last executing test programs:

9m20.080099756s ago: executing program 0 (id=9):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
r0 = getpgrp(0xffffffffffffffff)
sched_setaffinity(0x0, 0x0, 0x0)
getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000d00)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$unix(r2, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000640), 0x0, 0x0, 0x50, 0x4048080}, 0x20008040)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYBLOB="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", @ANYBLOB="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", @ANYRES64], 0x8, 0x2f4, &(0x7f0000000880)="$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")
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000040), 0x208e24b)

9m18.973465123s ago: executing program 0 (id=10):
socket$inet6(0xa, 0x80002, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
syz_genetlink_get_family_id$smc(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f00000002c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

9m17.249627432s ago: executing program 0 (id=11):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0x8, 0x8, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f0000000640)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x6, [@typedef={0x4, 0x0, 0x0, 0x7}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x10}, @union={0x0, 0x1, 0x0, 0x5, 0x1, 0x21000000, [{0x0, 0x2, 0x1000000}]}]}, {0x0, [0x0, 0x0, 0x0, 0xda]}}, &(0x7f0000000340)=""/142, 0x52, 0x35b, 0x1, 0x0, 0x0, @void, @value}, 0x20)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f0000000500)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x44, 0x44, 0x4, [@var={0x2, 0x0, 0x0, 0xe, 0x4, 0x1}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x8}, @fwd={0x1}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x3, 0x2, 0xb}}]}, {0x0, [0x61, 0x61]}}, 0x0, 0x60, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)

9m15.025446807s ago: executing program 0 (id=12):
ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, 0x0)
ioctl$UI_SET_EVBIT(0xffffffffffffffff, 0x40045564, 0x12)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x5, 0x1000086}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x43, &(0x7f0000000040)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$IOCTL_VMCI_INIT_CONTEXT(0xffffffffffffffff, 0x7a0, 0x0)
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000040)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r1, 0x3ba0, &(0x7f0000000340)={0x48, 0x2, r2})
prctl$PR_MCE_KILL(0x21, 0x0, 0x0)
ioctl$IOMMU_IOAS_MAP$PAGES(r1, 0x3b85, 0x0)

9m11.90864856s ago: executing program 0 (id=14):
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYRES32=0x0], 0x0, 0x37, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'syz_tun\x00'})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
setpgid(0x0, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000006c0), r2)
sendmsg$IEEE802154_LLSEC_DEL_KEY(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000700)={0x28, r3, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_KEY_ID={0x5}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x28}}, 0x0)

9m10.170978237s ago: executing program 3 (id=4):
sendto$inet6(0xffffffffffffffff, &(0x7f0000000140)='u', 0x1, 0x24000010, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='westwood\x00', 0x9)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000100), 0xfffffd9d)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendfile(r0, r1, 0x0, 0x1000004)

9m7.922406259s ago: executing program 0 (id=19):
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0xffd}, 0x2a, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000440)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(0xffffffffffffffff, 0x4)
r3 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
open_tree(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', 0xc0100)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0x5ba8, 0xfffffffffffffffd)
keyctl$read(0xb, r3, &(0x7f0000000240)=""/112, 0x349b7f55)

9m4.757676667s ago: executing program 3 (id=24):
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close(r1)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
write$FUSE_INIT(r1, &(0x7f00000002c0)={0x50, 0x0, 0x0, {0x7, 0x1f, 0x4, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x14c, 0x94a4}}, 0x50)
execve(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
syz_fuse_handle_req(r1, &(0x7f0000002800)="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", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
dup3(r0, r1, 0x80000)

9m0.881874311s ago: executing program 3 (id=27):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f600001785000000430000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r4, 0x0, 0x10, &(0x7f0000000080)="170000000200020000ffbe8c5ee17688a2003c000303000afdff02a257fc5ad90200bb6a880000d6c9db0000db00000200df01800a0000ebfc0607bdff59100ac45761547a681f009cee4a5acba400001fb700674f00c88ebbf9315033bf79ac2dfc061f15003901dee2ffffffffe9000000000000000062068f5ee50ce5af9b1c568302ffff02ff0331dd3bab0840024f0298e9e90539062a80e605007f71174ab498a30b3e5a1b47b63a6323ded2aa084cd36276a3afff", 0xb8)
sendto$inet(r4, 0x0, 0x0, 0x20064854, &(0x7f0000000040)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xd}}, 0x10)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

8m55.70919769s ago: executing program 3 (id=33):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x2d)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
mkdirat(0xffffffffffffffff, 0x0, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
getsockname$packet(r4, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f00000021c0)='maps\x00')
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)

8m52.357725984s ago: executing program 32 (id=19):
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0xffd}, 0x2a, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000440)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(0xffffffffffffffff, 0x4)
r3 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
open_tree(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', 0xc0100)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0x5ba8, 0xfffffffffffffffd)
keyctl$read(0xb, r3, &(0x7f0000000240)=""/112, 0x349b7f55)

8m37.309270652s ago: executing program 33 (id=33):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x2d)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
mkdirat(0xffffffffffffffff, 0x0, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
getsockname$packet(r4, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f00000021c0)='maps\x00')
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)

4m14.838693077s ago: executing program 4 (id=572):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x7, &(0x7f00000002c0)=0x2)
accept4$tipc(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$key(0xf, 0x3, 0x2)
mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0xf)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_open_dev$vim2m(&(0x7f0000000280), 0x2, 0x2)
r1 = fsopen(&(0x7f0000000300)='binder\x00', 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
sendmmsg$inet(r2, &(0x7f0000000fc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
sendto$inet(0xffffffffffffffff, &(0x7f0000001000)="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", 0x1a4, 0x4, &(0x7f0000000000)={0x2, 0x4e23, @remote}, 0x10)
write$FUSE_DIRENTPLUS(0xffffffffffffffff, 0x0, 0x200)
syz_io_uring_setup(0x16e, &(0x7f0000000780)={0x0, 0x0, 0x10100}, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)

4m13.382304709s ago: executing program 4 (id=577):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0x2b)

4m12.723684784s ago: executing program 4 (id=581):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0xd, 0x0, 0xffffffffffffffff, 0xfffffffe, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x2a}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)

4m12.415612522s ago: executing program 4 (id=585):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000640)='./file2\x00', 0x10050, &(0x7f00000000c0)={[{@errors_remount}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7}}]}, 0x3, 0x51e, &(0x7f0000000680)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
chdir(&(0x7f00000001c0)='./file0\x00')
mount(0x0, &(0x7f0000000500)='./file2\x00', 0x0, 0x85000, 0x0)

4m11.355192281s ago: executing program 4 (id=589):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x7, &(0x7f00000002c0)=0x2)
accept4$tipc(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$key(0xf, 0x3, 0x2)
mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0xf)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_open_dev$vim2m(&(0x7f0000000280), 0x2, 0x2)
r1 = fsopen(&(0x7f0000000300)='binder\x00', 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
sendmmsg$inet(r2, &(0x7f0000000fc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
sendto$inet(0xffffffffffffffff, &(0x7f0000001000)="7eea32452531e024a8aae70ee1ba7662eb47f6b70ec3c1f34846d128ae6e99783b9def47ef34bc20361ea0ecd6511bce3cc5048a1974461fcb9ddc12d5338b0304c115765819e3822ded79e44070bda8c9e316d878c34561c5c238374ab369d209a9b7b36a72dffa4027fe2ac02abd8df32dd03116ebe2648ff1be914883e09d926b374831bddda86a16a48b0b7b2802f91e88d43d2cc5621e15d88c555aba47a96f2eae468d15bf7e174bb1b67938e44535167aebe471a78b787388119e99d66d6296859d53931e88cd97153f61aa90b1751bc002f21a12f7f1c962af39adf24d41c65d7e9ff8ad90a9219bec22930ea091e3b49efe637873a8cc2f7210358d8b4cfb2f2d888030791e79a5097ba67f7a8912d4726d80a432c3acedbafb6d2942b013e117e171a386bce3ac1038aa10e7a297fa8ad3b369278c192bcc070a2553043cdb8b05c2b7dbc0969ae47b8719676cef8aa5225caf1691bb17cca2d16ddbfc4b0509f9fdac0f781858d0f12ad9c4a86eed20b580dc3d75b7062766242d73e74af2d8a095703fc7e1a370e6b7ee628845dff7ae532c1e3a85db78507d622186524a", 0x1a4, 0x4, &(0x7f0000000000)={0x2, 0x4e23, @remote}, 0x10)
write$FUSE_DIRENTPLUS(0xffffffffffffffff, 0x0, 0x200)
syz_io_uring_setup(0x16e, &(0x7f0000000780)={0x0, 0x0, 0x10100}, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)

4m10.709497009s ago: executing program 4 (id=592):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0)
iopl(0x3)
mount_setattr(0xffffffffffffff9c, 0x0, 0x0, &(0x7f0000000380)={0x0, 0x3f, 0x100000}, 0x20)

4m9.713408089s ago: executing program 34 (id=592):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0)
iopl(0x3)
mount_setattr(0xffffffffffffff9c, 0x0, 0x0, &(0x7f0000000380)={0x0, 0x3f, 0x100000}, 0x20)

2m57.110837918s ago: executing program 7 (id=857):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x300000a, 0x4031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000029c0))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='smaps_rollup\x00')
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$kcm(0x10, 0x400000002, 0x0)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$EBT_SO_SET_ENTRIES(r4, 0x0, 0x80, &(0x7f0000000380)=@filter={'filter\x00', 0xe, 0x2, 0x250, [0x0, 0x20000100, 0x20000130, 0x20000280], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/592]}, 0x2c8)
socket$inet_udp(0x2, 0x2, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x2)
getsockopt$netlink(r5, 0x10e, 0x9, &(0x7f0000001100)=""/4096, &(0x7f0000000040)=0x1000)
mprotect(&(0x7f00005a6000/0x1000)=nil, 0x1000, 0x3)
preadv(r0, &(0x7f0000000080), 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x8000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r6}, 0x10)
syz_usb_connect$cdc_ecm(0x6, 0x80, &(0x7f0000000280)=ANY=[@ANYBLOB="12011003020000102505a1a440000102030109026e00010100000009040000000206000005240f0100"], &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x4, [{0x68, &(0x7f0000000300)=@string={0x68, 0x3, "a21bea47512b5eb63b6cd75e0e0d2023c0ee0780baaf9c6177184334e925384f3f13749ed9e54e530d8c145f87b1ea15f2a44489ba43fd74148fdc3281095ddfc20fd6f5cc6ea3322084a1495f854db7d1716e46d2371ded608e8ab6881300376fc440e5fe55"}}, {0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0x40b}}, {0x4, &(0x7f0000000380)=@lang_id={0x4, 0x3, 0x443}}, {0x47, &(0x7f0000000440)=@string={0x47, 0x3, "38fdf274ed82de2f3cb4d1130f907424a816b1de87c1207393f29c3ea4b74d75777f94a159935c5e42e2e3ce2ded9b63a13f711d697ee7357a1af1a9d35d9a87e3966c9dcd"}}]})
ioctl$F2FS_IOC_COMPRESS_FILE(r0, 0xf518, 0x0)

2m52.010171142s ago: executing program 7 (id=866):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0600000004000000ff0f00000700000000000000", @ANYRES32, @ANYRES32=0x0, @ANYBLOB="e802a17636c3e30df1ac00"], 0x50)

2m49.952041234s ago: executing program 7 (id=872):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000076000018110000", @ANYRES8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)={0x15, 0x65, 0xffff, 0x30ff, 0x8, '9P2000.u'}, 0x15)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
truncate(&(0x7f0000000040)='./file0\x00', 0xff8c)

2m49.51674961s ago: executing program 7 (id=876):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000002540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000040)={<r2=>0xffffffffffffffff}, 0x106, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_DISCONNECT(r1, &(0x7f00000003c0)={0xa, 0x4, 0xfa00, {r2}}, 0xc)

2m42.921922625s ago: executing program 7 (id=890):
unshare(0x4000400)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000200), 0x383181, 0x0)
fremovexattr(r0, &(0x7f0000000040)=@random={'trusted.', '^}\x00'})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r2, 0x1)
socket$kcm(0x10, 0x2, 0x0)
syz_emit_vhci(&(0x7f0000000540)=@HCI_EVENT_PKT={0x4, @extended_inquiry_info={{0x2f, 0x2fb}, {0x3, [{@none, 0x6, 0xd2, "51ea78", 0x4, 0x7, "587ab8bb589cfcf33e23666128c1a782b318e7e3cc8ae5067f205d4302a10441ead7dd8bbd5b7de61454383950b9b83bdee9d7ab138b9f18874689bd3030434793393d64af98dafdda9def82cd618a16d01f1f8d6571e68777c04b7185ebcbe39b78865feb02f5add7700ea74d30d0cfc302539007ae01bdec0b0edbe926ec66564c27b776e4d3a383c664f6cf88df018c804a628d8f29307d7bd1eed917e59047cb867c8dbb4a581e47db5d6b6323056b7bca08bbfd4aa872ea33702f554afb50d05b9a8ffcee5ae0b2702838d56f16f0bfd2650b26c594009bd7dee8e8ee7f053feb2a92e959401a5fd4f0b9c2f75d"}, {@any, 0x95, 0x83, "7b7dd6", 0x54, 0x8, "e04b4fbf3bcac56ba0119211dc8ae6d4dc43a194ce2632676d91e5c4b87e2bad9575972a8a5d8948e5b284b3f9cc35944852617a4c51c7468b60b7a96e16eaaf66843e57d5f868f80919debf13bba482d6c4d7cb20be650c3ba2322d2a210ff13ce6d7a9077a54c18b3c6986af9621d712f42979c8c72dd045073c2129f70d1e8278b7017d6be08cc18d35e7919d5db1b784fc7d166d36cb3d1415fe47a1d934392733842b0cb39634e97df5a677f9eae41850920c763cad3ca78bd7f775f94aa89f3f483936f09f3847d24b14a238c48353adfa21b204336989ee96e6a3efb8ce1f0a0a6f4447bb4560efff13bea274"}, {@any, 0x3, 0x8, 'K|^', 0x1, 0x1, "b633a3cc04051a69f8bb5b25c37155bd959fcf1dbbadfa91f3619a392be471f47493467ed5363b69f5d28f1b54844ab6ad0a936ef8a6a46104804e96597bc790a36bbe203a4b131bcf5932db8541c6d38c65a34fbcd29fdec2503d43366f15f9ec7df942558f1ccf8dfadbf621c18d80f982267fc8914f0eb68d75377f69bc304a83311192fe5808cf0e8eeebffe61bc7d3e1cf5e3058d2e823dc2ffe0e2e31a6094242a2931027dc23e82194ec56a7a4c7aecc6524ff9824a8825cd783d4ec120011f8313ecbdfc549607cfb24ca023822710e3d72a9f2dd62242a1d4262e6f75345cdb55638e8b2319b1c313057f39"}]}}}, 0x2fe)

2m42.407371016s ago: executing program 7 (id=891):
ioprio_set$uid(0x3, 0x0, 0x0)
creat(&(0x7f0000000240)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
chmod(&(0x7f0000000140)='./file0\x00', 0x0)
r3 = open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0)
ftruncate(r4, 0x2000009)
sendfile(r3, r4, 0x0, 0x7ffff000)

2m26.390863702s ago: executing program 35 (id=891):
ioprio_set$uid(0x3, 0x0, 0x0)
creat(&(0x7f0000000240)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
chmod(&(0x7f0000000140)='./file0\x00', 0x0)
r3 = open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0)
ftruncate(r4, 0x2000009)
sendfile(r3, r4, 0x0, 0x7ffff000)

48.169987653s ago: executing program 1 (id=1075):
openat$vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x488481, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback=0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r5 = syz_io_uring_setup(0x24fc, &(0x7f0000000400)={0x0, 0x8b1d, 0x10100}, &(0x7f00000003c0)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000180)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r4, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0, 0x40012000})
io_uring_enter(r5, 0x1066, 0x0, 0x0, 0x0, 0x0)

45.050412496s ago: executing program 1 (id=1077):
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e7, 0x0)
prctl$PR_GET_TSC(0x43, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
listen(r1, 0x101)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f00000000c0)=ANY=[@ANYRESOCT])
setsockopt(0xffffffffffffffff, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e20, @loopback}, 0x10)

40.653309584s ago: executing program 1 (id=1083):
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e7, 0x0)
prctl$PR_GET_TSC(0x43, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
r2 = socket$inet_dccp(0x2, 0x6, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f00000000c0)=ANY=[@ANYRESOCT])
setsockopt(r2, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
connect$inet(r2, &(0x7f0000000080)={0x2, 0x4e20, @loopback}, 0x10)

37.42944694s ago: executing program 1 (id=1087):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f0000000040)=0x16)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x4000000000003da, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
r5 = socket(0x10, 0x803, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r7 = socket(0x400000000010, 0x3, 0x0)
r8 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f00000012c0)={0x0, 0xfffffffffffffef7, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r9, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x40)
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000094c0)=@newtfilter={0x30, 0x2c, 0xd27, 0x30bd2b, 0x2, {0x0, 0x0, 0x0, r9, {0xffff, 0xf}, {}, {0x7}}, [@filter_kind_options=@f_bpf={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x10}, 0x0)

30.543519029s ago: executing program 1 (id=1101):
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e7, 0x0)
prctl$PR_GET_TSC(0x43, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
listen(r1, 0x101)
r2 = socket$inet_dccp(0x2, 0x6, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f00000000c0)=ANY=[@ANYRESOCT])
setsockopt(r2, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
connect$inet(r2, &(0x7f0000000080)={0x2, 0x4e20, @loopback}, 0x10)

27.939650373s ago: executing program 1 (id=1106):
r0 = socket$inet6(0xa, 0x3, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x1)
r1 = syz_open_dev$MSR(&(0x7f0000000380), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r2, &(0x7f0000000200)='u', 0x1, 0x20000840, &(0x7f0000000040)={0xa, 0x0, 0x7, @local, 0x13}, 0x1c)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r2, 0x84, 0x70, 0x0, &(0x7f0000000180))
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000340), 0x802, 0x0)
ioctl$UI_ABS_SETUP(r3, 0x401c5504, &(0x7f0000000640)={0x400000100002f, {0x800}})
write$uinput_user_dev(r3, &(0x7f0000000800)={'syz1\x00', {}, 0x10000, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0xd6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10], [0x10001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x7dd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc, 0x1000, 0x0, 0xffffffff, 0x0, 0x0, 0xefb, 0x6, 0x0, 0x0, 0x0, 0x7, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x8541, 0x4, 0x0, 0x0, 0x0, 0x40], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb4, 0x4000, 0x3, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0xfffffffc, 0xd30b, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x7]}, 0x45c)
ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x3)
ioctl$UI_DEV_CREATE(r3, 0x5501)
ioctl$FS_IOC_GETFSLABEL(r2, 0x81009431, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet6_buf(r0, 0x29, 0x39, 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ifreq(r4, 0x8947, &(0x7f0000000000)={'wg1\x00', @ifru_names='wlan1\x00'})
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
r5 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvfrom(r5, 0x0, 0x0, 0x40002000, 0x0, 0x0)

20.114654432s ago: executing program 6 (id=1115):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200"/48, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500"/131], 0xfc}}, 0x8000)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_emit_ethernet(0x5e, &(0x7f00000001c0)=ANY=[], 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, 0x0, 0x0)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000200)='./file2\x00', 0x200000, &(0x7f0000000280)={[{@grpquota}, {@init_itable}, {@init_itable}, {}]}, 0xfc, 0x57c, &(0x7f0000000e80)="$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")
r2 = socket$inet(0xa, 0x801, 0x84)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0}}], 0x400000000000193, 0x48, 0x0)
listen(r2, 0x8)
accept4(r2, 0x0, 0x0, 0x0)
r6 = open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0)
write$FUSE_CREATE_OPEN(r6, &(0x7f0000000180)={0xa0, 0xfffffffffffffffe, 0x0, {{0x7, 0x1, 0x5, 0x6, 0x5, 0x1, {0x1, 0x180, 0xff, 0x5, 0x100, 0xd615, 0x5, 0x800001, 0xfffffffe, 0x8000, 0x0, 0xee00, 0x0, 0x3ff, 0x1}}, {0x0, 0x11}}}, 0xa0)
close(r6)
r7 = socket(0x40000000015, 0x5, 0x0)
connect$l2tp6(r7, &(0x7f0000000040)={0xa, 0x0, 0x7, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x2}, 0x20)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$binfmt_script(r8, &(0x7f000000e0c0), 0x10010)
sendfile(r1, r8, &(0x7f0000000100)=0x8dff, 0x100000000010001)

