capacity change from 0 to 512
[  125.928203][ T6184] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  125.942250][ T6184] ext4 filesystem being mounted at /12/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  126.781366][ T6044] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.796753][ T6203] loop0: detected capacity change from 0 to 128
[  126.853878][ T6203] EXT4-fs (loop0): Test dummy encryption mode enabled
[  126.908981][ T6203] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  126.940287][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.957746][ T6203] ext4 filesystem being mounted at /12/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  126.989730][ T6200] loop2: detected capacity change from 0 to 40427
[  127.004191][ T6200] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  127.012153][ T6200] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  127.075588][ T6200] F2FS-fs (loop2): invalid crc value
[  127.128990][ T6044] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.140269][ T6202] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[  127.512547][ T6200] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  127.883031][ T6200] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  127.890765][ T6200] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  128.316119][   T30] audit: type=1326 audit(1762525054.215:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6207 comm="syz.4.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  129.079655][   T30] audit: type=1326 audit(1762525054.355:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6207 comm="syz.4.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  129.182101][ T6044] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  129.482046][ T6223] loop1: detected capacity change from 0 to 40427
[  129.498388][   T30] audit: type=1326 audit(1762525054.355:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6207 comm="syz.4.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  129.520520][ T6223] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  129.528321][ T6223] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  129.546924][ T6098] chnl_net:caif_netlink_parms(): no params data found
[  129.559301][ T6223] F2FS-fs (loop1): invalid crc value
[  129.580660][   T30] audit: type=1326 audit(1762525054.355:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6207 comm="syz.4.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  129.717601][   T30] audit: type=1326 audit(1762525054.355:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6207 comm="syz.4.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  129.740287][   T30] audit: type=1326 audit(1762525054.355:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6207 comm="syz.4.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  129.768452][ T6223] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  129.795082][ T6223] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  129.803388][ T6223] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  129.968941][   T30] audit: type=1326 audit(1762525054.355:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6207 comm="syz.4.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  129.992628][   T30] audit: type=1326 audit(1762525054.355:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6207 comm="syz.4.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  130.053281][ T6044] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.195918][ T6229] syz.1.57: attempt to access beyond end of device
[  130.195918][ T6229] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  130.836919][   T30] audit: type=1326 audit(1762525054.355:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6207 comm="syz.4.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  130.953762][   T30] audit: type=1326 audit(1762525054.355:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6207 comm="syz.4.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  131.141977][ T5820] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  131.499524][ T6098] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.517484][ T6098] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.983592][ T6098] bridge_slave_0: entered allmulticast mode
[  131.991674][ T6098] bridge_slave_0: entered promiscuous mode
[  132.093523][ T6098] bridge0: port 2(bridge_slave_1) entered blocking state
[  132.102182][ T6098] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.110052][ T6098] bridge_slave_1: entered allmulticast mode
[  132.143169][ T6098] bridge_slave_1: entered promiscuous mode
[  133.593829][ T6098] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  133.889941][ T6098] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  135.586866][ T6044] bridge_slave_1: left allmulticast mode
[  135.602984][ T6044] bridge_slave_1: left promiscuous mode
[  135.613998][ T6044] bridge0: port 2(bridge_slave_1) entered disabled state
[  136.778790][ T6044] bridge_slave_0: left allmulticast mode
[  136.841498][ T6044] bridge_slave_0: left promiscuous mode
[  136.871133][ T6044] bridge0: port 1(bridge_slave_0) entered disabled state
[  138.075165][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  138.087644][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  138.170553][   T30] kauditd_printk_skb: 20 callbacks suppressed
[  138.170597][   T30] audit: type=1326 audit(1762525064.045:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6254 comm="syz.4.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  139.266589][ T6274] loop0: detected capacity change from 0 to 65536
[  139.329551][   T30] audit: type=1326 audit(1762525064.045:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6254 comm="syz.4.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  140.359327][   T30] audit: type=1326 audit(1762525064.045:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6254 comm="syz.4.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=97 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  140.384964][   T30] audit: type=1326 audit(1762525064.045:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6254 comm="syz.4.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  140.644279][ T6274] XFS (loop0): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  140.745441][   T30] audit: type=1326 audit(1762525064.055:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6254 comm="syz.4.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  140.767609][   T30] audit: type=1326 audit(1762525064.055:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6254 comm="syz.4.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=270 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  140.789807][   T30] audit: type=1326 audit(1762525064.115:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6254 comm="syz.4.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  140.851516][ T6274] XFS (loop0): Ending clean mount
[  140.871138][ T6274] XFS (loop0): Quotacheck needed: Please wait.
[  140.874157][   T30] audit: type=1326 audit(1762525064.115:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6254 comm="syz.4.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  140.905195][   T30] audit: type=1326 audit(1762525064.125:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6254 comm="syz.4.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  141.068302][ T6274] XFS (loop0): Quotacheck: Done.
[  141.159268][   T30] audit: type=1326 audit(1762525064.125:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6254 comm="syz.4.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  141.238873][ T5820] XFS (loop0): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  141.874710][ T6300] loop4: detected capacity change from 0 to 4096
[  142.027623][ T6300] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.960100][ T5824] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.101543][ T6327] loop1: detected capacity change from 0 to 1024
[  144.289761][ T6330] loop4: detected capacity change from 0 to 8
[  145.058125][ T6332] SQUASHFS error: Failed to read block 0x1ec: -5
[  145.103185][ T6332] SQUASHFS error: Unable to read metadata cache entry [1ea]
[  145.589882][ T6339] loop1: detected capacity change from 0 to 1024
[  145.629905][    C0] vcan0: j1939_tp_rxtimer: 0xffff88806a167c00: rx timeout, send abort
[  146.138795][    C0] vcan0: j1939_tp_rxtimer: 0xffff88806a167c00: abort rx timeout. Force session deactivation
[  146.138894][ T6343] Zero length message leads to an empty skb
[  147.654769][ T6044] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  147.728179][ T6044] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  147.779344][ T6044] bond0 (unregistering): Released all slaves
[  148.861654][ T6098] team0: Port device team_slave_0 added
[  148.894820][ T6098] team0: Port device team_slave_1 added
[  149.012490][ T6360] loop0: detected capacity change from 0 to 4096
[  152.427191][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  152.427212][   T30] audit: type=1804 audit(1762525077.695:45): pid=6377 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.82" name="/newroot/19/file0/file1" dev="loop0" ino=30 res=1 errno=0
[  153.281886][ T6386] evm: overlay not supported
[  153.878010][ T6098] batman_adv: batadv0: Adding interface: batadv_slave_0
[  153.885018][ T6098] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  154.079569][ T6098] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  154.115804][ T6098] batman_adv: batadv0: Adding interface: batadv_slave_1
[  154.152629][ T6098] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  154.432375][ T6098] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  155.548584][ T6401] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  155.747360][ T6396] tipc: Started in network mode
[  155.752371][ T6396] tipc: Node identity 86e978a6dd4d, cluster identity 4711
[  155.859329][ T6396] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  155.881023][ T6397] netlink: 8 bytes leftover after parsing attributes in process `syz.0.87'.
[  155.957889][ T6402] syzkaller0: entered promiscuous mode
[  155.969950][ T6402] syzkaller0: entered allmulticast mode
[  156.059994][ T6389] tipc: Resetting bearer <eth:syzkaller0>
[  156.171663][ T6389] tipc: Disabling bearer <eth:syzkaller0>
[  156.894826][ T6044] hsr_slave_0: left promiscuous mode
[  157.011664][ T6044] hsr_slave_1: left promiscuous mode
[  157.031028][ T6044] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  157.087023][ T6044] batman_adv: batadv0: Removing interface: batadv_slave_0
[  157.413762][ T6044] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  157.427764][ T6044] batman_adv: batadv0: Removing interface: batadv_slave_1
[  157.536428][ T6440] overlayfs: missing 'lowerdir'
[  157.612122][ T6440] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  158.523743][ T6044] veth1_macvtap: left promiscuous mode
[  158.530103][ T6044] veth0_macvtap: left promiscuous mode
[  158.537575][ T6044] veth1_vlan: left promiscuous mode
[  158.543127][ T6044] veth0_vlan: left promiscuous mode
[  162.517891][ T6116] IPVS: starting estimator thread 0...
[  162.638445][ T6462] IPVS: using max 23 ests per chain, 55200 per kthread
[  164.104488][ T6044] team0 (unregistering): Port device team_slave_1 removed
[  164.156255][ T6044] team0 (unregistering): Port device team_slave_0 removed
[  164.760565][ T6098] hsr_slave_0: entered promiscuous mode
[  164.768931][ T6098] hsr_slave_1: entered promiscuous mode
[  164.775763][ T6098] debugfs: 'hsr0' already exists in 'hsr'
[  164.782045][ T6098] Cannot create hsr debugfs directory
[  165.096578][ T6475] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  171.599055][ T5826] Bluetooth: hci1: unexpected event 0x2f length: 763 > 260
[  171.728876][ T6523] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  175.307472][   T52] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  175.680524][   T52] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  175.691761][   T52] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  176.577714][   T52] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  176.586861][   T52] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  178.658344][   T52] Bluetooth: hci4: command tx timeout
[  179.162995][ T1209] IPVS: starting estimator thread 0...
