last executing test programs:

19m4.861706584s ago: executing program 32 (id=269):
timer_create(0x0, 0x0, &(0x7f0000000300))
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000300)={[{@minixdf}, {}, {@barrier_val={'barrier', 0x3d, 0x9}}, {@commit={'commit', 0x3d, 0x5}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@nodelalloc}, {@noblock_validity}, {@nomblk_io_submit}]}, 0x1, 0x566, &(0x7f00000015c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x147142, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000003c0)={0x6, 0x4000000007}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000080), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$IP_VS_SO_SET_EDITDEST(0xffffffffffffffff, 0x0, 0x489, 0x0, 0x0)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
fallocate(r0, 0x0, 0x9, 0x10001)
ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r0, 0xc034564b, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, 0x0, 0x0)
socketpair(0x1, 0x1, 0x0, 0x0)
lsetxattr$trusted_overlay_upper(0x0, &(0x7f0000000180), &(0x7f0000000580)=ANY=[], 0x361, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x101042, 0x0)
write$P9_RREADDIR(r2, &(0x7f0000000200)={0xb, 0x29, 0x1, {0x6}}, 0xfffffff4)
syz_io_uring_setup(0x231, &(0x7f0000000140)={0x0, 0x0, 0x10100, 0x0, 0x0, 0x0, r1}, 0x0, 0x0)
r3 = socket$kcm(0x2, 0x1000000000000005, 0x0)
r4 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x4102c0)
write$evdev(r4, &(0x7f0000000040)=[{{0x77359400}, 0x16, 0x2, 0xffffff00}], 0x18)
sendmsg$inet(r3, &(0x7f0000007940)={&(0x7f0000000100)={0x2, 0x20, @rand_addr=0xa9fe0000}, 0x10, 0x0, 0x0, &(0x7f0000007880)=[@ip_retopts={{0x10, 0x84}}], 0x10}, 0x0)

18m59.495627777s ago: executing program 33 (id=291):
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000005c0)={0x6, 0x10, &(0x7f0000000300)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xbf21, 0x0, 0x0, 0x0, 0xb7}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@func={0x85, 0x0, 0x1, 0x0, 0xfffffff5}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000200)='syzkaller\x00', 0x1, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7ff}, 0x94)
close(0x3)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0xe, 0xe, 0x0, 0x0, 0x6}, 0x94)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x12, 0x4, &(0x7f0000000100)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x94)

18m55.81228449s ago: executing program 34 (id=305):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000005a0000008500000022000000180100002020702500000000002020200100000000000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r2, r1, 0x25, 0x0, @void}, 0x10)
syz_emit_ethernet(0xd81, &(0x7f0000002640)=ANY=[], 0x0)

18m48.098470807s ago: executing program 35 (id=329):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000200)=ANY=[@ANYBLOB="1201410130f56920ac05190272f00102030109021b000100001000090455070103490200090582030004"], 0x0)
ioctl$VIDIOC_S_SELECTION(0xffffffffffffffff, 0xc040565f, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000580)={0x84, &(0x7f0000000340)=ANY=[@ANYBLOB='\x00N\b'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(0xffffffffffffff9c, &(0x7f0000000740)='./file1\x00', 0x20441, 0x42)
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0xffffffffffffff45, &(0x7f0000000000)=ANY=[@ANYRESOCT=r0])
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)

18m35.093082989s ago: executing program 36 (id=367):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f00000064c0)='./bus\x00', 0x28108c0, &(0x7f0000006980)=ANY=[], 0xfe, 0x61cb, &(0x7f0000006c00)="$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")
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
lgetxattr(0x0, 0x0, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x105042, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x1000002, 0x11, r1, 0x0)
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000001300)='./file0\x00', 0x1000801, &(0x7f0000000000)=ANY=[], 0x0, 0x1cc, &(0x7f0000000400)="$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")
read(r1, &(0x7f0000001400)=""/4096, 0x1000)

18m23.050529011s ago: executing program 37 (id=411):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f00000002c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, r1, {0x7, 0x29, 0x9, 0xffffffff90adedc4, 0x0, 0x3, 0x0, 0x4, 0x0, 0x0, 0x10}}, 0x50)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x18)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x0, {0x0, 0x1c}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
open_by_handle_at(r2, &(0x7f0000000040)=@ocfs2_parent={0x18, 0x2, {{0x8, 0xfd66, 0xca}, {0xfffffbff, 0x2, 0x6}}}, 0x840)

18m7.116029255s ago: executing program 38 (id=474):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$EVIOCGREP(0xffffffffffffffff, 0x80084524, 0x0)
getresgid(0x0, 0x0, &(0x7f00000016c0))
close(0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x6)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r3, 0x84, 0x12, &(0x7f0000000380), 0x4)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$binfmt_register(0xffffff9c, &(0x7f0000000000), 0x1, 0x0)
write$binfmt_register(r4, &(0x7f0000000200)={0x3a, 'syz3', 0x3a, 'M', 0x3a, 0x8, 0x3a, '/proc/sys/fs/binfmt_misc/register\x00', 0x3a, '/proc/sys/fs/binfmt_misc/register\x00', 0x3a, './file0/../file0', 0x3a, [0x4f, 0x43]}, 0x76)
getpid()
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'sit0\x00', <r5=>0x0})
ioctl$sock_inet6_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, &(0x7f0000000080)={@loopback={0x0, 0x3fc}, 0x0, r5})
r6 = socket$inet_sctp(0x2, 0x1, 0x84)
shutdown(r6, 0x1)
poll(&(0x7f0000000100)=[{r6, 0x84}], 0x1, 0x3ff)
sendto$inet(r6, 0x0, 0x0, 0x0, &(0x7f0000004ff0)={0x2, 0x0, @rand_addr=0xfffffffffffffffe}, 0x10)
listen(r6, 0xda90)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)={0x34, 0x3e, 0x1, 0x80000, 0x0, {0x1}, [@typed={0x4}, @nested={0x10, 0x1, 0x0, 0x1, [@nested={0xc, 0x10, 0x0, 0x1, [@nested={0x4, 0xb}, @typed={0x4, 0xe3, 0x0, 0x0, @binary}]}]}, @typed={0xc, 0x2, 0x0, 0x0, @u64}]}, 0x34}, 0x1, 0x0, 0x0, 0x4811}, 0x4008094)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00'}, 0x48)

17m55.160678595s ago: executing program 39 (id=511):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cpuacct.usage_sys\x00', 0x26e1, 0x0)
prctl$PR_GET_TID_ADDRESS(0x28, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x4001, 0x1, @dev={0xfe, 0x80, '\x00', 0x39}, 0x3e}, 0x1c)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
write$cgroup_type(r0, &(0x7f0000000080), 0x11ffffce1)
bind$802154_dgram(r0, 0x0, 0x0)

17m40.179795176s ago: executing program 40 (id=555):
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
r0 = inotify_init1(0x80000)
inotify_add_watch(r0, &(0x7f00000002c0)='./file0\x00', 0x67000714)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x142, 0x1ef)
write$P9_RREAD(r1, &(0x7f0000000240)=ANY=[], 0x10)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0/file1\x00', 0x2080, 0x5e)
ioctl$FIDEDUPERANGE(r2, 0xc0189436, &(0x7f0000000200)=ANY=[@ANYBLOB="090000000000000005000000000000000100000000000000", @ANYRES32=r2])

17m32.223613358s ago: executing program 41 (id=578):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=@delchain={0x24, 0x65, 0x400, 0x70bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x509d884560ba1ba6, 0x3}, {}, {0x8, 0x10}}}, 0x24}}, 0x10)
r0 = socket$igmp(0x2, 0x3, 0x2)
getsockopt$MRT(r0, 0x0, 0x0, &(0x7f00000001c0), &(0x7f0000000400)=0x4)
syz_mount_image$fuse(&(0x7f0000000040), 0x0, 0x48000, &(0x7f0000000140)={{}, 0x2c, {'rootmode', 0x3d, 0x2000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {'group_id', 0x3d, 0xee00}}, 0x0, 0x0, 0x0)
setreuid(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r4, &(0x7f0000000440), 0x10)
listen(r4, 0x0)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r5, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r5, &(0x7f0000000200)=[{&(0x7f0000000080)}], 0x1)
r6 = accept4$unix(r4, 0x0, 0x0, 0x0)
recvmmsg(r6, &(0x7f0000001680)=[{{0x0, 0x0, &(0x7f0000003380)=[{&(0x7f0000000140)=""/120, 0x78}, {&(0x7f0000000040)=""/40, 0x28}, {&(0x7f0000003300)=""/107, 0x6b}], 0x3}}], 0x4000000000000a1, 0x2, 0x0)
recvmsg(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)=""/68, 0x44}], 0x1}, 0x4c2103a0)
getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x84, 0x0, &(0x7f0000001040))
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f0000000500)="14", 0x1, 0xfffffffffffffffd)
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000000100)=ANY=[@ANYBLOB="60b80000", @ANYRES16=0x0, @ANYBLOB="050427bd7000fedbdf250100000008000100", @ANYRES32, @ANYBLOB="4400028040000100240001006d6f6465000000000000000000000000000000000000000000000000000000000500030005"], 0x60}, 0x1, 0x0, 0x0, 0x4040400}, 0x4040084)
r7 = accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x0)
connect(r7, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0xaf9, @mcast2, 0x2, 0x2}, 0x80)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0)

17m29.379506775s ago: executing program 42 (id=584):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=@delchain={0x24, 0x65, 0x400, 0x70bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x509d884560ba1ba6, 0x3}, {}, {0x8, 0x10}}}, 0x24}}, 0x10)
r0 = socket$igmp(0x2, 0x3, 0x2)
getsockopt$MRT(r0, 0x0, 0x0, &(0x7f00000001c0), &(0x7f0000000400)=0x4)
syz_mount_image$fuse(&(0x7f0000000040), 0x0, 0x48000, &(0x7f0000000140)={{}, 0x2c, {'rootmode', 0x3d, 0x2000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {'group_id', 0x3d, 0xee00}}, 0x0, 0x0, 0x0)
setreuid(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r4, &(0x7f0000000440), 0x10)
listen(r4, 0x0)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r5, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r5, &(0x7f0000000200)=[{&(0x7f0000000080)='?', 0x1}], 0x1)
r6 = accept4$unix(r4, 0x0, 0x0, 0x0)
recvmmsg(r6, 0x0, 0x0, 0x2, 0x0)
recvmsg(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)=""/68, 0x44}], 0x1}, 0x4c2103a0)
getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x84, 0x0, &(0x7f0000001040))
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f0000000500)="14", 0x1, 0xfffffffffffffffd)
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000000100)=ANY=[@ANYBLOB="60b80000", @ANYRES16=0x0, @ANYBLOB="050427bd7000fedbdf250100000008000100", @ANYRES32, @ANYBLOB="4400028040000100240001006d6f6465000000000000000000000000000000000000000000000000000000000500030005"], 0x60}, 0x1, 0x0, 0x0, 0x4040400}, 0x4040084)
r7 = accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x0)
connect(r7, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0xaf9, @mcast2, 0x2, 0x2}, 0x80)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0)

16m44.069058544s ago: executing program 43 (id=667):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
fsmount(r5, 0x0, 0x80)
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000001c00), 0x12)
bind$inet(r1, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
fcntl$setstatus(r1, 0x4, 0x40800)
setsockopt$inet_mtu(r1, 0x0, 0xa, 0x0, 0x0)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000040)='sit0\x00', 0x10)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ftruncate(r6, 0x2000009)
sendfile(r1, r6, 0x0, 0x7ffff004)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00'})

16m26.096883309s ago: executing program 44 (id=783):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000100)=0x5)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000007c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102384, 0x18ff0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha512\x00'}, 0x58)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000640)=[{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000140)="b57523cb1a2c90d8acad2e2d98dfc9ea7a5843c3b63b683ced2b3266175599b779617e66e6b3e15c042be90635a2d36160bbf9a2edcacc0bbe015b84150a1928de94397894ff36aa430fc2a0814ba634308d6d0837250dfd1eca5383f9d151449743b1a0c4ffc51242a229c5d6d06f147a61d797ea7ffeda95b76f5623", 0x7d}, {&(0x7f00000001c0)="66f7", 0x4}, {&(0x7f0000000300)='l3', 0x7fffef80}], 0x3}], 0x1, 0x0)

13m56.512428926s ago: executing program 6 (id=1071):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000040)={<r4=>0xffffffffffffffff}, 0x2, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r3, &(0x7f00000003c0)={0x13, 0x10, 0xfa00, {0x0, r4, 0x3}}, 0x18)

13m54.748784025s ago: executing program 6 (id=1073):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000002080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000000c0)='dctcp', 0x5)
sendto$inet(r0, 0x0, 0x0, 0x2000c7fd, &(0x7f0000002340)={0x2, 0x4e23, @empty}, 0x10)
fcntl$lock(0xffffffffffffffff, 0x24, 0x0)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0x42795000)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/profiling', 0x2, 0x184)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000002380)=ANY=[], 0x1c}}, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001d40)=[{&(0x7f0000000100)=ANY=[@ANYBLOB="2c00000010008100000000000080000000000000", @ANYRES32=0x0, @ANYBLOB="0a043cbf", @ANYRES32, @ANYBLOB="0a001b"], 0x2c}], 0x1}, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='scalable', 0x8)
sendto$inet(r0, &(0x7f0000000f00)="8995b3c271bab84f6e841cd28301f2e02519276836b2ab14ba300f39a71758d74d011771db342aa6df71dc54faabe6ccc2dae1fdf17d4c74618af0933c8c800ec3ce49bd4af9b8cf0b15e8ad756f12238f6649d204a1065dad7cffef082a59ee2b21eb73656d3dc03547888735", 0x6d, 0x4c840, 0x0, 0x0)

13m51.896198848s ago: executing program 6 (id=1078):
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000080)='./file0\x00', 0x80480, &(0x7f0000000040)={[{@dax}, {@barrier}, {@bh}, {@sysvgroups}, {@dax_always}, {@journal_async_commit}]}, 0x6, 0x61e, &(0x7f0000002740)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000010c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
keyctl$set_reqkey_keyring(0xe, 0x7)
socket$inet6_icmp(0xa, 0x2, 0x3a)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r4, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
bind$tipc(r4, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x2, {0x42, 0x0, 0x2}}, 0x10)
r5 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r5, &(0x7f0000000180)=@name={0x1e, 0x2, 0x1, {{0x2}}}, 0x10)
bind$tipc(r5, &(0x7f00000001c0)=@id={0x1e, 0x3, 0x0, {0x4e23, 0x4}}, 0x10)
bind$tipc(r4, 0x0, 0x0)
close(r3)
r6 = syz_open_dev$vim2m(&(0x7f0000000000), 0x1, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r6, 0xc0145608, 0x0)
ioctl$vim2m_VIDIOC_QBUF(r6, 0xc058560f, &(0x7f00000002c0)=@multiplanar_mmap={0x0, 0x2, 0x4, 0x0, 0x400, {}, {0x0, 0x8, 0x0, 0x0, 0x0, 0x0, "f4ffffff"}, 0x1ffffffe, 0x1, {0x0}, 0xfffffffd, 0x0, <r7=>0xffffffffffffffff})
ioctl$vim2m_VIDIOC_DQBUF(r6, 0xc0585611, &(0x7f0000000340)=@multiplanar_userptr={0x0, 0x2, 0x4, 0x10, 0x5, {}, {0x1, 0xc, 0xd7, 0x7, 0x1, 0x3, "621a65f4"}, 0x1ff, 0x2, {0x0}, 0x6, 0x0, r7})
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f000000a180)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)

13m50.139925554s ago: executing program 6 (id=1082):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb4e02000)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
fchdir(0xffffffffffffffff)
io_setup(0x20, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000300)={@in={{0x2, 0x4e23, @broadcast}}, 0x0, 0x0, 0x23, 0x0, "2de43b06d800e09c7ef3ef39703e47390989749ad38e5ef29ef0cfa907ca612a6fe067565a1c34fd41d05e4ec49327e01915d85932dd408f6914819f0d1faa69b2921a84b23c7540b27f0430f240a403"}, 0xd8)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)

13m48.451587696s ago: executing program 6 (id=1085):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0xffffffffffffff1a, &(0x7f0000000580)=0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f00000001c0)={0xfffffffd, 0x5, 0x0, 'queue0\x00', 0x5})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r4, 0x404c534a, &(0x7f0000000380)={0x0, 0x0, 0x2000000})

13m45.121853871s ago: executing program 6 (id=1089):
socketpair$unix(0x1, 0x3, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r2 = io_uring_setup(0x3454, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x2e9})
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)

13m29.290760588s ago: executing program 45 (id=1089):
socketpair$unix(0x1, 0x3, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r2 = io_uring_setup(0x3454, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x2e9})
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)

12m10.484059055s ago: executing program 5 (id=1220):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
chdir(0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x4000, &(0x7f0000000280)={[{@dax_always}, {@block_validity}]}, 0x0, 0x4bc, &(0x7f0000000a40)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000300)=@abs={0x0, 0x0, 0xb}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
read$FUSE(0xffffffffffffffff, &(0x7f00000009c0)={0x2020}, 0x2020)
socket$nl_route(0x10, 0x3, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r4=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_MIGRATE_ID(r0, &(0x7f0000000080)={0x12, 0x10, 0xfa00, {0x0, r4, r0}}, 0x18)

12m6.928890939s ago: executing program 5 (id=1224):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="05000000050000000100000001"], 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)='%ps    \x00'}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
symlink(&(0x7f0000000240)='./file1\x00', &(0x7f0000000040)='./file0\x00')
r4 = syz_io_uring_setup(0x10e, &(0x7f0000000140)={0x0, 0x334e, 0x10, 0x3, 0x801}, &(0x7f00000003c0)=<r5=>0x0, &(0x7f0000000300)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000040)='./file0/file0\x00', 0x60, 0x208100})
io_uring_enter(r4, 0x7277, 0x0, 0x28, 0x0, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000540)={r0, &(0x7f0000000440), 0x0}, 0x20)
r7 = socket$unix(0x1, 0x5, 0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r7, 0x0, 0x483, 0x0, 0x0)

12m3.418261229s ago: executing program 5 (id=1230):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='dummy0\x00', 0x10)
sendmmsg$inet(r0, &(0x7f0000000900)=[{{0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000080)="bb7bb9597d4d31e1cbfb7adeba35802a8436530d598250c73ca6b5e86c8210e045f84014cdf10821b833638435ac2e66e59292b626c4f7ad2f70d96b2d56fdebc80019e4a5ff984409f1b3ffb9521f", 0x4f}, {&(0x7f0000000340)="cf2532c69601cc", 0x7}, {0x0}, {0x0}, {0x0}], 0x5}}], 0x1, 0x4)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file2\x00', 0x8, &(0x7f0000000080)={[{@nodioread_nolock}, {@sb={'sb', 0x3d, 0x1}}]}, 0x4, 0x523, &(0x7f00000018c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = fsmount(r5, 0x0, 0x80)
r7 = openat$cgroup_procs(r6, &(0x7f00000002c0)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r7, &(0x7f0000001c00), 0x12)
bind$inet(r1, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
fcntl$setstatus(r1, 0x4, 0x40800)
setsockopt$inet_mtu(r1, 0x0, 0xa, 0x0, 0x0)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000040)='sit0\x00', 0x10)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ftruncate(r8, 0x2000009)
sendfile(r1, r8, 0x0, 0x7ffff004)
r9 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00'})

12m1.8194672s ago: executing program 5 (id=1232):
socket$inet_smc(0x2b, 0x1, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="12000000060000000400000002"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r4, <r5=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000140)=r3}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1e, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = getgid()
syz_mount_image$fuse(&(0x7f00000003c0), &(0x7f0000002080)='./file0\x00', 0x2000019, &(0x7f0000000000)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=r6, @ANYRESDEC=r6], 0xfc, 0x0, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
r7 = getpid()
sched_setscheduler(r7, 0x2, &(0x7f0000000000)=0x7)
getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f0000000a00)={{{@in6=@ipv4={""/10, ""/2, @broadcast}, @in=@local}}, {{@in6=@private1}, 0x0, @in6=@loopback}}, &(0x7f0000000b00)=0xe8)
read$FUSE(r3, &(0x7f0000000b40)={0x2020}, 0x2020)
syz_open_procfs(0x0, &(0x7f0000002b80)='net/ip_vs_stats\x00')
syz_clone(0x8000000, &(0x7f0000002bc0), 0x0, &(0x7f0000002c00), &(0x7f0000002c40), &(0x7f0000002c80)="81315b53413fc204b14dd1cceae3bd21344deb4b1d8b8571378b8ba4e24d01d947243d582e3b9f3d91e02a3d19fa8ecaeaa9a07e3053ef60b1d3755765c2e11b5736ff3f")
statx(r0, &(0x7f0000002d40)='./file1\x00', 0x2000, 0x80, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000180)=r8, 0x4)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x1c, 0x2e, 0x9, 0x70bd27, 0x0, {0x4}, [@typed={0x8, 0x1a, 0x0, 0x0, @ipv4=@local}]}, 0x1c}, 0x1, 0x0, 0x0, 0x42804}, 0x0)

12m0.572368535s ago: executing program 5 (id=1235):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000032680)=""/102392, 0x18ff8)
capset(&(0x7f0000000040)={0x20071026}, &(0x7f00000002c0)={0x6, 0x6, 0x1000002, 0x87, 0xffffffff, 0x3fe})
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000480)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x4000000}, 0x50)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000340)={0x1b, 0x0, 0x0, 0x40000, 0x0, r5, 0xfff}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x15, 0x1c, &(0x7f0000000100)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xbda}, {{0x18, 0x1, 0x1, 0x0, r6}, {}, {0x7, 0x0, 0xb, 0x6}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x0, 0x2}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x6, 0x1, 0xa, 0x9, 0x8}, {0x7, 0x0, 0x0, 0x8}, {0x7, 0x1, 0xb, 0x4, 0x8}, {}, {0x7, 0x0, 0xc}, {0x18, 0x6, 0x2, 0x0, r5}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = accept$inet6(0xffffffffffffffff, 0x0, 0x0)
connect$inet6(r7, 0x0, 0x0)