16.378665147s ago: executing program 2 (id=1121):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
shmget$private(0x0, 0x2000, 0x800, &(0x7f0000ffd000/0x2000)=nil)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b19, &(0x7f0000000080)={'wlan1\x00', @random="02000000000a"})
socket(0x0, 0x0, 0x0)
syz_io_uring_setup(0x112, &(0x7f0000000140)={0x0, 0x4089, 0x80}, &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000000c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x5, 0x0, 0x0})
msgsnd(0x0, &(0x7f0000000480)={0x2}, 0x2000, 0x0)

15.761966457s ago: executing program 5 (id=1122):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x300000a, 0x4031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000029c0))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='smaps_rollup\x00')
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$kcm(0x10, 0x400000002, 0x0)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$EBT_SO_SET_ENTRIES(r4, 0x0, 0x80, &(0x7f0000000380)=@filter={'filter\x00', 0xe, 0x2, 0x250, [0x0, 0x20000100, 0x20000130, 0x20000280], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/592]}, 0x2c8)
socket$inet_udp(0x2, 0x2, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x2)
getsockopt$netlink(r5, 0x10e, 0x9, &(0x7f0000001100)=""/4096, &(0x7f0000000040)=0x1000)
mprotect(&(0x7f00005a6000/0x1000)=nil, 0x1000, 0x3)
preadv(r0, &(0x7f0000000080), 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x8000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r6}, 0x10)
syz_usb_connect$cdc_ecm(0x6, 0x80, &(0x7f0000000280)=ANY=[@ANYBLOB="12011003020000102505a1a440000102030109026e00010100000009040000000206000005240f0100"], &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x4, [{0x68, &(0x7f0000000300)=@string={0x68, 0x3, "a21bea47512b5eb63b6cd75e0e0d2023c0ee0780baaf9c6177184334e925384f3f13749ed9e54e530d8c145f87b1ea15f2a44489ba43fd74148fdc3281095ddfc20fd6f5cc6ea3322084a1495f854db7d1716e46d2371ded608e8ab6881300376fc440e5fe55"}}, {0x0, 0x0}, {0x4, &(0x7f0000000380)=@lang_id={0x4, 0x3, 0x443}}, {0x48, &(0x7f0000000440)=@string={0x48, 0x3, "38fdf274ed82de2f3cb4d1130f907424a816b1de87c1207393f29c3ea4b74d75777f94a159935c5e42e2e3ce2ded9b63a13f711d697ee7357a1af1a9d35d9a87e3966c9dcdd1"}}]})
ioctl$F2FS_IOC_COMPRESS_FILE(r0, 0xf518, 0x0)

14.592424367s ago: executing program 2 (id=1123):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x7, &(0x7f00000002c0)=0x2)
socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$key(0xf, 0x3, 0x2)
mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0xf)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_open_dev$vim2m(&(0x7f0000000280), 0x2, 0x2)
r1 = fsopen(&(0x7f0000000300)='binder\x00', 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
sendmmsg$inet(r2, &(0x7f0000000fc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x105042, 0x0)
sendto$inet(r3, &(0x7f0000001000)="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", 0x1a4, 0x4, &(0x7f0000000000)={0x2, 0x4e23, @remote}, 0x10)
write$FUSE_DIRENTPLUS(r3, 0x0, 0x200)
syz_io_uring_setup(0x16e, &(0x7f0000000780)={0x0, 0x0, 0x10100, 0x0, 0x0, 0x0, r3}, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)

14.396177442s ago: executing program 6 (id=1125):
r0 = socket$inet6(0xa, 0x3, 0x3c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000008c0)={&(0x7f0000000000)='sched_switch\x00', r5}, 0x18)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x17, &(0x7f0000000180)=0x100000001, 0x4)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000800)={{}, &(0x7f0000000780), 0x0}, 0x20)
setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f0000000f00)=ANY=[@ANYBLOB="0002020100000008ff"], 0x18)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000100)="88", 0xfdef}], 0x1)

12.706237866s ago: executing program 36 (id=1106):
r0 = socket$inet6(0xa, 0x3, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x1)
r1 = syz_open_dev$MSR(&(0x7f0000000380), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r2, &(0x7f0000000200)='u', 0x1, 0x20000840, &(0x7f0000000040)={0xa, 0x0, 0x7, @local, 0x13}, 0x1c)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r2, 0x84, 0x70, 0x0, &(0x7f0000000180))
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000340), 0x802, 0x0)
ioctl$UI_ABS_SETUP(r3, 0x401c5504, &(0x7f0000000640)={0x400000100002f, {0x800}})
write$uinput_user_dev(r3, &(0x7f0000000800)={'syz1\x00', {}, 0x10000, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0xd6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10], [0x10001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x7dd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc, 0x1000, 0x0, 0xffffffff, 0x0, 0x0, 0xefb, 0x6, 0x0, 0x0, 0x0, 0x7, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x8541, 0x4, 0x0, 0x0, 0x0, 0x40], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb4, 0x4000, 0x3, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0xfffffffc, 0xd30b, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x7]}, 0x45c)
ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x3)
ioctl$UI_DEV_CREATE(r3, 0x5501)
ioctl$FS_IOC_GETFSLABEL(r2, 0x81009431, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet6_buf(r0, 0x29, 0x39, 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ifreq(r4, 0x8947, &(0x7f0000000000)={'wg1\x00', @ifru_names='wlan1\x00'})
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
r5 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvfrom(r5, 0x0, 0x0, 0x40002000, 0x0, 0x0)

12.686242165s ago: executing program 2 (id=1127):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
sendmsg$can_j1939(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x1d, 0x0, 0xfffffffffffffffe}, 0x18, 0x0, 0x4, 0x0, 0x0, 0x16000000}, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x38, 0x2000000000000196, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000004d2d2cd0e6"], &(0x7f0000000ac0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = dup(r2)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f00000002c0)=@raw={'raw\x00', 0xe501, 0x3, 0x208, 0xb8, 0xa, 0x1000000, 0x0, 0x0, 0x170, 0x230, 0x230, 0x170, 0x223, 0x3, 0x0, {[{{@uncond, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x3b9, 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x3c0, 'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x268)
msync(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000008c0)={r1, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x4d0, 0x0, 0x25, 0x148, 0x340, 0x60, 0x438, 0x2a8, 0x2a8, 0x438, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x44, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'veth1_to_bond\x00', 'veth0\x00', {0xff}}, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@unspec=@cgroup0={{0x28}, {0x4}}, @common=@unspec=@statistic={{0x38}}]}, @common=@unspec=@MARK={0x28, 'MARK\x00', 0x2, {0x9, 0x8001}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x530)

12.682747257s ago: executing program 8 (id=1128):
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0500000004000000080000000c000000000000", @ANYRES32, @ANYBLOB='\x00'/17, @ANYRES32=0x0, @ANYRES32], 0x50)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000480)={0x2, 0x4e23, @multicast1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendto$inet(r0, 0x0, 0x0, 0x20000f3d, &(0x7f0000000000)={0x2, 0x24e23, @empty}, 0x10)
sendmsg$inet(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)='/', 0x1}], 0x1}, 0x0)
recvmmsg(r0, &(0x7f0000003b00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003540)=""/126, 0x7e}, 0xe2}], 0x400000000000160, 0x2, 0x0)
ioperm(0x0, 0x2, 0x2)
sysfs$2(0x9, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

11.135195442s ago: executing program 6 (id=1129):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
sendmsg$can_j1939(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x1d, 0x0, 0xfffffffffffffffe}, 0x18, 0x0, 0x4, 0x0, 0x0, 0x16000000}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = dup(r2)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f00000002c0)=@raw={'raw\x00', 0xe501, 0x3, 0x208, 0xb8, 0xa, 0x1000000, 0x0, 0x0, 0x170, 0x230, 0x230, 0x170, 0x223, 0x3, 0x0, {[{{@uncond, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x3b9, 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x3c0, 'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x268)
msync(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000008c0)={r1, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x4d0, 0x0, 0x25, 0x148, 0x340, 0x60, 0x438, 0x2a8, 0x2a8, 0x438, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x44, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'veth1_to_bond\x00', 'veth0\x00', {0xff}}, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@unspec=@cgroup0={{0x28}, {0x4}}, @common=@unspec=@statistic={{0x38}}]}, @common=@unspec=@MARK={0x28, 'MARK\x00', 0x2, {0x9, 0x8001}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x530)

10.843569649s ago: executing program 8 (id=1130):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_procfs(0x0, 0x0)
io_uring_setup(0x441, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f00000020c0)={0x2020}, 0x2020)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)

10.758875444s ago: executing program 2 (id=1131):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback=0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r5 = syz_io_uring_setup(0x24fc, &(0x7f0000000400)={0x0, 0x8b1d, 0x10100}, &(0x7f00000003c0)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000180)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r4, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0, 0x40012000})
io_uring_enter(r5, 0x1066, 0x0, 0x0, 0x0, 0x0)

10.730772741s ago: executing program 5 (id=1132):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
sendmsg$can_j1939(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x1d, 0x0, 0xfffffffffffffffe}, 0x18, 0x0, 0x4, 0x0, 0x0, 0x16000000}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x5, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x38, 0x2000000000000196, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000004d2d2cd0e6"], &(0x7f0000000ac0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = dup(r2)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f00000002c0)=@raw={'raw\x00', 0xe501, 0x3, 0x208, 0xb8, 0xa, 0x1000000, 0x0, 0x0, 0x170, 0x230, 0x230, 0x170, 0x223, 0x3, 0x0, {[{{@uncond, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x3b9, 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x3c0, 'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x268)
msync(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000008c0)={r1, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x4d0, 0x0, 0x25, 0x148, 0x340, 0x60, 0x438, 0x2a8, 0x2a8, 0x438, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x44, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'veth1_to_bond\x00', 'veth0\x00', {0xff}}, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@unspec=@cgroup0={{0x28}, {0x4}}, @common=@unspec=@statistic={{0x38}}]}, @common=@unspec=@MARK={0x28, 'MARK\x00', 0x2, {0x9, 0x8001}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x530)

10.416481518s ago: executing program 6 (id=1133):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
sendmsg$can_j1939(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x1d, 0x0, 0xfffffffffffffffe}, 0x18, 0x0, 0x4, 0x0, 0x0, 0x16000000}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x38, 0x2000000000000196, &(0x7f0000000340)=ANY=[], &(0x7f0000000ac0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = dup(r2)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f00000002c0)=@raw={'raw\x00', 0xe501, 0x3, 0x208, 0xb8, 0xa, 0x1000000, 0x0, 0x0, 0x170, 0x230, 0x230, 0x170, 0x223, 0x3, 0x0, {[{{@uncond, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x3b9, 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x3c0, 'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x268)
msync(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000008c0)={r1, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x4d0, 0x0, 0x25, 0x148, 0x340, 0x60, 0x438, 0x2a8, 0x2a8, 0x438, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x44, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'veth1_to_bond\x00', 'veth0\x00', {0xff}}, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@unspec=@cgroup0={{0x28}, {0x4}}, @common=@unspec=@statistic={{0x38}}]}, @common=@unspec=@MARK={0x28, 'MARK\x00', 0x2, {0x9, 0x8001}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x530)

9.523839036s ago: executing program 8 (id=1134):
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x800)
io_uring_setup(0x2a34, &(0x7f0000000180)={0x0, 0x1, 0x4, 0x0, 0x0, 0x0, r0})
syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
setsockopt$inet6_IPV6_RTHDR(r1, 0x29, 0x39, 0x0, 0x0)
sendto$l2tp6(r1, 0x0, 0x0, 0x4048814, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1}, 0x20)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = syz_io_uring_setup(0x702, &(0x7f0000000480)={0x0, 0x0, 0x800, 0x802}, &(0x7f00000000c0)=<r6=>0x0, &(0x7f00000001c0))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r5, 0x47ba, 0x0, 0x0, 0x0, 0x0)

9.523205605s ago: executing program 5 (id=1135):
syz_mount_image$bfs(&(0x7f0000000240), &(0x7f0000000080)='./file1\x00', 0x0, &(0x7f0000000400)=ANY=[], 0x4, 0xb1, &(0x7f0000000400)="$eJzs1zFqwmAYBuC3oW3aJT1Ah94gd+hRSsd261Rx8ELunsIjCB7AwU1cIjExZHYwIM8DCby8/wff+P/r4/I9VdK85awZ+fuf/Xz9tv9VBs/hjhRJyiQvbai6vPvsuoe+3+zn35dvNPo40coAAMCVitRJXvubfhZF6rprtsOZj/YtcOjD02i4vOmqAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJM4BQAA//8fTCFM")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x8042, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000495"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0, r4}, 0x18)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
socket$inet6_udp(0xa, 0x2, 0x0)
shmctl$SHM_LOCK(0x0, 0xb)
syz_mount_image$squashfs(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x800, &(0x7f0000004140)=ANY=[@ANYBLOB="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"], 0x1, 0x1cf, &(0x7f0000000780)="$eJzKKC4sZmdgYPj7sSaZQYABDBgZeBguMDAysDAwMKgzQsQYmCDUeij/BZSeCZW2gfKbofRCKF1xS3vdmlN+Z0566motk2VmaPXUlkcWk0vtMXKTXMwjwcwQmnpkUXFlVXZiTk5qUfFChopbyUkVp08wsFy3v6bSLMHp8EeewyFJ00GH6YiPR9aMxhLOSVKaYmxsmQpnz3yQX8emcYTh0QrmjXWeeY11halT89LykqqyqrLmTZy4cWZjZ2Pjyol1UWl+qxhbUlw2NXUyMjlsURPYzGyoPslGe8K79lUPkxxYezz8mk8ZK71OZb5kvLBI6tSKqpkTvijNZjT8znCHp2yFhIaGk8QVCYsGE4YjdbYNriAnpjQwpCmEMSapsYm1bTkzJ4SZn81tgUJL8gmm0KMcS2dKWBwQqjr501LzrUOi24xtTx3YzvAcPs6zpqBP0Oi4BIPTQsH/MiBjEhoayjTWMi21XfClSOOvhNdqY6cMBnd7pmWwAGVpAJEroTxZsJ6E5BUeOpqaRinJCQ2bJBKS3AoMlRm27uFcLdDAgBRtKgwMDNsZYXELAddgjFEwCkbBKBgFo2AUjIJRMApGwSgYBSMCAAIAAP//QJCYyw==")
open(&(0x7f0000000280)='./file2/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x200c20, 0x0)

9.220249483s ago: executing program 6 (id=1136):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000079"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
sendmsg$can_j1939(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x1d, 0x0, 0xfffffffffffffffe}, 0x18, 0x0, 0x4, 0x0, 0x0, 0x16000000}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x15, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @sk_reuseport=0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x38, 0x2000000000000196, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000004d2d2cd0e6"], &(0x7f0000000ac0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f00000002c0)=@raw={'raw\x00', 0xe501, 0x3, 0x208, 0xb8, 0xa, 0x1000000, 0x0, 0x0, 0x170, 0x230, 0x230, 0x170, 0x223, 0x3, 0x0, {[{{@uncond, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x3b9, 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x3c0, 'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x268)
msync(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000008c0)={r2, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x4d0, 0x0, 0x25, 0x148, 0x340, 0x60, 0x438, 0x2a8, 0x2a8, 0x438, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x44, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'veth1_to_bond\x00', 'veth0\x00', {0xff}}, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@unspec=@cgroup0={{0x28}, {0x4}}, @common=@unspec=@statistic={{0x38}}]}, @common=@unspec=@MARK={0x28, 'MARK\x00', 0x2, {0x9, 0x8001}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x530)

6.739881105s ago: executing program 8 (id=1137):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x7, &(0x7f00000002c0)=0x2)
socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$key(0xf, 0x3, 0x2)
mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0xf)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_open_dev$vim2m(&(0x7f0000000280), 0x2, 0x2)
r1 = fsopen(&(0x7f0000000300)='binder\x00', 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
sendmmsg$inet(r2, &(0x7f0000000fc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x105042, 0x0)
sendto$inet(r3, &(0x7f0000001000)="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", 0x1a4, 0x4, &(0x7f0000000000)={0x2, 0x4e23, @remote}, 0x10)
write$FUSE_DIRENTPLUS(r3, 0x0, 0x200)
syz_io_uring_setup(0x16e, &(0x7f0000000780)={0x0, 0x0, 0x10100, 0x0, 0x0, 0x0, r3}, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)

6.672534095s ago: executing program 5 (id=1138):
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x800)
io_uring_setup(0x2a34, &(0x7f0000000180)={0x0, 0x1, 0x4, 0x0, 0x0, 0x0, r0})
syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
setsockopt$inet6_IPV6_RTHDR(r1, 0x29, 0x39, 0x0, 0x0)
sendto$l2tp6(r1, 0x0, 0x0, 0x4048814, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1}, 0x20)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = syz_io_uring_setup(0x702, &(0x7f0000000480)={0x0, 0x0, 0x800, 0x802}, &(0x7f00000000c0)=<r6=>0x0, &(0x7f00000001c0)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000240)=[{&(0x7f0000001800)=""/224, 0xe0}], 0x1})
io_uring_enter(r5, 0x47ba, 0x0, 0x0, 0x0, 0x0)

6.610498731s ago: executing program 6 (id=1139):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
shmget$private(0x0, 0x2000, 0x800, &(0x7f0000ffd000/0x2000)=nil)
r3 = syz_io_uring_setup(0x112, &(0x7f0000000140)={0x0, 0x4089, 0x80}, &(0x7f0000000240)=<r4=>0x0, &(0x7f0000000040)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000000c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x5, 0x0, 0x0})
io_uring_enter(r3, 0x47f6, 0xb277, 0x0, 0x0, 0x0)
msgsnd(0x0, &(0x7f0000000480)={0x2}, 0x2000, 0x0)

6.43109486s ago: executing program 2 (id=1140):
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0500000004000000080000000c000000000000", @ANYRES32, @ANYBLOB='\x00'/17, @ANYRES32=0x0, @ANYRES32], 0x50)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000480)={0x2, 0x4e23, @multicast1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendto$inet(r0, 0x0, 0x0, 0x20000f3d, &(0x7f0000000000)={0x2, 0x24e23, @empty}, 0x10)
sendmsg$inet(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)='/', 0x1}], 0x1}, 0x0)
recvmmsg(r0, &(0x7f0000003b00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003540)=""/126, 0x7e}, 0xe2}], 0x400000000000160, 0x2, 0x0)
ioperm(0x0, 0x2, 0x2)
sysfs$2(0x9, 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0xffffffffffff57fc)

3.318584068s ago: executing program 5 (id=1141):
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
sendmsg$rds(0xffffffffffffffff, 0x0, 0x4000008)
write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x118)
syz_mount_image$squashfs(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="005901e3fd18fb9c322293c67dcde48bfeffd1843c336e09b34af65ad26aafded7da5cfeeda2b8d8d900c2195f00f646f699eeb47813177405a6a6baf786c0d14f2079a9efa9db8973bcca25eb2973856c6760a483c41d0980c78a4cb096a5affa6b980600000000000000a1eacd2c820176737d4eb55dca564820dd769d8742f6d9ab243775a67afcdf845f978e95365cdf6f30aa43423b381881433e00ccbe6353b21300d8f0ca972589398eef9487db78486fcf174990c488031f8b39cc01bb509f3ea4bcde33d4c9e305ecb4dd88204c5d7bb5e469cabfda0feca3ce70c0acbc34d13e5a5c796eab23abfe3b717834f8e9d7120e1e925c4e210b4152c75210b3e979fbe8ddf23eef2d53733209b22206e0a4afc354c33d7ca2a00116a14d686e4aa86b6ec6a4130178c3ad8c723c0d8506bd7bff780000000000000000004b2ec61cfde813cc124715aaaf5508b93d8cf0860042108b660b74f94b1e4851eeec09fdb7a617eabeeeff8ce8bb99f4b1f9c2896cf31e19c3c24155b0ea7dc3cae1b56acb1946830cad94af3f1caf43ea03b38fc08a7e19480e283a4c0d", @ANYRES64=0x0, @ANYRES16=0x0, @ANYRES32, @ANYRES64=0x0, @ANYRES32, @ANYRES32], 0x1, 0x1f4, &(0x7f0000000780)="$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")
chdir(&(0x7f0000000240)='./file0\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x40000000000011a, 0x44000)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x22100, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f00000004c0)={0x400, 0x300, 0x300, 0x0, 0xffffffff, 0x0, 0x0, 0x2000000, {0xfffffffd}, {}, {0xffffffff, 0x4}, {0x0, 0x0, 0x8}, 0x0, 0x100, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x4, 0x20, 0x0, 0x0, 0x3c, 0x0, 0x0, 0xc})
ioctl$BTRFS_IOC_QGROUP_CREATE(r3, 0x4010942a, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)

