last executing test programs:

10m48.073902382s ago: executing program 5 (id=320):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8, 0x1014}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x10, 0x4, 0x4, 0x7, 0x0, r0}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000000c0)={r2, &(0x7f0000000080), 0x0}, 0x20)

10m46.416113216s ago: executing program 5 (id=322):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x80000000, 0x1}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000340)=@framed={{0x18, 0x0, 0x0, 0x0, 0x10005}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)

10m46.268178518s ago: executing program 5 (id=324):
r0 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @auto=[0x35, 0x32, 0x39, 0x36, 0x33, 0x31, 0x62, 0x37, 0x30, 0x65, 0x33, 0x64, 0x34, 0x65, 0x30, 0x65]}, &(0x7f0000000080)={0x0, "17d3d709ba7cf5a4966e5a653c2faa1d02d64a431a6b8120e67c7b0fbc8c2459f1e9e32e16f4512ff20970022ecadefb68208ce3f394ecf06942d33225371ddb", 0x30}, 0x48, 0xffffffffffffffff)
keyctl$update(0x2, r0, &(0x7f0000008980)="aca090d8b30c", 0x6)

10m46.189619379s ago: executing program 5 (id=325):
r0 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x800700, &(0x7f0000000680)={[{@minixdf}, {@stripe={'stripe', 0x3d, 0x3}}, {@norecovery}, {@noinit_itable}, {@max_batch_time={'max_batch_time', 0x3d, 0x6}}, {@minixdf}, {@usrjquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@errors_continue}, {@dioread_lock}, {@noblock_validity}, {@noquota}]}, 0x3, 0x465, &(0x7f0000000f00)="$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")
chdir(&(0x7f0000000400)='./file0\x00')
r1 = creat(&(0x7f0000000140)='./bus\x00', 0x80)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000180)='./bus\x00', 0x0, 0x63d014, 0x0)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r2, 0x0)
syz_mount_image$squashfs(&(0x7f0000000000), &(0x7f00000001c0)='./file1\x00', 0x8000, &(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYBLOB="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", @ANYRES64, @ANYBLOB="a92fe8de136908e852768595aa546296821087e5b1bbc32156ada61f7c8a700880fe17c721514fd66f6d073702603f43f39d10ed62b784f0ea603a459b42f61a2174a30374bec0296612104179832730d5741398231d9ffd1e9995a06bb5ada99b9f2d4a71c580fe19a6dea2485a8ef6042e0d96839465522c03ac9b1e3e4be07bd09a1568add843860228063e6e4a59adc27ad98e26260605e1df1bd5e5dcc1735af362ce57237d4455a267daeea0b2368f8c69ed577f4849d608dcd60b0dabe1d6dada51feb6b1751dfa136da4ab1a73a25bcfba9ba846676558290f27b2a256c2257003da000000", @ANYRES16=r1, @ANYRESHEX, @ANYRESOCT, @ANYRES64=r0, @ANYRESHEX, @ANYRES32=r2, @ANYRESOCT, @ANYRESOCT], 0x10, 0x1da, &(0x7f0000000440)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file7\x00', 0x400, 0x0, 0x0, 0x0, 0x0)

10m45.658383365s ago: executing program 5 (id=329):
syz_mount_image$squashfs(&(0x7f0000000040), &(0x7f0000000540)='./file6\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYRES64=0x0, @ANYRESOCT, @ANYRES8, @ANYRESDEC, @ANYRES8, @ANYRES64], 0x21, 0x1cd, &(0x7f0000000280)="$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")
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x4800, 0x0, 0x0, 0x0, &(0x7f0000000240))
r0 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='.\x00', 0x0, 0x0)
fchmodat(0xffffffffffffff9c, 0x0, 0xfffffed3)
getdents(r0, &(0x7f0000000480)=""/181, 0xb5)

10m44.452540308s ago: executing program 5 (id=336):
pipe(&(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_misc(r1, &(0x7f0000000080)="d6", 0x1)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000440)="cb56b6cc04f01f56bb6e284f5fab5c66", 0x10)
r3 = accept4(r2, 0x0, 0x0, 0x800)
splice(r0, 0x0, r3, 0x0, 0x1e8640, 0x0)

10m42.656475657s ago: executing program 32 (id=336):
pipe(&(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_misc(r1, &(0x7f0000000080)="d6", 0x1)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000440)="cb56b6cc04f01f56bb6e284f5fab5c66", 0x10)
r3 = accept4(r2, 0x0, 0x0, 0x800)
splice(r0, 0x0, r3, 0x0, 0x1e8640, 0x0)