11m59.032500013s ago: executing program 5 (id=1236):
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={0x0}, 0x1, 0x0, 0x0, 0x818}, 0x20000004)
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
writev(r0, &(0x7f0000000740), 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = accept4(r1, 0x0, 0x0, 0x0)
sendmmsg$alg(r2, &(0x7f0000000400)=[{0x0, 0x0, &(0x7f00000002c0)}], 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './cgroup\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000040)={0x84, @multicast2, 0x15, 0x3, 'sh\x00', 0x1, 0x4, 0x6d}, 0x2c)
syz_usb_control_io$cdc_ecm(0xffffffffffffffff, &(0x7f0000000180)={0x14, &(0x7f0000000280)={0x0, 0x5, 0xb0, {0xb0, 0x8, "1593d7222e71bd05248b0faf32c2dab3442682153d2a78ad98a428fcb9034c9bcd692f5bb79fdaf52018e595feb6450277b42991687635480c846cd340f92fea681562895fdcb83d57e8eba7e38611ffcd5fa1d45eb0c3ff054c10805bd47a5a3f98877de05d4a0f6fc094e5f1f319eb132cbf1f2ffa6ea9ab8cc6a0472416879532b2adbb0f16ff354f2a648b600d49502b548390a28f44289fae4fb343911501b4a1350af0441accf57af8f2bf"}}, &(0x7f0000000100)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f00000003c0)={0x1c, &(0x7f00000001c0)={0x40, 0x13, 0x2, "7380"}, &(0x7f0000000340)={0x0, 0xa, 0x1, 0xa}, &(0x7f0000000380)={0x0, 0x8, 0x1, 0x6}})
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000640), 0x2, 0x0)
r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000006c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_MIGRATE_ID(r6, &(0x7f0000000700)={0x12, 0x10, 0xfa00, {0x0, 0xffffffffffffffff, r7}}, 0x18)

11m42.711348048s ago: executing program 46 (id=1236):
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={0x0}, 0x1, 0x0, 0x0, 0x818}, 0x20000004)
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
writev(r0, &(0x7f0000000740), 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = accept4(r1, 0x0, 0x0, 0x0)
sendmmsg$alg(r2, &(0x7f0000000400)=[{0x0, 0x0, &(0x7f00000002c0)}], 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './cgroup\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000040)={0x84, @multicast2, 0x15, 0x3, 'sh\x00', 0x1, 0x4, 0x6d}, 0x2c)
syz_usb_control_io$cdc_ecm(0xffffffffffffffff, &(0x7f0000000180)={0x14, &(0x7f0000000280)={0x0, 0x5, 0xb0, {0xb0, 0x8, "1593d7222e71bd05248b0faf32c2dab3442682153d2a78ad98a428fcb9034c9bcd692f5bb79fdaf52018e595feb6450277b42991687635480c846cd340f92fea681562895fdcb83d57e8eba7e38611ffcd5fa1d45eb0c3ff054c10805bd47a5a3f98877de05d4a0f6fc094e5f1f319eb132cbf1f2ffa6ea9ab8cc6a0472416879532b2adbb0f16ff354f2a648b600d49502b548390a28f44289fae4fb343911501b4a1350af0441accf57af8f2bf"}}, &(0x7f0000000100)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f00000003c0)={0x1c, &(0x7f00000001c0)={0x40, 0x13, 0x2, "7380"}, &(0x7f0000000340)={0x0, 0xa, 0x1, 0xa}, &(0x7f0000000380)={0x0, 0x8, 0x1, 0x6}})
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000640), 0x2, 0x0)
r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000006c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_MIGRATE_ID(r6, &(0x7f0000000700)={0x12, 0x10, 0xfa00, {0x0, 0xffffffffffffffff, r7}}, 0x18)

6m10.532449869s ago: executing program 2 (id=2245):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0xa, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
r4 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000003480)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
read$FUSE(r4, &(0x7f0000007fc0)={0x2020}, 0x2020)

6m10.105282861s ago: executing program 2 (id=2246):
syz_init_net_socket$x25(0x3, 0x5, 0x3)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000fee000/0x12000)=nil, &(0x7f00007c2000/0x4000)=nil, &(0x7f00009dc000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000726000/0x13000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r0 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0x7, 0x20002f9})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000580), 0x0, 0x500, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2}, 0x50)
r1 = socket$inet(0x2, 0x80001, 0x84)
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{0x0, 0x10}], 0x1}, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8)
sendmsg(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)='8', 0x1}], 0x1, 0x0, 0x0, 0x2c}, 0x4000845)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

6m9.822873941s ago: executing program 2 (id=2249):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
socket$inet6_sctp(0xa, 0x5, 0x84)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r1 = socket(0x1, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r2, &(0x7f0000000180), &(0x7f00000000c0)=@tcp6=r1}, 0x20)
recvmmsg(r1, &(0x7f0000000d40)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000500)=""/65, 0x41}], 0x1}}], 0x2, 0x0, 0x0)

6m9.562541059s ago: executing program 2 (id=2250):
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x200000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f00000013c0)='./file0\x00', 0x10090, &(0x7f00000000c0)=ANY=[], 0x1, 0x14de, &(0x7f0000002a40)="$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")
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x1, 0x0, 0x0)
creat(&(0x7f00000004c0)='./bus\x00', 0x14c)
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000040)='.\x00', 0x18920f4, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, &(0x7f0000000000))

6m8.380164043s ago: executing program 2 (id=2251):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x200000, &(0x7f00000003c0), 0x3, 0x566, &(0x7f00000015c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x20008b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
r0 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)
prlimit64(0x0, 0x2, 0x0, 0x0)
rename(&(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000180)='./file1\x00')

6m6.631539768s ago: executing program 2 (id=2256):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000040)="c00e02003c", 0x5}], 0x1}, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="7bedcb5d07081196f37538e486dd6372ce2200302b00dbf6e97158cf474fec87891f6d76745b686158bbcfe8875afdef00010000000029"], 0x66)

5m50.210131252s ago: executing program 47 (id=2256):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000040)="c00e02003c", 0x5}], 0x1}, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="7bedcb5d07081196f37538e486dd6372ce2200302b00dbf6e97158cf474fec87891f6d76745b686158bbcfe8875afdef00010000000029"], 0x66)

5m12.902050861s ago: executing program 7 (id=2368):
pipe2(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x84000)
pipe2(&(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
tee(r1, r2, 0x60400000000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$AUDIT_USER(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0x3ed, 0x501, 0x70bd26, 0x25dfdbfc, "bcad49756a8dd3a6c64afe5e3b14b653ae33da", ["", "", "", "", ""]}, 0x24}}, 0x51)
socket$netlink(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x1000d, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3c}, 0x94)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl(r4, 0x8b2a, &(0x7f0000000040))
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, 0x0, 0x0)
ioctl(r3, 0x8b1a, &(0x7f0000000040))

5m10.204102226s ago: executing program 7 (id=2374):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1d0)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xffffffffffffffff)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
io_uring_register$IORING_REGISTER_CLONE_BUFFERS(0xffffffffffffffff, 0x1e, &(0x7f0000000100)={r1}, 0x1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x2)
mkdirat(r2, &(0x7f0000000180)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x101042, 0x0)
setxattr$security_capability(&(0x7f0000000240)='./file0/file1\x00', &(0x7f0000000280), 0x0, 0x0, 0x0)

5m7.000557253s ago: executing program 7 (id=2383):
creat(0x0, 0x29)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r3, &(0x7f0000000740)=@pppol2tpv3={0x18, 0x1, {0x3, r4, {0x2, 0x4e24, @broadcast}, 0x2, 0x0, 0x4}}, 0x2e)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r5, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x0, @dev}, 0x2, 0x0, 0x0, 0xfffffffe}}, 0x2e)

5m3.81107466s ago: executing program 7 (id=2386):
gettid()
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
pipe(&(0x7f00000001c0))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
pipe(&(0x7f0000000000))
pselect6(0x40, &(0x7f0000000400)={0x0, 0x83, 0x7, 0x3, 0x1000000, 0x800, 0x8, 0x4}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x3, 0x8, 0x3f9a, 0xffffffffffff0000, 0x8000000010001, 0x3}, 0x0, 0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3})
syz_io_uring_setup(0x2048ba, &(0x7f0000000000)={0x0, 0xfffffffc, 0x4, 0x0, 0x69}, &(0x7f0000000080), &(0x7f0000ff4000))
r1 = syz_io_uring_setup(0x49a, &(0x7f00000000c0)={0x0, 0x79af, 0x3180, 0x2, 0x40024e}, &(0x7f0000000340)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x4007, @fd_index=0x3, 0x6, &(0x7f0000000580)=""/207, 0xcf, 0x2, 0x1})
io_uring_enter(r1, 0x627, 0x4c1, 0x43, 0x0, 0x0)

5m0.627591147s ago: executing program 7 (id=2394):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x62181)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
prlimit64(r1, 0xe, &(0x7f0000000100)={0x8, 0x80000100008a}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick=0x1f4, {}, {}, @raw32={[0x2600]}}], 0xffc8)

4m56.285335087s ago: executing program 7 (id=2397):
ioctl$UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, &(0x7f0000000000)={0xffffffffffffffff, 0x0, 0x0, 0x8000})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getpid()
r0 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$kcm(0x29, 0x2, 0x0)
sendmsg$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x40000)
socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, 0x0)

4m39.827166376s ago: executing program 48 (id=2397):
ioctl$UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, &(0x7f0000000000)={0xffffffffffffffff, 0x0, 0x0, 0x8000})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getpid()
r0 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$kcm(0x29, 0x2, 0x0)
sendmsg$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x40000)
socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, 0x0)

7.568641312s ago: executing program 3 (id=2937):
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$SNAPSHOT_AVAIL_SWAP_SIZE(r0, 0x80083313, &(0x7f00000000c0))

7.308450585s ago: executing program 3 (id=2940):
r0 = syz_open_dev$loop(&(0x7f0000000080), 0x4, 0x80000)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000180)={'\x00', 0x4, 0x3, 0x4009c, 0x4de2, 0x1})

6.275499025s ago: executing program 0 (id=2943):
openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x0, 0x0)
sendmsg$inet6(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
ioctl$XFS_IOC_EXCHANGE_RANGE(0xffffffffffffffff, 0x40285881, &(0x7f00000000c0)={r0, 0x0, 0xc9, 0x0, 0x7fffffff, 0x8})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x9, 0x200}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x1)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0xfd8b, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x77359400}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000540)={'vcan0\x00', <r2=>0x0})
bind$can_j1939(r1, &(0x7f0000000380)={0x1d, r2, 0x0, {0x0, 0x1, 0x4}, 0xfe}, 0x18)
setsockopt$sock_int(r1, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
sendmsg$inet(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)="00010100004000", 0x7}, {&(0x7f0000000080)='%y', 0x2}], 0x2}, 0x4004)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000005e00)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0x541b, &(0x7f0000000000)={<r4=>0xffffffffffffffff, 0x4, 0x3, 0x1})
close_range(r4, 0xffffffffffffffff, 0x0)

5.719952126s ago: executing program 3 (id=2947):
syz_usb_connect(0x0, 0x24, &(0x7f0000000200)={{0x12, 0x1, 0x300, 0xee, 0x88, 0x6b, 0x10, 0x45e, 0x4de, 0xca7f, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x4, 0x4, 0x160, 0xbc, [{{0x9, 0x4, 0x1c, 0x3, 0x0, 0x9b, 0x34, 0x9b, 0xff}}]}}]}}, &(0x7f0000000780)={0x0, 0x0, 0x19, &(0x7f0000000480)={0x5, 0xf, 0x19, 0x1, [@ssp_cap={0x14, 0x10, 0xa, 0x3, 0x2, 0x0, 0xf00f, 0xff, [0xff0000, 0xff0030]}]}})
ioctl$SNDRV_PCM_IOCTL_INFO(0xffffffffffffffff, 0x81204101, &(0x7f0000000800))

5.46821183s ago: executing program 0 (id=2950):
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect(0x5, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000079db8540da0b77010b7d000000010902120001000000000904", @ANYRES32, @ANYRES8=r0], 0x0)

5.068684524s ago: executing program 8 (id=2956):
unshare(0x20000400)
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
setsockopt$netrom_NETROM_N2(r0, 0x103, 0x3, 0x0, 0x0)

4.888853688s ago: executing program 8 (id=2958):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(r0, &(0x7f0000001980)={0x9, {"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", 0x1000}}, 0x1006)

4.686219179s ago: executing program 0 (id=2960):
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(r0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x10, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="61123000000000006113100000000000bf200000000000001600020038e873a23d030100000000009500000000000000bc26000000000000bf67000000000000070200000fff07006702000003000000360600000ee600f0bf050000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a83683d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf5fe7030586"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)

4.685986656s ago: executing program 1 (id=2961):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1, 0x14, &(0x7f00000000c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffc}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@call={0x85, 0x0, 0x0, 0xa0}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0xfca804a0, 0x10, 0x38, &(0x7f00000002c0)="b800000500000000", &(0x7f0000000300)=""/8, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

4.03475543s ago: executing program 8 (id=2962):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000180)='./bus\x00', 0x804, &(0x7f0000000280)={[{@rodir}, {@fat=@nocase}, {@utf8no}, {@fat=@discard}, {@shortname_mixed}, {@utf8no}, {@shortname_winnt}, {@utf8no}, {@fat=@check_normal}, {@uni_xlateno}, {@fat=@check_strict}, {@utf8}, {@shortname_winnt}, {@iocharset={'iocharset', 0x3d, 'cp932'}}, {@utf8no}, {@rodir}]}, 0x1, 0x27b, &(0x7f0000000640)="$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")
r0 = open(&(0x7f0000000140)='.\x00', 0x8000, 0x112)
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)

3.93245646s ago: executing program 4 (id=2963):
openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x0, 0x0)
sendmsg$inet6(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
ioctl$XFS_IOC_EXCHANGE_RANGE(0xffffffffffffffff, 0x40285881, &(0x7f00000000c0)={r0, 0x0, 0xc9, 0x0, 0x7fffffff, 0x8})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x9, 0x200}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x1)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0xfd8b, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x77359400}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000540)={'vcan0\x00', <r2=>0x0})
bind$can_j1939(r1, &(0x7f0000000380)={0x1d, r2, 0x0, {0x0, 0x1, 0x4}, 0xfe}, 0x18)
setsockopt$sock_int(r1, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
sendmsg$inet(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)="00010100004000", 0x7}, {&(0x7f0000000080)='%y', 0x2}], 0x2}, 0x4004)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000005e00)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0x541b, &(0x7f0000000000)={<r4=>0xffffffffffffffff, 0x4, 0x3, 0x1})
close_range(r4, 0xffffffffffffffff, 0x0)

3.909046229s ago: executing program 1 (id=2964):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r0, 0x6, 0x1e, 0x0, 0x0)
setsockopt$inet_int(r0, 0x0, 0x18, &(0x7f0000000000)=0x1000800, 0x4)

3.315036148s ago: executing program 8 (id=2966):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000004c0)={'bond0\x00'})
mmap(&(0x7f0000104000/0x3000)=nil, 0x3000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x7)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r4, &(0x7f0000000380)={0xa, 0x4f23, 0x6, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0xb}, 0x1c)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = syz_open_dev$vim2m(&(0x7f00000002c0), 0x2000000f5, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r5, 0xc008561c, &(0x7f0000000000)={0xf0f071, 0x1})

3.292601984s ago: executing program 1 (id=2967):
syz_mount_image$ext4(&(0x7f0000000140)='ext2\x00', &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000000), 0xfd, 0x4bd, &(0x7f0000000a00)="$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")
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
unlink(&(0x7f0000000200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

3.232423544s ago: executing program 9 (id=2968):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001680)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x40001}, 0x4040850)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000a40)=ANY=[@ANYBLOB="140000001000010000000000000000000700000a4c000000030a0fdb00000000000000000a0020050900030073797a30000000000900010073797a310000000014000480080002403cb140bb08000140000000030a000700726f75"], 0x74}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840)

3.135704793s ago: executing program 0 (id=2969):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="01000000010000000400000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002e00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0xe, 0x0, &(0x7f00000008c0)="7a7fa22c2aff88df53ef2a2d280f", 0x0, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

2.879773649s ago: executing program 4 (id=2970):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x8, &(0x7f00000000c0)={[{@lazytime}, {@errors_remount}]}, 0x2, 0x53a, &(0x7f0000000c80)="$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")
setxattr$incfs_metadata(&(0x7f0000000f80)='./file0\x00', &(0x7f0000000fc0), 0x0, 0x0, 0x0)
lremovexattr(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)=@known='user.incfs.metadata\x00')

2.879473528s ago: executing program 3 (id=2971):
r0 = socket(0x1e, 0x4, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000240)={'syztnl0\x00', &(0x7f0000000400)={'syztnl1\x00', 0x0, 0x10, 0x8, 0xfb, 0x8001, {{0x5, 0x4, 0x3, 0x5, 0x14, 0x65, 0x0, 0x2, 0x29, 0x0, @multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000480)={'ip6_vti0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x29, 0x9, 0x8, 0x800, 0x5, @private0={0xfc, 0x0, '\x00', 0x1}, @dev={0xfe, 0x80, '\x00', 0x2e}, 0x10, 0x0, 0xe7, 0x2}})

2.062772161s ago: executing program 8 (id=2972):
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCDELRT(r0, 0x890c, &(0x7f00000000c0)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0x1}, 0x6, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bpq0, 0x1, [@bcast, @default, @default, @default, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default]})

1.778778178s ago: executing program 4 (id=2973):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x58, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, 0x0, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x2c, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x4, 0x2, 0xffff, 0x0, 0x7, 0x8}, {0x12, 0x3, 0x0, 0x1, 0x1, 0x400}, 0xa5, 0x4, 0x10000000}}]}}]}, 0x58}}, 0x44080)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmmsg$inet(r0, &(0x7f0000000900)=[{{&(0x7f0000007b00)={0x2, 0x4e21, @empty}, 0x10, &(0x7f0000000000)=[{&(0x7f0000000180)="e6e0", 0x2}], 0x1}}, {{&(0x7f0000000140)={0x2, 0x4e20, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000007000000890704e0000002001100000000000000000000000100000001000000000000001c000000000000000000000008"], 0x50}}], 0x3ffffffffffff40, 0x800)

1.703932252s ago: executing program 8 (id=2974):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f00000001c0)={[{@acl}, {@heartbeat_none}, {@dir_resv_level={'dir_resv_level', 0x3d, 0x3}}, {@coherency_full}, {@resv_level}, {@localflocks}, {@coherency_full}, {@inode64}]}, 0x1, 0x4428, &(0x7f000000c300)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x0)
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000040)='.\x00', 0x18920f4, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, &(0x7f0000000000))

1.535839828s ago: executing program 9 (id=2975):
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000040)='./bus\x00', 0x100c404, &(0x7f0000000280)={[{@nodots}, {@fat=@fmask={'fmask', 0x3d, 0xdbd}}, {@fat=@nfs_stale_rw}, {@fat=@uid={'uid', 0x3d, 0xee00}}, {@nodots}, {@nodots}, {@fat=@nfs_nostale_ro}, {@nodots}, {@dots}, {@nodots}, {@nodots}, {@nodots}, {@nodots}, {@dots}, {@fat=@quiet}, {@fat=@tz_utc}, {@nodots}, {@dots}, {@dots}, {@fat=@umask={'umask', 0x3d, 0x7da5}}, {@nodots}, {@fat=@tz_utc}, {@fat=@nfs_stale_rw}, {@nodots}]}, 0x1, 0x1f5, &(0x7f0000000600)="$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")
utimensat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000100)={{0x77359400}, {0x0, 0x3fffffff}}, 0x0)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)

1.480186997s ago: executing program 4 (id=2976):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd53, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r0, 0x0, 0x22, 0x0, &(0x7f0000000380)="f6f4e9a1d78ad62ceef1884386cd78bb3fb7dbfc8180ca8395cc95a2e499b3dcf581", 0x0, 0xa1b, 0x0, 0x2, 0x0, &(0x7f0000000700)="010a", 0x0}, 0x50)

1.445521446s ago: executing program 0 (id=2977):
write$P9_RLERRORu(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in6=@empty, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {}, {}, 0x7ffffffd, 0x0, 0x1, 0x1}}, 0xb8}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r3=>0x0})
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, 0x0)
ioctl$TCFLSH(0xffffffffffffffff, 0x540b, 0x2)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000480)={'syztnl0\x00', r3, 0x7800, 0x8000, 0x1, 0x5, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x3, 0x0, 0x1, 0x4, 0x0, @local, @loopback}}}})

1.315901626s ago: executing program 1 (id=2978):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x4)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001340)={0xf, {"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", 0x1000}}, 0x1006)

1.256506106s ago: executing program 3 (id=2979):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000180), 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000400)=ANY=[@ANYBLOB="05000000010500"/16, @ANYRES64=0x0, @ANYRES64=r0, @ANYRES64=0x0, @ANYRES64, @ANYBLOB="0100006001"], 0x48}}, 0x0)

1.185724853s ago: executing program 4 (id=2980):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000540), r0)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000580)={0x1c, r1, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8001}, 0x24000800)

1.132493s ago: executing program 9 (id=2981):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000340)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWCHAIN={0x20, 0x3, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x48}, 0x1, 0x0, 0x0, 0x4048851}, 0x490)

898.835834ms ago: executing program 3 (id=2982):
r0 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x40, 0x46a, 0x27, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x80, 0x83, [{{0x9, 0x4, 0x0, 0x0, 0x5, 0x3, 0x0, 0x2, 0x0, {0x9, 0x21, 0xfffc, 0x40, 0x1, {0x22, 0xb}}, {{{0x9, 0x5, 0x81, 0x3, 0x20, 0x5, 0x9, 0x17}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000100)={0x2c, &(0x7f0000000080)=ANY=[@ANYBLOB='@#\v'], 0x0, 0x0, 0x0, 0x0}, 0x0)

834.335483ms ago: executing program 4 (id=2983):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000340)={0x38, 0x1403, 0x1, 0x70bd28, 0x25dfdbfb, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'ip6_vti0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x8840}, 0x4000)

