last executing test programs:

18m6.010226387s ago: executing program 4 (id=702):
creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
inotify_init1(0x0)
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff04800000080039503230"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_readahead}], [], 0x6b}})
truncate(&(0x7f0000000240)='./file0\x00', 0x206b12)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xa2f00, 0xa3)

18m5.540262815s ago: executing program 4 (id=705):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000240)=0x9, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000000180)=[{&(0x7f00000001c0)="580000001500add427323b472545b4560a117fffffff81000e220e227f000008925aa80013007b00090080007f000001e809000000ff0000f03ac7100003ffffffff", 0x42}], 0x1)

18m5.10438955s ago: executing program 4 (id=706):
socket$inet_sctp(0x2, 0x5, 0x84)
write$FUSE_ENTRY(0xffffffffffffffff, &(0x7f0000000400)={0x90, 0x0, 0x0, {0x0, 0x3, 0xa, 0x3, 0x7, 0x6, {0x1, 0x0, 0x7, 0xffffffffffffffff, 0x54a5, 0x1, 0x2, 0x6, 0x4d6, 0x1000, 0x8d, 0x0, 0x0, 0xfffffffd, 0x5}}}, 0x90)
openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
getsockopt$SO_J1939_ERRQUEUE(r2, 0x6b, 0x3, 0x0, &(0x7f0000000040))

18m0.504411493s ago: executing program 4 (id=720):
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000240)={0x1c, 0x5e, 0x1, 0x0, 0x25dfdbfd, "", [@nested={0xc, 0x0, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @fd=r0}]}]}, 0x1c}], 0x1}, 0x0)
syz_open_dev$vim2m(0x0, 0x52cd, 0x2)
socket$inet6_sctp(0xa, 0x1, 0x84)
munmap(&(0x7f0000901000/0x3000)=nil, 0x3000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x40, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x3ffa, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
quotactl_fd$Q_GETNEXTQUOTA(0xffffffffffffffff, 0xffffffff80000902, 0x0, &(0x7f0000000300))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, 0x0, &(0x7f0000000100)='syzkaller\x00'}, 0x94)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x14, r4, 0x9c3fa077fa966179, 0x4, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
mount$fuseblk(&(0x7f0000002440), &(0x7f0000000040)='./file0\x00', &(0x7f00000024c0), 0x0, &(0x7f0000000240)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x6000}})

17m55.639927199s ago: executing program 4 (id=737):
syz_open_dev$vivid(&(0x7f0000000000), 0x3, 0x2)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
socket$packet(0x11, 0x3, 0x300)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket(0x28, 0x5, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x847ba, 0x0, 0xe, 0x0, 0x0)
openat$drirender128(0xffffffffffffff9c, &(0x7f0000000040), 0x100, 0x0)
memfd_create(0x0, 0x3)
ioctl$UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

17m52.573894103s ago: executing program 4 (id=741):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./bus\x00', 0x40)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{&(0x7f0000000140)={0xa, 0x4e22, 0x3, @private2, 0x8}, 0x1c, &(0x7f0000000040)=[{&(0x7f0000000280)='1', 0x1}], 0x1}}], 0x1, 0x20000012)
shutdown(0xffffffffffffffff, 0x1)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f00000000c0)={0x9, 0x40, 0x4000, 0x8, 0x9, 0xdcd, 0xc3}, &(0x7f0000000100)=0x20)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
rename(&(0x7f00000001c0)='./file1\x00', 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='ext4_writepages\x00', r0, 0x0, 0x8000000000000000}, 0x18)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f000001b700)=""/102392, 0x18ff8)
r2 = fsopen(&(0x7f0000000280)='nfs\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000000)='source', 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f00000002c0)='tmpfs\x00', 0x0, &(0x7f0000000380)='u\xbc6\xee\xdbaGsruota')
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
r3 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x10f242)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$HIDIOCGRDESC(r3, 0x40305829, &(0x7f0000000400)={0xd, "19c32e2600080000000000006d"})

17m36.751007591s ago: executing program 32 (id=741):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./bus\x00', 0x40)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{&(0x7f0000000140)={0xa, 0x4e22, 0x3, @private2, 0x8}, 0x1c, &(0x7f0000000040)=[{&(0x7f0000000280)='1', 0x1}], 0x1}}], 0x1, 0x20000012)
shutdown(0xffffffffffffffff, 0x1)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f00000000c0)={0x9, 0x40, 0x4000, 0x8, 0x9, 0xdcd, 0xc3}, &(0x7f0000000100)=0x20)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
rename(&(0x7f00000001c0)='./file1\x00', 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='ext4_writepages\x00', r0, 0x0, 0x8000000000000000}, 0x18)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f000001b700)=""/102392, 0x18ff8)
r2 = fsopen(&(0x7f0000000280)='nfs\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000000)='source', 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f00000002c0)='tmpfs\x00', 0x0, &(0x7f0000000380)='u\xbc6\xee\xdbaGsruota')
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
r3 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x10f242)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$HIDIOCGRDESC(r3, 0x40305829, &(0x7f0000000400)={0xd, "19c32e2600080000000000006d"})

11m1.329953185s ago: executing program 5 (id=1648):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8084}, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x8810, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r3)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140))
r4 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd824498949714ffaac8a6f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb5447000001000000008f2b9000f22425e4097ed62cbc891061017cfa6fa26fa7088c60897d4a6148a1c1e43f00001bde60beac671e8e8fdecb03588aa623fa71f31bf0f871ab5c2ff88afc60027f4e5b5271ed58e835cf0d0000000098b51fe6b1b8d9dbe87dcff414ed000000000000000000000000000000000000000000000000000000b347abe6352a080f8140e5fd10747b6ecdb3540546bf636e3d6e700e5b0500000000000000eb9e1403e6c8f7a187eaf60f3a17f0f046a307a403c19d9829c90bd2114252581567acae715cbe1b57d5cda432c5b910400623d24195405f2e76ccb7b37b41215c184e731fb1"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r5, r4, 0x26}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r5}, &(0x7f0000000000), &(0x7f0000000080)=r3}, 0x20)

11m0.735926756s ago: executing program 5 (id=1650):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, 0x0, &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x2d)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0x1}], 0x1)
r2 = syz_io_uring_setup(0xb7f, &(0x7f0000000180)={0x0, 0x38ab, 0x80, 0x0, 0x1e6}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000600)=<r4=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r2, 0x16, &(0x7f0000000040)={&(0x7f0000001000)={[{0x0, 0x0, 0x3, 0xf4}]}, 0x1, 0x1}, 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(0x3)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x10, r5, 0x0, 0x0, 0x0, 0x322, 0x1, {0x1}})
io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0x0)

10m59.98986763s ago: executing program 5 (id=1652):
ioctl$HIDIOCGRDESC(0xffffffffffffffff, 0x4030582a, &(0x7f0000000000))
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904"], 0x0)
syz_usb_disconnect(r0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000d7de9e20aa142602"], 0x0)

10m55.98227321s ago: executing program 5 (id=1663):
socket$vsock_stream(0x28, 0x1, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r0)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
connect$bt_l2cap(r1, &(0x7f0000000040)={0x1f, 0x1, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000003, 0x50032, 0xffffffffffffffff, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000340)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_DEL_STATION(r0, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x34, r2, 0x10, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_STA_FLAGS={0x18, 0x11, 0x0, 0x1, [@NL80211_STA_FLAG_SHORT_PREAMBLE={0x4}, @NL80211_STA_FLAG_AUTHENTICATED={0x4}, @NL80211_STA_FLAG_AUTHORIZED={0x4}, @NL80211_STA_FLAG_ASSOCIATED={0x4}, @NL80211_STA_FLAG_TDLS_PEER={0x4}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x40004004}, 0x8040)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
syz_mount_image$cramfs(&(0x7f0000000100), &(0x7f0000000180)='./file2\x00', 0x10080, &(0x7f0000000040)=ANY=[@ANYRES64=0x0], 0x2, 0x15d, &(0x7f0000000440)="$eJzsjz9rWlEchp97r39Kq/VCLdgObaFDLxXr9YrdStFSqVB7oaVLh1Kot7SgVRSKY5OQLUM+gIOJkEkcQsYMicliohDM5xAyBBwTzj0SkjXzeZbDed73/M45799MLEwwkLyr1xpNr9XyKs8+u+Xil+2d3fvChzG54zdqjaYoV2R/Lw+/xRqA2ZLUB1H49afqvfpZr4r9LA8WULgnvI6N7N4VLi672sJZz2H4UDrHd/oNl130HgegEJNOzLvYgBeAjnQZ4ByC7U5y0D/6NB6VUi+3vhuslpJPH2ggveH7J96aU3zUiyRWgMNN/5vtzml6lDpJD/rTybj80S27k6zjvM7aGdvOTd3jcSn3f53Ah8g/+HY1T94TCgFfYVmDjgZ9P5/ta1Fg2J27tVg4Dpz9NUGTiTjSncO1RLzjRyLYexs3dQwLDYVCoVAoFAqFQqFQKG7JZQAAAP//78Rlhw==")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x0, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
syz_clone(0x100, 0x0, 0x0, 0x0, 0x0, 0x0)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)

10m53.490871071s ago: executing program 5 (id=1670):
r0 = syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x0, &(0x7f0000000100), 0x1, 0x57e, &(0x7f00000005c0)="$eJzs3U1oHGUfAPD/zGbffuV90xcUVHooKlQo3ST90OqpvYqFQg+CFw2bbSjZZEM20SbkkN6L2IOo9FJvevCoePAgXjx6ErwonoVig0LTg67MfqRpvtzUJlszvx/M7jzz7Oz/eXb2/+zMMMMGkFtHs4c04umIuJhEDKyq64t25dHW65aXFsr3lhbKSTQal35NIomIu0sL5c7rk/bzoYhYjIinIuKbYsTxdH3c+tz8+Ei1WplulwdnJqYG63PzJ65MjIxVxiqTp156+czZ02eGTw6vXu1eY3WpuL2+Xv/pxrvXv3v11o1PPzuyWH5/JIlz0d+uW92PR6n1mRTj3Jrlp3ciWA8lvW4AD6XQzvMslZ6MgSi0s34jjYFdbRqwwxr7IhpATiXyH3Kqsx+QHf92pt3c/7h9vnUAksVdbk+tmr7WuYnY3zw2Ofhb8sCRSXa8eXg3G8qetHgtIob6+tZ//5P29+/hDT2KBrKjvj7f2lDrt3+6Mv7EBuNPf+fc6T/UGf+W141/9+MXNhn/LnYZ4483fv5o0/jXIp7ZMH6yEj/ZIH4aEW91Gf/m61+e3ayu8XHEsdg4fkey9fnhwctXqpWh1uOGMb46duSVrfp/cJP4rXO2+5s/M2v6fyhr01SX/f/i28+fXdwi/gvPbb39N/r8D0TEe13G///dT17brO72teROthew3e2fLbvVZfwXzx39scuXAgAAAAAAAAAA25A2r2VL0tLKfJqWSq17eJ+Ig2m1Vp85frk2OznauubtcBTTzpVWA61ykpWH29fjdson15RPFdoBCwea5VK5Vh3tcd8BAAAAAAAAAAAAAAAAAADgcXFozf3/vxea9/+v/btqYK/a/C+/gb1O/kN+PZj/Sc/aAew+v/+QWw35D/kl/yG/5D/kl/yH/JL/kF/yH/JL/gMAAAAAAAAAAAAAAAAAAAAAAAAAwI64eOFCNjXuLS2Us/Jo39zseO3tE6OV+nhpYrZcKtemp0pjtdpYtVIq1yb+7v2SWm1qKCZnrw7OVOozg/W5+TcnarOTSXzfrK4Ud6FPAAAAAAAAAAAAAAAAAAAA8G/T35yStBQRaXM+TUuliP9GxOEoJpevVCtDEfG/iPihUNyXlYd73WgAAAAAAAAAAAAAAAAAAADYY+pz8+Mj1Wplek/O7I+IB5f0bWf1iFh8tA3L3nHbaxXb2+px+VTN5GGmxwMTAAAAAAAAAAAAAAAAAADk0P2bfrtd48+dbRAAAAAAAAAAAAAAAAAAAADkUvpLEhHZdGzg+f61tf9JlgvN54h45+alD66OzMxMD2fL76wsn/mwvfxkL9oPdKuTp508BgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAO6rz82Pj1SrlekdnOl1HwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAexl8BAAD//5aV1q4=")
r1 = openat(r0, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
ioctl$FIBMAP(r1, 0x1, &(0x7f0000000140)=0x6)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000080)='./file0\x00', 0x280008a, &(0x7f00000007c0)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c73686f72746e616d653d77696e39352c73686f72746e616d653d6c6f7765722c696f636861727365743d64656661756c742c756e695f786c6174653d302c6e6f6e756d7461696c3d302c757466383d302c616c6c6f775f7574696d653d30303030303030303030303030303030303030303030322c726f6469722c73686f72866e616d653d6d697865642c73686f72746e616d653d6d697865642c73686f72746e616d653d77696e39352c7569643d", @ANYRESHEX=0x0, @ANYBLOB=',uni_xlate=0,utf8=0,shortname=mixed,uni_xlate=0,shortname=winnt,\x00'], 0x96, 0x2a9, &(0x7f0000000500)="$eJzs3T9ra2UYAPDnpGkSdEgEJxE8oINTabu6pEgLxUxKBnXQYluQJggtFPyDsZOri6OriyC4+SVc/AaCq+BmwcKRk5xjkt40N+m9ae+f32/p2/c8z3ue9/QtpcN58vGr/ZPDNI4vvvojGo0kKu1ox2USrahE6ZuY0v4uAICn2WWWxd/ZyDJ5SUQ0VlcWALBCS//9/2XlJQEAK/be+x+8s9Pp7L6bpo3Y63973s3/s8+/jq7vHMen0Yuj2IxmXEVk/xuN97IsG1TTXCve6A/Ou3lm/6PfivV3/ooY5m9FM1rDqen8/c7uVjoykT/I63ihuH87z9+OZrw84/77nd3tGfnRrcWbr0/UvxHN+P2T+Cx6cTgsYpQflYivt9L07ez7f778MC8vz08G5936MG4sW7vjHw0AAAAAAAAAAAAAAAAAAAAAAM+wjaJ3Tj2G/XvyqaL/ztpV/s16pKXWdH+eUX5SLnStP9Agix/K/jybaZpmReA4vxqvVKN6P7sGAAAAAAAAAAAAAAAAAACAJ8vZ51+cHPR6R6ePZVB2Ayhf67/tOu2JmddifnB9fK9KMZyzcqyVMUnE3DLyTSxc879F24PbPbqXbqr5p58XXufHh++9GKwvEPOIg/J0nRwks59hPcqZRnlIfp2MqcWC96rddClb6vjVZl5qLr332ovDwWBOTCTzCnvrz9GTK2aS67uoDZ/qzPT1YjCRPh3TWPw8578pD0h06wAAAAAAAAAAAAAAAAAAgJUav/Q74+LF3NRKVl9ZWQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwp8af/7/EYFAkLxBci9Oze94iAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAz4H/AgAA///uD2MO")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x94)
r6 = syz_open_dev$vcsa(&(0x7f0000000300), 0x1, 0x102)
write$P9_RREMOVE(r6, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
io_setup(0x281, 0x0)
io_submit(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[], 0x50)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000380), 0x4001, 0x0)

10m52.502633428s ago: executing program 5 (id=1671):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_open_procfs(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$key(0xf, 0x3, 0x2)
io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000100)={&(0x7f0000002000)={[{&(0x7f00000003c0)="39e6c4241481f86c8823ad233c5d457441d870cc277b93911aa7b5899912905793e228cc0e1021c98a84a0af5424abc14b356f4a33e3bd031c62b33c789345410fba82757a21717891c68a9e336cd64769eab975a366636a27d99ffb8753b053353d873d58f75bb65c13d9dde9e0ba0e1065797a508ebe5ec2f0b271cb4fcfc8f6152193ec67549b4898691a614bab91eb9d111ded93a9c7ec66bb112cbdb8941ce431fc84ed55de486ad857f41f31de2a83", 0xb2, 0x1}, {&(0x7f0000000080)="a822e13d17762537b51ed5910d46", 0xe, 0x3}, {&(0x7f0000000540)="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", 0xfff, 0x1}, {&(0x7f0000001540)="6c5f85218374264d213a8b043e433fac5f7c89f4df5dd630a260d608b65809cc513495a8c5b367f943ec7994ab14165c1ae86293ac6a4dd8428b9a2908cf50d80b5b0217e75cd463590a4dfd0fba73de0ccded70b73e46d93bc20383e4c4321adeaba3ac27360c74026933584909a7d19de3a6ec3809dc8af1a51f4005bf500ada6711ba16de645b1849c7b223412118928fc41270264a8edb68183cbdf56fd981e921653f438fed3e65f66043bde18b36a953a26871a729d02348194044248de1b545c1c3", 0xc5, 0x3}]}, 0x4, 0x1}, 0x1)
r1 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x10c4, 0x1, 0x0, 0x8180000, 0x0, r0}, &(0x7f0000000340)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
syz_io_uring_submit(r2, r3, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
writev(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}, {0x0}, {&(0x7f0000001480)="d1ffacd516de50ac9d15bc75316da4defa1e72f65a65cdd26dcc389aacf7856da9aecf3765d4c032e1960faf25bad906b7d3440b6e71a82f1d8f8b8db35b6091f3af94c6b46b9ab10fe3923f268771078d2668be7bd3eb941d4bb5baa8547e36283a065ce5766cbff3a8fc37fc4507643d3786bbf231d3ed88cb8b01eab14e4372cf4f89bd1b853caa5d9f07f523b9dfa8cc09053ff36fde08e96fb6b3acc196b1bd1e2d3a6c65f585df7e2b8b17439a7ab29a7dfe642c2f0ac7a81eca8073b559663f2daf7a0832b2b09557794a21bf114831f8e6db3922d0cd169e5a8b4adc95", 0xe1}], 0x3)
ioctl$SCSI_IOCTL_GET_PCI(r5, 0x5393, &(0x7f0000000000))
io_uring_enter(r1, 0x3516, 0x0, 0x0, 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x803, 0x0)
getsockname$packet(r7, &(0x7f00000000c0)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000300)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=ANY=[@ANYBLOB="380000001000390400"/20, @ANYRES32=r8, @ANYBLOB="059900f3ffffff111800128008000100677470000c000280050005"], 0x38}, 0x1, 0x0, 0x0, 0x80}, 0x8000)

