last executing test programs:

4m42.775611169s ago: executing program 1 (id=84):
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000500)='./file2\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="00089aafc727346c3e0d8728525a2641b3b31621730c58dcf8e0ca2e6767a45a978776e9d2c689feab83a160d00a77ae5112cd4e7141cad333d7cbb69dc6b314609d3827059c11066ba0b4b95c12d2d9ff9c8896d9e247bd55f9ff578a14e0e9d0ca07693396b00d2ef44adb4858475a07d5e8fa3ef5b306fe8a5d1cd2d8e06e7f88226ece092c6aabf8870e140124d5a48670513e0c419c99b7c5105959e7a535f12694634cf272490e0000"], 0x81, 0x4ac, &(0x7f00000011c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000002600)='./file1\x00', 0x105042, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x2, 0x13, r0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x5)
pwrite64(r1, &(0x7f0000000140)='2', 0x1, 0x8000c61)

4m40.368870296s ago: executing program 1 (id=90):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0xfffffffe)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000080)='./file0\x00', 0x4400, &(0x7f0000000240)=ANY=[@ANYBLOB='check=strict,session=0x0000000000000024,iocharset=ascii,overriderockperm,overriderockperm,gid=', @ANYRESOCT=0x0, @ANYRES16=0x0], 0xf6, 0xa15, &(0x7f00000002c0)="$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")
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, r3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
close(r7)
ioctl$SIOCSIFHWADDR(r7, 0x8b20, &(0x7f0000000000)={'wlan1\x00', @local})
bind$alg(r7, &(0x7f0000000d00)={0x26, 'aead\x00', 0x0, 0x0, 'rfc4543(rfc4106-gcm-aesni)\x00'}, 0x58)
shmctl$IPC_SET(0x0, 0x1, &(0x7f0000002dc0)={{0x3, 0x0, 0x0, 0x0, 0x0, 0xa3, 0x5}, 0x8, 0x10000, 0x9b, 0x8000, r4, 0x0, 0x8})
ioctl$SNDRV_PCM_IOCTL_PREPARE(0xffffffffffffffff, 0x4140, 0x0)
r8 = accept4$unix(r0, 0x0, 0x0, 0x0)
recvmmsg(r8, &(0x7f0000001680), 0x0, 0x2, 0x0)
recvfrom$unix(r8, &(0x7f00000001c0)=""/236, 0x26, 0x10120, 0x0, 0x0)

4m38.902438158s ago: executing program 1 (id=96):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0xfffffffe)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
r2 = syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0)
syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000080)='./file0\x00', 0x4400, &(0x7f0000000240)=ANY=[@ANYBLOB='check=strict,session=0x0000000000000024,iocharset=ascii,overriderockperm,overriderockperm,gid=', @ANYRESOCT=0x0, @ANYRES16=0x0], 0xf6, 0xa15, &(0x7f00000002c0)="$eJzs3c1vHOd9B/DvrEiJog1VtlVXFWxrJUM2bbMUSdUSBB9qiVxKdPlSkBRgoS0sw5IKQURd2C1gGz3IQNFTjBhBECDJJfAxJwPOIb4EuiXHnHIIkPg/CIxcohwCBju7lJbkvog0RSrK57MYzdvveduZnUe73J0n/CVbWVkppy2uX/rxTlaWh8/5ya8++/yT+vTxrezNnrxa/DQZSFJN+v5Univ9E5ML87M9MrqZXElyOymS7Etj3sH+NWtXUnw7j99bv53ihzncJtnAJhtHTyv8Vdvt8w8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB5KE5Ojo2NFZqbnLr1Z7awcArzL/tXsvixH/S6+7FVskRT1KQMDq0N9Hz50b/fT9X+O55nG2jONkb8H8tFjTx987am+ymr6LhXaEe9/+NHNt5eXr713b1N/28C+Zrvqy/t2rHr3b+/Wkl2ozU0vzk/PnrtQq04vzlfPnj49evLi1GJ1ajq1xcuLS7XZ6sRC7dzS/EJ1aOKl6tjZs6eqtZHL85fmLkyOzNRWN575h/HR0dPVN0b+pXZuYXF+7uQbI4sTF6dnZqbnLpQx9d31mDP1E/Gfp5eqS7Vzs9Xq9RvL1071qmQ9aKztnmJt0HivnMZHx8fHxsbHx06/evbVM6OjfRs2jK6TDRG7f9Kye36yrddu+IYqzf4/M5nOXC7lzVTbPiYymYXMZ7bD/qbV/v/EyVrXclv7/9Ve/vC93UdS9v/PNdae69T/d6hL78fKSiPnraZffbyfD/NRbubtLGc51/LeN85xw+OP25RP9Zu3duPjQmqZy3QWM5/pzOZcuaXa3FLN2ZzO6YzmrVzMVBZTzVSmM5NaFnM5i1lKrTyjJrKQWs5lKfNZSDVDmchLqWYsZ3M2p1JNLSO5nPlcylwuZDLnylyu50b5vJ/qUse7QWP3EzTeJWib+/+Vh/F/gjxo234Nh61aafb/ezsGrKwuDU3sWK0AAACA7fT3v8iBQ0/+/DdJf54tP5efmp6pje52tQAAAIBtVH5d75n6rL++9GwK7/8BAADgUVOUv7ErkgzmaGOp8UuoPfEhAAAAADwiyr//P1efDdaXjqa4eyeUK7tdNwAAAGB79L7Hfs+IYnj19r/Vq4351WZE8z6/g1PTM7WRifmZ18byQnmXgfKXBhty25MU/eXPD17OsUbUscHGfHBtjgP1qLGR18byco43GzL0fH32/FCbyPFG5IuNyBe7RJ6qRwLAo+54l/74fvv/lzPciBg+0rc3Sd+RNj3rqJ4VAB4WvcfY6RlR/OO99//9zWzX9P9P5vofGl8pGMk7eTfLuZrh8tcG5TcO1uT6b582PzO4+zWE0Qz3+DRgNfaXZyoZ7vF5wGDLQC/DPT4RaMTm35NTD/5AAMAOOt6hH95M/z/c8v4/G9//3x1a6JqfFALAQ+HuCPYPcGG32wgArKWXBgAAAAAAAAAAAAAAAAAAAAAAAAAAgO23rXf7H9hi8t82x/V7sMMQbFjY33wOtp7Pd5LsXJ2LbS6rsg35rCTZqeO1cws5mGz5WW17Gu9Nsvvt6rnQ13xJ3Hx7ebeuSAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOykItnTbnsl2ZdkNMnJna/Vg3Nrtyuw8/6pdaW4kzv5IAd2rzoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAI+m5v3/K2nMH2tsSl8lOZHkSpJ/3e06bqc7u12BbbJ/i+la7v9fP+ZZKdLXOOwp+icmF+Zn64e/HPuh8tVnn39Sn1qS77vfcsrAyrrBJZolrI/90eOrS0+UqQYnr71/87/f/a/q5PlUsjfnl6ZmJmcvLLx+L8nTxRdJNY1p1Wp9//fEzz5t0/Iv6i1tb325U+WTM7mx3L9rl7p7ud3cWL42Xi9pqfbm0v/8540PWnY9mWPJ80PJ0NqS/qM+dSjpWPq7lVZ8Xfx/cSDfy5Xy+NefjWKlqB+ivynbv//6jeVrI++8u3y1Q50O5miSq8lA9zp93LL7aHk9aas86yr99VJHy6D6P4d6tLGrlhzHOrThifKUGWy2YW/HNrSqdm5DqeV5r7Tb36jRqQ41eiovtDnSK/uSzjV6ofuRbq/4uvh1cTG/yv+1jP9RqR//E+n86lybRRnZcqZ0jKw0IsuWj7fueGt95O++f1+1bztMDZv1rTUv3krL9b95rLbperRSdL0etZS4udfFuhLXnRVdXhdlj3RoXYrm1adTmmY9DzWiOtTzb/NK0nek21VxQ2/9So8ryt30r7ffvdXX/w+Kofw+t4z/AwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPPyKZE+77ZXkRJKDq+vVZGUT2e7rtKMyWGy2itvq1t1/HgmVzSYo7uROPsiBB1MdAAAAAAAAAHba+cmvPvv8k/pU7G9uav59v5r0JTlYfHd/JhfmZ3tk1J9cSXK7vjzQZn+XP/fX0+Xxe+u362uHN9sSAOB+/TkAAP//mWBg/A==")
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, r4, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
close(r8)
ioctl$SIOCSIFHWADDR(r8, 0x8b20, &(0x7f0000000000)={'wlan1\x00', @local})
bind$alg(r8, &(0x7f0000000d00)={0x26, 'aead\x00', 0x0, 0x0, 'rfc4543(rfc4106-gcm-aesni)\x00'}, 0x58)
shmctl$IPC_SET(0x0, 0x1, &(0x7f0000002dc0)={{0x3, 0x0, 0x0, 0x0, 0x0, 0xa3, 0x5}, 0x8, 0x10000, 0x9b, 0x8000, r5, 0x0, 0x8})
ioctl$SNDRV_PCM_IOCTL_PREPARE(r2, 0x4140, 0x0)
writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000680)="68c8", 0x2}], 0x1)
r9 = accept4$unix(r0, 0x0, 0x0, 0x0)
recvmmsg(r9, &(0x7f0000001680)=[{{0x0, 0x0, &(0x7f0000003380)=[{&(0x7f0000000140)=""/120, 0x78}, {&(0x7f0000000040)=""/40, 0x28}, {&(0x7f0000003300)=""/107, 0x6b}], 0x3}}], 0x4000000000000a1, 0x2, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0xb, 0x11, r0, 0xb9e6e000)
recvfrom$unix(r9, &(0x7f00000001c0)=""/236, 0x26, 0x10120, 0x0, 0x0)

4m36.032717712s ago: executing program 1 (id=99):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x200000, &(0x7f0000000180)={[{@delalloc}, {@noload}, {@acl}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x783, &(0x7f0000001000)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14113e, 0x6ceac77f206eabb9)
write$binfmt_script(r0, &(0x7f0000000080), 0x208e24b)
r1 = open(&(0x7f0000000480)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000500)={0x0, 0x2904c, 0x0, 0x10003, '\x00', [{0x0, 0x0, 0x0, 0x3}, {0xffffffff}]})

4m32.863514659s ago: executing program 1 (id=106):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1c, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB='b\n'], 0x0}, 0x94)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000001c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0xfe, "0062ba7d82000000160000000000f738096304"})
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = syz_open_pts(r0, 0x900)
r2 = dup3(r1, r0, 0x80000)
read$watch_queue(r2, &(0x7f0000001d40)=""/4095, 0xfff)
syz_io_uring_setup(0x1e1e, 0x0, &(0x7f0000002000), 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000580)='net/fib_trie\x00')
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
pread64(r3, &(0x7f0000019180)=""/102355, 0x18fd3, 0xc2a)

4m32.13183361s ago: executing program 1 (id=112):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r4}, 0x10)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)

4m31.689631997s ago: executing program 32 (id=112):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r4}, 0x10)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)

4m9.444390242s ago: executing program 0 (id=153):
setreuid(0x0, 0xee01)
msgctl$IPC_SET(0x0, 0x1, 0x0)
r0 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
get_robust_list(r0, 0x0, 0x0)

4m5.820036597s ago: executing program 0 (id=156):
syz_mount_image$udf(&(0x7f0000000c40), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='noadinicb,nostrict,mode=00000000000000000000004,uid=forget,noadinicb,umask=00000000000000040002000,lastblock=00000000000000000013,undelete,partition=00000000000000000005,\x00'], 0xfe, 0xc11, &(0x7f0000000d00)="$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")
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000001500), 0x20000)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r0, 0xc02c5341, &(0x7f0000001540))

4m5.227626856s ago: executing program 0 (id=159):
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x80048e, &(0x7f0000000700)=ANY=[@ANYBLOB='iocharset=default,noadinicb,gid=forget,gid=ignore,nostrict,gid=', @ANYRESDEC=0x0, @ANYBLOB="2c616e63686f723d30303030000088be0900303030303030303030312c7569643d666f726765742c00215e8c2e42462f3ab5e1f7c0527abbb422be9178aa60681964adb069ae876c4a599d560075ac47c0de1a9bb9146af6433efdcdac853a8e8f16d6bad90ecce0a1fab46f48331e6b3c3208000000334e4da28067a30b3b1dc64bf692c712fc273bc1702008f563765c6f3e7cd97e1369973c2a87f0ecca7320819863179fb85e394a8cf1d62c70d8306633b6958ebf998a0685bc5cdd1f97291328743add4c867115fae1082f8faf482e15eb939968"], 0xfd, 0xc34, &(0x7f0000001080)="$eJzs3U9sHNd9B/DfGy5F0m4rJk5Uu42LTVukMmO5sqSYilW4q5pmG0CWiVDMLQBX5EpdmFoSJNXIbtowvfTQQ4Ci6CEnAq1RIEUDoymKHtnWBZKLD4VPPREtbARFD2wRIKeAxcy+FVf/LMkkJcr+fGzqOzv73sx7M+MZWdCbFwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAxO+8cvb48+lhtwIAeJDOT3/1+AnPfwD4RLng//8BAAAAAAAAAAAAAOCgS1HEE5Fi6fxWmq0+dw2fa3euXpuZmLx9tZFU1Ryoypc/w8+fOHnqSy+Mn+7lh9ffa0/Fa9MXztZfXryytNxaWWnN12c67bnF+dY9b2G39W82Vh2A+pXXr85furRSP/HcyRu+vjb6wdDjR0bPjD9z7Ole2ZmJycnpvjK1wY+891vcaYTHoSjiWKR49vs/Ts2IKGL3x+Iu185+G6k6MVZ1YmZisurIQrvZWS2/nOodiCKi3lep0TtGD+Bc7EojYq1sftngsbJ700vN5ebFhVZ9qrm82l5tL3amUre1ZX/qUcTpFLEeEZtDt25uMIqoRYrvHt5KFyNioHccvlgNDL5zO4p97OM9KNtZH4xYLx6Bc3aADUURr0aKn7xTxFx5zPJPfCHi1TL/MeKtMl+KSOWFcSri/eo6GnnILWcv1KKIPyvP/5mtNF/dD3r3lXNfq3+lc2mxr2zvvvLIPx8epAN+bxqOIprVHX8rffTf7AAAAAAAAAAAAAAAAACw10aiiKcixSv//gfVuOKoxqUfPjP+u6M/3z9m/Mm7bKcs+1xErBX3Nib3UB5CPJWmUnrIY4k/yYajiD/K4/++/bAbAwAAAAAAAAAAAAAAAAAA8IlWxHuR4sV3j6b16J9TvN25XL/QvLjQnRW2N/dvb8707e3t7XrqZiPnbM61nOs5N3Ju5owi18/ZyDmbcy3nes6NnJs5YyDXz9nIOZtzLed6zo2cmzmjluvnbOSczbmWcz3nRs7NnHFA5u4FAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPg4KaKIn0WK73xjK0WKiEbEbHRzY6hXBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4mIZSET+IFPXfa1xfV4uIVP3bdbT85VQ0DpX56WiMl/lSNM7mbFZZa3z7IbSf3RlMRfwoUgwNv339hOfzP9j9dP0yiLe+ufPpl2rdHOh9OfrB0ONHDp8Zn/yVJ++0nG7XgLFz7c7Va/WZicnJ6b7Vtbz3T/etG837Lfam60TEyhtvvt5cWGgtW/hkLNS6C7XY0y2PROztBvduodZdyPereOjtucNC42A0Y2chqnv/be/ZfGyUz//3I8VvvvsfvQd+7/n/c91P15/w8dM/3nn+v3jzhvbp+f9E37oX8+9GBmsRw6tXlgaPRAyvvPHmsfaV5uXW5Vbn1PHjXx4f//LJ44OHIoYvtRdafUu7PlQAAAAAAAAAAAAAAAAAD1Yq4rcjRfNHW6keEdeq8VqjZ8afOfb0QAxU461uGLf12vSFs/WXF68sLbdWVlrz9ZlOe25xvnWvuxuuhnvNTEzuS2fuamSf2z8y/PLi0hvL7cu/v3rb7x8bPntxZXW5OXf7r2MkiohG/5qxqsEzE5NVoxfazU5VdWqPBmYOpiL+M1LMnaqnz+d1efxfGe8N9pXtH/+/1re+Wt6n8X+fumk/KRXx00jxG3/+ZHy+audjccsxy+X+OlKMnf5cLheHynK9NnTfK9AdGViW/d9I8fc/u7Fsr+9P7JR9/v6O7sFXnv/DkeIHf/q9+NW87sb3P+yM/+w//4/dvKF9Ov+f6Vv32A3vK9h118nn/1ikeOmJt+PX8roPe/9HEdvb29+KOJoLX38/xz6d/8/2rRuN7n5/fe+6DwAAAAAAAAAA8MgaTEX8TaR4erKWXsjr7uXv/83fvKF9+vtfv9i3bv4BzVe064MKAAAAAAfEYCrivUhxefXt62Oo+8Z/3zj+87d25l6fSDd9W/053y9U7w3Yyz//6zea9zu7+24DAAAAAAAAAAAAAAAAAADAgZJSES/k+dRn7zKf+kakeOW/n83l0pGyXG8e+NHq1+Hzi51jZxcWFueaq82LC6369FJzrlXW/Uyk2Pqrz+W6RTW/em+++e4c78PbvbnYlyPF5N/2ynbnYu/NTd6dD7w7F3tZ9lOR4r/+7sayvXmsP7tT9kRZ9i8jxdf/6fZlj+yUPVmW/V6k+OHX672yj5Vle+9H7b6TdLgWC63n5hYXbnkVKgAAAAAAAAAAAAAAAAAAANyvwVTEn0SK/7myHmt52H+e/783A3+tV/atb/bN93+Ta9U8/6PV/P93Wv4o8/+P7llPAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg0ZGiiDcjxdL5rbQxVH7uGj7X7ly9NjMxeftqI6mqOVCVL3+Gnz9x8tSXXhg/3csPr7/XnorXpi+crb+8eGVpubWy0pqvz3Tac4vzrXvewm7r7xy6rrHqANSvvH51/tKllfqJ507e8PW10Q+GHj8yemb8mWNP98rOTExOTveVqQ3ex97vq3E7DkURfxEpnv3+j9M/D0UUsftjcZdrZ7+NVJ0YqzoxMzFZdWSh3eysll9O9Q5EEVHvq9ToHaMHcC52pRGxVja/bPBY2b3ppeZy8+JCqz7VXF5tr7YXO1Op29qyP/Uo4nSKWI+IzaFbNzcYRbweKb57eCv9y1DEQO84fPH89FePn7hzO4p97OM9KNtZH4xYLx6Bc3aADUUR/xApfvLO0fjXoYhadH/iCxGv9hd8KSKVF8apiPdvcx3xaKpFEf9Xnv8zW+mdofJ+0LuvnPta/SudS4t9ZXv3lYP0fNi+/2txZA92e+8O+L1pOIr4YXXH30r/5r9rAAAAAAAAAAAAAAAAgAOkiF+OFC++ezRV44Ovjyludy7XLzQvLnSH9fXG/tUj/rDM7e3t7XrqZiPnbM61nOs5N3Ju5owi18/ZyDmbcy3nes6NnJs5YyDXz9nIOZtzLed6zo2cmzmjVsX29va3uvVruX7OtZzrtYiirJ8/b+aMAzJ2DwAAAAAAAAAAAAAAAAAA+Hgpqn9SfOcbW6maS7URMRvd3DAf6Mfe/wcAAP//3sf+xA==")
r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0)
pwrite64(r0, &(0x7f0000000380)="2efafa6d3272de762f", 0x9, 0x0)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
symlink(&(0x7f0000001000)='./file0\x00', &(0x7f00000000c0)='./file0\x00')

4m4.613673165s ago: executing program 0 (id=161):
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000000)='./file0\x00', 0x810082, &(0x7f0000000040)=ANY=[@ANYBLOB="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"], 0x0, 0x2b9, &(0x7f0000000280)="$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")
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x84000, 0x0)

4m3.537846251s ago: executing program 0 (id=162):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'\x00', 0x2})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000000)={0x10000, 0x1d000, 0x2})
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000100)={0x8000000, 0x10000})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f0000000040)={0xdddd0000, 0x10000})

4m2.26004608s ago: executing program 0 (id=164):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x7c8})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000200)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x9)
close_range(r0, 0xffffffffffffffff, 0x0)

4m1.666599999s ago: executing program 33 (id=164):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x7c8})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000200)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x9)
close_range(r0, 0xffffffffffffffff, 0x0)

3m59.675383169s ago: executing program 4 (id=113):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x10400}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x20, 0x0, 0x88, {0x0, 0x10}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
writev(r2, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x56000}], 0x1)
umount2(&(0x7f00000002c0)='./file0\x00', 0x1)

3m58.851453401s ago: executing program 4 (id=169):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000540)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0x8)
shutdown(r0, 0x1)