745.780468ms ago: executing program 0 (id=2984):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000300)="87fb74cf4d67adbbd062637f514c1f5eb18d7b442e6457a356c6cb1f71a43dfae773c8489cce5145f92615d4bdb13ef54d6ae90ec7733180fcf5adf3e13fdb05b57b748bd14eda042a97fdd84498304a504a0a159b972e8200c2d0f536a3465ec498ed12b924bd134057df36129d3ebe3dd3ce9f0671e5278143e4afa3d43f444681de1b5f9725fca34fa357fe2154981666fb9dc202fc17a0199eb1c25bdd1005e590e84783ee9894c888998dc25a83c14aeee31d114acfa0bcd235d571cd765f4b9259ba43e6fc30291d8a642146c4771898030b736aeee6b247abb0784b154e104e7dcda401f9b1736fea30a41a4153fe6a9a525bd0a3487571f914f05b590e242341ade289d8f5b842c6be4a93c2755dfd47174def782a2f8f61c068b5a012f02c0801601e860def788121e8808c01fed4c920a3698d0d684920918c95b17f76bbcb4f265c931d8f79560ff8114b70f4dd6791e2ed70cfeb89905791b88be26efe1c5c66b7b50b3d2be0dbc066dfc31618f9507f6f340b85a2f76a6dcac9d6ccc289ace5e5fecd25afe22ffa451f5e365ab33cc985f2e9d7f7fb1be4794740a94215d7db14b0ffcec19e5e3c5ae0d8578ef3b65d2a7a77a11e390a6c3a6b391061c886b961e3c2f42d62047bfe1356a44b840d3d956105f4c0fa95db08c4933f00de77cdc057c28b41fecfc8398c442be1ad065954f6c9dfeb2fd7207e8548a00a1d50bdf522d2abfdafd71723616a34830fbfa8fc81e0c2639cc12f363a4919b7a00ac8189dad3e7e54122a2ef430f623658d5e281c9a19442995bb9b0e3f7d13e3016b6f9523be196bf23bbcc5ec802f43ef8b651d688d9d5a44f35c9847e4c32bce3e9ebed2326adadc76f06a195db32c80b3090d7cd65c9d8518ba4e528c5eb5c7a1c5695b21595fa8a8621734bfda8afddd65e1f37a1990220a00fa9bd2c22b0117ceb08ae6af3c944c2eca924abfddad065d1472d0c3f742a49b1e78c669471873706ad157d831d7482b773f07b0673a6ce1e227a7a4d13744bf459434c0ab1c323a38b1a84cbf1ce9741f2b8fdcc2e073e56171603d035aacd83e71d5132831f4f1e8bf517979f132a33fd03783272e9b8c96dfa4e1d320a58d82acfc8d3d53a5a52daafe4dc8be08f4ad53e11cc21374b6ff4ff5ea2ecc5d3f7c057f74f0098e57d990090475cdaffdef0da917653ed10fb70b94b72e5b4d95cbea0fc1dd2579635ad6ab545ba4d7b6d2f5442bdb78beb6c8ed62942a439117025b4566b48d9f3a17fdf4577e8606a4bc4c26557e58312fd2d1a541ebec3e5ae28eef8b2ab0597083716dd12889335570ee7839530eee879d9b137606cd4dd7103991671b4464bb68529eb19fb7a8845e3491bfbac688a87cf0744f429ea112014402915c4c1f6bae08d689d3cb7d641d7befe8fc74a2242310a9a367a39531b4c86da5b39df524e52f33ff9c40b48cb196ffc9ca855b6e698ade8a83e52b9ddc5031ff09e1907e4f8b0d07e64e1fb8e427f8819a7be907aa216bf8e2a4c7cc87ed53bf9490d4cc788b91f3b9f705e984a7e62c7a495e8421b97c39dc954b35468f17c6682334f4e16308448f457faeffff6d1f818522fa441d3a48168bdb12ffebace436a3915b63076cb6a655718647f87eaaf313b5bbd430421eed3a2215e439600a56eac8c65291eb103326a8034662bd337ab51577d9110ec7151be5cc9c54b2a30891acac5ad006ed537dbeb8f16eecbde7cf4e71373faf3c36b772f6d7ea9346875c8cf1049d49d4f8eb01b946c11e8c8e3ab2015f282167acddcc77fff03e1be9134252af0abfe538b4d25fc4ff874b52b9fb0996b5f32b4141dbd30578ff46e13ef6c63fc1620f62cb11a3dce401993976c272a5f62fde3f2a0e654d19e7a39dcdb622b9526d2a15cc18e6f817c916a00775353dd9c8954e66d0445b59bb0f5e6e3b46447232f52a0e398b057d123ef503afcbd48544db6434d2025bfc8dab72262a4fa5426a03061e7f8966e0086ff8ab5a91ab59f19b830394ee8bc76d6fb4816b8f4cde35b7eb9d3811228d51c54828f97fd1e648196c81bc73ed56249a59f318704e84656a6cedd2b8c1e1808d1cc648749abc643131e494c01336d4a14b8609656f2c972dc23c5c2e43fe40119fb88b5ec2aade35c03646e347354c493de8ab3672ccf94af0df333c6678299129d79be0eec281c5b3858ce3995566a390b674635b356692e3e9c53a089638ba0d69e772b7b410a5ae03de12e7de755ee559e1707b7b8003aabc8e2ce03c01e3183ff2d93262f6d5ceaafecdae66bc7cb3952c5a6571d864d502f281db5a228695badca5d022fdb6da56ab15dc377d1c1f8581ff56e28c2b2a84edb629547d28275c2ed571103b4ca7cdeb0776ba9f9dffcd78d21c3d4caa9289ed199672f4e7b912068c49c817114c37d37ea03954bae87d1ddae3da2ad85feb2fbb735b75a51f7bee5c8d88cc7bf64700d1a46ec6b631ae22ac7b06730a86a26bdcb992e1c7b50142de96b14a8468e4514068a30896fc677fddefaebb125c693a8d460469c7fe535f844781940f66d6abd091191c3122d584f5b0f5b0d443713d7d5186124d73de28aca30b719d4a55e09d259bddbf16995aeb1000880890afbd24d4066b0398985a40999de22ce176348e1c1f57eaf75b92a1e4f1482e89a00ac2cc36b20e36af9ec310599c19a5b1d6f8fadba104c58c801c6633315f82ebfa88faddd0b693e2f827f586c1cc5538e93bcf10f81af6dd7ee727df3b5018c0b4e31e40d040a47503b6ace4d29a1162ce487351825255f5584aff7cbd421f85c3d9fbb3784abd9848f16028b68f0d32ed8bb80106e8cc4acb939ff88bd39976d166b2addebf628b3fcd056da2f60e1b90f7a32702954921908ebccb683622a1f574ceba6951bef5e751c338c8279318dc28e36b9fc2bb17c3ad08aceb00fc388e6db112a738f86a4a1eb11526e1b9d73250b326285ed47c4398d93a3933d9a784249b65ad7d78a1f81d96ef36493ed693045a2150a8eb43cecc0c93e7d20b15b39a0646b081c2923b816365b7fbb41683a41732d942c5aa12faf876ec7f036becde8f3295af6dacff38d076d8e06260fee167703bb610745374a2758a6b88e465ca77d1f3105ae8b6b04a1eb509fb178d6249dbbc84d5d1d069278449a89d03e4a9a395d8170c329a296cfc329798cb9b9f1078d098cf3f989fd4ec53e013fbe917df35292d44fb1f3da4da4432a1847d4721514ade8cda5e5c0b51183580fc35266a970ebba74faeda56d4dcb56df51f96ad237452cedbd0cb2bee112713c3d450835811bf3da9745136d428e148fd0932dc77c8d8e61a16c625241fad8425b4ece394eedd5f165bd94923bfa1172be8edc8a4fcaae5f77ee8cc510192b27964da09c3e84efb4bc7154da1a24da8b7e544b42278d2574687ec76143afa6cf193d52a2a7f4c20ee57b6056a1337d5e408117a6cf1ab49c8980f39597f69902085d3e8d374d44e6ab4ed1185a26be2bc7281e9cfbbeb6bed899aa1924d3faa06d95999fbeaf2337494e0c2c39eef5a73fcde84459a9ea48d4e015d9e5bb5839354967ce02f637bc8678d2595b9a918fc36b927d7501f0ac2e3471ce02b5df355689c87f191ef5390900a41deec29984e45a878ece964b0009aad561316fc3b30ce1b49266d32eb17cd30f3e17e1f59014e8c518940dd0a093d1349c1a7c2581963bbe0ba372b6426e81c33c71b2ec8141c5713e52a37fff0a417a5b259e1420d9fb6a731f5baa0cc494221947895aa8fa14745a986a366bff9d0c239a19f85372497565b5b703da16439019df5f3d29f4247fb528854c9648630f03e9dedde5a08a47728ea6a4d42e62eff6fa3bd402325e0f4387b60171c37c180f9", 0xac9}], 0x1}, 0x0)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000001180)=ANY=[@ANYBLOB="12010000090003206d0414c34000ffff000109022400010400a000090400000103010100093700086ce82201000905815f"], 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, &(0x7f0000000dc0)=ANY=[@ANYBLOB="00020c000000"], 0x0, 0x0, 0x0}, 0x0)

676.630853ms ago: executing program 1 (id=2985):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x2)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000000780)={0xc, {"a2e3ad214fc752f91b25470987f70e06d038e7ff7fc6e5539b3264078b089b3b08346c060890e0878f0e1ac6e70a9b3368959b669a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31350d095d0636cd3b78130daa61d8e809ea882f5802b77f07227227b7ba67e0e78669a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62239c6f30e065cd5b91cd0a03000000000018001b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000002335875271b286329d169934288fd7878a37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4040d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1fe90a56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617601000000be70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d595a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b412435139000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9980000000b3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a4cd13c257ac06c7d8ce9ee70771aaa18119a867e1088334975e9f73483b6c82fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c2021d653a5520000008213b704a5000000000000008ef9f190ba4d7909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710a80000000000008000bea37ce0d0d4aa202f928f28381aab144a4d429a04a6a2b83c7068ae949ed06e288e810ba2e201007e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4e38a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e8134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2bed9e53803edf1a4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034e00000000ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c478b095b68441a34cb51682a8ae4d24ad92f243941ed274549b79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdbe6c4579b5011dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93ae62fccfcbb2b75a2183c46eb65ca8124e1b000000807ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43e4fb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e01feffffffffffff83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369d75f2e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aa01b20f7694a00f16e2d0174035a2c22656dc00880acebdbe8ddbd75c2f998d8ac2dfad2ba3a50200000045a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd776d443e8b40426db6fe2907ac0ca3d24145a2e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a0400000000000000f463661c953fcad6f37725c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2ca8378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaeecf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa04006651b1b9bd522d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a37684f4113c48859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed004000000b53d94d02dae17b118e5d6787463183b4b87c105000000302a808d7f5251440613d17ca51055f2f416a44fe180d2d50c312cca7cb14a20dc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb40100000006376f799eba367e21f94ca598705f5dcb767d6f090056b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b5c7fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7ceec7dc808bf653639d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a602000000000000007007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4908b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d050000002a308e15fc37d06aeac289c0523f652f2ef91d4f2b01987b0f463934c54edc746b0827cbf6529006c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6522fb5f6ffcdd56fed88935fcb75912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae233a9e02210e62df0546a74b333a3b89f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a5bd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ed60f7774a2ee08008897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d3560aba573bd16f8342856935125102bb6ce431b63ee356b0c785f2f47b90e29389f22005b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b80c1c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db239dfe785b54c34a0a5db4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c98ad90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbf4c807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe360500000000000000b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1062dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1df0d07b3d5bd3b01faffd0addbed2881a9700af561ac8c7e36bb2fc4c40e9c766c06817bb903729a7db6ff957697c9edbaaadaea56765404e0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c1484d2f9c55f4901003a9a8a2c3e90f39c3dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d00000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007b01000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d50b00", 0x1000}}, 0x1006)

676.345017ms ago: executing program 9 (id=2986):
r0 = syz_init_net_socket$ax25(0x3, 0x2, 0xc5)
ioctl$SIOCAX25NOUID(r0, 0x89e3, &(0x7f0000000040)=0x1)

487.403057ms ago: executing program 9 (id=2987):
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0)
ioctl$SNAPSHOT_PREF_IMAGE_SIZE(r0, 0x3312, 0x1)

416.346317ms ago: executing program 1 (id=2988):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x1000000, &(0x7f0000000380)={[{@barrier}, {@nodioread_nolock}, {@usrquota}, {@errors_remount}, {@auto_da_alloc}, {@sysvgroups}]}, 0x1, 0x59c, &(0x7f0000000c00)="$eJzs3U9oHGUbAPBnZrNN/+T70g++Dz6lh6JChdJN0j9aPbVXsVDoQfCiYbMNJZtsySbahIDpvYg9iEov9aYHj4oHD+LFo1cvimeh2KDQ9KArm51N03S3bmI2W7O/H0z2fWdm93nfmX3e7AwzTAB962j9TxrxVERcTCKGNywbiGzh0cZ6qytLxfsrS8UkarVLvySRRMS9laVic/0kez0UEcsR8f+I+CYfcTxd/8h9zUJ1YXFqvFwuzWb1kbnpqyPVhcUTV6bHJ0uTpZlTL7505uzpM2MnxzY2935tYy2/tb7e+PHmuze+e+X2zU8/O7JcfH88iXMxlC3b2I+d1Ngm+Ti3af7pbgTroaTXDWBbclme11PpfzEcuSzrW6ltHBwGd6V5QBfVBiNq6zYUgT6QSHroU83fAfXj3+a0m78/7pxvHIDU466uLBXfiWb8gca5idi/dmxy8NfkoSOT+vHm4d1sKHvS8vWIGB0YePT7n2Tfv+0b3YkG0lVfn2/sqEf3f7o+/kSL8Weoee70b2qOf6vZ+LfaIn6uzfh3scMYv7/+00dt418fjKdbxk/W4yct4qcR8WaH8W+99uXZdstqH0cci9bxm5LHnx8euXylXBpt/G0Z46tjR15u3/+Ig23iN87Z7l9ryMb+78valHbY/y++/fyZ5cfEf/7Zx+//Vtv/QES812H8/9z75NV2y+5cT+7WfwVsdf8nkY/bHcZ/4dzRH7Kis4YAAAAAAAAAALCD0rVr2ZK0sF5O00KhcQ/vf+NgWq5U545frszPTDSueTsc+bR5pdVwo57U62PZ9bjN+slN9VO5LGDuwFq9UKyUJ3rcdwAAAAAAAAAAAAAAAAAAAHhSHNp0//9vubX7/zc/rhrYq9o/8hvY6+Q/9K+H8z/pWTuA3ef/P/StmvyH/iX/oX/Jf+hf8h/6l/yH/iX/oX/JfwAAAAAAAAAAAAAAAAAAAAAAAAAA6IqLFy7Up9r9laVivT4xsDA/VXnrxESpOlWYni8WipXZq4XJSmWyXCoUK9N/9XlJpXJ1NGbmr43MlapzI9WFxTemK/MzzWeKlvJd7xEAAAAAAAAAAAAAAAAAAAD88wytTUlaiMg36mlaKET8KyIOJ5FcvlIujUbEvyPi+1x+sF4f63WjAQAAAAAAAAAAAAAAAAAAYI+pLixOjZfLpdnuFQayUF0M0XlhYCsrR8Tyzjaj/olbflc+24A93nR7o5B7Mr6HT36hh4MSAAAAAAAAAAAAAAAAAAD0qQc3/Xb6jj+62yAAAAAAAAAAAAAAAAAAAADoS+nPSUTUp2PDzw1tXrovWc2tvUbE27cufXBtfG5udqw+/+76/LkPs/kne9F+oFPNPE0jop7HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwAPVhcWp8XK5NLvNwmAH6/S6jwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADb8WcAAAD//y4WzlE=")
unlink(&(0x7f0000000000)='./file1\x00')
futimesat(0xffffffffffffffff, &(0x7f0000000080)='./bus\x00', 0x0)

0s ago: executing program 9 (id=2989):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x400, &(0x7f0000000100)=ANY=[@ANYBLOB="6572726f72733d72656d6f756e742d726f2c757466383d302c757365667265652c646973636172642c757466383d312c756e695f786c6174653d302c73686f72746e616d653d77696e39352c756e695f786c6174653d302c756e695f786c6174653d302c0008442895b66131b4e4d54b2ba6ae54dabaa5206d4a2a060b5ccc774b3ec4c81a1a9852327ff871d16d0d9344e764c68194b9d9d0be76c595bac1fc5a0a8256a7b77e071e9bdd6100f9aeb8576d329be6e4bb168f1434000000", @ANYRESHEX=0x0], 0xfd, 0x296, &(0x7f0000001080)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
open_by_handle_at(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0c0000000100000002"], 0x0)

kernel console output (not intermixed with test programs):