10m51.439706887s ago: executing program 33 (id=1671):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_open_procfs(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$key(0xf, 0x3, 0x2)
io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000100)={&(0x7f0000002000)={[{&(0x7f00000003c0)="39e6c4241481f86c8823ad233c5d457441d870cc277b93911aa7b5899912905793e228cc0e1021c98a84a0af5424abc14b356f4a33e3bd031c62b33c789345410fba82757a21717891c68a9e336cd64769eab975a366636a27d99ffb8753b053353d873d58f75bb65c13d9dde9e0ba0e1065797a508ebe5ec2f0b271cb4fcfc8f6152193ec67549b4898691a614bab91eb9d111ded93a9c7ec66bb112cbdb8941ce431fc84ed55de486ad857f41f31de2a83", 0xb2, 0x1}, {&(0x7f0000000080)="a822e13d17762537b51ed5910d46", 0xe, 0x3}, {&(0x7f0000000540)="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", 0xfff, 0x1}, {&(0x7f0000001540)="6c5f85218374264d213a8b043e433fac5f7c89f4df5dd630a260d608b65809cc513495a8c5b367f943ec7994ab14165c1ae86293ac6a4dd8428b9a2908cf50d80b5b0217e75cd463590a4dfd0fba73de0ccded70b73e46d93bc20383e4c4321adeaba3ac27360c74026933584909a7d19de3a6ec3809dc8af1a51f4005bf500ada6711ba16de645b1849c7b223412118928fc41270264a8edb68183cbdf56fd981e921653f438fed3e65f66043bde18b36a953a26871a729d02348194044248de1b545c1c3", 0xc5, 0x3}]}, 0x4, 0x1}, 0x1)
r1 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x10c4, 0x1, 0x0, 0x8180000, 0x0, r0}, &(0x7f0000000340)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
syz_io_uring_submit(r2, r3, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
writev(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}, {0x0}, {&(0x7f0000001480)="d1ffacd516de50ac9d15bc75316da4defa1e72f65a65cdd26dcc389aacf7856da9aecf3765d4c032e1960faf25bad906b7d3440b6e71a82f1d8f8b8db35b6091f3af94c6b46b9ab10fe3923f268771078d2668be7bd3eb941d4bb5baa8547e36283a065ce5766cbff3a8fc37fc4507643d3786bbf231d3ed88cb8b01eab14e4372cf4f89bd1b853caa5d9f07f523b9dfa8cc09053ff36fde08e96fb6b3acc196b1bd1e2d3a6c65f585df7e2b8b17439a7ab29a7dfe642c2f0ac7a81eca8073b559663f2daf7a0832b2b09557794a21bf114831f8e6db3922d0cd169e5a8b4adc95", 0xe1}], 0x3)
ioctl$SCSI_IOCTL_GET_PCI(r5, 0x5393, &(0x7f0000000000))
io_uring_enter(r1, 0x3516, 0x0, 0x0, 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x803, 0x0)
getsockname$packet(r7, &(0x7f00000000c0)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000300)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=ANY=[@ANYBLOB="380000001000390400"/20, @ANYRES32=r8, @ANYBLOB="059900f3ffffff111800128008000100677470000c000280050005"], 0x38}, 0x1, 0x0, 0x0, 0x80}, 0x8000)

6m53.637317221s ago: executing program 2 (id=2235):
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000100)='./file1\x00', 0x2000040, &(0x7f0000000000)={[{@codepage={'codepage', 0x3d, 'cp949'}}, {@uid}, {@iocharset={'iocharset', 0x3d, 'cp936'}}]}, 0x1, 0x302, &(0x7f00000008c0)="$eJzs3c9qE0EcB/DvTDZt+oe6thXBi6Va0Eux6qF4iUiu3j2J2qQQXCq2FdSLrXgUH8C7r+DFN/Ci+AJ6EgQfoLeR+e1sskl2J6Yk2bT9fiDpZnZm9zfsbHZ+C82CiM6se7Wfn279ti8FlFACcAfQACpAAOACLlZe7Ow396NG3behkrSwL4W4peqps7XTyGpq20kLJ7SfAsyny9JU75bpmIwxd38VHQQVTs7+DBqYduehrK+MOa5ROQAuFx3DuKUPsDrCEV5iocBwiIhoArjrv3aXiXkpUtAaWHOX/VN1/T8qOoDhuh31FBlvg9T1X2Z3Rtnje05WtfM9SbTsep1kif0CseOj3FU2hXhkdUwwVb+sUmLRM9vNAOtbh6hrvEXVSVVblvd6PHQTfaJdzchNPfK3Vsb92bg3MqPsloS03Ywa03YhFX8SwdJge/T44l/9x/1VX9V39VCF+Ih6a/4XGGUPkxypsOtI6bKN/0b+luekla0F17Fqtao7qpyXnVxye3D69LKSnZGkt5ncIDhoReCLU/a9iM7bCnHvNvq0WspqFbY+5bRa7mhVciNhfetZ5L2VMhpJF9UH9UCt4i8+o5aa/2sb3xpSZ6bvq15JTTcy4v5MZdcMpGbYc+Vony4rrQic6YH7RkDe3bIc7/EEm1jYe/X6aSmKGrt24XHGwvP5XeVKyu+AzDpDXgiize5VJXha4aBdYqw3xvzvvswou3N9qBu03x+7G4hL7OmTVdmeZa0SPdLDdIYXat/gG5CTtXCYHhJdC8YAOatG9j1FE2RPJQddPgaYKToiGjM771Jx/iczeTerkwTFvoWeebo/yUTHFjdaGVznVHBR3mcHyuDm8jM4t0fVjBo3c3JGybmuXAOupgoVvHsMXZynhKrhBx7x/j8RERERERERERERERERERERERER0Ukzjn9CKLqPREREREREREREREREREREREREREREREQn3bGe/5v1G/Hy/N9wwOf/xk+Kkp8DX2mX9nv+LxENx78AAAD//1Lod7w=")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000001400), 0x1, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r0, 0xffffffffffffffff, 0x0)

6m51.629243104s ago: executing program 2 (id=2240):
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000100)='./file1\x00', 0x2000040, &(0x7f0000000000)={[{@codepage={'codepage', 0x3d, 'cp949'}}, {@uid}, {@iocharset={'iocharset', 0x3d, 'cp936'}}]}, 0x1, 0x302, &(0x7f00000008c0)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x40001e0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r3, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r3, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
mount$nfs(&(0x7f00000001c0)='\xb2\x83\x87J9I\xc3i\xe4\x81\xc5:\xccLD\x9d\xd8\xc7\x90v\x8b\x82\x90\xa4\xdd\x98\xb8\rQh#\xfacl\x01\x8cC\x1f|\xa5\xcb\x8f\xe5WJ\x00>\xf2\xd6\t\xf4IE\xcb\x15A\xb5\xbbG\xa0\xea\xc4\x03\xf2\xf5\xf4\xa1\x98', &(0x7f0000000240)='./file0\x00', 0x0, 0x201008, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000001400), 0x1, 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040))
close_range(r4, 0xffffffffffffffff, 0x0)

6m50.043226491s ago: executing program 2 (id=2242):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$IPVS_CMD_GET_INFO(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x850}, 0x20000000)
r1 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r1, 0x0, 0x27, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
r2 = socket$netlink(0x10, 0x3, 0x0)
writev(r2, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB="300000003e000701fcfffffffddbdf25017c0000100036800c00020004000500000000000c000180060006008e"], 0x30}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000000240)=<r4=>0x0)
prctl$PR_SCHED_CORE(0x3e, 0x2, r4, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
setsockopt$PNPIPE_HANDLE(0xffffffffffffffff, 0x113, 0x3, 0x0, 0x0)
connect$phonet_pipe(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f00000001c0)={@private1={0xfc, 0x1, '\x00', 0x1}, 0x7fe, 0x0, 0xff, 0x0, 0x0, 0xfffd}, 0x20)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000300)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x4, 0x9}}, './file0\x00'})
futex_waitv(&(0x7f0000000180)=[{0x0, &(0x7f0000000000), 0x2}, {0x3, &(0x7f0000000040)=0x3, 0x2}], 0x2, 0x0, 0x0, 0x0)
futex(&(0x7f0000000140), 0x5, 0x0, 0x0, &(0x7f0000000000), 0x0)
socket$unix(0x1, 0x1, 0x0)

6m46.99882584s ago: executing program 2 (id=2248):
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r0)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
connect$bt_l2cap(r2, &(0x7f0000000040)={0x1f, 0x1, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000003, 0x50032, 0xffffffffffffffff, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000340)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_DEL_STATION(r0, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x34, r3, 0x10, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_STA_FLAGS={0x18, 0x11, 0x0, 0x1, [@NL80211_STA_FLAG_SHORT_PREAMBLE={0x4}, @NL80211_STA_FLAG_AUTHENTICATED={0x4}, @NL80211_STA_FLAG_AUTHORIZED={0x4}, @NL80211_STA_FLAG_ASSOCIATED={0x4}, @NL80211_STA_FLAG_TDLS_PEER={0x4}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x40004004}, 0x8040)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
syz_mount_image$cramfs(&(0x7f0000000100), &(0x7f0000000180)='./file2\x00', 0x10080, &(0x7f0000000040)=ANY=[@ANYRES64=0x0], 0x2, 0x15d, &(0x7f0000000440)="$eJzsjz9rWlEchp97r39Kq/VCLdgObaFDLxXr9YrdStFSqVB7oaVLh1Kot7SgVRSKY5OQLUM+gIOJkEkcQsYMicliohDM5xAyBBwTzj0SkjXzeZbDed73/M45799MLEwwkLyr1xpNr9XyKs8+u+Xil+2d3fvChzG54zdqjaYoV2R/Lw+/xRqA2ZLUB1H49afqvfpZr4r9LA8WULgnvI6N7N4VLi672sJZz2H4UDrHd/oNl130HgegEJNOzLvYgBeAjnQZ4ByC7U5y0D/6NB6VUi+3vhuslpJPH2ggveH7J96aU3zUiyRWgMNN/5vtzml6lDpJD/rTybj80S27k6zjvM7aGdvOTd3jcSn3f53Ah8g/+HY1T94TCgFfYVmDjgZ9P5/ta1Fg2J27tVg4Dpz9NUGTiTjSncO1RLzjRyLYexs3dQwLDYVCoVAoFAqFQqFQKG7JZQAAAP//78Rlhw==")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x0, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
syz_clone(0x100, 0x0, 0x0, 0x0, 0x0, 0x0)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)

6m43.90761704s ago: executing program 2 (id=2252):
r0 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r0, &(0x7f0000000080)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000004}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x29a83a768e447add)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd2d, 0x20000000, {0x0, 0x0, 0x0, r1, {0x2, 0x2}, {}, {0x5, 0xffe0}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_FLAGS={0x8, 0x16, 0x1a}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x40040)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

6m42.334196156s ago: executing program 2 (id=2258):
socket$key(0xf, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x6000000)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$FBIO_WAITFORVSYNC(0xffffffffffffffff, 0x40044620, 0x0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(0xffffffffffffffff, 0x84, 0x6b, &(0x7f0000000240), 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x20201)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r3, 0x40045532, &(0x7f0000000100))
r4 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x88602, 0x0)
ioctl$SNDCTL_DSP_GETODELAY(r4, 0x80045017, 0x0)
r5 = syz_open_dev$sndpcmp(&(0x7f0000001200), 0x0, 0xa2c65)
r6 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r6, 0xc0884113, &(0x7f0000000240)={0x1, 0x0, 0x200, 0xfffe, 0x2, 0x8, 0x200000000000002f, 0x200, 0x1, 0x2c, 0xffffffff, 0x2})
ioctl$SNDRV_PCM_IOCTL_STATUS_EXT32(r5, 0xc06c4124, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'lo\x00'})

6m40.274803021s ago: executing program 34 (id=2258):
socket$key(0xf, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x6000000)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$FBIO_WAITFORVSYNC(0xffffffffffffffff, 0x40044620, 0x0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(0xffffffffffffffff, 0x84, 0x6b, &(0x7f0000000240), 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x20201)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r3, 0x40045532, &(0x7f0000000100))
r4 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x88602, 0x0)
ioctl$SNDCTL_DSP_GETODELAY(r4, 0x80045017, 0x0)
r5 = syz_open_dev$sndpcmp(&(0x7f0000001200), 0x0, 0xa2c65)
r6 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r6, 0xc0884113, &(0x7f0000000240)={0x1, 0x0, 0x200, 0xfffe, 0x2, 0x8, 0x200000000000002f, 0x200, 0x1, 0x2c, 0xffffffff, 0x2})
ioctl$SNDRV_PCM_IOCTL_STATUS_EXT32(r5, 0xc06c4124, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'lo\x00'})

11.457727953s ago: executing program 0 (id=3164):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFC_CMD_FW_DOWNLOAD(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000480)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16, @ANYBLOB="010025bd7000fddbdf2515000000080014006e666300080014006e62640008000100", @ANYRES32], 0x60}, 0x1, 0x0, 0x0, 0x4000000}, 0x4020)

11.28526227s ago: executing program 0 (id=3168):
socket$packet(0x11, 0x3, 0x300)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x2, 0x4)
syz_emit_ethernet(0x0, 0x0, 0x0)

11.017589306s ago: executing program 0 (id=3172):
r0 = socket$nl_route(0x10, 0x3, 0x0)
openat$sysctl(0xffffffffffffff9c, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = syz_open_dev$dri(0x0, 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r2, 0xc01864c6, &(0x7f0000000040)={0x0})
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
r4 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000000c0)="5c00000014006b05c84e21000ab16d6e230675f811000000440002005817d30461bc24eeb556a705251e6182149a36c23d3b48dfd8cdbf9367b098fa51f60a64c9f408000000e786a6d0bdd70000b6c0504bb9189d", 0x55}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r6=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r4, 0xc06864a1, &(0x7f0000000d40)={0x0, 0x0, r6, <r7=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r4, 0xc06864ce, &(0x7f0000000340)={r7, 0x0, 0x0, 0x0, 0x1, [<r8=>0x0], [0x0, 0x7], [0x0, 0x80000002, 0x2], [0x0, 0x0, 0x1, 0x1]})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000140)={0x3ff, 0x2, 0x806})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r3, 0xc00c642d, &(0x7f0000000080)={r8, 0x0, <r9=>0xffffffffffffffff})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r4, 0xc00c642e, &(0x7f0000000300)={0x0, 0x0, r9})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)=@newlink={0x34, 0x10, 0x401, 0x70bd2a, 0x0, {0x0, 0x0, 0x0, 0x0, 0x103, 0x28820}, [@IFLA_IFNAME={0x14, 0x3, 'bridge_slave_0\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x44801}, 0x48000)

10.825302978s ago: executing program 7 (id=3174):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x2}, 0x94)
accept(0xffffffffffffffff, 0x0, 0x0)

10.446807182s ago: executing program 7 (id=3176):
ioctl$SNDRV_TIMER_IOCTL_PVERSION(0xffffffffffffffff, 0x400454a4, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/diskstats\x00', 0x0, 0x0)
r2 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
sendfile(r2, r1, 0x0, 0x7ffff000)

10.392319325s ago: executing program 6 (id=3178):
socket$inet6(0xa, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet6_udp(0xa, 0x2, 0x0)
r1 = fsopen(&(0x7f0000000040)='securityfs\x00', 0x0)
fcntl$dupfd(r0, 0x406, r1)
socket$can_j1939(0x1d, 0x2, 0x7)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
socket(0x2, 0x80805, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r3=>0x0], 0x40000012})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
ioctl$DRM_IOCTL_MODE_ATOMIC(r2, 0xc03864bc, &(0x7f0000000180)={0x300, 0x1, &(0x7f0000000340)=[r3], &(0x7f0000000040), &(0x7f0000000200), &(0x7f0000000240), 0x0, 0x7f})

9.522130002s ago: executing program 0 (id=3180):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
socket$nl_route(0x10, 0x3, 0x0)
openat$cgroup_type(0xffffffffffffffff, &(0x7f0000000280), 0x2, 0x0)
socket$unix(0x1, 0x5, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$tipc(0x1e, 0x2, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet_sctp(0x2, 0x5, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
socket$can_bcm(0x1d, 0x2, 0x2)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x5, 0x5, &(0x7f0000000580)=ANY=[@ANYRES8=r0], 0x0, 0x5b4230ff, 0x0, 0x0, 0x41100, 0x2a, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xf739}, 0x94)
r1 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty, 0xc7ec}, 0x1c)
socket$igmp6(0xa, 0x3, 0x2)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000004c0)=ANY=[@ANYBLOB="581b0800", @ANYRES16, @ANYBLOB="04002dbd7000f2dbdf254f0000000c00839ced540000680000004c007a8008000400000000181c000200134ecc4d908540c3c8630b918a29360800040004005111335ced5fd94e0800040009000000080004000300000048007a801400010003d869f47d8c428eaa74b31794b4b314b5000400000000000c0003004180081ee4f88f1a080004000c0000000c0003007858754e3c504054080004000800000004007a8020007a800800040005000000140002002929590c"], 0xd8}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg(r1, &(0x7f00000000c0)={0x0, 0x9521, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0x5dc}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)

9.294108054s ago: executing program 6 (id=3182):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
setgroups(0x400000000000026f, &(0x7f0000000080)=[0x0, 0xee00])
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x20008881)
syz_open_dev$evdev(0x0, 0x6b007d05, 0x400000)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r1, 0x40047438, 0x2c623465d0f4ead)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
recvmmsg(r3, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x40000000000012d, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x2e, &(0x7f0000000500)={@broadcast, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0xc, 0x0, @gue={{0x1, 0x0, 0x0, 0x0, 0x0, @void}}}}}}}, 0x0)
ioctl$VIDIOC_SUBSCRIBE_EVENT(0xffffffffffffffff, 0x4020565a, &(0x7f0000000140)={0x3, 0x98f90f, 0x1})
r4 = syz_open_dev$radio(&(0x7f00000000c0), 0x2, 0x2)
ioctl$VIDIOC_S_TUNER(r4, 0x4054561e, &(0x7f0000000100)={0x0, "02c0cf0c629c527e5162bf1cab3223b02749791e5c7465e0caa7b1214ac1efe3", 0x5, 0x100, 0x1aa35bb2, 0x4b70, 0x4, 0x2, 0x80000001, 0x401})
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="1b00"/20, @ANYRES32=0x1, @ANYBLOB="0400"/20, @ANYRES32=r2, @ANYRES32, @ANYBLOB="01000000020000000200"/21], 0x50)
openat$kvm(0xffffffffffffff9c, 0x0, 0x709843, 0x0)
dup(0xffffffffffffffff)