3m58.764855402s ago: executing program 2 (id=170):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffc}}, &(0x7f0000000300)='syzkaller\x00'}, 0x90)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f0000000700)={[{@quota}, {@max_batch_time={'max_batch_time', 0x3d, 0xb1}}, {@minixdf}, {@norecovery}, {@dioread_lock}]}, 0x3, 0x4f7, &(0x7f0000001580)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x80002, 0x8c)
quotactl_fd$Q_SETQUOTA(r0, 0xffffffff80000800, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000900000000000000213f0000c50000000e800000850000000e00000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000003c0)='signal_generate\x00', r2}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r1}, 0x10)
r3 = openat$uinput(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x12)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
pipe2(&(0x7f00000000c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x80000)
openat$uinput(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
fcntl$setpipe(r4, 0x407, 0x0)
prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000001000/0x4000)=nil)
prctl$PR_SET_MM(0x23, 0x9, &(0x7f0000004000/0x3000)=nil)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000006100)='cmdline\x00')
munmap(&(0x7f0000003000/0x3000)=nil, 0x3000)
read$FUSE(r5, &(0x7f0000000000)={0x2020}, 0x2020)

3m58.527569086s ago: executing program 4 (id=171):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000003c0)='./bus\x00', 0xe, &(0x7f0000000540)={[{@resuid}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1ff}}, {@stripe}, {@noblock_validity}]}, 0x3, 0x451, &(0x7f0000000f80)="$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")
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000180)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x14113e, 0x0)
ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x1000)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events.local\x00', 0x275a, 0x0)

3m58.31745432s ago: executing program 2 (id=172):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(aes-aesni)\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
sendmmsg$inet6(r1, &(0x7f0000003b80)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000280)="e6b50dbf", 0x4}], 0x1}, 0xff03}], 0x1, 0x8000)
pselect6(0x40, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x4, 0x9, 0xfffffffffffffff4, 0x3ddc}, 0x0, &(0x7f0000000240)={0x1f, 0xffffffffffffffff, 0xffffffffffffffff, 0x20, 0x0, 0x100000000}, 0x0, 0x0)

3m57.6474502s ago: executing program 4 (id=173):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8000, 0x20000000019}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$MAP_LOOKUP_ELEM(0x2, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
landlock_create_ruleset(0x0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
sendmsg(0xffffffffffffffff, 0x0, 0x4040851)
read$msr(r2, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000900)}, 0x3)
syz_open_procfs$namespace(0x0, &(0x7f0000000780)='ns/pid\x00')
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid_for_children\x00')
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')

3m57.268083986s ago: executing program 2 (id=174):
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
openat$cgroup_procs(0xffffffffffffffff, &(0x7f00000000c0)='cgroup.procs\x00', 0x2, 0x0)
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x98cf2000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
preadv2(r0, &(0x7f0000001540)=[{0x0}, {&(0x7f0000001380)=""/129, 0x7ffff000}], 0x2, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$alg(0x26, 0x5, 0x0)

3m55.954511715s ago: executing program 2 (id=176):
syz_mount_image$udf(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='noadinicb,nostrict,mode=00000000000000000000004,uid=forget,noadinicb,umask=00000000000000040002000,lastblock=00000000000000000013,undelete,partition=00000000000000000005,\x00', @ANYRESHEX=0x0], 0x43, 0xc18, &(0x7f0000001940)="$eJzs3V1oXOl5B/DnnSOtRto00WYTb9Jm04GUxCj14q/YCi5BzipqA443RFboXkWjDzvDyiMjyY03TYPakhZ6E7o3pTdFNF1ayEWvur2s0mwhoRRKyEV6URA0WfaiF7oIFFo2KufMO9LIli1l/SF59/dbZv9nzjxn/H6MzxyBX50AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACI++7mLJ0+lw24FAPAoXZ780skzvv8B4F3lip//AQAAAAAAAAAAAADgqEtRxLFIMfTaZpqunnfUL7XaN29NjU/sfdhgihS1KKr68lE/dfrM2U+dOz/azXsf/6B9OF6YvHKx8fzi9RtL88vL83ONqXZrdnFu/sDvcL/H326kGoDG9Zduzl29utw4/dyZXS/fGn5j4MljwxfOnzg32q2dGp+YmOyp6et/23/6He62wuOJKKIZKd4afjM1I6IW9z8W+3x2HrbBqhMjVSemxieqjiy0mu2V8sVUy1W1iEbPQWPdMXoEc3FfxiJWy+aXDR4puzd5o7nUnFmYb3yxubTSWmkttlOt09qyP42oxWiKWIuIjYE7364/ivhopHjl5GaaiYiiOw6frBYG79+e2kPo4wGU7Wz0R6zVHoM5O8IGoojLkeLnrx+P2XLM8iM+HvGFMl+LeLXMz0Sk8oNxNuJne3yOeDz1RRH/FikW02aaq84H3fPKpS83Pt++uthT2z2vPPbfD4/SET831aOImeqMv5ne/sUOAAAAAAAAAAAAAAAAAA/aYBTxnUjxx8/+XrWuOKp16e+7MPqeF3+7d834M/u8T1n7XESs1g62Jrc/Lx1OtfK/h9AxDqQeRXwzr//7w8NuDAAAAAAAAAAAAAAAAAAAwLtaES9Giq+cOJ7Wovee4q32tcaV5sxC566w3Xv/du+ZvrW1tdVInRzLOZ1zNedazvWcGzmjlo/POZZzOudqzrWc6zk3ckaRj885lnM652rOtZzrOTdyRl8+PudYzumcqznXcq7n3MgZR+TevQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7yS1KOIXkeLbX9tMkSJiLGI6Ork+cNitAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABK9VTEc5Fi/cV69XytFnElIn6xtbXVfUTEZpn367D7CgAAAAAAAAAAAAAAAAAAAEdWKuJjkeLp/91MjYi4NfzGwJPHhi+cP3FutIgiUlnSW//C5JWLjecXr99Yml9enp9rTLVbs4tz8wf94+qXWu2bt6bGJx5KZ/Y1+JDbP1h/fvHGy0uta19d2fP1ofrFmeWVpebs3i/HYNQipnv3jFQNnhqfqBq90Gq2q0NT7S4NrEWMHbQzAAAAAAAAAAAAAAAAAAAAHBlDqYjPRYqf/ufZ1F033tdZ8/8rnWfFdu2r36h+XUBlIXZnV+/vDzjIdjpoQ0eqhfeNqfGJicme3X39d5aWbUqpiGcixSde+VC1Hj7F0J5r48u695Z118/muuFfK+tWd1XVR6bGJxqXF9snLi4sLM42V5ozC/ONyRvN2QP/4gAAAAAAAAAAAAAAAAAAAAC4h6FUxI8jxX//3b+n7n3n8/r/vs6znvX/v1Utoa/U0+7cVq3tf2+1tr+z/b4Lo0MfffZu+x/G+v+yTSkV8a1IcebHH6rup99d/z99W21Z96eR4s1nP5Lrak+Udc1udzrveLW1MH+yrP2rSPHrb3Vro6q9lmuf3qk9VdYORoq/2Nxd+9Vc+4Gd2tNl7fFI8f3/2rv2gzu1Z8ran0aKf/zbRrd2qKz9/Vx7bKf2udnFhbn9hrWc/+9Gir+5/Dup2+e7zv83qv2V1dty2x1zfu/tBzX/wz37VvO8/kme/+Y+838uUny3/pFc1xn7mfz6U9X/d+b/E5HiP/51d+3VXPv+ndpTB+3WYSvn/zuR4nt/+ZPtPuf5zyO7M0O98/+rfbtz+1NySPP/VM++4dyu2V9yLN6Nll/++kvNhYX5JRs2bNjY3jjsMxOPQvn9/2eR4v+OFal7HZO//9/TebZz/fc/39z5/r9wW247pO//9/fsu5CvWvr7Iuor12/0PxNRX3756yda15vX5q/Nt0+fOvnpT587dfLUuf4nuhd3O1sHHrt3gnL+fxgpfvT3P9r+OWb39d/e1/9Dt+W2Q5r/p3v7tOu65sBD8a5Uzv9fR4qnPvuT7Z8373X93/35//jHduf2378HOv9p5+V95v8DPfuGc7tab2dAAAAAAAAAAAAAHhNDqYg/jxS/+0e/mbpriA7y7//mbstth/Tv/4717Jt7ROsaDjzIAABHSHn998FI8U9bP9hey737+i9+o1vbe/13N0fh/v8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPC4S1HEH0SKodc20/pA+byjfqnVvnlranxi78MGU6SoRVHVl4/6qdNnzn7q3PnRbt77+Aftw/HC5JWLjecXr99Yml9enp9rTLVbs4tz8wd+h/s9/nYj1QA0rr90c+7q1eXG6efO7Hr51vAbA08eG75w/sS50W7t1PjExGRPTV//2/7T75Dusv+JKOIHkeKt4TfT9wYianH/Y7HPZ+dhG6w6MVJ1Ymp8ourIQqvZXilfTLVcVYto9Bw01h2jRzAX92UsYrVsftngkbJ7kzeaS82ZhfnGF5tLK62V1mI71TqtLfvTiFqMpoi1iNgYuPPt+qOIb0WKV05upn8eiCi64/DJy5NfOnlm//bUHkIfD6BsZ6M/Yq32GMzZETYQRfxDpPj568fj+wMRfdF5xMcjvlDmaxGvlvmZiFR+MM5G/GyPzxGPp74o4mykWEyb6fWB8nzQPa9c+nLj8+2riz213fPKY//98Cgd8XNTPYr4YXXG30z/4u81AAAAAAAAAAAAAAAAwBFSxFqk+MqJ46laH7y9prjVvta40pxZ6Czr6679666Z3tra2mqkTo7lnM65mnMt53rOjZxRy8fnHMs5nXM151rO9ZwbOaPIx+ccyzmdczXnWs71nBs5oy8fn3Ms53TO1ZxrOddzbuSMI7J2DwAAAAAAAAAAAAAAAAAAeGepRVHdxf3bX9tMWwOd+0tPRyfX3Q/0He//AwAA///oqXT8")
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)={0x15, 0x65, 0xffff, 0x1000, 0x8, '9P2000.u'}, 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000280)={0x18, 0x0, 0x0, {0xfffffffffffffffd}}, 0x18)
write$FUSE_INIT(r2, &(0x7f00000001c0)={0x50, 0x0, 0x0, {0x7, 0x21, 0x0, 0x80, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}}, 0x50)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000004380), 0x8008, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)

3m55.60964995s ago: executing program 2 (id=178):
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0xbf, 0x0, &(0x7f0000000100)="b9ff03316844268cb89e14f008004ce0050000000000003377fbacfe1416e000030a86079f03b180ff940c0511e0845013f2325f000709170b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014c0000c0adc043084617d7ecf41effff38cae870b9a1df48b238190da45029", 0x0, 0xfe, 0x60000000}, 0x50)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000500)={'syz_tun\x00', &(0x7f0000000180)=@ethtool_link_settings={0x4d, 0x400, 0xf, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, [0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1]}})
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)={0x3c, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_AUTONEG={0x5, 0x2, 0xfc}, @ETHTOOL_A_LINKMODES_SPEED={0x8, 0x5, 0x64}]}, 0x3c}}, 0x0)

3m52.28797033s ago: executing program 4 (id=186):
rseq(&(0x7f00000004c0)={0x0, 0x0, 0x0, 0x3}, 0x20, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
r0 = epoll_create1(0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/slabinfo\x00', 0x0, 0x0)
epoll_pwait2(r0, &(0x7f00000000c0)=[{}], 0x1, 0x0, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000))
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000080)={0x20000011})

3m51.829157108s ago: executing program 34 (id=186):
rseq(&(0x7f00000004c0)={0x0, 0x0, 0x0, 0x3}, 0x20, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
r0 = epoll_create1(0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/slabinfo\x00', 0x0, 0x0)
epoll_pwait2(r0, &(0x7f00000000c0)=[{}], 0x1, 0x0, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000))
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000080)={0x20000011})

3m51.822631977s ago: executing program 2 (id=188):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback, 0x7}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r0, &(0x7f0000000640), 0x0, 0x20000045, 0x0, 0x0)
r1 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x0)
fchdir(r2)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x200000, &(0x7f0000000380)={[{@noquota}, {@norecovery}, {@resgid}, {@nojournal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@abort}, {@errors_remount}, {@grpid}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x80000000000343}}, {@grpid}, {@noinit_itable}, {@journal_dev={'journal_dev', 0x3d, 0x1}}], [{@subj_user={'subj_user', 0x3d, '}('}}, {@measure}, {@uid_gt}, {@rootcontext={'rootcontext', 0x3d, 'root'}}]}, 0xfd, 0x588, &(0x7f0000000680)="$eJzs3d9rW1UcAPDvTZP96rQdjKE+yGAPTsbStfXHBGHzUXQ40PcZ2qyMpsto0rHWgduDe/FFhiDiQPwDfN/j8B/wrxi4wZBR9EGFyk1vuq7Nj7bLTF0+H8h2Ts5Nzv3m3u/NOfcmTQAD62j6Ty7i1Yj4JokYWdeWj6zx6Opyy4+vT6W3JFZWPv09iTMbnivJ/h/OKq9ExC9fRZzIbe63trg0W6pUyvNZfaw+d2Wstrh08tJcaaY8U748MTl5+u3Jiffefadnsb55/s/vP7n34emvjy1/9/PDQ7eTOBsHs7Y0rh50cWN95Wjpn6xUiLMbFhzvQWe7SdLvFWBHhrI8L0R6DBiJoSzrgRfflxGxAgyoRP7DgGqOA5pz+x7Ng/83Hn2wOgHaHH9+9dxI7GvMjQ4sJ0/NjNL57mgP+k/7GH1w5/bdB3duR+fzEPu71AG25cbNiDiVz28+/iXZ8W/nTjVOHne2sY9Be/+BfrqXjn+SGxGb8j+3Nv6JFuOf4Ra5uxPd8z/3sAfdtJWO/95vOf5dO3SNDmW1lxpjvkJy8VKlfCoiXo6I41HYm9Y7Xc85vXx/pV1bGv/dbPyX3tL+m2PBbD0e5vc+/ZjpUr30LDGv9+hmxGstx7/J2vZPWmz/9PU4v8U+jpTvvN6urXv8z9fKTxFvtNz+T65oJZ2vT4419oex5l6x2R+3jvzarv9+x59u/wOd4x9N1l+vrW2/jx/3/VVu17bT/X9P8lmjvCe771qpXp8fj9iTfJwf3nj/xJPHNuvN5dP4jx9rnf+d9v908vX5FuO/dfhW20W7xv/3ukn6U25usffO0vint7X9t1+4/9EXP+w4/sb2f6tROp7ds5Xj31ZX8FleOwAAAAAAANhtchFxMJJcca2cyxWLhUbb4TiQq1Rr9RMXqwuXp6PxXdnRKOSaV7pH1n0eYjz7PGyzPrGhPhkRhyLi26H9jXpxqlqZ7nfwAAAAAAAAAAAAAAAAAAAAsEsMt/z+/2rbb0P9XjvguWv8sMHefq8F0A9df/K/F7/0BOxKXfMfeGFtP/+dGYAXhfd/GFzyHwaX/IfBtdX8L4w85xUB/nPe/2FwyX8AAAAAAAAAAAAAAAAAAAAAAAAAAADoqfPnzqW3leXH16fS+vTVxYXZ6tWT0+XabHFuYao4VZ2/UpypVmcq5eJUda7b81Wq1SvjE7FwbaxertXHaotLF+aqC5frFy7NlWbKF8oFf2wYAAAAAAAAAAAAAAAAAAAANqktLs2WKpXyvELbwpno5RMmu++VP5Ot0o4ent8tUSj0tNDHgxIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAbPBvAAAA///YBDOu")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4000080)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x42042, 0x19e)
pwritev2(r5, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5405, 0x0, 0x0)
sendfile(r5, r5, 0x0, 0x7a680000)
creat(&(0x7f0000000000)='./file0\x00', 0x6a)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='reno\x00', 0x5)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
shutdown(r0, 0x1)

3m51.536399241s ago: executing program 35 (id=188):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback, 0x7}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r0, &(0x7f0000000640), 0x0, 0x20000045, 0x0, 0x0)
r1 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x0)
fchdir(r2)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x200000, &(0x7f0000000380)={[{@noquota}, {@norecovery}, {@resgid}, {@nojournal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@abort}, {@errors_remount}, {@grpid}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x80000000000343}}, {@grpid}, {@noinit_itable}, {@journal_dev={'journal_dev', 0x3d, 0x1}}], [{@subj_user={'subj_user', 0x3d, '}('}}, {@measure}, {@uid_gt}, {@rootcontext={'rootcontext', 0x3d, 'root'}}]}, 0xfd, 0x588, &(0x7f0000000680)="$eJzs3d9rW1UcAPDvTZP96rQdjKE+yGAPTsbStfXHBGHzUXQ40PcZ2qyMpsto0rHWgduDe/FFhiDiQPwDfN/j8B/wrxi4wZBR9EGFyk1vuq7Nj7bLTF0+H8h2Ts5Nzv3m3u/NOfcmTQAD62j6Ty7i1Yj4JokYWdeWj6zx6Opyy4+vT6W3JFZWPv09iTMbnivJ/h/OKq9ExC9fRZzIbe63trg0W6pUyvNZfaw+d2Wstrh08tJcaaY8U748MTl5+u3Jiffefadnsb55/s/vP7n34emvjy1/9/PDQ7eTOBsHs7Y0rh50cWN95Wjpn6xUiLMbFhzvQWe7SdLvFWBHhrI8L0R6DBiJoSzrgRfflxGxAgyoRP7DgGqOA5pz+x7Ng/83Hn2wOgHaHH9+9dxI7GvMjQ4sJ0/NjNL57mgP+k/7GH1w5/bdB3duR+fzEPu71AG25cbNiDiVz28+/iXZ8W/nTjVOHne2sY9Be/+BfrqXjn+SGxGb8j+3Nv6JFuOf4Ra5uxPd8z/3sAfdtJWO/95vOf5dO3SNDmW1lxpjvkJy8VKlfCoiXo6I41HYm9Y7Xc85vXx/pV1bGv/dbPyX3tL+m2PBbD0e5vc+/ZjpUr30LDGv9+hmxGstx7/J2vZPWmz/9PU4v8U+jpTvvN6urXv8z9fKTxFvtNz+T65oJZ2vT4419oex5l6x2R+3jvzarv9+x59u/wOd4x9N1l+vrW2/jx/3/VVu17bT/X9P8lmjvCe771qpXp8fj9iTfJwf3nj/xJPHNuvN5dP4jx9rnf+d9v908vX5FuO/dfhW20W7xv/3ukn6U25usffO0vint7X9t1+4/9EXP+w4/sb2f6tROp7ds5Xj31ZX8FleOwAAAAAAANhtchFxMJJcca2cyxWLhUbb4TiQq1Rr9RMXqwuXp6PxXdnRKOSaV7pH1n0eYjz7PGyzPrGhPhkRhyLi26H9jXpxqlqZ7nfwAAAAAAAAAAAAAAAAAAAAsEsMt/z+/2rbb0P9XjvguWv8sMHefq8F0A9df/K/F7/0BOxKXfMfeGFtP/+dGYAXhfd/GFzyHwaX/IfBtdX8L4w85xUB/nPe/2FwyX8AAAAAAAAAAAAAAAAAAAAAAAAAAADoqfPnzqW3leXH16fS+vTVxYXZ6tWT0+XabHFuYao4VZ2/UpypVmcq5eJUda7b81Wq1SvjE7FwbaxertXHaotLF+aqC5frFy7NlWbKF8oFf2wYAAAAAAAAAAAAAAAAAAAANqktLs2WKpXyvELbwpno5RMmu++VP5Ot0o4ent8tUSj0tNDHgxIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAbPBvAAAA///YBDOu")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4000080)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x42042, 0x19e)
pwritev2(r5, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5405, 0x0, 0x0)
sendfile(r5, r5, 0x0, 0x7a680000)
creat(&(0x7f0000000000)='./file0\x00', 0x6a)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='reno\x00', 0x5)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
shutdown(r0, 0x1)

13.850955106s ago: executing program 5 (id=676):
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)

13.607172769s ago: executing program 7 (id=679):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000b00)={0x0, 0x28}}, 0x0)
socket$inet(0x2, 0x3, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r3, 0x541c, 0x0)

11.872381935s ago: executing program 7 (id=683):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0xfffffffe)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0)
syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000080)='./file0\x00', 0x4400, &(0x7f0000000240)=ANY=[@ANYBLOB='check=strict,session=0x0000000000000024,iocharset=ascii,overriderockperm,overriderockperm,gid=', @ANYRESOCT=0x0, @ANYRES16=0x0], 0xf6, 0xa15, &(0x7f00000002c0)="$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")
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, r3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
close(r6)
ioctl$SIOCSIFHWADDR(r6, 0x8b20, &(0x7f0000000000)={'wlan1\x00', @local})
writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000680)="68c8", 0x2}], 0x1)

8.335907357s ago: executing program 7 (id=688):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x8c}}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14)
prlimit64(0x0, 0x7, &(0x7f0000000180)={0x2, 0x3}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
syz_open_procfs(0x0, &(0x7f0000000180)='timerslack_ns\x00')

6.513045654s ago: executing program 7 (id=689):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getpid()
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0xd, 0x4, &(0x7f0000001300)=ANY=[@ANYBLOB="180000000d00000000000000000000009500000017000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe}, 0x80)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r2, &(0x7f0000000040)=[{&(0x7f0000000280)="580000001400192340834b80040d8c560a0677bc45ff810500030000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd0000001000014001080800418e00000004fcff", 0x58}], 0x1)

5.919828213s ago: executing program 5 (id=690):
r0 = creat(&(0x7f0000000540)='./file0\x00', 0x0)
close(r0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000850000000800000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000640), 0x4, &(0x7f0000000a40)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})