 changes
[  875.723166][T14926] loop9: detected capacity change from 0 to 32768
[  875.926371][T14926] XFS (loop9): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  876.541210][T14926] XFS (loop9): Ending clean mount
[  876.636932][T12017] XFS (loop9): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  877.069174][T14977] netlink: 12 bytes leftover after parsing attributes in process `syz.9.1982'.
[  877.140108][ T5930] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  877.147649][T14942] loop0: detected capacity change from 0 to 32768
[  877.227346][T14977] bond1: entered promiscuous mode
[  877.233591][T14977] bond1: entered allmulticast mode
[  877.239542][T14977] 8021q: adding VLAN 0 to HW filter on device bond1
[  877.269237][T14981] erspan1: entered allmulticast mode
[  877.277916][T14981] erspan1: entered promiscuous mode
[  877.285537][T14981] bond1: (slave erspan1): Enslaving as an active interface with an up link
[  877.290022][T14942] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  877.363755][ T5930] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  877.402859][ T5930] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  877.424538][ T5930] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  877.438294][ T5930] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  877.474511][T14974] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  877.525365][ T5930] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  877.534442][ T5826] Bluetooth: hci4: unexpected event for opcode 0x0c26
[  877.909304][ T5930] usb 4-1: USB disconnect, device number 15
[  877.989103][ T7378] ocfs2: Unmounting device (7,0) on (node local)
[  878.509212][  T791] IPVS: starting estimator thread 0...
[  878.635971][T15007] IPVS: using max 32 ests per chain, 76800 per kthread
[  878.875412][T15016] loop7: detected capacity change from 0 to 7
[  878.935051][T14993] loop9: detected capacity change from 0 to 32768
[  878.953101][T15016] Buffer I/O error on dev loop7, logical block 0, async page read
[  878.993445][T15016] Buffer I/O error on dev loop7, logical block 0, async page read
[  879.008606][T14993] XFS (loop9): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  879.032659][T15016] Buffer I/O error on dev loop7, logical block 0, async page read
[  879.080246][T15016] Buffer I/O error on dev loop7, logical block 0, async page read
[  879.117072][T15016] Buffer I/O error on dev loop7, logical block 0, async page read
[  879.125141][T15016] Buffer I/O error on dev loop7, logical block 0, async page read
[  879.136606][T15016] Buffer I/O error on dev loop7, logical block 0, async page read
[  879.144696][T15016] ldm_validate_partition_table(): Disk read failed.
[  879.151807][T15016] Buffer I/O error on dev loop7, logical block 0, async page read
[  879.168566][T15016] Buffer I/O error on dev loop7, logical block 0, async page read
[  879.178563][T15016] Buffer I/O error on dev loop7, logical block 0, async page read
[  879.187084][T15016] Dev loop7: unable to read RDB block 0
[  879.193125][T15016]  loop7: unable to read partition table
[  879.199499][T15016] loop7: partition table beyond EOD, truncated
[  879.209090][T15016] loop_reread_partitions: partition scan of loop7 (úùƒå¡7x~�¾SêjÌ–ã¢P@½?ã•X) failed (rc=-5)
[  879.315236][ T5186] ldm_validate_partition_table(): Disk read failed.
[  879.338890][T14993] XFS (loop9): Ending clean mount
[  879.347703][ T5186] Dev loop7: unable to read RDB block 0
[  879.364535][ T5186]  loop7: unable to read partition table
[  879.380695][ T5186] loop7: partition table beyond EOD, truncated
[  879.643434][ T5826] Bluetooth: hci5: command 0x0406 tx timeout
[  880.016731][T12017] XFS (loop9): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  881.289439][T15071] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2003'.
[  881.322621][T15071] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2003'.
[  881.331675][T14899] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  881.348302][T14899] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  881.425242][T14899] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  881.445200][T14899] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  881.852318][T15080] loop9: detected capacity change from 0 to 4096
[  881.928181][T15080] EXT4-fs (loop9): Test dummy encryption mode enabled
[  882.077720][T15080] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c118, mo2=0103]
[  882.099875][T15080] System zones: 0-5
[  882.141233][T15080] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  882.468895][T12017] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  882.923535][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  882.938365][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  883.533518][T15120] loop3: detected capacity change from 0 to 128
[  883.709353][T15120] syz.3.2016: attempt to access beyond end of device
[  883.709353][T15120] loop3: rw=2049, sector=138, nr_sectors = 2 limit=128
[  883.809285][T15120] syz.3.2016: attempt to access beyond end of device
[  883.809285][T15120] loop3: rw=8390657, sector=138, nr_sectors = 2 limit=128
[  885.146690][ T5994] usb 10-1: new high-speed USB device number 10 using dummy_hcd
[  885.350943][ T5994] usb 10-1: Using ep0 maxpacket: 16
[  885.398447][ T5994] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  885.440751][ T5994] usb 10-1: config 0 has no interfaces?
[  885.480305][ T5994] usb 10-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 2.00
[  885.539662][ T5994] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  885.651829][ T5994] usb 10-1: config 0 descriptor??
[  885.874384][T15157] loop3: detected capacity change from 0 to 131072
[  885.962986][T15157] XFS (loop3): Mounting V5 Filesystem b93a8937-ccd4-41a2-86c7-66a1570a2846
[  885.984346][ T5994] usb 10-1: USB disconnect, device number 10
[  886.119686][T15157] XFS (loop3): Starting recovery (logdev: internal)
[  886.151016][T15157] XFS (loop3): Ending recovery (logdev: internal)
[  886.232104][T12020] XFS (loop3): Unmounting Filesystem b93a8937-ccd4-41a2-86c7-66a1570a2846
[  886.798240][T15189] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2034'.
[  886.918796][T14899] netdevsim netdevsim9 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  886.932004][T15189] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2034'.
[  886.954109][T14899] netdevsim netdevsim9 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  886.962920][T14899] netdevsim netdevsim9 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  887.052010][T14899] netdevsim netdevsim9 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  887.358351][T15203] syzkaller1: entered promiscuous mode
[  887.377750][T15203] syzkaller1: entered allmulticast mode
[  887.572660][T15166] loop0: detected capacity change from 0 to 40427
[  887.657600][T15166] F2FS-fs (loop0): Insane cp_payload (553648128 >= 504)
[  887.751980][T15166] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  887.804794][T15166] F2FS-fs (loop0): build fault injection rate: 17008
[  887.919678][T15166] F2FS-fs (loop0): invalid crc value
[  887.983277][T15213] loop2: detected capacity change from 0 to 8
[  888.020657][T15214] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2042'.
[  888.263293][T15166] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  888.319656][T15166] F2FS-fs (loop0): Start checkpoint disabled!
[  888.375001][T15166] F2FS-fs (loop0): f2fs_disable_checkpoint() finish, err:0
[  888.428152][T15166] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  888.477212][T15166] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  888.688407][T15231] overlayfs: failed to clone upperpath
[  888.760057][T15225] loop9: detected capacity change from 0 to 4096
[  889.039573][T15225] ntfs3(loop9): Different NTFS sector size (4096) and media sector size (512).
[  889.587024][T15225] ntfs3(loop9): Mark volume as dirty due to NTFS errors
[  889.659107][T15225] ntfs3(loop9): ino=19, mi_enum_attr
[  889.664902][T14899] kworker/u8:10: attempt to access beyond end of device
[  889.664902][T14899] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  889.704044][T14899] CPU: 1 UID: 0 PID: 14899 Comm: kworker/u8:10 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  889.704081][T14899] Tainted: [L]=SOFTLOCKUP
[  889.704091][T14899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  889.704108][T14899] Workqueue: writeback wb_workfn (flush-7:0)
[  889.704146][T14899] Call Trace:
[  889.704155][T14899]  <TASK>
[  889.704166][T14899]  dump_stack_lvl+0xe8/0x150
[  889.704207][T14899]  f2fs_handle_critical_error+0x37c/0x540
[  889.704259][T14899]  f2fs_write_end_io+0xcdb/0xff0
[  889.704325][T14899]  __submit_merged_bio+0x256/0x700
[  889.704360][T14899]  __submit_merged_write_cond+0x3c9/0x4e0
[  889.704424][T14899]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  889.704487][T14899]  ? srso_alias_return_thunk+0x5/0xfbef5
[  889.704530][T14899]  f2fs_write_data_pages+0x2975/0x35e0
[  889.704560][T14899]  ? srso_alias_return_thunk+0x5/0xfbef5
[  889.704643][T14899]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  889.704694][T14899]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  889.704777][T14899]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  889.704833][T14899]  ? srso_alias_return_thunk+0x5/0xfbef5
[  889.704889][T14899]  ? srso_alias_return_thunk+0x5/0xfbef5
[  889.704925][T14899]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  889.704958][T14899]  do_writepages+0x32e/0x550
[  889.705005][T14899]  ? srso_alias_return_thunk+0x5/0xfbef5
[  889.705035][T14899]  ? reacquire_held_locks+0x104/0x190
[  889.705075][T14899]  ? writeback_sb_inodes+0x43d/0x19a0
[  889.705117][T14899]  __writeback_single_inode+0x133/0x11a0
[  889.705153][T14899]  ? do_raw_spin_unlock+0xf5/0x210
[  889.705187][T14899]  writeback_sb_inodes+0x944/0x19a0
[  889.705246][T14899]  ? __lock_acquire+0x6b5/0x2cf0
[  889.705289][T14899]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  889.705319][T14899]  ? do_raw_spin_lock+0x12b/0x2f0
[  889.705407][T14899]  ? srso_alias_return_thunk+0x5/0xfbef5
[  889.705437][T14899]  ? rcu_is_watching+0x15/0xb0
[  889.705474][T14899]  ? srso_alias_return_thunk+0x5/0xfbef5
[  889.705517][T14899]  wb_writeback+0x456/0xb70
[  889.705555][T14899]  ? queue_io+0x291/0x4a0
[  889.705601][T14899]  ? __pfx_wb_writeback+0x10/0x10
[  889.705631][T14899]  ? do_raw_spin_lock+0x12b/0x2f0
[  889.705681][T14899]  wb_workfn+0x414/0xf50
[  889.705712][T14899]  ? look_up_lock_class+0x57/0x110
[  889.705776][T14899]  ? __pfx_wb_workfn+0x10/0x10
[  889.705800][T14899]  ? srso_alias_return_thunk+0x5/0xfbef5
[  889.705834][T14899]  ? srso_alias_return_thunk+0x5/0xfbef5
[  889.705871][T14899]  ? srso_alias_return_thunk+0x5/0xfbef5
[  889.705900][T14899]  ? do_raw_spin_unlock+0xf5/0x210
[  889.705931][T14899]  ? srso_alias_return_thunk+0x5/0xfbef5
[  889.705962][T14899]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  889.706004][T14899]  ? srso_alias_return_thunk+0x5/0xfbef5
[  889.706039][T14899]  ? srso_alias_return_thunk+0x5/0xfbef5
[  889.706071][T14899]  ? srso_alias_return_thunk+0x5/0xfbef5
[  889.706106][T14899]  ? process_scheduled_works+0xa25/0x1830
[  889.706140][T14899]  ? process_scheduled_works+0xa25/0x1830
[  889.706178][T14899]  process_scheduled_works+0xb02/0x1830
[  889.706263][T14899]  ? __pfx_process_scheduled_works+0x10/0x10
[  889.706306][T14899]  ? srso_alias_return_thunk+0x5/0xfbef5
[  889.706336][T14899]  ? assign_work+0x3d5/0x5e0
[  889.706383][T14899]  worker_thread+0xa50/0xfc0
[  889.706445][T14899]  ? srso_alias_return_thunk+0x5/0xfbef5
[  889.706489][T14899]  kthread+0x388/0x470
[  889.706517][T14899]  ? __pfx_worker_thread+0x10/0x10
[  889.706550][T14899]  ? __pfx_kthread+0x10/0x10
[  889.706579][T14899]  ret_from_fork+0x51e/0xb90
[  889.706615][T14899]  ? srso_alias_return_thunk+0x5/0xfbef5
[  889.706648][T14899]  ? __pfx_ret_from_fork+0x10/0x10
[  889.706679][T14899]  ? srso_alias_return_thunk+0x5/0xfbef5
[  889.706709][T14899]  ? __switch_to+0xc7d/0x1450
[  889.706746][T14899]  ? __pfx_kthread+0x10/0x10
[  889.706774][T14899]  ret_from_fork_asm+0x1a/0x30
[  889.706838][T14899]  </TASK>
[  889.707921][T14899] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  891.451130][T15263] netlink: 'syz.7.2055': attribute type 12 has an invalid length.
[  891.489721][T15263] netlink: 'syz.7.2055': attribute type 29 has an invalid length.
[  891.518103][T15263] netlink: 148 bytes leftover after parsing attributes in process `syz.7.2055'.
[  891.577105][T15263] netlink: 'syz.7.2055': attribute type 1 has an invalid length.
[  891.620985][T15263] netlink: 47 bytes leftover after parsing attributes in process `syz.7.2055'.
[  891.678533][    T9] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  892.544389][    T9] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  892.585525][    T9] usb 4-1: config 1 has an invalid descriptor of length 48, skipping remainder of the config
[  892.631023][    T9] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[  892.682352][    T9] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 48, changing to 9
[  892.695320][ T5137] Bluetooth: hci5: Malformed MSFT vendor event: 0x02
[  892.769195][    T9] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8240, setting to 1024
[  892.816639][    T9] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  892.843722][    T9] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  892.860365][T15283] loop9: detected capacity change from 0 to 1024
[  892.866976][    T9] usb 4-1: Product: syz
[  892.871230][    T9] usb 4-1: Manufacturer: syz
[  893.025432][T15283] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2060'.
[  893.039149][T15288] netlink: 'syz.7.2062': attribute type 1 has an invalid length.
[  893.100730][    T9] cdc_wdm 4-1:1.0: skipping garbage
[  893.107483][    T9] cdc_wdm 4-1:1.0: skipping garbage
[  893.115386][    T9] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[  893.121295][    T9] cdc_wdm 4-1:1.0: Unknown control protocol
[  893.155995][ T5912] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  893.172489][T15290] overlayfs: failed to clone lowerpath
[  893.329409][T15292] bond1: (slave geneve2): making interface the new active one
[  893.342487][ T5912] usb 1-1: Using ep0 maxpacket: 8
[  893.373671][ T5912] usb 1-1: New USB device found, idVendor=04a5, idProduct=3003, bcdDevice=3a.b2
[  893.387593][ T5912] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  893.400922][T15292] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  893.409836][T14902] netdevsim netdevsim7 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  893.421419][ T5912] usb 1-1: Product: syz
[  893.425711][ T5912] usb 1-1: Manufacturer: syz
[  893.430433][ T5912] usb 1-1: SerialNumber: syz
[  893.447552][ T5912] usb 1-1: config 0 descriptor??
[  893.475623][T14902] netdevsim netdevsim7 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  893.513033][T14902] netdevsim netdevsim7 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  893.596891][T14902] netdevsim netdevsim7 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  893.681223][ T5912] gspca_main: sunplus-2.14.0 probing 04a5:3003
[  894.345858][T15311] loop2: detected capacity change from 0 to 256
[  894.385675][T15311] exfat: Deprecated parameter 'utf8'
[  894.489676][T15311] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[  894.529830][    T9] usb 4-1: USB disconnect, device number 16
[  895.524773][ T5912] gspca_sunplus: reg_w_riv err -71
[  895.578749][ T5912] sunplus 1-1:0.0: probe with driver sunplus failed with error -71
[  895.736242][ T5912] usb 1-1: USB disconnect, device number 24
[  896.189597][T15300] loop9: detected capacity change from 0 to 32768
[  896.214192][T15300] btrfs: Deprecated parameter 'usebackuproot'
[  896.256983][T15300] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  897.290513][T15344] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2076'.
[  897.779952][T15356] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2080'.
[  898.413788][T15376] loop3: detected capacity change from 0 to 256
[  898.449403][T15376] exfat: Deprecated parameter 'utf8'
[  898.486648][T15376] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[  898.561261][T15377] sd 0:0:1:0: PR command failed: 1026
[  898.573860][T15377] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  898.581713][T15377] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  898.618054][T15383] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  898.648734][T15383] batman_adv: batadv0: Removing interface: batadv_slave_0
[  898.771188][T15383] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  898.821290][T15383] batman_adv: batadv0: Removing interface: batadv_slave_1
[  900.631770][T15415] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2094'.
[  900.780434][T15417] loop0: detected capacity change from 0 to 7
[  900.799035][T15417] Dev loop0: unable to read RDB block 7
[  900.804680][T15417]  loop0: unable to read partition table
[  900.812213][T15417] loop0: partition table beyond EOD, truncated
[  900.818495][T15417] loop_reread_partitions: partition scan of loop0 (þ被xü—ŸÑà– ) failed (rc=-5)
[  901.170345][ T5186] Dev loop0: unable to read RDB block 7
[  901.190500][ T5186]  loop0: unable to read partition table
[  901.205682][ T5186] loop0: partition table beyond EOD, truncated
[  901.349893][T15424] overlayfs: failed to clone upperpath
[  902.084486][T15440] fuse: Bad value for 'fd'
[  902.923496][T15415] vlan2: entered promiscuous mode
[  902.928685][T15415] bridge0: entered promiscuous mode
[  903.249057][T15459] loop9: detected capacity change from 0 to 512
[  903.296357][T15459] EXT4-fs (loop9): revision level too high, forcing read-only mode
[  903.305784][T15459] EXT4-fs (loop9): orphan cleanup on readonly fs
[  903.312964][T15459] Quota error (device loop9): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  903.324743][T15459] EXT4-fs warning (device loop9): ext4_enable_quotas:7238: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  903.352838][T15459] EXT4-fs (loop9): Cannot turn on quotas: error -117
[  903.407937][T15459] EXT4-fs error (device loop9): ext4_orphan_get:1391: inode #16: comm syz.9.2113: inode has both inline data and extents flags
[  903.457069][T15463] loop3: detected capacity change from 0 to 1024
[  903.487174][T15459] loop9: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[  903.487670][T15459] EXT4-fs error (device loop9): ext4_orphan_get:1396: comm syz.9.2113: couldn't read orphan inode 16 (err -117)
[  903.496940][    C1] EXT4-fs (loop9): error count since last fsck: 1
[  903.496968][    C1] EXT4-fs (loop9): initial error at time 2000000276: ext4_orphan_get:1391: inode 16
[  903.497037][    C1] EXT4-fs (loop9): last error at time 2000000276: ext4_orphan_get:1391: inode 16
[  903.567825][T15459] loop9: lost filesystem error report for type 5 error -117
[  903.570679][T15459] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  903.570927][T15463] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  903.721337][T15459] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000.
[  903.894081][T12020] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  903.916675][T12017] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  905.381546][T15490] lo speed is unknown, defaulting to 1000
[  905.795005][T15512] loop2: detected capacity change from 0 to 256
[  905.911161][T15512] exfat: Deprecated parameter 'namecase'
[  906.010869][T15512] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d)
[  906.359764][T15526] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2134'.
[  906.511599][T15523] syzkaller1: entered promiscuous mode
[  906.531340][T15523] syzkaller1: entered allmulticast mode
[  906.595019][T15535] loop9: detected capacity change from 0 to 512
[  906.628847][T15535] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  906.664500][T15535] EXT4-fs error (device loop9): xattr_find_entry:337: inode #15: comm syz.9.2137: corrupted xattr entries
[  906.695631][T15535] loop9: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  906.699887][    C0] EXT4-fs (loop9): error count since last fsck: 1
[  906.715475][    C0] EXT4-fs (loop9): initial error at time 2000000279: xattr_find_entry:337: inode 15
[  906.724887][    C0] EXT4-fs (loop9): last error at time 2000000279: xattr_find_entry:337: inode 15
[  906.734592][T15535] EXT4-fs (loop9): 1 orphan inode deleted
[  906.743462][T15535] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  907.155246][T15553] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[  907.255845][T15553] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2142'.
[  908.327865][T12017] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  908.493702][T15568] loop2: detected capacity change from 0 to 128
[  909.628068][   T30] audit: type=1800 audit(2000000282.274:146): pid=15568 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2147" name="bus" dev="loop2" ino=1048769 res=0 errno=0
[  910.917578][T15594] loop3: detected capacity change from 0 to 512
[  911.077324][T15594] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.2154: inode has both inline data and extents flags
[  911.147338][T15594] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  911.156677][    C1] EXT4-fs (loop3): error count since last fsck: 1
[  911.172343][    C1] EXT4-fs (loop3): initial error at time 2000000283: ext4_orphan_get:1391: inode 15
[  911.181794][    C1] EXT4-fs (loop3): last error at time 2000000283: ext4_orphan_get:1391: inode 15
[  911.189165][T15594] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.2154: couldn't read orphan inode 15 (err -117)
[  911.338527][T15594] loop3: lost filesystem error report for type 5 error -117
[  911.344568][T15594] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  911.737544][T12020] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  911.748712][    T9] usb 10-1: new high-speed USB device number 11 using dummy_hcd
[  911.791258][T12462] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  911.937308][    T9] usb 10-1: Using ep0 maxpacket: 32
[  911.958006][    T9] usb 10-1: config 0 has an invalid interface number: 188 but max is 0
[  911.982249][T12462] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  911.988482][    T9] usb 10-1: config 0 has no interface number 0
[  911.996248][T12462] usb 3-1: New USB device found, idVendor=046d, idProduct=c626, bcdDevice= 0.00
[  912.024748][T12462] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  912.033715][    T9] usb 10-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  912.058225][T12462] usb 3-1: config 0 descriptor??
[  912.078767][    T9] usb 10-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  912.099773][    T9] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  912.108007][    T9] usb 10-1: Product: syz
[  912.133943][ T5987] IPVS: starting estimator thread 0...
[  912.144778][    T9] usb 10-1: Manufacturer: syz
[  912.149491][    T9] usb 10-1: SerialNumber: syz
[  912.163409][ T5912] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[  912.191987][    T9] usb 10-1: config 0 descriptor??
[  912.218318][T15605] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[  912.225935][T15624] IPVS: using max 28 ests per chain, 67200 per kthread
[  912.343425][ T5912] usb 8-1: Using ep0 maxpacket: 32
[  912.353253][T15633] fuse: Bad value for 'fd'
[  912.356691][ T5912] usb 8-1: config index 0 descriptor too short (expected 29220, got 36)
[  912.379885][ T5912] usb 8-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  912.412192][ T5912] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 81
[  912.444489][ T5912] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  912.466951][T15605] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[  912.485934][ T5912] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  912.506620][ T5912] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  912.531740][T12462] logitech 0003:046D:C626.0018: unbalanced collection at end of report description
[  912.563975][ T5912] usb 8-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  912.568995][T12462] logitech 0003:046D:C626.0018: parse failed
[  912.583669][ T5912] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  912.614683][ T5912] usb 8-1: config 0 descriptor??
[  912.818120][T12462] logitech 0003:046D:C626.0018: probe with driver logitech failed with error -22
[  912.840647][T12462] usb 3-1: USB disconnect, device number 14
[  914.491091][T15645] overlayfs: failed to clone lowerpath
[  914.708884][ T5912] usblp 8-1:0.0: usblp0: USB Bidirectional printer dev 17 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  914.724354][ T5912] usb 8-1: USB disconnect, device number 17
[  914.775257][ T5912] usblp0: removed
[  915.187310][ T5912] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[  915.403169][    T9] asix 10-1:0.188 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[  915.430682][    T9] asix 10-1:0.188: probe with driver asix failed with error -32
[  915.466910][    T9] usb 10-1: USB disconnect, device number 11
[  916.098106][T15652] loop3: detected capacity change from 0 to 32768
[  916.140649][T15652] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.2170 (15652)
[  916.278495][T15652] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  916.303372][T15652] BTRFS info (device loop3): using sha256 checksum algorithm
[  916.615533][T15652] BTRFS info (device loop3): enabling ssd optimizations
[  916.636518][T15652] BTRFS info (device loop3): turning on async discard
[  916.648149][T15705] overlayfs: failed to set uuid (126/file0, err=-1); falling back to uuid=null.
[  916.671048][T15652] BTRFS info (device loop3): enabling free space tree
[  916.682876][T15705] overlayfs: failed to verify upper root origin
[  917.783297][T15724] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2182'.