[  179.260524][ T6597] IPVS: using max 21 ests per chain, 50400 per kthread
[  179.848281][ T6605] Bluetooth: MGMT ver 1.23
[  180.612001][ T6555] chnl_net:caif_netlink_parms(): no params data found
[  180.738434][   T52] Bluetooth: hci4: command tx timeout
[  181.735801][ T6616] loop1: detected capacity change from 0 to 64
[  182.872635][   T52] Bluetooth: hci4: command tx timeout
[  182.914873][ T6614] Process accounting resumed
[  183.423291][ T6624] loop1: detected capacity change from 0 to 32768
[  183.474404][ T6624] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  183.484609][ T6624] OCFS2: ERROR (device loop1): int ocfs2_validate_inode_block(struct super_block *, struct buffer_head *): Invalid dinode 73: bits per cluster 32
[  183.499789][ T6624] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  183.509952][ T6624] OCFS2: File system is now read-only.
[  183.515540][ T6624] (syz.1.132,6624,1):ocfs2_read_locked_inode:599 ERROR: status = -30
[  183.524570][ T6624] (syz.1.132,6624,1):_ocfs2_get_system_file_inode:144 ERROR: status = -30
[  183.533895][ T6624] (syz.1.132,6624,1):ocfs2_init_local_system_inodes:496 ERROR: status=-30, sysfile=8, slot=0
[  183.551244][ T6624] (syz.1.132,6624,1):ocfs2_init_local_system_inodes:505 ERROR: status = -30
[  183.560153][ T6624] (syz.1.132,6624,1):ocfs2_mount_volume:1758 ERROR: status = -30
[  183.638323][ T6624] (syz.1.132,6624,1):ocfs2_fill_super:1177 ERROR: status = -30
[  184.801412][ T6642] syz.0.133 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  184.907628][ T5826] Bluetooth: hci4: command tx timeout
[  186.444124][ T6555] bridge0: port 1(bridge_slave_0) entered blocking state
[  186.478385][ T6555] bridge0: port 1(bridge_slave_0) entered disabled state
[  186.496377][ T6555] bridge_slave_0: entered allmulticast mode
[  186.517414][ T6555] bridge_slave_0: entered promiscuous mode
[  187.388288][ T6555] bridge0: port 2(bridge_slave_1) entered blocking state
[  187.395514][ T6555] bridge0: port 2(bridge_slave_1) entered disabled state
[  187.707630][ T6555] bridge_slave_1: entered allmulticast mode
[  187.715990][ T6555] bridge_slave_1: entered promiscuous mode
[  190.445050][ T6677] loop4: detected capacity change from 0 to 256
[  190.497525][ T6555] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  190.783142][ T6555] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  191.749289][ T6684] netlink: 'syz.4.144': attribute type 1 has an invalid length.
[  191.757263][ T6684] netlink: 4 bytes leftover after parsing attributes in process `syz.4.144'.
[  192.284508][ T6689] loop2: detected capacity change from 0 to 128
[  192.309168][ T6689] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  192.357756][ T6689] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  193.858832][ T6555] team0: Port device team_slave_0 added
[  193.946410][ T6555] team0: Port device team_slave_1 added
[  194.917249][ T6717] netlink: 24 bytes leftover after parsing attributes in process `syz.0.153'.
[  195.871984][ T6726] netlink: 4 bytes leftover after parsing attributes in process `syz.0.153'.
[  195.950527][ T6555] batman_adv: batadv0: Adding interface: batadv_slave_0
[  195.973903][ T6555] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  196.028062][ T6555] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  196.293818][ T6555] batman_adv: batadv0: Adding interface: batadv_slave_1
[  196.416706][ T6555] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  196.624065][ T6555] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  197.189363][ T6555] hsr_slave_0: entered promiscuous mode
[  197.236333][ T6555] hsr_slave_1: entered promiscuous mode
[  197.256720][ T6555] debugfs: 'hsr0' already exists in 'hsr'
[  197.287230][ T6555] Cannot create hsr debugfs directory
[  198.551976][ T6751] loop2: detected capacity change from 0 to 256
[  199.389000][ T6751] exfat: Deprecated parameter 'namecase'
[  199.483085][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  199.513682][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  199.783824][ T6751] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d)
[  202.087460][ T6044] bridge_slave_1: left allmulticast mode
[  202.093166][ T6044] bridge_slave_1: left promiscuous mode
[  202.237459][ T6044] bridge0: port 2(bridge_slave_1) entered disabled state
[  203.821775][ T6044] bridge_slave_0: left allmulticast mode
[  204.052895][ T6044] bridge_slave_0: left promiscuous mode
[  204.077527][ T6044] bridge0: port 1(bridge_slave_0) entered disabled state
[  204.323145][ T6783] loop0: detected capacity change from 0 to 4096
[  204.349190][ T6790] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  204.435397][ T6783] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  204.852380][ T6783] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  205.233309][ T6788] loop4: detected capacity change from 0 to 512
[  205.336708][ T6783] ntfs3(loop0): ino=1a, mi_enum_attr
[  205.384456][ T6788] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  205.446166][ T6783] ntfs3(loop0): Failed to initialize $Extend/$ObjId.
[  205.509151][ T6788] EXT4-fs (loop4): invalid journal inode
[  205.549271][ T6788] EXT4-fs (loop4): can't get journal size
[  205.641643][ T6788] EXT4-fs (loop4): 1 truncate cleaned up
[  205.666856][ T6788] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  206.474880][ T5824] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.719430][ T6044] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  207.117266][ T6807] syz.1.180 uses obsolete (PF_INET,SOCK_PACKET)
[  207.213448][ T6044] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  207.438769][ T6044] bond0 (unregistering): Released all slaves
[  208.027482][ T6044] hsr_slave_0: left promiscuous mode
[  208.513458][ T6044] hsr_slave_1: left promiscuous mode
[  208.529515][ T6044] batman_adv: batadv0: Removing interface: batadv_slave_0
[  208.569001][ T6044] batman_adv: batadv0: Removing interface: batadv_slave_1
[  209.610332][ T6814] kvm: kvm [6813]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x5a
[  209.668138][ T6814] kvm: kvm [6813]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x405a
[  209.812183][ T6831] loop4: detected capacity change from 0 to 512
[  210.105079][ T6831] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  210.140244][ T6831] ext4 filesystem being mounted at /39/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  210.324836][ T5824] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.415844][ T6044] team0 (unregistering): Port device team_slave_1 removed
[  210.483372][ T6837] loop2: detected capacity change from 0 to 1024
[  210.549115][ T6044] team0 (unregistering): Port device team_slave_0 removed
[  211.607833][   T12] hfsplus: b-tree write err: -5, ino 4
[  211.780762][ T5144] Bluetooth: hci2: command 0x0406 tx timeout
[  211.788361][ T5144] Bluetooth: hci3: command 0x0406 tx timeout
[  211.794435][ T5144] Bluetooth: hci0: command 0x0406 tx timeout
[  211.800703][ T5144] Bluetooth: hci1: command 0x0406 tx timeout
[  212.351652][ T6858] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  212.399761][ T6858] loop0: detected capacity change from 0 to 2048
[  212.995636][ T6858] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  216.530326][ T6889] loop2: detected capacity change from 0 to 256
[  216.611656][ T6889] exfat: Deprecated parameter 'namecase'
[  216.648243][ T6891] 8021q: adding VLAN 0 to HW filter on device bond1
[  216.707139][ T6889] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x8d1bf2bd, utbl_chksum : 0xe619d30d)
[  216.756501][ T6897] bond_slave_0: entered promiscuous mode
[  216.762437][ T6897] bond_slave_1: entered promiscuous mode
[  216.775921][ T6897] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  216.826111][ T6897] bond1: (slave macvlan2): Enslaving as a backup interface with an up link
[  218.237584][ T6901] bond1: (slave ip6gretap1): Enslaving as a backup interface with an up link
[  220.017381][ T6927] netlink: 8 bytes leftover after parsing attributes in process `syz.0.196'.
[  220.027174][ T6927] openvswitch: netlink: Missing key (keys=40, expected=80)
[  221.040287][ T6932] loop4: detected capacity change from 0 to 128
[  221.062586][ T6932] EXT4-fs warning (device loop4): ext4_init_metadata_csum:4636: metadata_csum and uninit_bg are redundant flags; please run fsck.
[  221.100726][ T6929] loop1: detected capacity change from 0 to 1024
[  221.254958][ T6932] EXT4-fs (loop4): Encoding requested by superblock is unknown
[  222.475976][ T6555] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  223.267966][ T6555] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  223.287873][   T13] hfsplus: b-tree write err: -5, ino 4
[  223.312213][ T6942] syzkaller1: entered promiscuous mode
[  223.342772][ T6942] syzkaller1: entered allmulticast mode
[  223.397204][ T6555] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  223.670148][ T6949] netlink: 'syz.4.203': attribute type 33 has an invalid length.