5.602239137s ago: executing program 5 (id=691):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0xa, 0x4, 0x6, 0x23, 0x0, 0x1, 0x3}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0x4, 0x6, 0x1}, 0x50)
close(0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x10, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}, @ringbuf_query]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10)

5.42468303s ago: executing program 3 (id=692):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000b00)={0x0, 0x28}}, 0x0)
socket$inet(0x2, 0x3, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r3, 0x541c, 0x0)

5.375589251s ago: executing program 5 (id=694):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000000180)={0x10, 0x0, 0x25dfdc03, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="050000000000000000002100000008000300", @ANYRES32=r4], 0x2c}}, 0x0)

4.826081419s ago: executing program 5 (id=696):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0xfffffffe)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0)
syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000080)='./file0\x00', 0x4400, &(0x7f0000000240)=ANY=[@ANYBLOB='check=strict,session=0x0000000000000024,iocharset=ascii,overriderockperm,overriderockperm,gid=', @ANYRESOCT=0x0, @ANYRES16=0x0], 0xf6, 0xa15, &(0x7f00000002c0)="$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")
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, r3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
close(r6)
ioctl$SIOCSIFHWADDR(r6, 0x8b20, &(0x7f0000000000)={'wlan1\x00', @local})
writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000680)="68c8", 0x2}], 0x1)

4.801288669s ago: executing program 6 (id=697):
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000240)={[{@journal_async_commit}, {@max_batch_time={'max_batch_time', 0x3d, 0x6}}, {@inlinecrypt}, {@norecovery}, {@grpquota}, {@nodelalloc}, {@nogrpid}, {@journal_async_commit}, {@nomblk_io_submit}]}, 0x3, 0x58c, &(0x7f0000000cc0)="$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")
ioctl$BTRFS_IOC_DEFRAG(r0, 0x50009402, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000002000)=""/102400, 0x19000)
socket$inet_tcp(0x2, 0x1, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000540)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000300)="c99bfa0018", 0x5)
r1 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mount(0x0, 0x0, &(0x7f0000000180)='hugetlbfs\x00', 0x0, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x9)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102392, 0x18ff8)
prctl$PR_SET_MM_MAP(0x23, 0xe, 0x0, 0x0)
ptrace(0x10, 0x1)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
syz_genetlink_get_family_id$devlink(&(0x7f0000000100), r1)
sendmsg$FOU_CMD_ADD(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x0)
setxattr$trusted_overlay_upper(0x0, 0x0, 0x0, 0x835, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="61123400000000006113500000000000bf200000000000001500000008ffffffbd0301000000000095000000000000006916320000000000bf67000000000000a406000007ff07006706000002000000070600000ee60000bf050000000000002e650000000000006507000002000000070700004c0000001f75000000000000bf54000000000000070500000419311f2d4301000000000095000000000000000500000000000000950000000000000032ed3c5be95e76b67754bb12dc8c27df8ecf264e0f84f9f17d3c30e3c72fe9755ba08554bb4f2278af6d71d79a5e12810a089dc1d4681d295c45a674f888a08034b7dd399703d6c4f633a9a4f16d0a3e1282ee45a010fb94fa9de56c9d8a814261bdb94a6538b89dc6c60bf70d742a81b72bab8395fa64810b5b1bfd3782519518c51231422bb8fab4d4d897db2c544c0ec50b8eac8c63d2b1cd06a39702bd547f5ebaa6954f01cef3c9bacec15e2e3b2bd352e93a2aadfe8efe33ff2f8ee5476d4ef7a6f0c4704403b9bad2b648e90fff24f69a5ef05f5408ea197ed09a9510ee6063229de2984abdd46ea3ec78e3127002ed37c2564b8f8a621483fb2a5ff221e0d831d64759d17b8c59d0f2b0727f6b7958fb5b939af4be5e55a95f8c6d785a91c7c3f0c17ae7f9ac5ff05f5ecddf0cef90d50e763be96496661c749e21ab63a1f50b30a65a9027ba357bf8c614497ee59b68bf6a5d45c81c567e347d54574164bbea3e7b7f8a13cce7014137f250370b8a70ae3eaf736f17759c3886871e97d063b7f26eed3226bb0b9ee6320a2b02fea7a06a0e37182adf4b1be6f29358d4f5dfec405bde000000000000000000000000000000902e647cc5962eccaad64429335f3ce2a10ce72da82875427c1d16db24dca08487ba41a3fb337f8432d8176a515229e32ee11a1dd23dac038f989eafdd67f60b63f7be4d1bf325b57335b9973c73bfa89517a98b1fc15f8a2713718feb01059d8b570a0000e3b2a93bd745a74f9bf7f7abc5d15d56331055cc0820c5c9d676d92557c4e47cfbe27f91f0eb18e21dfdab3c84ec11377fbbfd1e000000000000b542a536559eed87b58edcfee83a50077ee0e8fb6e787cb3076dfeeb79f55927fef9651e176b40e64740a01944577caea4ceb9e907cec36a8429445c833b9d24d53dc91f15af1f4a1db9fa452fa3f0b812355aab5b58659ffd56034fdbb169f3e86660acdc65dc699d3e6364a80f45e54d6efcb99b41a080494f842706f3c1716d2e252bf89663393356296d89fbf95aa7966fa700b710008311d6f25e05f77d68799e671d90cb04131742790941d83ffdfa857e9e085a59a78e7a17f008ce55866fcc4de388f270a1ba675f43481bd2"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)
rename(&(0x7f0000000340)='./file0/file0\x00', &(0x7f00000003c0)='./file1\x00')

4.316044616s ago: executing program 3 (id=698):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x8c}}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14)
prlimit64(0x0, 0x7, &(0x7f0000000180)={0x2, 0x3}, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x14, 0x3a, 0x10, 0x0, 0x0, {0x1}}, 0x14}}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
syz_open_procfs(0x0, &(0x7f0000000180)='timerslack_ns\x00')

3.570781547s ago: executing program 6 (id=699):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0xfffffffe)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0)
syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000080)='./file0\x00', 0x4400, &(0x7f0000000240)=ANY=[@ANYBLOB='check=strict,session=0x0000000000000024,iocharset=ascii,overriderockperm,overriderockperm,gid=', @ANYRESOCT=0x0, @ANYRES16=0x0], 0xf6, 0xa15, &(0x7f00000002c0)="$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")
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, r3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
ioctl$SIOCSIFHWADDR(r7, 0x8b20, &(0x7f0000000000)={'wlan1\x00', @local})
bind$alg(r7, &(0x7f0000000d00)={0x26, 'aead\x00', 0x0, 0x0, 'rfc4543(rfc4106-gcm-aesni)\x00'}, 0x58)
accept4$unix(r0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0xb, 0x11, r0, 0xb9e6e000)

3.310650161s ago: executing program 3 (id=700):
r0 = creat(&(0x7f0000000540)='./file0\x00', 0x0)
close(r0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000850000000800000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000640), 0x4, &(0x7f0000000a40)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})

3.199663533s ago: executing program 7 (id=701):
r0 = socket$netlink(0x10, 0x3, 0xf)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './cgroup\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
syz_usb_connect(0x6, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="31010000dccd5e08cb06030000e8160000010902"], 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="043e751d"], 0x24)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
r5 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x1)
fcntl$F_SET_RW_HINT(r5, 0x40c, 0x0)
fallocate(r5, 0x1, 0x5, 0x3)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), r0)

2.203807338s ago: executing program 6 (id=702):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)

2.03232759s ago: executing program 3 (id=703):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0xa, 0x4, 0x6, 0x23, 0x0, 0x1, 0x3}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0x4, 0x6, 0x1}, 0x50)
close(0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x10, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}, @ringbuf_query]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10)

1.851943592s ago: executing program 6 (id=704):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_AUTHENTICATE(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000e40)={0x48, r1, 0x1, 0x20000002, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x14b4}], @NL80211_ATTR_AUTH_TYPE={0x8}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @key_params=[@NL80211_ATTR_KEY_TYPE={0x8}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x2}]]}, 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

1.767582014s ago: executing program 3 (id=705):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000000180)={0x10, 0x0, 0x25dfdc03, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="050000000000000000002100000008000300", @ANYRES32=r4], 0x2c}}, 0x0)

1.737370794s ago: executing program 6 (id=706):
syz_mount_image$exfat(&(0x7f0000000180), &(0x7f00000000c0)='./bus\x00', 0x0, &(0x7f00000001c0)=ANY=[@ANYRES64=0x0], 0x1, 0x1542, &(0x7f00000007c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x40000, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
getpid()
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1)

1.407178059s ago: executing program 6 (id=707):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = msgget$private(0x0, 0x790)
msgctl$IPC_SET(r0, 0x1, 0x0)
timer_create(0x0, &(0x7f00000001c0)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000180))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r1 = msgget$private(0x0, 0x100)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000d80)=ANY=[@ANYRES64], 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000280)={r3, 0x0, 0x0}, 0x20)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
msgsnd(r1, &(0x7f0000002900)=ANY=[@ANYBLOB="030000"], 0xfd1, 0x0)

1.406779939s ago: executing program 3 (id=708):
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000240)={[{@journal_async_commit}, {@max_batch_time={'max_batch_time', 0x3d, 0x6}}, {@inlinecrypt}, {@norecovery}, {@grpquota}, {@nodelalloc}, {@nogrpid}, {@journal_async_commit}, {@nomblk_io_submit}]}, 0x3, 0x58c, &(0x7f0000000cc0)="$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")
ioctl$BTRFS_IOC_DEFRAG(r0, 0x50009402, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000002000)=""/102400, 0x19000)
socket$inet_tcp(0x2, 0x1, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000540)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000300)="c99bfa0018", 0x5)
r1 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mount(0x0, 0x0, &(0x7f0000000180)='hugetlbfs\x00', 0x0, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x9)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102392, 0x18ff8)
prctl$PR_SET_MM_MAP(0x23, 0xe, 0x0, 0x0)
ptrace(0x10, 0x1)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
syz_genetlink_get_family_id$devlink(&(0x7f0000000100), r1)
setxattr$trusted_overlay_upper(0x0, 0x0, 0x0, 0x835, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="61123400000000006113500000000000bf200000000000001500000008ffffffbd0301000000000095000000000000006916320000000000bf67000000000000a406000007ff07006706000002000000070600000ee60000bf050000000000002e650000000000006507000002000000070700004c0000001f75000000000000bf54000000000000070500000419311f2d4301000000000095000000000000000500000000000000950000000000000032ed3c5be95e76b67754bb12dc8c27df8ecf264e0f84f9f17d3c30e3c72fe9755ba08554bb4f2278af6d71d79a5e12810a089dc1d4681d295c45a674f888a08034b7dd399703d6c4f633a9a4f16d0a3e1282ee45a010fb94fa9de56c9d8a814261bdb94a6538b89dc6c60bf70d742a81b72bab8395fa64810b5b1bfd3782519518c51231422bb8fab4d4d897db2c544c0ec50b8eac8c63d2b1cd06a39702bd547f5ebaa6954f01cef3c9bacec15e2e3b2bd352e93a2aadfe8efe33ff2f8ee5476d4ef7a6f0c4704403b9bad2b648e90fff24f69a5ef05f5408ea197ed09a9510ee6063229de2984abdd46ea3ec78e3127002ed37c2564b8f8a621483fb2a5ff221e0d831d64759d17b8c59d0f2b0727f6b7958fb5b939af4be5e55a95f8c6d785a91c7c3f0c17ae7f9ac5ff05f5ecddf0cef90d50e763be96496661c749e21ab63a1f50b30a65a9027ba357bf8c614497ee59b68bf6a5d45c81c567e347d54574164bbea3e7b7f8a13cce7014137f250370b8a70ae3eaf736f17759c3886871e97d063b7f26eed3226bb0b9ee6320a2b02fea7a06a0e37182adf4b1be6f29358d4f5dfec405bde000000000000000000000000000000902e647cc5962eccaad64429335f3ce2a10ce72da82875427c1d16db24dca08487ba41a3fb337f8432d8176a515229e32ee11a1dd23dac038f989eafdd67f60b63f7be4d1bf325b57335b9973c73bfa89517a98b1fc15f8a2713718feb01059d8b570a0000e3b2a93bd745a74f9bf7f7abc5d15d56331055cc0820c5c9d676d92557c4e47cfbe27f91f0eb18e21dfdab3c84ec11377fbbfd1e000000000000b542a536559eed87b58edcfee83a50077ee0e8fb6e787cb3076dfeeb79f55927fef9651e176b40e64740a01944577caea4ceb9e907cec36a8429445c833b9d24d53dc91f15af1f4a1db9fa452fa3f0b812355aab5b58659ffd56034fdbb169f3e86660acdc65dc699d3e6364a80f45e54d6efcb99b41a080494f842706f3c1716d2e252bf89663393356296d89fbf95aa7966fa700b710008311d6f25e05f77d68799e671d90cb04131742790941d83ffdfa857e9e085a59a78e7a17f008ce55866fcc4de388f270a1ba675f43481bd2"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)
rename(&(0x7f0000000340)='./file0/file0\x00', &(0x7f00000003c0)='./file1\x00')

312.255645ms ago: executing program 5 (id=709):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x8c}}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14)
prlimit64(0x0, 0x7, &(0x7f0000000180)={0x2, 0x3}, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x14, 0x3a, 0x10, 0x0, 0x0, {0x1}}, 0x14}}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
syz_open_procfs(0x0, &(0x7f0000000180)='timerslack_ns\x00')

0s ago: executing program 7 (id=710):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
getpid()
prlimit64(0x0, 0xe, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_udp_int(r2, 0x11, 0x1, &(0x7f0000000040)=0x6, 0x4)
sendmmsg$inet6(r2, &(0x7f0000000740)=[{{&(0x7f0000000100)={0x2, 0x4e21, 0x0, @empty}, 0x1c, 0x0}}], 0x300, 0x0)

kernel console output (not intermixed with test programs):