3.310783952s ago: executing program 2 (id=1142):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x300000a, 0x4031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000029c0))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='smaps_rollup\x00')
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$kcm(0x10, 0x400000002, 0x0)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$EBT_SO_SET_ENTRIES(r4, 0x0, 0x80, &(0x7f0000000380)=@filter={'filter\x00', 0xe, 0x2, 0x250, [0x0, 0x20000100, 0x20000130, 0x20000280], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000000000000000000000000000000000100000000000000000000000000000002000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000003000000000000000000697036677265300000000000000000007465616d30000000000000000000000076657468305f746f5f626f6e6400000076657468305f746f5f626f6e64000000aaaaaaaaaa0000000000000024ffffffffff0000000000000000f0000000f0000000200100006c696d697400000000000000000000000000000000000000000000000000000020000000000000000000000002000000000000000000000000000000000000000000000000000000636c75737465720000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000041554449540000000000000000000000000000000000000000000000000000000800000000000000004493000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000feffffff0100000011000000000000000000766c616e3000000000000000000000006c6f0000000000000000000000000000726f736530000000000000000000000062726964676530000000000000000000ffffffffffff000000000000aaaaaaaaaa0000000000000000007000000070000000a000000041554449540000000000000000000000000000000000000000000000000000000800"/592]}, 0x2c8)
socket$inet_udp(0x2, 0x2, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x2)
getsockopt$netlink(r5, 0x10e, 0x9, &(0x7f0000001100)=""/4096, &(0x7f0000000040)=0x1000)
mprotect(&(0x7f00005a6000/0x1000)=nil, 0x1000, 0x3)
preadv(r0, &(0x7f0000000080), 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x8000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r6}, 0x10)
syz_usb_connect$cdc_ecm(0x6, 0x80, &(0x7f0000000280)=ANY=[@ANYBLOB="12011003020000102505a1a440000102030109026e00010100000009040000000206000005240f0100"], &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x3, [{0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0x40b}}, {0x4, &(0x7f0000000380)=@lang_id={0x4, 0x3, 0x443}}, {0x48, &(0x7f0000000440)=@string={0x48, 0x3, "38fdf274ed82de2f3cb4d1130f907424a816b1de87c1207393f29c3ea4b74d75777f94a159935c5e42e2e3ce2ded9b63a13f711d697ee7357a1af1a9d35d9a87e3966c9dcdd1"}}]})
ioctl$F2FS_IOC_COMPRESS_FILE(r0, 0xf518, 0x0)

3.302000763s ago: executing program 8 (id=1143):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r3, &(0x7f0000000000)=0x12f, 0x12)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
syz_io_uring_setup(0x6c27, 0x0, 0x0, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r4, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r4, 0x6, 0x13, &(0x7f00000001c0), 0xc7)
sendto$inet(r4, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)

1.009998708s ago: executing program 8 (id=1144):
r0 = socket$inet6(0xa, 0x3, 0x3c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000008c0)={&(0x7f0000000000)='sched_switch\x00', r5}, 0x18)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x17, &(0x7f0000000180)=0x100000001, 0x4)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000800)={{}, &(0x7f0000000780), 0x0}, 0x20)
setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f0000000f00)=ANY=[@ANYBLOB="0002020100000008ff"], 0x18)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000100)="88", 0xfdef}], 0x1)

0s ago: executing program 5 (id=1145):
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0500000004000000080000000c000000000000", @ANYRES32, @ANYBLOB='\x00'/17, @ANYRES32=0x0, @ANYRES32], 0x50)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000480)={0x2, 0x4e23, @multicast1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendto$inet(r0, 0x0, 0x0, 0x20000f3d, &(0x7f0000000000)={0x2, 0x24e23, @empty}, 0x10)
sendmsg$inet(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)='/', 0x1}], 0x1}, 0x0)
recvmmsg(r0, &(0x7f0000003b00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003540)=""/126, 0x7e}, 0xe2}], 0x400000000000160, 0x2, 0x0)
ioperm(0x0, 0x2, 0x2)
sysfs$2(0x9, 0x0, 0x0)
set_mempolicy(0x0, 0x0, 0xffffffffffff57fc)

kernel console output (not intermixed with test programs):