[  223.678128][ T6949] netlink: 51 bytes leftover after parsing attributes in process `syz.4.203'.
[  224.280500][ T6555] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  224.997363][ T6964] netlink: 'syz.4.205': attribute type 79 has an invalid length.
[  226.049690][   T52] Bluetooth: hci2: unexpected event 0x2f length: 763 > 260
[  228.782344][ T6982] loop1: detected capacity change from 0 to 32768
[  228.824280][ T6982] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.209 (6982)
[  228.846532][ T6982] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  228.857090][ T6982] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[  228.974665][ T6555] 8021q: adding VLAN 0 to HW filter on device bond0
[  229.072450][ T6982] BTRFS info (device loop1): enabling ssd optimizations
[  229.079609][ T6982] BTRFS info (device loop1): turning on async discard
[  229.086413][ T6982] BTRFS info (device loop1): enabling free space tree
[  229.108124][ T6555] 8021q: adding VLAN 0 to HW filter on device team0
[  229.646078][ T6010] bridge0: port 1(bridge_slave_0) entered blocking state
[  229.646247][ T6010] bridge0: port 1(bridge_slave_0) entered forwarding state
[  230.490942][ T7012] loop0: detected capacity change from 0 to 1024
[  230.494532][ T5827] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  230.554000][ T6196] bridge0: port 2(bridge_slave_1) entered blocking state
[  230.554156][ T6196] bridge0: port 2(bridge_slave_1) entered forwarding state
[  231.577831][ T6054] hfsplus: b-tree write err: -5, ino 4
[  231.766278][ T7022] binder: 7019:7022 ioctl 4018620d 0 returned -22
[  233.090622][ T5872] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  233.435038][ T6555] 8021q: adding VLAN 0 to HW filter on device batadv0
[  233.737838][ T5872] usb 1-1: Using ep0 maxpacket: 32
[  233.858741][ T5872] usb 1-1: config 0 has an invalid interface number: 51 but max is 0
[  233.867187][ T5872] usb 1-1: config 0 has no interface number 0
[  233.910236][ T5872] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  233.919929][ T5872] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  233.929613][ T5872] usb 1-1: Product: syz
[  233.933848][ T5872] usb 1-1: Manufacturer: syz
[  233.978007][ T5872] usb 1-1: SerialNumber: syz
[  234.035622][ T5872] usb 1-1: config 0 descriptor??
[  234.096472][ T5872] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  234.876075][ T7052] nvme_fabrics: unknown parameter or missing value '��{$n����������hF� ��zt�*�h~��y�e��xR#[�Y�_j�AF��' in ctrl creation request
[  235.532295][ T5834] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  235.542392][ T5834] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  235.553212][ T5834] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  235.563753][ T5834] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  235.573245][ T5834] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  237.074365][ T5872] usb 1-1: qt2_attach - failed to power on unit: -71
[  237.099883][ T5872] quatech2 1-1:0.51: probe with driver quatech2 failed with error -71
[  237.306926][ T5872] usb 1-1: USB disconnect, device number 2
[  238.281469][ T5834] Bluetooth: hci5: command tx timeout
[  239.426716][ T7079] loop0: detected capacity change from 0 to 128
[  239.526458][ T7083] loop2: detected capacity change from 0 to 1024
[  239.840282][ T7079] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  240.395571][ T5834] Bluetooth: hci5: command tx timeout
[  240.857558][ T7079] ext4 filesystem being mounted at /53/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  241.257988][ T7097] xt_CT: You must specify a L4 protocol and not use inversions on it
[  242.062379][ T6054] hfsplus: b-tree write err: -5, ino 4
[  242.112403][ T7079] fscrypt: Adiantum using implementation "adiantum(xchacha12-lib,aes-aesni,nhpoly1305-avx2)"
[  242.187603][ T7093] bridge0: port 3(gretap0) entered blocking state
[  242.194337][ T7093] bridge0: port 3(gretap0) entered disabled state
[  242.201271][ T7093] gretap0: entered allmulticast mode
[  242.208762][ T7093] gretap0: entered promiscuous mode
[  242.214967][ T7093] bridge0: port 3(gretap0) entered blocking state
[  242.221818][ T7093] bridge0: port 3(gretap0) entered forwarding state
[  242.917280][ T5834] Bluetooth: hci5: command tx timeout
[  244.272345][ T5820] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  245.499387][ T5834] Bluetooth: hci5: command tx timeout
[  247.204511][ T7150] loop1: detected capacity change from 0 to 64
[  247.722251][ T7150] MINIX-fs: mounting unchecked file system, running fsck is recommended
[  248.242391][ T7160] netlink: 12 bytes leftover after parsing attributes in process `syz.1.233'.
[  248.954353][ T7053] chnl_net:caif_netlink_parms(): no params data found
[  253.023904][   T52] Bluetooth: Wrong link type (-71)
[  253.353498][ T7053] bridge0: port 1(bridge_slave_0) entered blocking state
[  253.395156][ T7053] bridge0: port 1(bridge_slave_0) entered disabled state
[  253.417926][ T7210] loop2: detected capacity change from 0 to 512
[  253.455548][ T7053] bridge_slave_0: entered allmulticast mode
[  253.470515][ T7210] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.244: inode has both inline data and extents flags
[  253.470956][ T7053] bridge_slave_0: entered promiscuous mode
[  253.511714][ T7212] loop1: detected capacity change from 0 to 1024
[  253.553982][ T7210] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.244: couldn't read orphan inode 15 (err -117)
[  253.609977][ T7218] loop0: detected capacity change from 0 to 1024
[  253.676017][ T7210] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  254.833682][ T7053] bridge0: port 2(bridge_slave_1) entered blocking state
[  254.948907][ T7053] bridge0: port 2(bridge_slave_1) entered disabled state
[  254.956301][ T7053] bridge_slave_1: entered allmulticast mode
[  254.983226][ T7053] bridge_slave_1: entered promiscuous mode
[  255.548922][ T6196] hfsplus: b-tree write err: -5, ino 4
[  257.052266][ T7053] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  257.833598][ T7243] loop1: detected capacity change from 0 to 512
[  257.841170][ T7053] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  257.858732][ T7243] journal_path: Non-blockdev passed as './bus'
[  257.864955][ T7243] EXT4-fs: error: could not find journal device path
[  259.417193][ T7251] delete_channel: no stack
[  259.781234][ T7246] delete_channel: no stack
[  259.953083][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  260.908560][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  260.999964][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  261.130213][ T6045] bridge_slave_1: left allmulticast mode
[  261.304648][ T6045] bridge_slave_1: left promiscuous mode
[  261.314207][ T6045] bridge0: port 2(bridge_slave_1) entered disabled state
[  262.164677][ T7280] loop0: detected capacity change from 0 to 1024
[  262.371651][ T6045] bridge_slave_0: left allmulticast mode
[  262.631302][ T6045] bridge_slave_0: left promiscuous mode
[  262.675116][ T6045] bridge0: port 1(bridge_slave_0) entered disabled state
[  264.321275][ T6009] hfsplus: b-tree write err: -5, ino 4
[  264.887185][ T7300] netlink: 56 bytes leftover after parsing attributes in process `syz.1.264'.
[  267.944330][ T6045] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  268.225321][ T6045] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  268.237751][ T6045] bond0 (unregistering): Released all slaves
[  269.095099][ T7053] team0: Port device team_slave_0 added
[  269.135608][ T7324] netlink: 12 bytes leftover after parsing attributes in process `syz.1.269'.
[  269.249603][ T7327] loop0: detected capacity change from 0 to 64
[  269.298198][ T7053] team0: Port device team_slave_1 added
[  269.887893][ T7306] warning: `syz.4.262' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  270.460909][ T7053] batman_adv: batadv0: Adding interface: batadv_slave_0
[  270.625871][ T7053] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  271.384230][ T7053] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  271.790664][ T7053] batman_adv: batadv0: Adding interface: batadv_slave_1
[  271.854771][ T7053] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  271.884198][ T7341] loop0: detected capacity change from 0 to 4096
[  271.949786][ T7341] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512).
[  271.968002][ T7053] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  271.972116][ T7341] ntfs3(loop0): ino=2, mi_enum_attr
[  272.041070][ T7341] ntfs3(loop0): Failed to load $LogFile (-22).