[  918.008962][T15724] 8021q: adding VLAN 0 to HW filter on device bond1
[  918.118029][T15731] vlan2: entered allmulticast mode
[  918.123209][T15731] bond1: entered allmulticast mode
[  918.230226][T15679] loop7: detected capacity change from 0 to 32768
[  918.277907][T15679] BTRFS info: device /dev/loop7 (7:7) using temp-fsid 841170eb-0812-49ca-aa07-324fcb6ce716
[  918.315497][T15679] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.2175 (15679)
[  918.389104][T15679] BTRFS info (device loop7): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  918.429105][T15679] BTRFS info (device loop7): using sha256 checksum algorithm
[  918.469362][T15679] BTRFS warning (device loop7): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  918.835940][T12020] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  918.935862][T15765] SET target dimension over the limit!
[  918.947007][T15679] BTRFS info (device loop7): rebuilding free space tree
[  918.996182][T15679] BTRFS info (device loop7): disabling free space tree
[  919.030049][T15679] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  919.092785][T15679] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  919.179283][T15679] BTRFS info (device loop7): enabling ssd optimizations
[  919.254484][T15679] BTRFS info (device loop7): turning on async discard
[  919.322778][T15679] BTRFS info (device loop7): enabling disk space caching
[  919.374461][T15679] BTRFS info (device loop7): force clearing of disk cache
[  919.413938][T15679] BTRFS info (device loop7): enabling auto defrag
[  919.446457][T15679] BTRFS info (device loop7): force zstd compression, level 3
[  919.503899][T15679] BTRFS info (device loop7): max_inline set to 0
[  919.879987][T12701] BTRFS info (device loop7): last unmount of filesystem 841170eb-0812-49ca-aa07-324fcb6ce716
[  920.791929][T15807] loop7: detected capacity change from 32768 to 64
[  920.799895][    T9] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  921.013888][    T9] usb 4-1: Using ep0 maxpacket: 16
[  921.044376][    T9] usb 4-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  921.237726][    T9] usb 4-1: config 0 interface 0 has no altsetting 0
[  921.567428][    T9] usb 4-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[  921.686253][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  921.752849][    T9] usb 4-1: config 0 descriptor??
[  922.162924][T15842] loop2: detected capacity change from 0 to 256
[  922.198730][T15842] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  922.261951][    T9] nzxt-smart2 0003:1E71:2009.0019: hidraw0: USB HID v0.05 Device [HID 1e71:2009] on usb-dummy_hcd.3-1/input0
[  922.318731][T15842] exFAT-fs (loop2): start_clu is invalid cluster(0xffffffff)
[  922.364591][T15842] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2207'.
[  922.405044][T15842] netlink: 'syz.2.2207': attribute type 7 has an invalid length.
[  922.478663][T15842] netlink: 'syz.2.2207': attribute type 8 has an invalid length.
[  922.529502][T15842] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2207'.
[  922.881206][ T5987] usb 4-1: USB disconnect, device number 17
[  923.019571][T15851] fido_id[15851]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/4-1/report_descriptor': No such file or directory
[  923.046031][   T30] audit: type=1326 audit(2000000550.850:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15857 comm="syz.9.2211" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f362cf9c629 code=0x0
[  923.140113][T15845] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  923.213873][T15845] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[  924.122962][T15866] IPVS: Scheduler module ip_vs_sip not found
[  924.313645][T15845] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  924.371765][T15845] Bluetooth: hci6: Error when powering off device on rfkill (-4)
[  924.450238][T15845] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  924.469883][T15845] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  924.503971][T15845] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  924.532406][T15845] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[  924.842687][    T9] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  925.300784][    T9] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  925.357172][    T9] usb 3-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  925.396890][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  925.454295][    T9] usb 3-1: config 0 descriptor??
[  925.484390][    T9] pwc: Askey VC010 type 2 USB webcam detected.
[  925.753923][T15845] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  925.779169][T15845] Bluetooth: hci5: Error when powering off device on rfkill (-4)
[  926.049731][    T9] pwc: recv_control_msg error -32 req 02 val 2b00
[  926.068110][    T9] pwc: recv_control_msg error -32 req 02 val 2700
[  926.176201][    T9] pwc: recv_control_msg error -32 req 02 val 2c00
[  926.205917][    T9] pwc: recv_control_msg error -32 req 04 val 1000
[  926.254729][    T9] pwc: recv_control_msg error -32 req 04 val 1300
[  926.290162][    T9] pwc: recv_control_msg error -32 req 04 val 1400
[  926.337205][    T9] pwc: recv_control_msg error -32 req 02 val 2000
[  926.623460][    T9] pwc: recv_control_msg error -71 req 04 val 1500
[  926.687480][    T9] pwc: recv_control_msg error -71 req 02 val 2500
[  926.759913][    T9] pwc: recv_control_msg error -71 req 02 val 2400
[  926.823044][    T9] pwc: recv_control_msg error -71 req 02 val 2600
[  926.864683][    T9] pwc: recv_control_msg error -71 req 02 val 2900
[  926.913672][    T9] pwc: recv_control_msg error -71 req 02 val 2800
[  926.958607][    T9] pwc: recv_control_msg error -71 req 04 val 1100
[  927.000721][    T9] pwc: recv_control_msg error -71 req 04 val 1200
[  927.055309][    T9] pwc: Registered as video103.
[  927.108185][    T9] input: PWC snapshot button as /devices/platform/dummy_hcd.2/usb3/3-1/input/input17
[  927.259836][    T9] usb 3-1: USB disconnect, device number 15
[  928.469042][   T30] audit: type=1800 audit(2000000555.911:148): pid=15954 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.2236" name="/" dev="fuse" ino=4 res=0 errno=0
[  928.768501][T15966] loop2: detected capacity change from 0 to 256
[  928.780777][T15967] binder: BINDER_SET_CONTEXT_MGR already set
[  928.804150][T15966] exfat: Deprecated parameter 'utf8'
[  928.829470][T15969] IPVS: set_ctl: invalid protocol: 137 0.0.0.0:0
[  928.842340][T15967] binder: 15965:15967 ioctl 4018620d 200000004a80 returned -16
[  928.863498][T15966] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[  930.830648][T16003] loop9: detected capacity change from 0 to 128
[  931.063475][T16010] loop2: detected capacity change from 0 to 256
[  931.154337][T16010] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x4f8593fa, utbl_chksum : 0xe619d30d)
[  931.320955][T16003] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  931.688143][T16003] ext4 filesystem being mounted at /143/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  932.188499][T16003] fscrypt (loop9): Missing crypto API support for AES-128-CBC-ESSIV (API name: "essiv(cbc(aes),sha256)")
[  932.247951][T16003] overlayfs: upper fs does not support tmpfile.
[  932.300011][T16022] loop2: detected capacity change from 0 to 1024
[  932.333755][T16003] fscrypt (loop9): Missing crypto API support for AES-128-CBC-ESSIV (API name: "essiv(cbc(aes),sha256)")
[  932.518418][T16022] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  932.681777][T12017] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  933.904576][T12137] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  936.710171][T16088] IPVS: set_ctl: invalid protocol: 137 0.0.0.0:0
[  936.865559][T16091] loop9: detected capacity change from 0 to 512
[  936.941981][T16091] EXT4-fs (loop9): Test dummy encryption mode enabled
[  937.028121][T16091] EXT4-fs error (device loop9): __ext4_iget:5378: inode #11: block 1: comm syz.9.2265: invalid block
[  937.124537][T16091] loop9: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  937.125097][T16091] EXT4-fs (loop9): Remounting filesystem read-only
[  937.140842][    C0] EXT4-fs (loop9): error count since last fsck: 1
[  937.140872][    C0] EXT4-fs (loop9): initial error at time 2000000564: __ext4_iget:5378: inode 11: block 1
[  937.140922][    C0] EXT4-fs (loop9): last error at time 2000000564: __ext4_iget:5378: inode 11: block 1
[  937.221291][T16091] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  937.513396][T12017] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  938.215555][T12462] usb 10-1: new high-speed USB device number 12 using dummy_hcd
[  938.395961][T12462] usb 10-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  938.420516][T12462] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  938.452734][T12462] usb 10-1: Product: syz
[  938.457032][T12462] usb 10-1: Manufacturer: syz
[  938.462378][T12462] usb 10-1: SerialNumber: syz
[  938.485289][T12462] usb 10-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  938.534571][    T9] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  938.567135][ T5987] usb 10-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  938.710301][    T9] usb 4-1: Using ep0 maxpacket: 8
[  938.731140][    T9] usb 4-1: config index 0 descriptor too short (expected 301, got 45)
[  938.749193][    T9] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  938.765873][    T9] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  938.776844][    T9] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  938.800721][    T9] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  938.815760][    T9] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  938.844822][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  938.857401][ T5994] usb 10-1: USB disconnect, device number 12
[  939.338977][    T9] usb 4-1: GET_CAPABILITIES returned 0
[  939.348104][    T9] usbtmc 4-1:16.0: can't read capabilities
[  939.688538][ T5987] ath9k_htc 10-1:1.0: ath9k_htc: Target is unresponsive
[  940.181806][ T5987] ath9k_htc: Failed to initialize the device
[  940.197297][ T5994] usb 10-1: ath9k_htc: USB layer deinitialized
[  940.267670][T16145] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  940.276650][T16145] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  940.461187][T16122] usbtmc 4-1:16.0: usb_control_msg returned -71
[  940.476006][    T9] usb 4-1: USB disconnect, device number 18
[  941.836026][T16157] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2285'.
[  942.597529][T16136] loop7: detected capacity change from 0 to 32768
[  942.697545][T16136] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.2279 (16136)
[  943.175228][ T5987] usb 8-1: new high-speed USB device number 19 using dummy_hcd
[  943.974123][T16165] IPVS: set_ctl: invalid protocol: 137 0.0.0.0:0
[  944.158680][ T5987] usb 8-1: Using ep0 maxpacket: 8
[  944.398834][ T5987] usb 8-1: New USB device found, idVendor=046d, idProduct=0896, bcdDevice=3a.11
[  944.412005][ T5987] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  944.426074][ T5987] usb 8-1: Product: syz
[  944.430256][ T5987] usb 8-1: Manufacturer: syz
[  944.434846][ T5987] usb 8-1: SerialNumber: syz
[  944.461402][ T5987] usb 8-1: config 0 descriptor??
[  944.517330][ T5987] gspca_main: vc032x-2.14.0 probing 046d:0896
[  945.530935][T16179] overlayfs: failed to clone lowerpath
[  946.382875][ T5987] gspca_vc032x: reg_w err -71
[  946.394909][ T5987] vc032x 8-1:0.0: probe with driver vc032x failed with error -71
[  946.414459][ T5987] usb 8-1: USB disconnect, device number 19
[  947.961834][T16196] loop3: detected capacity change from 0 to 512
[  948.084452][T16196] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  948.167853][T16196] ext4 filesystem being mounted at /157/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  948.578153][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  948.585083][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  949.533943][T12020] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  950.989294][ T5826] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  951.000826][ T5826] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  951.009613][ T5826] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  951.055698][ T5826] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  951.103278][ T5826] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  951.679351][ T5137] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  951.688233][ T5137] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  951.695839][ T5137] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  951.703941][ T5137] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  951.712662][ T5137] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  952.143095][T16225] loop7: detected capacity change from 0 to 1024
[  953.752305][T16235] IPVS: set_ctl: invalid protocol: 137 0.0.0.0:0
[  953.970486][ T5826] Bluetooth: hci2: command tx timeout
[  953.999327][T16221] lo speed is unknown, defaulting to 1000
[  954.076998][T16239] binder: 16238:16239 ioctl c0306201 200000000680 returned -14
[  954.100554][T16240] netlink: 'syz.7.2306': attribute type 39 has an invalid length.
[  954.201842][T16245] overlayfs: failed to clone lowerpath
[  956.200746][ T5826] Bluetooth: hci2: command tx timeout
[  956.233487][T16258] loop3: detected capacity change from 0 to 512
[  956.275905][T16264] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  956.822481][T16258] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  956.870187][T16258] ext4 filesystem being mounted at /163/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  959.161544][ T5826] Bluetooth: hci2: command tx timeout
[  960.614157][T12020] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  961.317226][ T5826] Bluetooth: hci2: command tx timeout
[  962.584022][ T8176] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  962.753063][T16221] chnl_net:caif_netlink_parms(): no params data found
[  963.506497][ T8176] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  964.561815][ T8176] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  964.970224][T16221] bridge0: port 1(bridge_slave_0) entered blocking state
[  965.721724][T16221] bridge0: port 1(bridge_slave_0) entered disabled state
[  965.729959][T16221] bridge_slave_0: entered allmulticast mode
[  965.769799][T16221] bridge_slave_0: entered promiscuous mode
[  965.802431][T16221] bridge0: port 2(bridge_slave_1) entered blocking state
[  965.825284][T16221] bridge0: port 2(bridge_slave_1) entered disabled state
[  965.878494][T16221] bridge_slave_1: entered allmulticast mode
[  965.901950][T16221] bridge_slave_1: entered promiscuous mode
[  967.000761][T16352] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  967.053518][ T8176] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  968.373981][T16221] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  968.604534][T16221] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  970.381238][T16221] team0: Port device team_slave_0 added
[  970.406805][T16221] team0: Port device team_slave_1 added
[  970.901703][T16221] batman_adv: batadv0: Adding interface: batadv_slave_0
[  970.936769][T16221] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  971.081420][T16221] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  971.182872][T16221] batman_adv: batadv0: Adding interface: batadv_slave_1
[  971.214516][T16221] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  971.424536][T16394] binder: BINDER_SET_CONTEXT_MGR already set
[  971.435104][T16394] binder: 16393:16394 ioctl 4018620d 200000004a80 returned -16
[  971.456733][T16221] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  971.530555][ T8176] bridge_slave_1: left allmulticast mode
[  971.536397][ T8176] bridge_slave_1: left promiscuous mode
[  971.590477][ T8176] bridge0: port 2(bridge_slave_1) entered disabled state
[  971.711169][T16399] loop3: detected capacity change from 0 to 1024
[  972.164971][   T30] audit: type=1800 audit(2000000596.722:149): pid=16405 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2338" name="file1" dev="loop3" ino=2 res=0 errno=0
[  972.837393][ T8176] bridge_slave_0: left allmulticast mode
[  972.872024][ T8176] bridge_slave_0: left promiscuous mode
[  972.887439][T16415] netlink: 'syz.4.2340': attribute type 1 has an invalid length.
[  972.948870][ T8176] bridge0: port 1(bridge_slave_0) entered disabled state
[  973.083296][T16419] loop3: detected capacity change from 0 to 512
[  973.200486][T16419] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  973.314637][T16419] ext4 filesystem being mounted at /170/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  974.504065][T12020] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  974.756925][ T8176] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  974.805761][ T8176] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  974.828724][ T8176] bond0 (unregistering): Released all slaves
[  974.864887][ T8176] bond1 (unregistering): Released all slaves
[  974.952910][T16407] tipc: Started in network mode
[  974.957899][T16407] tipc: Node identity 0a392b77d3d8, cluster identity 4711
[  974.976413][T16407] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  974.998938][T16415] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR
[  975.111449][T16451] netlink: 'syz.7.2343': attribute type 4 has an invalid length.
[  975.440927][T16408] syzkaller0: entered promiscuous mode
[  975.446572][T16408] syzkaller0: entered allmulticast mode
[  975.456459][T16408] tipc: Resetting bearer <eth:syzkaller0>
[  975.840881][T16402] tipc: Resetting bearer <eth:syzkaller0>
[  977.276228][T16481] loop3: detected capacity change from 0 to 32768
[  977.336859][T16481] XFS (loop3): Mounting V5 Filesystem 9f91832a-3b79-45c3-9d6d-ed0bc7357fe4
[  977.418713][T16481] XFS (loop3): Starting recovery (logdev: internal)
[  977.441823][T16481] XFS (loop3): Ending recovery (logdev: internal)
[  977.475714][T16481] XFS (loop3): Corruption warning: Metadata has LSN (8192:64) ahead of current LSN (1:192). Please unmount and run xfs_repair (>= v4.3) to resolve.
[  977.490832][T16481] XFS (loop3): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xe0, xfs_bnobt block 0x4 
[  977.501829][T16481] XFS (loop3): Unmount and run xfs_repair
[  977.507590][T16481] XFS (loop3): First 128 bytes of corrupted metadata buffer:
[  977.515096][T16481] 00000000: 53 55 4d 59 00 00 00 02 ff ff ff ff ff ff ff ff  SUMY............
[  977.524068][T16481] 00000010: 00 00 00 00 00 00 00 04 00 00 20 00 00 00 00 40  .......... ....@
[  977.533047][T16481] 00000020: 9f 91 83 2a 3b 79 45 c3 9d 6d ed 0b c7 35 7f e4  ...*;yE..m...5..
[  977.542055][T16481] 00000030: 00 00 00 00 25 47 cc 81 00 00 00 0d 00 00 00 03  ....%G..........
[  977.551057][T16481] 00000040: 00 00 0e a8 00 00 11 58 00 00 00 00 00 00 00 00  .......X........
[  977.559994][T16481] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  977.568996][T16481] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  977.577945][T16481] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  977.586899][T16481] XFS (loop3): metadata I/O error in "xfs_btree_read_buf_block+0x2b0/0x490" at daddr 0x4 len 4 error 74
[  977.632395][T16481] XFS (loop3): Metadata I/O Error (0x1) detected at xfs_trans_read_buf_map+0x518/0x950 (fs/xfs/xfs_trans_buf.c:311).  Shutting down filesystem.
[  977.652409][T16481] XFS (loop3): Please unmount the filesystem and rectify the problem(s)
[  978.346011][T12020] XFS (loop3): Unmounting Filesystem 9f91832a-3b79-45c3-9d6d-ed0bc7357fe4
[  983.084183][T16402] tipc: Disabling bearer <eth:syzkaller0>
[  983.151023][T16456] team0 (unregistering): Port device team_slave_0 removed
[  983.182051][T16456] team0 (unregistering): Port device team_slave_1 removed
[  983.440922][ T5919] tipc: Node number set to 3655412599
[  984.017848][T16221] hsr_slave_0: entered promiscuous mode
[  984.252508][T16221] hsr_slave_1: entered promiscuous mode
[  985.334774][T16528] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  986.187683][T16555] 8021q: adding VLAN 0 to HW filter on device bond2
[  986.604010][ T8176] hsr_slave_0: left promiscuous mode
[  986.619156][ T8176] hsr_slave_1: left promiscuous mode
[  986.629958][   T30] audit: type=1326 audit(2000000610.323:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16568 comm="syz.3.2366" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f83e7b9c629 code=0x0
[  986.656864][ T8176] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  986.664872][ T8176] batman_adv: batadv0: Removing interface: batadv_slave_0
[  986.682593][ T8176] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  986.690605][ T8176] batman_adv: batadv0: Removing interface: batadv_slave_1
[  986.728020][ T8176] veth1_macvtap: left promiscuous mode
[  986.739606][ T8176] veth0_macvtap: left promiscuous mode
[  986.747658][ T8176] veth1_vlan: left promiscuous mode
[  986.753749][ T8176] veth0_vlan: left promiscuous mode
[  989.347563][ T8176] team0 (unregistering): Port device team_slave_1 removed
[  989.404503][ T8176] team0 (unregistering): Port device team_slave_0 removed
[  989.950934][T16559] bond_slave_0: entered promiscuous mode
[  989.956772][T16559] bond_slave_1: entered promiscuous mode
[  990.001802][T16559] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  990.036906][T16559] bond2: (slave macvlan2): Enslaving as an active interface with an up link
[  991.620404][T16612] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2376'.
[  999.811794][T16221] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1002.078379][T16221] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1002.181048][T16221] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1003.824393][T16221] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1005.644089][T16221] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1005.748445][T16711] overlayfs: failed to clone lowerpath
[ 1005.761683][T16221] 8021q: adding VLAN 0 to HW filter on device team0
[ 1005.822103][T14907] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1005.829235][T14907] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1006.058058][T14905] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1006.065232][T14905] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1009.568814][T16221] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1009.805897][T16221] veth0_vlan: entered promiscuous mode
[ 1009.858346][T16221] veth1_vlan: entered promiscuous mode
[ 1011.505041][T16221] veth0_macvtap: entered promiscuous mode
[ 1011.581100][T16221] veth1_macvtap: entered promiscuous mode
[ 1011.641040][T16221] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1011.705500][T16221] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1013.438476][   T49] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1013.454440][   T49] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1013.613067][   T49] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1013.632798][   T49] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1013.901881][ T3535] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1013.958418][ T3535] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1014.121839][ T3535] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1014.192911][ T3535] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1014.280747][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[ 1014.287082][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[ 1016.467692][T16787] loop3: detected capacity change from 0 to 128
[ 1017.851761][T16787] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1017.978231][T16787] ext4 filesystem being mounted at /191/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1018.940386][ T5137] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1018.979118][ T5137] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1018.989030][ T5137] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1018.991634][T12020] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1019.105348][ T5137] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1019.199695][ T5137] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1020.066584][T16816] overlayfs: failed to clone lowerpath
[ 1020.538978][T16806] lo speed is unknown, defaulting to 1000
[ 1020.571807][T16823] loop3: detected capacity change from 0 to 512
[ 1021.451810][ T5826] Bluetooth: hci4: command tx timeout
[ 1022.990557][ T5137] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 1023.019875][ T5137] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 1023.047313][ T5137] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 1023.069550][ T5137] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 1023.096892][ T5137] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 1023.256510][T16850] loop9: detected capacity change from 0 to 128
[ 1023.696908][ T5137] Bluetooth: hci4: command tx timeout
[ 1023.710870][T16852] overlayfs: failed to clone lowerpath
[ 1023.970947][T16806] chnl_net:caif_netlink_parms(): no params data found
[ 1024.375705][T16860] overlayfs: overlapping lowerdir path
[ 1024.603461][T16842] lo speed is unknown, defaulting to 1000
[ 1025.291706][ T5826] Bluetooth: hci7: command tx timeout
[ 1025.682229][ T5977] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1025.889424][ T5826] Bluetooth: hci4: command tx timeout
[ 1026.949354][ T5977] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1027.155209][ T5987] usb 4-1: new full-speed USB device number 19 using dummy_hcd
[ 1027.251856][ T5977] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1027.266008][ T5137] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 1027.492866][ T5987] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[ 1027.501935][ T5987] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1027.534761][ T5137] Bluetooth: hci7: command tx timeout