adv0: Removing interface: batadv_slave_1
[  340.774065][ T7962] loop4: detected capacity change from 0 to 256
[  340.831570][ T7924] vlan0: entered promiscuous mode
[  340.845810][ T7962] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  340.923480][ T7964] loop2: detected capacity change from 0 to 1024
[  340.948488][ T7964] EXT4-fs: Ignoring removed nobh option
[  340.974728][ T7964] EXT4-fs: Ignoring removed bh option
[  341.037526][ T7964] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  341.144010][ T7563] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  341.161024][ T7563] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  341.173660][ T7563] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  341.207137][ T7563] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  341.238421][ T7563] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  341.268682][ T7563] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  341.319864][ T7563] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  341.344682][ T7563] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  341.357726][ T7563] batman_adv: batadv0: Interface activated: batadv_slave_1
[  341.420208][ T7563] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  341.482352][ T7563] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  341.512373][ T7563] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  341.521294][ T7563] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  341.691170][ T7984] loop6: detected capacity change from 0 to 1024
[  341.719392][ T7984] EXT4-fs: Ignoring removed nobh option
[  341.751704][ T7984] EXT4-fs: Ignoring removed bh option
[  341.833047][ T7984] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  341.896337][ T7991] netlink: 'syz.5.426': attribute type 1 has an invalid length.
[  342.037987][ T6014] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  342.074433][ T6014] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  342.643256][   T29] audit: type=1804 audit(342.571:139): pid=7999 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.424" name="/newroot/10/file1/file1" dev="loop6" ino=15 res=1 errno=0
[  343.333950][   T25] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  343.373272][   T25] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  343.422733][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  343.430864][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  343.636451][   T29] audit: type=1804 audit(343.641:140): pid=8011 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.413" name="/newroot/103/file1/file1" dev="loop2" ino=15 res=1 errno=0
[  343.836279][ T5934] usb 5-1: new full-speed USB device number 6 using dummy_hcd
[  344.232601][ T5934] usb 5-1: device descriptor read/64, error -71
[  344.928921][ T5825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.061735][ T5934] usb 5-1: new full-speed USB device number 7 using dummy_hcd
[  345.080844][ T8020] loop5: detected capacity change from 0 to 2048
[  345.235381][ T8020] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  345.317027][ T8028] loop2: detected capacity change from 0 to 128
[  345.715435][ T8025] loop1: detected capacity change from 0 to 32768
[  346.304590][ T7332] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  346.871432][ T8034] x_tables: ip6_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[  347.338397][ T8040] netlink: 20 bytes leftover after parsing attributes in process `syz.7.435'.
[  347.872557][ T5845] Bluetooth: hci3: unexpected event for opcode 0x0c23
[  348.152118][ T8054] loop2: detected capacity change from 0 to 1024
[  348.291495][ T8054] EXT4-fs: Ignoring removed nobh option
[  349.181131][ T8054] EXT4-fs: Ignoring removed bh option
[  350.031045][ T8054] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  350.162956][ T8070] Bluetooth: MGMT ver 1.23
[  350.270467][ T8075] loop1: detected capacity change from 0 to 1024
[  350.383171][ T8075] EXT4-fs: Ignoring removed nobh option
[  350.459671][ T8075] EXT4-fs: Ignoring removed bh option
[  350.726581][ T5934] usb 5-1: device descriptor read/64, error -110
[  350.735666][   T29] audit: type=1804 audit(350.731:141): pid=8080 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.441" name="/newroot/106/file1/file1" dev="loop2" ino=15 res=1 errno=0
[  351.671178][ T5934] usb usb5-port1: attempt power cycle
[  351.893786][ T8075] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  352.007421][ T5825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  352.122294][ T8094] netlink: 'syz.7.451': attribute type 4 has an invalid length.
[  352.222691][ T8096] loop5: detected capacity change from 0 to 128
[  352.671027][ T8094] netlink: 3657 bytes leftover after parsing attributes in process `syz.7.451'.
[  352.731893][ T5934] usb 5-1: new full-speed USB device number 8 using dummy_hcd
[  352.772727][ T5934] usb 5-1: device descriptor read/8, error -32
[  352.844198][   T29] audit: type=1804 audit(352.801:142): pid=8097 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.446" name="/newroot/99/file1/file1" dev="loop1" ino=15 res=1 errno=0
[  353.156264][ T5830] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  353.172343][ T5934] usb 5-1: new full-speed USB device number 9 using dummy_hcd
[  353.176546][ T8107] loop2: detected capacity change from 0 to 16
[  353.185468][ T8106] usb usb1: usbfs: process 8106 (syz.7.455) did not claim interface 0 before use
[  353.212683][ T5934] usb 5-1: device descriptor read/8, error -32
[  353.342531][ T7974] raw-gadget.0 gadget.4: failed to queue disconnect event
[  353.352458][ T5934] usb usb5-port1: unable to enumerate USB device
[  353.402434][ T8107] erofs (device loop2): mounted with root inode @ nid 36.
[  353.445704][ T8107] erofs (device loop2): bogus lookback distance 0 @ lcn 123 of nid 36
[  353.514603][ T8107] erofs (device loop2): bogus lookback distance 0 @ lcn 123 of nid 36
[  353.578690][ T8107] erofs (device loop2): read error -117 @ 123 of nid 36
[  355.017819][ T8138] loop5: detected capacity change from 0 to 1024
[  355.800072][ T8138] EXT4-fs: Ignoring removed nobh option
[  355.969919][ T8138] EXT4-fs: Ignoring removed bh option
[  356.096185][ T8147] loop7: detected capacity change from 0 to 128
[  356.413216][ T8138] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  356.684792][ T8155] loop4: detected capacity change from 0 to 1024
[  356.729990][ T8155] EXT4-fs: Ignoring removed nobh option
[  356.753033][ T8155] EXT4-fs: Ignoring removed bh option
[  356.919810][ T8155] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  357.031103][   T29] audit: type=1804 audit(357.041:143): pid=8168 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.464" name="/newroot/104/file1/file1" dev="loop5" ino=15 res=1 errno=0
[  357.589654][ T5836] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  357.792467][ T5889] usb 7-1: new full-speed USB device number 2 using dummy_hcd
[  357.974034][ T5889] usb 7-1: config 0 has an invalid interface number: 29 but max is 0
[  357.993220][ T5889] usb 7-1: config 0 has no interface number 0
[  357.999416][ T5889] usb 7-1: config 0 interface 29 has no altsetting 0
[  358.047178][ T5889] usb 7-1: New USB device found, idVendor=0c72, idProduct=0014, bcdDevice=39.ac
[  358.076535][ T5889] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  358.148346][ T5889] usb 7-1: Product: syz
[  358.211840][ T5889] usb 7-1: Manufacturer: syz
[  358.236153][ T5889] usb 7-1: SerialNumber: syz
[  358.396441][ T8195] loop7: detected capacity change from 0 to 1024
[  358.631951][ T8195] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  359.047448][ T5889] usb 7-1: config 0 descriptor??
[  359.174389][ T7563] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  359.274929][ T5889] peak_usb 7-1:0.29: PEAK-System PCAN-USB X6 v0 fw v0.0.0 (2 channels)
[  359.329768][   T29] audit: type=1804 audit(359.341:144): pid=8194 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.468" name="/newroot/109/file1/file1" dev="loop4" ino=15 res=1 errno=0
[  359.488860][ T5889] peak_usb 7-1:0.29 can0: unable to request usb[type=2 value=5] err=-71
[  359.550673][ T5889] peak_usb 7-1:0.29: unable to tell PCAN-USB X6 driver is loaded (err -71)
[  359.752375][   T25] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  359.922388][   T25] usb 8-1: Using ep0 maxpacket: 32
[  359.942602][ T5890] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  359.973230][ T5889] peak_usb 7-1:0.29: probe with driver peak_usb failed with error -71
[  359.993653][ T5889] usb 7-1: USB disconnect, device number 2
[  360.015301][   T25] usb 8-1: config 0 interface 0 has no altsetting 0
[  360.140989][ T8219] 9pnet_virtio: no channels available for device syz
[  360.192632][ T5890] usb 3-1: Using ep0 maxpacket: 16
[  360.235352][ T5890] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  360.451609][   T25] usb 8-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  360.844368][   T25] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  360.865057][ T5890] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  360.884668][   T25] usb 8-1: Product: syz
[  360.912297][   T25] usb 8-1: Manufacturer: syz
[  360.917186][ T5890] usb 3-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  360.967783][   T25] usb 8-1: SerialNumber: syz
[  360.988757][ T5890] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  361.003317][   T25] usb 8-1: config 0 descriptor??
[  361.040462][ T5890] usb 3-1: config 0 descriptor??
[  361.228820][ T8224] loop6: detected capacity change from 0 to 4096
[  361.314297][ T8224] NILFS (loop6): invalid segment: Checksum error in segment payload
[  361.352319][ T8224] NILFS (loop6): trying rollback from an earlier position
[  361.456189][   T25] gs_usb 8-1:0.0: Configuring for 12 interfaces
[  361.466022][ T8224] NILFS (loop6): recovery complete
[  361.480944][ T8233] loop5: detected capacity change from 0 to 1024
[  361.498773][ T8234] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  361.512570][   T25] gs_usb 8-1:0.0: Driver cannot handle more that 3 CAN interfaces
[  361.530539][ T5890] mcp2221 0003:04D8:00DD.0004: unknown main item tag 0x0
[  361.541358][ T8233] EXT4-fs: Ignoring removed nobh option
[  361.552000][   T25] gs_usb 8-1:0.0: probe with driver gs_usb failed with error -22
[  361.566052][ T5842] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  361.574685][ T8233] EXT4-fs: Ignoring removed bh option
[  361.587869][ T5890] mcp2221 0003:04D8:00DD.0004: unknown main item tag 0x0
[  361.645241][ T5890] mcp2221 0003:04D8:00DD.0004: unknown main item tag 0x0
[  361.660828][   T25] usb 8-1: USB disconnect, device number 2
[  361.669791][ T8233] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  361.681454][ T5890] mcp2221 0003:04D8:00DD.0004: unknown main item tag 0x0
[  361.689885][ T5890] mcp2221 0003:04D8:00DD.0004: unknown main item tag 0x0
[  361.702108][ T5890] mcp2221 0003:04D8:00DD.0004: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0
[  362.036895][   T29] audit: type=1804 audit(362.051:145): pid=8245 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.488" name="/newroot/110/file1/file1" dev="loop5" ino=15 res=1 errno=0
[  362.090379][ T5890] usb 3-1: USB disconnect, device number 5
[  362.174725][ T8245] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4115: comm syz.5.488: Allocating blocks 497-513 which overlap fs metadata
[  362.210385][ T8245] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4115: comm syz.5.488: Allocating blocks 497-513 which overlap fs metadata
[  362.522346][   T25] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  362.712536][   T25] usb 7-1: Using ep0 maxpacket: 16
[  362.777630][   T25] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  362.787852][ T8255] loop7: detected capacity change from 0 to 4096
[  362.811625][   T25] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  362.877648][ T8263] mmap: syz.2.493 (8263) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  363.578299][   T25] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  363.698758][   T25] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  363.749655][   T25] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  363.778513][ T8244] loop4: detected capacity change from 0 to 32768
[  363.801694][   T25] usb 7-1: config 0 descriptor??
[  363.807903][ T8244] (syz.4.489,8244,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  363.851524][ T8244] (syz.4.489,8244,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  364.013350][ T8244] JBD2: Ignoring recovery information on journal
[  364.021073][ T8270] loop1: detected capacity change from 0 to 4096
[  364.032319][ T5928] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  364.052266][ T8270] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  364.175452][ T8244] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  364.216693][ T8244] capability: warning: `syz.4.489' uses deprecated v2 capabilities in a way that may be insecure
[  364.217417][ T5928] usb 8-1: Using ep0 maxpacket: 16
[  364.228967][ T8270] overlayfs: failed to resolve './file1': -2
[  364.251104][ T5928] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 247, changing to 7
[  364.274179][ T8270] fuse: blksize only supported for fuseblk
[  364.288654][ T5928] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 10239, setting to 1024
[  364.550157][ T5842] ocfs2: Unmounting device (7,4) on (node local)
[  364.560579][   T25] input: HID 045e:07da as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/0003:045E:07DA.0005/input/input10
[  364.582574][ T5928] usb 8-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  364.591814][ T5928] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  364.603930][ T5928] usb 8-1: Product: syz
[  364.608150][ T5928] usb 8-1: Manufacturer: syz
[  364.612912][ T5928] usb 8-1: SerialNumber: syz
[  364.632650][ T5928] usb 8-1: config 0 descriptor??
[  364.672881][ T5928] hub 8-1:0.0: bad descriptor, ignoring hub
[  365.016217][ T5928] hub 8-1:0.0: probe with driver hub failed with error -5
[  365.042322][   T25] microsoft 0003:045E:07DA.0005: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.6-1/input0
[  365.076663][ T5928] input: syz syz as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/input/input11
[  365.214316][ T8232] EXT4-fs (loop5): pa ffff8880560aa488: logic 32, phys. 177, len 21
[  365.223273][ T8232] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  365.358730][   T25] usb 7-1: USB disconnect, device number 3
[  365.440559][ T5836] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  365.565455][ T5928] usb 8-1: USB disconnect, device number 3
[  365.594001][ T8290] loop6: detected capacity change from 0 to 1024
[  365.624057][ T8290] EXT4-fs: Ignoring removed nobh option
[  365.683877][ T8290] EXT4-fs: Ignoring removed bh option
[  365.984163][ T8290] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  367.241181][   T29] audit: type=1804 audit(367.251:146): pid=8309 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.501" name="/newroot/23/file1/file1" dev="loop6" ino=15 res=1 errno=0
[  367.361163][ T8309] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4115: comm syz.6.501: Allocating blocks 497-513 which overlap fs metadata
[  367.385417][ T8309] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4115: comm syz.6.501: Allocating blocks 497-513 which overlap fs metadata
[  367.409766][ T8309] EXT4-fs (loop6): pa ffff8880785a8828: logic 32, phys. 177, len 21
[  367.418231][ T8309] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  367.601470][ T7332] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  367.610002][ T8314] netlink: 32 bytes leftover after parsing attributes in process `syz.1.506'.
[  367.642504][ T8314] tipc: Invalid UDP bearer configuration
[  367.642857][ T8314] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  369.041868][ T8346] loop4: detected capacity change from 0 to 1024
[  369.211494][ T8351] loop2: detected capacity change from 0 to 8
[  369.297981][ T8351] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  369.317464][   T29] audit: type=1800 audit(369.331:147): pid=8346 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.511" name="file1" dev="loop4" ino=20 res=0 errno=0
[  369.347267][ T8353] loop5: detected capacity change from 0 to 1024
[  369.354835][ T8353] EXT4-fs: Ignoring removed nobh option
[  369.360480][ T8353] EXT4-fs: Ignoring removed bh option
[  369.728217][ T8353] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  370.394521][   T12] hfsplus: b-tree write err: -5, ino 4
[  370.582241][   T29] audit: type=1804 audit(370.581:148): pid=8359 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.515" name="/newroot/112/file1/file1" dev="loop5" ino=15 res=1 errno=0
[  370.706006][ T8359] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4115: comm syz.5.515: Allocating blocks 497-513 which overlap fs metadata
[  370.745887][ T8359] EXT4-fs (loop5): pa ffff8880785a8910: logic 32, phys. 177, len 21
[  370.754743][ T8359] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  370.811292][ T8341] loop6: detected capacity change from 0 to 32768
[  371.978747][ T5836] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.002642][ T8341] read_mapping_page failed!
[  372.447267][ T8341] diRead: read_metapage failed
[  373.016891][ T5928] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  373.337355][ T5928] usb 8-1: config 0 interface 0 altsetting 7 endpoint 0x81 has invalid wMaxPacketSize 0
[  373.432361][ T5928] usb 8-1: config 0 interface 0 has no altsetting 0
[  373.487116][ T5928] usb 8-1: New USB device found, idVendor=05ac, idProduct=0269, bcdDevice= 0.00
[  373.563042][ T5928] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  373.609445][ T8378] loop5: detected capacity change from 0 to 1024
[  373.627019][ T5928] usb 8-1: config 0 descriptor??
[  373.670374][ T8378] EXT4-fs: Ignoring removed nobh option
[  373.774111][ T8378] EXT4-fs: Ignoring removed bh option
[  373.849912][ T8378] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  373.928314][ T5928] usb 8-1: can't set config #0, error -71
[  373.936584][ T5928] usb 8-1: USB disconnect, device number 4
[  375.056471][ T8390] loop1: detected capacity change from 0 to 4096
[  375.289528][   T29] audit: type=1804 audit(375.231:149): pid=8378 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.519" name="/newroot/113/file1/file1" dev="loop5" ino=15 res=1 errno=0
[  375.321941][ T8390] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  375.729096][ T8409] loop6: detected capacity change from 0 to 1024
[  375.780105][ T8390] ntfs3(loop1): Failed to initialize $Extend/$Reparse.
[  375.783884][ T5836] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  375.835812][ T8409] hfsplus: bad catalog entry type
[  375.874881][ T8411] loop4: detected capacity change from 0 to 1024
[  375.927539][ T8411] EXT4-fs: Ignoring removed nomblk_io_submit option
[  376.042285][ T5934] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  376.053081][ T8411] EXT4-fs (loop4): mounted filesystem 00000000-0500-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  376.068466][   T12] hfsplus: b-tree write err: -5, ino 4
[  376.294536][ T5934] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  376.363089][ T5934] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  376.371187][ T5934] usb 3-1: Product: syz
[  376.439594][ T8425] loop1: detected capacity change from 0 to 512
[  376.493806][ T5934] usb 3-1: Manufacturer: syz
[  376.507985][ T8425] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  377.304960][ T5934] usb 3-1: SerialNumber: syz
[  377.317560][ T5934] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  377.587245][ T8425] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #2: comm syz.1.531: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  377.769934][ T5842] EXT4-fs (loop4): unmounting filesystem 00000000-0500-0000-0000-000000000000.
[  377.929947][ T5928] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  378.011431][ T8491] loop7: detected capacity change from 0 to 1024
[  378.072007][ T8491] EXT4-fs: Ignoring removed nobh option
[  378.183430][ T8491] EXT4-fs: Ignoring removed bh option
[  378.245925][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  378.271529][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  378.298241][ T5830] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  378.394559][ T8491] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  378.859235][   T29] audit: type=1804 audit(378.871:150): pid=8503 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.532" name="/newroot/20/file1/file1" dev="loop7" ino=15 res=1 errno=0
[  379.040840][ T5928] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive
[  379.082855][ T5928] ath9k_htc: Failed to initialize the device
[  379.264923][ T5928] usb 3-1: ath9k_htc: USB layer deinitialized
[  379.290942][ T7563] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  379.471269][ T8513] loop1: detected capacity change from 0 to 1024
[  379.544426][ T8513] EXT4-fs: Ignoring removed nobh option
[  379.589874][ T8513] EXT4-fs: Ignoring removed bh option
[  379.715085][ T8513] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  380.500271][ T5892] usb 3-1: USB disconnect, device number 6
[  380.798644][   T29] audit: type=1804 audit(380.811:151): pid=8513 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.537" name="/newroot/117/file1/file1" dev="loop1" ino=15 res=1 errno=0
[  381.006739][ T8530] loop2: detected capacity change from 0 to 2048
[  381.115650][ T8530] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  381.156676][ T5830] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  382.686018][ T8544] loop4: detected capacity change from 0 to 256
[  382.815805][ T8544] FAT-fs (loop4): Directory bread(block 1285) failed
[  382.815921][ T8544] FAT-fs (loop4): Directory bread(block 1286) failed
[  382.815965][ T8544] FAT-fs (loop4): Directory bread(block 1287) failed
[  382.816048][ T8544] FAT-fs (loop4): Directory bread(block 1288) failed
[  382.816086][ T8544] FAT-fs (loop4): Directory bread(block 1289) failed
[  382.816168][ T8544] FAT-fs (loop4): Directory bread(block 1290) failed
[  382.816207][ T8544] FAT-fs (loop4): Directory bread(block 1291) failed
[  382.816287][ T8544] FAT-fs (loop4): Directory bread(block 1292) failed
[  382.816325][ T8544] FAT-fs (loop4): Directory bread(block 1293) failed
[  382.816401][ T8544] FAT-fs (loop4): Directory bread(block 1294) failed
[  383.205412][ T8561] loop2: detected capacity change from 0 to 512
[  383.208268][ T8561] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  383.220149][ T8561] EXT4-fs (loop2): orphan cleanup on readonly fs
[  383.221649][ T8561] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:517: comm syz.2.550: Block bitmap for bg 0 marked uninitialized
[  383.226247][ T8561] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  383.226725][ T8561] EXT4-fs (loop2): 1 orphan inode deleted
[  383.242864][ T8561] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  383.334023][ T5825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  383.745757][ T5892] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  383.791251][ T8532] loop5: detected capacity change from 0 to 32768
[  383.885317][ T8532] read_mapping_page failed!
[  383.885383][ T8532] diRead: diIAGRead returned -5
[  383.892635][ T5892] usb 7-1: Using ep0 maxpacket: 16
[  383.895341][ T5892] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  383.895390][ T5892] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  383.895422][ T5892] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  383.895470][ T5892] usb 7-1: New USB device found, idVendor=5543, idProduct=0064, bcdDevice= 0.00
[  383.895497][ T5892] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  383.900469][ T5892] usb 7-1: config 0 descriptor??
[  384.012447][ T5889] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  384.186951][ T5889] usb 3-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  384.187021][ T5889] usb 3-1: New USB device strings: Mfr=223, Product=2, SerialNumber=3
[  384.187049][ T5889] usb 3-1: Product: syz
[  384.187068][ T5889] usb 3-1: Manufacturer: syz
[  384.187088][ T5889] usb 3-1: SerialNumber: syz
[  384.189725][ T5889] usb 3-1: config 0 descriptor??
[  384.192494][ T5889] ch341 3-1:0.0: ch341-uart converter detected
[  384.369109][ T5892] uclogic 0003:5543:0064.0006: No inputs registered, leaving
[  384.386128][ T5892] uclogic 0003:5543:0064.0006: hidraw0: USB HID v0.00 Device [HID 5543:0064] on usb-dummy_hcd.6-1/input0
[  384.569925][ T5890] usb 7-1: USB disconnect, device number 4
[  384.832018][ T5889] usb 3-1: failed to send control message: -71
[  384.857695][ T5889] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71
[  385.033511][ T8602] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  385.155833][ T5889] usb 3-1: USB disconnect, device number 7
[  385.186815][ T5889] ch341 3-1:0.0: device disconnected
[  385.692846][ T8595] sctp: failed to load transform for md5: -2
[  386.135304][ T8626] loop1: detected capacity change from 0 to 256
[  386.162434][ T5889] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  386.214740][ T8626] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  386.352569][ T5890] usb 6-1: new low-speed USB device number 8 using dummy_hcd
[  386.372461][ T5889] usb 7-1: Using ep0 maxpacket: 16
[  386.402788][ T5889] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  386.432823][ T5889] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  386.462227][ T5889] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  386.506483][ T5889] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  386.543265][ T5889] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  386.557850][ T5890] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  386.567347][ T5889] usb 7-1: config 0 descriptor??
[  386.567876][ T5890] usb 6-1: config 0 has no interface number 0