[  272.070946][ T6045] hsr_slave_0: left promiscuous mode
[  272.131426][ T6045] hsr_slave_1: left promiscuous mode
[  272.171491][ T6045] batman_adv: batadv0: Removing interface: batadv_slave_0
[  272.245599][ T6045] batman_adv: batadv0: Removing interface: batadv_slave_1
[  273.965509][ T7358] loop1: detected capacity change from 0 to 512
[  274.020778][ T7358] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.287: inode has both inline data and extents flags
[  274.045462][ T7358] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.287: couldn't read orphan inode 15 (err -117)
[  274.100613][ T7358] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  274.586799][ T7364] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 7934 vs 220 free clusters
[  274.630526][ T6045] team0 (unregistering): Port device team_slave_1 removed
[  274.896110][ T6045] team0 (unregistering): Port device team_slave_0 removed
[  275.001944][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  278.023382][ T7053] hsr_slave_0: entered promiscuous mode
[  278.245217][ T7393] loop4: detected capacity change from 0 to 256
[  279.008096][ T7053] hsr_slave_1: entered promiscuous mode
[  279.096117][ T7053] debugfs: 'hsr0' already exists in 'hsr'
[  279.143496][ T7053] Cannot create hsr debugfs directory
[  279.175851][ T7399] loop0: detected capacity change from 0 to 128
[  279.341805][ T7399] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  279.382790][ T7401] loop1: detected capacity change from 0 to 1024
[  279.459355][ T7399] ext4 filesystem being mounted at /65/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  281.223445][ T7318] hfsplus: b-tree write err: -5, ino 4
[  282.575357][ T5820] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  282.684306][ T7433] netlink: 4 bytes leftover after parsing attributes in process `syz.1.291'.
[  285.710657][ T7452] netlink: 14560 bytes leftover after parsing attributes in process `syz.4.295'.
[  285.763885][ T7443] loop1: detected capacity change from 0 to 2048
[  285.846754][ T7443] EXT4-fs: Ignoring removed bh option
[  285.972194][ T7443] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  286.644693][ T7443] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  286.684071][ T7443] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 12 with max blocks 22 with error 28
[  286.733763][ T7443] EXT4-fs (loop1): This should not happen!! Data will be lost
[  286.733763][ T7443] 
[  286.922195][ T7443] EXT4-fs (loop1): Total free blocks count 0
[  287.047564][ T7443] EXT4-fs (loop1): Free/Dirty block details
[  287.617250][ T7443] EXT4-fs (loop1): free_blocks=2415919104
[  287.623730][ T7443] EXT4-fs (loop1): dirty_blocks=48
[  287.677323][ T7443] EXT4-fs (loop1): Block reservation details
[  287.684764][ T7443] EXT4-fs (loop1): i_reserved_data_blocks=3
[  287.783776][ T7446] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  288.108472][ T7479] loop4: detected capacity change from 0 to 1024
[  289.997525][   T60] hfsplus: b-tree write err: -5, ino 4
[  292.592256][ T7053] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  292.624115][ T7053] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  292.900802][ T7053] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  293.841088][ T7539] netlink: 20 bytes leftover after parsing attributes in process `syz.1.312'.
[  293.902556][ T7526] bridge0: port 2(bridge_slave_1) entered disabled state
[  293.911429][ T7526] bridge0: port 1(bridge_slave_0) entered disabled state
[  293.942146][ T7526] bond_slave_0: left promiscuous mode
[  293.954539][ T7541] kvm: vcpu 2: requested 148514 ns lapic timer period limited to 200000 ns
[  293.954601][ T7526] bond_slave_1: left promiscuous mode
[  293.964177][ T7541] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (200000 ns). Using initial count to start timer.
[  294.929896][ T7526] tipc: Resetting bearer <eth:batadv0>
[  295.179594][ T7526] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  295.235692][ T5834] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  295.246590][ T5834] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  295.264628][ T5834] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  295.279079][ T5834] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  295.293207][ T7526] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  295.297230][ T5834] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  295.414657][ T7556] loop2: detected capacity change from 0 to 1024
[  295.676359][ T7053] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  295.717972][ T1150] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  295.851949][ T1150] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  296.107984][ T1150] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  296.258380][ T1150] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  296.400948][ T7318] hfsplus: b-tree write err: -5, ino 4
[  297.209008][ T7573] loop2: detected capacity change from 0 to 1024
[  297.479425][ T5834] Bluetooth: hci4: command tx timeout
[  298.182601][ T7570] syz.0.318 (7570): drop_caches: 2
[  298.200863][ T6196] hfsplus: b-tree write err: -5, ino 4
[  298.603513][ T7550] chnl_net:caif_netlink_parms(): no params data found
[  299.579013][ T5834] Bluetooth: hci4: command tx timeout
[  301.424174][ T7616] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  301.948611][ T5834] Bluetooth: hci4: command tx timeout
[  304.027275][ T5834] Bluetooth: hci4: command tx timeout
[  304.071573][ T7550] bridge0: port 1(bridge_slave_0) entered blocking state
[  304.097957][ T7550] bridge0: port 1(bridge_slave_0) entered disabled state
[  304.723914][ T7550] bridge_slave_0: entered allmulticast mode
[  304.755740][ T7550] bridge_slave_0: entered promiscuous mode
[  304.974441][ T7550] bridge0: port 2(bridge_slave_1) entered blocking state
[  305.011237][ T7550] bridge0: port 2(bridge_slave_1) entered disabled state
[  305.042800][ T7550] bridge_slave_1: entered allmulticast mode
[  305.111115][ T7550] bridge_slave_1: entered promiscuous mode
[  305.140236][ T7643] loop1: detected capacity change from 0 to 1024
[  306.649307][ T6054] hfsplus: b-tree write err: -5, ino 4
[  306.792246][   T30] audit: type=1326 audit(1762525232.685:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7659 comm="syz.4.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  307.697491][   T30] audit: type=1326 audit(1762525232.685:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7659 comm="syz.4.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  307.719910][   T30] audit: type=1326 audit(1762525232.695:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7659 comm="syz.4.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=97 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  307.742064][   T30] audit: type=1326 audit(1762525232.695:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7659 comm="syz.4.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  307.764936][   T30] audit: type=1326 audit(1762525232.695:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7659 comm="syz.4.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  308.242155][   T30] audit: type=1326 audit(1762525232.695:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7659 comm="syz.4.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=270 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  308.361834][ T7550] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  308.381806][   T30] audit: type=1326 audit(1762525232.755:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7659 comm="syz.4.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  308.510732][ T7550] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  308.517668][   T30] audit: type=1326 audit(1762525232.755:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7659 comm="syz.4.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  308.548641][ T7668] netlink: 7076 bytes leftover after parsing attributes in process `syz.4.336'.
[  308.557760][ T7668] openvswitch: netlink: Flow key attr not present in new flow.
[  308.653337][   T30] audit: type=1326 audit(1762525232.765:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7659 comm="syz.4.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  308.756101][   T30] audit: type=1326 audit(1762525232.765:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7659 comm="syz.4.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f073918f6c9 code=0x7ffc0000
[  310.262133][ T7550] team0: Port device team_slave_0 added
[  310.960106][ T7550] team0: Port device team_slave_1 added
[  311.061463][ T7685] loop4: detected capacity change from 0 to 1764
[  311.630511][ T7685] iso9660: Corrupted directory entry in block 2 of inode 1920
[  312.067275][ T7705] /dev/nullb0: Can't lookup blockdev
[  312.580024][ T7550] batman_adv: batadv0: Adding interface: batadv_slave_0
[  312.733617][ T7709] loop2: detected capacity change from 0 to 1024
[  312.740403][ T7550] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  312.892564][ T7550] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  313.122181][ T7550] batman_adv: batadv0: Adding interface: batadv_slave_1
[  313.815066][ T7550] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  313.817197][ T5946] hfsplus: b-tree write err: -5, ino 4
[  313.841629][ T7550] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  313.926149][ T7720] netlink: 7076 bytes leftover after parsing attributes in process `syz.4.346'.
[  313.935276][ T7720] openvswitch: netlink: Flow key attr not present in new flow.
[  314.909637][ T7715] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  315.818695][ T7710] tipc: Disabling bearer <eth:syzkaller0>
[  315.929711][ T7742] netlink: 12 bytes leftover after parsing attributes in process `syz.2.349'.
[  317.411902][   T60] bridge_slave_1: left allmulticast mode
[  317.427195][   T60] bridge_slave_1: left promiscuous mode
[  317.459952][   T60] bridge0: port 2(bridge_slave_1) entered disabled state
[  317.492402][   T60] bridge_slave_0: left allmulticast mode
[  317.689806][   T60] bridge_slave_0: left promiscuous mode
[  317.695750][   T60] bridge0: port 1(bridge_slave_0) entered disabled state
[  319.110779][   T60] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  319.927783][   T60] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  319.979303][   T60] bond0 (unregistering): Released all slaves
[  320.759320][ T7780] /dev/nullb0: Can't lookup blockdev
[  321.467134][    T9] IPVS: starting estimator thread 0...