[ 1027.540381][ T5987] usb 4-1: Product: syz
[ 1027.544549][ T5987] usb 4-1: Manufacturer: syz
[ 1027.549248][ T5987] usb 4-1: SerialNumber: syz
[ 1027.557588][ T5987] usb 4-1: config 0 descriptor??
[ 1027.576420][T16806] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1027.617340][T16806] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1027.640250][T16889] overlayfs: failed to clone lowerpath
[ 1027.653102][T16806] bridge_slave_0: entered allmulticast mode
[ 1027.681177][T16806] bridge_slave_0: entered promiscuous mode
[ 1027.817342][ T5977] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1027.820978][ T5987] usb 4-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 1028.112516][ T5137] Bluetooth: hci4: command tx timeout
[ 1028.449873][T16806] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1028.475887][T16806] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1028.483180][T16806] bridge_slave_1: entered allmulticast mode
[ 1028.550596][T16806] bridge_slave_1: entered promiscuous mode
[ 1029.557781][T16806] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1029.639295][T16806] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1029.739686][ T5137] Bluetooth: hci7: command tx timeout
[ 1029.926590][ T5987] dvb_usb_rtl28xxu 4-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[ 1029.950121][ T5987] usb 4-1: USB disconnect, device number 19
[ 1029.972642][T16806] team0: Port device team_slave_0 added
[ 1030.026577][T12462] usb 10-1: new high-speed USB device number 13 using dummy_hcd
[ 1030.036174][T16806] team0: Port device team_slave_1 added
[ 1030.199462][T12462] usb 10-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1030.218120][T12462] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1030.254486][T12462] usb 10-1: config 0 descriptor??
[ 1030.283280][T12462] cp210x 10-1:0.0: cp210x converter detected
[ 1030.306171][T16806] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1030.313245][T16806] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1030.340981][T16806] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1030.374266][T16806] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1030.389324][T16806] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1030.428588][T16806] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1030.440518][ T5977] bridge_slave_1: left allmulticast mode
[ 1030.465122][ T5977] bridge_slave_1: left promiscuous mode
[ 1030.470906][ T5977] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1030.516683][T12462] cp210x 10-1:0.0: failed to get vendor val 0x370b size 1: -32
[ 1030.548723][T12462] cp210x 10-1:0.0: querying part number failed
[ 1030.584051][ T5977] bridge_slave_0: left allmulticast mode
[ 1030.605289][T12462] usb 10-1: cp210x converter now attached to ttyUSB0
[ 1030.608743][ T5977] bridge_slave_0: left promiscuous mode
[ 1030.634521][ T5977] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1031.962885][ T5137] Bluetooth: hci7: command tx timeout
[ 1032.247062][ T5977] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1032.320274][ T5977] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1032.509835][ T5977] bond0 (unregistering): Released all slaves
[ 1033.135508][T12462] usb 10-1: USB disconnect, device number 13
[ 1033.137778][T16842] chnl_net:caif_netlink_parms(): no params data found
[ 1033.196654][T16950] netlink: 'syz.0.2440': attribute type 1 has an invalid length.
[ 1033.212372][T12462] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1033.220971][T12462] cp210x 10-1:0.0: device disconnected
[ 1033.422241][T16950] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1033.509941][T16954] vlan2: entered allmulticast mode
[ 1033.516264][T16954] veth0_to_bond: entered allmulticast mode
[ 1033.523612][T16964] netlink: 'syz.4.2443': attribute type 4 has an invalid length.
[ 1033.550450][T16954] bond3: (slave vlan2): making interface the new active one
[ 1033.563076][T16954] bond3: (slave vlan2): Enslaving as an active interface with an up link
[ 1033.988255][T16969] loop3: detected capacity change from 0 to 40427
[ 1034.072122][T16974] overlayfs: failed to clone lowerpath
[ 1034.134713][T16806] hsr_slave_0: entered promiscuous mode
[ 1034.152836][T16806] hsr_slave_1: entered promiscuous mode
[ 1034.167482][T16806] debugfs: 'hsr0' already exists in 'hsr'
[ 1034.221675][T16969] F2FS-fs (loop3): invalid crc value
[ 1034.234075][T16806] Cannot create hsr debugfs directory
[ 1034.306142][T16969] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1034.316743][T16969] F2FS-fs (loop3): Start checkpoint disabled!
[ 1034.333054][T16969] F2FS-fs (loop3): f2fs_disable_checkpoint() finish, err:0
[ 1034.345651][T16969] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[ 1034.893460][T16986] syz.3.2444: attempt to access beyond end of device
[ 1034.893460][T16986] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1034.908721][T16986] syz.3.2444: attempt to access beyond end of device
[ 1034.908721][T16986] loop3: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[ 1034.922918][T16986] syz.3.2444: attempt to access beyond end of device
[ 1034.922918][T16986] loop3: rw=2049, sector=45112, nr_sectors = 8 limit=40427
[ 1034.937162][T16986] syz.3.2444: attempt to access beyond end of device
[ 1034.937162][T16986] loop3: rw=2049, sector=45120, nr_sectors = 8 limit=40427
[ 1034.953434][T16986] syz.3.2444: attempt to access beyond end of device
[ 1034.953434][T16986] loop3: rw=2049, sector=45128, nr_sectors = 8 limit=40427
[ 1034.968147][T16986] syz.3.2444: attempt to access beyond end of device
[ 1034.968147][T16986] loop3: rw=2049, sector=45136, nr_sectors = 8 limit=40427
[ 1034.983248][T16986] syz.3.2444: attempt to access beyond end of device
[ 1034.983248][T16986] loop3: rw=2049, sector=45144, nr_sectors = 8 limit=40427
[ 1034.998142][T16986] syz.3.2444: attempt to access beyond end of device
[ 1034.998142][T16986] loop3: rw=2049, sector=45152, nr_sectors = 8 limit=40427
[ 1035.012973][T16986] syz.3.2444: attempt to access beyond end of device
[ 1035.012973][T16986] loop3: rw=2049, sector=45160, nr_sectors = 8 limit=40427
[ 1035.027561][T16986] syz.3.2444: attempt to access beyond end of device
[ 1035.027561][T16986] loop3: rw=2049, sector=45168, nr_sectors = 8 limit=40427
[ 1035.494375][   T30] audit: type=1800 audit(2000000655.475:151): pid=16986 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2444" name="file1" dev="loop3" ino=10 res=0 errno=0
[ 1036.576801][   T49] CPU: 0 UID: 0 PID: 49 Comm: kworker/u8:3 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1036.576840][   T49] Tainted: [L]=SOFTLOCKUP
[ 1036.576850][   T49] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1036.576866][   T49] Workqueue: writeback wb_workfn (flush-7:3)
[ 1036.576901][   T49] Call Trace:
[ 1036.576911][   T49]  <TASK>
[ 1036.576921][   T49]  dump_stack_lvl+0xe8/0x150
[ 1036.576959][   T49]  f2fs_handle_critical_error+0x37c/0x540
[ 1036.577008][   T49]  f2fs_write_end_io+0xcdb/0xff0
[ 1036.577061][   T49]  __submit_merged_bio+0x256/0x700
[ 1036.577095][   T49]  __submit_merged_write_cond+0x3c9/0x4e0
[ 1036.577146][   T49]  ? __pfx___submit_merged_write_cond+0x10/0x10
[ 1036.577203][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1036.577244][   T49]  f2fs_write_data_pages+0x2975/0x35e0
[ 1036.577315][   T49]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1036.577401][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1036.577434][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1036.577468][   T49]  ? unwind_next_frame+0xa5/0x23c0
[ 1036.577526][   T49]  ? ret_from_fork_asm+0x1a/0x30
[ 1036.577565][   T49]  ? ret_from_fork_asm+0x1a/0x30
[ 1036.577639][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1036.577669][   T49]  ? __lock_acquire+0x6b5/0x2cf0
[ 1036.577704][   T49]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1036.577736][   T49]  do_writepages+0x32e/0x550
[ 1036.577785][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1036.577813][   T49]  ? reacquire_held_locks+0x104/0x190
[ 1036.577850][   T49]  ? writeback_sb_inodes+0x43d/0x19a0
[ 1036.577890][   T49]  __writeback_single_inode+0x133/0x11a0
[ 1036.577925][   T49]  ? do_raw_spin_unlock+0xf5/0x210
[ 1036.577957][   T49]  writeback_sb_inodes+0x944/0x19a0
[ 1036.578007][   T49]  ? unwind_next_frame+0xa5/0x23c0
[ 1036.578054][   T49]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1036.578085][   T49]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1036.578153][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1036.578184][   T49]  ? rcu_is_watching+0x15/0xb0
[ 1036.578221][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1036.578266][   T49]  wb_writeback+0x456/0xb70
[ 1036.578302][   T49]  ? queue_io+0x291/0x4a0
[ 1036.578343][   T49]  ? __pfx_wb_writeback+0x10/0x10
[ 1036.578379][   T49]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1036.578427][   T49]  wb_workfn+0x414/0xf50
[ 1036.578456][   T49]  ? look_up_lock_class+0x57/0x110
[ 1036.578514][   T49]  ? __pfx_wb_workfn+0x10/0x10
[ 1036.578545][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1036.578574][   T49]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1036.578604][   T49]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1036.578631][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1036.578668][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1036.578702][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1036.578733][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1036.578767][   T49]  ? process_scheduled_works+0xa25/0x1830
[ 1036.578800][   T49]  ? process_scheduled_works+0xa25/0x1830
[ 1036.578836][   T49]  process_scheduled_works+0xb02/0x1830
[ 1036.578903][   T49]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1036.578944][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1036.578975][   T49]  ? assign_work+0x3d5/0x5e0
[ 1036.579014][   T49]  worker_thread+0xa50/0xfc0
[ 1036.579069][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1036.579110][   T49]  kthread+0x388/0x470
[ 1036.579136][   T49]  ? __pfx_worker_thread+0x10/0x10
[ 1036.579168][   T49]  ? __pfx_kthread+0x10/0x10
[ 1036.579195][   T49]  ret_from_fork+0x51e/0xb90
[ 1036.579233][   T49]  ? __pfx_ret_from_fork+0x10/0x10
[ 1036.579264][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1036.579294][   T49]  ? __switch_to+0xc7d/0x1450
[ 1036.579329][   T49]  ? __pfx_kthread+0x10/0x10
[ 1036.579362][   T49]  ret_from_fork_asm+0x1a/0x30
[ 1036.579421][   T49]  </TASK>
[ 1036.964170][   T49] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 1037.885080][ T5977] hsr_slave_0: left promiscuous mode
[ 1037.936890][ T5977] hsr_slave_1: left promiscuous mode
[ 1037.943073][ T5977] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1038.000872][ T5977] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1038.084445][ T5977] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1038.116835][ T5977] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1038.166924][ T5977] veth1_macvtap: left promiscuous mode
[ 1038.180802][ T5977] veth0_macvtap: left promiscuous mode
[ 1038.193826][ T5977] veth1_vlan: left promiscuous mode
[ 1038.208962][ T5977] veth0_vlan: left promiscuous mode
[ 1040.612230][T17030] overlayfs: "xino" feature enabled using 3 upper inode bits.
[ 1042.023523][ T5977] team0 (unregistering): Port device team_slave_1 removed
[ 1042.130429][ T5977] team0 (unregistering): Port device team_slave_0 removed
[ 1043.919946][T16842] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1043.951396][T16842] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1043.967147][T16842] bridge_slave_0: entered allmulticast mode
[ 1044.024891][T16842] bridge_slave_0: entered promiscuous mode
[ 1044.075942][T16842] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1044.083097][T16842] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1044.148248][T16842] bridge_slave_1: entered allmulticast mode
[ 1044.171768][T16842] bridge_slave_1: entered promiscuous mode
[ 1045.797213][T16842] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1045.809784][T16842] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1046.214535][T16842] team0: Port device team_slave_0 added
[ 1046.241185][T16842] team0: Port device team_slave_1 added
[ 1046.412392][T16842] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1046.459640][T16842] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1046.704668][T16842] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1047.730307][T16842] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1047.737284][T16842] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1047.909681][T16842] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1049.672134][T16842] hsr_slave_0: entered promiscuous mode
[ 1049.812145][T16842] hsr_slave_1: entered promiscuous mode
[ 1050.238043][T17129] netlink: 48 bytes leftover after parsing attributes in process `syz.9.2471'.
[ 1051.390104][T17135] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1051.935340][ T5977] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1051.958146][ T5977] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[ 1056.995247][ T5977] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1057.062212][ T5977] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[ 1057.472930][T17180] loop3: detected capacity change from 0 to 32768
[ 1057.481009][T17180] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.2484 (17180)
[ 1057.496760][T17180] BTRFS info (device loop3): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[ 1057.506903][T17180] BTRFS info (device loop3): using crc32c checksum algorithm
[ 1057.514445][T17180] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[ 1057.579291][ T5977] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1057.591661][ T5977] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[ 1057.613673][T17180] BTRFS info (device loop3): rebuilding free space tree
[ 1057.628695][T17180] BTRFS info (device loop3): disabling free space tree
[ 1057.635867][T17180] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1057.645580][T17180] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1057.696441][T17180] BTRFS info (device loop3): enabling ssd optimizations
[ 1057.703434][T17180] BTRFS info (device loop3): turning on async discard
[ 1057.711600][T17180] BTRFS info (device loop3): enabling disk space caching
[ 1057.720802][T17180] BTRFS info (device loop3): force clearing of disk cache
[ 1057.728033][T17180] BTRFS info (device loop3): use zstd compression, level 3
[ 1058.508159][ T5977] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1058.634818][ T5977] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[ 1059.296167][T12020] BTRFS info (device loop3): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[ 1059.437398][T16806] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1060.748600][T16806] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1061.162573][T17223] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1061.300246][T16806] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1061.517293][T17227] overlayfs: failed to clone lowerpath
[ 1061.857258][T16806] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1062.155944][T17231] [U] ¦
[ 1062.164314][ T5977] bridge_slave_1: left allmulticast mode
[ 1062.177438][ T5977] bridge_slave_1: left promiscuous mode
[ 1062.191393][ T5977] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1062.210544][ T5977] bridge_slave_0: left allmulticast mode
[ 1062.223326][ T5977] bridge_slave_0: left promiscuous mode
[ 1062.245046][ T5977] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1064.063742][ T5977] bond1 (unregistering): (slave geneve2): Releasing active interface
[ 1064.852230][ T5977] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1065.078681][ T5977] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1065.092174][T17275] loop9: detected capacity change from 0 to 256
[ 1065.108466][ T5977] bond0 (unregistering): Released all slaves
[ 1065.123859][T17275] vfat: Bad value for 'dmask'
[ 1067.346007][ T5977] bond1 (unregistering): Released all slaves
[ 1067.437792][T17280] loop9: detected capacity change from 0 to 512
[ 1067.605154][T17280] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1067.664715][T17280] ext4 filesystem being mounted at /183/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1068.802966][T12017] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1069.864413][T17293] tipc: Started in network mode
[ 1070.164047][T17293] tipc: Node identity 62ee02f3773b, cluster identity 4711
[ 1070.179359][T17293] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1070.201221][T17294] syzkaller0: entered promiscuous mode
[ 1070.206687][T17294] syzkaller0: entered allmulticast mode
[ 1071.442017][T17304] tipc: Resetting bearer <eth:syzkaller0>
[ 1071.447985][T17304] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1071.491548][T17288] tipc: Resetting bearer <eth:syzkaller0>
[ 1071.599600][T17288] tipc: Disabling bearer <eth:syzkaller0>
[ 1071.930328][ T5891] tipc: Node number set to 366281459
[ 1075.188264][T16806] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1076.680584][T17343] netlink: 'syz.9.2513': attribute type 3 has an invalid length.
[ 1076.836553][ T5977] hsr_slave_0: left promiscuous mode
[ 1076.930895][T17345] befs: (loop0): No write support. Marking filesystem read-only
[ 1076.942307][T17345] befs: (loop0): unable to read superblock
[ 1077.579623][ T5977] hsr_slave_1: left promiscuous mode
[ 1077.592905][ T5977] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1077.602212][ T5977] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1077.668905][ T5977] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1077.677928][ T5977] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1077.705128][ T5977] veth1_macvtap: left promiscuous mode
[ 1077.710951][ T5977] veth0_macvtap: left promiscuous mode
[ 1077.716937][ T5977] veth1_vlan: left promiscuous mode
[ 1077.722600][ T5977] veth0_vlan: left promiscuous mode
[ 1080.034976][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[ 1080.041499][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[ 1080.785349][ T5977] team0 (unregistering): Port device team_slave_1 removed
[ 1081.043639][ T5977] team0 (unregistering): Port device team_slave_0 removed
[ 1081.129875][ T5826] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1081.146007][ T5826] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1082.303755][ T5826] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1082.335936][ T5826] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1082.343742][ T5826] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1085.317966][ T5826] Bluetooth: hci2: command tx timeout
[ 1086.130805][T17365] lo speed is unknown, defaulting to 1000
[ 1088.199247][    T9] usb 10-1: new high-speed USB device number 14 using dummy_hcd
[ 1088.207254][ T5826] Bluetooth: hci2: command tx timeout
[ 1088.450791][ T5137] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1088.462798][ T5137] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1088.471873][    T9] usb 10-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1088.481002][    T9] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1088.503351][ T5137] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1088.546990][    T9] usb 10-1: Product: syz
[ 1088.551279][    T9] usb 10-1: Manufacturer: syz
[ 1088.555958][    T9] usb 10-1: SerialNumber: syz
[ 1088.560842][ T5137] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1088.578352][ T5137] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1089.297035][    T9] lan78xx 10-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -EPROTO
[ 1089.364275][    T9] lan78xx 10-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[ 1089.413356][    T9] lan78xx 10-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1089.656289][T17365] chnl_net:caif_netlink_parms(): no params data found
[ 1089.685996][    T9] lan78xx 10-1:1.0: probe with driver lan78xx failed with error -71
[ 1090.360628][T17402] lo speed is unknown, defaulting to 1000
[ 1090.391248][ T5137] Bluetooth: hci2: command tx timeout
[ 1090.420484][    T9] usb 10-1: USB disconnect, device number 14
[ 1090.890561][ T5137] Bluetooth: hci4: command tx timeout
[ 1091.069375][T17428] Cannot find add_set index 0 as target
[ 1091.163701][T17428] loop9: detected capacity change from 0 to 256
[ 1092.683459][ T5137] Bluetooth: hci2: command tx timeout
[ 1093.110987][ T5137] Bluetooth: hci4: command tx timeout
[ 1093.297862][T17365] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1093.305178][T17365] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1093.312396][T17365] bridge_slave_0: entered allmulticast mode
[ 1093.337457][T17365] bridge_slave_0: entered promiscuous mode
[ 1093.461740][T17365] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1093.485253][T17365] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1093.492518][T17365] bridge_slave_1: entered allmulticast mode
[ 1093.501187][T17365] bridge_slave_1: entered promiscuous mode
[ 1093.827705][T17365] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1094.757977][T17365] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1094.875781][T17464] Bluetooth: hci0: invalid length 0, exp 2 for type 15
[ 1095.034210][ T5891] usb 4-1: new full-speed USB device number 20 using dummy_hcd
[ 1095.911376][ T5137] Bluetooth: hci4: command tx timeout
[ 1095.917975][T17365] team0: Port device team_slave_0 added
[ 1095.927006][T17365] team0: Port device team_slave_1 added
[ 1096.044132][ T5891] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE4, changing to 0x84
[ 1096.125822][ T5891] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 95, setting to 64
[ 1096.382539][ T5891] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[ 1096.945027][ T5891] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1096.956928][ T5891] usb 4-1: config 0 descriptor??
[ 1096.963314][T17462] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1097.767283][T17365] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1097.819283][ T5891] ath6kl: Failed to submit usb control message: -71
[ 1097.881423][T17365] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1097.913565][ T5891] ath6kl: unable to send the bmi data to the device: -71
[ 1097.920600][ T5891] ath6kl: Unable to send get target info: -71
[ 1098.001617][ T5891] ath6kl: Failed to init ath6kl core: -71
[ 1098.029969][ T5891] ath6kl_usb 4-1:0.0: probe with driver ath6kl_usb failed with error -71
[ 1098.205452][ T5137] Bluetooth: hci4: command tx timeout
[ 1098.211050][T17365] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1098.236219][T17365] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1098.257267][ T5891] usb 4-1: USB disconnect, device number 20
[ 1098.303794][T17498] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2540'.
[ 1099.087407][T17365] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1099.230424][T17365] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1099.434093][T17402] chnl_net:caif_netlink_parms(): no params data found
[ 1101.985375][T17532] loop3: detected capacity change from 0 to 256
[ 1102.004547][T17532] exfat: Deprecated parameter 'utf8'
[ 1102.227482][T17532] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[ 1102.406411][T17365] hsr_slave_0: entered promiscuous mode
[ 1102.639306][T17365] hsr_slave_1: entered promiscuous mode
[ 1102.702089][T17365] debugfs: 'hsr0' already exists in 'hsr'
[ 1102.708074][T17365] Cannot create hsr debugfs directory
[ 1106.079130][T17402] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1106.112745][T17402] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1106.903087][T17402] bridge_slave_0: entered allmulticast mode
[ 1108.228557][T17402] bridge_slave_0: entered promiscuous mode
[ 1108.272216][T17402] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1108.306101][T17402] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1109.896723][T17402] bridge_slave_1: entered allmulticast mode
[ 1109.905265][T17402] bridge_slave_1: entered promiscuous mode
[ 1110.946348][T17402] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1112.312279][T17610] overlayfs: overlapping lowerdir path
[ 1112.852667][T17402] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1113.426764][T17402] team0: Port device team_slave_0 added
[ 1113.441365][T17402] team0: Port device team_slave_1 added
[ 1113.628189][T17402] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1113.670869][T17402] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1114.041493][T17402] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1115.041758][T17402] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1115.101708][T17402] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1115.540014][T17402] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1116.047154][T17402] hsr_slave_0: entered promiscuous mode
[ 1116.064785][T17402] hsr_slave_1: entered promiscuous mode
[ 1116.106597][T17402] debugfs: 'hsr0' already exists in 'hsr'
[ 1116.112363][T17402] Cannot create hsr debugfs directory
[ 1116.602301][ T5977] bridge_slave_1: left allmulticast mode
[ 1116.607984][ T5977] bridge_slave_1: left promiscuous mode
[ 1116.718090][ T5977] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1116.786034][ T5977] bridge_slave_0: left allmulticast mode
[ 1116.810523][ T5977] bridge_slave_0: left promiscuous mode
[ 1116.832184][ T5977] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1116.925691][ T5977] bridge_slave_1: left allmulticast mode
[ 1116.935947][ T5977] bridge_slave_1: left promiscuous mode
[ 1116.951261][ T5977] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1116.970649][ T5977] bridge_slave_0: left allmulticast mode
[ 1116.995240][ T5977] bridge_slave_0: left promiscuous mode