8.453727258s ago: executing program 0 (id=3183):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
close(0x4)
syz_open_procfs$namespace(0x0, &(0x7f0000000200)='ns/pid_for_children\x00')
unshare(0x6a040000)
r0 = socket(0x8, 0x3, 0x0)
ioctl$sock_netrom_SIOCADDRT(r0, 0x6180, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000000), r0)

8.44741667s ago: executing program 3 (id=3184):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f0000000200)={0x0, 0xa6, &(0x7f00000001c0)={&(0x7f00000000c0)={0x1c, 0x7, 0x6, 0x5, 0x0, 0x0, {0x1}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000080)

8.118169264s ago: executing program 6 (id=3186):
r0 = getpid()
prlimit64(r0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r2, 0xc0045005, &(0x7f0000000100)=0x1000)
write$dsp(r2, 0x0, 0x0)
close(0x3)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000200), 0x1d5080, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)

8.10702269s ago: executing program 3 (id=3187):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x2}, 0x94)
accept(0xffffffffffffffff, 0x0, 0x0)

8.064188837s ago: executing program 1 (id=3188):
socket$netlink(0x10, 0x3, 0x0)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={0x0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r1}, 0x10)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x6, [@var={0x4, 0x0, 0x0, 0xe, 0x3}, @typedef={0x3}, @ptr={0x0, 0x0, 0x0, 0x2, 0x4}, @volatile={0x0, 0x0, 0x0, 0xa, 0x2}]}, {0x0, [0x0, 0x0, 0x61, 0x61]}}, 0x0, 0x52}, 0x20)

7.202397619s ago: executing program 3 (id=3189):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f00000000c0)='pmap_register\x00', r2, 0x0, 0x3}, 0x18)
sendmsg$netlink(r1, &(0x7f0000000040)={0x0, 0x20, &(0x7f0000002580)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="140000002500010000000000f100000006"], 0x14}], 0x1, 0x0, 0x0, 0x400048c0}, 0x0)
recvfrom$unix(r0, 0x0, 0x0, 0x10002, 0x0, 0x0)

7.020168417s ago: executing program 1 (id=3190):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00'})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8800}, 0x0)

6.988622984s ago: executing program 7 (id=3191):
socket$kcm(0x10, 0x400000002, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
memfd_create(0x0, 0x3)

6.981701947s ago: executing program 6 (id=3192):
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000140))
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x9)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$inet6(0xa, 0x1, 0x8010000000000084)
openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
connect$inet6(r1, 0x0, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f0000000100)={0x3, 0x2, 0x1})
r2 = dup(0xffffffffffffffff)
mmap(&(0x7f0000fed000/0x12000)=nil, 0x12000, 0x2, 0x11, r2, 0x0)
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000006480)=ANY=[@ANYBLOB="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"], 0x1, 0x6213, &(0x7f0000000240)="$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")

5.751311298s ago: executing program 1 (id=3193):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000740)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r3, 0xc0045006, &(0x7f0000000080)=0x48)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000440)=ANY=[@ANYBLOB], 0x44}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000280)={'wlan1\x00'})
sendmsg$NL80211_CMD_SET_NOACK_MAP(r2, 0x0, 0x20000000)
socket(0x10, 0x3, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x4c}}, 0xc000)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40895}, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0)
r6 = fsopen(&(0x7f0000000100)='binder\x00', 0x0)
landlock_create_ruleset(&(0x7f00000000c0)={0x4302}, 0x18, 0x0)
r7 = fsopen(&(0x7f0000000280)='hfsplus\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r7, 0x1, &(0x7f0000000240)='uid', &(0x7f00000008c0)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80=\x8a\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\x1f\x03\x00\x00\x00\x00\x00\x00\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9ak\x00\x00\x00\x00\x00\x00\x00\n\xa72\xa3\xef^\xe7\x8f', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)

4.401886651s ago: executing program 7 (id=3194):
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'ip6tnl0\x00', <r2=>0x0})
setsockopt$packet_int(r1, 0x107, 0x14, &(0x7f0000000000)=0xf3e, 0x4)
sendto$packet(r1, &(0x7f0000000240)='V', 0x1, 0x0, &(0x7f0000000080)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @dev}, 0x14)

4.085757916s ago: executing program 3 (id=3195):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r1, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f00000000c0)=0x1, 0x4)

4.085279079s ago: executing program 6 (id=3196):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0xffb2)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000280)=@gcm_256={{0x304}, "3f60eb8f2777c39a", "5985e81ad0d9585bc175cbecd3f55eb699e3070cc206f3ba527c85bde06fbf19", "bc5ec28f", "b200"}, 0x38)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x4, &(0x7f0000000100)=@gcm_256={{}, "24747942338921a1", "d830005894bf527ae179a7173985202bbfb61b36f3678de8ea2d0d6616076243", "5615d9f5", "7c5cec21291a43fe"}, 0x38)

3.72598794s ago: executing program 3 (id=3197):
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000140))
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x9)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$inet6(0xa, 0x1, 0x8010000000000084)
openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
r2 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(r2, 0xc0145608, &(0x7f0000000100)={0x3, 0x2, 0x1})
dup(r2)
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000006480)=ANY=[@ANYBLOB="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"], 0x1, 0x6213, &(0x7f0000000240)="$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")
creat(&(0x7f00000000c0)='./file1\x00', 0x19)

2.961254693s ago: executing program 1 (id=3198):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f00000003c0)={'batadv_slave_1\x00', <r1=>0x0})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000400)={'batadv0\x00', <r2=>0x0})
sendmsg$BATADV_CMD_SET_HARDIF(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000006c0)={0x24, 0x0, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r1}]}, 0x24}, 0x1, 0x0, 0x0, 0x24000080}, 0x2400d884)

566.771013ms ago: executing program 1 (id=3199):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r0, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$RDS_FREE_MR(0xffffffffffffffff, 0x114, 0x3, &(0x7f0000001780)={{0x0, 0x6}}, 0x10)

518.341902ms ago: executing program 7 (id=3200):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2e, &(0x7f0000000480)={0x5, {{0x2, 0x0, @multicast1}}}, 0x108)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x1, 0x0, @empty, @multicast1}, @address_request}}}}, 0x0)

398.930098ms ago: executing program 7 (id=3201):
socket$netlink(0x10, 0x3, 0x0)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={0x0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r1}, 0x10)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x6, [@var={0x4, 0x0, 0x0, 0xe, 0x3}, @typedef={0x3}, @ptr={0x0, 0x0, 0x0, 0x2, 0x4}, @volatile={0x0, 0x0, 0x0, 0xa, 0x2}]}, {0x0, [0x0, 0x0, 0x61, 0x61]}}, 0x0, 0x52}, 0x20)

396.777479ms ago: executing program 3 (id=3202):
ioctl$SNDRV_TIMER_IOCTL_PVERSION(0xffffffffffffffff, 0x400454a4, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/diskstats\x00', 0x0, 0x0)
r4 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
sendfile(r4, r3, 0x0, 0x7ffff000)

204.429206ms ago: executing program 6 (id=3203):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x6, [@var={0x4, 0x0, 0x0, 0xe, 0x4, 0x2}]}, {0x0, [0x0, 0x2e, 0x0, 0x2e]}}, &(0x7f0000000100)=""/141, 0x2e, 0x8d, 0x1, 0x7}, 0x28)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000100)=ANY=[@ANYRES8, @ANYRES32, @ANYBLOB="0000000000000000400012800c0001"], 0x68}}, 0x0)
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000300)={0x0, 'syzkaller1\x00', {0x2}})
write$tun(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="06000000bbbbbbbbbbbbaaaaaaaaaabb88f5"], 0x72)

102.287384ms ago: executing program 0 (id=3204):
socket$kcm(0x10, 0x400000002, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
memfd_create(0x0, 0x3)

0s ago: executing program 1 (id=3205):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, 0x0, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x2}, 0x94)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{}, &(0x7f00000000c0), &(0x7f0000000100)}, 0x20)
syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb08004c000078ac1414000a0101004414050300000000000000000a010101000000008903ce0702000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344], 0x0)
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d77f1068", 0x9, 0xfffffffffffffffe)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