[  321.565665][ T7550] hsr_slave_0: entered promiscuous mode
[  322.353198][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  322.359811][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  322.439056][ T7778] IPVS: using max 24 ests per chain, 57600 per kthread
[  322.536793][ T7550] hsr_slave_1: entered promiscuous mode
[  322.629952][ T7550] debugfs: 'hsr0' already exists in 'hsr'
[  322.661324][ T7550] Cannot create hsr debugfs directory
[  322.797350][   T60] hsr_slave_0: left promiscuous mode
[  322.853308][   T60] hsr_slave_1: left promiscuous mode
[  323.326435][   T60] batman_adv: batadv0: Removing interface: batadv_slave_0
[  323.432288][   T60] batman_adv: batadv0: Removing interface: batadv_slave_1
[  326.865639][ T7815] xt_socket: unknown flags 0x50
[  331.338698][   T60] team0 (unregistering): Port device team_slave_1 removed
[  331.385060][   T60] team0 (unregistering): Port device team_slave_0 removed
[  334.256737][ T7848] loop2: detected capacity change from 0 to 1024
[  334.425076][ T7827] batman_adv: batadv0: Adding interface: dummy0
[  334.465855][ T7827] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  334.828550][ T7853] loop1: detected capacity change from 0 to 512
[  334.949330][ T7853] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  334.959181][ T7853] EXT4-fs (loop1): orphan cleanup on readonly fs
[  334.966445][ T7853] __quota_error: 2 callbacks suppressed
[  334.966462][ T7853] Quota error (device loop1): v2_read_file_info: Block with free entry 4294967071 out of range (1, 6).
[  334.967558][ T7827] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[  334.972795][ T7853] EXT4-fs warning (device loop1): ext4_enable_quotas:7181: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  335.016413][ T7853] EXT4-fs (loop1): Cannot turn on quotas: error -117
[  335.120037][ T7853] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.371: bg 0: block 40: padding at end of block bitmap is not set
[  335.139590][ T7853] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6667: Corrupt filesystem
[  335.151658][ T7853] EXT4-fs (loop1): 1 truncate cleaned up
[  335.159574][ T7853] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  335.452803][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  335.597519][ T6196] hfsplus: b-tree write err: -5, ino 4
[  337.018457][ T7867] loop1: detected capacity change from 0 to 64
[  338.527335][ T7869] loop0: detected capacity change from 0 to 4096
[  338.658454][ T7874] loop1: detected capacity change from 0 to 1024
[  338.772644][ T7874] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  338.888595][ T7874] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  338.917595][ T7874] EXT4-fs (loop1): orphan cleanup on readonly fs
[  338.947640][ T7874] EXT4-fs error (device loop1): ext4_free_blocks:6706: comm syz.1.376: Freeing blocks not in datazone - block = 0, count = 4096
[  339.247544][   T30] audit: type=1804 audit(1762525265.025:58): pid=7889 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.375" name="/newroot/81/file0/file1" dev="loop0" ino=30 res=1 errno=0
[  339.687269][ T7874] EXT4-fs (loop1): 1 orphan inode deleted
[  339.705077][ T7874] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  341.423538][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  342.527992][ T7914] hugetlbfs: syz.2.382 (7914): Using mlock ulimits for SHM_HUGETLB is obsolete
[  343.976822][ T7915] Process accounting resumed
[  344.828626][ T7922] loop4: detected capacity change from 0 to 1024
[  345.143980][ T7550] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  345.214579][ T7550] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  346.012204][ T7550] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  346.228233][   T60] hfsplus: b-tree write err: -5, ino 4
[  346.241585][ T7936] loop1: detected capacity change from 0 to 1024
[  346.267984][ T7550] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  348.196181][ T7951] loop4: detected capacity change from 0 to 64
[  349.455527][ T7969] loop2: detected capacity change from 0 to 8
[  350.407386][ T6054] hfsplus: b-tree write err: -5, ino 4
[  350.452545][ T7550] 8021q: adding VLAN 0 to HW filter on device bond0
[  350.500072][ T7550] 8021q: adding VLAN 0 to HW filter on device team0
[  350.578534][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[  350.585746][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[  350.627206][    T9] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  350.655352][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[  350.662597][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[  350.688997][    C0] raw-gadget.0 gadget.4: ignoring, device is not running
[  350.864613][ T7550] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  350.875098][ T7550] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  351.526434][    T9] usb 5-1: device descriptor read/64, error -32
[  351.649599][ T7981] syzkaller0: entered promiscuous mode
[  351.823167][ T7981] syzkaller0: entered allmulticast mode
[  352.622704][    T9] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  355.202300][ T7550] 8021q: adding VLAN 0 to HW filter on device batadv0
[  355.315689][ T8018] loop1: detected capacity change from 0 to 2048
[  355.361572][ T8021] loop0: detected capacity change from 0 to 128
[  355.462507][ T8021] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  355.569918][ T8018] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  355.653626][ T8021] ext4 filesystem being mounted at /90/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  355.944780][ T8028] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  356.488576][ T8028] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 159 with max blocks 1 with error 28
[  356.526001][ T8028] EXT4-fs (loop1): This should not happen!! Data will be lost
[  356.526001][ T8028] 
[  356.562987][ T8028] EXT4-fs (loop1): Total free blocks count 0
[  356.581796][ T8028] EXT4-fs (loop1): Free/Dirty block details
[  356.603139][ T8028] EXT4-fs (loop1): free_blocks=2415919104
[  356.653147][ T5820] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  356.668797][ T8028] EXT4-fs (loop1): dirty_blocks=64
[  356.674009][ T8028] EXT4-fs (loop1): Block reservation details
[  356.717144][ T8028] EXT4-fs (loop1): i_reserved_data_blocks=2
[  356.871057][   T52] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  356.881946][   T52] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  356.891049][   T52] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  356.900594][   T52] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  356.911212][   T52] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  356.956813][ T8037] loop4: detected capacity change from 0 to 1024
[  356.969933][ T6010] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 14 with error 28
[  358.323310][ T6044] hfsplus: b-tree write err: -5, ino 4
[  359.328791][   T52] Bluetooth: hci5: command tx timeout
[  360.012047][ T8053] team_slave_0: entered promiscuous mode
[  360.017945][ T8053] team_slave_1: entered promiscuous mode
[  360.036818][ T8053] macsec1: entered promiscuous mode
[  360.042981][ T8053] team0: entered promiscuous mode
[  360.049074][ T8053] macsec1: entered allmulticast mode
[  360.054373][ T8053] team0: entered allmulticast mode
[  360.844025][ T8053] team_slave_0: entered allmulticast mode
[  360.870417][ T8053] team_slave_1: entered allmulticast mode
[  360.938112][ T8053] team0: left allmulticast mode
[  360.952745][ T8053] team_slave_0: left allmulticast mode
[  360.971722][ T8053] team_slave_1: left allmulticast mode
[  360.989225][ T8053] team0: left promiscuous mode
[  361.003363][ T8053] team_slave_0: left promiscuous mode
[  361.008992][ T8053] team_slave_1: left promiscuous mode
[  361.972148][ T5834] Bluetooth: hci5: command tx timeout
[  362.278628][ T8034] chnl_net:caif_netlink_parms(): no params data found
[  365.379350][ T5834] Bluetooth: hci5: command 0x040f tx timeout
[  365.867311][  T978] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  366.046620][ T8084] loop1: detected capacity change from 0 to 4096
[  366.071239][ T8084] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  366.116913][  T978] usb 1-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac
[  366.157340][  T978] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  366.165400][  T978] usb 1-1: Product: syz
[  366.185335][  T978] usb 1-1: Manufacturer: syz
[  366.214454][  T978] usb 1-1: SerialNumber: syz
[  366.221110][ T8084] ntfs3(loop1): ino=1a, mi_enum_attr
[  366.249547][  T978] usb 1-1: config 0 descriptor??
[  366.255294][ T8084] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  366.281342][ T8084] ntfs3(loop1): ino=1a, mi_enum_attr
[  366.292279][  T978] gspca_main: sunplus-2.14.0 probing 055f:c230
[  366.298997][ T8084] ntfs3(loop1): Failed to initialize $Extend/$Reparse.