erval 0, changing to 4
[  115.449850][   T28] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  115.460482][   T28] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  115.468752][   T28] usb 3-1: Product: syz
[  115.502541][   T28] usb 3-1: Manufacturer: syz
[  115.514390][   T28] usb 3-1: SerialNumber: syz
[  117.156866][   T28] usb 3-1: 2:1 : format type 0 is detected, processed as PCM
[  117.351534][ T6071] loop1: detected capacity change from 0 to 1764
[  117.838180][   T28] usb 3-1: failed to read current rate; disabling the check
[  118.499985][   T28] usb 3-1: USB disconnect, device number 3
[  118.548762][ T6077] loop1: detected capacity change from 0 to 1024
[  118.570154][ T6006] udevd[6006]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  118.576896][ T6077] EXT4-fs: Ignoring removed orlov option
[  118.662216][ T6077] EXT4-fs (loop1): stripe (1570) is not aligned with cluster size (16), stripe is disabled
[  118.789083][ T6077] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  118.968510][   T27] audit: type=1800 audit(1751793581.503:3): pid=6077 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.59" name="file2" dev="loop1" ino=16 res=0 errno=0
[  119.240400][ T6085] loop0: detected capacity change from 0 to 1024
[  119.264764][ T6085] EXT4-fs: inline encryption not supported
[  119.270682][ T6085] EXT4-fs: Ignoring removed nomblk_io_submit option
[  119.318578][ T6085] EXT4-fs (loop0): can't mount with journal_async_commit, fs mounted w/o journal
[  119.452709][ T6089] ptrace attach of "./syz-executor exec"[5796] was attempted by "./syz-executor exec"[6089]
[  119.791004][ T6089] overlayfs: failed to resolve './file0': -2
[  120.057879][ T5804] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.291958][ T6100] loop1: detected capacity change from 0 to 512
[  120.565751][ T6109] loop2: detected capacity change from 0 to 512
[  120.654377][ T6100] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #16: comm syz.1.62: corrupted inode contents
[  120.693656][ T6100] EXT4-fs error (device loop1): ext4_dirty_inode:6106: inode #16: comm syz.1.62: mark_inode_dirty error
[  120.845813][ T6100] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #16: comm syz.1.62: corrupted inode contents
[  121.194817][ T6100] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #16: comm syz.1.62: mark_inode_dirty error
[  121.287008][ T6109] EXT4-fs (loop2): 1 orphan inode deleted
[  121.297768][ T6109] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  121.328691][ T6109] ext4 filesystem being mounted at /17/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.413473][ T3576] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  121.750488][ T6100] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #16: comm syz.1.62: corrupted inode contents
[  121.772521][ T3576] EXT4-fs error (device loop2): ext4_release_dquot:6974: comm kworker/u4:16: Failed to release dquot type 1
[  121.862453][ T6100] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  121.907542][ T6100] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #16: comm syz.1.62: corrupted inode contents
[  121.931666][ T5799] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.984721][ T6100] EXT4-fs error (device loop1): ext4_truncate:4288: inode #16: comm syz.1.62: mark_inode_dirty error
[  122.024201][ T6100] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  122.073830][ T6100] EXT4-fs (loop1): 1 truncate cleaned up
[  122.096644][ T6100] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.112731][ T6100] ext4 filesystem being mounted at /15/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.123859][ T3447] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  122.153094][ T6115] loop0: detected capacity change from 0 to 256
[  122.177110][ T3447] EXT4-fs error (device loop1): ext4_release_dquot:6974: comm kworker/u4:10: Failed to release dquot type 1
[  122.204463][ T6115] exFAT-fs (loop0): bogus allocation bitmap size(need : 2, cur : 255103877513218)
[  122.519678][ T6119] exFAT-fs (loop0): error, found bogus dentry(3) beyond unused empty group(2) (start_clu : 5, cur_clu : 5)
[  122.532199][ T6119] exFAT-fs (loop0): Filesystem has been set read-only
[  123.237343][    T9] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  123.257097][ T5795] Bluetooth: Unknown BR/EDR signaling command 0x00
[  123.265885][ T5795] Bluetooth: Wrong link type (-22)
[  125.002229][    T9] usb 3-1: Using ep0 maxpacket: 16
[  125.032407][    T9] usb 3-1: config 0 has an invalid interface number: 8 but max is 0
[  125.040478][    T9] usb 3-1: config 0 has no interface number 0
[  125.049768][    T9] usb 3-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  125.061145][    T9] usb 3-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  125.078784][    T9] usb 3-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  125.095505][    T9] usb 3-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  125.115226][    T9] usb 3-1: Product: syz
[  125.120301][    T9] usb 3-1: SerialNumber: syz
[  125.121319][ T5804] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.142241][    T9] usb 3-1: config 0 descriptor??
[  125.242001][    T9] usb 3-1: can't set config #0, error -71
[  125.273631][    T9] usb 3-1: USB disconnect, device number 4
[  125.394226][ T6134] netlink: 'syz.2.73': attribute type 12 has an invalid length.
[  125.423340][ T6135] loop0: detected capacity change from 0 to 128
[  125.478719][ T6135] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  125.544482][ T6135] ext4 filesystem being mounted at /24/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  125.755892][ T6135] EXT4-fs warning (device loop0): verify_group_input:151: Cannot add at group 1986356225 (only 1 groups)
[  125.978567][ T6142] input: syz1 as /devices/virtual/input/input5
[  126.548009][ T5796] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  126.586822][ T6144] loop2: detected capacity change from 0 to 164
[  126.626641][ T6144] ISOFS: Unable to identify CD-ROM format.
[  126.799917][ T6145] loop2: detected capacity change from 0 to 2048
[  126.874609][ T6145]  loop2: p1 < > p3
[  126.913401][ T6145] loop2: p3 size 134217728 extends beyond EOD, truncated
[  126.970131][ T6152] loop1: detected capacity change from 0 to 2048
[  126.988972][ T6152] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=3932051, location=3932051
[  127.057444][ T6152] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  127.362871][ T5886] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  127.426168][  T786] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  127.441513][  T786] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  127.460250][ T6161] loop0: detected capacity change from 0 to 1024
[  127.505146][ T6161] EXT4-fs: Ignoring removed nomblk_io_submit option
[  127.536674][ T6161] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  127.549427][ T6161] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  127.564477][ T5886] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[  127.584780][ T5886] usb 4-1: config 1 has no interface number 0
[  127.590986][ T5886] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  127.645603][ T5886] usb 4-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[  129.458348][ T5803] Bluetooth: hci3: command tx timeout
[  129.465349][ T6161] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.531871][ T5886] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 20300, setting to 1024
[  129.577156][ T5886] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1024
[  129.605426][ T5886] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  129.624963][ T5886] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  129.642121][ T5886] usb 4-1: Product: syz
[  129.648942][ T5886] usb 4-1: Manufacturer: syz
[  129.662286][ T5886] usb 4-1: SerialNumber: syz
[  129.766852][ T5796] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.786090][ T6176] loop2: detected capacity change from 0 to 512
[  129.825934][ T6176] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  129.946352][ T6154] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  129.976811][ T6176] EXT4-fs warning (device loop2): dx_probe:869: inode #2: comm syz.2.85: Unimplemented hash flags: 0x0001
[  130.002239][ T6176] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.85: Corrupt directory, running e2fsck is recommended
[  130.026970][ T6176] EXT4-fs warning (device loop2): dx_probe:869: inode #2: comm syz.2.85: Unimplemented hash flags: 0x0001
[  130.052483][ T6176] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.85: Corrupt directory, running e2fsck is recommended
[  130.236301][ T6176] EXT4-fs warning (device loop2): dx_probe:869: inode #2: comm syz.2.85: Unimplemented hash flags: 0x0001
[  130.277435][ T6176] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.85: Corrupt directory, running e2fsck is recommended
[  130.314281][ T6182] EXT4-fs warning (device loop2): dx_probe:869: inode #2: comm syz.2.85: Unimplemented hash flags: 0x0001
[  130.332234][ T6182] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.85: Corrupt directory, running e2fsck is recommended
[  130.365328][ T6183] loop0: detected capacity change from 0 to 2048
[  130.378763][ T6176] EXT4-fs warning (device loop2): dx_probe:869: inode #2: comm syz.2.85: Unimplemented hash flags: 0x0001
[  130.392368][ T6176] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.85: Corrupt directory, running e2fsck is recommended
[  130.409769][ T6183] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found!
[  130.437225][ T6183] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  130.553154][ T5799] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.593656][ T6154] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  130.656088][ T5886] cdc_ncm 4-1:1.1: bind() failure
[  130.739734][ T6185] loop2: detected capacity change from 0 to 128
[  130.780916][ T6185] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  130.818850][ T6185] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  130.874114][ T5803] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  130.884311][ T5803] Bluetooth: hci1: Injecting HCI hardware error event
[  130.893069][ T5803] Bluetooth: hci1: hardware error 0x00
[  130.907133][ T6187] loop1: detected capacity change from 0 to 128
[  130.959560][    T9] usb 4-1: USB disconnect, device number 3
[  130.982515][ T6187] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  131.018283][ T6187] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  131.879127][   T27] audit: type=1800 audit(1751793594.303:4): pid=6187 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.84" name="file1" dev="loop1" ino=94 res=0 errno=0
[  132.225551][ T6196] loop1: detected capacity change from 0 to 1764
[  132.229076][ T6197] loop3: detected capacity change from 0 to 2048
[  132.872863][ T6197]  loop3: p1 < > p3
[  132.952809][ T5803] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  133.173576][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  133.372196][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  133.461020][ T6197] loop3: p3 size 134217728 extends beyond EOD, truncated
[  134.340298][ T6211] loop1: detected capacity change from 0 to 1764
[  135.522069][ T6218] syz.0.95 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  138.349894][ T6228] loop1: detected capacity change from 0 to 2048
[  138.361519][ T5836] kernel write not supported for file bpf-prog (pid: 5836 comm: kworker/0:4)
[  138.490178][ T6228] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.818853][ T6242] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:478: comm syz.1.99: Invalid block bitmap block 0 in block_group 0
[  139.414488][ T5804] EXT4-fs error (device loop1): ext4_readdir:263: inode #2: block 16: comm syz-executor: path /25/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  139.461830][ T5804] EXT4-fs error (device loop1): __ext4_get_inode_loc:4483: comm syz-executor: Invalid inode table block 0 in block_group 0
[  139.483029][ T5804] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  139.497454][ T5804] EXT4-fs error (device loop1): ext4_dirty_inode:6106: inode #2: comm syz-executor: mark_inode_dirty error
[  139.545736][   T34] EXT4-fs error (device loop1): __ext4_get_inode_loc:4483: comm kworker/u4:2: Invalid inode table block 0 in block_group 0
[  139.597284][ T5804] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.619986][ T6252] loop0: detected capacity change from 0 to 512
[  139.699634][ T6252] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.721079][ T6252] ext4 filesystem being mounted at /34/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  139.817114][ T6252] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #2: comm syz.0.107: corrupted inode contents
[  139.867733][ T6252] EXT4-fs error (device loop0): ext4_dirty_inode:6106: inode #2: comm syz.0.107: mark_inode_dirty error
[  139.896961][ T6252] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #2: comm syz.0.107: corrupted inode contents
[  139.947200][ T6252] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #2: comm syz.0.107: mark_inode_dirty error
[  140.019318][ T5796] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.959716][ T6274] loop2: detected capacity change from 0 to 512
[  141.981103][ T6274] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  142.009468][ T6274] EXT4-fs (loop2): 1 truncate cleaned up
[  142.019776][ T6277] loop3: detected capacity change from 0 to 1024
[  142.024193][ T6274] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  142.160201][ T5795] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  142.176429][ T5795] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  142.185030][ T5795] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  142.197818][ T5795] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  142.208096][ T5795] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  142.216316][ T5795] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  142.223550][ T6277] hfsplus: inconsistency in B*Tree (128,1,255,1,0)
[  142.246499][ T6277] syz.3.116: attempt to access beyond end of device
[  142.246499][ T6277] loop3: rw=0, sector=917504, nr_sectors = 2 limit=1024
[  142.269956][ T6277] Buffer I/O error on dev loop3, logical block 458752, async page read
[  142.278796][ T6277] syz.3.116: attempt to access beyond end of device
[  142.278796][ T6277] loop3: rw=0, sector=917504, nr_sectors = 2 limit=1024
[  142.294670][ T6277] Buffer I/O error on dev loop3, logical block 458752, async page read
[  142.381332][ T5799] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.322148][ T5795] Bluetooth: hci3: command tx timeout
[  144.441062][ T3576] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  144.468249][ T6280] chnl_net:caif_netlink_parms(): no params data found
[  145.146591][ T3576] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.227254][ T6300] loop0: detected capacity change from 0 to 512
[  145.263655][ T6300] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  145.316658][ T6300] EXT4-fs (loop0): 1 truncate cleaned up
[  145.348698][ T6300] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  145.375809][ T6307] loop2: detected capacity change from 0 to 1024
[  145.398823][ T3576] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.488833][ T6307] hfsplus: xattr searching failed
[  145.501981][ T6307] hfsplus: xattr searching failed
[  145.551439][ T3576] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.568069][ T5796] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.671381][ T6280] bridge0: port 1(bridge_slave_0) entered blocking state
[  145.686145][ T6280] bridge0: port 1(bridge_slave_0) entered disabled state
[  145.696229][ T6280] bridge_slave_0: entered allmulticast mode
[  147.506113][ T5795] Bluetooth: hci3: command tx timeout
[  147.546259][ T6280] bridge_slave_0: entered promiscuous mode
[  147.576644][ T6280] bridge0: port 2(bridge_slave_1) entered blocking state
[  147.584616][ T6280] bridge0: port 2(bridge_slave_1) entered disabled state
[  147.591910][ T6280] bridge_slave_1: entered allmulticast mode
[  147.600219][ T6280] bridge_slave_1: entered promiscuous mode
[  147.689844][ T6315] loop3: detected capacity change from 0 to 128
[  147.743793][ T6315] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  147.794270][ T6280] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  147.822680][ T6315] ext4 filesystem being mounted at /22/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  147.871750][ T6280] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  147.940016][ T6307] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  147.985789][ T3527] hfsplus: bad catalog file entry
[  147.991330][ T3527] hfsplus: b-tree write err: -5, ino 3
[  148.086029][ T6280] team0: Port device team_slave_0 added
[  148.258770][ T6280] team0: Port device team_slave_1 added
[  148.628491][ T6320] loop2: detected capacity change from 0 to 1024
[  148.799685][ T6320] hfsplus: bad catalog file entry
[  148.838140][ T6320] hfsplus: failed to load root directory
[  148.921581][ T5792] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  149.321967][ T6331] loop0: detected capacity change from 0 to 2048
[  149.352309][ T6331] UDF-fs: bad mount option "l¤1tblock=00000000000000000000" or missing value
[  149.432647][ T5807] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  149.470576][ T6280] batman_adv: batadv0: Adding interface: batadv_slave_0
[  149.476063][ T6335] loop2: detected capacity change from 0 to 128
[  149.502439][ T6280] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  149.534008][ T5795] Bluetooth: hci3: command tx timeout
[  149.556074][ T6280] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  149.569113][ T6335] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  149.595325][ T6335] ext4 filesystem being mounted at /36/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  151.593204][ T5795] Bluetooth: hci3: command tx timeout
[  151.600325][ T5799] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  151.612838][ T6280] batman_adv: batadv0: Adding interface: batadv_slave_1
[  151.619866][ T6280] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  151.646617][ T6344] loop3: detected capacity change from 0 to 2048
[  151.679104][ T6280] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  151.711551][ T6344] UDF-fs: bad mount option "ÿÿ" or missing value
[  151.831151][ T5946] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  153.120277][ T6280] hsr_slave_0: entered promiscuous mode
[  153.187408][ T6280] hsr_slave_1: entered promiscuous mode
[  153.209236][ T6280] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  153.222068][ T6280] Cannot create hsr debugfs directory
[  153.490177][ T6360] loop2: detected capacity change from 0 to 128
[  153.786850][ T6360] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  154.114042][ T6360] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  155.433578][   T28] usb 3-1: new full-speed USB device number 5 using dummy_hcd
[  155.658105][   T28] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  155.669835][   T28] usb 3-1: config 0 has no interfaces?
[  155.696923][   T28] usb 3-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  155.720078][ T6373] loop0: detected capacity change from 0 to 128
[  155.721311][   T28] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  155.819645][   T28] usb 3-1: Product: syz
[  155.851296][   T28] usb 3-1: Manufacturer: syz
[  155.860607][   T28] usb 3-1: SerialNumber: syz
[  155.868764][   T28] usb 3-1: config 0 descriptor??
[  156.126109][ T6372] loop0: detected capacity change from 0 to 1024
[  156.205636][ T6280] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  156.247184][ T5836] usb 3-1: USB disconnect, device number 5
[  156.303762][ T6280] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  156.419155][ T6280] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  156.436947][ T6280] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  156.507041][ T3576] hsr_slave_0: left promiscuous mode
[  156.513972][ T3576] hsr_slave_1: left promiscuous mode
[  156.520664][ T3576] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  156.529648][ T3576] batman_adv: batadv0: Removing interface: batadv_slave_0
[  156.645703][ T3576] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  156.656959][ T3576] batman_adv: batadv0: Removing interface: batadv_slave_1
[  156.676977][ T3576] bridge_slave_1: left allmulticast mode
[  156.684157][ T3576] bridge_slave_1: left promiscuous mode
[  156.691701][ T3576] bridge0: port 2(bridge_slave_1) entered disabled state
[  156.702274][ T6384] Bluetooth: MGMT ver 1.22
[  156.715913][ T3576] bridge_slave_0: left allmulticast mode
[  156.721882][ T3576] bridge_slave_0: left promiscuous mode
[  156.736069][ T3576] bridge0: port 1(bridge_slave_0) entered disabled state
[  156.775646][ T3576] veth1_macvtap: left promiscuous mode
[  156.781676][ T3576] veth0_macvtap: left promiscuous mode
[  156.782525][ T5869] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  156.790219][ T3576] veth1_vlan: left promiscuous mode
[  156.801268][ T3576] veth0_vlan: left promiscuous mode
[  156.985461][ T5869] usb 1-1: Using ep0 maxpacket: 8
[  157.001578][ T5869] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  157.027573][ T5869] usb 1-1: config 0 has no interfaces?
[  157.041075][ T5869] usb 1-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  157.078297][ T5869] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.105598][ T5869] usb 1-1: config 0 descriptor??
[  157.156589][ T6390] loop2: detected capacity change from 0 to 256
[  157.191208][ T6390] exfat: Unknown parameter 'ioscard�}�K¼éÚT¸'
[  157.379584][   T28] usb 1-1: USB disconnect, device number 4
[  158.736172][ T6404] loop0: detected capacity change from 0 to 512
[  158.744844][ T6404] EXT4-fs: Ignoring removed nobh option
[  158.813981][ T6404] EXT4-fs warning (device loop0): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  158.832389][ T6404] EXT4-fs warning (device loop0): dx_probe:881: Enable large directory feature to access it
[  158.850819][ T6404] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.147: Corrupt directory, running e2fsck is recommended
[  158.874320][ T6404] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117
[  158.888506][ T6404] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2244: inode #15: comm syz.0.147: corrupted in-inode xattr: invalid ea_ino
[  158.908869][ T6404] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.147: couldn't read orphan inode 15 (err -117)
[  158.928881][ T6404] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.007606][ T3576] team0 (unregistering): Port device team_slave_1 removed
[  159.010673][ T6404] EXT4-fs warning (device loop0): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  159.189093][ T6404] EXT4-fs warning (device loop0): dx_probe:881: Enable large directory feature to access it
[  159.260323][ T6404] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.147: Corrupt directory, running e2fsck is recommended
[  159.365344][ T3576] team0 (unregistering): Port device team_slave_0 removed
[  159.442440][ T6404] EXT4-fs error (device loop0): ext4_readdir:263: inode #2: block 3: comm syz.0.147: path /44/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0
[  159.709300][ T3576] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  159.755228][ T5796] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.021285][ T3576] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  160.977111][ T6410] loop2: detected capacity change from 0 to 16
[  161.065413][ T6410] erofs: (device loop2): mounted with root inode @ nid 36.
[  161.148279][ T6410] erofs: (device loop2): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36
[  161.162683][ T6410] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -59 in[63, 4033] out[1851]
[  161.174270][ T6410] erofs: (device loop2): z_erofs_read_folio: read error -117 @ 43 of nid 36