[  386.627935][ T5890] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  386.672273][ T5890] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  386.732363][ T5890] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  386.752232][ T5890] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  386.813206][ T5890] usb 6-1: config 0 descriptor??
[  386.819209][ T8624] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  386.941813][ T5890] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  387.085195][ T5889] microsoft 0003:045E:07DA.0007: unknown main item tag 0x2
[  387.097144][ T5890] usb 6-1: USB disconnect, device number 8
[  387.137429][ T5889] microsoft 0003:045E:07DA.0007: unknown main item tag 0x3
[  387.162348][ T5889] microsoft 0003:045E:07DA.0007: unbalanced collection at end of report description
[  387.196726][ T8619] loop2: detected capacity change from 0 to 32768
[  387.204456][ T5889] microsoft 0003:045E:07DA.0007: parse failed
[  387.211164][ T5889] microsoft 0003:045E:07DA.0007: probe with driver microsoft failed with error -22
[  387.306631][ T5889] usb 7-1: USB disconnect, device number 5
[  387.371720][ T8618] loop7: detected capacity change from 0 to 32768
[  387.459861][ T8618] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.563 (8618)
[  387.527596][ T8619] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names
[  387.578614][ T8619] bcachefs (loop2): initializing new filesystem
[  387.606638][ T8619] bcachefs (loop2): going read-write
[  387.718131][ T8618] BTRFS info (device loop7): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[  387.718416][ T8619] bcachefs (loop2): marking superblocks
[  387.799005][ T8618] BTRFS info (device loop7): using sha256 (sha256-ni) checksum algorithm
[  387.844961][ T8618] BTRFS info (device loop7): using free-space-tree
[  387.952823][ T8657] loop5: detected capacity change from 0 to 4096
[  388.018566][ T8619] bcachefs (loop2): initializing freespace
[  388.192608][ T8675] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  388.330250][ T8619] bcachefs (loop2): done initializing freespace
[  389.068578][ T8619] bcachefs (loop2): reading snapshots table
[  389.097095][ T8619] bcachefs (loop2): reading snapshots done
[  389.335399][ T7563] BTRFS info (device loop7): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[  389.439209][ T8619] bcachefs (loop2): bch2_copygc_start(): error creating copygc thread EINTR
[  389.458956][ T8686] loop6: detected capacity change from 0 to 512
[  389.487861][ T8619] bcachefs (loop2): error starting copygc thread
[  389.499055][ T8619] bcachefs (loop2): bch2_fs_start(): error starting filesystem EINTR
[  389.660481][ T8619] bcachefs (loop2): shutting down
[  389.725039][ T8619] bcachefs (loop2): going read-only
[  389.829721][ T8619] bcachefs (loop2): finished waiting for writes to stop
[  389.836343][ T8686] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.571: invalid indirect mapped block 256 (level 2)
[  389.963533][ T8619] bcachefs (loop2): flushing journal and stopping allocators, journal seq 3
[  390.069089][ T8686] EXT4-fs (loop6): 2 truncates cleaned up
[  390.270555][ T8686] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  390.607151][ T8619] bcachefs (loop2): flushing journal and stopping allocators complete, journal seq 6
[  390.623694][ T7332] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  390.681153][ T8651] bch-reclaim/loo (8651) used greatest stack depth: 12368 bytes left
[  390.715776][ T8619] bcachefs (loop2): clean shutdown complete, journal seq 7
[  390.733943][ T8619] bcachefs (loop2): marking filesystem clean
[  390.780395][ T8619] bcachefs (loop2): shutdown complete
[  391.061464][ T8697] infiniband syz0: set down
[  391.071593][ T8697] infiniband syz0: added bond0
[  391.083929][ T8697] syz0: rxe_create_cq: returned err = -12
[  391.108818][ T8697] infiniband syz0: Couldn't create ib_mad CQ
[  391.172617][ T8697] infiniband syz0: Couldn't open port 1
[  391.351146][ T8697] RDS/IB: syz0: added
[  391.371245][ T8697] smc: adding ib device syz0 with port count 1
[  391.404432][ T8697] smc:    ib device syz0 port 1 has pnetid 
[  391.829948][ T8737] loop4: detected capacity change from 0 to 512
[  391.978067][ T8737] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  392.007777][ T8737] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e028, mo2=0002]
[  392.048343][ T8737] System zones: 0-1, 15-15, 18-18, 34-34
[  392.080088][ T8737] EXT4-fs (loop4): orphan cleanup on readonly fs
[  392.116408][ T8737] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=0
[  392.171649][ T8737] EXT4-fs warning (device loop4): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  392.207923][ T8737] EXT4-fs (loop4): Cannot turn on quotas: error -22
[  392.243329][ T8737] EXT4-fs error (device loop4): ext4_orphan_get:1415: comm syz.4.585: bad orphan inode 16
[  392.277944][ T8737] EXT4-fs (loop4): Remounting filesystem read-only
[  392.304383][ T8737] ext4_test_bit(bit=15, block=18) = 1
[  392.325651][ T8737] is_bad_inode(inode)=0
[  392.356923][ T8737] NEXT_ORPHAN(inode)=0
[  392.372566][ T8737] max_ino=32
[  392.387443][ T8737] i_nlink=2
[  392.408264][ T8737] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  392.431829][ T8730] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  392.449422][ T8749] loop5: detected capacity change from 0 to 256
[  392.564987][ T8737] fscrypt (loop4, inode 16): Error -5 getting encryption context
[  392.613991][ T5198] udevd[5198]: worker [5888] terminated by signal 33 (Unknown signal 33)
[  392.646376][ T5198] udevd[5198]: worker [5888] failed while handling '/devices/virtual/block/loop5'
[  392.908767][ T8759] loop5: detected capacity change from 0 to 1024
[  392.922699][ T8759] EXT4-fs: Ignoring removed nobh option
[  392.928321][ T8759] EXT4-fs: Ignoring removed bh option
[  393.015185][ T8759] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  393.187773][ T5842] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  393.474764][   T29] audit: type=1804 audit(393.471:152): pid=8771 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.588" name="/newroot/125/file1/file1" dev="loop5" ino=15 res=1 errno=0
[  393.667844][ T5839] Bluetooth: hci0: command 0x0406 tx timeout
[  393.882110][ T6263] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  394.039355][ T5836] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  394.049252][ T8777] tap0: tun_chr_ioctl cmd 1074025677
[  394.072128][ T8777] tap0: linktype set to 65534
[  394.404539][ T6263] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  394.686790][ T8619] bcachefs: bch2_fs_get_tree() error: EINTR
[  394.755473][ T6263] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  394.870927][ T8619] syz.2.564 (8619) used greatest stack depth: 11216 bytes left
[  395.000259][ T8790] loop5: detected capacity change from 0 to 1764
[  395.313605][ T6263] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  395.542364][ T8794] loop6: detected capacity change from 0 to 4096
[  395.622551][ T8794] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512).
[  395.743051][ T5845] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  395.762828][ T5845] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  395.790648][ T5845] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  395.838791][ T5845] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  395.856284][ T5845] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  395.867107][ T5845] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  395.924906][ T8805] loop5: detected capacity change from 0 to 2048
[  395.944364][ T6263] bridge_slave_1: left allmulticast mode
[  395.956286][ T6263] bridge_slave_1: left promiscuous mode
[  395.962104][ T6263] bridge0: port 2(bridge_slave_1) entered disabled state
[  395.971543][ T6263] bridge_slave_0: left allmulticast mode
[  395.982186][ T6263] bridge_slave_0: left promiscuous mode
[  395.987922][ T6263] bridge0: port 1(bridge_slave_0) entered disabled state
[  395.998882][ T8811] fuse: blksize only supported for fuseblk
[  396.100477][ T8808] loop1: detected capacity change from 0 to 1024
[  396.193153][ T8815] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  396.652782][ T8820] loop7: detected capacity change from 0 to 8
[  396.748049][ T8820] SQUASHFS error: zstd decompression error: 10
[  396.809565][ T8820] SQUASHFS error: zstd decompression failed, data probably corrupt
[  396.868189][ T8820] SQUASHFS error: Failed to read block 0x62b: -5
[  396.919622][ T8820] SQUASHFS error: Unable to read metadata cache entry [629]
[  396.972011][ T8820] SQUASHFS error: Unable to read directory block [629:ff26]
[  397.100548][ T8826] loop5: detected capacity change from 0 to 16
[  397.129858][ T8826] erofs (device loop5): mounted with root inode @ nid 36.
[  397.205433][ T8826] syz.5.602: attempt to access beyond end of device
[  397.205433][ T8826] loop5: rw=0, sector=8, nr_sectors = 16 limit=16
[  397.300955][ T8826] erofs (device loop5): read error -5 @ 8200 of nid 36
[  397.791594][ T8830] loop7: detected capacity change from 0 to 512
[  397.894320][ T5839] Bluetooth: hci2: unexpected event for opcode 0x080d
[  397.978319][ T8830] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  397.992538][ T5839] Bluetooth: hci5: command tx timeout
[  398.354239][ T8830] EXT4-fs (loop7): 1 truncate cleaned up
[  398.370037][ T8800] loop2: detected capacity change from 0 to 32768
[  398.460282][ T8839] syz.5.602: attempt to access beyond end of device
[  398.460282][ T8839] loop5: rw=0, sector=8, nr_sectors = 16 limit=16
[  398.473876][ T8839] erofs (device loop5): read error -5 @ 8200 of nid 36
[  398.516338][ T8830] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  398.845627][ T8837] syz.5.602 (8837): drop_caches: 2
[  398.890965][ T8800] read_mapping_page failed!
[  398.915696][ T8800] diRead: diIAGRead returned -5
[  398.950610][ T8841] loop6: detected capacity change from 0 to 128
[  399.007247][ T7563] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  399.019537][ T8841] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  399.205269][ T8841] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  399.444838][ T7013] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  399.602349][ T5928] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  399.798935][ T5928] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  399.835649][ T5928] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  399.866664][ T5928] usb 8-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00
[  399.897240][ T5928] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  399.953443][ T5928] usb 8-1: config 0 descriptor??
[  400.059881][ T8843] loop1: detected capacity change from 0 to 32768
[  400.066775][ T5839] Bluetooth: hci5: command tx timeout
[  400.137921][   T29] audit: type=1800 audit(400.151:153): pid=8843 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.608" name="file1" dev="loop1" ino=4 res=0 errno=0
[  400.431887][ T5928] hid-led 0003:0FC5:B080.0008: unknown main item tag 0x0
[  400.473580][ T5928] hid-led 0003:0FC5:B080.0008: unbalanced collection at end of report description
[  400.492966][ T5928] hid-led 0003:0FC5:B080.0008: probe with driver hid-led failed with error -22
[  400.650779][ T5928] usb 8-1: USB disconnect, device number 5
[  400.657242][ T6263] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  400.711859][ T8847] loop2: detected capacity change from 0 to 32768
[  400.744967][ T6263] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  400.756568][ T8847] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.610 (8847)
[  400.790395][ T6263] bond0 (unregistering): Released all slaves
[  400.841829][ T8802] lo speed is unknown, defaulting to 1000
[  400.912335][ T8847] BTRFS info (device loop2): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  400.915827][ T5839] Bluetooth: hci2: unexpected event for opcode 0x2027
[  400.965994][ T8847] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  400.976323][ T8847] BTRFS info (device loop2): using free-space-tree
[  401.490371][ T8882] loop7: detected capacity change from 0 to 512
[  401.545471][ T8882] EXT4-fs: Ignoring removed nobh option
[  401.586897][ T8882] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  401.666967][ T8882] EXT4-fs (loop7): 1 truncate cleaned up
[  401.703288][ T8882] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  401.928079][ T5825] BTRFS info (device loop2): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  402.195493][ T5839] Bluetooth: hci5: command tx timeout
[  402.807620][ T7563] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  403.150999][ T5894] usb 6-1: new full-speed USB device number 9 using dummy_hcd
[  403.344865][ T5894] usb 6-1: config 0 has an invalid interface number: 3 but max is 0
[  403.354195][ T5894] usb 6-1: config 0 has no interface number 0
[  403.360440][ T5894] usb 6-1: config 0 interface 3 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  403.379149][ T5894] usb 6-1: config 0 interface 3 altsetting 0 endpoint 0x8 has invalid maxpacket 1024, setting to 64
[  403.410680][ T5894] usb 6-1: config 0 interface 3 altsetting 0 endpoint 0x4 has invalid maxpacket 1023, setting to 64
[  403.457895][ T6263] hsr_slave_0: left promiscuous mode
[  403.476790][ T5894] usb 6-1: config 0 interface 3 altsetting 0 endpoint 0xA has invalid maxpacket 1023, setting to 64
[  403.528506][ T6263] hsr_slave_1: left promiscuous mode
[  403.540430][ T5894] usb 6-1: New USB device found, idVendor=1199, idProduct=6821, bcdDevice=98.59
[  403.586920][ T6263] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  403.612345][ T5894] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  403.638835][ T6263] batman_adv: batadv0: Removing interface: batadv_slave_0
[  403.658554][ T5894] usb 6-1: config 0 descriptor??
[  403.686048][ T6263] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  403.696925][ T5894] hub 6-1:0.3: bad descriptor, ignoring hub
[  403.706044][ T6263] batman_adv: batadv0: Removing interface: batadv_slave_1
[  403.720662][ T5894] hub 6-1:0.3: probe with driver hub failed with error -5
[  403.733613][ T5894] sierra 6-1:0.3: Sierra USB modem converter detected
[  403.811519][ T6263] veth1_macvtap: left promiscuous mode
[  403.842453][ T6263] veth0_macvtap: left promiscuous mode
[  403.862747][ T6263] veth1_vlan: left promiscuous mode
[  403.868136][ T6263] veth0_vlan: left promiscuous mode
[  403.906772][ T5894] usb 6-1: Sierra USB modem converter now attached to ttyUSB0
[  403.988304][ T5894] usb 6-1: Sierra USB modem converter now attached to ttyUSB1
[  404.055052][ T5894] usb 6-1: USB disconnect, device number 9
[  404.129013][ T5894] sierra ttyUSB0: Sierra USB modem converter now disconnected from ttyUSB0
[  404.178367][ T5894] sierra ttyUSB1: Sierra USB modem converter now disconnected from ttyUSB1
[  404.216008][ T5894] sierra 6-1:0.3: device disconnected
[  404.222423][ T5845] Bluetooth: hci5: command tx timeout
[  404.656459][ T8921] loop2: detected capacity change from 0 to 32768
[  404.698708][ T8921] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.618 (8921)
[  404.772247][ T8921] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  404.792314][ T8921] BTRFS info (device loop2): using sha256 (sha256-ni) checksum algorithm
[  404.800849][ T8921] BTRFS info (device loop2): disk space caching is enabled
[  404.846310][ T8921] BTRFS warning (device loop2): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  405.073835][ T8921] BTRFS info (device loop2): rebuilding free space tree
[  405.194440][ T8921] BTRFS info (device loop2): disabling free space tree
[  405.202685][ T8921] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  405.222029][ T8921] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  405.284981][ T8921] BTRFS info (device loop2): checking UUID tree
[  405.422307][ T5839] Bluetooth: hci6: Opcode 0x1003 failed: -110
[  405.839865][ T5825] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  407.166057][ T8972] loop5: detected capacity change from 0 to 1024
[  407.244294][ T8972] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  407.362605][ T6263] team0 (unregistering): Port device team_slave_1 removed
[  407.475340][ T5836] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  407.778036][ T6263] team0 (unregistering): Port device team_slave_0 removed
[  408.655923][ T8973] loop2: detected capacity change from 0 to 32768
[  408.727491][ T8973] ERROR: (device loop2): diAllocAG: ipimap->i_size is wrong
[  408.727491][ T8973] 
[  408.773492][ T8973] ERROR: (device loop2): remounting filesystem as read-only
[  408.790864][ T8973] ialloc: diAlloc returned -5!
[  409.051911][ T8977] loop7: detected capacity change from 0 to 40427
[  409.104131][ T8977] F2FS-fs (loop7): invalid crc value
[  409.135453][ T8977] F2FS-fs (loop7): Found nat_bits in checkpoint
[  409.315592][ T8977] F2FS-fs (loop7): Start checkpoint disabled!
[  409.409166][ T8977] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e6
[  409.563623][ T5894] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  409.629446][ T5966] kworker/u8:9: attempt to access beyond end of device
[  409.629446][ T5966] loop7: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  409.753817][ T5894] usb 3-1: Using ep0 maxpacket: 16
[  409.772999][ T5966] F2FS-fs (loop7): Stopped filesystem due to reason: 3
[  409.791001][ T5894] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  409.805420][ T5894] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  409.816180][ T5894] usb 3-1: New USB device found, idVendor=1b1c, idProduct=1b02, bcdDevice= 0.00
[  409.826111][ T5894] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  409.826725][ T5966] F2FS-fs (loop7): Stopped filesystem due to reason: 3
[  409.841550][ T5894] usb 3-1: config 0 descriptor??
[  409.869463][ T8994] loop1: detected capacity change from 0 to 32768
[  410.290942][ T5894] corsair 0003:1B1C:1B02.0009: hidraw0: USB HID v0.00 Device [HID 1b1c:1b02] on usb-dummy_hcd.2-1/input0
[  410.618309][ T8998] loop5: detected capacity change from 0 to 40427
[  410.628755][ T8998] F2FS-fs (loop5): Invalid log sectors per block(0) log sectorsize(9)
[  410.673333][ T8998] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  410.694221][ T8998] F2FS-fs (loop5): invalid crc value
[  410.715820][ T5890] usb 3-1: USB disconnect, device number 8
[  410.745246][ T9006] loop1: detected capacity change from 0 to 2048
[  410.767556][ T8998] F2FS-fs (loop5): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109)
[  410.856791][ T9006] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  410.954137][ T8998] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  410.961315][ T8998] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  410.986649][ T5830] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  411.001611][ T5893] lo speed is unknown, defaulting to 1000
[  411.111650][ T9005] f2fs_ckpt-7:5: attempt to access beyond end of device
[  411.111650][ T9005] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  411.129940][ T9005] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  411.304181][ T9022] netlink: 8 bytes leftover after parsing attributes in process `syz.6.646'.
[  411.324998][ T8802] chnl_net:caif_netlink_parms(): no params data found
[  413.052099][ T9045] Driver unsupported XDP return value 0 on prog  (id 98) dev N/A, expect packet loss!
[  413.268747][ T8802] bridge0: port 1(bridge_slave_0) entered blocking state
[  413.303060][ T8802] bridge0: port 1(bridge_slave_0) entered disabled state
[  413.338694][ T8802] bridge_slave_0: entered allmulticast mode
[  413.356531][ T8802] bridge_slave_0: entered promiscuous mode
[  413.413594][ T8802] bridge0: port 2(bridge_slave_1) entered blocking state
[  413.451755][ T8802] bridge0: port 2(bridge_slave_1) entered disabled state
[  413.482559][ T8802] bridge_slave_1: entered allmulticast mode
[  413.489863][ T8802] bridge_slave_1: entered promiscuous mode
[  413.751873][ T8802] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  413.785607][ T8802] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  414.129962][ T8802] team0: Port device team_slave_0 added
[  414.351899][ T8802] team0: Port device team_slave_1 added
[  415.312347][ T8802] batman_adv: batadv0: Adding interface: batadv_slave_0
[  415.319356][ T8802] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  415.366355][ T9048] loop7: detected capacity change from 0 to 32768
[  415.410346][ T8802] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  415.477503][ T9048] JBD2: Ignoring recovery information on journal
[  415.509103][ T8802] batman_adv: batadv0: Adding interface: batadv_slave_1
[  415.536350][ T8802] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  415.595142][ T9048] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[  415.632484][ T5891] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  415.698221][ T8802] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  415.802445][ T5891] usb 3-1: Using ep0 maxpacket: 8
[  415.821372][ T5891] usb 3-1: config 0 has no interfaces?
[  415.837389][ T5891] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  415.861015][ T5891] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  415.892473][ T5891] usb 3-1: config 0 descriptor??
[  415.956298][ T8802] hsr_slave_0: entered promiscuous mode
[  416.017360][ T8802] hsr_slave_1: entered promiscuous mode
[  416.061664][ T7563] ocfs2: Unmounting device (7,7) on (node local)
[  416.068655][ T8802] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  416.110006][ T8802] Cannot create hsr debugfs directory
[  416.189974][ T9090] loop2: detected capacity change from 0 to 1024
[  416.248186][ T9099] loop6: detected capacity change from 0 to 1024
[  416.278161][ T9099] EXT4-fs: Ignoring removed nobh option
[  416.320746][ T9099] EXT4-fs: Ignoring removed bh option
[  416.350652][ T5893] usb 3-1: USB disconnect, device number 9
[  416.405949][ T9099] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  416.577974][ T9086] loop1: detected capacity change from 0 to 32768
[  416.745774][ T9086] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.661 (9086)
[  416.881774][   T29] audit: type=1804 audit(416.891:154): pid=9116 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.665" name="/newroot/53/file1/file1" dev="loop6" ino=15 res=1 errno=0
[  416.885713][ T9086] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  417.022599][ T9086] BTRFS info (device loop1): using sha256 (sha256-ni) checksum algorithm
[  417.249516][ T6978] hfsplus: b-tree write err: -5, ino 4
[  417.254909][ T8802] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  417.491111][ T9086] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR
[  417.767114][ T7332] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  417.791756][ T8802] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  417.806752][ T9086] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[  417.864809][ T9086] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  417.950073][ T9086] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  417.961703][ T8802] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  418.032943][ T9086] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  418.033261][ T9086] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  418.081019][ T8802] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  418.102483][ T9086] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  418.243683][ T9086] BTRFS error (device loop1): open_ctree failed: -12
[  419.769005][ T8802] 8021q: adding VLAN 0 to HW filter on device bond0
[  419.849264][ T9168] loop5: detected capacity change from 0 to 128
[  419.863518][   T29] audit: type=1326 audit(419.841:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9166 comm="syz.6.672" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f17d1d85d29 code=0x0
[  419.903039][ T9168] VFS: Found a Xenix FS (block size = 512) on device loop5
[  419.907782][ T8802] 8021q: adding VLAN 0 to HW filter on device team0
[  419.982568][ T6250] bridge0: port 1(bridge_slave_0) entered blocking state
[  419.989766][ T6250] bridge0: port 1(bridge_slave_0) entered forwarding state
[  420.029809][ T9168] sysv_free_block: getblk() failed
[  420.072917][ T9168] sysv_free_block: getblk() failed
[  420.093600][ T6978] bridge0: port 2(bridge_slave_1) entered blocking state
[  420.100811][ T6978] bridge0: port 2(bridge_slave_1) entered forwarding state
[  420.128362][ T9168] sysv_free_block: getblk() failed
[  420.147071][ T9168] sysv_free_block: getblk() failed
[  420.161183][ T9168] sysv_free_block: getblk() failed
[  420.179319][ T9168] sysv_free_block: getblk() failed
[  420.192289][ T9168] sysv_free_block: getblk() failed
[  420.235687][ T9168] sysv_free_block: getblk() failed
[  420.240911][ T9168] sysv_free_block: getblk() failed
[  420.303191][ T9168] sysv_free_block: getblk() failed
[  420.327345][ T9168] sysv_free_block: getblk() failed
[  420.371379][ T9168] sysv_free_block: getblk() failed
[  420.381510][ T9168] sysv_free_block: getblk() failed
[  420.408757][ T9168] sysv_free_block: getblk() failed
[  420.418890][ T9168] sysv_free_block: getblk() failed
[  420.443238][ T9168] sysv_free_block: getblk() failed
[  420.458831][ T9168] sysv_free_block: getblk() failed
[  420.473696][ T9168] sysv_free_block: getblk() failed
[  420.493489][ T9168] sysv_free_block: getblk() failed
[  420.516090][ T9168] sysv_free_block: getblk() failed
[  420.539425][ T9168] sysv_free_block: getblk() failed
[  420.568219][ T9168] sysv_free_block: getblk() failed
[  420.630942][ T9168] sysv_free_block: getblk() failed
[  420.675775][ T9168] sysv_free_block: getblk() failed
[  420.715036][ T9168] sysv_free_block: getblk() failed
[  420.720251][ T9168] sysv_free_block: getblk() failed
[  420.762453][ T9168] sysv_free_block: getblk() failed
[  420.767719][ T9168] sysv_free_block: getblk() failed
[  420.776864][ T8802] 8021q: adding VLAN 0 to HW filter on device batadv0
[  420.812385][ T9168] sysv_free_block: getblk() failed
[  420.817675][ T9168] sysv_free_block: getblk() failed
[  420.866384][ T9168] sysv_free_block: getblk() failed