[  367.414971][  T978] gspca_sunplus: reg_r err -110
[  367.420215][  T978] sunplus 1-1:0.0: probe with driver sunplus failed with error -110
[  367.457348][   T52] Bluetooth: hci5: command 0x040f tx timeout
[  367.519187][ T8034] bridge0: port 1(bridge_slave_0) entered blocking state
[  367.526688][ T8034] bridge0: port 1(bridge_slave_0) entered disabled state
[  367.534652][ T8034] bridge_slave_0: entered allmulticast mode
[  367.552080][ T8034] bridge_slave_0: entered promiscuous mode
[  368.518308][ T5913] usb 1-1: USB disconnect, device number 3
[  369.531810][ T8034] bridge0: port 2(bridge_slave_1) entered blocking state
[  369.539566][   T52] Bluetooth: hci5: command 0x040f tx timeout
[  370.725246][ T8034] bridge0: port 2(bridge_slave_1) entered disabled state
[  370.771788][ T8034] bridge_slave_1: entered allmulticast mode
[  370.800204][ T8034] bridge_slave_1: entered promiscuous mode
[  374.720552][ T8130] loop4: detected capacity change from 0 to 1024
[  375.184217][ T8135] loop0: detected capacity change from 0 to 1024
[  376.356777][ T6054] hfsplus: b-tree write err: -5, ino 4
[  376.406357][ T6196] hfsplus: b-tree write err: -5, ino 4
[  376.846394][ T8140] loop2: detected capacity change from 0 to 4096
[  377.031657][ T8140] ntfs3: Unknown parameter ''
[  377.033244][ T8148] Invalid ELF header magic: != ELF
[  377.074947][ T8034] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  377.269682][ T8034] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  379.081232][ T8144] bridge1: entered promiscuous mode
[  379.818054][ T8144] bridge1: entered allmulticast mode
[  379.829991][ T8034] team0: Port device team_slave_0 added
[  379.856162][ T8034] team0: Port device team_slave_1 added
[  383.993896][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  384.002749][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  384.333614][ T8192] loop4: detected capacity change from 0 to 1024
[  384.741400][ T8196] loop2: detected capacity change from 0 to 128
[  384.748610][ T8196] vxfs: Unknown parameter '�s�g�'
[  385.115030][ T8034] batman_adv: batadv0: Adding interface: batadv_slave_0
[  385.197161][ T8034] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  385.337790][ T8034] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  385.479343][ T8034] batman_adv: batadv0: Adding interface: batadv_slave_1
[  385.486345][ T8034] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  385.547576][ T8034] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  385.560627][   T44] hfsplus: b-tree write err: -5, ino 4
[  385.939937][ T8201] trusted_key: syz.0.438 sent an empty control message without MSG_MORE.
[  389.907806][ T8219] ALSA: mixer_oss: invalid OSS volume 'PHONEX�0�IN'
[  390.289993][ T5946] bridge_slave_1: left allmulticast mode
[  390.298307][ T5946] bridge_slave_1: left promiscuous mode
[  390.304135][ T5946] bridge0: port 2(bridge_slave_1) entered disabled state
[  390.408274][ T5946] bridge_slave_0: left allmulticast mode
[  390.454049][ T5946] bridge_slave_0: left promiscuous mode
[  390.499215][ T5946] bridge0: port 1(bridge_slave_0) entered disabled state
[  393.418829][ T8239] netlink: 6912 bytes leftover after parsing attributes in process `syz.0.447'.
[  393.427958][ T8239] openvswitch: netlink: Flow actions attr not present in new flow.
[  399.414036][ T8270] loop2: detected capacity change from 0 to 2048
[  399.537128][ T5946] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  399.553164][ T5946] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  399.563900][ T5946] bond0 (unregistering): Released all slaves
[  399.595406][ T8034] hsr_slave_0: entered promiscuous mode
[  399.620955][ T8034] hsr_slave_1: entered promiscuous mode
[  399.643439][ T8034] debugfs: 'hsr0' already exists in 'hsr'
[  399.651186][ T8034] Cannot create hsr debugfs directory
[  399.669264][ T8230] tipc: Started in network mode
[  399.674765][ T8230] tipc: Node identity b206854e4743, cluster identity 4711
[  399.686002][ T8230] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  399.686633][ T8273] binder: 8271:8273 unknown command 0
[  399.698801][ T8231] syzkaller0: entered promiscuous mode
[  399.704281][ T8231] syzkaller0: entered allmulticast mode
[  399.719844][ T8276] Context (ID=0x1) not attached to queue pair (handle=0x2:0x40)
[  399.752778][ T8273] binder: 8271:8273 ioctl c0306201 200000000080 returned -22
[  399.802352][ T8236] tipc: Resetting bearer <eth:syzkaller0>
[  399.845790][ T8278] loop0: detected capacity change from 0 to 1024
[  399.868019][ T8236] tipc: Disabling bearer <eth:syzkaller0>
[  400.047879][ T5946] hsr_slave_0: left promiscuous mode
[  400.054395][ T5946] hsr_slave_1: left promiscuous mode
[  400.063929][ T5946] batman_adv: batadv0: Removing interface: batadv_slave_0
[  400.075158][ T5946] batman_adv: batadv0: Removing interface: batadv_slave_1
[  401.865376][ T8290] loop2: detected capacity change from 0 to 64
[  401.935455][   T60] hfsplus: b-tree write err: -5, ino 4
[  407.291930][ T8321] loop2: detected capacity change from 0 to 32768
[  407.317618][ T8321] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.466 (8321)
[  407.333204][ T8321] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  407.343437][ T8321] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm
[  407.516020][ T8321] BTRFS info (device loop2): enabling ssd optimizations
[  407.523177][ T8321] BTRFS info (device loop2): turning on async discard
[  407.530191][ T8321] BTRFS info (device loop2): enabling free space tree
[  407.929510][ T5946] team0 (unregistering): Port device team_slave_1 removed
[  408.940145][   T30] audit: type=1800 audit(1762525334.255:59): pid=8346 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.466" name="file2" dev="loop2" ino=261 res=0 errno=0
[  410.865062][ T5946] team0 (unregistering): Port device team_slave_0 removed
[  410.992446][ T8352] loop4: detected capacity change from 0 to 1024
[  411.034549][ T5830] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  412.523917][ T7318] hfsplus: b-tree write err: -5, ino 4
[  412.667426][ T8364] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  414.623837][ T8373] loop1: detected capacity change from 0 to 1024
[  415.334185][   T60] hfsplus: b-tree write err: -5, ino 4
[  419.486265][ T8402] loop2: detected capacity change from 0 to 32768
[  419.506427][ T8402] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.481 (8402)
[  419.525875][ T8402] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  419.536104][ T8402] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm
[  419.692340][ T8413] loop0: detected capacity change from 0 to 128
[  419.753629][ T8422] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  419.753767][ T8407] loop1: detected capacity change from 0 to 2048
[  419.761799][ T8422] syzkaller0: entered promiscuous mode
[  419.772402][ T8422] syzkaller0: entered allmulticast mode
[  419.836788][ T8402] BTRFS info (device loop2): enabling ssd optimizations
[  419.838924][ T8413] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  419.843948][ T8402] BTRFS info (device loop2): turning on async discard
[  419.863279][ T8402] BTRFS info (device loop2): enabling free space tree
[  420.024205][ T8428] tipc: Resetting bearer <eth:syzkaller0>
[  420.036819][ T8413] ext4 filesystem being mounted at /111/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  420.068819][ T8421] tipc: Resetting bearer <eth:syzkaller0>
[  420.089957][ T8407] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  420.240404][ T5834] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  420.251477][ T5834] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  420.260466][ T5834] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  420.271092][ T5834] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  420.282056][ T5834] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  421.281819][ T5913] tipc: Node number set to 4114974030
[  421.287590][   T30] audit: type=1800 audit(1762525346.775:60): pid=8440 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.481" name="file2" dev="loop2" ino=261 res=0 errno=0
[  421.721118][ T8421] tipc: Disabling bearer <eth:syzkaller0>
[  421.757225][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  422.063614][ T5830] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  422.291693][ T5820] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  422.562424][ T8449] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  423.538986][   T52] Bluetooth: hci4: command tx timeout
[  423.791120][ T8455] loop4: detected capacity change from 0 to 1024
[  423.855498][ T8458] loop2: detected capacity change from 0 to 8
[  424.443489][ T6196] hfsplus: b-tree write err: -5, ino 4
[  424.859213][ T5946] bridge_slave_1: left allmulticast mode
[  424.938099][ T5946] bridge_slave_1: left promiscuous mode
[  425.018677][ T5946] bridge0: port 2(bridge_slave_1) entered disabled state
[  425.485147][ T5946] bridge_slave_0: left allmulticast mode
[  425.492416][ T5946] bridge_slave_0: left promiscuous mode
[  425.498638][ T5946] bridge0: port 1(bridge_slave_0) entered disabled state
[  425.711528][   T52] Bluetooth: hci4: command tx timeout
[  427.777562][   T52] Bluetooth: hci4: command tx timeout
[  428.495501][ T5946] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  428.548089][ T5946] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  428.600786][ T5946] bond0 (unregistering): Released all slaves
[  428.820072][ T8496] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -4
[  428.829541][ T8496] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -4
[  428.839213][ T8496] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  429.697162][   T30] audit: type=1800 audit(1762525354.725:61): pid=8496 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.494" name="regulatory.db" dev="sda1" ino=448 res=0 errno=0
[  429.862725][   T52] Bluetooth: hci4: command tx timeout
[  430.039301][ T8513] loop0: detected capacity change from 0 to 16
[  430.176310][ T8513] erofs (device loop0): mounted with root inode @ nid 36.
[  432.341060][ T8498] syz.2.495 (8498): drop_caches: 2
[  432.428525][ T5946] hsr_slave_0: left promiscuous mode
[  432.457742][ T5946] hsr_slave_1: left promiscuous mode
[  432.467626][ T5946] batman_adv: batadv0: Removing interface: batadv_slave_0
[  432.507354][ T8528] loop0: detected capacity change from 0 to 1024
[  432.536562][ T5946] batman_adv: batadv0: Removing interface: batadv_slave_1
[  432.775025][ T8535] /dev/nullb0: Can't lookup blockdev
[  432.785332][ T8535] netlink: 'syz.2.502': attribute type 1 has an invalid length.