[  161.186615][ T6410] erofs: (device loop2): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36
[  161.197398][ T6410] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -59 in[63, 4033] out[1851]
[  161.208306][ T6410] erofs: (device loop2): z_erofs_read_folio: read error -117 @ 43 of nid 36
[  162.628949][ T3576] bond0 (unregistering): Released all slaves
[  162.946602][ T6280] 8021q: adding VLAN 0 to HW filter on device bond0
[  163.177759][ T6280] 8021q: adding VLAN 0 to HW filter on device team0
[  163.466733][ T6428] loop2: detected capacity change from 0 to 256
[  166.381769][ T3447] bridge0: port 1(bridge_slave_0) entered blocking state
[  166.389042][ T3447] bridge0: port 1(bridge_slave_0) entered forwarding state
[  166.563773][ T3447] bridge0: port 2(bridge_slave_1) entered blocking state
[  166.571129][ T3447] bridge0: port 2(bridge_slave_1) entered forwarding state
[  166.664239][ T6432] loop0: detected capacity change from 0 to 2048
[  166.818444][ T6432] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  167.151439][ T6438] loop2: detected capacity change from 0 to 128
[  167.173252][ T6438] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  167.307299][ T6440] loop0: detected capacity change from 0 to 2048
[  167.356836][ T6440] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  167.397407][ T6440] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  167.808740][ T6280] 8021q: adding VLAN 0 to HW filter on device batadv0
[  168.190782][ T6445] overlayfs: missing 'lowerdir'
[  168.470402][ T6450] loop0: detected capacity change from 0 to 256
[  169.030843][ T6453] loop3: detected capacity change from 0 to 512
[  169.048503][ T6453] EXT4-fs: Ignoring removed nobh option
[  169.095442][ T6453] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.155: iget: bad i_size value: 38620345925642
[  169.125775][ T6453] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.155: couldn't read orphan inode 15 (err -117)
[  169.144768][ T6453] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.948887][ T5796] syz-executor (5796) used greatest stack depth: 20520 bytes left
[  170.086477][ T3527] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  170.265790][ T6280] veth0_vlan: entered promiscuous mode
[  170.370049][ T3527] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  170.435557][ T6280] veth1_vlan: entered promiscuous mode
[  170.526867][ T3527] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  170.701397][ T3527] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  170.788884][ T6280] veth0_macvtap: entered promiscuous mode
[  170.857271][ T6280] veth1_macvtap: entered promiscuous mode
[  171.030102][ T6280] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.069883][ T6280] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.080109][ T6280] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.095780][ T6280] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.105928][ T6280] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.117994][ T6280] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.138759][ T6280] batman_adv: batadv0: Interface activated: batadv_slave_0
[  171.217059][ T6280] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  171.234107][ T6280] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.244648][ T6280] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  171.287881][ T6280] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.317318][ T6280] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  171.328623][ T6280] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.350493][ T6280] batman_adv: batadv0: Interface activated: batadv_slave_1
[  171.380916][ T6280] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  171.389892][ T6280] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  171.412411][ T6280] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  171.422966][ T6280] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  171.505635][ T6465] loop2: detected capacity change from 0 to 256
[  171.627671][   T43] EXT4-fs error (device loop3): ext4_validate_block_bitmap:430: comm kworker/u4:3: bg 0: block 5: invalid block bitmap
[  171.666975][ T5803] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  171.667430][   T43] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 392 with error 28
[  171.691067][ T5803] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  171.694020][   T43] EXT4-fs (loop3): This should not happen!! Data will be lost
[  171.694020][   T43] 
[  171.711383][ T5803] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  171.719722][   T43] EXT4-fs (loop3): Total free blocks count 0
[  171.777365][ T5803] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  171.788845][ T5803] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  171.800989][ T5803] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  171.811427][   T43] EXT4-fs (loop3): Free/Dirty block details
[  171.861946][   T43] EXT4-fs (loop3): free_blocks=0
[  171.871507][   T43] EXT4-fs (loop3): dirty_blocks=392
[  171.882701][   T43] EXT4-fs (loop3): Block reservation details
[  171.892557][   T43] EXT4-fs (loop3): i_reserved_data_blocks=392
[  171.915357][ T5792] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.070457][ T6471] loop2: detected capacity change from 0 to 1024
[  172.084407][ T6471] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  172.143711][ T1092] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  172.151613][ T1092] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  172.185759][ T6471] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.271296][ T6471] EXT4-fs error (device loop2): ext4_xattr_inode_iget:440: comm syz.2.167: inode #7: comm syz.2.167: iget: illegal inode #
[  172.285450][ T5886] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  172.296970][ T6471] EXT4-fs (loop2): Remounting filesystem read-only
[  172.304398][ T6471] EXT4-fs warning (device loop2): ext4_xattr_block_set:2202: inode #19: comm syz.2.167: dec ref error=-5
[  172.343616][ T3447] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  172.351512][ T3447] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  172.367761][ T5799] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.479986][ T5886] usb 4-1: Using ep0 maxpacket: 32
[  172.495356][ T5886] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  172.518854][ T5886] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  172.541207][ T5886] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  172.570987][ T5886] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  172.599284][ T5886] usb 4-1: config 0 descriptor??
[  172.665530][ T5886] hub 4-1:0.0: USB hub found
[  173.188153][ T5886] hub 4-1:0.0: 1 port detected
[  173.587380][ T6466] chnl_net:caif_netlink_parms(): no params data found
[  173.616385][ T6487] loop2: detected capacity change from 0 to 512
[  173.669569][ T6487] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e00ce19c, mo2=0002]
[  173.683224][ T6487] System zones: 0-2, 18-18, 34-34
[  173.700643][ T6487] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.714601][ T6487] ext4 filesystem being mounted at /54/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  173.790404][ T6494] loop4: detected capacity change from 0 to 512
[  173.805094][ T6494] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  173.832446][ T5795] Bluetooth: hci1: command tx timeout
[  173.882667][   T23] hub 4-1:0.0: activate --> -90
[  173.935387][ T6494] EXT4-fs (loop4): 1 truncate cleaned up
[  173.955261][ T6494] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.983784][ T5799] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.168634][ T6501] getblk(): invalid block size 1024 requested
[  174.177787][ T6501] logical block size: 4096
[  174.185293][ T6501] CPU: 0 PID: 6501 Comm: syz.4.171 Not tainted 6.6.95-syzkaller #0
[  174.193263][ T6501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  174.203382][ T6501] Call Trace:
[  174.206709][ T6501]  <TASK>
[  174.209698][ T6501]  dump_stack_lvl+0x16c/0x230
[  174.214513][ T6501]  ? write_boundary_block+0xb0/0xb0
[  174.219813][ T6501]  ? show_regs_print_info+0x20/0x20
[  174.225076][ T6501]  ? load_image+0x3b0/0x3b0
[  174.229649][ T6501]  __getblk_gfp+0x5f4/0x660
[  174.234207][ T6501]  ? ext4_get_group_desc+0x42e/0x4d0
[  174.239717][ T6501]  ? ext4_get_group_desc+0x10e/0x4d0
[  174.245066][ T6501]  ext4_read_inode_bitmap+0x1e9/0x1210
[  174.250580][ T6501]  ? ext4_get_group_info+0xfc/0x400
[  174.255845][ T6501]  __ext4_new_inode+0xf2c/0x3a00
[  174.260849][ T6501]  ? _raw_spin_unlock+0x28/0x40
[  174.265751][ T6501]  ? ext4_has_group_desc_csum+0x1f0/0x1f0
[  174.271532][ T6501]  ? dquot_initialize+0x20/0x20
[  174.276449][ T6501]  ? d_splice_alias+0x114/0x330
[  174.281360][ T6501]  ? ext4_lookup+0x2d2/0x6d0
[  174.286015][ T6501]  ext4_create+0x22e/0x460
[  174.290475][ T6501]  ? ext4_lookup+0x6d0/0x6d0
[  174.295125][ T6501]  ? inode_permission+0xf3/0x480
[  174.296163][ T5886] usb 4-1: USB disconnect, device number 4
[  174.300082][ T6501]  ? bpf_lsm_inode_create+0x9/0x10
[  174.300148][ T6501]  ? security_inode_create+0xb7/0x100
[  174.316524][ T6501]  ? ext4_lookup+0x6d0/0x6d0
[  174.321279][ T6501]  path_openat+0x1277/0x3190
[  174.325967][ T6501]  ? do_filp_open+0x3d0/0x3d0
[  174.330736][ T6501]  do_filp_open+0x1c5/0x3d0
[  174.335298][ T6501]  ? vfs_tmpfile+0x490/0x490
[  174.339972][ T6501]  ? _raw_spin_unlock+0x28/0x40
[  174.344872][ T6501]  ? alloc_fd+0x58f/0x630
[  174.349377][ T6501]  do_sys_openat2+0x12c/0x1c0
[  174.354110][ T6501]  ? _raw_spin_unlock+0x40/0x40
[  174.359016][ T6501]  ? do_sys_open+0xe0/0xe0
[  174.363494][ T6501]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  174.369537][ T6501]  ? lock_chain_count+0x20/0x20
[  174.374446][ T6501]  ? lock_chain_count+0x20/0x20
[  174.379340][ T6501]  __x64_sys_openat+0x139/0x160
[  174.384231][ T6501]  do_syscall_64+0x55/0xb0
[  174.388686][ T6501]  ? clear_bhb_loop+0x40/0x90
[  174.393400][ T6501]  ? clear_bhb_loop+0x40/0x90
[  174.398138][ T6501]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  174.404087][ T6501] RIP: 0033:0x7fca56b8e929
[  174.408554][ T6501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.428187][ T6501] RSP: 002b:00007fca579c4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  174.436626][ T6501] RAX: ffffffffffffffda RBX: 00007fca56db6080 RCX: 00007fca56b8e929
[  174.444633][ T6501] RDX: 000000000000275a RSI: 0000200000000000 RDI: ffffffffffffff9c
[  174.452659][ T6501] RBP: 00007fca56c10b39 R08: 0000000000000000 R09: 0000000000000000
[  174.460678][ T6501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  174.468695][ T6501] R13: 0000000000000001 R14: 00007fca56db6080 R15: 00007fff34fed0d8
[  174.476731][ T6501]  </TASK>
[  174.492240][ T6501] EXT4-fs warning (device loop4): ext4_read_inode_bitmap:149: Cannot read inode bitmap - block_group = 0, inode_bitmap = 4
[  174.535443][ T6466] bridge0: port 1(bridge_slave_0) entered blocking state
[  174.543269][ T6466] bridge0: port 1(bridge_slave_0) entered disabled state
[  174.550566][ T6466] bridge_slave_0: entered allmulticast mode
[  174.562522][ T6466] bridge_slave_0: entered promiscuous mode
[  174.582624][ T6466] bridge0: port 2(bridge_slave_1) entered blocking state
[  174.590554][ T6466] bridge0: port 2(bridge_slave_1) entered disabled state
[  174.598969][ T6466] bridge_slave_1: entered allmulticast mode
[  174.607913][ T6466] bridge_slave_1: entered promiscuous mode
[  174.642494][ T6280] EXT4-fs error (device loop4): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  174.669551][ T6280] getblk(): invalid block size 1024 requested
[  174.677010][ T6280] logical block size: 4096
[  174.681641][ T6280] CPU: 0 PID: 6280 Comm: syz-executor Not tainted 6.6.95-syzkaller #0
[  174.689942][ T6280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  174.700020][ T6280] Call Trace:
[  174.703318][ T6280]  <TASK>
[  174.706255][ T6280]  dump_stack_lvl+0x16c/0x230
[  174.710946][ T6280]  ? write_boundary_block+0xb0/0xb0
[  174.716168][ T6280]  ? show_regs_print_info+0x20/0x20
[  174.721420][ T6280]  ? load_image+0x3b0/0x3b0
[  174.725942][ T6280]  ? __lock_acquire+0x7c80/0x7c80
[  174.730989][ T6280]  ? __lock_acquire+0x1334/0x7c80
[  174.736229][ T6280]  __getblk_gfp+0x5f4/0x660
[  174.740767][ T6280]  ? ext4_get_group_desc+0x42e/0x4d0
[  174.746071][ T6280]  ? ext4_get_group_desc+0x10e/0x4d0
[  174.751378][ T6280]  __ext4_get_inode_loc+0x478/0xdf0
[  174.756629][ T6280]  ? ext4_get_inode_loc+0xf0/0xf0
[  174.761686][ T6280]  ? seqcount_lockdep_reader_access+0x176/0x1c0
[  174.768036][ T6280]  ? __might_sleep+0xe0/0xe0
[  174.772667][ T6280]  ext4_reserve_inode_write+0x10e/0x2a0
[  174.778262][ T6280]  __ext4_mark_inode_dirty+0x14c/0x6e0
[  174.783766][ T6280]  ext4_dirty_inode+0xcb/0x110
[  174.788710][ T6280]  ? __ext4_expand_extra_isize+0x400/0x400
[  174.794580][ T6280]  __mark_inode_dirty+0x2b4/0xc80
[  174.799665][ T6280]  ? iterate_dir+0x2a2/0x580
[  174.804296][ T6280]  touch_atime+0x356/0x580
[  174.808734][ T6280]  iterate_dir+0x2a2/0x580
[  174.813272][ T6280]  __se_sys_getdents64+0xe9/0x260
[  174.818356][ T6280]  ? __x64_sys_getdents64+0x80/0x80
[  174.823589][ T6280]  ? filldir+0x680/0x680
[  174.827853][ T6280]  ? lock_chain_count+0x20/0x20
[  174.832774][ T6280]  ? lockdep_hardirqs_on+0x98/0x150
[  174.838018][ T6280]  do_syscall_64+0x55/0xb0
[  174.842551][ T6280]  ? clear_bhb_loop+0x40/0x90
[  174.847257][ T6280]  ? clear_bhb_loop+0x40/0x90
[  174.851951][ T6280]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  174.857946][ T6280] RIP: 0033:0x7fca56bc1293
[  174.862385][ T6280] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 72 3e f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[  174.882130][ T6280] RSP: 002b:00007fff34feb238 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[  174.890574][ T6280] RAX: ffffffffffffffda RBX: 000055556b002600 RCX: 00007fca56bc1293
[  174.898558][ T6280] RDX: 0000000000008000 RSI: 000055556b002600 RDI: 0000000000000005
[  174.906628][ T6280] RBP: 000055556b0025d4 R08: 0000000000028a41 R09: 0000000000000000
[  174.914621][ T6280] R10: 00007fca56d85ca0 R11: 0000000000000293 R12: ffffffffffffffa8
[  174.922629][ T6280] R13: 0000000000000010 R14: 000055556b0025d0 R15: 00007fff34fed4f0
[  174.930727][ T6280]  </TASK>
[  174.940909][ T6280] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5902: Out of memory
[  174.966710][ T6280] EXT4-fs error (device loop4): ext4_dirty_inode:6106: inode #2: comm syz-executor: mark_inode_dirty error
[  174.993186][ T3527] hsr_slave_0: left promiscuous mode
[  175.003129][ T3527] hsr_slave_1: left promiscuous mode
[  175.009571][ T3527] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  175.032246][ T3527] batman_adv: batadv0: Removing interface: batadv_slave_0
[  175.048957][ T3527] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  175.063932][ T3527] batman_adv: batadv0: Removing interface: batadv_slave_1
[  175.066718][ T3576] getblk(): invalid block size 1024 requested
[  175.083974][ T3527] bridge_slave_1: left allmulticast mode
[  175.085931][ T3576] logical block size: 4096
[  175.095396][ T3576] CPU: 0 PID: 3576 Comm: kworker/u4:16 Not tainted 6.6.95-syzkaller #0
[  175.098438][ T3527] bridge_slave_1: left promiscuous mode
[  175.103668][ T3576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  175.103684][ T3576] Workqueue: writeback wb_workfn (flush-7:4)
[  175.103725][ T3576] Call Trace:
[  175.103734][ T3576]  <TASK>
[  175.103743][ T3576]  dump_stack_lvl+0x16c/0x230
[  175.103774][ T3576]  ? write_boundary_block+0xb0/0xb0
[  175.103796][ T3576]  ? show_regs_print_info+0x20/0x20
[  175.112601][ T3527] bridge0: port 2(bridge_slave_1) entered disabled state
[  175.119425][ T3576]  ? load_image+0x3b0/0x3b0
[  175.158448][ T3576]  ? __lock_acquire+0x7c80/0x7c80
[  175.163553][ T3576]  __getblk_gfp+0x5f4/0x660
[  175.168138][ T3576]  ? ext4_get_group_desc+0x42e/0x4d0
[  175.173491][ T3576]  ? ext4_get_group_desc+0x10e/0x4d0
[  175.178831][ T3576]  __ext4_get_inode_loc+0x478/0xdf0
[  175.184106][ T3576]  ? ext4_get_inode_loc+0xf0/0xf0
[  175.189201][ T3576]  ? __writeback_single_inode+0x48d/0xee0
[  175.194979][ T3576]  ? __lock_acquire+0x7c80/0x7c80
[  175.200061][ T3576]  ext4_write_inode+0x27c/0x550
[  175.204966][ T3576]  __writeback_single_inode+0x705/0xee0
[  175.210571][ T3576]  writeback_sb_inodes+0x77c/0xef0
[  175.215733][ T3576]  ? move_expired_inodes+0x319/0x720
[  175.221185][ T3576]  ? queue_io+0x560/0x560
[  175.225586][ T3576]  ? rcu_is_watching+0x15/0xb0
[  175.230425][ T3576]  wb_writeback+0x450/0xba0
[  175.234987][ T3576]  ? queue_io+0x3c1/0x560
[  175.239365][ T3576]  ? percpu_ref_tryget+0x250/0x250
[  175.244522][ T3576]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  175.250571][ T3576]  ? _raw_spin_unlock_irq+0x23/0x50
[  175.255823][ T3576]  wb_workfn+0x3ff/0xe20
[  175.260132][ T3576]  ? inode_wait_for_writeback+0x200/0x200
[  175.265916][ T3576]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  175.271945][ T3576]  ? read_lock_is_recursive+0x20/0x20
[  175.277373][ T3576]  ? _raw_spin_unlock_irq+0x23/0x50
[  175.282618][ T3576]  ? process_scheduled_works+0x957/0x15b0
[  175.288484][ T3576]  ? process_scheduled_works+0x957/0x15b0
[  175.294353][ T3576]  process_scheduled_works+0xa45/0x15b0
[  175.299988][ T3576]  ? assign_work+0x400/0x400
[  175.304647][ T3576]  ? assign_work+0x39e/0x400
[  175.309305][ T3576]  worker_thread+0xa55/0xfc0
[  175.314064][ T3576]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  175.320007][ T3576]  ? _raw_spin_unlock+0x40/0x40
[  175.324902][ T3576]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[  175.330868][ T3576]  kthread+0x2fa/0x390
[  175.334980][ T3576]  ? pr_cont_work+0x560/0x560
[  175.339700][ T3576]  ? kthread_blkcg+0xd0/0xd0
[  175.344334][ T3576]  ret_from_fork+0x48/0x80
[  175.348792][ T3576]  ? kthread_blkcg+0xd0/0xd0
[  175.353440][ T3576]  ret_from_fork_asm+0x11/0x20
[  175.358265][ T3576]  </TASK>
[  175.498958][ T6280] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.073216][ T5795] Bluetooth: hci1: command tx timeout
[  176.363344][ T3527] bridge_slave_0: left allmulticast mode
[  176.369335][ T3527] bridge_slave_0: left promiscuous mode
[  176.389295][ T3527] bridge0: port 1(bridge_slave_0) entered disabled state
[  176.440981][ T6515] loop3: detected capacity change from 0 to 1024
[  176.457069][ T6514] loop2: detected capacity change from 0 to 2048
[  176.497615][ T6514] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  176.509639][ T3527] veth1_macvtap: left promiscuous mode
[  176.520977][ T3527] veth0_macvtap: left promiscuous mode
[  176.557737][ T3527] veth1_vlan: left promiscuous mode
[  176.575812][ T3527] veth0_vlan: left promiscuous mode
[  176.747060][ T5799] UDF-fs: error (device loop2): udf_read_inode: (ino 1416) failed !bh
[  176.757379][ T5799] UDF-fs: error (device loop2): udf_read_inode: (ino 1416) failed !bh
[  176.954381][ T3547] hfsplus: b-tree write err: -5, ino 4
[  177.999000][ T3527] team0 (unregistering): Port device team_slave_1 removed
[  178.100525][ T6521] loop3: detected capacity change from 0 to 128
[  178.111686][ T3527] team0 (unregistering): Port device team_slave_0 removed
[  178.139837][ T6521] FAT-fs (loop3): bogus sectors per cluster 9
[  178.146749][ T6521] FAT-fs (loop3): Can't find a valid FAT filesystem
[  178.153875][ T5795] Bluetooth: hci1: command tx timeout
[  178.179982][ T3527] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  178.248435][ T3527] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  179.474364][ T6529] loop3: detected capacity change from 0 to 512
[  179.521783][ T3527] bond0 (unregistering): Released all slaves
[  179.572881][ T6529] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  179.586914][ T6529] ext4 filesystem being mounted at /37/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  179.677322][ T5792] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  179.681470][ T6466] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  179.820808][ T6466] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  179.908600][ T6466] team0: Port device team_slave_0 added
[  179.929028][ T6466] team0: Port device team_slave_1 added
[  179.983039][ T6536] loop3: detected capacity change from 0 to 16
[  180.005044][ T6466] batman_adv: batadv0: Adding interface: batadv_slave_0
[  180.008265][ T6536] erofs: (device loop3): mounted with root inode @ nid 36.
[  180.030283][ T6466] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  180.113338][ T6466] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  180.182781][ T6466] batman_adv: batadv0: Adding interface: batadv_slave_1
[  180.189801][ T6466] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  180.233346][ T5795] Bluetooth: hci1: command tx timeout
[  180.293168][ T6466] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  180.534903][ T6466] hsr_slave_0: entered promiscuous mode
[  180.570800][ T6466] hsr_slave_1: entered promiscuous mode
[  181.483197][ T3527] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  181.880013][ T5803] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  181.890164][ T5803] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  181.901574][ T5803] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  181.917674][ T5803] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  181.925807][ T5803] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  181.936671][ T5803] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  181.969889][ T3527] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  182.056580][ T3527] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  182.085293][ T5803] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  182.096422][ T5803] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  182.114291][ T5803] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  182.124321][ T5803] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  182.132611][ T5803] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  182.139994][ T5803] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  182.193339][ T3527] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  182.215751][ T6466] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  182.295604][ T6466] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  182.313846][ T5803] Bluetooth: hci1: command tx timeout
[  182.324743][ T6466] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  182.351730][ T6466] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  182.787811][ T6544] chnl_net:caif_netlink_parms(): no params data found
[  182.925063][ T6549] chnl_net:caif_netlink_parms(): no params data found
[  182.939649][ T6566] loop3: detected capacity change from 0 to 256
[  182.974769][ T6566] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  183.110496][ T6466] 8021q: adding VLAN 0 to HW filter on device bond0
[  183.228283][ T6466] 8021q: adding VLAN 0 to HW filter on device team0
[  183.432815][ T6544] bridge0: port 1(bridge_slave_0) entered blocking state
[  183.439989][ T6544] bridge0: port 1(bridge_slave_0) entered disabled state
[  183.447763][ T6544] bridge_slave_0: entered allmulticast mode
[  183.455609][ T6544] bridge_slave_0: entered promiscuous mode
[  183.475807][ T6544] bridge0: port 2(bridge_slave_1) entered blocking state
[  183.484694][ T6544] bridge0: port 2(bridge_slave_1) entered disabled state
[  183.492970][ T6544] bridge_slave_1: entered allmulticast mode
[  183.507644][ T6544] bridge_slave_1: entered promiscuous mode
[  184.031174][ T3447] bridge0: port 1(bridge_slave_0) entered blocking state
[  184.038462][ T3447] bridge0: port 1(bridge_slave_0) entered forwarding state
[  184.304414][ T3447] bridge0: port 2(bridge_slave_1) entered blocking state
[  184.311632][ T3447] bridge0: port 2(bridge_slave_1) entered forwarding state
[  184.334823][ T5795] Bluetooth: hci3: command tx timeout
[  184.359694][ T5803] Bluetooth: hci2: command tx timeout