[  420.871994][ T9168] sysv_free_block: getblk() failed
[  420.902366][ T9168] sysv_free_block: getblk() failed
[  420.907600][ T9168] sysv_free_block: getblk() failed
[  420.944974][ T9168] sysv_free_block: getblk() failed
[  420.950234][ T9168] sysv_free_block: getblk() failed
[  420.969508][ T9205] syz.1.681 uses obsolete (PF_INET,SOCK_PACKET)
[  420.983390][ T9168] sysv_free_block: trying to free block not in datazone
[  421.522995][ T5839] Bluetooth: hci1: command 0x0406 tx timeout
[  421.898145][ T5836] sysv_free_block: getblk() failed
[  421.973998][ T5836] sysv_free_block: getblk() failed
[  421.979180][ T5836] sysv_free_block: trying to free block not in datazone
[  422.021890][ T5836] sysv_free_block: getblk() failed
[  422.060130][ T5836] sysv_free_block: getblk() failed
[  422.082636][ T5836] sysv_free_block: getblk() failed
[  422.088079][ T5836] sysv_free_block: getblk() failed
[  422.135175][ T5836] sysv_free_block: getblk() failed
[  422.140914][ T5836] sysv_free_block: getblk() failed
[  422.169135][ T5836] sysv_free_block: getblk() failed
[  422.185662][ T5836] sysv_free_block: getblk() failed
[  422.207385][ T5836] sysv_free_block: getblk() failed
[  422.212986][ T5836] sysv_free_block: getblk() failed
[  422.242464][ T5836] sysv_free_block: getblk() failed
[  422.272270][ T5836] sysv_free_block: getblk() failed
[  422.284189][ T5836] sysv_free_block: getblk() failed
[  422.302384][ T5836] sysv_free_block: getblk() failed
[  422.317910][ T5836] sysv_free_block: getblk() failed
[  422.343113][ T5836] sysv_free_block: getblk() failed
[  422.371831][ T5836] sysv_free_block: getblk() failed
[  422.393574][ T9220] loop6: detected capacity change from 0 to 4096
[  422.419920][ T5836] sysv_free_block: getblk() failed
[  422.452557][ T5836] sysv_free_block: trying to free block not in datazone
[  422.484560][ T5836] sysv_free_block: trying to free block not in datazone
[  422.549090][ T5836] sysv_free_inode: inode 0,1,2 or nonexistent inode
[  422.741997][ T8802] veth0_vlan: entered promiscuous mode
[  422.885455][ T8802] veth1_vlan: entered promiscuous mode
[  422.911688][ T9197] loop7: detected capacity change from 0 to 32768
[  422.996356][ T8802] veth0_macvtap: entered promiscuous mode
[  423.046219][ T8802] veth1_macvtap: entered promiscuous mode
[  423.146705][ T9197] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[  423.173576][ T8802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  423.267369][ T8802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  423.305843][ T8802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  423.352198][ T8802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  423.417642][ T8802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  423.473575][ T8802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  423.492285][ T9197] (syz.7.679,9197,1):ocfs2_remount:623 ERROR: Cannot change heartbeat mode on remount
[  423.532250][ T8802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  423.572601][ T8802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  423.597724][ T9263] loop2: detected capacity change from 0 to 16
[  423.602656][ T9261] syz.5.691[9261] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  423.608511][ T9261] syz.5.691[9261] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  423.614278][ T8802] batman_adv: batadv0: Interface activated: batadv_slave_0
[  423.661317][ T9263] erofs (device loop2): mounted with root inode @ nid 36.
[  423.681072][ T9261] syz.5.691[9261] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  423.709890][ T9263] syz.2.690: attempt to access beyond end of device
[  423.709890][ T9263] loop2: rw=0, sector=8, nr_sectors = 16 limit=16
[  423.747457][ T9251] syzkaller1: entered promiscuous mode
[  423.759046][ T9263] erofs (device loop2): read error -5 @ 8200 of nid 36
[  423.782984][ T9251] syzkaller1: entered allmulticast mode
[  423.801273][ T8802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  423.832363][ T7563] ocfs2: Unmounting device (7,7) on (node local)
[  423.839127][ T8802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  423.892376][ T8802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  423.932467][ T8802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  423.982529][ T8802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  424.032615][ T8802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  424.080567][ T8802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  424.102663][ T8802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  424.151825][ T8802] batman_adv: batadv0: Interface activated: batadv_slave_1
[  425.139204][ T8802] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  425.150237][ T8802] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  425.160484][ T8802] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  425.200984][ T8802] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  425.623329][ T9288] loop6: detected capacity change from 0 to 1024
[  425.683653][ T7011] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  425.740329][ T7011] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  425.799160][ T9288] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  425.938635][ T7013] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  426.055864][ T9300] syz.2.690: attempt to access beyond end of device
[  426.055864][ T9300] loop2: rw=0, sector=8, nr_sectors = 16 limit=16
[  426.069945][ T9300] erofs (device loop2): read error -5 @ 8200 of nid 36
[  426.280424][ T9297] syz.2.690 (9297): drop_caches: 2
[  426.344918][ T9288] EXT4-fs error (device loop6): ext4_xattr_inode_iget:440: inode #11: comm syz.6.697: missing EA_INODE flag
[  426.363556][ T7013] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  426.664615][ T9288] EXT4-fs (loop6): Remounting filesystem read-only
[  427.630593][ T7332] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  427.956567][ T9322] netlink: 12 bytes leftover after parsing attributes in process `syz.8.593'.
[  428.261706][ T9325] loop1: detected capacity change from 0 to 4096
[  428.580601][ T9325] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  430.214017][ T9341] loop7: detected capacity change from 0 to 2048
[  430.221551][ T9325] ntfs3(loop1): Failed to initialize $Extend/$Reparse.
[  430.312503][ T9345] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  430.502630][ T9350] NILFS error (device loop7): nilfs_lookup: deleted inode referenced: 12
[  430.534377][ T5890] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  430.566073][ T9350] Remounting filesystem read-only
[  430.732441][ T5890] usb 9-1: Using ep0 maxpacket: 8
[  430.735125][ T7563] NILFS (loop7): disposed unprocessed dirty file(s) when detaching log writer
[  430.754068][ T5890] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  430.774580][ T5830] ntfs3(loop1): ino=1a, ntfs_sync_fs failed, -22.
[  430.791061][ T9356] loop5: detected capacity change from 0 to 2048
[  430.794873][ T5890] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  430.838177][ T5890] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  430.884528][ T9356] UDF-fs: error (device loop5): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  430.907253][ T5890] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  430.961367][ T9356] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  430.981057][ T5890] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  431.031186][ T5890] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  431.341629][ T5890] usb 9-1: GET_CAPABILITIES returned 0
[  431.380512][ T5890] usbtmc 9-1:16.0: can't read capabilities
[  432.172449][ T5890] usb 9-1: USB disconnect, device number 2
[  432.583892][ T9386] loop1: detected capacity change from 0 to 1024
[  432.752874][ T9386] hfsplus: inconsistency in B*Tree (128,1,255,1,0)
[  432.802456][ T9386] hfsplus: xattr search failed
[  432.924320][ T9393] loop6: detected capacity change from 0 to 512
[  432.976846][ T9393] EXT4-fs (loop6): Test dummy encryption mode enabled
[  433.016222][ T9393] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  433.212595][ T9393] EXT4-fs (loop6): 1 truncate cleaned up
[  433.219327][ T9393] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  434.631747][ T9393] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[  434.789630][ T9434] loop7: detected capacity change from 0 to 512
[  434.825740][ T9434] /dev/loop7: Can't open blockdev
[  434.875770][    C0] operation not supported error, dev loop7, sector 0 op 0x9:(WRITE_ZEROES) flags 0x10000800 phys_seg 0 prio class 0
[  434.880724][ T9380] loop5: detected capacity change from 0 to 40427
[  434.907127][ T9393] fscrypt (loop6): Missing crypto API support for AES-256-XTS (API name: "xts(aes)")
[  434.965276][ T9393] overlayfs: upper fs does not support tmpfile.
[  434.985830][ T9380] F2FS-fs (loop5): build fault injection attr: rate: 690, type: 0x1fffff
[  434.987131][ T9393] fscrypt (loop6): Missing crypto API support for AES-256-XTS (API name: "xts(aes)")
[  435.042380][ T9380] F2FS-fs (loop5): Image doesn't support compression
[  435.112644][ T9380] F2FS-fs (loop5): heap/no_heap options were deprecated
[  435.134721][ T9406] loop1: detected capacity change from 0 to 32768
[  435.190874][ T9380] F2FS-fs (loop5): Image doesn't support compression
[  435.221159][ T9406] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.724 (9406)
[  435.243212][ T9380] F2FS-fs (loop5): invalid crc value
[  435.315498][ T9380] F2FS-fs (loop5): Found nat_bits in checkpoint
[  435.382299][ T9406] BTRFS info (device loop1): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  435.416724][ T7332] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  435.436184][ T9406] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  435.472705][ T9406] BTRFS info (device loop1): using free-space-tree
[  435.667561][ T9471] netlink: 'syz.2.735': attribute type 4 has an invalid length.
[  436.422417][ T9487] loop2: detected capacity change from 0 to 4096
[  436.489390][ T9487] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[  436.493323][ T5830] BTRFS info (device loop1): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  436.630891][ T5845] Bluetooth: hci3: command 0x0405 tx timeout
[  436.793239][ T9448] loop8: detected capacity change from 0 to 40427
[  436.829161][ T9487] overlayfs: missing 'lowerdir'
[  436.874348][ T9448] F2FS-fs (loop8): invalid crc value
[  436.885613][ T9487] fuse: blksize only supported for fuseblk
[  437.032613][ T9503] loop6: detected capacity change from 0 to 512
[  437.103547][ T9503] EXT4-fs: Ignoring removed mblk_io_submit option
[  437.155005][ T9448] F2FS-fs (loop8): Found nat_bits in checkpoint
[  437.189292][ T9503] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  437.392043][ T9503] EXT4-fs (loop6): blocks per group (64) and clusters per group (32768) inconsistent
[  437.842712][ T9448] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  438.009709][   T25] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  438.147541][ T8802] syz-executor: attempt to access beyond end of device
[  438.147541][ T8802] loop8: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  438.159271][ T9515] loop1: detected capacity change from 0 to 512
[  438.213578][   T25] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  438.227191][ T8802] F2FS-fs (loop8): Stopped filesystem due to reason: 3
[  438.230778][ T9458] loop7: detected capacity change from 0 to 65536
[  438.265041][   T25] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  438.304608][   T25] usb 6-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00
[  438.324872][   T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  438.325972][ T9515] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  438.345576][   T25] usb 6-1: config 0 descriptor??
[  438.502482][ T9458] workqueue: Failed to create a rescuer kthread for wq "xfs-blockgc/loop7": -EINTR
[  438.622930][   T29] audit: type=1800 audit(438.611:156): pid=9515 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.739" name="file1" dev="loop1" ino=15 res=0 errno=0
[  438.905535][ T5830] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  439.180966][   T25] usbhid 6-1:0.0: can't add hid device: -71
[  439.187263][   T25] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  439.197710][   T25] usb 6-1: USB disconnect, device number 10
[  439.679296][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  439.688783][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  440.176835][ T9564] loop7: detected capacity change from 0 to 2048
[  440.232378][ T5893] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  440.316674][ T9564] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  440.442443][ T5893] usb 9-1: Using ep0 maxpacket: 16
[  440.459478][ T5893] usb 9-1: too many configurations: 254, using maximum allowed: 8
[  440.542673][ T5893] usb 9-1: New USB device found, idVendor=0c45, idProduct=8003, bcdDevice=83.7a
[  440.584499][ T5893] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=70
[  440.629583][ T5893] usb 9-1: Product: syz
[  441.405584][ T5893] usb 9-1: Manufacturer: syz
[  441.410275][ T5893] usb 9-1: SerialNumber: syz
[  441.423212][ T5893] usb 9-1: config 0 descriptor??
[  441.435933][ T5893] gspca_main: 0c45:8003 too many config
[  441.655017][ T5893] usb 9-1: USB disconnect, device number 3
[  441.804889][ T5894] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  441.843269][ T5894] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  441.850728][ T5894] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  441.909379][ T5894] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  441.932540][ T5894] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  441.971019][ T5894] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  441.994176][ T5894] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  442.054359][ T5894] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  442.088164][ T5894] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  442.137003][ T5894] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  442.181541][ T5894] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  442.342820][ T5894] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  442.350493][ T5894] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  442.358404][ T5894] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  442.366201][ T5894] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  442.375474][ T5894] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  442.383249][ T5894] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  442.391071][ T5894] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  442.413136][ T5894] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  442.420587][ T5894] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  442.454632][ T5894] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  442.500950][ T5894] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  442.522475][ T5894] hid-generic 0000:0000:0000.000A: hidraw0: <UNKNOWN> HID vffffff.fe Device [syz0] on syz1
[  443.244817][ T9579] loop2: detected capacity change from 0 to 32768
[  443.282990][ T9579] btrfs: Deprecated parameter 'usebackuproot'
[  443.289334][ T9579] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  443.362705][ T9579] btrfs: Unknown parameter 'fragment'
[  443.953903][ T9629] Bluetooth: MGMT ver 1.23
[  444.082646][ T5894] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  444.304154][ T5894] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  444.329760][ T5894] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  444.369019][ T5894] usb 8-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[  444.427323][ T5894] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  444.474177][ T5894] usb 8-1: config 0 descriptor??
[  444.855566][ T9656] loop2: detected capacity change from 0 to 512
[  444.868676][ T9656] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found
[  444.876243][ T9656] UDF-fs: Scanning with blocksize 512 failed
[  444.907381][ T9656] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found
[  444.915082][ T9656] UDF-fs: Scanning with blocksize 1024 failed
[  444.942423][ T9656] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found
[  444.952940][ T9656] UDF-fs: Scanning with blocksize 2048 failed
[  444.977334][ T9656] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  445.034709][ T5894] hid-steam 0003:28DE:1142.000B: unknown main item tag 0x2
[  445.047202][ T9656] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  445.100674][   T29] audit: type=1804 audit(445.101:157): pid=9656 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.776" name="/newroot/156/file0/file1" dev="loop2" ino=36 res=1 errno=0
[  445.146082][ T5894] hid-steam 0003:28DE:1142.000B: hidraw0: USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.7-1/input0
[  445.208487][ T9663] loop1: detected capacity change from 0 to 512
[  445.230130][ T9663] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  445.330977][ T9663] EXT4-fs (loop1): 1 truncate cleaned up
[  445.336937][   T92] usb 8-1: USB disconnect, device number 6
[  445.384471][ T9663] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  446.635720][ T5830] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  446.732242][ T5839] Bluetooth: hci5: Controller not accepting commands anymore: ncmd = 0
[  446.741819][ T5839] Bluetooth: hci5: Injecting HCI hardware error event
[  446.753456][ T5839] Bluetooth: hci5: hardware error 0x00
[  447.564539][ T9694] loop5: detected capacity change from 0 to 256
[  447.623768][ T9694] exFAT-fs (loop5): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  447.737548][ T9700] loop6: detected capacity change from 0 to 512
[  447.885045][ T9700] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  447.904633][ T9708] netlink: 12 bytes leftover after parsing attributes in process `syz.8.791'.
[  448.761078][ T9731] loop8: detected capacity change from 0 to 4096
[  448.942468][ T5839] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[  449.006197][ T7332] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  450.342503][ T5928] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  450.368788][ T9759] binder: BINDER_SET_CONTEXT_MGR already set
[  450.404013][ T9759] binder: 9758:9759 ioctl 4018620d 20000040 returned -16
[  450.453871][ T9714] loop1: detected capacity change from 0 to 32768
[  450.501481][ T9714] XFS: attr2 mount option is deprecated.
[  450.510789][ T9714] XFS: ikeep mount option is deprecated.
[  450.518770][ T9714] XFS: noikeep mount option is deprecated.
[  450.540396][ T5928] usb 7-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  450.567444][ T5928] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  450.593189][ T5928] usb 7-1: config 0 descriptor??
[  450.621270][ T5928] gspca_main: STV06xx-2.14.0 probing 046d:0870
[  450.664875][ T9714] XFS (loop1): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  450.927692][ T9714] XFS (loop1): Ending clean mount
[  451.007666][ T9714] XFS (loop1): Quotacheck needed: Please wait.
[  451.340653][ T9714] XFS (loop1): Quotacheck: Done.
[  451.450767][ T5830] XFS (loop1): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  451.501892][ T9753] loop7: detected capacity change from 0 to 40427
[  451.672969][ T9753] F2FS-fs (loop7): invalid crc value
[  451.726154][ T5928] gspca_stv06xx: HDCS-1000/1100 sensor detected
[  451.765392][ T9753] F2FS-fs (loop7): Found nat_bits in checkpoint
[  451.937553][ T9753] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  452.121954][ T9753] syz.7.803: attempt to access beyond end of device
[  452.121954][ T9753] loop7: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  452.219132][ T9795] syz.7.803: attempt to access beyond end of device
[  452.219132][ T9795] loop7: rw=34817, sector=45104, nr_sectors = 8 limit=40427
[  452.296401][ T9753] syz.7.803: attempt to access beyond end of device
[  452.296401][ T9753] loop7: rw=0, sector=45104, nr_sectors = 8 limit=40427
[  452.416148][ T5928] STV06xx 7-1:0.0: probe with driver STV06xx failed with error -71
[  452.444751][ T5928] usb 7-1: USB disconnect, device number 6
[  452.538036][ T7563] syz-executor: attempt to access beyond end of device
[  452.538036][ T7563] loop7: rw=2049, sector=45112, nr_sectors = 8 limit=40427
[  452.602306][ T7563] F2FS-fs (loop7): Stopped filesystem due to reason: 3
[  453.263292][ T5894] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  453.467746][ T9779] loop2: detected capacity change from 0 to 32768
[  453.672451][ T5894] usb 9-1: Using ep0 maxpacket: 32
[  453.679846][ T5894] usb 9-1: config 0 has an invalid interface number: 184 but max is 0
[  453.692233][ T5894] usb 9-1: config 0 has no interface number 0
[  453.698453][ T5894] usb 9-1: config 0 interface 184 has no altsetting 0
[  453.708772][ T5894] usb 9-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  453.718730][ T5894] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  453.737283][ T5894] usb 9-1: Product: syz
[  453.741518][ T5894] usb 9-1: Manufacturer: syz
[  453.752366][ T5894] usb 9-1: SerialNumber: syz
[  453.764715][ T5894] usb 9-1: config 0 descriptor??
[  453.774961][ T5894] smsc75xx v1.0.0
[  453.779156][ T5894] smsc75xx 9-1:0.184 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22
[  453.790470][ T5894] smsc75xx 9-1:0.184: probe with driver smsc75xx failed with error -22
[  454.790680][ T5894] usb 9-1: USB disconnect, device number 4
[  456.411555][ T9779] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fix_errors=no,norecovery,recovery_pass_last=check_extents,nojournal_transaction_names,reconstruct_alloc,no_data_io
[  456.563442][ T9779] bcachefs (loop2): recovering from clean shutdown, journal seq 10
[  456.598822][ T9779] bcachefs (loop2): Version upgrade required:
[  456.598822][ T9779] Version upgrade from 0.8: (unknown version) to 1.7: mi_btree_bitmap incomplete
[  456.598822][ T9779] Doing incompatible version upgrade from 0.8: (unknown version) to 1.20: directory_size
[  456.598822][ T9779]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  456.666690][ T9834] loop1: detected capacity change from 0 to 128
[  456.737916][ T9835] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  456.842683][ T9834] syz.1.819: attempt to access beyond end of device
[  456.842683][ T9834] loop1: rw=2049, sector=145, nr_sectors = 33 limit=128
[  457.062798][ T9779] bcachefs (loop2): dropping and reconstructing all alloc info
[  457.085262][ T9779] bcachefs (loop2): bch2_journal_reclaim_start(): error creating journal reclaim thread EINTR
[  457.109067][ T9779] bcachefs (loop2): bch2_fs_recovery(): error EINTR
[  457.162812][ T9779] bcachefs (loop2): bch2_fs_start(): error starting filesystem EINTR
[  457.197538][ T9839] loop8: detected capacity change from 0 to 2048
[  457.235999][ T9779] bcachefs (loop2): shutting down
[  457.292874][ T9779] bcachefs (loop2): shutdown complete
[  457.304356][ T9839] UDF-fs: error (device loop8): udf_process_sequence: Primary Volume Descriptor not found!
[  457.330114][ T9839] UDF-fs: error (device loop8): udf_read_inode: (ino 1312) failed !bh
[  457.408294][ T9839] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=512, location=512
[  457.479650][ T9839] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256
[  457.552375][ T9839] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=512, location=512
[  457.602371][ T9839] UDF-fs: warning (device loop8): udf_fill_super: No partition found (1)
[  457.772349][ T5890] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  457.780431][ T9845] loop1: detected capacity change from 0 to 8192
[  457.861966][ T9861] usb usb1: usbfs: interface 0 claimed by hub while 'syz.5.825' sets config #5
[  457.862689][ T9845]  loop1: p1 < > p3 < p5 > p4
[  457.879407][ T9845] loop1: partition table partially beyond EOD, truncated
[  457.899430][ T9845] loop1: p1 start 4294967040 is beyond EOD, truncated
[  457.962383][ T5890] usb 8-1: Using ep0 maxpacket: 8
[  457.992676][ T5890] usb 8-1: config 0 has an invalid interface number: 34 but max is 0
[  458.000871][ T5890] usb 8-1: config 0 has no interface number 0
[  458.012559][ T5889] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  458.017823][ T5890] usb 8-1: config 0 interface 34 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  458.051823][ T5890] usb 8-1: config 0 interface 34 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  458.072231][ T5890] usb 8-1: config 0 interface 34 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  458.139401][ T5890] usb 8-1: New USB device found, idVendor=04d8, idProduct=c002, bcdDevice= 0.00
[  458.169640][ T5890] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  458.216080][ T5890] usb 8-1: config 0 descriptor??
[  458.243410][ T5889] usb 9-1: Using ep0 maxpacket: 16
[  458.266169][ T5889] usb 9-1: New USB device found, idVendor=0d49, idProduct=7010, bcdDevice= c.90
[  458.303851][ T5889] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  458.342711][ T5889] usb 9-1: Product: syz
[  458.363624][ T5889] usb 9-1: Manufacturer: syz
[  458.381138][ T5889] usb 9-1: SerialNumber: syz
[  458.404924][ T5889] usb 9-1: config 0 descriptor??
[  458.416867][ T9867] loop6: detected capacity change from 0 to 1024
[  458.643967][ T5889] ums-onetouch 9-1:0.0: USB Mass Storage device detected
[  458.660956][ T5890] hid-picolcd 0003:04D8:C002.000C: report_id 0 is invalid
[  458.712321][ T5890] hid-picolcd 0003:04D8:C002.000C: item 0 2 1 8 parsing failed
[  458.733752][ T5890] hid-picolcd 0003:04D8:C002.000C: device report parse failed
[  458.753198][ T5890] hid-picolcd 0003:04D8:C002.000C: probe with driver hid-picolcd failed with error -22
[  458.804180][ T5889] usb 9-1: USB disconnect, device number 5
[  458.888202][ T5893] usb 8-1: USB disconnect, device number 7
[  459.183383][ T8821] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  460.073585][ T9885] loop8: detected capacity change from 0 to 512
[  460.083202][ T8821] usb 6-1: Using ep0 maxpacket: 8