[  432.793222][ T8535] netlink: 'syz.2.502': attribute type 2 has an invalid length.
[  433.553649][   T36] hfsplus: b-tree write err: -5, ino 4
[  434.267284][ T8541] loop2: detected capacity change from 0 to 1024
[  434.879842][ T8545] loop0: detected capacity change from 0 to 256
[  434.915049][ T8545] exfat: Deprecated parameter 'utf8'
[  434.955322][ T8545] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011d93, chksum : 0x4501cc6b, utbl_chksum : 0xe619d30d)
[  438.376540][ T8568] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  438.383882][ T8568] overlayfs: failed to set xattr on upper
[  438.389754][ T8568] overlayfs: ...falling back to redirect_dir=nofollow.
[  438.396690][ T8568] overlayfs: ...falling back to index=off.
[  438.402831][ T8568] overlayfs: ...falling back to uuid=null.
[  438.478344][ T8569] overlayfs: overlay with incompat feature 'volatile' cannot be mounted
[  439.162063][ T8571] loop0: detected capacity change from 0 to 256
[  439.927085][  T978] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  440.983751][ T5946] team0 (unregistering): Port device team_slave_1 removed
[  441.074594][ T8589] loop0: detected capacity change from 0 to 1024
[  441.120893][ T5946] team0 (unregistering): Port device team_slave_0 removed
[  441.163503][  T978] usb 3-1: config 0 has no interfaces?
[  441.180162][  T978] usb 3-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice=39.48
[  441.190316][  T978] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  441.207101][  T978] usb 3-1: Product: syz
[  441.231218][  T978] usb 3-1: Manufacturer: syz
[  441.250883][  T978] usb 3-1: SerialNumber: syz
[  441.263948][  T978] usb 3-1: config 0 descriptor??
[  441.485030][ T8592] loop1: detected capacity change from 0 to 2048
[  441.514565][ T8592] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  441.593866][ T8576] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  441.654612][ T8576] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  441.888143][   T44] hfsplus: b-tree write err: -5, ino 4
[  441.968290][ T8576] batadv0: entered promiscuous mode
[  441.996807][ T8576] vlan2: entered promiscuous mode
[  443.210370][  T978] usb 3-1: USB disconnect, device number 2
[  443.367537][ T8434] chnl_net:caif_netlink_parms(): no params data found
[  445.271090][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  445.275280][ T8615] binder: 8611:8615 ioctl c0306201 0 returned -14
[  445.291924][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  446.055212][ T8631] loop2: detected capacity change from 0 to 1024
[  446.061175][ T8434] bridge0: port 1(bridge_slave_0) entered blocking state
[  446.287234][ T8434] bridge0: port 1(bridge_slave_0) entered disabled state
[  446.294506][ T8434] bridge_slave_0: entered allmulticast mode
[  446.430757][ T8635] loop0: detected capacity change from 0 to 1024
[  446.459372][ T8434] bridge_slave_0: entered promiscuous mode
[  446.469083][ T6009] hfsplus: b-tree write err: -5, ino 4
[  446.484065][ T8434] bridge0: port 2(bridge_slave_1) entered blocking state
[  446.524712][ T8434] bridge0: port 2(bridge_slave_1) entered disabled state
[  446.558593][ T8434] bridge_slave_1: entered allmulticast mode
[  446.580667][ T8434] bridge_slave_1: entered promiscuous mode
[  446.838910][ T8434] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  446.879627][ T8434] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  447.828009][ T8650] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  448.007744][   T60] hfsplus: b-tree write err: -5, ino 4
[  448.257734][ T8434] team0: Port device team_slave_0 added
[  448.752130][ T8434] team0: Port device team_slave_1 added
[  448.896719][ T8666] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  448.974732][ T8657] loop4: detected capacity change from 0 to 4096
[  449.130612][ T8434] batman_adv: batadv0: Adding interface: batadv_slave_0
[  449.136702][ T8657] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  449.155635][ T8434] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  449.451628][ T8434] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  449.800132][ T8434] batman_adv: batadv0: Adding interface: batadv_slave_1
[  449.934914][ T8434] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  450.987090][ T8434] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  452.522640][ T5824] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  452.524789][ T8689] loop0: detected capacity change from 0 to 1024
[  453.025585][ T1150] hfsplus: b-tree write err: -5, ino 4
[  453.368485][ T8700] comedi comedi0: pcmda12: I/O port conflict (0x4f28,16)
[  453.931702][ T8434] hsr_slave_0: entered promiscuous mode
[  454.000964][ T8434] hsr_slave_1: entered promiscuous mode
[  454.077459][ T8698] loop4: detected capacity change from 0 to 1024
[  454.085355][ T8434] debugfs: 'hsr0' already exists in 'hsr'
[  454.104108][ T8434] Cannot create hsr debugfs directory
[  456.634030][ T6045] hfsplus: b-tree write err: -5, ino 4
[  457.520047][ T8722] loop0: detected capacity change from 0 to 512
[  457.557139][ T8722] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  457.601343][ T8722] EXT4-fs (loop0): invalid journal inode
[  457.614467][ T8722] EXT4-fs (loop0): can't get journal size
[  457.652823][ T8722] EXT4-fs (loop0): 1 truncate cleaned up
[  457.674258][ T8722] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  458.536586][   T30] audit: type=1800 audit(1762525384.435:62): pid=8722 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.544" name="file1" dev="loop0" ino=19 res=0 errno=0
[  459.273196][ T8744] netlink: 8 bytes leftover after parsing attributes in process `syz.4.546'.
[  460.064079][ T5820] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  462.101136][ T8761] hub 2-0:1.0: USB hub found
[  462.107182][ T8761] hub 2-0:1.0: 1 port detected
[  462.645469][ T8770] loop0: detected capacity change from 0 to 1024
[  464.722279][ T8779] loop2: detected capacity change from 0 to 512
[  464.837936][ T8779] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  465.853586][ T6044] hfsplus: b-tree write err: -5, ino 4
[  465.997603][ T8434] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  466.752266][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  466.765161][ T8434] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  467.248148][ T8783] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  467.327620][ T8789] syzkaller0: entered promiscuous mode
[  467.340713][ T8789] syzkaller0: entered allmulticast mode
[  468.252022][ T8434] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  468.371634][  T978] tipc: Node number set to 1537505446
[  468.376621][ T8820] hpfs: hpfs_map_sector(): read error
[  468.817110][ T8815] ------------[ cut here ]------------
[  468.822672][ T8815] WARNING: arch/x86/kvm/x86.c:13965 at kvm_arch_can_dequeue_async_page_present+0x1a9/0x2f0, CPU#1: syz.4.560/8815
[  468.828175][ T8434] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  468.835196][ T8815] Modules linked in:
[  468.835276][ T8815] CPU: 1 UID: 0 PID: 8815 Comm: syz.4.560 Not tainted syzkaller #0 PREEMPT(full) 
[  468.835303][ T8815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  468.835329][ T8815] RIP: 0010:kvm_arch_can_dequeue_async_page_present+0x1a9/0x2f0
[  468.835374][ T8815] Code: 00 65 48 8b 0d 58 41 2e 11 48 3b 4c 24 40 75 21 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d e9 3e 7f 17 0a cc e8 48 e1 79 00 90 <0f> 0b 90 b0 01 eb c0 e8 4b 91 14 0a f3 0f 1e fa 4c 8d b3 f8 02 00
[  468.835394][ T8815] RSP: 0018:ffffc9000b497460 EFLAGS: 00010287
[  468.835416][ T8815] RAX: ffffffff81479ee8 RBX: ffff88807cbf2940 RCX: 0000000000080000
[  468.835433][ T8815] RDX: ffffc9000d050000 RSI: 0000000000001eb7 RDI: 0000000000001eb8