[  184.476399][ T6549] bridge0: port 1(bridge_slave_0) entered blocking state
[  184.485387][ T6549] bridge0: port 1(bridge_slave_0) entered disabled state
[  184.499053][ T6549] bridge_slave_0: entered allmulticast mode
[  184.512490][ T6549] bridge_slave_0: entered promiscuous mode
[  184.589108][ T6549] bridge0: port 2(bridge_slave_1) entered blocking state
[  184.597792][ T6549] bridge0: port 2(bridge_slave_1) entered disabled state
[  184.605936][ T6549] bridge_slave_1: entered allmulticast mode
[  184.616914][ T6549] bridge_slave_1: entered promiscuous mode
[  184.627734][ T6544] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  184.640798][ T6544] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  184.701177][ T6549] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  184.748483][ T6544] team0: Port device team_slave_0 added
[  184.791886][ T6549] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  184.844256][ T6544] team0: Port device team_slave_1 added
[  184.899835][ T6549] team0: Port device team_slave_0 added
[  184.939915][ T6544] batman_adv: batadv0: Adding interface: batadv_slave_0
[  184.947127][ T6544] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  184.975177][ T6544] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  184.997191][ T6549] team0: Port device team_slave_1 added
[  185.049417][ T6544] batman_adv: batadv0: Adding interface: batadv_slave_1
[  185.067668][ T6544] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  185.114128][ T6544] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  185.151881][ T6549] batman_adv: batadv0: Adding interface: batadv_slave_0
[  185.159683][ T6549] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  185.187982][ T6549] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  185.252699][ T6549] batman_adv: batadv0: Adding interface: batadv_slave_1
[  185.259732][ T6549] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  185.288921][ T6549] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  185.330254][ T6544] hsr_slave_0: entered promiscuous mode
[  185.338008][ T6544] hsr_slave_1: entered promiscuous mode
[  185.344615][ T6544] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  185.352694][ T6544] Cannot create hsr debugfs directory
[  185.425399][ T3527] hsr_slave_0: left promiscuous mode
[  185.449836][ T3527] hsr_slave_1: left promiscuous mode
[  185.459375][ T3527] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  185.467141][ T3527] batman_adv: batadv0: Removing interface: batadv_slave_0
[  185.475385][ T3527] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  185.483870][ T3527] batman_adv: batadv0: Removing interface: batadv_slave_1
[  185.491909][ T3527] bridge_slave_1: left allmulticast mode
[  185.498212][ T3527] bridge_slave_1: left promiscuous mode
[  185.513189][ T3527] bridge0: port 2(bridge_slave_1) entered disabled state
[  185.531336][ T3527] bridge_slave_0: left allmulticast mode
[  185.537703][ T3527] bridge_slave_0: left promiscuous mode
[  185.544348][ T3527] bridge0: port 1(bridge_slave_0) entered disabled state
[  185.555878][ T6584] loop3: detected capacity change from 0 to 128
[  185.609574][ T3527] veth1_macvtap: left promiscuous mode
[  185.623728][ T3527] veth0_macvtap: left promiscuous mode
[  185.629491][ T3527] veth1_vlan: left promiscuous mode
[  185.642897][ T3527] veth0_vlan: left promiscuous mode
[  186.442945][ T5803] Bluetooth: hci2: command tx timeout
[  186.448438][ T5803] Bluetooth: hci3: command tx timeout
[  186.946237][ T3527] team0 (unregistering): Port device team_slave_1 removed
[  186.974427][ T5869] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  186.998988][ T3527] team0 (unregistering): Port device team_slave_0 removed
[  187.046835][ T3527] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  187.095574][ T3527] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  187.200956][ T5869] usb 4-1: too many configurations: 14, using maximum allowed: 8
[  187.229864][ T5869] usb 4-1: config index 0 descriptor too short (expected 65375, got 72)
[  187.246575][ T5869] usb 4-1: config index 1 descriptor too short (expected 65375, got 72)
[  187.260056][ T5869] usb 4-1: config index 2 descriptor too short (expected 65375, got 72)
[  187.280493][ T5869] usb 4-1: config index 3 descriptor too short (expected 65375, got 72)
[  187.291305][ T5869] usb 4-1: config index 4 descriptor too short (expected 65375, got 72)
[  187.301514][ T5869] usb 4-1: config index 5 descriptor too short (expected 65375, got 72)
[  187.311636][ T5869] usb 4-1: config index 6 descriptor too short (expected 65375, got 72)
[  187.322050][ T5869] usb 4-1: config index 7 descriptor too short (expected 65375, got 72)
[  187.361293][ T5869] usb 4-1: string descriptor 0 read error: -71
[  187.372100][ T5869] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  187.381683][ T5869] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  187.397112][ T5869] usb 4-1: can't set config #1, error -71
[  187.410587][ T5869] usb 4-1: USB disconnect, device number 5
[  187.716901][ T3527] bond0 (unregistering): Released all slaves
[  187.873915][ T6466] 8021q: adding VLAN 0 to HW filter on device batadv0
[  187.887142][ T6549] hsr_slave_0: entered promiscuous mode
[  187.910212][ T6549] hsr_slave_1: entered promiscuous mode
[  187.917821][ T6549] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  187.926927][ T6549] Cannot create hsr debugfs directory
[  188.436667][ T6549] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  188.472765][ T5795] Bluetooth: hci2: command tx timeout
[  188.478343][ T5803] Bluetooth: hci3: command tx timeout
[  188.485933][ T6549] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  188.611319][ T6549] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  188.899336][ T6549] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  189.336682][ T6544] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  189.372926][ T6544] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  189.383870][ T6544] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  189.408350][ T6544] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  189.439657][ T6466] veth0_vlan: entered promiscuous mode
[  189.480464][ T6466] veth1_vlan: entered promiscuous mode
[  189.579333][ T6466] veth0_macvtap: entered promiscuous mode
[  189.591364][ T6466] veth1_macvtap: entered promiscuous mode
[  189.620224][ T6549] 8021q: adding VLAN 0 to HW filter on device bond0
[  189.636696][ T6466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  189.650902][ T6466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  189.664461][ T6466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  189.675101][ T6466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  189.687211][ T6466] batman_adv: batadv0: Interface activated: batadv_slave_0
[  189.705981][ T6466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  189.716864][ T6466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  189.728453][ T6466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  189.739173][ T6466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  189.754241][ T6466] batman_adv: batadv0: Interface activated: batadv_slave_1
[  189.768692][ T6466] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  189.777852][ T6466] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  189.787545][ T6466] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  189.796915][ T6466] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  189.828393][ T6549] 8021q: adding VLAN 0 to HW filter on device team0
[  189.877618][ T3486] bridge0: port 1(bridge_slave_0) entered blocking state
[  189.884888][ T3486] bridge0: port 1(bridge_slave_0) entered forwarding state
[  189.923703][ T3527] bridge0: port 2(bridge_slave_1) entered blocking state
[  189.931038][ T3527] bridge0: port 2(bridge_slave_1) entered forwarding state
[  189.957880][ T6544] 8021q: adding VLAN 0 to HW filter on device bond0
[  189.993163][ T1092] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  190.001058][ T1092] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  190.055326][ T6544] 8021q: adding VLAN 0 to HW filter on device team0
[  190.087640][ T3527] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  190.099124][ T3527] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  190.111186][   T43] bridge0: port 1(bridge_slave_0) entered blocking state
[  190.118444][   T43] bridge0: port 1(bridge_slave_0) entered forwarding state
[  190.180032][   T43] bridge0: port 2(bridge_slave_1) entered blocking state
[  190.187307][   T43] bridge0: port 2(bridge_slave_1) entered forwarding state
[  190.556209][ T5803] Bluetooth: hci3: command tx timeout
[  190.568232][ T5803] Bluetooth: hci2: command tx timeout
[  191.883288][ T6544] 8021q: adding VLAN 0 to HW filter on device batadv0
[  192.054017][ T6549] 8021q: adding VLAN 0 to HW filter on device batadv0
[  193.412206][ T6549] veth0_vlan: entered promiscuous mode
[  193.474205][ T6549] veth1_vlan: entered promiscuous mode
[  193.550834][ T6544] veth0_vlan: entered promiscuous mode
[  193.657057][ T6544] veth1_vlan: entered promiscuous mode
[  193.768152][ T6549] veth0_macvtap: entered promiscuous mode
[  193.823682][ T6544] veth0_macvtap: entered promiscuous mode
[  194.010072][ T6549] veth1_macvtap: entered promiscuous mode
[  194.030570][ T6549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  194.042153][ T6549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  194.102378][ T6549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  194.583625][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  194.590165][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  195.194572][ T6549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  195.231567][ T6549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  195.258651][ T6656] loop5: detected capacity change from 0 to 1764
[  195.272231][ T6549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  195.354913][ T6549] batman_adv: batadv0: Interface activated: batadv_slave_0
[  195.406925][ T6544] veth1_macvtap: entered promiscuous mode
[  195.610384][ T6663] loop3: detected capacity change from 0 to 128
[  196.130702][ T6549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  196.146600][ T6663] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  196.252117][ T6549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.267322][ T6549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  196.287214][ T6549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.302066][ T6549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  196.352128][ T6663] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  196.372099][ T6549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.394766][ T6549] batman_adv: batadv0: Interface activated: batadv_slave_1
[  196.425372][ T6549] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  196.435867][ T6549] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  196.458984][ T6549] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  196.478268][ T6549] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  196.530134][ T6544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  196.552311][ T6544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.595862][ T6666] loop5: detected capacity change from 0 to 1764
[  196.609574][ T6544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  196.631259][ T6544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.648499][ T6544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  196.664212][ T6544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.696771][ T6544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  196.882197][ T6544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.901264][ T6544] batman_adv: batadv0: Interface activated: batadv_slave_0
[  197.577605][ T6544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  197.641288][ T6544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  197.682193][ T6544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  197.707394][ T6544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  197.722528][ T6544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  197.734595][ T6544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  197.773353][ T6544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  197.792309][ T6544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  198.735067][ T6544] batman_adv: batadv0: Interface activated: batadv_slave_1
[  198.914337][ T6544] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  198.935330][ T6544] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  198.958542][ T6544] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  198.979285][ T6544] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  199.196093][ T3547] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  199.206441][ T3547] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  199.321215][ T3547] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  199.352847][ T3547] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  199.365128][ T6685] loop3: detected capacity change from 0 to 2048
[  199.598836][ T6685] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found!
[  199.637828][ T1092] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  199.686360][ T6685] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  199.700621][ T1092] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  200.753029][ T3486] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  200.782164][ T3486] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  201.937449][ T6700] loop7: detected capacity change from 0 to 128
[  202.033730][ T6700] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  202.121104][ T6706] loop6: detected capacity change from 0 to 1024
[  202.135399][ T6700] ext4 filesystem being mounted at /1/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  202.306109][ T6706] EXT4-fs: Ignoring removed orlov option
[  203.570338][ T6706] EXT4-fs (loop6): Test dummy encryption mode enabled
[  203.594480][ T6706] EXT4-fs (loop6): stripe (8) is not aligned with cluster size (16), stripe is disabled
[  203.639490][ T6706] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.051562][ T6549] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  204.100170][ T5852] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  204.136219][ T6726] loop5: detected capacity change from 0 to 1024
[  204.144218][ T6726] EXT4-fs: Ignoring removed nomblk_io_submit option
[  204.180815][ T6726] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  204.195257][ T5852] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  204.221766][ T6726] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  204.398472][ T6706] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  204.412456][ T6726] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.853042][ T6706] fscrypt: AES-256-XTS using implementation "xts-aes-aesni"
[  205.109174][ T6466] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.122130][ T5869] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  205.344072][ T5869] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  205.365178][ T5869] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  205.388929][ T5869] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  205.410833][ T5869] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  205.483353][ T5869] usb 8-1: config 0 descriptor??
[  205.501884][ T5869] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[  206.539945][ T6754] loop5: detected capacity change from 0 to 1764
[  206.967870][ T5795] Bluetooth: hci0: command 0x0406 tx timeout
[  207.440635][ T6764] loop3: detected capacity change from 0 to 128
[  207.513892][ T6764] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  207.568602][ T6764] ext4 filesystem being mounted at /66/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  207.844892][   T23] usb 8-1: USB disconnect, device number 2
[  208.044468][ T6771] netlink: 'syz.7.236': attribute type 12 has an invalid length.
[  208.166813][ T6544] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.567294][ T5792] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  209.479987][ T6787] loop7: detected capacity change from 0 to 128
[  209.625751][ T6787] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  209.672137][ T6787] ext4 filesystem being mounted at /5/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  210.143199][ T5836] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  210.417655][ T5836] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  210.459850][ T5836] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  210.556869][ T5836] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  210.615849][ T5836] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  210.664574][ T5836] usb 7-1: config 0 descriptor??
[  210.708073][ T5836] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[  210.824980][ T6549] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  210.972183][ T6807] loop5: detected capacity change from 0 to 1764
[  211.825756][ T6816] loop7: detected capacity change from 0 to 128
[  211.929272][ T6816] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  211.966147][ T6816] ext4 filesystem being mounted at /7/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  213.088130][ T5886] usb 7-1: USB disconnect, device number 2
[  214.325934][ T6836] x_tables: ip6_tables: icmp6 match: only valid for protocol 58
[  214.391848][ T6840] loop5: detected capacity change from 0 to 128
[  214.404067][ T6549] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  214.634872][ T6840] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  214.657405][ T6840] ext4 filesystem being mounted at /25/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  216.028891][ T6846] loop6: detected capacity change from 0 to 2048
[  216.046364][ T6846] UDF-fs: bad mount option "ÿÿ" or missing value
[  216.745943][ T6466] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  216.844381][ T6856] loop6: detected capacity change from 0 to 1764
[  216.918164][ T6858] loop5: detected capacity change from 0 to 1764
[  217.571746][ T5869] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  217.972829][ T5869] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  217.997317][ T5869] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  218.012558][ T5869] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  218.025450][ T5869] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  218.043954][ T5869] usb 8-1: config 0 descriptor??
[  218.054697][ T5869] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[  219.313968][ T6878] loop5: detected capacity change from 0 to 1764
[  219.553547][ T6882] netlink: 16 bytes leftover after parsing attributes in process `syz.6.268'.
[  220.618719][ T5869] usb 8-1: USB disconnect, device number 3
[  220.634566][ T5803] Bluetooth: Unknown BR/EDR signaling command 0x00
[  220.641645][ T5803] Bluetooth: Wrong link type (-22)
[  220.647101][ T5803] Bluetooth: hci1: link tx timeout
[  220.653581][ T5803] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[  220.815936][ T6892] loop7: detected capacity change from 0 to 128
[  220.844427][ T6890] loop5: detected capacity change from 0 to 1764
[  220.859183][ T6892] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  220.920777][ T6896] loop3: detected capacity change from 0 to 1764
[  220.944519][ T6892] ext4 filesystem being mounted at /10/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  221.976131][ T6549] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  222.747138][ T5803] Bluetooth: hci1: command 0x0406 tx timeout
[  223.171494][ T6915] loop3: detected capacity change from 0 to 512
[  223.188089][ T6915] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  223.205919][ T6913] loop7: detected capacity change from 0 to 2048
[  223.223943][ T6913] UDF-fs: bad mount option "ÿÿ" or missing value
[  223.240449][ T6915] EXT4-fs (loop3): 1 truncate cleaned up
[  223.258050][ T6915] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  223.372410][ T6915] fscrypt (loop3, inode 18): Unsupported encryption flags (0xc6)
[  223.489644][ T5792] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.388770][ T6929] warning: `syz.7.280' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  226.939673][ T6935] loop6: detected capacity change from 0 to 1024
[  227.007318][ T6935] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  227.371747][ T6935] EXT4-fs error (device loop6): ext4_get_inode_usage:883: inode #2: comm syz.6.284: corrupted in-inode xattr: bad e_name length
[  228.503136][ T6943] bridge0: entered promiscuous mode
[  228.523226][ T6544] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.541438][ T6942] bridge0: left promiscuous mode
[  228.778274][ T6947] loop3: detected capacity change from 0 to 2048
[  228.853079][ T6947] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  228.908023][ T6947] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  229.326794][ T6956] loop3: detected capacity change from 0 to 2048
[  229.353063][ T6956] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found!
[  229.396318][ T6956] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  229.660368][ T6958] loop7: detected capacity change from 0 to 512
[  229.960194][ T6962] loop3: detected capacity change from 0 to 16
[  231.238321][ T6962] erofs: (device loop3): mounted with root inode @ nid 36.
[  231.251888][ T6962] erofs: (device loop3): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36
[  231.269056][ T6962] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -3 in[47, 4049] out[1851]
[  231.280376][ T6962] erofs: (device loop3): z_erofs_read_folio: read error -117 @ 43 of nid 36
[  231.479033][ T6958] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  231.542209][ T6958] ext4 filesystem being mounted at /13/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  231.703913][   T27] audit: type=1800 audit(1751793694.243:5): pid=6958 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.290" name="file1" dev="loop7" ino=18 res=0 errno=0
[  232.978095][ T6976] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  234.661022][ T6549] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  234.901145][ T6982] loop7: detected capacity change from 0 to 512
[  234.952085][ T6982] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  234.981724][ T6988] loop6: detected capacity change from 0 to 512
[  234.982494][ T6982] ext4 filesystem being mounted at /14/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  235.024997][ T6988] EXT4-fs (loop6): Cannot turn on journaled quota: type 0: error -2
[  235.089268][ T6988] EXT4-fs (loop6): 1 truncate cleaned up
[  235.168927][ T6988] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  235.489441][ T6991] EXT4-fs error (device loop7): ext4_lookup:1858: inode #12: comm syz.7.296: iget: bad i_size value: 2533274857506816
[  235.533109][ T6990] EXT4-fs error (device loop7): ext4_lookup:1858: inode #12: comm syz.7.296: iget: bad i_size value: 2533274857506816
[  235.626679][ T6993] loop5: detected capacity change from 0 to 512
[  235.638218][ T6549] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.648517][ T6993] EXT4-fs: Ignoring removed oldalloc option
[  235.662309][ T6988] EXT4-fs error (device loop6): ext4_append:79: inode #2: comm syz.6.297: Logical block already allocated
[  235.676387][ T6988] EXT4-fs (loop6): Remounting filesystem read-only
[  235.686626][ T6993] EXT4-fs (loop5): 1 truncate cleaned up
[  235.703408][ T6993] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  235.731831][ T6993] netlink: 4 bytes leftover after parsing attributes in process `syz.5.298'.
[  235.787390][ T6996] loop3: detected capacity change from 0 to 1764
[  235.794292][ T6544] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.815036][ T6466] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.177757][    T9] kernel write not supported for file bpf-prog (pid: 9 comm: kworker/0:1)