bdev: DVB: registering new adapter (E3C EC168 reference design)
[ 1075.998093][   T10] usb 2-1: media controller created
[ 1076.008512][   T49] veth1_macvtap: left promiscuous mode
[ 1076.034060][   T49] veth0_macvtap: left promiscuous mode
[ 1076.050001][   T49] veth1_vlan: left promiscuous mode
[ 1076.069087][   T49] veth0_vlan: left promiscuous mode
[ 1076.076455][   T10] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1076.377264][T14398] random: crng reseeded on system resumption
[ 1076.520839][T14387] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1077.221562][ T5857] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1077.231850][   T10] i2c i2c-1: ec100: i2c rd failed=-110 reg=33
[ 1077.436694][   T10] usb 2-1: USB disconnect, device number 17
[ 1077.540902][T13571] Bluetooth: hci3: command tx timeout
[ 1078.380434][T14407] sctp: failed to load transform for md5: -2
[ 1079.072060][T14423] overlay: ./file0 is not a directory
[ 1080.190774][T13571] Bluetooth: hci3: command tx timeout
[ 1082.636459][T14441] loop1: detected capacity change from 0 to 64
[ 1083.824378][T14448] loop0: detected capacity change from 0 to 47
[ 1084.077223][T14453] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2289'.
[ 1086.054946][T14412] Process accounting resumed
[ 1087.369544][T14339] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1087.511282][T14339] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1087.518524][T14339] bridge_slave_0: entered allmulticast mode
[ 1087.671379][T14339] bridge_slave_0: entered promiscuous mode
[ 1087.818314][T14339] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1087.871062][T14339] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1087.878349][T14339] bridge_slave_1: entered allmulticast mode
[ 1088.060362][T14339] bridge_slave_1: entered promiscuous mode
[ 1089.220376][T14339] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1089.244655][T14339] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1089.735933][T14493] netlink: 'syz.3.2298': attribute type 1 has an invalid length.
[ 1089.743798][T14493] netlink: 'syz.3.2298': attribute type 2 has an invalid length.
[ 1090.020665][T14339] team0: Port device team_slave_0 added
[ 1090.207964][T14339] team0: Port device team_slave_1 added
[ 1092.008744][T14507] overlay: ./file0 is not a directory
[ 1092.746748][T14339] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1092.774590][T14339] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1092.837328][T14339] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1092.882802][T14339] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1092.904443][T14339] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1093.025990][T14508] Process accounting resumed
[ 1093.032911][T14339] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1094.252976][T14531] syz.3.2309: attempt to access beyond end of device
[ 1094.252976][T14531] nbd3: rw=6144, sector=128, nr_sectors = 8 limit=0
[ 1094.266313][T14531] gfs2: error -5 reading superblock
[ 1094.840863][ T5865] Bluetooth: hci3: command 0x0405 tx timeout
[ 1095.218785][T14537] sctp: failed to load transform for md5: -2
[ 1095.642628][T14339] hsr_slave_0: entered promiscuous mode
[ 1095.649306][T14339] hsr_slave_1: entered promiscuous mode
[ 1095.681755][T14339] debugfs: 'hsr0' already exists in 'hsr'
[ 1095.687578][T14339] Cannot create hsr debugfs directory
[ 1097.299146][T14551] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2315'.
[ 1097.825402][T14561] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1099.730969][T14339] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1099.746036][T14339] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1099.986901][T14339] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1100.075085][T14339] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1100.333877][T14579] syz.1.2323: attempt to access beyond end of device
[ 1100.333877][T14579] nbd1: rw=6144, sector=128, nr_sectors = 8 limit=0
[ 1100.347309][T14579] gfs2: error -5 reading superblock
[ 1101.087687][T14339] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1101.192364][T14339] 8021q: adding VLAN 0 to HW filter on device team0
[ 1101.223990][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1101.231292][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1101.297819][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1101.305057][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1101.542662][T14593] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2326'.
[ 1101.747285][T14593] 8021q: VLANs not supported on wg1
[ 1102.388210][T14601] loop1: detected capacity change from 0 to 512
[ 1103.346246][T14609] binder: 14608:14609 ioctl c0306201 0 returned -14
[ 1104.086276][T14339] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1107.013465][T14645] loop1: detected capacity change from 0 to 64
[ 1107.130470][T14339] veth0_vlan: entered promiscuous mode
[ 1107.145014][T14339] veth1_vlan: entered promiscuous mode
[ 1107.270377][T14339] veth0_macvtap: entered promiscuous mode
[ 1107.325329][T14339] veth1_macvtap: entered promiscuous mode
[ 1107.384476][T14339] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1107.454189][T14339] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1107.465730][T14654] binder: 14652:14654 ioctl c0306201 0 returned -14
[ 1107.582169][T10843] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1107.629458][   T49] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1107.678145][   T49] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1107.741683][   T49] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1108.130365][ T3470] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1108.159769][ T3470] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1108.239568][T14667] loop3: detected capacity change from 0 to 64
[ 1108.328560][   T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1108.792772][   T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1109.661599][T14682] loop7: detected capacity change from 0 to 512
[ 1109.689968][T14682] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1109.712123][T14682] ext4: Bad value for 'stripe'
[ 1110.423250][T14691] loop7: detected capacity change from 0 to 128
[ 1111.749053][   T30] audit: type=1400 audit(1752210427.425:120): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name="sched_switch" pid=14696 comm="syz.7.2351"
[ 1113.389907][T14715] loop7: detected capacity change from 0 to 1024
[ 1113.398566][T14715] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1113.405079][T14715] EXT4-fs: Ignoring removed bh option
[ 1113.475713][T14715] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1114.692126][T14727] loop1: detected capacity change from 0 to 64
[ 1114.967000][T14339] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1115.333310][T14739] loop0: detected capacity change from 0 to 512
[ 1115.352431][T14739] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1115.398344][T14739] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1115.471138][T14739] ext4 filesystem being mounted at /526/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1115.571996][   T30] audit: type=1800 audit(1752210431.255:121): pid=14739 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2363" name="file2" dev="loop0" ino=16 res=0 errno=0
[ 1115.619329][   T30] audit: type=1326 audit(1752210431.255:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14738 comm="syz.0.2363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83a9f8e929 code=0x7ffc0000
[ 1115.680852][   T30] audit: type=1326 audit(1752210431.255:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14738 comm="syz.0.2363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83a9f8e929 code=0x7ffc0000
[ 1115.707358][T14748] loop3: detected capacity change from 0 to 2048
[ 1115.729510][ T5854] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1115.755373][   T30] audit: type=1326 audit(1752210431.275:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14738 comm="syz.0.2363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f83a9f8e929 code=0x7ffc0000
[ 1115.787947][T14748] UDF-fs: warning (device loop3): udf_fill_super: No partition found (2)
[ 1115.832364][   T30] audit: type=1326 audit(1752210431.275:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14738 comm="syz.0.2363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83a9f8e929 code=0x7ffc0000
[ 1115.880928][   T30] audit: type=1326 audit(1752210431.275:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14738 comm="syz.0.2363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f83a9f8e929 code=0x7ffc0000
[ 1115.948160][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[ 1115.956862][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.211646][   T30] audit: type=1326 audit(1752210431.275:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14738 comm="syz.0.2363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83a9f8e929 code=0x7ffc0000
[ 1116.347883][   T30] audit: type=1326 audit(1752210431.275:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14738 comm="syz.0.2363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f83a9f8e929 code=0x7ffc0000
[ 1116.558757][T14736] loop6: detected capacity change from 0 to 32768
[ 1116.600224][   T30] audit: type=1326 audit(1752210431.295:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14738 comm="syz.0.2363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83a9f8e929 code=0x7ffc0000
[ 1116.762292][   T30] audit: type=1326 audit(1752210431.295:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14738 comm="syz.0.2363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f83a9f8e929 code=0x7ffc0000
[ 1116.816824][   T30] audit: type=1326 audit(1752210431.295:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14738 comm="syz.0.2363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83a9f8e929 code=0x7ffc0000
[ 1116.840307][   T30] audit: type=1326 audit(1752210431.295:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14738 comm="syz.0.2363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83a9f8e929 code=0x7ffc0000
[ 1116.895593][T14736] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[ 1117.054547][T14761] gfs2: not a GFS2 filesystem
[ 1117.258251][T12220] ocfs2: Unmounting device (7,6) on (node local)
[ 1117.782111][T14776] tmpfs: Bad value for 'mpol'
[ 1120.148864][T14793] loop3: detected capacity change from 0 to 32768
[ 1120.163132][T14793] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.2375 (14793)
[ 1120.188002][T14793] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1120.198476][T14793] BTRFS info (device loop3): using crc32c (crc32c-lib) checksum algorithm
[ 1120.207332][T14793] BTRFS info (device loop3): disk space caching is enabled
[ 1120.214578][T14793] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[ 1120.788068][T14793] BTRFS info (device loop3): rebuilding free space tree
[ 1120.821187][T14793] BTRFS info (device loop3): disabling free space tree
[ 1120.828728][T14793] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1120.838577][T14793] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1121.357755][ T5857] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1121.502415][T14817] loop6: detected capacity change from 0 to 64
[ 1124.192336][T14839] block device autoloading is deprecated and will be removed.
[ 1124.262760][T14841] loop1: detected capacity change from 0 to 1024
[ 1124.370126][   T49] hfsplus: b-tree write err: -5, ino 4
[ 1126.795367][T14880] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2398'.
[ 1127.430663][ T2154] usb 7-1: new full-speed USB device number 5 using dummy_hcd
[ 1127.592486][ T2154] usb 7-1: config 1 interface 0 has no altsetting 0
[ 1127.601795][ T2154] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 1128.295479][ T2154] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1128.305212][ T2154] usb 7-1: Product: syz
[ 1128.309576][ T2154] usb 7-1: Manufacturer: syz
[ 1128.314768][ T2154] usb 7-1: SerialNumber: syz
[ 1128.494297][T14897] Invalid ELF header magic: != ELF
[ 1129.470039][T14879] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1129.501969][ T2154] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 5 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[ 1129.560420][T14879] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1129.845586][T14907] loop3: detected capacity change from 0 to 64
[ 1129.897404][ T2154] usb 7-1: USB disconnect, device number 5
[ 1129.907291][ T2154] usblp0: removed
[ 1130.477500][T14911] syz.1.2406: attempt to access beyond end of device
[ 1130.477500][T14911] nbd1: rw=6144, sector=128, nr_sectors = 8 limit=0
[ 1130.477557][T14911] gfs2: error -5 reading superblock
[ 1130.504691][T14915] netlink: 'syz.7.2407': attribute type 2 has an invalid length.
[ 1130.504763][T14915] netlink: 'syz.7.2407': attribute type 8 has an invalid length.
[ 1130.504819][T14915] netlink: 132 bytes leftover after parsing attributes in process `syz.7.2407'.
[ 1131.363257][T14932] loop1: detected capacity change from 0 to 64
[ 1135.274362][T14964] syz.1.2419: attempt to access beyond end of device
[ 1135.274362][T14964] nbd1: rw=6144, sector=128, nr_sectors = 8 limit=0
[ 1135.288119][T14964] gfs2: error -5 reading superblock
[ 1135.925250][T14965] 8021q: VLANs not supported on ipvlan1
[ 1135.941868][T14965] comedi comedi0: Minor -2147450880 is invalid!
[ 1136.275527][T14971] loop1: detected capacity change from 0 to 64
[ 1136.800589][T14962] loop3: detected capacity change from 0 to 32768
[ 1136.875910][T14962] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1137.687703][T14993] loop6: detected capacity change from 0 to 64
[ 1137.721313][T14962] XFS (loop3): Ending clean mount
[ 1137.769243][T14962] XFS (loop3): Quotacheck needed: Please wait.
[ 1137.859688][T14962] XFS (loop3): Quotacheck: Done.
[ 1137.957138][   T30] audit: type=1800 audit(1752210456.628:133): pid=14962 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2421" name="file1" dev="loop3" ino=9286 res=0 errno=0
[ 1140.210310][T15021] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[ 1140.266498][T15021] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[ 1141.645677][T15035] loop0: detected capacity change from 0 to 64
[ 1145.641615][T15068] netlink: 116 bytes leftover after parsing attributes in process `syz.7.2446'.
[ 1145.799136][T15066] tmpfs: Bad value for 'mpol'
[ 1145.804922][T15066] CIFS mount error: No usable UNC path provided in device string!
[ 1145.804922][T15066] 
[ 1145.815234][T15066] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1148.212797][T15094] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1149.300173][   T30] audit: type=1326 audit(1752210467.958:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15096 comm="syz.3.2456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c3218e929 code=0x7ffc0000
[ 1149.830606][   T30] audit: type=1326 audit(1752210468.468:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15096 comm="syz.3.2456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c3218e929 code=0x7ffc0000
[ 1151.960733][ T2154] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[ 1152.028310][T15129] syz.1.2463: attempt to access beyond end of device
[ 1152.028310][T15129] nbd1: rw=6144, sector=128, nr_sectors = 8 limit=0
[ 1152.041740][T15129] gfs2: error -5 reading superblock
[ 1152.756673][ T2154] usb 1-1: config 220 has an invalid interface number: 76 but max is 2
[ 1152.765711][ T2154] usb 1-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[ 1152.775171][ T2154] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[ 1152.792034][ T2154] usb 1-1: config 220 has no interface number 2
[ 1152.837804][T15137] loop1: detected capacity change from 0 to 64
[ 1153.034119][ T2154] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[ 1153.047364][ T2154] usb 1-1: config 220 interface 0 has no altsetting 0
[ 1153.054322][ T2154] usb 1-1: config 220 interface 76 has no altsetting 0
[ 1153.072203][ T2154] usb 1-1: config 220 interface 1 has no altsetting 0
[ 1153.081979][ T2154] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1153.258232][T15141] block device autoloading is deprecated and will be removed.
[ 1153.373738][ T2154] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1153.823859][ T2154] usb 1-1: Product: syz
[ 1153.828108][ T2154] usb 1-1: Manufacturer: syz
[ 1153.842237][ T2154] usb 1-1: SerialNumber: syz
[ 1154.877445][ T2154] usb 1-1: selecting invalid altsetting 0
[ 1154.888762][ T2154] usb 1-1: Found UVC 7.01 device syz (8086:0b07)
[ 1154.898845][ T2154] usb 1-1: No valid video chain found.
[ 1154.918192][ T2154] usb 1-1: selecting invalid altsetting 0
[ 1155.004677][ T2154] usbtest 1-1:220.1: probe with driver usbtest failed with error -22
[ 1155.195348][ T2154] usb 1-1: USB disconnect, device number 9
[ 1155.606984][T15158] netlink: 32 bytes leftover after parsing attributes in process `syz.6.2470'.
[ 1156.214814][T15166] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1156.488400][T15164] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2474'.
[ 1159.704820][T15181] syz.3.2477: attempt to access beyond end of device
[ 1159.704820][T15181] nbd3: rw=6144, sector=128, nr_sectors = 8 limit=0
[ 1159.718155][T15181] gfs2: error -5 reading superblock
[ 1167.469097][T15224] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2491'.
[ 1167.505308][T15226] loop1: detected capacity change from 0 to 1024
[ 1167.520254][T15224] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2491'.
[ 1167.559406][T15226] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1167.579382][T15226] ext4 filesystem being mounted at /514/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1168.151456][T15233] random: crng reseeded on system resumption
[ 1168.714691][ T5855] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1168.726375][T15232] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1171.734323][T15263] loop7: detected capacity change from 0 to 8
[ 1171.835160][T15263] MTD: Attempt to mount non-MTD device "/dev/loop7"
[ 1172.082927][T15261] cramfs: Error -3 while decompressing!
[ 1172.380707][T15261] cramfs: ffffffff99c37ae2(26)->ffff88807047b000(4096)
[ 1172.410211][T15261] cramfs: Error -3 while decompressing!
[ 1172.417423][T15261] cramfs: ffffffff99c37afc(16)->ffff88807047a000(4096)
[ 1172.626804][T15261] cramfs: Error -3 while decompressing!
[ 1172.645955][T15261] cramfs: ffffffff99c37ae2(26)->ffff88807047b000(4096)
[ 1172.810748][   T30] audit: type=1800 audit(1752210491.478:136): pid=15261 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.2499" name="file2" dev="loop7" ino=348 res=0 errno=0
[ 1176.104456][T15301] trusted_key: encrypted_key: insufficient parameters specified
[ 1176.340840][    T9] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[ 1177.376639][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.383331][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[ 1177.402590][    T9] usb 1-1: config 220 has an invalid interface number: 76 but max is 2
[ 1177.422227][    T9] usb 1-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[ 1177.467547][    T9] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[ 1177.631169][    T9] usb 1-1: config 220 has no interface number 2
[ 1178.090954][    T9] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[ 1179.899579][    T9] usb 1-1: config 220 interface 0 has no altsetting 0
[ 1179.906910][    T9] usb 1-1: config 220 interface 76 has no altsetting 0
[ 1179.914392][    T9] usb 1-1: config 220 interface 1 has no altsetting 0
[ 1179.922161][    T9] usb 1-1: string descriptor 0 read error: -71
[ 1179.928428][    T9] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1179.938096][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1180.012228][    T9] usb 1-1: can't set config #220, error -71
[ 1180.019450][    T9] usb 1-1: USB disconnect, device number 10
[ 1180.058402][T15331] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2520'.
[ 1181.886098][T15345] trusted_key: encrypted_key: insufficient parameters specified
[ 1182.251787][T15354] netlink: 'syz.7.2529': attribute type 1 has an invalid length.
[ 1182.259718][T15354] netlink: 'syz.7.2529': attribute type 2 has an invalid length.
[ 1182.692019][T15365] IPVS: sync thread started: state = BACKUP, mcast_ifn = hsr0, syncid = 4, id = 0
[ 1183.374899][T15368] netlink: 32 bytes leftover after parsing attributes in process `syz.6.2532'.
[ 1188.736885][T15406] trusted_key: encrypted_key: insufficient parameters specified
[ 1189.219280][T15408] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[ 1189.242395][T15408] VFS: Can't find a romfs filesystem on dev nullb0.
[ 1189.242395][T15408] 
[ 1189.443049][T15412] loop6: detected capacity change from 0 to 64
[ 1190.594586][T15420] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2546'.
[ 1190.611032][T15420] loop0: detected capacity change from 0 to 256
[ 1190.665684][T15423] netlink: 'syz.3.2543': attribute type 1 has an invalid length.
[ 1190.673505][T15423] netlink: 'syz.3.2543': attribute type 2 has an invalid length.
[ 1191.595996][T10098] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[ 1191.762406][T10098] usb 7-1: config 220 has an invalid interface number: 76 but max is 2
[ 1191.811042][T10098] usb 7-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[ 1191.832206][T10098] usb 7-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[ 1191.866989][T10098] usb 7-1: config 220 has no interface number 2
[ 1191.920569][T10098] usb 7-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[ 1192.011492][T10098] usb 7-1: config 220 interface 0 has no altsetting 0
[ 1192.029328][T10098] usb 7-1: config 220 interface 76 has no altsetting 0
[ 1192.047732][T10098] usb 7-1: config 220 interface 1 has no altsetting 0
[ 1192.079491][T10098] usb 7-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1192.110809][T10098] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1192.139503][T10098] usb 7-1: Product: syz
[ 1192.166688][T10098] usb 7-1: Manufacturer: syz
[ 1192.172589][T10098] usb 7-1: SerialNumber: syz
[ 1193.474462][T10098] usb 7-1: Found UVC 7.01 device syz (8086:0b07)
[ 1193.940528][T15439] loop1: detected capacity change from 0 to 32768
[ 1193.963643][T15439] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.2554 (15439)
[ 1193.999982][T15439] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1194.010170][T15439] BTRFS info (device loop1): using crc32c (crc32c-lib) checksum algorithm
[ 1194.019011][T15439] BTRFS info (device loop1): disk space caching is enabled
[ 1194.026246][T15439] BTRFS warning (device loop1): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[ 1194.081775][T10098] usb 7-1: No valid video chain found.
[ 1194.145303][T10098] usb 7-1: selecting invalid altsetting 0
[ 1194.224151][T10098] usb 7-1: selecting invalid altsetting 0
[ 1194.230050][T10098] usbtest 7-1:220.1: probe with driver usbtest failed with error -22
[ 1194.257377][T15439] BTRFS info (device loop1): rebuilding free space tree
[ 1194.276997][T15439] BTRFS info (device loop1): disabling free space tree
[ 1194.284038][T15439] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1194.293751][T15439] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1194.493032][T10098] usb 7-1: USB disconnect, device number 6
[ 1194.546750][T15461] trusted_key: encrypted_key: insufficient parameters specified
[ 1194.706945][ T5855] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1194.868636][T15467] 8021q: VLANs not supported on ipvlan1
[ 1195.860211][T15472] gfs2: not a GFS2 filesystem
[ 1195.896354][T15471] loop6: detected capacity change from 0 to 1024
[ 1197.247354][T15481] loop1: detected capacity change from 0 to 256
[ 1197.961886][T15481] exFAT-fs (loop1): failed to read boot sector
[ 1198.220637][T15481] exFAT-fs (loop1): failed to recognize exfat type
[ 1198.344357][T15492] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2558'.
[ 1198.935835][T15493] netlink: 'syz.7.2566': attribute type 4 has an invalid length.
[ 1198.949083][T15493] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1199.210598][T10098] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[ 1199.940646][T10098] usb 1-1: config 220 has an invalid interface number: 76 but max is 2
[ 1200.732570][T10098] usb 1-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[ 1200.778676][T10098] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[ 1200.792671][T10098] usb 1-1: config 220 has no interface number 2
[ 1200.800304][T10098] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[ 1200.814422][T10098] usb 1-1: config 220 interface 0 has no altsetting 0
[ 1200.821344][T10098] usb 1-1: config 220 interface 76 has no altsetting 0
[ 1200.829493][T10098] usb 1-1: config 220 interface 1 has no altsetting 0
[ 1200.843531][T10098] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1200.852924][T10098] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1200.861053][T10098] usb 1-1: Product: syz
[ 1200.865331][T10098] usb 1-1: Manufacturer: syz
[ 1200.870031][T10098] usb 1-1: SerialNumber: syz
[ 1201.456826][T10098] usb 1-1: Found UVC 7.01 device syz (8086:0b07)