[ 1117.037992][ T5977] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1117.068700][ T5930] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[ 1117.284763][ T5930] usb 4-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[ 1117.374299][ T5930] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1117.460848][ T5930] usb 4-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1117.525537][ T5930] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1117.560635][ T5930] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1117.655926][ T5930] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[ 1117.700378][ T5930] usb 4-1: invalid MIDI out EP 0
[ 1119.901413][ T5977] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1119.905855][ T5930] snd-usb-audio 4-1:27.0: probe with driver snd-usb-audio failed with error -22
[ 1120.022043][ T5930] usb 4-1: USB disconnect, device number 21
[ 1120.065307][ T5977] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1120.212847][ T5977] bond0 (unregistering): Released all slaves
[ 1121.222883][    C0] vcan0: j1939_tp_rxtimer: 0xffff8880338ad000: rx timeout, send abort
[ 1121.765660][    C0] vcan0: j1939_tp_rxtimer: 0xffff8880338ad000: abort rx timeout. Force session deactivation
[ 1124.212388][T17685] overlayfs: overlapping lowerdir path
[ 1125.952159][T17703] ptrace attach of "./syz-executor exec"[12020] was attempted by "./syz-executor exec"[17703]
[ 1126.347070][T17708] hugetlbfs: syz.0.2579 (17708): Using mlock ulimits for SHM_HUGETLB is obsolete
[ 1127.070678][ T5977] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1127.992947][ T5977] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1128.117723][ T5977] bond0 (unregistering): Released all slaves
[ 1128.217277][T17722] loop9: detected capacity change from 0 to 512
[ 1128.389537][T17722] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1128.411615][T17722] ext4 filesystem being mounted at /208/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1129.664244][T12017] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1131.565174][ T5977] hsr_slave_0: left promiscuous mode
[ 1131.754824][ T5977] hsr_slave_1: left promiscuous mode
[ 1131.768963][ T5977] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1131.824969][T17748] loop9: detected capacity change from 0 to 256
[ 1131.833038][ T5977] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1131.868061][T17748] exfat: Deprecated parameter 'utf8'
[ 1131.950246][T17748] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[ 1132.236463][ T5977] hsr_slave_0: left promiscuous mode
[ 1133.104659][ T5977] hsr_slave_1: left promiscuous mode
[ 1133.110810][ T5977] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1133.198641][ T5977] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1134.959980][T17778] netlink: 24 bytes leftover after parsing attributes in process `syz.9.2590'.
[ 1135.632889][ T5977] team0 (unregistering): Port device team_slave_1 removed
[ 1135.706768][ T5977] team0 (unregistering): Port device team_slave_0 removed
[ 1140.791827][ T5977] team0 (unregistering): Port device team_slave_1 removed
[ 1140.854984][ T5977] team0 (unregistering): Port device team_slave_0 removed
[ 1144.295577][T17827] tc_dump_action: action bad kind
[ 1145.630652][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[ 1145.637159][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[ 1145.742109][T17841] netlink: 452 bytes leftover after parsing attributes in process `syz.3.2607'.
[ 1147.238012][ T5826] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1147.248310][ T5826] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1147.256928][ T5826] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1147.265015][ T5826] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1147.274992][ T5826] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1147.660633][T17850] lo speed is unknown, defaulting to 1000
[ 1147.771447][T17859] loop9: detected capacity change from 0 to 256
[ 1147.891091][T17859] exFAT-fs (loop9): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x5955b8de, utbl_chksum : 0xe619d30d)
[ 1149.711273][ T5826] Bluetooth: hci5: command tx timeout
[ 1151.103167][ T5137] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1151.118519][ T5137] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1151.126438][ T5137] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1151.367026][ T5137] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1151.381174][ T5137] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1151.963626][ T5137] Bluetooth: hci5: command tx timeout
[ 1152.087377][T17850] chnl_net:caif_netlink_parms(): no params data found
[ 1152.120144][T17904] loop3: detected capacity change from 0 to 2048
[ 1152.467858][T17904] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1154.881353][ T5137] Bluetooth: hci2: command tx timeout
[ 1154.889415][ T5826] Bluetooth: hci5: command tx timeout
[ 1155.240160][T17892] lo speed is unknown, defaulting to 1000
[ 1155.502457][T17850] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1155.509825][T17850] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1155.521320][T17935] loop3: detected capacity change from 0 to 256
[ 1155.533628][T17850] bridge_slave_0: entered allmulticast mode
[ 1155.546305][T17935] exfat: Deprecated parameter 'utf8'
[ 1155.570500][T17850] bridge_slave_0: entered promiscuous mode
[ 1155.647914][T17935] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[ 1155.698649][T17850] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1155.714904][T17850] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1155.889717][T17850] bridge_slave_1: entered allmulticast mode
[ 1155.898635][T17850] bridge_slave_1: entered promiscuous mode
[ 1155.955285][T17850] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1157.105219][T17853] Bluetooth: hci5: command tx timeout
[ 1157.111046][T17853] Bluetooth: hci2: command tx timeout
[ 1157.450699][T17850] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1157.673957][T17850] team0: Port device team_slave_0 added
[ 1157.732997][T17850] team0: Port device team_slave_1 added
[ 1158.099986][T17850] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1158.112772][T17850] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1158.187409][T17850] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1158.234206][T17850] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1158.257535][T17850] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1158.336892][T17850] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1158.474845][T17968] overlayfs: failed to clone upperpath
[ 1158.501155][T17951] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2625'.
[ 1158.685978][T17951] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1159.240211][T17951] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1159.307848][ T5826] Bluetooth: hci2: command tx timeout
[ 1159.778043][ T5977] bridge_slave_1: left allmulticast mode
[ 1159.783718][ T5977] bridge_slave_1: left promiscuous mode
[ 1159.817919][ T5977] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1159.849849][ T5977] bridge_slave_0: left allmulticast mode
[ 1159.859782][ T5977] bridge_slave_0: left promiscuous mode
[ 1159.876701][ T5977] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1160.031683][ T5977] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1160.042614][ T5977] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1160.052933][ T5977] bond0 (unregistering): Released all slaves
[ 1160.085725][T17892] chnl_net:caif_netlink_parms(): no params data found
[ 1160.146262][T17850] hsr_slave_0: entered promiscuous mode
[ 1160.153880][T17850] hsr_slave_1: entered promiscuous mode
[ 1160.849705][T17995] loop9: detected capacity change from 0 to 512
[ 1161.850011][T17853] Bluetooth: hci2: command tx timeout
[ 1161.913236][T17995] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1161.925843][T17995] ext4 filesystem being mounted at /222/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1161.959092][T17994] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[ 1162.105429][T12017] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1162.126905][ T5977] hsr_slave_0: left promiscuous mode
[ 1162.145152][ T5977] hsr_slave_1: left promiscuous mode
[ 1162.176756][ T5977] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1162.201264][ T5977] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1163.098030][T18011] overlayfs: "xino" feature enabled using 3 upper inode bits.
[ 1163.138241][T18011] overlayfs: "xino" feature enabled using 3 upper inode bits.
[ 1163.262186][T18011] overlayfs: d_ino too big (., ino=4611686018427387905, xinobits=3)
[ 1163.270810][T18011] overlayfs: d_ino too big (.., ino=4611686018427387905, xinobits=3)
[ 1163.281856][T18011] overlayfs: d_ino too big (231, ino=9223372036854777062, xinobits=3)
[ 1163.292048][T18011] overlayfs: d_ino too big (syzcgroup, ino=9223372036854775816, xinobits=3)
[ 1163.302649][T18011] overlayfs: d_ino too big (syz-inputs, ino=9223372036854775815, xinobits=3)
[ 1163.314315][T18011] overlayfs: d_ino too big (sys, ino=9223372036854775814, xinobits=3)
[ 1163.324160][T18011] overlayfs: d_ino too big (selinux, ino=9223372036854775813, xinobits=3)
[ 1163.334175][T18011] overlayfs: d_ino too big (proc, ino=9223372036854775812, xinobits=3)
[ 1163.346394][T18011] overlayfs: d_ino too big (dev, ino=4611686018427387912, xinobits=3)
[ 1163.359876][T18011] overlayfs: d_ino too big (kernel, ino=4611686018427389298, xinobits=3)
[ 1164.581957][ T5977] team0 (unregistering): Port device team_slave_1 removed
[ 1164.621810][ T5977] team0 (unregistering): Port device team_slave_0 removed
[ 1167.077703][T17892] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1167.127046][T17892] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1167.155350][T17892] bridge_slave_0: entered allmulticast mode
[ 1167.179052][T17892] bridge_slave_0: entered promiscuous mode
[ 1167.210057][T17892] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1167.210170][T17892] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1167.210345][T17892] bridge_slave_1: entered allmulticast mode
[ 1167.212133][T17892] bridge_slave_1: entered promiscuous mode
[ 1167.473443][T18036] loop9: detected capacity change from 0 to 4096
[ 1167.486038][T18036] ntfs3(loop9): Different NTFS sector size (2048) and media sector size (512).
[ 1167.769384][T17892] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1167.903460][T18044] overlayfs: failed to clone lowerpath
[ 1167.918989][T17892] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1168.067504][T18036] ntfs3(loop9): Failed to initialize $Extend/$Reparse.
[ 1168.350150][T18036] ntfs3(loop9): ino=5, mi_enum_attr
[ 1168.491979][T18036] ntfs3(loop9): ino=5, "/" mi_enum_attr
[ 1170.205060][T18036] ntfs3(loop9): Mark volume as dirty due to NTFS errors
[ 1170.533743][T17892] team0: Port device team_slave_0 added
[ 1170.542185][T17892] team0: Port device team_slave_1 added
[ 1171.915245][ T5977] bridge_slave_1: left allmulticast mode
[ 1171.920953][ T5977] bridge_slave_1: left promiscuous mode
[ 1171.927000][ T5977] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1171.946475][ T5977] bridge_slave_0: left allmulticast mode
[ 1171.952196][ T5977] bridge_slave_0: left promiscuous mode
[ 1171.958166][ T5977] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1172.276920][ T5977] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1172.299619][ T5977] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1172.326553][ T5977] bond0 (unregistering): Released all slaves
[ 1172.359978][T18057] loop9: detected capacity change from 0 to 1024
[ 1172.503512][T17892] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1172.505354][T18057] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1172.522760][T17892] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1172.655453][T17892] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1173.794535][T17892] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1173.823198][T17892] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1173.924848][T17892] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1175.015957][ T5977] hsr_slave_0: left promiscuous mode
[ 1175.037597][ T5977] hsr_slave_1: left promiscuous mode
[ 1175.059292][ T5977] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1175.081464][ T5977] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1175.176237][T12017] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1176.655183][T18081] loop9: detected capacity change from 0 to 32768
[ 1176.707804][T18081] XFS (loop9): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1176.777808][T18081] XFS (loop9): Ending clean mount
[ 1176.791443][T18081] XFS (loop9): Quotacheck needed: Please wait.
[ 1176.831670][ T5977] team0 (unregistering): Port device team_slave_1 removed
[ 1176.887576][T18081] XFS (loop9): Quotacheck: Done.
[ 1177.097169][ T5977] team0 (unregistering): Port device team_slave_0 removed
[ 1177.738783][T12017] XFS (loop9): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1178.079489][T18073] batman_adv: batadv0: Adding interface: gretap1
[ 1178.085953][T18073] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1178.111940][T18073] batman_adv: batadv0: Interface activated: gretap1
[ 1178.885355][T18100] overlayfs: failed to clone upperpath
[ 1179.168774][T18106] overlayfs: failed to clone lowerpath
[ 1179.366471][T18105] Can't find ip_set type bitmap:ip
[ 1179.869783][T17892] hsr_slave_0: entered promiscuous mode
[ 1179.918935][T17892] hsr_slave_1: entered promiscuous mode
[ 1179.968518][T17892] debugfs: 'hsr0' already exists in 'hsr'
[ 1179.990371][T17892] Cannot create hsr debugfs directory
[ 1180.276230][T17850] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1180.402698][T17850] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1181.275916][T17850] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1181.602874][T17850] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1182.716633][   T30] audit: type=1326 audit(2000000012.889:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18132 comm="syz.4.2664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f382a79c629 code=0x7ffc0000
[ 1183.012734][   T30] audit: type=1326 audit(2000000012.889:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18132 comm="syz.4.2664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f382a79c629 code=0x7ffc0000
[ 1184.937304][   T30] audit: type=1326 audit(2000000012.889:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18132 comm="syz.4.2664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f382a79c629 code=0x7ffc0000
[ 1184.960207][   T30] audit: type=1326 audit(2000000012.889:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18132 comm="syz.4.2664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f382a79c629 code=0x7ffc0000
[ 1184.984323][   T30] audit: type=1326 audit(2000000012.889:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18132 comm="syz.4.2664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f382a79c629 code=0x7ffc0000
[ 1185.052918][   T30] audit: type=1326 audit(2000000012.889:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18132 comm="syz.4.2664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f382a79c629 code=0x7ffc0000
[ 1185.152876][   T30] audit: type=1326 audit(2000000012.889:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18132 comm="syz.4.2664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f382a79c629 code=0x7ffc0000
[ 1185.176350][T18152] loop9: detected capacity change from 0 to 1024
[ 1185.543233][   T30] audit: type=1326 audit(2000000012.889:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18132 comm="syz.4.2664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f382a79c629 code=0x7ffc0000
[ 1185.813876][   T30] audit: type=1326 audit(2000000012.889:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18132 comm="syz.4.2664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f382a79c629 code=0x7ffc0000
[ 1185.894629][   T30] audit: type=1326 audit(2000000012.889:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18132 comm="syz.4.2664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f382a79c629 code=0x7ffc0000
[ 1186.052569][T14907] hfsplus: b-tree write err: -5, ino 25
[ 1186.067223][T14907] hfsplus: b-tree write err: -5, ino 4
[ 1186.073355][T14907] hfsplus: b-tree write err: -5, ino 2
[ 1186.125318][T17892] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1186.407156][T17850] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1186.429434][T17892] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1187.350122][T17892] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1187.378571][ T5912] IPVS: starting estimator thread 0...
[ 1187.679434][T17892] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1187.682680][T18167] IPVS: using max 26 ests per chain, 62400 per kthread
[ 1187.837607][T17850] 8021q: adding VLAN 0 to HW filter on device team0
[ 1187.946696][T14907] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1187.953888][T14907] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1188.004842][T14907] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1188.012019][T14907] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1189.640120][T17892] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1189.837895][T17892] 8021q: adding VLAN 0 to HW filter on device team0
[ 1191.104436][ T5977] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1191.111592][ T5977] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1191.181616][ T5977] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1191.188846][ T5977] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1192.569910][T17850] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1192.958792][T17850] veth0_vlan: entered promiscuous mode
[ 1194.040321][T17850] veth1_vlan: entered promiscuous mode
[ 1194.906133][T17850] veth0_macvtap: entered promiscuous mode
[ 1195.037877][T17850] veth1_macvtap: entered promiscuous mode
[ 1195.059348][T17850] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1195.071661][T17850] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1195.201541][   T58] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1195.261304][   T58] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1195.870142][   T58] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1195.999275][   T58] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1196.017120][T17892] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1196.097635][  T139] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1196.136579][  T139] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1196.436674][ T5977] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1196.945013][ T5977] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1197.423513][T18252] netlink: 'syz.0.2689': attribute type 10 has an invalid length.
[ 1198.753403][T18266] trusted_key: encrypted_key: insufficient parameters specified
[ 1199.090409][T18252] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[ 1199.142646][T18252] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[ 1200.152601][T18255] bridge_slave_0: left allmulticast mode
[ 1200.166069][T18255] bridge_slave_0: left promiscuous mode
[ 1200.199126][T18255] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1200.317882][T18255] bridge_slave_1: left allmulticast mode
[ 1200.327415][T18255] bridge_slave_1: left promiscuous mode
[ 1200.353600][T18255] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1202.318940][T18255] bond0: (slave bond_slave_0): Releasing backup interface
[ 1202.379224][T18255] bond_slave_0: left promiscuous mode
[ 1202.441974][T18255] bond0: (slave bond_slave_1): Releasing backup interface
[ 1202.458510][T18255] bond_slave_1: left promiscuous mode
[ 1202.492869][T18255] bond0: (slave netdevsim0): Releasing backup interface
[ 1202.530190][T18255] netdevsim netdevsim0 netdevsim0: left promiscuous mode
[ 1202.638779][T18255] bond1: (slave ip6gretap1): Releasing backup interface
[ 1202.704573][T18255] bond2: (slave macvlan2): Releasing backup interface
[ 1202.972545][T18255] bond3: (slave vlan2): Releasing active interface
[ 1204.025586][T18311] loop9: detected capacity change from 0 to 2048
[ 1204.114037][T18318] loop3: detected capacity change from 0 to 256
[ 1204.158656][T17892] veth0_vlan: entered promiscuous mode
[ 1204.187586][T18318] exfat: Deprecated parameter 'utf8'
[ 1204.198396][T18311] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1204.265170][T18318] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[ 1204.279267][T17892] veth1_vlan: entered promiscuous mode
[ 1204.403375][T18322] IPVS: sync thread started: state = BACKUP, mcast_ifn = netdevsim0, syncid = 0, id = 0
[ 1204.916806][T17892] veth0_macvtap: entered promiscuous mode
[ 1206.508762][T17892] veth1_macvtap: entered promiscuous mode
[ 1206.745128][T17892] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1207.501393][T18323] UDF-fs: warning (device loop9): udf_truncate_tail_extent: Too long extent after EOF in inode 1367: i_size: 258048 lbcount: 262144 extent 129+226304
[ 1207.523350][T18340] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2705'.
[ 1207.733083][T17892] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1207.829237][   T58] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1207.922746][T18350] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2705'.
[ 1208.358616][   T58] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1208.367776][   T58] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1208.376496][   T58] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1208.449444][T18349] loop1: detected capacity change from 0 to 2048
[ 1208.707658][T18349] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1208.847802][T18361] IPVS: sync thread started: state = BACKUP, mcast_ifn = netdevsim0, syncid = 0, id = 0
[ 1209.324335][T14902] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1209.492179][T14902] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1211.270711][T18378] lo speed is unknown, defaulting to 1000
[ 1211.276947][T18378] lo speed is unknown, defaulting to 1000
[ 1211.283635][T18378] lo speed is unknown, defaulting to 1000
[ 1211.303416][T18378] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[ 1211.350111][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[ 1211.352205][T18378] lo speed is unknown, defaulting to 1000
[ 1211.356438][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[ 1211.364171][T18378] lo speed is unknown, defaulting to 1000
[ 1211.376338][  T139] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1211.429616][  T139] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1211.467300][T18378] lo speed is unknown, defaulting to 1000
[ 1211.482816][T18378] lo speed is unknown, defaulting to 1000
[ 1211.490614][T18378] lo speed is unknown, defaulting to 1000
[ 1211.498188][T18378] lo speed is unknown, defaulting to 1000
[ 1213.159480][T18398] 9p: Bad value for 'rfdno'
[ 1215.386281][T18403] loop3: detected capacity change from 0 to 4096
[ 1216.760020][T18422] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1218.298155][T18418] netlink: 'syz.9.2720': attribute type 10 has an invalid length.
[ 1218.356754][T18436] overlayfs: failed to clone upperpath
[ 1218.475163][T18437] overlayfs: failed to clone upperpath
[ 1221.543796][T18460] overlayfs: missing 'lowerdir'
[ 1224.404568][T18476] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2730'.
[ 1224.486471][T18476] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2730'.
[ 1224.552691][T18476] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2730'.
[ 1224.562201][T18476] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2730'.
[ 1225.041242][T18489] loop1: detected capacity change from 0 to 4096
[ 1225.621162][T18489] NILFS (loop1): mounting unchecked fs
[ 1225.626662][T18489] NILFS (loop1): recovery required for readonly filesystem
[ 1225.873861][T18493] loop8: detected capacity change from 0 to 32768
[ 1225.985028][T18489] NILFS (loop1): write access will be enabled during recovery
[ 1226.086450][T18489] NILFS (loop1): invalid segment: Checksum error in segment payload
[ 1226.123622][T18489] NILFS (loop1): trying rollback from an earlier position
[ 1226.239796][T18502] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2737'.
[ 1226.266437][T18489] NILFS (loop1): recovery complete
[ 1227.189763][T18508] syzkaller1: entered promiscuous mode
[ 1227.243382][T18508] syzkaller1: entered allmulticast mode
[ 1229.316624][T18514] lo speed is unknown, defaulting to 1000
[ 1229.322666][T18514] lo speed is unknown, defaulting to 1000
[ 1229.328998][T18514] lo speed is unknown, defaulting to 1000
[ 1229.343253][T18514] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[ 1229.366042][T18514] lo speed is unknown, defaulting to 1000
[ 1229.373179][T18514] lo speed is unknown, defaulting to 1000
[ 1229.380483][T18514] lo speed is unknown, defaulting to 1000
[ 1229.387658][T18514] lo speed is unknown, defaulting to 1000
[ 1229.394778][T18514] lo speed is unknown, defaulting to 1000
[ 1229.401947][T18514] lo speed is unknown, defaulting to 1000
[ 1229.606143][T18521] loop9: detected capacity change from 0 to 4096
[ 1229.683620][T18521] UDF-fs: warning (device loop9): udf_load_vrs: No anchor found
[ 1229.691292][T18521] UDF-fs: Scanning with blocksize 512 failed
[ 1229.849695][T18521] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1230.257475][T18539] loop3: detected capacity change from 0 to 512
[ 1230.444314][T18542] loop1: detected capacity change from 0 to 4096
[ 1230.868389][T18542] ntfs3(loop1): Failed to initialize $Extend/$ObjId.
[ 1230.987223][T18539] FAT-fs (loop3): bogus number of FAT sectors
[ 1231.037304][   T30] kauditd_printk_skb: 7 callbacks suppressed
[ 1231.037325][   T30] audit: type=1326 audit(2000000058.088:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18532 comm="syz.4.2747" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f382a79c629 code=0x0
[ 1231.126898][T18539] FAT-fs (loop3): Can't find a valid FAT filesystem