[  239.961657][ T7018] netlink: 16 bytes leftover after parsing attributes in process `syz.3.306'.
[  240.106207][ T7022] loop3: detected capacity change from 0 to 512
[  240.156810][ T7022] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  240.195426][ T7022] ext4 filesystem being mounted at /86/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  240.717808][ T7022] EXT4-fs error (device loop3): ext4_lookup:1858: inode #12: comm syz.3.309: iget: bad i_size value: 2533274857506816
[  240.734244][ T7022] EXT4-fs error (device loop3): ext4_lookup:1858: inode #12: comm syz.3.309: iget: bad i_size value: 2533274857506816
[  240.802669][ T5792] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.948890][ T7033] loop3: detected capacity change from 0 to 512
[  241.014283][ T7033] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  241.061669][ T7033] EXT4-fs (loop3): 1 truncate cleaned up
[  241.089777][ T7033] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  241.128440][ T7038] loop5: detected capacity change from 0 to 128
[  241.165250][ T7038] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  241.184077][ T7033] EXT4-fs error (device loop3): ext4_append:79: inode #2: comm syz.3.310: Logical block already allocated
[  241.199716][ T7036] loop6: detected capacity change from 0 to 1764
[  241.208355][ T7038] ext4 filesystem being mounted at /34/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  241.248370][ T7033] EXT4-fs (loop3): Remounting filesystem read-only
[  241.447633][ T5792] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.466450][ T6466] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  242.341155][ T7044] loop3: detected capacity change from 0 to 1764
[  243.751150][    T9] kernel write not supported for file bpf-prog (pid: 9 comm: kworker/0:1)
[  246.225429][ T7071] x_tables: ip6_tables: REJECT.0 target: invalid size 8 (kernel) != (user) 0
[  246.966356][ T7075] loop5: detected capacity change from 0 to 128
[  246.983457][ T7076] x_tables: ip6_tables: icmp6 match: only valid for protocol 58
[  247.007305][ T7075] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  247.042540][ T7075] ext4 filesystem being mounted at /37/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  247.128081][ T6466] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  247.394368][ T7084] loop5: detected capacity change from 0 to 1764
[  247.754755][ T7086] loop6: detected capacity change from 0 to 16
[  248.700202][ T7086] erofs: (device loop6): mounted with root inode @ nid 36.
[  248.743272][ T7086] erofs: (device loop6): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36
[  248.765449][ T7086] erofs: (device loop6): z_erofs_lz4_decompress_mem: failed to decompress -3 in[47, 4049] out[1851]
[  248.776466][ T7086] erofs: (device loop6): z_erofs_read_folio: read error -117 @ 43 of nid 36
[  249.285811][ T5886] kernel write not supported for file bpf-prog (pid: 5886 comm: kworker/1:7)
[  251.095746][ T7106] x_tables: ip6_tables: REJECT.0 target: invalid size 8 (kernel) != (user) 0
[  251.179648][ T7108] loop3: detected capacity change from 0 to 128
[  251.205167][ T7108] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  251.226282][ T7108] ext4 filesystem being mounted at /93/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  251.329235][ T5792] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  252.676058][ T7121] x_tables: ip6_tables: icmp6 match: only valid for protocol 58
[  253.194117][ T7131] loop5: detected capacity change from 0 to 16
[  253.493267][ T7131] erofs: (device loop5): mounted with root inode @ nid 36.
[  254.607450][ T7131] erofs: (device loop5): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36
[  254.752918][ T7131] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -3 in[47, 4049] out[1851]
[  254.763955][ T7131] erofs: (device loop5): z_erofs_read_folio: read error -117 @ 43 of nid 36
[  255.508428][ T7138] netlink: 16 bytes leftover after parsing attributes in process `syz.7.342'.
[  255.610457][ T7143] loop5: detected capacity change from 0 to 128
[  255.753555][ T7143] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  255.805948][ T7143] ext4 filesystem being mounted at /45/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  256.024698][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  256.031733][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  256.094718][ T6466] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  260.005782][ T7169] loop5: detected capacity change from 0 to 512
[  260.036110][ T7172] netlink: 16 bytes leftover after parsing attributes in process `syz.6.353'.
[  260.074443][ T7169] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  260.109242][ T7179] loop6: detected capacity change from 0 to 128
[  260.112586][ T7169] ext4 filesystem being mounted at /47/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  260.154735][ T7179] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  260.182535][ T7179] ext4 filesystem being mounted at /37/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  260.200565][   T27] audit: type=1800 audit(1751793722.733:6): pid=7169 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.349" name="file1" dev="loop5" ino=18 res=0 errno=0
[  260.257200][ T6544] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  261.876559][ T7189] x_tables: ip6_tables: REJECT.0 target: invalid size 8 (kernel) != (user) 0
[  262.269383][ T7169] EXT4-fs error (device loop5): ext4_ext_check_inode:520: inode #12: comm syz.5.349: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  265.174983][ T6466] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  268.509180][ T7219] loop7: detected capacity change from 0 to 128
[  268.653391][ T7219] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  268.725374][ T7219] ext4 filesystem being mounted at /24/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  269.382705][ T7227] x_tables: ip6_tables: icmp6 match: only valid for protocol 58
[  271.157414][ T6549] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  274.264106][ T5886] kernel write not supported for file bpf-prog (pid: 5886 comm: kworker/1:7)
[  275.599613][ T7259] loop7: detected capacity change from 0 to 1764
[  275.848931][ T7261] x_tables: ip6_tables: icmp6 match: only valid for protocol 58
[  284.471796][ T7300] loop3: detected capacity change from 0 to 1764
[  284.485716][ T7302] loop7: detected capacity change from 0 to 256
[  286.110900][ T7302] exFAT-fs (loop7): bogus allocation bitmap size(need : 2, cur : 255103877513218)
[  287.017627][ T7312] exFAT-fs (loop7): error, found bogus dentry(3) beyond unused empty group(2) (start_clu : 5, cur_clu : 5)
[  287.029248][ T7312] exFAT-fs (loop7): Filesystem has been set read-only
[  289.092894][ T7330] loop3: detected capacity change from 0 to 1024
[  289.103805][ T7330] EXT4-fs (loop3): couldn't mount as ext2 due to feature incompatibilities
[  289.385980][ T7330] loop3: detected capacity change from 0 to 512
[  289.437678][ T7330] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended
[  289.468994][ T7330] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  289.481830][ T7330] ext4 filesystem being mounted at /111/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  289.492222][   T23] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  289.623449][ T5792] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.682027][   T23] usb 8-1: Using ep0 maxpacket: 16
[  289.691331][   T23] usb 8-1: config 0 has an invalid interface number: 8 but max is 0
[  289.711497][   T23] usb 8-1: config 0 has no interface number 0
[  289.746362][   T23] usb 8-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  289.769431][   T23] usb 8-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  289.782514][   T23] usb 8-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  289.803585][   T23] usb 8-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  289.814209][   T23] usb 8-1: Product: syz
[  289.818482][   T23] usb 8-1: SerialNumber: syz
[  289.847927][ T7342] x_tables: ip6_tables: REJECT.0 target: invalid size 8 (kernel) != (user) 0
[  289.983280][   T23] usb 8-1: config 0 descriptor??
[  290.176973][   T23] cm109 8-1:0.8: invalid payload size 0, expected 4
[  290.367964][   T23] input: CM109 USB driver as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.8/input/input6
[  290.421228][    C1] cm109 8-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90
[  290.467914][ T7345] loop6: detected capacity change from 0 to 1764
[  290.734297][ T5869] usb 8-1: USB disconnect, device number 4
[  290.788094][ T5869] cm109 8-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  292.600841][ T7367] fuse: Bad value for 'group_id'
[  292.620897][   T54] kernel write not supported for file bpf-prog (pid: 54 comm: kworker/0:2)
[  293.088976][ T7379] x_tables: ip6_tables: REJECT.0 target: invalid size 8 (kernel) != (user) 0
[  293.810008][ T7383] loop7: detected capacity change from 0 to 1764
[  293.882270][ T5795] Bluetooth: hci1: unexpected event for opcode 0x2028
[  294.812182][    T9] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  294.850285][   T54] kernel write not supported for file bpf-prog (pid: 54 comm: kworker/0:2)
[  295.089957][ T7406] loop7: detected capacity change from 0 to 128
[  295.102062][    T9] usb 6-1: Using ep0 maxpacket: 16
[  295.111879][ T7406] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  295.124221][    T9] usb 6-1: config 0 has an invalid interface number: 8 but max is 0
[  295.132552][    T9] usb 6-1: config 0 has no interface number 0
[  295.139058][    T9] usb 6-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  295.165406][ T7406] ext4 filesystem being mounted at /40/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  295.306950][    T9] usb 6-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  295.320522][    T9] usb 6-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  295.329972][    T9] usb 6-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  295.338200][    T9] usb 6-1: Product: syz
[  295.358496][    T9] usb 6-1: SerialNumber: syz
[  295.414464][    T9] usb 6-1: config 0 descriptor??
[  295.493849][    T9] cm109 6-1:0.8: invalid payload size 0, expected 4
[  295.553690][    T9] input: CM109 USB driver as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.8/input/input7
[  295.880252][ T6549] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  295.988719][ T7412] loop6: detected capacity change from 0 to 256
[  295.996413][    C0] cm109 6-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90
[  296.017497][ T7412] exFAT-fs (loop6): bogus allocation bitmap size(need : 2, cur : 255103877513218)
[  296.368086][ T5869] usb 6-1: USB disconnect, device number 2
[  296.425773][ T7414] exFAT-fs (loop6): error, found bogus dentry(3) beyond unused empty group(2) (start_clu : 5, cur_clu : 5)
[  296.437456][ T7414] exFAT-fs (loop6): Filesystem has been set read-only
[  297.002841][ T5869] cm109 6-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  297.107826][ T7420] loop6: detected capacity change from 0 to 1764
[  298.160568][ T7431] loop5: detected capacity change from 0 to 1764
[  298.391215][  T786] kernel write not supported for file bpf-prog (pid: 786 comm: kworker/1:2)
[  299.032258][ T5803] Bluetooth: hci1: command 0x0406 tx timeout
[  299.203141][ T7441] loop7: detected capacity change from 0 to 128
[  299.386775][ T7441] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  299.424390][ T7441] ext4 filesystem being mounted at /44/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  300.000441][ T6549] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  300.678371][ T7456] loop3: detected capacity change from 0 to 1764
[  300.709564][ T7458] loop6: detected capacity change from 0 to 512
[  301.023213][ T7458] EXT4-fs error (device loop6): ext4_do_update_inode:5230: inode #16: comm syz.6.442: corrupted inode contents
[  301.061294][ T7458] EXT4-fs error (device loop6): ext4_dirty_inode:6106: inode #16: comm syz.6.442: mark_inode_dirty error
[  301.120715][ T7458] EXT4-fs error (device loop6): ext4_do_update_inode:5230: inode #16: comm syz.6.442: corrupted inode contents
[  301.161444][ T7458] EXT4-fs error (device loop6): __ext4_ext_dirty:202: inode #16: comm syz.6.442: mark_inode_dirty error
[  301.181728][ T7458] EXT4-fs error (device loop6): ext4_do_update_inode:5230: inode #16: comm syz.6.442: corrupted inode contents
[  303.030543][ T7458] EXT4-fs error (device loop6) in ext4_orphan_del:305: Corrupt filesystem
[  303.046696][ T7458] EXT4-fs error (device loop6): ext4_do_update_inode:5230: inode #16: comm syz.6.442: corrupted inode contents
[  303.059267][ T7458] EXT4-fs error (device loop6): ext4_truncate:4288: inode #16: comm syz.6.442: mark_inode_dirty error
[  303.082659][ T7458] EXT4-fs error (device loop6) in ext4_process_orphan:347: Corrupt filesystem
[  303.105954][ T7458] EXT4-fs (loop6): 1 truncate cleaned up
[  303.119770][ T7458] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  303.152135][ T7458] ext4 filesystem being mounted at /63/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  303.199601][   T12] Quota error (device loop6): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  303.229231][ T5803] Bluetooth: hci0: unexpected event for opcode 0x2028
[  303.240572][   T12] EXT4-fs error (device loop6): ext4_release_dquot:6974: comm kworker/u4:1: Failed to release dquot type 1
[  303.382434][ T7469] EXT4-fs error (device loop6): ext4_lookup:1858: inode #12: comm syz.6.442: iget: bad i_size value: 1407374883557376
[  303.437053][ T5869] kernel write not supported for file bpf-prog (pid: 5869 comm: kworker/0:5)
[  303.606687][ T6544] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  303.639788][ T7473] loop3: detected capacity change from 0 to 1764
[  304.509322][ T7479] loop5: detected capacity change from 0 to 128
[  304.561304][ T7479] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  304.592198][ T7479] ext4 filesystem being mounted at /65/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  304.785458][ T6466] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  304.899471][ T7486] loop3: detected capacity change from 0 to 1764
[  305.078983][ T5803] Bluetooth: hci2: command 0x0406 tx timeout
[  306.135382][ T7496] netlink: 16 bytes leftover after parsing attributes in process `syz.6.452'.
[  307.588253][  T786] kernel write not supported for file bpf-prog (pid: 786 comm: kworker/1:2)
[  307.646111][ T5803] Bluetooth: hci3: unexpected event for opcode 0x2028
[  307.705704][ T7507] loop5: detected capacity change from 0 to 128
[  307.714154][ T7507] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  307.755208][ T7509] loop6: detected capacity change from 0 to 128
[  307.764665][ T7507] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  307.815832][ T7509] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  308.017486][ T7509] ext4 filesystem being mounted at /67/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  308.816417][ T6544] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  309.310391][ T7525] loop3: detected capacity change from 0 to 1764
[  310.129447][ T7528] loop6: detected capacity change from 0 to 1764
[  310.348159][ T7531] netlink: 16 bytes leftover after parsing attributes in process `syz.7.464'.
[  311.771025][ T7545] loop6: detected capacity change from 0 to 128
[  311.796995][ T7545] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  311.809726][ T7545] ext4 filesystem being mounted at /69/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  311.838654][   T23] kernel write not supported for file bpf-prog (pid: 23 comm: kworker/1:0)
[  312.000114][ T6544] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  312.272088][ T7556] x_tables: ip6_tables: REJECT.0 target: invalid size 8 (kernel) != (user) 0
[  313.126019][ T7560] loop3: detected capacity change from 0 to 1764
[  314.268586][ T7568] netlink: 16 bytes leftover after parsing attributes in process `syz.7.475'.
[  314.315338][ T7571] loop5: detected capacity change from 0 to 1764
[  314.568303][ T7575] loop3: detected capacity change from 0 to 1764
[  316.688914][ T7591] loop3: detected capacity change from 0 to 128
[  316.709010][ T7591] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  316.725432][ T7591] ext4 filesystem being mounted at /134/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  316.824009][ T5792] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  316.916782][ T7595] loop5: detected capacity change from 0 to 1764
[  317.362673][    T9] kernel write not supported for file bpf-prog (pid: 9 comm: kworker/0:1)
[  317.445657][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  317.452274][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  317.893806][ T7613] netlink: 16 bytes leftover after parsing attributes in process `syz.3.487'.
[  319.234570][ T7624] loop7: detected capacity change from 0 to 1024
[  319.241901][ T7624] EXT4-fs: inline encryption not supported
[  319.247974][ T7624] EXT4-fs: Ignoring removed nomblk_io_submit option
[  319.268300][ T7624] EXT4-fs (loop7): can't mount with journal_async_commit, fs mounted w/o journal
[  319.310782][ T7627] loop3: detected capacity change from 0 to 1024
[  319.321353][ T7627] EXT4-fs: Ignoring removed orlov option
[  319.334072][ T7627] EXT4-fs (loop3): stripe (1570) is not aligned with cluster size (16), stripe is disabled
[  319.375759][ T7627] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  319.442317][  T786] usb 7-1: new full-speed USB device number 3 using dummy_hcd
[  319.627522][ T7630] ptrace attach of "./syz-executor exec"[6549] was attempted by "./syz-executor exec"[7630]
[  319.634556][ T7631] overlayfs: failed to resolve './file0': -2
[  319.677565][  T786] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  319.688598][  T786] usb 7-1: config 0 has no interfaces?
[  319.873091][  T786] usb 7-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  319.916611][  T786] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  319.964636][  T786] usb 7-1: Product: syz
[  319.969135][  T786] usb 7-1: Manufacturer: syz
[  319.975382][   T27] audit: type=1800 audit(1751793782.463:7): pid=7632 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.493" name="file2" dev="loop3" ino=16 res=0 errno=0
[  319.982006][  T786] usb 7-1: SerialNumber: syz
[  320.026703][  T786] usb 7-1: config 0 descriptor??
[  320.343622][  T786] usb 7-1: USB disconnect, device number 3
[  320.371918][ T5792] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  320.407852][ T7634] loop7: detected capacity change from 0 to 1764
[  320.470718][ T7636] fuse: Unknown parameter 'grou00000000000000000000'
[  320.489125][ T5869] kernel write not supported for file bpf-prog (pid: 5869 comm: kworker/0:5)
[  320.992353][ T7641] loop5: detected capacity change from 0 to 1764
[  321.493873][ T7644] loop3: detected capacity change from 0 to 256
[  321.514813][ T7644] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 255103877513218)
[  322.724286][ T7650] exFAT-fs (loop3): error, found bogus dentry(3) beyond unused empty group(2) (start_clu : 5, cur_clu : 5)
[  322.737798][ T7650] exFAT-fs (loop3): Filesystem has been set read-only
[  325.149499][ T7669] loop5: detected capacity change from 0 to 1024
[  325.183072][ T7669] EXT4-fs: Ignoring removed orlov option
[  325.197285][ T7669] EXT4-fs (loop5): stripe (1570) is not aligned with cluster size (16), stripe is disabled
[  325.230536][ T7673] fuse: Unknown parameter 'grou00000000000000000000'
[  325.260690][ T5869] kernel write not supported for file bpf-prog (pid: 5869 comm: kworker/0:5)
[  325.443407][ T7669] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  325.520261][   T27] audit: type=1800 audit(1751793788.053:8): pid=7669 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.504" name="file2" dev="loop5" ino=16 res=0 errno=0
[  325.571844][ T7679] netlink: 16 bytes leftover after parsing attributes in process `syz.6.506'.
[  325.688991][ T7681] loop6: detected capacity change from 0 to 1764
[  326.886699][ T6466] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  326.980751][ T7686] loop6: detected capacity change from 0 to 1764
[  328.077675][ T7695] x_tables: ip6_tables: REJECT.0 target: invalid size 8 (kernel) != (user) 0
[  328.182261][ T7697] loop3: detected capacity change from 0 to 1024
[  328.197498][ T7697] EXT4-fs: inline encryption not supported
[  328.224782][ T7697] EXT4-fs: Ignoring removed nomblk_io_submit option
[  328.412158][ T7697] EXT4-fs (loop3): can't mount with journal_async_commit, fs mounted w/o journal
[  328.745804][ T7704] overlayfs: failed to resolve './file0': -2
[  328.857535][ T7705] ptrace attach of "./syz-executor exec"[5792] was attempted by "./syz-executor exec"[7705]
[  330.647288][ T7708] loop7: detected capacity change from 0 to 1764
[  331.740211][ T7721] netlink: 16 bytes leftover after parsing attributes in process `syz.7.516'.
[  332.086518][ T7723] loop5: detected capacity change from 0 to 1764
[  332.351995][ T7728] fuse: Unknown parameter 'grou00000000000000000000'
[  332.361585][   T23] kernel write not supported for file bpf-prog (pid: 23 comm: kworker/1:0)
[  333.452447][ T7737] loop6: detected capacity change from 0 to 128
[  333.502292][ T5886] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  333.677765][   T34] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  333.722203][ T5886] usb 4-1: Using ep0 maxpacket: 8
[  333.824128][ T5886] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  333.834738][ T5886] usb 4-1: config 0 has no interfaces?
[  333.840270][ T5886] usb 4-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  333.856115][ T5886] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  333.883003][ T5886] usb 4-1: config 0 descriptor??
[  333.946978][ T7739] loop5: detected capacity change from 0 to 1764
[  335.182545][  T786] usb 4-1: USB disconnect, device number 6
[  335.228744][ T7736] loop6: detected capacity change from 0 to 1024
[  335.310823][   T34] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  335.723629][ T7749] loop5: detected capacity change from 0 to 1024
[  335.730682][ T7749] EXT4-fs: inline encryption not supported
[  335.769595][ T7749] EXT4-fs: Ignoring removed nomblk_io_submit option
[  335.809919][ T7751] x_tables: ip6_tables: REJECT.0 target: invalid size 8 (kernel) != (user) 0
[  336.113997][   T34] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  336.510925][ T7749] EXT4-fs (loop5): can't mount with journal_async_commit, fs mounted w/o journal
[  336.827643][ T7756] ptrace attach of "./syz-executor exec"[6466] was attempted by "./syz-executor exec"[7756]
[  336.938967][ T7756] overlayfs: failed to resolve './file0': -2
[  337.508143][   T34] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  337.539678][ T7755] loop6: detected capacity change from 0 to 1764
[  338.179570][ T7765] fuse: Unknown parameter 'group_i00000000000000000000'
[  338.235542][ T5838] kernel write not supported for file bpf-prog (pid: 5838 comm: kworker/1:3)
[  339.436269][ T7774] loop5: detected capacity change from 0 to 1764
[  340.224540][ T7777] loop7: detected capacity change from 0 to 1764
[  340.879152][ T5795] Bluetooth: hci0: command 0x0406 tx timeout
[  342.302447][ T7787] loop7: detected capacity change from 0 to 1764
[  342.717817][ T7791] x_tables: ip6_tables: REJECT.0 target: invalid size 8 (kernel) != (user) 0
[  343.665658][ T7796] loop7: detected capacity change from 0 to 1024
[  343.688806][ T7796] EXT4-fs: inline encryption not supported
[  343.727862][ T7796] EXT4-fs: Ignoring removed nomblk_io_submit option
[  343.833596][   T34] hsr_slave_0: left promiscuous mode
[  343.850655][ T7796] EXT4-fs (loop7): can't mount with journal_async_commit, fs mounted w/o journal
[  344.023077][   T34] hsr_slave_1: left promiscuous mode
[  344.057187][   T34] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  344.072324][ T5795] Bluetooth: hci0: command 0x0406 tx timeout