[  468.835449][ T8815] RBP: ffffc9000b4974e8 R08: ffff88807cbf297f R09: 1ffff1100f97e52f
[  468.923989][ T8815] R10: dffffc0000000000 R11: ffffed100f97e530 R12: 1ffff92001692e8c
[  468.932433][ T8815] R13: dffffc0000000000 R14: 0000000000000000 R15: dffffc0000000000
[  468.940851][ T8815] FS:  00007f07373ee6c0(0000) GS:ffff888125fc2000(0000) knlGS:0000000000000000
[  468.949861][ T8815] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  468.956474][ T8815] CR2: 00007f28eb757fe8 CR3: 0000000078886000 CR4: 00000000003526f0
[  468.964520][ T8815] Call Trace:
[  468.967842][ T8815]  <TASK>
[  468.970800][ T8815]  ? __pfx_kvm_arch_can_dequeue_async_page_present+0x10/0x10
[  468.978276][ T8815]  kvm_check_async_pf_completion+0x102/0x3c0
[  468.984276][ T8815]  ? kvm_service_local_tlb_flush_requests+0xed/0x130
[  468.991015][ T8815]  vcpu_run+0x26be/0x7760
[  468.995368][ T8815]  ? vcpu_run+0x364e/0x7760
[  469.000008][ T8815]  ? __pfx_vcpu_run+0x10/0x10
[  469.004744][ T8815]  ? kvm_arch_vcpu_ioctl_run+0x293/0x1cb0
[  469.010599][ T8815]  ? rcu_is_watching+0x15/0xb0
[  469.015506][ T8815]  kvm_arch_vcpu_ioctl_run+0x116c/0x1cb0
[  469.021259][ T8815]  ? __mutex_trylock_common+0x153/0x260
[  469.026851][ T8815]  ? kvm_arch_vcpu_ioctl_run+0x293/0x1cb0
[  469.032663][ T8815]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  469.039173][ T8815]  ? rcu_is_watching+0x15/0xb0
[  469.043990][ T8815]  ? trace_contention_end+0x39/0x120
[  469.049870][ T8815]  ? look_up_lock_class+0x74/0x170
[  469.055068][ T8815]  ? register_lock_class+0x51/0x320
[  469.060395][ T8815]  ? __lock_acquire+0xab9/0xd20
[  469.065354][ T8815]  kvm_vcpu_ioctl+0x99a/0xed0
[  469.070193][ T8815]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  469.075496][ T8815]  ? __fget_files+0x2a/0x420
[  469.080256][ T8815]  ? __fget_files+0x3a0/0x420
[  469.084981][ T8815]  ? __fget_files+0x2a/0x420
[  469.089821][ T8815]  ? bpf_lsm_file_ioctl+0x9/0x20
[  469.094808][ T8815]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  469.100172][ T8815]  __se_sys_ioctl+0xfc/0x170
[  469.104835][ T8815]  do_syscall_64+0xfa/0xfa0
[  469.109465][ T8815]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  469.115576][ T8815]  ? clear_bhb_loop+0x60/0xb0
[  469.120450][ T8815]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  469.126411][ T8815] RIP: 0033:0x7f073918f6c9
[  469.130953][ T8815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  469.151228][ T8815] RSP: 002b:00007f07373ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  469.160136][ T8815] RAX: ffffffffffffffda RBX: 00007f07393e5fa0 RCX: 00007f073918f6c9
[  469.168231][ T8815] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  469.176355][ T8815] RBP: 00007f0739211f91 R08: 0000000000000000 R09: 0000000000000000
[  469.184439][ T8815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  469.192515][ T8815] R13: 00007f07393e6038 R14: 00007f07393e5fa0 R15: 00007ffdd3c4df98
[  469.200630][ T8815]  </TASK>
[  469.203689][ T8815] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  469.210993][ T8815] CPU: 1 UID: 0 PID: 8815 Comm: syz.4.560 Not tainted syzkaller #0 PREEMPT(full) 
[  469.220301][ T8815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  469.230400][ T8815] Call Trace:
[  469.233718][ T8815]  <TASK>
[  469.236678][ T8815]  dump_stack_lvl+0x99/0x250
[  469.241312][ T8815]  ? __asan_memcpy+0x40/0x70
[  469.245942][ T8815]  ? __pfx_dump_stack_lvl+0x10/0x10
[  469.251184][ T8815]  ? __pfx__printk+0x10/0x10
[  469.255827][ T8815]  vpanic+0x237/0x6d0
[  469.259922][ T8815]  ? __pfx_vpanic+0x10/0x10
[  469.264451][ T8815]  ? is_bpf_text_address+0x292/0x2b0
[  469.269780][ T8815]  ? is_bpf_text_address+0x26/0x2b0
[  469.275029][ T8815]  panic+0xb9/0xc0
[  469.278796][ T8815]  ? __pfx_panic+0x10/0x10
[  469.283269][ T8815]  __warn+0x334/0x4c0
[  469.287279][ T8815]  ? kvm_arch_can_dequeue_async_page_present+0x1a9/0x2f0
[  469.294364][ T8815]  ? kvm_arch_can_dequeue_async_page_present+0x1a9/0x2f0
[  469.301434][ T8815]  report_bug+0x2be/0x4f0
[  469.305808][ T8815]  ? kvm_arch_can_dequeue_async_page_present+0x1a9/0x2f0
[  469.312874][ T8815]  ? kvm_arch_can_dequeue_async_page_present+0x1a9/0x2f0
[  469.319955][ T8815]  ? kvm_arch_can_dequeue_async_page_present+0x1ab/0x2f0
[  469.327029][ T8815]  handle_bug+0x84/0x160
[  469.331282][ T8815]  exc_invalid_op+0x1a/0x50
[  469.335805][ T8815]  asm_exc_invalid_op+0x1a/0x20
[  469.340664][ T8815] RIP: 0010:kvm_arch_can_dequeue_async_page_present+0x1a9/0x2f0
[  469.348333][ T8815] Code: 00 65 48 8b 0d 58 41 2e 11 48 3b 4c 24 40 75 21 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d e9 3e 7f 17 0a cc e8 48 e1 79 00 90 <0f> 0b 90 b0 01 eb c0 e8 4b 91 14 0a f3 0f 1e fa 4c 8d b3 f8 02 00
[  469.367967][ T8815] RSP: 0018:ffffc9000b497460 EFLAGS: 00010287
[  469.374078][ T8815] RAX: ffffffff81479ee8 RBX: ffff88807cbf2940 RCX: 0000000000080000
[  469.382062][ T8815] RDX: ffffc9000d050000 RSI: 0000000000001eb7 RDI: 0000000000001eb8
[  469.390044][ T8815] RBP: ffffc9000b4974e8 R08: ffff88807cbf297f R09: 1ffff1100f97e52f
[  469.398028][ T8815] R10: dffffc0000000000 R11: ffffed100f97e530 R12: 1ffff92001692e8c
[  469.406039][ T8815] R13: dffffc0000000000 R14: 0000000000000000 R15: dffffc0000000000
[  469.414037][ T8815]  ? kvm_arch_can_dequeue_async_page_present+0x1a8/0x2f0
[  469.421112][ T8815]  ? __pfx_kvm_arch_can_dequeue_async_page_present+0x10/0x10
[  469.428542][ T8815]  kvm_check_async_pf_completion+0x102/0x3c0
[  469.434559][ T8815]  ? kvm_service_local_tlb_flush_requests+0xed/0x130
[  469.441255][ T8815]  vcpu_run+0x26be/0x7760
[  469.445611][ T8815]  ? vcpu_run+0x364e/0x7760
[  469.450280][ T8815]  ? __pfx_vcpu_run+0x10/0x10
[  469.454978][ T8815]  ? kvm_arch_vcpu_ioctl_run+0x293/0x1cb0
[  469.460733][ T8815]  ? rcu_is_watching+0x15/0xb0
[  469.465525][ T8815]  kvm_arch_vcpu_ioctl_run+0x116c/0x1cb0
[  469.471171][ T8815]  ? __mutex_trylock_common+0x153/0x260
[  469.476754][ T8815]  ? kvm_arch_vcpu_ioctl_run+0x293/0x1cb0
[  469.482497][ T8815]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  469.488497][ T8815]  ? rcu_is_watching+0x15/0xb0
[  469.493280][ T8815]  ? trace_contention_end+0x39/0x120
[  469.498586][ T8815]  ? look_up_lock_class+0x74/0x170
[  469.503724][ T8815]  ? register_lock_class+0x51/0x320
[  469.508943][ T8815]  ? __lock_acquire+0xab9/0xd20
[  469.513835][ T8815]  kvm_vcpu_ioctl+0x99a/0xed0
[  469.518539][ T8815]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  469.523777][ T8815]  ? __fget_files+0x2a/0x420
[  469.528388][ T8815]  ? __fget_files+0x3a0/0x420
[  469.533084][ T8815]  ? __fget_files+0x2a/0x420
[  469.537810][ T8815]  ? bpf_lsm_file_ioctl+0x9/0x20
[  469.542780][ T8815]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  469.548007][ T8815]  __se_sys_ioctl+0xfc/0x170
[  469.552630][ T8815]  do_syscall_64+0xfa/0xfa0
[  469.557159][ T8815]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  469.563245][ T8815]  ? clear_bhb_loop+0x60/0xb0
[  469.567939][ T8815]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  469.573840][ T8815] RIP: 0033:0x7f073918f6c9
[  469.578262][ T8815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  469.597964][ T8815] RSP: 002b:00007f07373ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  469.606406][ T8815] RAX: ffffffffffffffda RBX: 00007f07393e5fa0 RCX: 00007f073918f6c9
[  469.614392][ T8815] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  469.622388][ T8815] RBP: 00007f0739211f91 R08: 0000000000000000 R09: 0000000000000000
[  469.630385][ T8815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  469.638368][ T8815] R13: 00007f07393e6038 R14: 00007f07393e5fa0 R15: 00007ffdd3c4df98
[  469.646369][ T8815]  </TASK>
[  469.649727][ T8815] Kernel Offset: disabled
[  469.654092][ T8815] Rebooting in 86400 seconds..