[ 1201.484926][T10098] usb 1-1: No valid video chain found.
[ 1201.538295][T10098] usb 1-1: selecting invalid altsetting 0
[ 1201.742624][T10098] usb 1-1: selecting invalid altsetting 0
[ 1201.748508][T10098] usbtest 1-1:220.1: probe with driver usbtest failed with error -22
[ 1202.406363][T10098] usb 1-1: USB disconnect, device number 11
[ 1202.709714][T15519] trusted_key: encrypted_key: insufficient parameters specified
[ 1205.489368][T15543] netlink: 16 bytes leftover after parsing attributes in process `syz.7.2578'.
[ 1208.217996][T15560] netlink: 'syz.7.2584': attribute type 4 has an invalid length.
[ 1208.282910][T15560] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1208.340777][    T9] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[ 1208.525882][    T9] usb 1-1: config 220 has an invalid interface number: 76 but max is 2
[ 1208.568643][    T9] usb 1-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[ 1208.790820][    T9] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[ 1208.801919][    T9] usb 1-1: config 220 has no interface number 2
[ 1208.808718][    T9] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[ 1208.831034][    T9] usb 1-1: config 220 interface 0 has no altsetting 0
[ 1208.837866][    T9] usb 1-1: config 220 interface 76 has no altsetting 0
[ 1208.845589][    T9] usb 1-1: config 220 interface 1 has no altsetting 0
[ 1209.512766][    T9] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1209.529184][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1209.602565][    T9] usb 1-1: Product: syz
[ 1209.627982][    T9] usb 1-1: Manufacturer: syz
[ 1209.704636][    T9] usb 1-1: SerialNumber: syz
[ 1210.149773][    T9] usb 1-1: Found UVC 7.01 device syz (8086:0b07)
[ 1210.280510][    T9] usb 1-1: No valid video chain found.
[ 1210.286100][    T9] usb 1-1: selecting invalid altsetting 0
[ 1210.348008][    T9] usb 1-1: selecting invalid altsetting 0
[ 1210.363388][    T9] usbtest 1-1:220.1: probe with driver usbtest failed with error -22
[ 1210.387827][    T9] usb 1-1: USB disconnect, device number 12
[ 1210.615339][T15574] syz.3.2590: attempt to access beyond end of device
[ 1210.615339][T15574] nbd3: rw=6144, sector=128, nr_sectors = 8 limit=0
[ 1210.629060][T15574] gfs2: error -5 reading superblock
[ 1212.171808][T15588] sctp: failed to load transform for md5: -2
[ 1212.285873][T15597] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2594'.
[ 1213.540671][T15607] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1216.574653][T15616] netlink: 'syz.6.2601': attribute type 4 has an invalid length.
[ 1216.613729][T15616] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1216.635768][T15618] loop7: detected capacity change from 0 to 64
[ 1217.226001][T15623] syz.3.2603: attempt to access beyond end of device
[ 1217.226001][T15623] nbd3: rw=6144, sector=128, nr_sectors = 8 limit=0
[ 1217.239445][T15623] gfs2: error -5 reading superblock
[ 1222.944003][T15654] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1224.516294][T15672] netlink: 'syz.7.2617': attribute type 4 has an invalid length.
[ 1224.521437][T15671] loop6: detected capacity change from 0 to 64
[ 1227.974533][T15699] loop1: detected capacity change from 0 to 8
[ 1229.916679][T15716] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2628'.
[ 1230.102144][T15719] 8021q: VLANs not supported on wg1
[ 1231.884639][T15730] loop7: detected capacity change from 0 to 64
[ 1232.304039][T15734] gfs2: not a GFS2 filesystem
[ 1237.199366][T15760] overlayfs: failed to resolve './file1': -2
[ 1237.855719][T15766] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1239.232764][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[ 1239.239148][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[ 1239.314647][T15767] netlink: 'syz.3.2640': attribute type 4 has an invalid length.
[ 1239.337811][T15767] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1240.354972][T15778] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2644'.
[ 1241.048387][T15783] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2645'.
[ 1241.747510][T15788] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1244.932973][T15812] overlayfs: failed to resolve './file1': -2
[ 1246.782446][T15827] overlayfs: failed to resolve './file0': -2
[ 1247.538315][T15829] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1248.533789][T15838] netlink: 'syz.1.2660': attribute type 4 has an invalid length.
[ 1248.570541][T15838] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1249.210023][T15837] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2658'.
[ 1251.760595][    T9] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[ 1253.010556][    T9] usb 7-1: device descriptor read/64, error -71
[ 1253.277598][T15874] overlayfs: failed to resolve './file0': -2
[ 1254.010696][    T9] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[ 1254.108207][T15877] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[ 1254.121312][T15877] VFS: Can't find a romfs filesystem on dev nullb0.
[ 1254.121312][T15877] 
[ 1254.210996][    T9] usb 7-1: device descriptor read/64, error -71
[ 1254.601172][    T9] usb usb7-port1: attempt power cycle
[ 1256.558254][T15898] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2676'.
[ 1259.210904][T13571] Bluetooth: hci3: command 0x0405 tx timeout
[ 1259.497046][T15917] trusted_key: encrypted_key: insufficient parameters specified
[ 1260.280882][    T9] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[ 1260.342141][T15921] loop6: detected capacity change from 0 to 64
[ 1260.431531][    T9] usb 2-1: device descriptor read/64, error -71
[ 1260.560748][T15923] gfs2: not a GFS2 filesystem
[ 1260.840530][    T9] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[ 1260.990706][    T9] usb 2-1: device descriptor read/64, error -71
[ 1261.114657][    T9] usb usb2-port1: attempt power cycle
[ 1261.694811][    T9] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[ 1261.977142][    T9] usb 2-1: device descriptor read/8, error -71
[ 1262.381197][    T9] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[ 1262.446978][    T9] usb 2-1: device descriptor read/8, error -71
[ 1262.653936][    T9] usb usb2-port1: unable to enumerate USB device
[ 1265.662527][T15964] loop0: detected capacity change from 0 to 64
[ 1265.984096][T15969] netlink: 'syz.3.2693': attribute type 4 has an invalid length.
[ 1265.991992][T15969] netlink: 17 bytes leftover after parsing attributes in process `syz.3.2693'.
[ 1266.210197][T15973] Invalid ELF header magic: != ELF
[ 1267.193355][T15961] delete_channel: no stack
[ 1267.364567][T15978] loop1: detected capacity change from 0 to 64
[ 1268.155418][T15980] loop7: detected capacity change from 0 to 8
[ 1270.961334][T16006] Invalid ELF header magic: != ELF
[ 1272.093077][T16010] random: crng reseeded on system resumption
[ 1273.495745][T16016] netlink: 'syz.6.2709': attribute type 4 has an invalid length.
[ 1273.505460][T16016] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1273.725181][T16022] loop1: detected capacity change from 0 to 32768
[ 1273.740022][T16022] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.2711 (16022)
[ 1273.759859][T16022] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1273.770036][T16022] BTRFS info (device loop1): using crc32c (crc32c-lib) checksum algorithm
[ 1273.778712][T16022] BTRFS info (device loop1): disk space caching is enabled
[ 1273.785950][T16022] BTRFS warning (device loop1): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[ 1273.925041][T16022] BTRFS info (device loop1): rebuilding free space tree
[ 1273.957297][T16022] BTRFS info (device loop1): disabling free space tree
[ 1273.964328][T16022] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1273.974068][T16022] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1274.481515][T16042] netlink: 'syz.3.2712': attribute type 4 has an invalid length.
[ 1274.489301][T16042] netlink: 17 bytes leftover after parsing attributes in process `syz.3.2712'.
[ 1275.087147][T16033] delete_channel: no stack
[ 1275.098754][T16044] overlayfs: failed to resolve './file1': -2
[ 1275.110396][ T5855] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1276.401953][T16058] loop7: detected capacity change from 0 to 1024
[ 1276.597223][T16058] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1276.680699][T16058] ext4 filesystem being mounted at /75/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1277.397993][T16066] loop1: detected capacity change from 0 to 64
[ 1277.695152][T16072] random: crng reseeded on system resumption
[ 1278.152775][T16073] loop0: detected capacity change from 0 to 64
[ 1278.180908][T14339] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1281.094512][T16094] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2725'.
[ 1282.114826][T16095] overlayfs: failed to resolve './file1': -2
[ 1283.403103][T16109] overlayfs: failed to resolve './file0': -2
[ 1283.567760][T16112] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2734'.
[ 1284.480278][T13571] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1284.498644][T13571] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1284.507299][T13571] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1284.532118][T13571] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1284.542192][    T9] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[ 1284.559917][T13571] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1284.702391][    T9] usb 2-1: device descriptor read/64, error -71
[ 1284.922379][T16130] loop6: detected capacity change from 0 to 64
[ 1284.929013][   T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1284.990669][    T9] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[ 1285.071360][   T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1285.140530][    T9] usb 2-1: device descriptor read/64, error -71
[ 1285.187649][   T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1285.259027][    T9] usb usb2-port1: attempt power cycle
[ 1285.457125][   T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1285.600676][    T9] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[ 1285.655404][    T9] usb 2-1: device descriptor read/8, error -71
[ 1285.900754][    T9] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[ 1286.042132][    T9] usb 2-1: device descriptor read/8, error -71
[ 1286.168155][    T9] usb usb2-port1: unable to enumerate USB device
[ 1286.618350][T16149] loop7: detected capacity change from 0 to 1024
[ 1286.631372][T16148] overlayfs: failed to resolve './file0': -2
[ 1286.658232][T13571] Bluetooth: hci5: command tx timeout
[ 1287.922468][T16157] binder: BINDER_SET_CONTEXT_MGR already set
[ 1287.931312][T16157] binder: 16154:16157 ioctl 4018620d 200000000040 returned -16
[ 1288.183510][   T30] audit: type=1326 audit(1752210606.858:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16160 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c3218e929 code=0x7ffc0000
[ 1288.310397][   T30] audit: type=1326 audit(1752210606.858:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16160 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c3218e929 code=0x7ffc0000
[ 1288.333512][   T30] audit: type=1326 audit(1752210606.878:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16160 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f7c3218e929 code=0x7ffc0000
[ 1288.355592][   T30] audit: type=1326 audit(1752210606.878:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16160 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c3218e929 code=0x7ffc0000
[ 1288.380161][   T30] audit: type=1326 audit(1752210606.878:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16160 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f7c3218e929 code=0x7ffc0000
[ 1288.427893][   T30] audit: type=1326 audit(1752210606.878:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16160 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c3218e929 code=0x7ffc0000
[ 1288.464606][   T30] audit: type=1326 audit(1752210606.878:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16160 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f7c3218e929 code=0x7ffc0000
[ 1288.559527][   T30] audit: type=1326 audit(1752210606.898:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16160 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c3218e929 code=0x7ffc0000
[ 1288.770474][T13571] Bluetooth: hci5: command tx timeout
[ 1288.795326][   T30] audit: type=1326 audit(1752210606.898:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16160 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f7c3218e929 code=0x7ffc0000
[ 1288.818023][   T30] audit: type=1326 audit(1752210606.898:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16160 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c3218e929 code=0x7ffc0000
[ 1289.402100][   T12] bond0 (unregistering): Released all slaves
[ 1289.439353][T16122] chnl_net:caif_netlink_parms(): no params data found
[ 1289.607421][   T12] IPVS: stopping backup sync thread 15365 ...
[ 1290.060156][T16182] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[ 1290.070005][T16182] VFS: Can't find a romfs filesystem on dev nullb0.
[ 1290.070005][T16182] 
[ 1290.120690][T16122] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1290.134327][T16122] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1290.180880][T16122] bridge_slave_0: entered allmulticast mode
[ 1290.199865][T16122] bridge_slave_0: entered promiscuous mode
[ 1290.243702][T16122] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1290.257356][T16122] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1290.280960][T16122] bridge_slave_1: entered allmulticast mode
[ 1290.304015][T16122] bridge_slave_1: entered promiscuous mode
[ 1290.661269][T16122] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1290.728457][T16122] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1290.810675][T13571] Bluetooth: hci5: command tx timeout
[ 1290.877486][   T12] hsr_slave_0: left promiscuous mode
[ 1290.910634][   T12] hsr_slave_1: left promiscuous mode
[ 1291.070612][   T12] veth1_macvtap: left promiscuous mode
[ 1291.076223][   T12] veth0_macvtap: left promiscuous mode
[ 1291.137882][   T12] veth1_vlan: left promiscuous mode
[ 1291.153672][   T12] veth0_vlan: left promiscuous mode
[ 1291.177129][T16189] overlayfs: failed to resolve './file0': -2
[ 1292.153756][T16195] netlink: 'syz.7.2756': attribute type 4 has an invalid length.
[ 1292.161667][T16195] netlink: 17 bytes leftover after parsing attributes in process `syz.7.2756'.
[ 1292.471247][T16204] loop1: detected capacity change from 0 to 512
[ 1292.489312][T16204] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1292.568444][T16190] delete_channel: no stack
[ 1292.573491][   T10] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[ 1292.594224][T16204] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1292.623538][T16204] ext4 filesystem being mounted at /564/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1292.740934][   T10] usb 7-1: no configurations
[ 1292.745622][   T10] usb 7-1: can't read configurations, error -22
[ 1292.869581][ T5855] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1292.890634][T13571] Bluetooth: hci5: command tx timeout
[ 1292.930046][   T10] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[ 1293.135846][   T10] usb 7-1: no configurations
[ 1293.155145][   T10] usb 7-1: can't read configurations, error -22
[ 1293.202685][   T10] usb usb7-port1: attempt power cycle
[ 1293.474434][T16214] netlink: 'syz.3.2760': attribute type 4 has an invalid length.
[ 1293.599213][   T10] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[ 1293.629653][T16217] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1293.643752][   T10] usb 7-1: no configurations
[ 1293.648395][   T10] usb 7-1: can't read configurations, error -22
[ 1293.960650][   T10] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[ 1294.035191][   T10] usb 7-1: no configurations
[ 1294.039830][   T10] usb 7-1: can't read configurations, error -22
[ 1294.059044][   T10] usb usb7-port1: unable to enumerate USB device
[ 1294.764179][T16226] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[ 1294.771844][T16226] VFS: Can't find a romfs filesystem on dev nullb0.
[ 1294.771844][T16226] 
[ 1295.542928][   T30] kauditd_printk_skb: 13 callbacks suppressed
[ 1295.542946][   T30] audit: type=1326 audit(1752210614.218:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16227 comm="syz.6.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1295.574848][T16122] team0: Port device team_slave_0 added
[ 1295.728042][T16122] team0: Port device team_slave_1 added
[ 1295.761592][   T30] audit: type=1326 audit(1752210614.218:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16227 comm="syz.6.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1295.785772][   T30] audit: type=1326 audit(1752210614.218:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16227 comm="syz.6.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1296.483305][   T30] audit: type=1326 audit(1752210614.218:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16227 comm="syz.6.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1296.580277][   T30] audit: type=1326 audit(1752210614.228:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16227 comm="syz.6.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1296.604453][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1296.613150][   T30] audit: type=1326 audit(1752210614.228:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16227 comm="syz.6.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1296.635526][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1296.643719][   T30] audit: type=1326 audit(1752210614.228:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16227 comm="syz.6.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1296.721140][T16122] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1296.728099][T16122] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1296.754084][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1296.760802][   T30] audit: type=1326 audit(1752210614.228:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16227 comm="syz.6.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1296.784622][T16122] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1296.795446][   T30] audit: type=1326 audit(1752210614.228:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16227 comm="syz.6.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1296.817957][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1296.920663][   T30] audit: type=1326 audit(1752210614.228:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16227 comm="syz.6.2764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1296.952344][T16122] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1296.961755][T16122] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1296.990980][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1297.027401][T16122] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1297.213275][ T5865] Bluetooth: hci3: command 0x0405 tx timeout
[ 1297.270243][T16122] hsr_slave_0: entered promiscuous mode
[ 1297.304159][T16122] hsr_slave_1: entered promiscuous mode
[ 1297.323824][T16122] debugfs: 'hsr0' already exists in 'hsr'
[ 1297.329728][T16122] Cannot create hsr debugfs directory
[ 1297.507358][   T12] IPVS: stop unused estimator thread 0...
[ 1300.022739][T16253] loop6: detected capacity change from 0 to 64
[ 1300.146282][T16122] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1300.188514][T16122] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1300.231067][T16122] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1300.269790][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[ 1300.280173][T16122] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1300.280517][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[ 1300.579778][T16122] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1300.632719][T16122] 8021q: adding VLAN 0 to HW filter on device team0
[ 1300.658981][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1300.666351][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1300.709763][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1300.717024][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1300.742645][ T6004] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[ 1301.123531][T16122] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1301.140941][ T6004] usb 2-1: no configurations
[ 1301.145767][ T6004] usb 2-1: can't read configurations, error -22
[ 1301.869731][ T6004] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[ 1302.913865][ T6004] usb 2-1: no configurations
[ 1302.918628][ T6004] usb 2-1: can't read configurations, error -22
[ 1302.938366][ T6004] usb usb2-port1: attempt power cycle
[ 1303.910871][ T6004] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[ 1303.926634][T16122] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1304.069669][ T6004] usb 2-1: device descriptor read/8, error -71
[ 1304.134708][T16122] veth0_vlan: entered promiscuous mode
[ 1305.281187][T16122] veth1_vlan: entered promiscuous mode
[ 1305.453690][T13571] Bluetooth: hci5: command 0x0405 tx timeout
[ 1305.490741][T16122] veth0_macvtap: entered promiscuous mode
[ 1305.501743][T16122] veth1_macvtap: entered promiscuous mode
[ 1305.524746][T16122] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1305.537202][T16122] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1305.708013][   T49] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1305.752654][T16309] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[ 1305.760055][T16309] VFS: Can't find a romfs filesystem on dev nullb0.
[ 1305.760055][T16309] 
[ 1305.775575][   T49] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1305.798800][   T49] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1305.838898][   T49] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1305.968432][T16314] loop6: detected capacity change from 0 to 1024
[ 1305.989791][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1306.013656][T16314] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1306.015309][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1306.313900][ T1147] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1306.340904][ T1147] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1306.899685][   T30] kauditd_printk_skb: 12 callbacks suppressed
[ 1306.899706][   T30] audit: type=1800 audit(1752210625.468:182): pid=16321 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.2783" name="file1" dev="loop6" ino=15 res=0 errno=0
[ 1307.034055][T12220] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1307.665417][T16330] loop7: detected capacity change from 0 to 8
[ 1308.081437][T16337] overlayfs: failed to resolve './file1': -2
[ 1312.040653][T16371] netlink: 96 bytes leftover after parsing attributes in process `syz.6.2796'.
[ 1312.089976][T16369] tmpfs: Bad value for 'mpol'
[ 1312.095776][T16369] CIFS mount error: No usable UNC path provided in device string!
[ 1312.095776][T16369] 
[ 1312.105831][T16369] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1312.183143][T16375] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2799'.
[ 1312.197733][T16375] 8021q: VLANs not supported on wg1
[ 1312.490953][T16378] overlayfs: failed to resolve './file1': -2
[ 1312.518807][T16380] loop0: detected capacity change from 0 to 256
[ 1312.543506][T16380] FAT-fs (loop0): Directory bread(block 64) failed
[ 1312.550201][T16380] FAT-fs (loop0): Directory bread(block 65) failed
[ 1312.556984][T16380] FAT-fs (loop0): Directory bread(block 66) failed
[ 1312.563704][T16380] FAT-fs (loop0): Directory bread(block 67) failed
[ 1312.571489][T16380] FAT-fs (loop0): Directory bread(block 68) failed
[ 1312.578667][T16380] FAT-fs (loop0): Directory bread(block 69) failed
[ 1312.585772][T16380] FAT-fs (loop0): Directory bread(block 70) failed
[ 1312.592533][T16380] FAT-fs (loop0): Directory bread(block 71) failed
[ 1312.599306][T16380] FAT-fs (loop0): Directory bread(block 72) failed
[ 1312.823357][T16380] FAT-fs (loop0): Directory bread(block 73) failed
[ 1314.303286][T16400] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1314.359979][T16402] kAFS: No cell specified
[ 1315.520754][   T24] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[ 1315.831327][   T24] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1315.862070][   T24] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[ 1316.057512][   T24] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1316.058253][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1316.058809][   T24] usb 4-1: Product: syz
[ 1316.059162][   T24] usb 4-1: Manufacturer: syz
[ 1316.059917][   T24] usb 4-1: SerialNumber: syz
[ 1316.517894][T16408] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1316.591013][T16408] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1316.649165][   T24] cdc_ether 4-1:1.0: probe with driver cdc_ether failed with error -22
[ 1316.683755][   T24] usb 4-1: USB disconnect, device number 19
[ 1316.772566][T16424] loop7: detected capacity change from 0 to 8