[  344.078576][   T34] batman_adv: batadv0: Removing interface: batadv_slave_0
[  344.166908][   T34] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  344.180823][ T7804] ptrace attach of "./syz-executor exec"[6549] was attempted by "./syz-executor exec"[7804]
[  344.409801][   T34] batman_adv: batadv0: Removing interface: batadv_slave_1
[  344.481807][   T34] bridge_slave_1: left allmulticast mode
[  344.488316][   T34] bridge_slave_1: left promiscuous mode
[  344.499395][   T34] bridge0: port 2(bridge_slave_1) entered disabled state
[  344.568584][   T34] bridge_slave_0: left allmulticast mode
[  344.574887][   T34] bridge_slave_0: left promiscuous mode
[  344.582088][   T34] bridge0: port 1(bridge_slave_0) entered disabled state
[  344.931507][   T34] veth1_macvtap: left promiscuous mode
[  344.943198][   T34] veth0_macvtap: left promiscuous mode
[  344.948927][   T34] veth1_vlan: left promiscuous mode
[  344.967519][   T34] veth0_vlan: left promiscuous mode
[  344.980095][ T7810] netlink: 16 bytes leftover after parsing attributes in process `syz.7.544'.
[  344.995125][ T7808] fuse: Unknown parameter 'group_i00000000000000000000'
[  345.014053][   T23] kernel write not supported for file bpf-prog (pid: 23 comm: kworker/1:0)
[  348.418071][ T7828] loop5: detected capacity change from 0 to 1764
[  348.457220][ T7831] loop6: detected capacity change from 0 to 256
[  348.477838][ T7831] exFAT-fs (loop6): bogus allocation bitmap size(need : 2, cur : 255103877513218)
[  348.691042][   T34] team0 (unregistering): Port device team_slave_1 removed
[  349.235250][   T34] team0 (unregistering): Port device team_slave_0 removed
[  349.508648][   T34] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  349.589240][   T34] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  349.755460][ T5795] Bluetooth: hci0: command 0x0406 tx timeout
[  350.365160][ T7839] exFAT-fs (loop6): error, found bogus dentry(3) beyond unused empty group(2) (start_clu : 5, cur_clu : 5)
[  350.376710][ T7839] exFAT-fs (loop6): Filesystem has been set read-only
[  350.822361][ T5795] Bluetooth: hci1: unexpected event for opcode 0x0000
[  352.395218][ T5795] Bluetooth: hci0: command 0x0406 tx timeout
[  353.155025][   T34] bond0 (unregistering): Released all slaves
[  353.335967][ T7860] loop3: detected capacity change from 0 to 1764
[  354.479784][ T5795] Bluetooth: hci1: unexpected event for opcode 0x0000
[  354.610541][ T7881] loop5: detected capacity change from 0 to 1024
[  354.618503][ T7881] EXT4-fs: inline encryption not supported
[  354.625837][ T7881] EXT4-fs: Ignoring removed nomblk_io_submit option
[  354.783975][ T7881] EXT4-fs (loop5): can't mount with journal_async_commit, fs mounted w/o journal
[  354.874821][ T5795] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  354.884095][ T5795] Bluetooth: hci1: Injecting HCI hardware error event
[  354.903869][ T5803] Bluetooth: hci1: hardware error 0x00
[  354.904979][ T7885] ptrace attach of "./syz-executor exec"[6466] was attempted by "./syz-executor exec"[7885]
[  355.428566][ T7887] netlink: 16 bytes leftover after parsing attributes in process `syz.6.569'.
[  355.842483][ T5795] Bluetooth: hci3: command 0x0406 tx timeout
[  355.900537][ T7893] loop6: detected capacity change from 0 to 1764
[  356.093459][ T7897] x_tables: ip6_tables: REJECT.0 target: invalid size 8 (kernel) != (user) 0
[  358.456843][ T5795] Bluetooth: hci3: command 0x0406 tx timeout
[  358.460429][ T5803] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  358.540495][ T7909] loop6: detected capacity change from 0 to 128
[  359.032469][ T7917] loop5: detected capacity change from 0 to 256
[  359.074343][ T7917] exFAT-fs (loop5): bogus allocation bitmap size(need : 2, cur : 255103877513218)
[  360.103983][ T7919] exFAT-fs (loop5): error, found bogus dentry(3) beyond unused empty group(2) (start_clu : 5, cur_clu : 5)
[  360.115514][ T7919] exFAT-fs (loop5): Filesystem has been set read-only
[  360.254471][ T7922] netlink: 16 bytes leftover after parsing attributes in process `syz.6.581'.
[  360.902402][ T7932] x_tables: ip6_tables: REJECT.0 target: invalid size 8 (kernel) != (user) 0
[  363.549258][ T7947] loop5: detected capacity change from 0 to 1764
[  364.977436][ T7961] netlink: 16 bytes leftover after parsing attributes in process `syz.7.592'.
[  365.806446][ T7972] x_tables: ip6_tables: REJECT.0 target: invalid size 8 (kernel) != (user) 0
[  366.935562][ T7981] loop7: detected capacity change from 0 to 128
[  367.005677][ T7982] loop3: detected capacity change from 0 to 1764
[  368.250260][ T7997] netlink: 16 bytes leftover after parsing attributes in process `syz.7.603'.
[  369.031742][ T8002] x_tables: ip6_tables: REJECT.0 target: invalid size 8 (kernel) != (user) 0
[  370.541803][ T8013] loop7: detected capacity change from 0 to 256
[  370.575200][ T8013] exFAT-fs (loop7): bogus allocation bitmap size(need : 2, cur : 255103877513218)
[  370.607947][ T8015] loop3: detected capacity change from 0 to 1764
[  370.608929][ T8017] loop5: detected capacity change from 0 to 128
[  370.791764][ T8019] exFAT-fs (loop7): error, found bogus dentry(3) beyond unused empty group(2) (start_clu : 5, cur_clu : 5)
[  370.803777][ T8019] exFAT-fs (loop7): Filesystem has been set read-only
[  371.002610][ T8021] loop7: detected capacity change from 0 to 1024
[  371.037503][ T8021] EXT4-fs: inline encryption not supported
[  371.052248][ T8021] EXT4-fs: Ignoring removed nomblk_io_submit option
[  371.093646][ T8021] EXT4-fs (loop7): can't mount with journal_async_commit, fs mounted w/o journal
[  371.170227][ T8026] netlink: 16 bytes leftover after parsing attributes in process `syz.5.613'.
[  371.854408][ T8031] ptrace attach of "./syz-executor exec"[6549] was attempted by "./syz-executor exec"[8031]
[  372.193716][ T8031] overlayfs: failed to resolve './file0': -2
[  372.749177][ T8043] x_tables: ip6_tables: REJECT.0 target: invalid size 8 (kernel) != (user) 0
[  375.997082][ T8055] loop3: detected capacity change from 0 to 1764
[  376.292492][ T8057] loop6: detected capacity change from 0 to 128
[  376.738219][ T8063] loop5: detected capacity change from 0 to 256
[  376.755031][ T8065] fuse: Bad value for 'user_id'
[  376.763828][ T8063] exFAT-fs (loop5): bogus allocation bitmap size(need : 2, cur : 255103877513218)
[  376.767206][   T23] kernel write not supported for file bpf-prog (pid: 23 comm: kworker/1:0)
[  376.977034][ T8067] exFAT-fs (loop5): error, found bogus dentry(3) beyond unused empty group(2) (start_clu : 5, cur_clu : 5)
[  376.988545][ T8067] exFAT-fs (loop5): Filesystem has been set read-only
[  377.868540][ T8075] loop6: detected capacity change from 0 to 1024
[  377.876106][ T8075] EXT4-fs: inline encryption not supported
[  377.882066][ T8075] EXT4-fs: Ignoring removed nomblk_io_submit option
[  377.914574][ T8075] EXT4-fs (loop6): can't mount with journal_async_commit, fs mounted w/o journal
[  379.393906][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  379.400361][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  379.528585][ T8084] ptrace attach of "./syz-executor exec"[6544] was attempted by "./syz-executor exec"[8084]
[  379.570430][ T8084] overlayfs: failed to resolve './file0': -2
[  380.463194][ T8088] loop6: detected capacity change from 0 to 128
[  380.747430][ T8092] loop3: detected capacity change from 0 to 256
[  380.785309][ T8092] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 255103877513218)
[  381.007195][ T8094] exFAT-fs (loop3): error, found bogus dentry(3) beyond unused empty group(2) (start_clu : 5, cur_clu : 5)
[  381.018887][ T8094] exFAT-fs (loop3): Filesystem has been set read-only
[  381.217288][ T8098] loop7: detected capacity change from 0 to 1764
[  383.665427][ T8121] loop7: detected capacity change from 0 to 1024
[  383.673294][ T8121] EXT4-fs: inline encryption not supported
[  383.679402][ T8121] EXT4-fs: Ignoring removed nomblk_io_submit option
[  383.694587][ T8121] EXT4-fs (loop7): can't mount with journal_async_commit, fs mounted w/o journal
[  383.703651][ T8123] loop3: detected capacity change from 0 to 1764
[  383.959508][ T8126] ptrace attach of "./syz-executor exec"[6549] was attempted by "./syz-executor exec"[8126]
[  383.971688][ T8126] overlayfs: failed to resolve './file0': -2
[  385.867370][ T8140] loop5: detected capacity change from 0 to 256
[  385.927202][ T8140] exFAT-fs (loop5): bogus allocation bitmap size(need : 2, cur : 255103877513218)
[  386.171400][ T8144] exFAT-fs (loop5): error, found bogus dentry(3) beyond unused empty group(2) (start_clu : 5, cur_clu : 5)
[  386.183006][ T8144] exFAT-fs (loop5): Filesystem has been set read-only
[  386.404334][ T8146] netlink: 16 bytes leftover after parsing attributes in process `syz.5.649'.
[  386.634975][ T8155] loop5: detected capacity change from 0 to 1024
[  386.652991][ T8155] EXT4-fs: inline encryption not supported
[  386.661447][ T8155] EXT4-fs: Ignoring removed nomblk_io_submit option
[  386.723760][ T8155] EXT4-fs (loop5): can't mount with journal_async_commit, fs mounted w/o journal
[  387.690374][ T8161] ptrace attach of "./syz-executor exec"[6466] was attempted by "./syz-executor exec"[8161]
[  387.754209][ T8161] overlayfs: failed to resolve './file0': -2
[  389.256907][ T8174] loop7: detected capacity change from 0 to 256
[  389.276634][ T8174] exFAT-fs (loop7): bogus allocation bitmap size(need : 2, cur : 255103877513218)
[  389.509673][ T8174] exFAT-fs (loop7): error, found bogus dentry(3) beyond unused empty group(2) (start_clu : 5, cur_clu : 5)
[  389.521406][ T8174] exFAT-fs (loop7): Filesystem has been set read-only
[  389.801069][ T8179] netlink: 16 bytes leftover after parsing attributes in process `syz.6.661'.
[  390.048787][ T8183] loop6: detected capacity change from 0 to 1764
[  390.429068][ T8189] fuse: Bad value for 'fd'
[  390.769629][ T5869] kernel write not supported for file bpf-prog (pid: 5869 comm: kworker/0:5)
[  390.903080][ T8192] loop7: detected capacity change from 0 to 1024
[  390.928766][ T8192] EXT4-fs: inline encryption not supported
[  390.981583][ T8192] EXT4-fs: Ignoring removed nomblk_io_submit option
[  391.041247][ T8192] EXT4-fs (loop7): can't mount with journal_async_commit, fs mounted w/o journal
[  391.147937][ T8200] loop3: detected capacity change from 0 to 1764
[  392.164248][ T8203] ptrace attach of "./syz-executor exec"[6549] was attempted by "./syz-executor exec"[8203]
[  392.237381][ T8203] overlayfs: failed to resolve './file0': -2
[  393.937680][ T8213] loop5: detected capacity change from 0 to 256
[  394.773562][ T8213] exFAT-fs (loop5): bogus allocation bitmap size(need : 2, cur : 255103877513218)
[  396.159107][ T8213] exFAT-fs (loop5): error, found bogus dentry(3) beyond unused empty group(2) (start_clu : 5, cur_clu : 5)
[  396.170588][ T8213] exFAT-fs (loop5): Filesystem has been set read-only
[  396.500967][ T8219] netlink: 16 bytes leftover after parsing attributes in process `syz.7.672'.
[  398.505501][ T8225] fuse: Bad value for 'fd'
[  398.552248][ T5869] kernel write not supported for file bpf-prog (pid: 5869 comm: kworker/0:5)
[  398.662397][ T8229] loop3: detected capacity change from 0 to 1764
[  400.259547][ T8244] loop6: detected capacity change from 0 to 256
[  400.326876][ T8244] exFAT-fs (loop6): bogus allocation bitmap size(need : 2, cur : 255103877513218)
[  400.612413][ T8244] exFAT-fs (loop6): error, found bogus dentry(3) beyond unused empty group(2) (start_clu : 5, cur_clu : 5)
[  400.624481][ T8244] exFAT-fs (loop6): Filesystem has been set read-only
[  400.763194][ T8247] loop7: detected capacity change from 0 to 1764
[  406.577248][ T8275] fuse: Invalid rootmode
[  406.600052][   T54] kernel write not supported for file bpf-prog (pid: 54 comm: kworker/0:2)
[  407.177480][ T8285] netlink: 16 bytes leftover after parsing attributes in process `syz.5.694'.
[  407.303296][ T8289] loop6: detected capacity change from 0 to 256
[  407.321149][ T8289] exFAT-fs (loop6): bogus allocation bitmap size(need : 2, cur : 255103877513218)
[  407.373141][ T8290] exFAT-fs (loop6): error, found bogus dentry(3) beyond unused empty group(2) (start_clu : 5, cur_clu : 5)
[  407.385352][ T8290] exFAT-fs (loop6): Filesystem has been set read-only
[  407.622347][ T8292] loop6: detected capacity change from 0 to 1024
[  407.633488][ T8292] EXT4-fs: inline encryption not supported
[  407.639470][ T8292] EXT4-fs: Ignoring removed nomblk_io_submit option
[  407.675347][ T8292] EXT4-fs (loop6): can't mount with journal_async_commit, fs mounted w/o journal
[  407.693537][ T8294] loop5: detected capacity change from 0 to 1764
[  408.096219][ T8296] ptrace attach of "./syz-executor exec"[6544] was attempted by "./syz-executor exec"[8296]
[  408.200947][ T8299] overlayfs: failed to resolve './file0': -2
[  408.815673][ T8304] loop6: detected capacity change from 0 to 1764
[  410.065207][ T8315] fuse: Invalid rootmode
[  410.104592][   T54] kernel write not supported for file bpf-prog (pid: 54 comm: kworker/0:2)
[  410.536103][ T8323] netlink: 16 bytes leftover after parsing attributes in process `syz.3.705'.
[  410.629571][ T8325] loop6: detected capacity change from 0 to 256
[  410.727314][ T8325] exFAT-fs (loop6): bogus allocation bitmap size(need : 2, cur : 255103877513218)
[  410.787887][ T8326] exFAT-fs (loop6): error, found bogus dentry(3) beyond unused empty group(2) (start_clu : 5, cur_clu : 5)
[  410.799565][ T8326] exFAT-fs (loop6): Filesystem has been set read-only
[  410.890286][ T8328] loop3: detected capacity change from 0 to 1024
[  410.897951][ T8328] EXT4-fs: inline encryption not supported
[  410.905143][ T8328] EXT4-fs: Ignoring removed nomblk_io_submit option
[  411.354471][ T8328] EXT4-fs (loop3): can't mount with journal_async_commit, fs mounted w/o journal
[  412.010597][ T8333] ptrace attach of "./syz-executor exec"[5792] was attempted by "./syz-executor exec"[8333]
[  412.249953][ T8333] overlayfs: failed to resolve './file0': -2
[  542.721970][    C0] ------------[ cut here ]------------
[  542.728687][    C0] WARNING: CPU: 0 PID: 8331 at kernel/rcu/tree_stall.h:1001 rcu_check_gp_start_stall+0x2dc/0x460
[  542.739221][    C0] Modules linked in:
[  542.743125][    C0] CPU: 0 PID: 8331 Comm: syz.6.707 Not tainted 6.6.95-syzkaller #0
[  542.751024][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  542.761108][    C0] RIP: 0010:rcu_check_gp_start_stall+0x2dc/0x460
[  542.767464][    C0] Code: ff ff ff 48 c7 c7 a0 e4 ee 96 be 04 00 00 00 e8 5a 21 6e 00 48 89 df b8 01 00 00 00 87 05 cc be 7e 15 85 c0 0f 85 19 ff ff ff <0f> 0b 48 81 ff c0 4f d3 8c 74 47 48 c7 c0 dc b2 4a 8e 48 c1 e8 03
[  542.787254][    C0] RSP: 0018:ffffc90000007bb8 EFLAGS: 00010046
[  542.793330][    C0] RAX: 0000000000000000 RBX: ffffffff8cd34fc0 RCX: ffffffff817025c6
[  542.801308][    C0] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffffff8cd34fc0
[  542.809285][    C0] RBP: ffffc90000007e30 R08: 0000000000000003 R09: 0000000000000004
[  542.817265][    C0] R10: dffffc0000000000 R11: fffffbfff2dddc94 R12: 0000000000002904
[  542.825347][    C0] R13: 1ffff110171c7a6a R14: 0000000000000a02 R15: dffffc0000000000
[  542.833348][    C0] FS:  00007fd13d8546c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  542.842298][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  542.848894][    C0] CR2: 0000200000087000 CR3: 000000005f70f000 CR4: 00000000003526f0
[  542.856871][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  542.864934][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  542.872908][    C0] Call Trace:
[  542.876190][    C0]  <IRQ>
[  542.879042][    C0]  rcu_core+0x612/0x1720
[  542.883305][    C0]  ? ktime_get+0x7f/0x280
[  542.887640][    C0]  ? rcu_cpu_kthread_park+0x90/0x90
[  542.892848][    C0]  ? kvm_sched_clock_read+0x11/0x20
[  542.898136][    C0]  ? sched_clock+0x3f/0x60
[  542.902564][    C0]  ? sched_clock_cpu+0x75/0x430
[  542.907682][    C0]  ? ktime_get+0x7f/0x280
[  542.912019][    C0]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  542.918097][    C0]  ? lock_chain_count+0x20/0x20
[  542.923051][    C0]  handle_softirqs+0x280/0x820
[  542.927826][    C0]  ? __irq_exit_rcu+0xc7/0x190
[  542.932689][    C0]  ? do_softirq+0x180/0x180
[  542.937235][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  542.942470][    C0]  __irq_exit_rcu+0xc7/0x190
[  542.947081][    C0]  ? irq_exit_rcu+0x20/0x20
[  542.951626][    C0]  irq_exit_rcu+0x9/0x20
[  542.955885][    C0]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  542.961530][    C0]  </IRQ>
[  542.964517][    C0]  <TASK>
[  542.967461][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  542.973454][    C0] RIP: 0010:_raw_spin_unlock_irq+0x29/0x50
[  542.979271][    C0] Code: 00 f3 0f 1e fa 53 48 89 fb 48 83 c7 18 48 8b 74 24 08 e8 9a 78 ef f6 48 89 df e8 b2 4a f0 f6 e8 8d f7 13 f7 fb bf 01 00 00 00 <e8> f2 61 e3 f6 65 8b 05 03 b8 8b 75 85 c0 74 02 5b c3 e8 e0 99 88
[  542.999413][    C0] RSP: 0018:ffffc9000b83fc98 EFLAGS: 00000282
[  543.005488][    C0] RAX: b5dc73e024e08800 RBX: ffff88807994ef00 RCX: b5dc73e024e08800
[  543.013472][    C0] RDX: dffffc0000000000 RSI: ffffffff8aaab2c0 RDI: 0000000000000001
[  543.021453][    C0] RBP: ffff88807994f198 R08: ffffffff8e4a7e2f R09: 1ffffffff1c94fc5
[  543.029434][    C0] R10: dffffc0000000000 R11: fffffbfff1c94fc6 R12: 1ffff1100f329e33
[  543.037454][    C0] R13: 0000000000000011 R14: dffffc0000000000 R15: 0000000000000000
[  543.045469][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  543.050696][    C0]  get_signal+0x11f5/0x1400
[  543.055229][    C0]  arch_do_signal_or_restart+0x96/0x780
[  543.060881][    C0]  ? get_sigframe_size+0x20/0x20
[  543.065842][    C0]  ? exit_to_user_mode_loop+0x3b/0x110
[  543.071314][    C0]  exit_to_user_mode_loop+0x70/0x110
[  543.076610][    C0]  exit_to_user_mode_prepare+0xb1/0x140
[  543.082169][    C0]  syscall_exit_to_user_mode+0x1a/0x50
[  543.087634][    C0]  do_syscall_64+0x61/0xb0
[  543.092148][    C0]  ? clear_bhb_loop+0x40/0x90
[  543.096837][    C0]  ? clear_bhb_loop+0x40/0x90
[  543.101525][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  543.107431][    C0] RIP: 0033:0x7fd13c98e929
[  543.111855][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  543.131479][    C0] RSP: 002b:00007fd13d8540e8 EFLAGS: 00000246
[  543.137559][    C0] RAX: fffffffffffffffc RBX: 00007fd13cbb5fa8 RCX: 00007fd13c98e929
[  543.145547][    C0] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fd13cbb5fa8
[  543.153528][    C0] RBP: 00007fd13cbb5fa0 R08: 0000000000000000 R09: 0000000000000000
[  543.161509][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd13cbb5fac
[  543.169490][    C0] R13: 0000000000000000 R14: 00007ffec39a19d0 R15: 00007ffec39a1ab8
[  543.177481][    C0]  </TASK>
[  543.180508][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  543.187805][    C0] CPU: 0 PID: 8331 Comm: syz.6.707 Not tainted 6.6.95-syzkaller #0
[  543.195727][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  543.205793][    C0] Call Trace:
[  543.209080][    C0]  <IRQ>
[  543.211930][    C0]  dump_stack_lvl+0x16c/0x230
[  543.216633][    C0]  ? show_regs_print_info+0x20/0x20
[  543.221851][    C0]  ? load_image+0x3b0/0x3b0
[  543.226372][    C0]  panic+0x2c0/0x710
[  543.230286][    C0]  ? bpf_jit_dump+0xd0/0xd0
[  543.234808][    C0]  __warn+0x2e0/0x470
[  543.238794][    C0]  ? rcu_check_gp_start_stall+0x2dc/0x460
[  543.244631][    C0]  ? rcu_check_gp_start_stall+0x2dc/0x460
[  543.250362][    C0]  report_bug+0x2be/0x4f0
[  543.254709][    C0]  ? rcu_check_gp_start_stall+0x2dc/0x460
[  543.260447][    C0]  ? rcu_check_gp_start_stall+0x2dc/0x460
[  543.266178][    C0]  ? rcu_check_gp_start_stall+0x2de/0x460
[  543.271908][    C0]  handle_bug+0xcf/0x120
[  543.276165][    C0]  exc_invalid_op+0x1a/0x50
[  543.280686][    C0]  asm_exc_invalid_op+0x1a/0x20
[  543.285560][    C0] RIP: 0010:rcu_check_gp_start_stall+0x2dc/0x460
[  543.291903][    C0] Code: ff ff ff 48 c7 c7 a0 e4 ee 96 be 04 00 00 00 e8 5a 21 6e 00 48 89 df b8 01 00 00 00 87 05 cc be 7e 15 85 c0 0f 85 19 ff ff ff <0f> 0b 48 81 ff c0 4f d3 8c 74 47 48 c7 c0 dc b2 4a 8e 48 c1 e8 03
[  543.311519][    C0] RSP: 0018:ffffc90000007bb8 EFLAGS: 00010046
[  543.317609][    C0] RAX: 0000000000000000 RBX: ffffffff8cd34fc0 RCX: ffffffff817025c6
[  543.325587][    C0] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffffff8cd34fc0
[  543.333572][    C0] RBP: ffffc90000007e30 R08: 0000000000000003 R09: 0000000000000004
[  543.341549][    C0] R10: dffffc0000000000 R11: fffffbfff2dddc94 R12: 0000000000002904
[  543.349705][    C0] R13: 1ffff110171c7a6a R14: 0000000000000a02 R15: dffffc0000000000
[  543.357779][    C0]  ? rcu_check_gp_start_stall+0x2c6/0x460
[  543.363521][    C0]  ? rcu_check_gp_start_stall+0x2c6/0x460
[  543.369274][    C0]  rcu_core+0x612/0x1720
[  543.373534][    C0]  ? ktime_get+0x7f/0x280
[  543.377870][    C0]  ? rcu_cpu_kthread_park+0x90/0x90
[  543.383079][    C0]  ? kvm_sched_clock_read+0x11/0x20
[  543.388278][    C0]  ? sched_clock+0x3f/0x60
[  543.392701][    C0]  ? sched_clock_cpu+0x75/0x430
[  543.397555][    C0]  ? ktime_get+0x7f/0x280
[  543.401914][    C0]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  543.407905][    C0]  ? lock_chain_count+0x20/0x20
[  543.412773][    C0]  handle_softirqs+0x280/0x820
[  543.417721][    C0]  ? __irq_exit_rcu+0xc7/0x190
[  543.422688][    C0]  ? do_softirq+0x180/0x180
[  543.427206][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  543.432417][    C0]  __irq_exit_rcu+0xc7/0x190
[  543.437019][    C0]  ? irq_exit_rcu+0x20/0x20
[  543.441531][    C0]  irq_exit_rcu+0x9/0x20
[  543.445775][    C0]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  543.451416][    C0]  </IRQ>
[  543.454370][    C0]  <TASK>
[  543.457392][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  543.463385][    C0] RIP: 0010:_raw_spin_unlock_irq+0x29/0x50
[  543.469199][    C0] Code: 00 f3 0f 1e fa 53 48 89 fb 48 83 c7 18 48 8b 74 24 08 e8 9a 78 ef f6 48 89 df e8 b2 4a f0 f6 e8 8d f7 13 f7 fb bf 01 00 00 00 <e8> f2 61 e3 f6 65 8b 05 03 b8 8b 75 85 c0 74 02 5b c3 e8 e0 99 88
[  543.489512][    C0] RSP: 0018:ffffc9000b83fc98 EFLAGS: 00000282
[  543.495595][    C0] RAX: b5dc73e024e08800 RBX: ffff88807994ef00 RCX: b5dc73e024e08800
[  543.503574][    C0] RDX: dffffc0000000000 RSI: ffffffff8aaab2c0 RDI: 0000000000000001
[  543.511555][    C0] RBP: ffff88807994f198 R08: ffffffff8e4a7e2f R09: 1ffffffff1c94fc5
[  543.519536][    C0] R10: dffffc0000000000 R11: fffffbfff1c94fc6 R12: 1ffff1100f329e33
[  543.527532][    C0] R13: 0000000000000011 R14: dffffc0000000000 R15: 0000000000000000
[  543.535554][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  543.541048][    C0]  get_signal+0x11f5/0x1400
[  543.545772][    C0]  arch_do_signal_or_restart+0x96/0x780
[  543.551361][    C0]  ? get_sigframe_size+0x20/0x20
[  543.556383][    C0]  ? exit_to_user_mode_loop+0x3b/0x110
[  543.562037][    C0]  exit_to_user_mode_loop+0x70/0x110
[  543.567430][    C0]  exit_to_user_mode_prepare+0xb1/0x140
[  543.572997][    C0]  syscall_exit_to_user_mode+0x1a/0x50
[  543.578552][    C0]  do_syscall_64+0x61/0xb0
[  543.582979][    C0]  ? clear_bhb_loop+0x40/0x90
[  543.587671][    C0]  ? clear_bhb_loop+0x40/0x90
[  543.592381][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  543.598307][    C0] RIP: 0033:0x7fd13c98e929
[  543.602739][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  543.622373][    C0] RSP: 002b:00007fd13d8540e8 EFLAGS: 00000246
[  543.628457][    C0] RAX: fffffffffffffffc RBX: 00007fd13cbb5fa8 RCX: 00007fd13c98e929
[  543.636436][    C0] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fd13cbb5fa8
[  543.644415][    C0] RBP: 00007fd13cbb5fa0 R08: 0000000000000000 R09: 0000000000000000
[  543.652393][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd13cbb5fac
[  543.660371][    C0] R13: 0000000000000000 R14: 00007ffec39a19d0 R15: 00007ffec39a1ab8
[  543.668421][    C0]  </TASK>
[  544.781292][    C0] Shutting down cpus with NMI
[  544.786388][    C0] Kernel Offset: disabled
[  544.791147][    C0] Rebooting in 86400 seconds..