[ 1241.966343][T18629] loop9: detected capacity change from 0 to 1024
[ 1242.085962][T18629] hfsplus: request for non-existent node 3 in B*Tree
[ 1242.131332][T18629] hfsplus: request for non-existent node 3 in B*Tree
[ 1242.155493][T18629] hfsplus: invalid length 28418 has been corrected to 255
[ 1242.242072][T18629] hfsplus: invalid length 28418 has been corrected to 255
[ 1242.275022][T18635] loop1: detected capacity change from 0 to 1024
[ 1242.374719][T18635] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[ 1242.426895][T18635] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[ 1242.436552][T18635] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[ 1242.505624][T18635] EXT4-fs error (device loop1): ext4_get_journal_inode:5865: comm syz.1.2770: inode #63: comm syz.1.2770: iget: illegal inode #
[ 1242.576487][T18635] loop1: lost filesystem error report for type 5 error -117
[ 1242.587347][    C0] EXT4-fs (loop1): error count since last fsck: 1
[ 1242.601080][    C0] EXT4-fs (loop1): initial error at time 2000000068: ext4_get_journal_inode:5865
[ 1242.610258][    C0] EXT4-fs (loop1): last error at time 2000000068: ext4_get_journal_inode:5865
[ 1242.621767][T18635] EXT4-fs (loop1): no journal found
[ 1242.645886][T18635] EXT4-fs (loop1): can't get journal size
[ 1242.687708][T18635] EXT4-fs (loop1): failed to initialize system zone (-22)
[ 1242.805643][T18635] EXT4-fs (loop1): mount failed
[ 1242.825736][T18647] futex_wake_op: syz.9.2773 tries to shift op by -2048; fix this program
[ 1245.008987][T18658] loop3: detected capacity change from 0 to 4096
[ 1245.121103][T18658] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[ 1245.536841][T18677] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1246.575763][T18684] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2780'.
[ 1247.230146][T18658] ntfs3(loop3): Failed to read $UpCase (-4).
[ 1247.739020][T18692] loop1: detected capacity change from 0 to 32768
[ 1247.861655][T18692] JBD2: Ignoring recovery information on journal
[ 1248.414484][T18692] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[ 1249.663051][T18712] loop8: detected capacity change from 0 to 3
[ 1249.740800][T18712] bio_check_eod: 240 callbacks suppressed
[ 1249.740821][T18712] syz.8.2787: attempt to access beyond end of device
[ 1249.740821][T18712] loop8: rw=2048, sector=0, nr_sectors = 8 limit=3
[ 1249.889098][T18712] SQUASHFS error: Failed to read block 0x0: -5
[ 1250.229298][T18712] unable to read squashfs_super_block
[ 1250.482947][T18719] netlink: 'syz.9.2790': attribute type 27 has an invalid length.
[ 1251.873735][T17850] ocfs2: Unmounting device (7,1) on (node local)
[ 1253.885655][T18738] loop3: detected capacity change from 0 to 1024
[ 1254.182180][T18738] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1254.589511][T18759] loop9: detected capacity change from 0 to 32768
[ 1254.637935][T18759] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 1254.647247][T18759] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 1254.726139][T18759] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[ 1254.737096][ T5930] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 1254.747700][ T5930] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 1255.171417][T12020] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1255.191590][ T5930] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 415ms
[ 1255.297424][ T5930] gfs2: fsid=syz:syz.0: jid=0: Done
[ 1255.322688][T18779] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2803'.
[ 1255.332157][T18759] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 1255.340841][T18779] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2803'.
[ 1255.350319][T18779] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2803'.
[ 1255.360231][T18779] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2803'.
[ 1255.369399][T18779] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2803'.
[ 1259.490575][ T5891] usb 4-1: new full-speed USB device number 22 using dummy_hcd
[ 1260.590228][ T5891] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1260.611741][ T5891] usb 4-1: not running at top speed; connect to a high speed hub
[ 1260.624716][ T5891] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1260.637341][ T5891] usb 4-1: New USB device found, idVendor=0460, idProduct=0004, bcdDevice=96.31
[ 1260.654711][ T5891] usb 4-1: New USB device strings: Mfr=1, Product=84, SerialNumber=3
[ 1260.776963][ T5891] usb 4-1: Product: syz
[ 1260.790122][ T5891] usb 4-1: Manufacturer: syz
[ 1260.814691][ T5891] usb 4-1: SerialNumber: syz
[ 1260.858432][ T5891] usb 4-1: config 0 descriptor??
[ 1261.070281][ T5891] usb 4-1: can't set config #0, error -71
[ 1261.119623][ T5891] usb 4-1: USB disconnect, device number 22
[ 1261.528964][T18820] TCP: TCP_TX_DELAY enabled
[ 1262.957433][T18842] loop3: detected capacity change from 0 to 512
[ 1263.061969][T18842] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1263.606103][T18842] EXT4-fs (loop3): 1 truncate cleaned up
[ 1263.613711][T18842] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1263.658839][T18839] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.2817: bg 0: block 4: invalid block bitmap
[ 1265.437808][T12020] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1266.855432][ T5930] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[ 1267.349639][T18874] loop3: detected capacity change from 0 to 4096
[ 1268.418917][T18874] ntfs3(loop3): ino=0, ni_load_mi_ex
[ 1268.477638][ T5930] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 17, changing to 8
[ 1268.502307][ T5930] usb 9-1: New USB device found, idVendor=054c, idProduct=0268, bcdDevice= 0.00
[ 1268.511412][ T5930] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1268.536001][T18874] ntfs3(loop3): ino=0, ni_load_mi_ex
[ 1268.537710][ T5930] usb 9-1: config 0 descriptor??
[ 1268.606259][T18874] ntfs3(loop3): Failed to load $MFT (-22).
[ 1271.068148][ T5930] usbhid 9-1:0.0: can't add hid device: -71
[ 1271.075139][ T5930] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[ 1271.107697][ T5930] usb 9-1: USB disconnect, device number 3
[ 1273.652800][T18949] loop8: detected capacity change from 0 to 256
[ 1273.687647][T18951] netlink: 'syz.1.2849': attribute type 10 has an invalid length.
[ 1273.877717][T12632] IPVS: starting estimator thread 0...
[ 1274.522170][T18949] exfat: Deprecated parameter 'utf8'
[ 1274.680594][T18954] IPVS: using max 28 ests per chain, 67200 per kthread
[ 1274.692944][T18949] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[ 1275.951543][T17853] Bluetooth: Wrong link type (-71)
[ 1276.025426][T18986] netlink: 'syz.8.2860': attribute type 28 has an invalid length.
[ 1277.838956][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[ 1277.852550][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[ 1279.306688][T19015] loop1: detected capacity change from 0 to 256
[ 1279.361132][T19015] exfat: Deprecated parameter 'utf8'
[ 1279.482658][T19015] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[ 1280.075105][ T5826] Bluetooth: hci5: command 0x0406 tx timeout
[ 1282.383345][T19075] loop1: detected capacity change from 0 to 256
[ 1282.438826][T19075] exfat: Deprecated parameter 'utf8'
[ 1282.602672][    T9] usb 10-1: new high-speed USB device number 15 using dummy_hcd
[ 1282.623883][T19075] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[ 1283.497551][    T9] usb 10-1: Using ep0 maxpacket: 8
[ 1283.630093][    T9] usb 10-1: New USB device found, idVendor=04b4, idProduct=8613, bcdDevice=95.8f
[ 1284.323282][    T9] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=1
[ 1284.331400][    T9] usb 10-1: Product: syz
[ 1284.344745][    T9] usb 10-1: Manufacturer: syz
[ 1284.349453][    T9] usb 10-1: SerialNumber: syz
[ 1284.362460][    T9] usb 10-1: config 0 descriptor??
[ 1284.372678][    T9] usbtest 10-1:0.0: FX2 device
[ 1284.378097][    T9] usbtest 10-1:0.0: high-speed {control bulk-in bulk-out} tests (+alt)
[ 1284.630929][ T5930] usb 10-1: USB disconnect, device number 15
[ 1286.752181][T19124] binder: 19122:19124 ioctl c00c6211 0 returned -14
[ 1287.883761][T19134] netlink: 200 bytes leftover after parsing attributes in process `syz.0.2908'.
[ 1290.332488][ T5977] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1291.943788][T19195] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2927'.
[ 1292.155669][T19201] lo speed is unknown, defaulting to 1000
[ 1292.446436][T19211] loop3: detected capacity change from 0 to 256
[ 1292.960531][T19222] random: crng reseeded on system resumption
[ 1292.977263][T19224] netlink: 'syz.4.2939': attribute type 3 has an invalid length.
[ 1295.061975][T19257] usb usb8: usbfs: process 19257 (syz.1.2948) did not claim interface 0 before use
[ 1295.238436][T10090] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[ 1295.406074][T19274] loop9: detected capacity change from 0 to 256
[ 1295.422170][T10090] usb 4-1: Using ep0 maxpacket: 16
[ 1295.432589][T19274] exfat: Deprecated parameter 'utf8'
[ 1295.463063][T10090] usb 4-1: config 4 has an invalid interface number: 28 but max is 0
[ 1295.481726][T10090] usb 4-1: config 4 has no interface number 0
[ 1295.494067][T19274] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[ 1295.494977][T10090] usb 4-1: config 4 interface 28 has no altsetting 0
[ 1295.525917][T10090] usb 4-1: New USB device found, idVendor=045e, idProduct=04de, bcdDevice=ca.7f
[ 1295.543228][T10090] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1295.575480][T10090] usb 4-1: Product: syz
[ 1295.579717][T10090] usb 4-1: Manufacturer: syz
[ 1295.826455][T10090] usb 4-1: SerialNumber: syz
[ 1296.566458][T19297] loop8: detected capacity change from 0 to 256
[ 1296.756474][T10090] usb 4-1: USB disconnect, device number 23
[ 1297.540442][T19314] loop1: detected capacity change from 0 to 512
[ 1298.285737][T19314] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[ 1298.458760][T19314] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2967: bg 0: block 255: padding at end of block bitmap is not set
[ 1298.520647][T19314] loop1: lost filesystem error report for type 5 error -117
[ 1298.530814][T19314] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6687: Corrupt filesystem
[ 1298.538320][    C1] EXT4-fs (loop1): error count since last fsck: 1
[ 1298.538345][    C1] EXT4-fs (loop1): initial error at time 2000000121: ext4_validate_block_bitmap:441
[ 1298.538385][    C1] EXT4-fs (loop1): last error at time 2000000121: ext4_validate_block_bitmap:441
[ 1298.689353][T19314] loop1: lost filesystem error report for type 5 error -117
[ 1298.689859][T19314] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.2967: invalid indirect mapped block 1 (level 1)
[ 1298.739653][T19314] loop1: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1298.782177][T19314] EXT4-fs (loop1): 1 truncate cleaned up
[ 1298.811484][T19314] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1299.047523][T19345] loop9: detected capacity change from 0 to 256
[ 1299.224608][T17850] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1299.745003][T19366] ip6_vti0 speed is unknown, defaulting to 1000
[ 1299.791899][T19366] ip6_vti0 speed is unknown, defaulting to 1000
[ 1299.855227][T19366] ip6_vti0 speed is unknown, defaulting to 1000
[ 1299.942978][T10090] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[ 1300.135212][T10090] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 1300.151689][T19377] random: crng reseeded on system resumption
[ 1300.187325][T19378] loop1: detected capacity change from 0 to 1024
[ 1300.199261][T19338] loop8: detected capacity change from 0 to 32768
[ 1300.215717][T10090] usb 4-1: New USB device found, idVendor=046a, idProduct=0027, bcdDevice= 0.00
[ 1300.251573][T10090] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1300.260123][T19378] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1300.348627][T19378] ext4 filesystem being mounted at /47/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1300.349653][T10090] usb 4-1: config 0 descriptor??
[ 1300.380175][T19338] JBD2: Ignoring recovery information on journal
[ 1300.487033][T19378] EXT4-fs error (device loop1): ext4_free_blocks:6726: comm syz.1.2988: Freeing blocks not in datazone - block = 0, count = 16
[ 1300.609850][T19338] ocfs2: Mounting device (7,8) on (node local, slot 0) with ordered data mode.
[ 1300.657717][T19378] EXT4-fs (loop1): Remounting filesystem read-only
[ 1300.690439][T19391] loop9: detected capacity change from 0 to 128
[ 1300.743336][T19338] 
[ 1300.745687][T19338] ======================================================
[ 1300.752693][T19338] WARNING: possible circular locking dependency detected
[ 1300.759702][T19338] syzkaller #0 Tainted: G             L     
[ 1300.765669][T19338] ------------------------------------------------------
[ 1300.772674][T19338] syz.8.2974/19338 is trying to acquire lock:
[ 1300.778725][T19338] ffff88807a0606f8 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_calc_xattr_init+0x20a/0xd90
[ 1300.788859][T19338] 
[ 1300.788859][T19338] but task is already holding lock:
[ 1300.796306][T19338] ffff88807c9eed80 (&ocfs2_sysfile_lock_key[INODE_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x16a/0x4940
[ 1300.809712][T19338] 
[ 1300.809712][T19338] which lock already depends on the new lock.
[ 1300.809712][T19338] 
[ 1300.820098][T19338] 
[ 1300.820098][T19338] the existing dependency chain (in reverse order) is:
[ 1300.829100][T19338] 
[ 1300.829100][T19338] -> #3 (&ocfs2_sysfile_lock_key[INODE_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}:
[ 1300.839707][T19338]        down_write+0x96/0x200
[ 1300.844470][T19338]        ocfs2_evict_inode+0x1539/0x44e0
[ 1300.850115][T19338]        evict+0x61e/0xb10
[ 1300.854536][T19338]        filename_unlinkat+0x43f/0x610
[ 1300.860021][T19338]        __se_sys_unlink+0x2e/0x140
[ 1300.865218][T19338]        do_syscall_64+0x14d/0xf80
[ 1300.870332][T19338]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1300.876757][T19338] 
[ 1300.876757][T19338] -> #2 (&ocfs2_sysfile_lock_key[ORPHAN_DIR_SYSTEM_INODE]){+.+.}-{4:4}:
[ 1300.887366][T19338]        down_write+0x96/0x200
[ 1300.892131][T19338]        ocfs2_del_inode_from_orphan+0x12e/0x7a0
[ 1300.898460][T19338]        ocfs2_dio_end_io+0x543/0x1210
[ 1300.903931][T19338]        dio_complete+0x25b/0x790
[ 1300.908969][T19338]        __blockdev_direct_IO+0x2cb0/0x32f0
[ 1300.914862][T19338]        ocfs2_direct_IO+0x251/0x2c0
[ 1300.920140][T19338]        generic_file_direct_write+0x1db/0x3e0
[ 1300.926305][T19338]        __generic_file_write_iter+0x11d/0x230
[ 1300.932459][T19338]        ocfs2_file_write_iter+0x1663/0x1ed0
[ 1300.938443][T19338]        vfs_write+0x61d/0xb90
[ 1300.943193][T19338]        ksys_write+0x150/0x270
[ 1300.948032][T19338]        do_syscall_64+0x14d/0xf80
[ 1300.953145][T19338]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1300.959548][T19338] 
[ 1300.959548][T19338] -> #1 (&ocfs2_file_ip_alloc_sem_key){++++}-{4:4}:
[ 1300.968327][T19338]        down_write+0x96/0x200
[ 1300.973078][T19338]        ocfs2_try_remove_refcount_tree+0xb6/0x340
[ 1300.979616][T19338]        ocfs2_truncate_file+0xdf3/0x1540
[ 1300.985334][T19338]        ocfs2_setattr+0x15e5/0x1cc0
[ 1300.990614][T19338]        notify_change+0xc1a/0xf40
[ 1300.995717][T19338]        do_truncate+0x1c2/0x250
[ 1301.000644][T19338]        path_openat+0x2f89/0x3860
[ 1301.005836][T19338]        do_file_open+0x23e/0x4a0
[ 1301.010864][T19338]        do_sys_openat2+0x113/0x200
[ 1301.016062][T19338]        __x64_sys_openat+0x138/0x170
[ 1301.021438][T19338]        do_syscall_64+0x14d/0xf80
[ 1301.026637][T19338]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1301.033042][T19338] 
[ 1301.033042][T19338] -> #0 (&oi->ip_xattr_sem){++++}-{4:4}:
[ 1301.040892][T19338]        __lock_acquire+0x15a5/0x2cf0
[ 1301.046266][T19338]        lock_acquire+0xf0/0x2e0
[ 1301.051196][T19338]        down_read+0x47/0x2e0
[ 1301.055867][T19338]        ocfs2_calc_xattr_init+0x20a/0xd90
[ 1301.061668][T19338]        ocfs2_mknod+0xf51/0x2290
[ 1301.066695][T19338]        ocfs2_mkdir+0x181/0x490
[ 1301.071723][T19338]        vfs_mkdir+0x413/0x630
[ 1301.076477][T19338]        filename_mkdirat+0x285/0x510
[ 1301.081838][T19338]        __se_sys_mkdirat+0x35/0x150
[ 1301.087120][T19338]        do_syscall_64+0x14d/0xf80
[ 1301.092234][T19338]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1301.098644][T19338] 
[ 1301.098644][T19338] other info that might help us debug this:
[ 1301.098644][T19338] 
[ 1301.108858][T19338] Chain exists of:
[ 1301.108858][T19338]   &oi->ip_xattr_sem --> &ocfs2_sysfile_lock_key[ORPHAN_DIR_SYSTEM_INODE] --> &ocfs2_sysfile_lock_key[INODE_ALLOC_SYSTEM_INODE]
[ 1301.108858][T19338] 
[ 1301.127910][T19338]  Possible unsafe locking scenario:
[ 1301.127910][T19338] 
[ 1301.135345][T19338]        CPU0                    CPU1
[ 1301.140699][T19338]        ----                    ----
[ 1301.146052][T19338]   lock(&ocfs2_sysfile_lock_key[INODE_ALLOC_SYSTEM_INODE]);
[ 1301.153421][T19338]                                lock(&ocfs2_sysfile_lock_key[ORPHAN_DIR_SYSTEM_INODE]);
[ 1301.163220][T19338]                                lock(&ocfs2_sysfile_lock_key[INODE_ALLOC_SYSTEM_INODE]);
[ 1301.173114][T19338]   rlock(&oi->ip_xattr_sem);
[ 1301.177781][T19338] 
[ 1301.177781][T19338]  *** DEADLOCK ***
[ 1301.177781][T19338] 
[ 1301.185907][T19338] 3 locks held by syz.8.2974/19338:
[ 1301.191092][T19338]  #0: ffff88803ac84420 (sb_writers#24){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[ 1301.200354][T19338]  #1: ffff88807a0609c0 (&type->i_mutex_dir_key#18/1){+.+.}-{4:4}, at: filename_create+0x200/0x370
[ 1301.211087][T19338]  #2: ffff88807c9eed80 (&ocfs2_sysfile_lock_key[INODE_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x16a/0x4940
[ 1301.224850][T19338] 
[ 1301.224850][T19338] stack backtrace:
[ 1301.230726][T19338] CPU: 0 UID: 0 PID: 19338 Comm: syz.8.2974 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1301.230760][T19338] Tainted: [L]=SOFTLOCKUP
[ 1301.230770][T19338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1301.230784][T19338] Call Trace:
[ 1301.230795][T19338]  <TASK>
[ 1301.230806][T19338]  dump_stack_lvl+0xe8/0x150
[ 1301.230839][T19338]  print_circular_bug+0x2e1/0x300
[ 1301.230876][T19338]  check_noncircular+0x12e/0x150
[ 1301.230915][T19338]  __lock_acquire+0x15a5/0x2cf0
[ 1301.230957][T19338]  lock_acquire+0xf0/0x2e0
[ 1301.230984][T19338]  ? ocfs2_calc_xattr_init+0x20a/0xd90
[ 1301.231011][T19338]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1301.231042][T19338]  down_read+0x47/0x2e0
[ 1301.231067][T19338]  ? ocfs2_calc_xattr_init+0x20a/0xd90
[ 1301.231092][T19338]  ? ocfs2_calc_xattr_init+0x1e0/0xd90
[ 1301.231123][T19338]  ocfs2_calc_xattr_init+0x20a/0xd90
[ 1301.231154][T19338]  ? __pfx_ocfs2_calc_xattr_init+0x10/0x10
[ 1301.231182][T19338]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1301.231210][T19338]  ? ocfs2_init_security_get+0x139/0x1a0
[ 1301.231240][T19338]  ocfs2_mknod+0xf51/0x2290
[ 1301.231273][T19338]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1301.231299][T19338]  ? kasan_save_track+0x4f/0x80
[ 1301.231328][T19338]  ? __pfx_ocfs2_mknod+0x10/0x10
[ 1301.231363][T19338]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1301.231391][T19338]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1301.231416][T19338]  ? do_raw_spin_unlock+0xf5/0x210
[ 1301.231440][T19338]  ? _raw_spin_unlock+0x28/0x50
[ 1301.231467][T19338]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1301.231494][T19338]  ? ocfs2_inode_lock_full_nested+0xaec/0x1bd0
[ 1301.231522][T19338]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1301.231548][T19338]  ? __lock_acquire+0x6b5/0x2cf0
[ 1301.231579][T19338]  ? kasan_quarantine_put+0xbb/0x1f0
[ 1301.231600][T19338]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1301.231631][T19338]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1301.231659][T19338]  ? __lock_acquire+0x6b5/0x2cf0
[ 1301.231688][T19338]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1301.231715][T19338]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1301.231742][T19338]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1301.231768][T19338]  ? do_raw_spin_unlock+0xf5/0x210
[ 1301.231794][T19338]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1301.231822][T19338]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1301.231848][T19338]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1301.231870][T19338]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1301.231897][T19338]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1301.231925][T19338]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1301.231953][T19338]  ? do_raw_spin_unlock+0xf5/0x210
[ 1301.231978][T19338]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1301.232003][T19338]  ? put_pid+0xef/0x130
[ 1301.232035][T19338]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1301.232063][T19338]  ocfs2_mkdir+0x181/0x490
[ 1301.232100][T19338]  ? __pfx_from_kgid+0x10/0x10
[ 1301.232147][T19338]  ? __pfx_ocfs2_mkdir+0x10/0x10
[ 1301.232182][T19338]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1301.232207][T19338]  ? inode_permission+0x346/0x5f0
[ 1301.232240][T19338]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1301.232266][T19338]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1301.232294][T19338]  vfs_mkdir+0x413/0x630
[ 1301.232321][T19338]  filename_mkdirat+0x285/0x510
[ 1301.232349][T19338]  ? __pfx_filename_mkdirat+0x10/0x10
[ 1301.232377][T19338]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1301.232403][T19338]  ? do_getname+0x151/0x250
[ 1301.232431][T19338]  __se_sys_mkdirat+0x35/0x150
[ 1301.232457][T19338]  do_syscall_64+0x14d/0xf80
[ 1301.232490][T19338]  ? trace_irq_disable+0x3b/0x150
[ 1301.232526][T19338]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1301.232552][T19338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1301.232574][T19338] RIP: 0033:0x7f8e61d9c629
[ 1301.232595][T19338] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1301.232613][T19338] RSP: 002b:00007f8e62b80028 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 1301.232636][T19338] RAX: ffffffffffffffda RBX: 00007f8e62015fa0 RCX: 00007f8e61d9c629
[ 1301.232654][T19338] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[ 1301.232672][T19338] RBP: 00007f8e61e32b39 R08: 0000000000000000 R09: 0000000000000000
[ 1301.232686][T19338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1301.232700][T19338] R13: 00007f8e62016038 R14: 00007f8e62015fa0 R15: 00007ffddb257428
[ 1301.232725][T19338]  </TASK>
[ 1301.715337][T19366] infiniband syz2: set active
[ 1301.721839][T19366] infiniband syz2: added ip6_vti0
[ 1301.731847][T19366] workqueue: Failed to create a rescuer kthread for wq "ib_mad1": -EINTR
[ 1301.737563][T19366] infiniband syz2: Couldn't open port 1
[ 1301.768281][ T5987] ip6_vti0 speed is unknown, defaulting to 1000
[ 1301.777760][T19338] OCFS2: ERROR (device loop8): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #17056 has bit count 2061 but max bitmap bits of 2048
[ 1301.801496][T10090] cherry 0003:046A:0027.001A: unknown main item tag 0x0
[ 1301.838173][T10090] cherry 0003:046A:0027.001A: unknown main item tag 0x0
[ 1301.857128][T17850] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 1301.885920][T10090] cherry 0003:046A:0027.001A: unknown main item tag 0x0
[ 1301.933335][T19366] RDS/IB: syz2: added
[ 1301.962799][T10090] cherry 0003:046A:0027.001A: unknown main item tag 0x0
[ 1301.969777][T10090] cherry 0003:046A:0027.001A: unknown main item tag 0x0
[ 1301.973560][T19366] smc: adding ib device syz2 with port count 1
[ 1301.982868][T19366] smc:    ib device syz2 port 1 has pnetid ßßßß (user defined)
[ 1301.991200][T19366] ip6_vti0 speed is unknown, defaulting to 1000
[ 1302.016386][    T9] ip6_vti0 speed is unknown, defaulting to 1000
[ 1302.032371][T19338] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 1302.065211][T10090] cherry 0003:046A:0027.001A: unknown main item tag 0x0
[ 1302.074324][T19338] OCFS2: File system is now read-only.
[ 1302.112470][T19338] (syz.8.2974,19338,1):ocfs2_search_chain:1888 ERROR: status = -30
[ 1302.120520][T10090] cherry 0003:046A:0027.001A: unknown main item tag 0x0
[ 1302.139320][T10090] cherry 0003:046A:0027.001A: unknown main item tag 0x0
[ 1302.146699][T19338] (syz.8.2974,19338,1):ocfs2_search_chain:2011 ERROR: status = -30
[ 1302.166009][T10090] cherry 0003:046A:0027.001A: unknown main item tag 0x0
[ 1302.172966][T10090] cherry 0003:046A:0027.001A: unknown main item tag 0x0
[ 1302.187272][T19338] (syz.8.2974,19338,1):ocfs2_claim_suballoc_bits:2098 ERROR: status = -30
[ 1302.219371][T19338] (syz.8.2974,19338,1):ocfs2_claim_suballoc_bits:2151 ERROR: status = -30
[ 1302.227998][T19338] (syz.8.2974,19338,1):ocfs2_claim_new_inode:2392 ERROR: status = -30
[ 1302.241018][T10090] cherry 0003:046A:0027.001A: hidraw0: USB HID vff.fc Device [HID 046a:0027] on usb-dummy_hcd.3-1/input0
[ 1302.289529][T10090] usb 4-1: USB disconnect, device number 24
[ 1302.311950][T19338] (syz.8.2974,19338,1):ocfs2_claim_new_inode:2407 ERROR: status = -30
[ 1302.362714][T19338] (syz.8.2974,19338,1):ocfs2_mknod_locked:642 ERROR: status = -30
[ 1302.405055][T19338] (syz.8.2974,19338,1):ocfs2_mknod:389 ERROR: status = -30
[ 1302.430161][T19407] fido_id[19407]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[ 1302.449620][T19338] (syz.8.2974,19338,1):ocfs2_mknod:506 ERROR: status = -30
[ 1302.464827][T19338] (syz.8.2974,19338,1):ocfs2_mkdir:662 ERROR: status = -30
[ 1302.509755][T19366] ip6_vti0 speed is unknown, defaulting to 1000
[ 1302.585598][T17892] ocfs2: Unmounting device (7,8) on (node local)
[ 1302.888827][T19366] ip6_vti0 speed is unknown, defaulting to 1000
[ 1303.121164][T19366] ip6_vti0 speed is unknown, defaulting to 1000
[ 1303.371476][T19366] ip6_vti0 speed is unknown, defaulting to 1000
[ 1303.621328][T19366] ip6_vti0 speed is unknown, defaulting to 1000