[ 1317.320531][   T24] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[ 1317.510245][   T24] usb 4-1: Using ep0 maxpacket: 8
[ 1317.521849][   T24] usb 4-1: config index 0 descriptor too short (expected 301, got 72)
[ 1317.550477][   T24] usb 4-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[ 1317.580508][   T24] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1317.601041][   T24] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1317.630673][   T24] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[ 1317.663285][   T24] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1317.690495][   T24] usb 4-1: config 16 interface 0 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[ 1317.730813][   T24] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1317.750170][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1317.969399][   T24] usb 4-1: usb_control_msg returned -32
[ 1317.969775][T16408] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1317.981747][   T24] usbtmc 4-1:16.0: can't read capabilities
[ 1317.990965][T16408] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1318.004685][T16433] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[ 1318.007744][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.020772][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.026988][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.033018][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.039040][    C1] usbtmc 4-1:16.0: invalid notification: 11
[ 1318.045215][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.051799][    C1] usbtmc 4-1:16.0: invalid notification: 2
[ 1318.057834][    C1] usbtmc 4-1:16.0: invalid notification: 5
[ 1318.064070][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.070144][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.076204][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.082413][    C1] usbtmc 4-1:16.0: invalid notification: 12
[ 1318.088550][    C1] usbtmc 4-1:16.0: invalid notification: 3
[ 1318.094604][    C1] usbtmc 4-1:16.0: invalid notification: 2
[ 1318.100687][    C1] usbtmc 4-1:16.0: invalid notification: 26
[ 1318.107365][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.113700][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.119754][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.125797][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.131950][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.138022][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.144092][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.150175][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.156222][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.162342][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.168479][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.175481][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.181934][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.187997][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.194064][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.200108][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.206268][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.212317][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.218601][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.224700][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.230750][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.236890][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.242911][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.248935][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.255106][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.261153][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.267184][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.273243][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.279357][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.285396][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.291450][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.297585][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.303802][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.309855][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.315896][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.330897][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.337071][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.343118][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.349176][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.355224][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.361274][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.367588][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.374022][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.380069][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.386157][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.392218][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.398240][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.404300][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.410323][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.416369][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.430724][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.436871][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.442919][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.448936][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.454996][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.461047][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.467082][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.473139][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.479169][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.485188][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.491259][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.497298][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.503342][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.509373][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.515425][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.521458][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.527767][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.533825][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.539916][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.545958][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.552196][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.558343][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.564407][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.570468][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.576499][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.582820][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.588961][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.595048][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.601085][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.607126][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.613156][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.619213][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.630679][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.636806][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.643118][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.649160][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.655275][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.661326][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.667347][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.673391][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.679521][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.685540][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.691584][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.697586][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.703610][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.709646][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.715690][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.721737][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.728011][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.734182][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.740214][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.746270][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.752297][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.758332][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.764360][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.770397][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.776445][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.782466][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.788492][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.794535][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.800558][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.806592][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.812871][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.818929][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.824953][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.840689][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.846995][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.853124][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.859252][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.865379][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.871417][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.877447][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.883527][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.889657][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.895768][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.901818][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.907920][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.914059][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.920087][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.926108][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.940719][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.946861][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.952902][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.958967][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.965078][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.971160][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.977350][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.984612][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.990641][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1318.996688][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.003003][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.009379][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.015603][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.021641][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.027672][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.033797][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.040655][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.046696][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.052877][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.058927][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.064948][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.071087][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.077134][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.083824][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.089957][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.096044][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.102274][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.108338][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.114400][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.120494][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.126526][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.132763][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.139749][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.145837][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.151874][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.157879][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.163993][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.170038][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.176075][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.182130][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.188161][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.194208][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.200280][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.206387][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.212631][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.218654][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.224732][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.230790][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.236832][    C1] usbtmc 4-1:16.0: invalid notification: 0
[ 1319.310726][ T2154] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[ 1319.504899][T16440] random: crng reseeded on system resumption
[ 1319.745479][    T9] usb 4-1: USB disconnect, device number 20
[ 1320.393747][ T2154] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1320.813114][ T2154] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1320.861267][ T2154] usb 1-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[ 1320.880570][ T5924] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[ 1320.918855][ T2154] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1320.951006][T16447] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1320.970551][ T2154] usb 1-1: Product: syz
[ 1320.974784][ T2154] usb 1-1: Manufacturer: syz
[ 1320.979407][ T2154] usb 1-1: SerialNumber: syz
[ 1321.027597][ T2154] usb 1-1: config 0 descriptor??
[ 1321.041003][ T2154] usb 1-1: can't set config #0, error -71
[ 1321.051978][ T2154] usb 1-1: USB disconnect, device number 13
[ 1321.082779][ T5924] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1321.099084][ T5924] usb 7-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1321.112138][ T5924] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1321.160553][ T5924] usb 7-1: config 0 descriptor??
[ 1321.164942][T16455] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2826'.
[ 1322.337768][ T5924] keytouch 0003:0926:3333.0008: fixing up Keytouch IEC report descriptor
[ 1322.372898][ T5924] input: HID 0926:3333 as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/0003:0926:3333.0008/input/input51
[ 1322.457998][T16465] loop1: detected capacity change from 0 to 1024
[ 1322.786786][T16465] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1322.867199][T16465] ext4 filesystem being mounted at /582/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1322.888097][ T5924] keytouch 0003:0926:3333.0008: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.6-1/input0
[ 1323.090785][T16476] syz.3.2831: attempt to access beyond end of device
[ 1323.090785][T16476] nbd3: rw=2048, sector=2, nr_sectors = 1 limit=0
[ 1323.374930][  T979] usb 7-1: USB disconnect, device number 14
[ 1323.464144][T16478] random: crng reseeded on system resumption
[ 1324.232764][ T5855] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1327.254196][T16498] netlink: 'syz.1.2833': attribute type 4 has an invalid length.
[ 1327.277675][T16504] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2840'.
[ 1327.296801][T16498] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1330.855580][T16530] loop7: detected capacity change from 0 to 1024
[ 1331.032550][T16531] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1331.047296][T16530] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1331.542232][T16536] can0: slcan on ttyS3.
[ 1332.146184][   T30] audit: type=1800 audit(1752210650.818:183): pid=16540 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.2848" name="file1" dev="loop7" ino=15 res=0 errno=0
[ 1332.406815][   T30] audit: type=1326 audit(1752210650.878:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16542 comm="syz.3.2849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c3218e929 code=0x7ffc0000
[ 1332.431334][   T30] audit: type=1326 audit(1752210650.878:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16542 comm="syz.3.2849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c3218e929 code=0x7ffc0000
[ 1332.454365][   T30] audit: type=1326 audit(1752210650.878:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16542 comm="syz.3.2849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c3218e929 code=0x7ffc0000
[ 1332.454698][T16537] can0 (unregistered): slcan off ttyS3.
[ 1332.490120][   T30] audit: type=1326 audit(1752210650.878:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16542 comm="syz.3.2849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c3218e929 code=0x7ffc0000
[ 1333.127817][T14339] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1333.140484][   T30] audit: type=1326 audit(1752210650.888:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16542 comm="syz.3.2849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f7c3218e929 code=0x7ffc0000
[ 1333.218952][   T30] audit: type=1326 audit(1752210650.888:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16542 comm="syz.3.2849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c3218e929 code=0x7ffc0000
[ 1333.335702][   T30] audit: type=1326 audit(1752210650.888:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16542 comm="syz.3.2849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f7c3218e929 code=0x7ffc0000
[ 1333.404392][T16550] loop7: detected capacity change from 0 to 64
[ 1333.439844][   T30] audit: type=1326 audit(1752210650.888:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16542 comm="syz.3.2849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c3218e929 code=0x7ffc0000
[ 1333.469143][T16550] hfs: Unknown parameter '18446744073709551615'
[ 1333.477026][   T30] audit: type=1326 audit(1752210650.888:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16542 comm="syz.3.2849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c3218e929 code=0x7ffc0000
[ 1334.165629][T16559] loop1: detected capacity change from 0 to 128
[ 1334.269645][T16562] syz.1.2853: attempt to access beyond end of device
[ 1334.269645][T16562] loop1: rw=2049, sector=145, nr_sectors = 8 limit=128
[ 1334.476232][T16562] syz.1.2853: attempt to access beyond end of device
[ 1334.476232][T16562] loop1: rw=2049, sector=161, nr_sectors = 8 limit=128
[ 1334.491715][T16562] syz.1.2853: attempt to access beyond end of device
[ 1334.491715][T16562] loop1: rw=2049, sector=177, nr_sectors = 8 limit=128
[ 1334.515487][T16562] syz.1.2853: attempt to access beyond end of device
[ 1334.515487][T16562] loop1: rw=2049, sector=193, nr_sectors = 8 limit=128
[ 1334.591512][T16562] syz.1.2853: attempt to access beyond end of device
[ 1334.591512][T16562] loop1: rw=2049, sector=209, nr_sectors = 8 limit=128
[ 1334.640118][T16568] syz.3.2854: attempt to access beyond end of device
[ 1334.640118][T16568] nbd3: rw=6144, sector=128, nr_sectors = 8 limit=0
[ 1334.653504][T16568] gfs2: error -5 reading superblock
[ 1334.940949][T16562] syz.1.2853: attempt to access beyond end of device
[ 1334.940949][T16562] loop1: rw=2049, sector=225, nr_sectors = 8 limit=128
[ 1334.993406][T16562] syz.1.2853: attempt to access beyond end of device
[ 1334.993406][T16562] loop1: rw=2049, sector=241, nr_sectors = 8 limit=128
[ 1335.479926][T16562] syz.1.2853: attempt to access beyond end of device
[ 1335.479926][T16562] loop1: rw=2049, sector=257, nr_sectors = 8 limit=128
[ 1335.580760][T16562] syz.1.2853: attempt to access beyond end of device
[ 1335.580760][T16562] loop1: rw=2049, sector=273, nr_sectors = 8 limit=128
[ 1335.852238][T16578] gfs2: not a GFS2 filesystem
[ 1335.860523][  T979] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[ 1336.080896][  T979] usb 7-1: config 220 has an invalid interface number: 76 but max is 2
[ 1336.192140][  T979] usb 7-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[ 1336.361313][  T979] usb 7-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[ 1336.410379][T16577] ceph: No mds server is up or the cluster is laggy
[ 1336.419500][  T979] usb 7-1: config 220 has no interface number 2
[ 1336.455021][  T979] usb 7-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[ 1336.516583][  T979] usb 7-1: config 220 interface 0 has no altsetting 0
[ 1336.542450][  T979] usb 7-1: config 220 interface 76 has no altsetting 0
[ 1336.764075][  T979] usb 7-1: config 220 interface 1 has no altsetting 0
[ 1336.780283][  T979] usb 7-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1336.798990][  T979] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1336.808084][  T979] usb 7-1: Product: syz
[ 1336.821462][  T979] usb 7-1: Manufacturer: syz
[ 1336.827254][  T979] usb 7-1: SerialNumber: syz
[ 1336.916255][T16593] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[ 1337.561468][  T979] usb 7-1: selecting invalid altsetting 0
[ 1337.567821][  T979] usb 7-1: Found UVC 7.01 device syz (8086:0b07)
[ 1337.575882][  T979] usb 7-1: No valid video chain found.
[ 1337.787608][  T979] usb 7-1: selecting invalid altsetting 0
[ 1337.819254][  T979] usbtest 7-1:220.1: probe with driver usbtest failed with error -22
[ 1337.999864][  T979] usb 7-1: USB disconnect, device number 15
[ 1338.116273][T16602] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[ 1338.123558][T16602] VFS: Can't find a romfs filesystem on dev nullb0.
[ 1338.123558][T16602] 
[ 1338.285119][   T24] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[ 1338.485708][   T24] usb 4-1: too many configurations: 9, using maximum allowed: 8
[ 1338.589126][   T24] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1338.627028][   T24] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1338.860525][   T24] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1338.881802][T16601] overlayfs: failed to resolve './file1': -2
[ 1338.889500][   T24] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1338.927372][   T24] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1338.983075][   T24] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1339.164983][   T24] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1339.174963][   T24] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1339.849974][   T24] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1339.867348][   T24] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1339.901210][   T24] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1339.916265][   T24] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1339.934190][   T24] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1339.947222][   T24] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1340.023965][   T24] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1340.340013][   T24] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1340.363817][   T24] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1340.386982][   T24] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1340.395546][   T24] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1340.410672][   T24] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1340.430800][   T24] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1340.438852][   T24] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1340.448280][   T24] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1340.470798][   T24] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1340.490776][   T24] usb 4-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[ 1340.702869][   T24] usb 4-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[ 1340.712370][   T24] usb 4-1: Product: syz
[ 1340.716568][   T24] usb 4-1: Manufacturer: syz
[ 1340.722669][   T24] usb 4-1: SerialNumber: syz
[ 1340.730284][   T24] usb 4-1: config 0 descriptor??
[ 1340.743678][   T24] yurex 4-1:0.0: USB YUREX device now attached to Yurex #0
[ 1340.837845][T16623] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2870'.
[ 1341.367360][ T6004] usb 4-1: USB disconnect, device number 21
[ 1341.394867][ T6004] yurex 4-1:0.0: USB YUREX #0 now disconnected
[ 1341.528483][T16626] GUP no longer grows the stack in syz.7.2874 (16626): 200000004000-20000000a000 (200000002000)
[ 1341.539562][T16626] CPU: 1 UID: 0 PID: 16626 Comm: syz.7.2874 Not tainted 6.16.0-rc5-next-20250710-syzkaller #0 PREEMPT(full) 
[ 1341.539592][T16626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1341.539608][T16626] Call Trace:
[ 1341.539617][T16626]  <TASK>
[ 1341.539627][T16626]  dump_stack_lvl+0x189/0x250
[ 1341.539662][T16626]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1341.539687][T16626]  ? __pfx__printk+0x10/0x10
[ 1341.539712][T16626]  ? find_vma+0xe7/0x160
[ 1341.539752][T16626]  __get_user_pages+0x24d0/0x2ce0
[ 1341.539800][T16626]  ? mtree_load+0x100/0x700
[ 1341.539833][T16626]  get_user_pages_remote+0x2f1/0xad0
[ 1341.539857][T16626]  ? __pfx_mtree_load+0x10/0x10