[  460.151801][ T9885] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  460.266456][ T8821] usb 6-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a
[  460.288717][ T8821] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  460.299904][ T9885] EXT4-fs (loop8): 1 truncate cleaned up
[  460.353532][ T9885] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  460.362367][ T8821] usb 6-1: Product: syz
[  460.377557][ T8821] usb 6-1: Manufacturer: syz
[  460.416494][ T8821] usb 6-1: SerialNumber: syz
[  460.436629][ T9891] netlink: 'syz.1.833': attribute type 7 has an invalid length.
[  460.455815][ T9891] netlink: 8 bytes leftover after parsing attributes in process `syz.1.833'.
[  460.466373][ T8821] usb 6-1: config 0 descriptor??
[  460.477743][ T9895] loop7: detected capacity change from 0 to 1024
[  460.487547][ T8821] gspca_main: sq930x-2.14.0 probing 2770:930c
[  460.524501][ T9895] EXT4-fs: Ignoring removed nobh option
[  460.530123][ T9895] EXT4-fs: Ignoring removed bh option
[  460.532503][ T9896] wireguard0: entered promiscuous mode
[  460.541938][ T9896] wireguard0: entered allmulticast mode
[  460.679268][ T9895] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  460.772386][   T29] audit: type=1326 audit(460.751:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9877 comm="syz.5.829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecff385d29 code=0x7ffc0000
[  460.801926][ T9779] bcachefs: bch2_fs_get_tree() error: EINTR
[  460.968305][ T8821] gspca_sq930x: reg_r 001f failed -71
[  460.968701][   T29] audit: type=1326 audit(460.751:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9877 comm="syz.5.829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecff385d29 code=0x7ffc0000
[  460.974462][ T8821] sq930x 6-1:0.0: probe with driver sq930x failed with error -71
[  461.006633][ T8821] usb 6-1: USB disconnect, device number 11
[  461.422287][   T29] audit: type=1804 audit(461.131:160): pid=9905 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.834" name="/newroot/72/file1/file1" dev="loop7" ino=15 res=1 errno=0
[  461.678063][ T8802] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  461.747588][ T9909] syzkaller0: entered allmulticast mode
[  461.856666][ T7563] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  464.882327][ T9955] loop2: detected capacity change from 0 to 8
[  465.626116][ T9955] SQUASHFS error: zlib decompression failed, data probably corrupt
[  465.634220][ T9955] SQUASHFS error: Failed to read block 0x9b: -5
[  465.640675][ T9955] SQUASHFS error: Unable to read metadata cache entry [99]
[  465.648575][ T9955] SQUASHFS error: Unable to read inode 0x127
[  466.114356][ T9961] loop7: detected capacity change from 0 to 16
[  466.170725][ T9961] erofs (device loop7): mounted with root inode @ nid 36.
[  469.205673][T10007] netlink: 'syz.1.859': attribute type 3 has an invalid length.
[  469.213799][T10007] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.859'.
[  469.970975][T10026] random: crng reseeded on system resumption
[  470.077668][   T29] audit: type=1326 audit(470.091:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10029 comm="syz.1.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86dad85d29 code=0x7ffc0000
[  470.157158][T10028] loop6: detected capacity change from 0 to 4096
[  470.222703][   T29] audit: type=1326 audit(470.091:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10029 comm="syz.1.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86dad85d29 code=0x7ffc0000
[  470.247670][T10028] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512).
[  470.259180][   T29] audit: type=1326 audit(470.091:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10029 comm="syz.1.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f86dad85d29 code=0x7ffc0000
[  470.283140][   T29] audit: type=1326 audit(470.091:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10029 comm="syz.1.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86dad85d29 code=0x7ffc0000
[  470.333966][   T29] audit: type=1326 audit(470.091:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10029 comm="syz.1.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f86dad85d29 code=0x7ffc0000
[  470.392067][   T29] audit: type=1326 audit(470.091:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10029 comm="syz.1.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86dad85d29 code=0x7ffc0000
[  470.457433][T10028] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  470.498205][T10028] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  470.532829][T10036] fuse: blksize only supported for fuseblk
[  470.546078][   T29] audit: type=1326 audit(470.121:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10029 comm="syz.1.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f86dad85d29 code=0x7ffc0000
[  470.715166][   T29] audit: type=1326 audit(470.121:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10029 comm="syz.1.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86dad85d29 code=0x7ffc0000
[  470.839142][   T29] audit: type=1326 audit(470.121:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10029 comm="syz.1.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7f86dad85d29 code=0x7ffc0000
[  471.532679][   T29] audit: type=1326 audit(470.141:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10029 comm="syz.1.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86dad85d29 code=0x7ffc0000
[  473.297725][T10056] netlink: 4 bytes leftover after parsing attributes in process `syz.8.867'.
[  473.469863][T10061] netlink: 12 bytes leftover after parsing attributes in process `syz.5.871'.
[  474.179958][T10061] 8021q: adding VLAN 0 to HW filter on device bond1
[  474.412322][ T5890] usb 7-1: new full-speed USB device number 7 using dummy_hcd
[  474.599346][ T5890] usb 7-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  474.643675][ T5890] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  474.688049][ T5890] usb 7-1: config 0 descriptor??
[  476.865282][T10114] nbd8: detected capacity change from 0 to 12
[  476.950261][ T6220] block nbd8: Send control failed (result -89)
[  476.975641][ T6220] block nbd8: Request send failed, requeueing
[  477.004602][ T5839] block nbd8: Receive control failed (result -32)
[  477.098766][ T1064] block nbd8: Dead connection, failed to find a fallback
[  477.106815][ T1064] block nbd8: shutting down sockets
[  477.113600][ T1064] I/O error, dev nbd8, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  477.125786][ T1064] Buffer I/O error on dev nbd8, logical block 0, async page read
[  477.142393][ T6220] I/O error, dev nbd8, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  477.259451][ T6220] Buffer I/O error on dev nbd8, logical block 0, async page read
[  477.310476][ T6220] I/O error, dev nbd8, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  477.343287][ T5890] asix 7-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x8001: -71
[  477.358926][ T6220] Buffer I/O error on dev nbd8, logical block 0, async page read
[  477.391140][ T5890] asix 7-1:0.0: probe with driver asix failed with error -71
[  477.401034][ T6220] I/O error, dev nbd8, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  477.420699][ T6220] Buffer I/O error on dev nbd8, logical block 0, async page read
[  477.440872][ T6220] I/O error, dev nbd8, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  477.460897][ T6220] Buffer I/O error on dev nbd8, logical block 0, async page read
[  477.498727][ T6220] I/O error, dev nbd8, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  477.540901][ T6220] Buffer I/O error on dev nbd8, logical block 0, async page read
[  477.570542][ T6220] I/O error, dev nbd8, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  477.616984][ T6220] Buffer I/O error on dev nbd8, logical block 0, async page read
[  477.652033][ T6220] I/O error, dev nbd8, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  477.695340][ T5890] usb 7-1: USB disconnect, device number 7
[  478.407459][ T6220] Buffer I/O error on dev nbd8, logical block 0, async page read
[  478.422382][ T6220] ldm_validate_partition_table(): Disk read failed.
[  478.429278][ T6220] I/O error, dev nbd8, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  478.481451][ T6220] Buffer I/O error on dev nbd8, logical block 0, async page read
[  478.541088][ T6220] I/O error, dev nbd8, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  478.635888][ T6220] Buffer I/O error on dev nbd8, logical block 0, async page read
[  478.752623][ T6220] Dev nbd8: unable to read RDB block 0
[  478.758703][ T6220]  nbd8: unable to read partition table
[  478.806528][ T6220] nbd8: partition table beyond EOD, truncated
[  478.830474][ T6220] ldm_validate_partition_table(): Disk read failed.
[  478.871694][ T6220] Dev nbd8: unable to read RDB block 0
[  478.901611][ T6220]  nbd8: unable to read partition table
[  478.919033][T10135] loop1: detected capacity change from 0 to 256
[  478.971245][T10135] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  478.988621][ T6220] nbd8: partition table beyond EOD, truncated
[  479.101828][T10137] loop6: detected capacity change from 0 to 2048
[  479.597756][T10137] UDF-fs: error (device loop6): udf_process_sequence: Primary Volume Descriptor not found!
[  479.661576][T10137] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  481.652559][ T5839] Bluetooth: hci3: unexpected event 0x2f length: 763 > 260
[  482.236644][T10149] loop8: detected capacity change from 0 to 8192
[  486.412781][T10210] loop8: detected capacity change from 0 to 1024
[  486.423080][T10210] EXT4-fs: Ignoring removed nobh option
[  486.428726][T10210] EXT4-fs: Ignoring removed bh option
[  486.502429][T10210] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  486.741896][T10212] delete_channel: no stack
[  487.139088][   T29] kauditd_printk_skb: 8 callbacks suppressed
[  487.139143][   T29] audit: type=1804 audit(486.871:179): pid=10218 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.8.899" name="/newroot/29/file1/file1" dev="loop8" ino=15 res=1 errno=0
[  487.575658][ T8802] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  489.596500][T10247] binder: 10246:10247 ioctl c0306201 20000bc0 returned -14
[  491.466497][T10272] loop6: detected capacity change from 0 to 1024
[  491.474540][T10272] EXT4-fs: Ignoring removed bh option
[  491.514814][T10272] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  491.818113][T10280] loop8: detected capacity change from 0 to 1024
[  491.871212][T10278] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2240: inode #15: comm syz.6.912: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  491.995300][T10280] EXT4-fs: Ignoring removed nobh option
[  492.092743][T10280] EXT4-fs: Ignoring removed bh option
[  492.416628][T10280] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  492.796674][   T29] audit: type=1804 audit(492.801:180): pid=10293 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.8.913" name="/newroot/34/file1/file1" dev="loop8" ino=15 res=1 errno=0
[  492.969627][T10290] pim6reg1: entered promiscuous mode
[  493.325992][T10290] pim6reg1: entered allmulticast mode
[  493.367481][ T8802] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  493.421174][ T7332] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  500.839045][T10331] loop6: detected capacity change from 0 to 256
[  500.849028][T10338] netlink: 12 bytes leftover after parsing attributes in process `syz.2.926'.
[  500.885103][T10331] exfat: Unknown parameter '000000000000377777777770x00000000ffffffff'
[  500.954932][T10340] netlink: 8 bytes leftover after parsing attributes in process `syz.2.926'.
[  501.133928][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  501.140374][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  501.222831][T10340] 8021q: adding VLAN 0 to HW filter on device batadv1
[  501.225095][T10344] loop5: detected capacity change from 0 to 1024
[  501.231675][T10340] bond1: (slave batadv1): Enslaving as an active interface with an up link
[  501.332518][T10344] EXT4-fs: Ignoring removed nobh option
[  501.338176][T10344] EXT4-fs: Ignoring removed bh option
[  501.373715][T10341] bond1 (unregistering): (slave batadv1): Releasing backup interface
[  502.389519][T10344] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  502.407475][T10341] bond1 (unregistering): Released all slaves
[  503.485639][T10349] loop8: detected capacity change from 0 to 4096
[  503.498755][   T29] audit: type=1804 audit(503.341:181): pid=10369 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.929" name="/newroot/192/file1/file1" dev="loop5" ino=15 res=1 errno=0
[  504.008470][ T5836] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  504.178927][ T5845] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  504.201835][ T5845] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  504.211618][ T5845] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  504.235511][ T5845] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  504.280465][ T5845] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  504.294283][ T5845] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  505.015453][T10379] bond_slave_0: entered promiscuous mode
[  505.021918][T10379] bond_slave_1: entered promiscuous mode
[  505.056694][T10379] macsec1: entered promiscuous mode
[  505.078403][T10379] bond0: entered promiscuous mode
[  505.121862][T10379] macsec1: entered allmulticast mode
[  505.137217][T10379] bond0: entered allmulticast mode
[  505.163790][T10379] bond_slave_0: entered allmulticast mode
[  505.199327][T10379] bond_slave_1: entered allmulticast mode
[  505.303501][T10379] bond0: left allmulticast mode
[  505.308533][T10379] bond_slave_0: left allmulticast mode
[  505.462400][T10379] bond_slave_1: left allmulticast mode
[  505.490671][T10385] loop6: detected capacity change from 0 to 1024
[  505.498027][T10385] EXT4-fs: Ignoring removed bh option
[  505.516139][T10379] bond0: left promiscuous mode
[  506.438402][T10379] bond_slave_0: left promiscuous mode
[  506.444128][T10379] bond_slave_1: left promiscuous mode
[  506.453193][T10385] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  506.469068][ T5839] Bluetooth: hci6: command tx timeout
[  506.655482][T10391] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2240: inode #15: comm syz.6.936: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  506.705423][T10392] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2240: inode #15: comm syz.6.936: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  507.680067][T10385] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2240: inode #15: comm syz.6.936: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  507.841501][ T7332] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  507.879391][T10407] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  508.542356][ T5839] Bluetooth: hci6: command tx timeout
[  510.615085][T10426] loop1: detected capacity change from 0 to 64
[  510.633348][ T5839] Bluetooth: hci6: command tx timeout
[  510.663429][T10418] loop2: detected capacity change from 0 to 2048
[  510.690872][T10418] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  510.985874][T10432] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  512.702339][ T5839] Bluetooth: hci6: command tx timeout
[  513.482244][T10445] Bluetooth: hci1: Opcode 0x080f failed: -4
[  513.489443][T10446] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  514.299176][T10374] chnl_net:caif_netlink_parms(): no params data found
[  515.554935][T10453] 9pnet: bogus RWRITE count (512 > 32)
[  516.142527][ T5839] Bluetooth: hci1: command 0x0406 tx timeout
[  516.772424][T10374] bridge0: port 1(bridge_slave_0) entered blocking state
[  516.779623][T10374] bridge0: port 1(bridge_slave_0) entered disabled state
[  516.868927][T10473] netlink: 44 bytes leftover after parsing attributes in process `syz.5.956'.
[  517.732606][T10374] bridge_slave_0: entered allmulticast mode
[  517.753755][T10374] bridge_slave_0: entered promiscuous mode
[  518.349302][T10374] bridge0: port 2(bridge_slave_1) entered blocking state
[  518.392322][T10374] bridge0: port 2(bridge_slave_1) entered disabled state
[  518.431969][T10374] bridge_slave_1: entered allmulticast mode
[  518.695247][T10374] bridge_slave_1: entered promiscuous mode
[  521.455218][T10374] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  521.507650][T10374] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  521.653031][T10502] loop1: detected capacity change from 0 to 16
[  521.672893][T10502] erofs (device loop1): mounted with root inode @ nid 36.
[  522.320727][T10507] process 'syz.1.965' launched './file1' with NULL argv: empty string added
[  524.330800][ T5889] hid (null): unknown global tag 0xd
[  524.702421][T10374] team0: Port device team_slave_0 added
[  524.704234][ T5889] hid-generic 0000:0000:0004.000D: unknown main item tag 0x0
[  524.764086][ T5889] hid-generic 0000:0000:0004.000D: unknown main item tag 0x0
[  524.789056][ T5889] hid-generic 0000:0000:0004.000D: unknown main item tag 0x7
[  524.994036][ T5889] hid-generic 0000:0000:0004.000D: unknown global tag 0xd
[  525.904241][ T5889] hid-generic 0000:0000:0004.000D: item 0 0 1 13 parsing failed
[  526.008443][ T5889] hid-generic 0000:0000:0004.000D: probe with driver hid-generic failed with error -22
[  526.083058][T10374] team0: Port device team_slave_1 added
[  526.253578][T10526] loop1: detected capacity change from 0 to 2048
[  526.282583][T10526] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  526.330205][T10527] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  526.407452][T10529] netlink: 12 bytes leftover after parsing attributes in process `syz.5.972'.
[  528.692731][T10374] batman_adv: batadv0: Adding interface: batadv_slave_0
[  529.554937][T10374] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  529.587082][T10540] loop8: detected capacity change from 0 to 256
[  529.600213][T10374] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  529.652870][T10374] batman_adv: batadv0: Adding interface: batadv_slave_1
[  529.659879][T10374] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  529.840078][T10374] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  530.162702][T10546] netlink: 40 bytes leftover after parsing attributes in process `syz.6.975'.
[  531.722767][T10374] hsr_slave_0: entered promiscuous mode
[  532.559152][T10374] hsr_slave_1: entered promiscuous mode
[  532.596371][T10374] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  532.802424][T10374] Cannot create hsr debugfs directory
[  532.830719][T10558] loop2: detected capacity change from 0 to 764
[  532.845052][T10558] rock: directory entry would overflow storage
[  533.051767][T10561] syz.1.977: attempt to access beyond end of device
[  533.051767][T10561] loop1: rw=2048, sector=2, nr_sectors = 1 limit=0
[  533.065146][T10561] hfsplus: unable to find HFS+ superblock
[  533.500245][T10558] rock: sig=0x4654, size=5, remaining=4
[  533.627963][T10554] loop6: detected capacity change from 0 to 4096
[  533.636399][T10554] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512).
[  535.563415][T10576] fuse: Bad value for 'fd'
[  538.677839][T10374] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  538.789983][T10374] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  538.849307][T10374] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  539.140633][T10374] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  540.032822][   T29] audit: type=1326 audit(539.521:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10599 comm="syz.2.990" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9655785d29 code=0x7ffc0000
[  540.243704][   T29] audit: type=1326 audit(539.521:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10599 comm="syz.2.990" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9655785d29 code=0x7ffc0000
[  540.576950][T10374] 8021q: adding VLAN 0 to HW filter on device bond0
[  541.308508][T10614] ip6tnl2: entered promiscuous mode
[  541.314028][T10614] ip6tnl2: entered allmulticast mode
[  541.409396][T10613] netlink: 68 bytes leftover after parsing attributes in process `syz.1.992'.
[  541.429543][T10374] 8021q: adding VLAN 0 to HW filter on device team0
[  541.643559][ T7013] bridge0: port 1(bridge_slave_0) entered blocking state
[  541.651072][ T7013] bridge0: port 1(bridge_slave_0) entered forwarding state
[  542.080622][T10615] loop1: detected capacity change from 0 to 1024
[  542.235162][ T7013] bridge0: port 2(bridge_slave_1) entered blocking state
[  542.242665][ T7013] bridge0: port 2(bridge_slave_1) entered forwarding state
[  542.360996][T10620] loop2: detected capacity change from 0 to 1024
[  542.423297][T10620] EXT4-fs: Ignoring removed nobh option
[  542.429028][T10620] EXT4-fs: Ignoring removed bh option
[  542.567677][T10620] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  542.934196][ T7013] hfsplus: b-tree write err: -5, ino 4
[  543.014248][T10629] netlink: 'syz.6.995': attribute type 1 has an invalid length.
[  543.103072][T10629] loop6: detected capacity change from 0 to 512
[  543.868306][T10629] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  543.976783][T10633] loop5: detected capacity change from 0 to 256
[  544.146451][   T29] audit: type=1804 audit(544.101:184): pid=10620 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.993" name="/newroot/191/file1/file1" dev="loop2" ino=15 res=1 errno=0
[  544.592304][ T7332] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  544.659198][ T5825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  544.866551][ T5839] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  545.786664][T10374] 8021q: adding VLAN 0 to HW filter on device batadv0
[  546.010051][T10655] loop8: detected capacity change from 0 to 2048
[  546.871454][T10652] loop2: detected capacity change from 0 to 4096
[  547.638546][T10665] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  550.458429][T10680] loop5: detected capacity change from 0 to 256
[  550.467200][T10680] vfat: Bad value for 'nonumtail'
[  550.856314][T10374] veth0_vlan: entered promiscuous mode
[  551.864742][T10665] NILFS (loop8): vblocknr = 18 has abnormal lifetime: start cno (= 504403158265495554) > current cno (= 3)
[  552.919181][T10374] veth1_vlan: entered promiscuous mode
[  553.184778][T10665] NILFS error (device loop8): nilfs_bmap_propagate: broken bmap (inode number=2)
[  553.694068][T10665] Remounting filesystem read-only
[  553.742812][ T8802] NILFS (loop8): disposed unprocessed dirty file(s) when stopping log writer
[  553.784083][T10698] loop2: detected capacity change from 0 to 4096
[  553.851579][T10374] veth0_macvtap: entered promiscuous mode
[  553.901291][T10374] veth1_macvtap: entered promiscuous mode
[  553.905947][T10700] loop5: detected capacity change from 0 to 1024
[  554.138725][T10700] EXT4-fs: Ignoring removed nobh option
[  554.146777][T10700] EXT4-fs: Ignoring removed bh option
[  554.202902][T10703] loop6: detected capacity change from 0 to 512
[  554.223377][T10700] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  554.223431][T10374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  554.311857][T10703] EXT4-fs (loop6): filesystem is read-only
[  554.916903][T10374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  555.047603][T10374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  555.239820][   T29] audit: type=1800 audit(555.251:185): pid=10715 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1011" name="file1" dev="loop2" ino=30 res=0 errno=0
[  555.657777][T10703] bpf: Bad value for 'mode'
[  555.687161][T10374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  555.851923][T10374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  555.927218][T10374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  555.968118][T10374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  556.032252][T10374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  556.067156][T10374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  556.114685][T10374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  556.206572][T10374] batman_adv: batadv0: Interface activated: batadv_slave_0
[  556.575562][T10374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  556.652388][T10374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  556.692330][T10374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  556.905944][T10374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  557.822341][T10374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  557.872265][T10374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  557.913773][T10374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  557.960831][T10374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  557.991724][T10374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  558.020345][T10374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  558.256922][T10374] batman_adv: batadv0: Interface activated: batadv_slave_1
[  559.291820][ T5836] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  562.352568][T10758] openvswitch: netlink: Unexpected mask (mask=440, allowed=10048)
[  563.029408][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  563.298484][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  566.842504][T10779] hub 2-0:1.0: USB hub found
[  566.852521][T10779] hub 2-0:1.0: 1 port detected
[  567.564316][T10773] netlink: 76 bytes leftover after parsing attributes in process `syz.6.1025'.
[  568.263358][ T5845] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  568.282824][ T5845] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  568.296250][ T5845] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  568.315916][T10784] loop6: detected capacity change from 0 to 8
[  568.326774][ T5845] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  568.344598][ T5845] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  568.353190][ T5845] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  569.646261][T10797] tipc: Started in network mode