[ 1341.539886][T16626]  ? __pfx_get_user_pages_remote+0x10/0x10
[ 1341.539922][T16626]  __access_remote_vm+0x215/0x5f0
[ 1341.539960][T16626]  ? __pfx___access_remote_vm+0x10/0x10
[ 1341.539991][T16626]  ? alloc_pages_noprof+0xbe/0x190
[ 1341.540025][T16626]  proc_pid_cmdline_read+0x440/0x840
[ 1341.540068][T16626]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[ 1341.540103][T16626]  ? rw_verify_area+0x2a6/0x4d0
[ 1341.540133][T16626]  vfs_readv+0x5a7/0x850
[ 1341.540166][T16626]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[ 1341.540201][T16626]  ? __pfx_vfs_readv+0x10/0x10
[ 1341.540247][T16626]  ? __fget_files+0x2a/0x420
[ 1341.540281][T16626]  ? __fget_files+0x3a0/0x420
[ 1341.540309][T16626]  ? __fget_files+0x2a/0x420
[ 1341.540347][T16626]  __x64_sys_preadv+0x197/0x2a0
[ 1341.540380][T16626]  ? __pfx___x64_sys_preadv+0x10/0x10
[ 1341.540416][T16626]  ? rcu_is_watching+0x15/0xb0
[ 1341.540444][T16626]  ? do_syscall_64+0xbe/0x3b0
[ 1341.540472][T16626]  do_syscall_64+0xfa/0x3b0
[ 1341.540493][T16626]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1341.540523][T16626]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1341.540544][T16626]  ? clear_bhb_loop+0x60/0xb0
[ 1341.540570][T16626]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1341.540602][T16626] RIP: 0033:0x7f8397b8e929
[ 1341.540626][T16626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1341.540645][T16626] RSP: 002b:00007f8398acf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1341.540669][T16626] RAX: ffffffffffffffda RBX: 00007f8397db5fa0 RCX: 00007f8397b8e929
[ 1341.540686][T16626] RDX: 0000000000000001 RSI: 0000200000000040 RDI: 0000000000000004
[ 1341.540700][T16626] RBP: 00007f8397c10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1341.540714][T16626] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[ 1341.540727][T16626] R13: 0000000000000000 R14: 00007f8397db5fa0 R15: 00007ffe98315688
[ 1341.540762][T16626]  </TASK>
[ 1348.135267][T16677] loop7: detected capacity change from 0 to 32768
[ 1350.127317][T16680] loop1: detected capacity change from 0 to 1024
[ 1351.222498][T16680] EXT4-fs: Ignoring removed nobh option
[ 1351.228090][T16680] EXT4-fs: Ignoring removed bh option
[ 1351.684147][T16680] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1351.711798][T16677] 
[ 1351.711798][T16677]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1351.711798][T16677] 
[ 1351.880112][T16680] EXT4-fs error (device loop1): mb_free_blocks:1948: group 0, inode 15: block 225:freeing already freed block (bit 14); block bitmap corrupt.
[ 1353.145473][ T5855] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1353.178677][T14339] 
[ 1353.178677][T14339]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1353.178677][T14339] 
[ 1353.209309][T14339] 
[ 1353.209309][T14339]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1353.209309][T14339] 
[ 1357.893540][T16737] netlink: 'syz.7.2894': attribute type 4 has an invalid length.
[ 1357.908085][T16737] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1360.455268][T16756] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2909'.
[ 1360.582287][T16765] loop1: detected capacity change from 0 to 164
[ 1360.651317][T16765] Unable to read rock-ridge attributes
[ 1360.728337][T16765] Unable to read rock-ridge attributes
[ 1360.878228][T16765] iso9660: Corrupted directory entry in block 4 of inode 1792
[ 1360.939347][T16770] input: syz1 as /devices/virtual/input/input52
[ 1361.698378][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[ 1361.704810][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[ 1362.093048][T16785] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2916'.
[ 1362.191770][T16785] 8021q: VLANs not supported on wg1
[ 1363.082388][T16791] loop1: detected capacity change from 0 to 32768
[ 1363.107644][T16791] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.2918 (16791)
[ 1363.123834][T16791] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1363.136662][T16791] BTRFS info (device loop1): using crc32c (crc32c-lib) checksum algorithm
[ 1363.145282][T16791] BTRFS info (device loop1): disk space caching is enabled
[ 1363.152524][T16791] BTRFS warning (device loop1): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[ 1363.267390][T16791] BTRFS info (device loop1): rebuilding free space tree
[ 1363.288770][T16791] BTRFS info (device loop1): disabling free space tree
[ 1363.295961][T16791] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1363.305824][T16791] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1366.359137][ T5855] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1367.447245][T16833] loop6: detected capacity change from 0 to 512
[ 1367.906757][T16833] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1368.010828][T16833] ext4 filesystem being mounted at /245/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1368.738844][   T30] kauditd_printk_skb: 15 callbacks suppressed
[ 1368.738866][   T30] audit: type=1800 audit(1752210687.398:208): pid=16833 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.2927" name="file1" dev="loop6" ino=15 res=0 errno=0
[ 1369.393681][T16852] loop1: detected capacity change from 0 to 1024
[ 1369.453638][T12220] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1369.507664][T16852] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1369.541402][T16852] ext4 filesystem being mounted at /598/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1369.733782][T15375] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1370.490545][T16865] random: crng reseeded on system resumption
[ 1371.106152][T16867] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1371.451898][ T5855] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1371.871444][T16871] loop1: detected capacity change from 0 to 32768
[ 1371.894177][T16871] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.2934 (16871)
[ 1371.909916][T16871] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1371.920259][T16871] BTRFS info (device loop1): using crc32c (crc32c-lib) checksum algorithm
[ 1371.928826][T16871] BTRFS info (device loop1): disk space caching is enabled
[ 1371.936975][T16871] BTRFS warning (device loop1): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[ 1372.067732][ T1147] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1372.204604][T16871] BTRFS info (device loop1): rebuilding free space tree
[ 1372.645692][T16871] BTRFS info (device loop1): disabling free space tree
[ 1372.652755][T16871] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1372.662519][T16871] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1373.339810][ T1147] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1373.438150][T13571] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1373.450370][T13571] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1373.465785][T13571] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1373.475324][T13571] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1373.488862][T13571] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1373.528086][ T5855] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1373.572460][T16899] overlayfs: missing 'lowerdir'
[ 1375.768710][T13571] Bluetooth: hci1: command tx timeout
[ 1375.850188][ T1147] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1376.702024][T16912] loop6: detected capacity change from 0 to 164
[ 1376.754656][T16912] Unable to read rock-ridge attributes
[ 1376.798755][ T1147] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1377.466251][T16922] bpf setsockopt: ignoring program buffer with optlen=65458 (max_optlen=4096)
[ 1377.859071][ T5865] Bluetooth: hci1: command tx timeout
[ 1378.682887][T16938] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2950'.
[ 1378.780547][T16938] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2950'.
[ 1378.840074][T16938] gretap0: entered promiscuous mode
[ 1378.859034][T16938] gretap0: left promiscuous mode
[ 1378.904051][T16894] chnl_net:caif_netlink_parms(): no params data found
[ 1379.648740][T16952] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2954'.
[ 1379.933034][ T5865] Bluetooth: hci1: command tx timeout
[ 1381.484116][T16950] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2955'.
[ 1381.619072][T16968] loop1: detected capacity change from 0 to 512
[ 1381.638387][T16968] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1381.696640][T16968] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1381.743200][T16968] ext4 filesystem being mounted at /605/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1381.772286][   T30] audit: type=1800 audit(1752210700.438:209): pid=16968 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="+}[@" name="file2" dev="loop1" ino=16 res=0 errno=0
[ 1381.806819][   T30] audit: type=1326 audit(1752210700.448:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16967 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11ae38e929 code=0x7ffc0000
[ 1381.828734][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1381.837519][   T30] audit: type=1326 audit(1752210700.448:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16967 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11ae38e929 code=0x7ffc0000
[ 1381.864163][   T30] audit: type=1326 audit(1752210700.448:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16967 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f11ae38e929 code=0x7ffc0000
[ 1381.887288][   T30] audit: type=1326 audit(1752210700.448:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16967 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11ae38e929 code=0x7ffc0000
[ 1381.898793][ T5855] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1381.909721][   T30] audit: type=1326 audit(1752210700.448:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16967 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f11ae38e929 code=0x7ffc0000
[ 1381.942443][   T30] audit: type=1326 audit(1752210700.448:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16967 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11ae38e929 code=0x7ffc0000
[ 1381.964265][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1381.970510][   T30] audit: type=1326 audit(1752210700.448:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16967 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11ae38e929 code=0x7ffc0000
[ 1381.992767][   T30] audit: type=1326 audit(1752210700.448:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16967 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f11ae38e929 code=0x7ffc0000
[ 1382.014510][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1382.016712][ T5865] Bluetooth: hci1: command tx timeout
[ 1382.036030][   T30] audit: type=1326 audit(1752210700.448:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16967 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11ae38e929 code=0x7ffc0000
[ 1382.242905][ T1147] bond0 (unregistering): Released all slaves
[ 1383.399234][T16996] gfs2: not a GFS2 filesystem
[ 1384.401701][T16894] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1384.500703][T13571] Bluetooth: hci1: command 0x0405 tx timeout
[ 1384.968319][T16894] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1384.987513][T16894] bridge_slave_0: entered allmulticast mode
[ 1384.998995][T16894] bridge_slave_0: entered promiscuous mode
[ 1385.168325][T16894] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1385.191430][T16894] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1385.211630][T16894] bridge_slave_1: entered allmulticast mode
[ 1385.219610][T16894] bridge_slave_1: entered promiscuous mode
[ 1387.152716][T16894] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1387.179772][T17011] delete_channel: no stack
[ 1387.216854][T16894] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1388.877929][ T1147] hsr_slave_0: left promiscuous mode
[ 1388.915716][ T1147] hsr_slave_1: left promiscuous mode
[ 1388.957166][ T1147] veth1_macvtap: left promiscuous mode
[ 1388.966551][T17036] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2978'.
[ 1388.980748][ T1147] veth0_macvtap: left promiscuous mode
[ 1388.986353][ T1147] veth1_vlan: left promiscuous mode
[ 1389.000582][ T1147] veth0_vlan: left promiscuous mode
[ 1389.231378][T17038] gfs2: not a GFS2 filesystem
[ 1392.203469][T16894] team0: Port device team_slave_0 added
[ 1392.277265][ T2154] infiniband syz1: ib_query_port failed (-19)
[ 1392.286533][T16894] team0: Port device team_slave_1 added
[ 1392.475370][T16894] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1392.500475][T16894] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1392.564541][T16894] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1392.733486][T16894] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1392.741193][T16894] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1392.767324][T16894] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1393.544852][T17067] slcan: can't register candev
[ 1393.549972][T17067] Falling back ldisc for ttyS3.
[ 1394.224156][T17078] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2988'.
[ 1394.275860][T17077] loop6: detected capacity change from 0 to 64
[ 1394.642254][T16894] hsr_slave_0: entered promiscuous mode
[ 1394.715195][T16894] hsr_slave_1: entered promiscuous mode
[ 1394.742080][T16894] debugfs: 'hsr0' already exists in 'hsr'
[ 1394.747861][T16894] Cannot create hsr debugfs directory
[ 1395.590142][ T1147] IPVS: stop unused estimator thread 0...
[ 1396.662230][T17094] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1396.733793][T17101] gfs2: not a GFS2 filesystem
[ 1397.933183][T17112] slcan: can't register candev
[ 1397.938366][T17112] Falling back ldisc for ttyS3.
[ 1399.099357][T17134] loop1: detected capacity change from 0 to 64
[ 1399.102531][T17132] loop7: detected capacity change from 0 to 1024
[ 1399.125257][T16894] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1399.154064][T16894] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1399.164798][T17132] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1399.177869][T17132] ext4 filesystem being mounted at /129/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1399.437530][T16894] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1399.512947][T17144] random: crng reseeded on system resumption
[ 1400.431822][T16894] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1400.989293][T17145] slcan: can't register candev
[ 1400.994478][T17145] Falling back ldisc for ttyS3.
[ 1401.017920][T14339] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1401.595563][T16894] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1402.032339][T16894] 8021q: adding VLAN 0 to HW filter on device team0
[ 1402.054942][ T1147] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1402.062162][ T1147] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1402.286031][ T1147] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1402.293471][ T1147] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1402.663624][T17187] gfs2: not a GFS2 filesystem
[ 1403.673777][T16894] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1403.736113][T16894] veth0_vlan: entered promiscuous mode
[ 1403.880845][T16894] veth1_vlan: entered promiscuous mode
[ 1404.038308][T16894] veth0_macvtap: entered promiscuous mode
[ 1404.088785][T16894] veth1_macvtap: entered promiscuous mode
[ 1404.368390][T16894] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1405.143547][T16894] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1405.163655][T12572] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1405.322733][T12572] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1405.332612][T12572] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1405.392410][T12572] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1405.546711][ T3516] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1405.579034][ T3516] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1405.593510][T17214] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3027'.
[ 1405.641051][T17214] netlink: 'syz.0.3027': attribute type 7 has an invalid length.
[ 1405.690825][   T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1405.710663][T17214] netlink: 'syz.0.3027': attribute type 8 has an invalid length.
[ 1405.720953][   T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1405.741056][T17214] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3027'.
[ 1407.292140][ T5865] Bluetooth: hci0: command 0x0405 tx timeout
[ 1409.110140][T17252] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1409.132265][T17252] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1409.150216][T17252] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1409.172480][T17252] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1409.231678][T17252] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1409.304720][T17254] loop3: detected capacity change from 0 to 128
[ 1409.381813][T17259] bio_check_eod: 5 callbacks suppressed
[ 1409.381833][T17259] syz.3.3039: attempt to access beyond end of device
[ 1409.381833][T17259] loop3: rw=2049, sector=145, nr_sectors = 8 limit=128
[ 1409.549367][T17259] syz.3.3039: attempt to access beyond end of device
[ 1409.549367][T17259] loop3: rw=2049, sector=161, nr_sectors = 8 limit=128
[ 1409.658053][T17259] syz.3.3039: attempt to access beyond end of device
[ 1409.658053][T17259] loop3: rw=2049, sector=177, nr_sectors = 8 limit=128
[ 1409.725103][T17259] syz.3.3039: attempt to access beyond end of device
[ 1409.725103][T17259] loop3: rw=2049, sector=193, nr_sectors = 8 limit=128
[ 1409.750654][T17259] syz.3.3039: attempt to access beyond end of device
[ 1409.750654][T17259] loop3: rw=2049, sector=209, nr_sectors = 8 limit=128
[ 1409.768911][T17259] syz.3.3039: attempt to access beyond end of device
[ 1409.768911][T17259] loop3: rw=2049, sector=225, nr_sectors = 8 limit=128
[ 1409.783653][T17259] syz.3.3039: attempt to access beyond end of device
[ 1409.783653][T17259] loop3: rw=2049, sector=241, nr_sectors = 8 limit=128
[ 1409.798434][T17259] syz.3.3039: attempt to access beyond end of device
[ 1409.798434][T17259] loop3: rw=2049, sector=257, nr_sectors = 8 limit=128
[ 1409.812775][T17259] syz.3.3039: attempt to access beyond end of device
[ 1409.812775][T17259] loop3: rw=2049, sector=273, nr_sectors = 8 limit=128
[ 1409.827066][T17259] syz.3.3039: attempt to access beyond end of device
[ 1409.827066][T17259] loop3: rw=2049, sector=289, nr_sectors = 8 limit=128
[ 1409.977692][   T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1410.010886][ T5865] Bluetooth: hci5: command 0x0405 tx timeout
[ 1410.137132][T17267] gfs2: not a GFS2 filesystem
[ 1410.199804][   T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1410.568863][   T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1410.615032][T17271] loop6: detected capacity change from 0 to 512
[ 1410.692732][T17271] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1410.852813][T17271] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1411.001268][T17271] ext4 filesystem being mounted at /275/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1411.237183][   T30] kauditd_printk_skb: 3 callbacks suppressed
[ 1411.237213][   T30] audit: type=1326 audit(1752210729.888:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17270 comm="syz.6.3044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1411.416083][   T30] audit: type=1326 audit(1752210729.888:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17270 comm="syz.6.3044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1411.438683][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1411.450239][ T5865] Bluetooth: hci4: command tx timeout
[ 1411.796477][   T30] audit: type=1326 audit(1752210729.888:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17270 comm="syz.6.3044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1411.822149][   T30] audit: type=1326 audit(1752210730.138:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17270 comm="syz.6.3044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1411.846942][   T30] audit: type=1326 audit(1752210730.138:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17270 comm="syz.6.3044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1411.869367][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1411.878053][   T30] audit: type=1326 audit(1752210730.388:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17270 comm="syz.6.3044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1412.015711][   T30] audit: type=1800 audit(1752210730.618:228): pid=17271 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="+}[@" name="file2" dev="loop6" ino=16 res=0 errno=0
[ 1412.035832][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1412.083498][T12220] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1412.226345][T17248] chnl_net:caif_netlink_parms(): no params data found
[ 1412.506959][   T12] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1413.594698][ T5865] Bluetooth: hci4: command tx timeout
[ 1413.971865][T17248] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1413.979190][T17248] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1413.989503][T17248] bridge_slave_0: entered allmulticast mode
[ 1414.009054][T17248] bridge_slave_0: entered promiscuous mode
[ 1414.096829][T17248] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1414.195103][T17248] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1414.294787][T17248] bridge_slave_1: entered allmulticast mode
[ 1414.456397][T17248] bridge_slave_1: entered promiscuous mode
[ 1415.288343][T17248] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1415.355390][T17248] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1415.611248][ T5865] Bluetooth: hci4: command tx timeout
[ 1417.464577][T17332] loop6: detected capacity change from 0 to 32768
[ 1417.690723][ T5865] Bluetooth: hci4: command tx timeout
[ 1417.833085][T17332] 
[ 1417.833085][T17332]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1417.833085][T17332] 
[ 1417.934554][T17335] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1418.193977][T17332] 
[ 1418.193977][T17332]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1418.193977][T17332] 
[ 1418.206056][T17332] 
[ 1418.206056][T17332]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1418.206056][T17332] 
[ 1418.216775][T17332] 
[ 1418.216775][T17332]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1418.216775][T17332] 
[ 1418.230869][T17332] 
[ 1418.230869][T17332]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1418.230869][T17332] 
[ 1418.241508][T17332] 
[ 1418.241508][T17332]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1418.241508][T17332] 
[ 1418.408460][  T112] 
[ 1418.408460][  T112]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1418.408460][  T112] 
[ 1419.473470][T17248] team0: Port device team_slave_0 added
[ 1419.507842][T17248] team0: Port device team_slave_1 added
[ 1419.526706][T16961] 
[ 1419.526706][T16961]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1419.526706][T16961] 
[ 1419.542392][T16961] 
[ 1419.542392][T16961]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1419.542392][T16961] 
[ 1419.554614][T12220] 
[ 1419.554614][T12220]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1419.554614][T12220] 
[ 1419.568434][  T113] 
[ 1419.568434][  T113]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1419.568434][  T113] 
[ 1419.580322][T12220] 
[ 1419.580322][T12220]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1419.580322][T12220] 
[ 1419.731792][T17348] loop7: detected capacity change from 0 to 1024
[ 1421.090480][T17367] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3073'.
[ 1421.124439][T17362] overlayfs: missing 'lowerdir'
[ 1421.135725][   T12] bond0 (unregistering): (slave wlan1): Releasing backup interface
[ 1421.147068][   T12] bond0 (unregistering): Released all slaves
[ 1421.341643][T17369] 8021q: VLANs not supported on wg1
[ 1421.361312][T17248] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1421.387854][T17248] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1421.482633][T17248] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1421.512902][T17248] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1421.520022][T17248] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1421.779688][T17248] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1422.594780][T17373] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -EINTR
[ 1423.403540][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[ 1423.433533][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[ 1426.406922][T17248] hsr_slave_0: entered promiscuous mode
[ 1426.578131][T17248] hsr_slave_1: entered promiscuous mode
[ 1426.586423][T17248] debugfs: 'hsr0' already exists in 'hsr'
[ 1426.592681][T17248] Cannot create hsr debugfs directory
[ 1430.399790][T17418] overlayfs: missing 'lowerdir'
[ 1430.857407][T17437] gfs2: not a GFS2 filesystem
[ 1431.852573][   T30] audit: type=1326 audit(1752210750.528:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17442 comm="syz.7.3095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8397b8e929 code=0x7ffc0000
[ 1432.660677][   T30] audit: type=1326 audit(1752210750.528:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17442 comm="syz.7.3095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8397b8e929 code=0x7ffc0000
[ 1432.686181][   T30] audit: type=1326 audit(1752210750.528:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17442 comm="syz.7.3095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8397b8e929 code=0x7ffc0000
[ 1432.710095][   T30] audit: type=1326 audit(1752210750.528:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17442 comm="syz.7.3095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8397b8e929 code=0x7ffc0000
[ 1432.733912][   T30] audit: type=1326 audit(1752210750.528:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17442 comm="syz.7.3095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8397b8e929 code=0x7ffc0000
[ 1432.756745][   T30] audit: type=1326 audit(1752210750.528:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17442 comm="syz.7.3095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f8397b8e929 code=0x7ffc0000
[ 1432.780205][   T12] hsr_slave_0: left promiscuous mode
[ 1432.780570][   T30] audit: type=1326 audit(1752210750.528:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17442 comm="syz.7.3095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8397b8e929 code=0x7ffc0000
[ 1432.844557][   T30] audit: type=1326 audit(1752210750.528:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17442 comm="syz.7.3095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f8397b8e929 code=0x7ffc0000
[ 1432.867448][   T12] hsr_slave_1: left promiscuous mode
[ 1432.898616][   T30] audit: type=1326 audit(1752210750.528:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17442 comm="syz.7.3095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8397b8e929 code=0x7ffc0000
[ 1432.951825][   T12] veth1_macvtap: left promiscuous mode
[ 1432.957437][   T12] veth0_macvtap: left promiscuous mode
[ 1432.963514][   T30] audit: type=1326 audit(1752210750.528:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17442 comm="syz.7.3095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8397b8e929 code=0x7ffc0000
[ 1433.000625][   T12] veth1_vlan: left promiscuous mode
[ 1433.006367][   T12] veth0_vlan: left promiscuous mode
[ 1435.328112][T17453] loop0: detected capacity change from 0 to 32768
[ 1435.563886][T17453] 
[ 1435.563886][T17453]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1435.563886][T17453] 
[ 1435.658261][T17452] 
[ 1435.658261][T17452]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1435.658261][T17452] 
[ 1435.669308][T17452] 
[ 1435.669308][T17452]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1435.669308][T17452] 
[ 1435.679905][T17452] 
[ 1435.679905][T17452]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1435.679905][T17452] 
[ 1435.690641][T17452] 
[ 1435.690641][T17452]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1435.690641][T17452] 
[ 1435.701332][T17452] 
[ 1435.701332][T17452]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1435.701332][T17452] 
[ 1435.982200][  T113] 
[ 1435.982200][  T113]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1435.982200][  T113] 
[ 1436.034908][T12572] 
[ 1436.034908][T12572]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1436.034908][T12572] 
[ 1436.075992][T12572] 
[ 1436.075992][T12572]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1436.075992][T12572] 
[ 1436.209773][T16122] 
[ 1436.209773][T16122]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1436.209773][T16122] 
[ 1436.243607][  T113] 
[ 1436.243607][  T113]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1436.243607][  T113] 
[ 1436.279669][T16122] 
[ 1436.279669][T16122]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1436.279669][T16122] 
[ 1437.202920][T17462] nbd3: detected capacity change from 0 to 63
[ 1437.219159][T17466] block nbd3: NBD_DISCONNECT
[ 1437.228337][T17466] block nbd3: Disconnected due to user request.
[ 1437.249671][T17466] block nbd3: shutting down sockets
[ 1441.084067][   T12] IPVS: stop unused estimator thread 0...
[ 1441.104334][T17489] gfs2: not a GFS2 filesystem
[ 1441.179209][T17248] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1441.208969][T17248] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1441.264611][T17248] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1441.366195][T17248] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1443.056389][T17514] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1443.065367][T17514] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1443.128394][T17248] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1443.191892][T17248] 8021q: adding VLAN 0 to HW filter on device team0
[ 1443.222169][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1443.229349][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1444.189524][T17520] bridge_slave_0: left allmulticast mode
[ 1444.196188][T17520] bridge_slave_0: left promiscuous mode
[ 1444.202619][T17520] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1444.249569][T17535] loop3: detected capacity change from 0 to 64
[ 1444.558199][T17520] bridge_slave_1: left allmulticast mode
[ 1444.629010][T17520] bridge_slave_1: left promiscuous mode
[ 1444.712365][T17520] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1445.303260][T17537] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3123'.
[ 1445.597056][T17520] bond0: (slave bond_slave_0): Releasing backup interface
[ 1446.015788][T17520] bond0: (slave bond_slave_1): Releasing backup interface
[ 1446.341465][T17520] team0: Port device team_slave_0 removed
[ 1446.583185][T17520] team0: Port device team_slave_1 removed
[ 1446.589695][T17520] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1446.635654][T17520] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1446.660197][T17520] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1446.669794][T17520] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1446.703785][T17525] vlan0: entered promiscuous mode
[ 1446.764616][T17525] team0: Port device vlan0 added
[ 1446.793161][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1446.800483][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1446.841420][T17528] tipc: Started in network mode
[ 1446.846357][T17528] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[ 1446.888466][T17528] tipc: Enabled bearer <eth:team0>, priority 0
[ 1447.138337][T17555] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3127'.
[ 1448.060573][   T10] tipc: Node number set to 11578026
[ 1448.938590][T17248] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1449.005059][T17587] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3137'.
[ 1449.025659][T17590] loop0: detected capacity change from 0 to 64
[ 1449.037313][T17587] netlink: 'syz.3.3137': attribute type 7 has an invalid length.
[ 1449.056645][T17587] netlink: 'syz.3.3137': attribute type 8 has an invalid length.
[ 1449.058351][T17248] veth0_vlan: entered promiscuous mode
[ 1449.089822][T17587] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3137'.
[ 1449.128279][T17248] veth1_vlan: entered promiscuous mode
[ 1449.235276][T17248] veth0_macvtap: entered promiscuous mode
[ 1449.315313][T17248] veth1_macvtap: entered promiscuous mode
[ 1449.344569][T17248] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1449.379853][T17248] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1449.420789][T12572] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1449.459624][T12572] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1449.487188][T12572] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1449.539466][T12572] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1449.650767][T12572] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1449.672258][T17601] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3142'.
[ 1449.675901][T12572] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1449.771641][   T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1450.125322][T17601] 8021q: VLANs not supported on wg1
[ 1450.219668][   T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1452.911003][T17608] loop6: detected capacity change from 0 to 32768
[ 1453.167035][T17608] 
[ 1453.167035][T17608]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1453.167035][T17608] 
[ 1453.547083][T12220] 
[ 1453.547083][T12220]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1453.547083][T12220] 
[ 1453.586595][T12220] 
[ 1453.586595][T12220]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1453.586595][T12220] 
[ 1456.207752][T17655] loop6: detected capacity change from 0 to 1024
[ 1456.441155][T17660] bio_check_eod: 20 callbacks suppressed
[ 1456.441193][T17660] syz.7.3157: attempt to access beyond end of device
[ 1456.441193][T17660] nbd7: rw=6144, sector=128, nr_sectors = 8 limit=0
[ 1456.460338][T17660] gfs2: error -5 reading superblock
[ 1456.685859][T17662] netlink: 'syz.3.3158': attribute type 2 has an invalid length.
[ 1456.693989][T17662] netlink: 'syz.3.3158': attribute type 8 has an invalid length.
[ 1456.701887][T17662] netlink: 132 bytes leftover after parsing attributes in process `syz.3.3158'.
[ 1457.685161][   T30] kauditd_printk_skb: 13 callbacks suppressed
[ 1457.685180][   T30] audit: type=1326 audit(1752210776.348:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17687 comm="syz.6.3171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1457.898813][   T30] audit: type=1326 audit(1752210776.358:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17687 comm="syz.6.3171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1457.923805][   T30] audit: type=1326 audit(1752210776.358:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17687 comm="syz.6.3171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1458.061965][   T30] audit: type=1326 audit(1752210776.388:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17687 comm="syz.6.3171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1458.186541][   T30] audit: type=1326 audit(1752210776.388:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17687 comm="syz.6.3171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1458.210291][   T30] audit: type=1326 audit(1752210776.388:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17687 comm="syz.6.3171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1458.233239][   T30] audit: type=1326 audit(1752210776.388:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17687 comm="syz.6.3171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1458.258467][   T30] audit: type=1326 audit(1752210776.388:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17687 comm="syz.6.3171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1458.318040][   T30] audit: type=1326 audit(1752210776.398:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17687 comm="syz.6.3171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1458.394177][   T30] audit: type=1326 audit(1752210776.398:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17687 comm="syz.6.3171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3b858e929 code=0x7ffc0000
[ 1458.419396][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1463.299448][T17741] loop6: detected capacity change from 0 to 32768
[ 1464.245376][T17741] 
[ 1464.245376][T17741]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1464.245376][T17741] 
[ 1464.563606][T12220] 
[ 1464.563606][T12220]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1464.563606][T12220] 
[ 1464.776627][T12220] 
[ 1464.776627][T12220]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1464.776627][T12220] 
[ 1467.045199][T17760] loop3: detected capacity change from 0 to 32768
[ 1467.781645][T17760] 
[ 1467.781645][T17760]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1467.781645][T17760] 
[ 1467.834207][T17760] 
[ 1467.834207][T17760]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1467.834207][T17760] 
[ 1467.845006][T17760] 
[ 1467.845006][T17760]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1467.845006][T17760] 
[ 1467.855677][T17760] 
[ 1467.855677][T17760]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1467.855677][T17760] 
[ 1467.866241][T17760] 
[ 1467.866241][T17760]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1467.866241][T17760] 
[ 1467.877026][T17760] 
[ 1467.877026][T17760]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1467.877026][T17760] 
[ 1468.195441][  T113] 
[ 1468.195441][  T113]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1468.195441][  T113] 
[ 1468.221543][   T30] kauditd_printk_skb: 77 callbacks suppressed
[ 1468.221562][   T30] audit: type=1326 audit(1752210786.898:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17765 comm="syz.7.3201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8397b8e929 code=0x7ffc0000
[ 1468.246712][T17402] 
[ 1468.246712][T17402]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1468.246712][T17402] 
[ 1468.254186][   T30] audit: type=1326 audit(1752210786.928:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17765 comm="syz.7.3201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8397b8e929 code=0x7ffc0000
[ 1468.314992][T17402] 
[ 1468.314992][T17402]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1468.314992][T17402] 
[ 1468.386758][T16894] 
[ 1468.386758][T16894]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1468.386758][T16894] 
[ 1468.449826][T16894] 
[ 1468.449826][T16894]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1468.449826][T16894] 
[ 1468.490703][   T30] audit: type=1326 audit(1752210786.928:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17765 comm="syz.7.3201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8397b8e929 code=0x7ffc0000
[ 1468.500881][  T113] 
[ 1468.500881][  T113]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1468.500881][  T113] 
[ 1468.513804][   T30] audit: type=1326 audit(1752210786.928:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17765 comm="syz.7.3201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8397b8e929 code=0x7ffc0000
[ 1468.549531][   T30] audit: type=1326 audit(1752210786.928:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17765 comm="syz.7.3201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8397b8e929 code=0x7ffc0000
[ 1468.620552][  T113] ==================================================================
[ 1468.628684][  T113] BUG: KASAN: slab-use-after-free in txEnd+0x32d/0x530
[ 1468.635829][  T113] Write of size 8 at addr ffff8880285da040 by task jfsCommit/113
[ 1468.643568][  T113] 
[ 1468.645924][  T113] CPU: 0 UID: 0 PID: 113 Comm: jfsCommit Not tainted 6.16.0-rc5-next-20250710-syzkaller #0 PREEMPT(full) 
[ 1468.645951][  T113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1468.645966][  T113] Call Trace:
[ 1468.645975][  T113]  <TASK>
[ 1468.645984][  T113]  dump_stack_lvl+0x189/0x250
[ 1468.646011][  T113]  ? rcu_is_watching+0x15/0xb0
[ 1468.646032][  T113]  ? __kasan_check_byte+0x12/0x40
[ 1468.646059][  T113]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1468.646093][  T113]  ? rcu_is_watching+0x15/0xb0
[ 1468.646113][  T113]  ? lock_release+0x4b/0x3e0
[ 1468.646144][  T113]  ? __virt_addr_valid+0x1c8/0x5c0
[ 1468.646168][  T113]  ? __virt_addr_valid+0x4a5/0x5c0
[ 1468.646193][  T113]  print_report+0xca/0x230
[ 1468.646211][  T113]  ? txEnd+0x32d/0x530
[ 1468.646234][  T113]  kasan_report+0x118/0x150
[ 1468.646261][  T113]  ? txEnd+0x32d/0x530
[ 1468.646289][  T113]  kasan_check_range+0x2b0/0x2c0
[ 1468.646316][  T113]  txEnd+0x32d/0x530
[ 1468.646342][  T113]  jfs_lazycommit+0x5ba/0xa90
[ 1468.646373][  T113]  ? __pfx_jfs_lazycommit+0x10/0x10
[ 1468.646399][  T113]  ? __pfx_default_wake_function+0x10/0x10
[ 1468.646429][  T113]  ? __kthread_parkme+0x7b/0x200
[ 1468.646447][  T113]  ? __kthread_parkme+0x1a1/0x200
[ 1468.646472][  T113]  kthread+0x711/0x8a0
[ 1468.646498][  T113]  ? __pfx_jfs_lazycommit+0x10/0x10
[ 1468.646525][  T113]  ? __pfx_kthread+0x10/0x10
[ 1468.646548][  T113]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1468.646578][  T113]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1468.646596][  T113]  ? __pfx_kthread+0x10/0x10
[ 1468.646621][  T113]  ret_from_fork+0x3f9/0x770
[ 1468.646641][  T113]  ? __pfx_ret_from_fork+0x10/0x10
[ 1468.646663][  T113]  ? __switch_to_asm+0x39/0x70
[ 1468.646687][  T113]  ? __switch_to_asm+0x33/0x70
[ 1468.646711][  T113]  ? __pfx_kthread+0x10/0x10
[ 1468.646735][  T113]  ret_from_fork_asm+0x1a/0x30
[ 1468.646769][  T113]  </TASK>
[ 1468.646776][  T113] 
[ 1468.684224][   T30] audit: type=1326 audit(1752210786.928:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17765 comm="syz.7.3201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f8397b8e929 code=0x7ffc0000
[ 1468.688880][  T113] Allocated by task 17760:
[ 1468.688902][  T113]  kasan_save_track+0x3e/0x80
[ 1468.688931][  T113]  __kasan_kmalloc+0x93/0xb0
[ 1468.694599][   T30] audit: type=1326 audit(1752210786.928:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17765 comm="syz.7.3201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8397b8e929 code=0x7ffc0000
[ 1468.698988][  T113]  __kmalloc_cache_noprof+0x230/0x3d0
[ 1468.699017][  T113]  lmLogOpen+0x2d1/0xfb0
[ 1468.705841][   T30] audit: type=1326 audit(1752210786.928:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17765 comm="syz.7.3201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8397b8e929 code=0x7ffc0000
[ 1468.708718][  T113]  jfs_mount_rw+0xe9/0x670
[ 1468.708748][  T113]  jfs_fill_super+0x754/0xd80
[ 1468.714028][   T30] audit: type=1326 audit(1752210786.928:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17765 comm="syz.7.3201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f8397b8e929 code=0x7ffc0000
[ 1468.718316][  T113]  get_tree_bdev_flags+0x40e/0x4d0
[ 1468.718346][  T113]  vfs_get_tree+0x92/0x2b0
[ 1468.718370][  T113]  do_new_mount+0x2a2/0x9e0
[ 1468.724729][   T30] audit: type=1326 audit(1752210786.928:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17765 comm="syz.7.3201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8397b8e929 code=0x7ffc0000
[ 1468.726928][  T113]  __se_sys_mount+0x317/0x410
[ 1468.726958][  T113]  do_syscall_64+0xfa/0x3b0
[ 1468.996124][  T113]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1469.002026][  T113] 
[ 1469.004346][  T113] Freed by task 16894:
[ 1469.008409][  T113]  kasan_save_track+0x3e/0x80
[ 1469.013093][  T113]  kasan_save_free_info+0x46/0x50
[ 1469.018202][  T113]  __kasan_slab_free+0x62/0x70
[ 1469.022967][  T113]  kfree+0x18e/0x440
[ 1469.026869][  T113]  lmLogClose+0x297/0x520
[ 1469.031204][  T113]  jfs_umount+0x2ef/0x3c0
[ 1469.035536][  T113]  jfs_put_super+0x8c/0x190
[ 1469.040040][  T113]  generic_shutdown_super+0x132/0x2c0
[ 1469.045412][  T113]  kill_block_super+0x44/0x90
[ 1469.050193][  T113]  deactivate_locked_super+0xbc/0x130
[ 1469.055598][  T113]  cleanup_mnt+0x425/0x4c0
[ 1469.060019][  T113]  task_work_run+0x1d4/0x260
[ 1469.064629][  T113]  exit_to_user_mode_loop+0xec/0x110
[ 1469.069928][  T113]  do_syscall_64+0x2bd/0x3b0
[ 1469.074531][  T113]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1469.080434][  T113] 
[ 1469.082760][  T113] The buggy address belongs to the object at ffff8880285da000
[ 1469.082760][  T113]  which belongs to the cache kmalloc-1k of size 1024
[ 1469.096812][  T113] The buggy address is located 64 bytes inside of
[ 1469.096812][  T113]  freed 1024-byte region [ffff8880285da000, ffff8880285da400)
[ 1469.110607][  T113] 
[ 1469.112943][  T113] The buggy address belongs to the physical page:
[ 1469.119367][  T113] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x285d8
[ 1469.128122][  T113] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1469.136616][  T113] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 1469.144166][  T113] page_type: f5(slab)
[ 1469.148147][  T113] raw: 00fff00000000040 ffff88801a441dc0 dead000000000100 dead000000000122
[ 1469.156734][  T113] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 1469.165320][  T113] head: 00fff00000000040 ffff88801a441dc0 dead000000000100 dead000000000122
[ 1469.173995][  T113] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 1469.182663][  T113] head: 00fff00000000003 ffffea0000a17601 00000000ffffffff 00000000ffffffff
[ 1469.191696][  T113] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[ 1469.200381][  T113] page dumped because: kasan: bad access detected
[ 1469.206911][  T113] page_owner tracks the page as allocated
[ 1469.212648][  T113] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5652, tgid 5652 (dhcpcd), ts 60543939254, free_ts 60513769448
[ 1469.233514][  T113]  post_alloc_hook+0x240/0x2a0
[ 1469.238328][  T113]  get_page_from_freelist+0x21e4/0x22c0
[ 1469.243880][  T113]  __alloc_frozen_pages_noprof+0x181/0x370
[ 1469.249792][  T113]  alloc_pages_mpol+0x232/0x4a0
[ 1469.254665][  T113]  allocate_slab+0x8a/0x370
[ 1469.259185][  T113]  ___slab_alloc+0xbeb/0x1410
[ 1469.263885][  T113]  __kmalloc_noprof+0x305/0x4f0
[ 1469.268751][  T113]  load_elf_binary+0x321/0x2730
[ 1469.273622][  T113]  bprm_execve+0x999/0x1450
[ 1469.278146][  T113]  do_execveat_common+0x510/0x6a0
[ 1469.283190][  T113]  __x64_sys_execve+0x94/0xb0
[ 1469.287881][  T113]  do_syscall_64+0xfa/0x3b0
[ 1469.292391][  T113]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1469.298301][  T113] page last free pid 5651 tgid 5651 stack trace:
[ 1469.304632][  T113]  __free_frozen_pages+0xbc4/0xd30
[ 1469.309757][  T113]  __put_partials+0x156/0x1a0
[ 1469.314449][  T113]  put_cpu_partial+0x17c/0x250
[ 1469.319225][  T113]  __slab_free+0x2d5/0x3c0
[ 1469.323655][  T113]  qlist_free_all+0x97/0x140
[ 1469.328248][  T113]  kasan_quarantine_reduce+0x148/0x160
[ 1469.333722][  T113]  __kasan_slab_alloc+0x22/0x80
[ 1469.338590][  T113]  kmem_cache_alloc_noprof+0x1c1/0x3c0
[ 1469.344058][  T113]  vm_area_alloc+0x24/0x140
[ 1469.348584][  T113]  mmap_region+0xdc7/0x20c0
[ 1469.353090][  T113]  do_mmap+0xc45/0x10d0
[ 1469.357333][  T113]  vm_mmap_pgoff+0x2a6/0x4d0
[ 1469.361929][  T113]  do_syscall_64+0xfa/0x3b0
[ 1469.366437][  T113]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1469.372367][  T113] 
[ 1469.375214][  T113] Memory state around the buggy address:
[ 1469.380840][  T113]  ffff8880285d9f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1469.388914][  T113]  ffff8880285d9f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1469.397012][  T113] >ffff8880285da000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1469.405082][  T113]                                            ^
[ 1469.411232][  T113]  ffff8880285da080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1469.419372][  T113]  ffff8880285da100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1469.427432][  T113] ==================================================================
[ 1469.461214][  T113] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1469.468547][  T113] CPU: 1 UID: 0 PID: 113 Comm: jfsCommit Not tainted 6.16.0-rc5-next-20250710-syzkaller #0 PREEMPT(full) 
[ 1469.479944][  T113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1469.490180][  T113] Call Trace:
[ 1469.493493][  T113]  <TASK>
[ 1469.496641][  T113]  dump_stack_lvl+0x99/0x250
[ 1469.501270][  T113]  ? __asan_memcpy+0x40/0x70
[ 1469.505897][  T113]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1469.511219][  T113]  ? __pfx__printk+0x10/0x10
[ 1469.515862][  T113]  panic+0x2e2/0x7b0
[ 1469.519787][  T113]  ? __pfx_panic+0x10/0x10
[ 1469.524233][  T113]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[ 1469.530180][  T113]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1469.536540][  T113]  ? print_memory_metadata+0x314/0x400
[ 1469.542054][  T113]  ? txEnd+0x32d/0x530
[ 1469.546163][  T113]  check_panic_on_warn+0x89/0xb0
[ 1469.551117][  T113]  ? txEnd+0x32d/0x530
[ 1469.555201][  T113]  end_report+0x78/0x160
[ 1469.559461][  T113]  kasan_report+0x129/0x150
[ 1469.563989][  T113]  ? txEnd+0x32d/0x530
[ 1469.568078][  T113]  kasan_check_range+0x2b0/0x2c0
[ 1469.573047][  T113]  txEnd+0x32d/0x530
[ 1469.577008][  T113]  jfs_lazycommit+0x5ba/0xa90
[ 1469.581709][  T113]  ? __pfx_jfs_lazycommit+0x10/0x10
[ 1469.586953][  T113]  ? __pfx_default_wake_function+0x10/0x10
[ 1469.592783][  T113]  ? __kthread_parkme+0x7b/0x200
[ 1469.597737][  T113]  ? __kthread_parkme+0x1a1/0x200
[ 1469.602772][  T113]  kthread+0x711/0x8a0
[ 1469.606854][  T113]  ? __pfx_jfs_lazycommit+0x10/0x10
[ 1469.612067][  T113]  ? __pfx_kthread+0x10/0x10
[ 1469.616663][  T113]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1469.621870][  T113]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1469.627073][  T113]  ? __pfx_kthread+0x10/0x10
[ 1469.631679][  T113]  ret_from_fork+0x3f9/0x770
[ 1469.636283][  T113]  ? __pfx_ret_from_fork+0x10/0x10
[ 1469.641406][  T113]  ? __switch_to_asm+0x39/0x70
[ 1469.646178][  T113]  ? __switch_to_asm+0x33/0x70
[ 1469.651032][  T113]  ? __pfx_kthread+0x10/0x10
[ 1469.655649][  T113]  ret_from_fork_asm+0x1a/0x30
[ 1469.660448][  T113]  </TASK>
[ 1469.663799][  T113] Kernel Offset: disabled
[ 1469.668153][  T113] Rebooting in 86400 seconds..