[  569.651372][T10797] tipc: Node identity aaaaaaaaaa3, cluster identity 4711
[  569.658999][T10797] tipc: Enabled bearer <eth:ipvlan1>, priority 10
[  570.456702][T10799] loop1: detected capacity change from 0 to 16
[  570.463125][ T5845] Bluetooth: hci7: command tx timeout
[  570.532513][T10799] erofs (device loop1): mounted with root inode @ nid 36.
[  570.575480][T10801] loop6: detected capacity change from 0 to 1024
[  570.763206][T10801] EXT4-fs: Ignoring removed nobh option
[  570.768849][T10801] EXT4-fs: Ignoring removed bh option
[  570.823424][ T5894] tipc: Node number set to 10136234
[  570.851095][T10799] syz.1.1034: attempt to access beyond end of device
[  570.851095][T10799] loop1: rw=0, sector=8, nr_sectors = 16 limit=16
[  571.021797][T10799] erofs (device loop1): read error -5 @ 8200 of nid 36
[  572.046648][T10801] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  572.219396][T10809] syz.1.1034 (10809): drop_caches: 2
[  572.612499][ T5845] Bluetooth: hci7: command tx timeout
[  573.512230][T10821] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  574.641968][ T5845] Bluetooth: hci7: command tx timeout
[  575.197310][ T7332] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  575.429719][T10835] loop2: detected capacity change from 0 to 512
[  575.491987][T10835] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  576.026278][T10835] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  576.268384][T10846] loop1: detected capacity change from 0 to 512
[  576.870552][ T5845] Bluetooth: hci7: command tx timeout
[  578.237300][T10846] EXT4-fs (loop1): Test dummy encryption mode enabled
[  578.282381][T10846] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #12: comm syz.1.1045: corrupted in-inode xattr: invalid ea_ino
[  578.443575][T10846] EXT4-fs (loop1): Remounting filesystem read-only
[  578.457828][T10780] chnl_net:caif_netlink_parms(): no params data found
[  578.476821][T10846] EXT4-fs (loop1): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  579.231777][T10868] hub 9-0:1.0: USB hub found
[  579.237519][T10868] hub 9-0:1.0: 1 port detected
[  579.254906][T10868] ptrace attach of "./syz-executor exec"[7332] was attempted by "./syz-executor exec"[10868]
[  579.493627][ T5825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  581.005061][T10780] bridge0: port 1(bridge_slave_0) entered blocking state
[  581.527094][T10780] bridge0: port 1(bridge_slave_0) entered disabled state
[  581.562265][T10780] bridge_slave_0: entered allmulticast mode
[  581.607104][T10780] bridge_slave_0: entered promiscuous mode
[  584.499908][T10780] bridge0: port 2(bridge_slave_1) entered blocking state
[  584.798470][T10780] bridge0: port 2(bridge_slave_1) entered disabled state
[  584.810728][T10780] bridge_slave_1: entered allmulticast mode
[  584.819536][T10780] bridge_slave_1: entered promiscuous mode
[  584.848304][ T5830] EXT4-fs (loop1): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  585.647923][T10780] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  587.526119][T10780] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  588.570291][ T6976] bridge_slave_1: left allmulticast mode
[  588.615041][T10402] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  588.636990][ T6976] bridge_slave_1: left promiscuous mode
[  588.663433][T10402] hid-generic 0000:0000:0000.000E: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  588.692460][ T6976] bridge0: port 2(bridge_slave_1) entered disabled state
[  588.804014][ T6976] bridge_slave_0: left allmulticast mode
[  588.814953][ T6976] bridge_slave_0: left promiscuous mode
[  588.838214][ T6976] bridge0: port 1(bridge_slave_0) entered disabled state
[  588.882543][ T5919] usb 2-1: new full-speed USB device number 2 using dummy_hcd
[  589.946572][    C1] raw-gadget.0 gadget.1: ignoring, device is not running
[  589.948819][T10917] tmpfs: Unknown parameter '01777777777777777777777'
[  592.181186][T10936] tmpfs: Unknown parameter '01777777777777777777777'
[  592.930874][T10941] tmpfs: Unknown parameter '01777777777777777777777'
[  595.455592][T10955] tmpfs: Unknown parameter '01777777777777777777777'
[  597.186745][T10967] loop2: detected capacity change from 0 to 1024
[  597.219545][ T5845] Bluetooth: hci1: unknown advertising packet type: 0xaa
[  597.219642][ T5845] Bluetooth: hci1: unknown advertising packet type: 0xac
[  597.228446][ T5845] Bluetooth: hci1: Dropping invalid advertising data
[  597.242896][ T5845] Bluetooth: hci1: Malformed LE Event: 0x02
[  598.415472][T10967] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  599.162301][   T29] audit: type=1800 audit(599.151:186): pid=10963 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1074" name="file1" dev="loop2" ino=15 res=0 errno=0
[  599.555051][ T5825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  600.198205][ T5894] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  600.442798][ T5889] usb 7-1: new full-speed USB device number 8 using dummy_hcd
[  600.582508][ T5889] usb 7-1: device descriptor read/64, error -71
[  600.832675][ T5889] usb 7-1: new full-speed USB device number 9 using dummy_hcd
[  600.991999][ T5889] usb 7-1: device descriptor read/64, error -71
[  601.586454][T10984] tmpfs: Unknown parameter '01777777777777777777777'
[  601.700661][ T5889] usb usb7-port1: attempt power cycle
[  602.338486][ T5894] hid-generic 0000:0000:0000.000F: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  602.732163][ T5889] usb 7-1: new full-speed USB device number 10 using dummy_hcd
[  602.994643][ T5889] usb 7-1: device descriptor read/8, error -71
[  604.542259][T11001] tmpfs: Unknown parameter '01777777777777777777777'
[  605.432103][T11007] tmpfs: Unknown parameter '01777777777777777777777'
[  609.365419][ T6976] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  609.499526][ T6976] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  609.678132][ T6976] bond0 (unregistering): Released all slaves
[  611.161461][T10780] team0: Port device team_slave_0 added
[  611.246897][T10780] team0: Port device team_slave_1 added
[  611.506558][T11052] tmpfs: Unknown parameter '01777777777777777777777'
[  613.374889][ T6976] hsr_slave_0: left promiscuous mode
[  613.402194][T11058] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1098'.
[  613.458985][ T6976] hsr_slave_1: left promiscuous mode
[  613.542262][T11061] tmpfs: Unknown parameter '01777777777777777777777'
[  613.573131][ T6976] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  613.581724][ T6976] batman_adv: batadv0: Removing interface: batadv_slave_0
[  613.910142][ T6976] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  614.223358][ T6976] batman_adv: batadv0: Removing interface: batadv_slave_1
[  614.452299][T11069] tmpfs: Unknown parameter '01777777777777777777777'
[  614.470282][ T6976] veth1_macvtap: left promiscuous mode
[  614.502238][ T6976] veth0_macvtap: left promiscuous mode
[  614.530631][ T6976] veth1_vlan: left promiscuous mode
[  614.564633][ T6976] veth0_vlan: left promiscuous mode
[  615.967024][T11078] tmpfs: Unknown parameter '01777777777777777777777'
[  616.763277][T11082] tmpfs: Unknown parameter '01777777777777777777777'
[  617.792584][T11088] tmpfs: Unknown parameter '01777777777777777777777'
[  620.446373][T11105] tmpfs: Unknown parameter '01777777777777777777777'
[  622.272948][T11118] tmpfs: Unknown parameter '01777777777777777777777'
[  623.995593][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  624.006200][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  624.014517][ T5839] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  624.033735][ T5839] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  624.056027][ T5839] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  624.065127][ T5839] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  624.073231][ T5839] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  624.080787][ T5839] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  624.143523][T11128] netlink: 68 bytes leftover after parsing attributes in process `syz.6.1115'.
[  624.317814][T11129] loop6: detected capacity change from 0 to 1024
[  625.594215][T11142] block device autoloading is deprecated and will be removed.
[  625.672514][T11129] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  626.146588][ T5839] Bluetooth: hci6: command tx timeout
[  626.771936][T11128] sctp: failed to load transform for md5: -2
[  626.799381][T11153] tmpfs: Unknown parameter '01777777777777777777777'
[  627.447138][T11159] tmpfs: Unknown parameter '01777777777777777777777'
[  627.537572][T11143] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  627.793770][T11163] tmpfs: Unknown parameter '01777777777777777777777'
[  628.222304][ T5839] Bluetooth: hci6: command tx timeout
[  629.784147][ T7332] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  630.303681][ T5839] Bluetooth: hci6: command tx timeout
[  632.518315][ T5839] Bluetooth: hci6: command tx timeout
[  634.446662][ T6976] team0 (unregistering): Port device team_slave_1 removed
[  634.744441][T11220] loop5: detected capacity change from 0 to 64
[  635.983275][ T6976] team0 (unregistering): Port device team_slave_0 removed
[  636.954429][ T5845] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  636.981974][ T5845] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  636.991513][ T5845] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  637.373384][ T5845] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  637.392318][ T5845] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[  637.412213][ T5845] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  640.753780][ T5845] Bluetooth: hci8: command tx timeout
[  641.044881][T11248] loop5: detected capacity change from 0 to 8
[  643.111273][ T5839] Bluetooth: hci8: command tx timeout
[  643.381092][T11260] SQUASHFS error: xz decompression failed, data probably corrupt
[  643.389724][T11260] SQUASHFS error: Failed to read block 0xa8: -5
[  643.446061][T11260] SQUASHFS error: xz decompression failed, data probably corrupt
[  643.454852][T11260] SQUASHFS error: Failed to read block 0xa8: -5
[  644.054133][   T30] INFO: task kworker/u8:13:6250 blocked for more than 143 seconds.
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  644.118608][   T29] audit: type=1800 audit(643.481:187): pid=11260 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1141" name="file0" dev="loop5" ino=3 res=0 errno=0
[  644.148809][   T30]       Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[  644.307976][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  644.822969][   T30] task:kworker/u8:13   state:D stack:20752 pid:6250  tgid:6250  ppid:2      flags:0x00004000
[  644.933553][   T30] Workqueue: events_unbound netfs_write_collection_worker
[  644.940765][   T30] Call Trace:
[  644.973915][   T30]  <TASK>
[  644.977004][   T30]  __schedule+0x1850/0x4c30
[  644.981576][   T30]  ? __pfx___schedule+0x10/0x10
[  645.008454][   T30]  ? __pfx_lock_release+0x10/0x10
[  645.014044][   T30]  ? schedule+0x90/0x320
[  645.018342][   T30]  ? wq_worker_sleeping+0x66/0x240
[  645.032591][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  645.038351][   T30]  ? schedule+0x90/0x320
[  645.044678][   T30]  schedule+0x14b/0x320
[  645.049898][   T30]  bit_wait+0x12/0xd0
[  645.063051][   T30]  __wait_on_bit+0xb2/0x2f0
[  645.067642][   T30]  ? __pfx_bit_wait+0x10/0x10
[  645.082585][   T30]  out_of_line_wait_on_bit+0x1d5/0x260
[  645.088133][   T30]  ? __pfx_bit_wait+0x10/0x10
[  645.102638][   T30]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  645.108725][   T30]  ? __pfx_wake_bit_function+0x10/0x10
[  645.132213][   T30]  netfs_retry_writes+0x16e/0x19b0
[  645.137420][   T30]  ? __pfx_validate_chain+0x10/0x10
[  645.151107][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  645.177805][   T30]  ? stack_trace_save+0x118/0x1d0
[  645.183037][ T5839] Bluetooth: hci8: command tx timeout
[  645.192479][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  645.198315][   T30]  ? __pfx_netfs_retry_writes+0x10/0x10
[  645.222184][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  645.227891][   T30]  ? lockdep_unlock+0x16a/0x300
[  645.263602][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  645.269310][   T30]  netfs_write_collection_worker+0x2f90/0x3bb0
[  645.302205][   T30]  ? process_scheduled_works+0x976/0x1840
[  645.308020][   T30]  process_scheduled_works+0xa68/0x1840
[  645.332375][   T30]  ? __pfx_process_scheduled_works+0x10/0x10
[  645.338452][   T30]  ? assign_work+0x364/0x3d0
[  645.351782][   T30]  worker_thread+0x870/0xd30
[  645.357767][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  645.363887][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  645.369547][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  645.375956][   T30]  ? __kthread_parkme+0x169/0x1d0
[  645.381024][   T30]  ? __pfx_worker_thread+0x10/0x10
[  645.387294][   T30]  kthread+0x2f2/0x390
[  645.391417][   T30]  ? __pfx_worker_thread+0x10/0x10
[  645.409173][   T30]  ? __pfx_kthread+0x10/0x10
[  645.417554][   T30]  ret_from_fork+0x4d/0x80
[  645.422003][   T30]  ? __pfx_kthread+0x10/0x10
[  645.427168][   T30]  ret_from_fork_asm+0x1a/0x30
[  645.432003][   T30]  </TASK>
[  645.452287][   T30] 
[  645.452287][   T30] Showing all locks held in the system:
[  645.460461][   T30] 3 locks held by kworker/u8:0/11:
[  645.495017][   T30]  #0: ffff88814caf9948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  645.560691][   T30]  #1: ffffc90000107d00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  645.610848][   T30]  #2: ffffffff8fcc0188 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_verify_work+0x19/0x30
[  645.631670][   T30] 3 locks held by kworker/1:0/25:
[  645.642917][   T30]  #0: ffff88801ac78948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  645.665968][   T30]  #1: ffffc900001f7d00 (free_ipc_work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  645.682615][   T30]  #2: ffffffff8e93d2b8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x451/0x830
[  645.704432][   T30] 1 lock held by khungtaskd/30:
[  645.710142][   T30]  #0: ffffffff8e937da0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x55/0x2a0
[  645.729893][   T30] 3 locks held by kworker/u8:5/1311:
[  645.762192][   T30]  #0: ffff88801ac81148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  645.802600][   T30]  #1: ffffc900046ffd00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  645.823671][   T30]  #2: ffffffff8fcc0188 (rtnl_mutex){+.+.}-{4:4}, at: linkwatch_event+0xe/0x60
[  645.842295][   T30] 2 locks held by dhcpcd/5491:
[  645.847132][   T30]  #0: ffffffff8fca5848 (vlan_ioctl_mutex){+.+.}-{4:4}, at: sock_ioctl+0x661/0x8e0
[  645.875893][   T30]  #1: ffffffff8fcc0188 (rtnl_mutex){+.+.}-{4:4}, at: vlan_ioctl_handler+0x112/0x9d0
[  645.902128][   T30] 2 locks held by getty/5584:
[  645.906863][   T30]  #0: ffff88814cde60a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  645.921496][   T30]  #1: ffffc90002fde2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x6a6/0x1e00
[  645.931921][   T30] 2 locks held by syz-executor/5825:
[  645.941595][   T30]  #0: ffff888079c94d80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_unregister_dev+0x203/0x510
[  645.951921][   T30]  #1: ffff888079c94078 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x5c8/0x11c0
[  645.961897][   T30] 2 locks held by kworker/u8:13/6250:
[  645.967544][   T30]  #0: ffff88801ac81148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  645.979736][   T30]  #1: ffffc9000491fd00 ((work_completion)(&rreq->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  645.994047][   T30] 5 locks held by kworker/u8:16/6976:
[  645.999451][   T30]  #0: ffff88801baed948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  646.010643][   T30]  #1: ffffc90005147d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  646.021595][   T30]  #2: ffffffff8fcb3cd0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x16a/0xd50
[  646.031779][   T30]  #3: ffffffff8fcc0188 (rtnl_mutex){+.+.}-{4:4}, at: default_device_exit_batch+0xe9/0xaa0
[  646.043370][   T30]  #4: ffffffff8e93d2b8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x451/0x830
[  646.054645][   T30] 1 lock held by syz-executor/8802:
[  646.060004][   T30]  #0: ffffffff8fcc0188 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x3b/0x1b0
[  646.069472][   T30] 2 locks held by syz.7.891/10167:
[  646.075253][   T30]  #0: ffff88807e1c2420 (sb_writers#36){.+.+}-{0:0}, at: direct_splice_actor+0x49/0x220
[  646.085241][   T30]  #1: ffff8880585907b8 (&sb->s_type->i_mutex_key#45){++++}-{4:4}, at: netfs_start_io_direct+0x1d4/0x210
[  646.096832][   T30] 1 lock held by syz-executor/10780:
[  646.102329][   T30]  #0: ffffffff8fcc0188 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0xce2/0x2210
[  646.111479][   T30] 1 lock held by syz.1.1106/11084:
[  646.117602][   T30]  #0: ffffffff8fcc0188 (rtnl_mutex){+.+.}-{4:4}, at: dev_ioctl+0x639/0x1340
[  646.126709][   T30] 1 lock held by syz-executor/11123:
[  646.132029][   T30]  #0: ffffffff8fcc0188 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  646.141626][   T30] 1 lock held by syz-executor/11227:
[  646.148944][   T30]  #0: ffffffff8fcc0188 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  646.159331][   T30] 2 locks held by syz.6.1139/11233:
[  646.165453][   T30]  #0: ffff88807e2d8d80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_unregister_dev+0x203/0x510
[  646.176555][   T30]  #1: ffff88807e2d8078 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x5c8/0x11c0
[  646.187204][   T30] 
[  646.189554][   T30] =============================================
[  646.189554][   T30] 
[  646.201198][   T30] NMI backtrace for cpu 0
[  646.205552][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[  646.215838][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  646.225966][   T30] Call Trace:
[  646.229265][   T30]  <TASK>
[  646.232204][   T30]  dump_stack_lvl+0x241/0x360
[  646.236925][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  646.242149][   T30]  ? __pfx__printk+0x10/0x10
[  646.246779][   T30]  nmi_cpu_backtrace+0x49c/0x4d0
[  646.251739][   T30]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  646.257233][   T30]  ? _printk+0xd5/0x120
[  646.261418][   T30]  ? __pfx__printk+0x10/0x10
[  646.266063][   T30]  ? __wake_up_klogd+0xcc/0x110
[  646.270943][   T30]  ? __pfx__printk+0x10/0x10
[  646.275549][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  646.281197][   T30]  ? __rcu_read_unlock+0xa1/0x110
[  646.286238][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  646.292228][   T30]  nmi_trigger_cpumask_backtrace+0x198/0x320
[  646.298226][   T30]  watchdog+0xff6/0x1040
[  646.302521][   T30]  ? watchdog+0x1ea/0x1040
[  646.306977][   T30]  ? __pfx_watchdog+0x10/0x10
[  646.311704][   T30]  kthread+0x2f2/0x390
[  646.316006][   T30]  ? __pfx_watchdog+0x10/0x10
[  646.320835][   T30]  ? __pfx_kthread+0x10/0x10
[  646.325479][   T30]  ret_from_fork+0x4d/0x80
[  646.329929][   T30]  ? __pfx_kthread+0x10/0x10
[  646.334554][   T30]  ret_from_fork_asm+0x1a/0x30
[  646.339392][   T30]  </TASK>
[  646.343348][   T30] Sending NMI from CPU 0 to CPUs 1:
[  646.348808][    C1] NMI backtrace for cpu 1
[  646.348829][    C1] CPU: 1 UID: 0 PID: 5836 Comm: syz-executor Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[  646.348853][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  646.348867][    C1] RIP: 0010:page_ext_put+0x28/0xc0
[  646.348902][    C1] Code: 90 90 66 0f 1f 00 53 48 89 fb e8 03 09 8e ff 48 85 db 0f 84 93 00 00 00 e8 45 88 bc 09 89 c3 31 ff 89 c6 e8 2a 0d 8e ff 85 db <74> 10 e8 e1 99 73 ff 84 c0 74 0e e8 d8 08 8e ff eb 56 e8 d1 08 8e
[  646.348920][    C1] RSP: 0018:ffffc900043bf7b8 EFLAGS: 00000202
[  646.348941][    C1] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffff88802f5c3c00
[  646.348956][    C1] RDX: ffff88802f5c3c00 RSI: 0000000000000001 RDI: 0000000000000000
[  646.348971][    C1] RBP: 00000000000016cc R08: ffffffff82117c16 R09: 1ffff11003c1ceb2
[  646.348987][    C1] R10: dffffc0000000000 R11: ffffed1003c1ceb3 R12: 0000000000000001
[  646.349002][    C1] R13: dffffc0000000000 R14: ffff88801e0e75d4 R15: ffff88801e0e75e0
[  646.349022][    C1] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  646.349040][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  646.349056][    C1] CR2: 00007ffd58e07f30 CR3: 000000000e736000 CR4: 0000000000350ef0
[  646.349073][    C1] Call Trace:
[  646.349081][    C1]  <NMI>
[  646.349090][    C1]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  646.349119][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  646.349150][    C1]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  646.349177][    C1]  ? nmi_handle+0x2a/0x5a0
[  646.349215][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  646.349238][    C1]  ? nmi_handle+0x151/0x5a0
[  646.349264][    C1]  ? nmi_handle+0x2a/0x5a0
[  646.349293][    C1]  ? page_ext_put+0x28/0xc0
[  646.349319][    C1]  ? default_do_nmi+0x63/0x160
[  646.349346][    C1]  ? exc_nmi+0x123/0x1f0
[  646.349370][    C1]  ? end_repeat_nmi+0xf/0x53
[  646.349397][    C1]  ? page_ext_put+0x26/0xc0
[  646.349425][    C1]  ? page_ext_put+0x28/0xc0
[  646.349452][    C1]  ? page_ext_put+0x28/0xc0
[  646.349480][    C1]  ? page_ext_put+0x28/0xc0
[  646.349507][    C1]  </NMI>
[  646.349514][    C1]  <TASK>
[  646.349521][    C1]  __reset_page_owner+0x2de/0x430
[  646.349553][    C1]  free_unref_page+0xd3f/0x1010
[  646.349583][    C1]  vfree+0x1c3/0x360
[  646.349607][    C1]  kcov_close+0x28/0x50
[  646.349633][    C1]  ? __pfx_kcov_close+0x10/0x10
[  646.349658][    C1]  __fput+0x23e/0xa50
[  646.349698][    C1]  task_work_run+0x251/0x310
[  646.349738][    C1]  ? __pfx_task_work_run+0x10/0x10
[  646.349768][    C1]  ? do_exit+0xa25/0x28e0
[  646.349795][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  646.349820][    C1]  ? do_exit+0xa25/0x28e0
[  646.349848][    C1]  do_exit+0xa2a/0x28e0
[  646.349876][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  646.349901][    C1]  ? __pfx_do_exit+0x10/0x10
[  646.349926][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  646.349952][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  646.349975][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  646.350004][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  646.350030][    C1]  ? _raw_spin_lock_irq+0xdf/0x120
[  646.350063][    C1]  do_group_exit+0x207/0x2c0
[  646.350089][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  646.350116][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  646.350139][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  646.350172][    C1]  get_signal+0x16b2/0x1750
[  646.350215][    C1]  ? __pfx_get_signal+0x10/0x10
[  646.350246][    C1]  ? path_umount+0x211/0xf80
[  646.350277][    C1]  arch_do_signal_or_restart+0x96/0x860
[  646.350316][    C1]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  646.350351][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  646.350382][    C1]  ? __x64_sys_umount+0x123/0x170
[  646.350410][    C1]  ? syscall_exit_to_user_mode+0xa3/0x340
[  646.350445][    C1]  syscall_exit_to_user_mode+0xce/0x340
[  646.350480][    C1]  do_syscall_64+0x100/0x230
[  646.350517][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  646.350551][    C1] RIP: 0033:0x7fecff387057
[  646.350568][    C1] Code: Unable to access opcode bytes at 0x7fecff38702d.
[  646.350578][    C1] RSP: 002b:00007ffcececa788 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  646.350599][    C1] RAX: 0000000000000000 RBX: 00007fecff4018f4 RCX: 00007fecff387057
[  646.350614][    C1] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcececa840
[  646.350628][    C1] RBP: 00007ffcececa840 R08: 0000000000000000 R09: 0000000000000000
[  646.350642][    C1] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffcececb8c0
[  646.350657][    C1] R13: 00007fecff4018f4 R14: 00007ffcececb900 R15: 00000000000000ef
[  646.350682][    C1]  </TASK>
[  646.885892][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  646.892828][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[  646.903017][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  646.913101][   T30] Call Trace:
[  646.916476][   T30]  <TASK>
[  646.919413][   T30]  dump_stack_lvl+0x241/0x360
[  646.924114][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  646.929425][   T30]  ? __pfx__printk+0x10/0x10
[  646.934029][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  646.940034][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  646.945690][   T30]  ? vscnprintf+0x5d/0x90
[  646.950052][   T30]  panic+0x349/0x880
[  646.953997][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  646.959756][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  646.965930][   T30]  ? __pfx_panic+0x10/0x10
[  646.970362][   T30]  ? tick_nohz_tick_stopped+0x82/0xb0
[  646.975769][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  646.981418][   T30]  ? __irq_work_queue_local+0x137/0x410
[  646.986980][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  646.992623][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  646.998029][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  647.004204][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[  647.010395][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  647.016162][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[  647.022374][   T30]  watchdog+0x1035/0x1040
[  647.026745][   T30]  ? watchdog+0x1ea/0x1040
[  647.031178][   T30]  ? __pfx_watchdog+0x10/0x10
[  647.035870][   T30]  kthread+0x2f2/0x390
[  647.039961][   T30]  ? __pfx_watchdog+0x10/0x10
[  647.044747][   T30]  ? __pfx_kthread+0x10/0x10
[  647.049358][   T30]  ret_from_fork+0x4d/0x80
[  647.053783][   T30]  ? __pfx_kthread+0x10/0x10
[  647.058388][   T30]  ret_from_fork_asm+0x1a/0x30
[  647.063304][   T30]  </TASK>
[  647.066653][   T30] Kernel Offset: disabled
[  647.070986][   T30] Rebooting in 86400 seconds..