5m30.602594283s ago: executing program 2 (id=2012):
sendmsg$TIPC_NL_MEDIA_SET(0xffffffffffffffff, &(0x7f0000000f40)={0x0, 0x0, &(0x7f0000000f00)={&(0x7f0000000000)=ANY=[@ANYRES16=0x0, @ANYBLOB="010000000000000000000c0000002800"], 0x3c}}, 0x5)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2182, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/consoles\x00', 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x7, [@var={0x4, 0x0, 0x0, 0xe, 0x3}, @func_proto={0x0, 0x0, 0x0, 0xd, 0x4}, @ptr, @func={0x4, 0x0, 0x0, 0xf, 0x2}]}, {0x0, [0x0, 0x0, 0x0, 0x61, 0x5f]}}, 0x0, 0x53}, 0x28)
sendfile(r3, r4, 0x0, 0x20000023896)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000100)={0x1, &(0x7f0000000280)=[{0x2, 0x8, 0x8, 0x1}]}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=@newlink={0x64, 0x10, 0x1, 0x70bd29, 0x0, {0x0, 0x0, 0x0, 0x0, 0x4d25c}, [@IFLA_ALT_IFNAME={0x14, 0x35, 'wlan1\x00'}, @IFLA_VFINFO_LIST={0x30, 0x16, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@IFLA_VF_MAC={0x28, 0x1, {0xffffffff, @random="56dbee55ed05"}}]}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x1}, 0x8040)
ioctl$sock_inet_SIOCSIFADDR(r5, 0x8916, &(0x7f00000001c0)={'macvlan0\x00', {0x2, 0x4e21, @private=0xa010102}})
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
write$P9_RCREATE(0xffffffffffffffff, &(0x7f0000000080)={0x18, 0x73, 0x2, {{0x40, 0x0, 0x2}, 0x8}}, 0x18)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
accept$inet6(0xffffffffffffffff, 0x0, &(0x7f0000000040))

5m27.807769083s ago: executing program 2 (id=2022):
dup2(0xffffffffffffffff, 0xffffffffffffffff)
io_pgetevents(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f00000006c0)=ANY=[@ANYBLOB="18110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000004fab0085000000860000009500000000"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000040)=r2, 0x4)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000004b80)=[{{0x0, 0x0, &(0x7f0000004080)=[{&(0x7f0000001380)="52348bf9812fc081678b5760a4c4967393fd8939aaf12a894c5424df616c4eea14fbac2dad114a75c405d89fafa5715b56abba4bbceca456d8225e3f6eb57a03287e74c7bd74e40e3fda3150f92d181e7c82cb2f8ea0416fc4c0f111161cdb9a52911925644e25f871d02f403c83214f830f93b30b874e75cab53f1ed7871f21c0d654a47fab0637868517d7e8d9915e99b4dc2dcafdcb2ef2a012ec95418a544c32181fb969e01318e00a12fd1b2a0eb57bcf7de086e320f2d4be4e1453010be849e4d7dba41558329699aacd3d1c7d", 0xd0}], 0x1}}], 0x1, 0x4)

5m27.659728857s ago: executing program 2 (id=2023):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0x1}, {0xffff, 0xffff}, {0x0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newtfilter={0x50, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r4, {0xe, 0x3}, {}, {0x7, 0xe}}, [@filter_kind_options=@f_flow={{0x9}, {0x20, 0x2, [@TCA_FLOW_EMATCHES={0x1c, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8}, @TCA_EMATCH_TREE_LIST={0x10, 0x2, 0x0, 0x1, [@TCF_EM_CONTAINER={0xc, 0x1, 0x0, 0x0, {{0x0, 0x0, 0xff83}}}]}]}]}}]}, 0x50}}, 0x2008c014)

5m23.791261757s ago: executing program 2 (id=2033):
signalfd4(0xffffffffffffffff, &(0x7f00000001c0)={[0x4]}, 0x8, 0x80000)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)
socket$inet6(0xa, 0x2, 0x0)
socket(0x400000000010, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3000010, &(0x7f0000000340)={[{@errors_remount}, {@nodioread_nolock}]}, 0x1, 0x512, &(0x7f0000000380)="$eJzs3d9rY1kdAPDvvW1mOzNdk1WRdcF1cVc6i07Sbt3dIqLriz4tqOv7WNu0lCZNadJ1Whbt4H8ggoJPPvki+AcIwzz4B8jAgL6ID6KiiM7og6DOlSQ3TidN2rrTNp3m84HTnHPvzf2ec0NO7o/TewMYWy9FxFsRMRERr0ZEMZ+e5in2uqm93IP77y21UxJZ9s5fk0jyab11tdcxGRFX87dNRcTXvhzxzeRg3ObO7vpirVbdysuVVn2z0tzZvb5WX1ytrlY35ufn3lh4c+H1hdks90TtLPUyP/nS529/+lu/u/Hna99uV+tzH4lC9LXjJHWbXuhsi572Nto6jWAj0PvMC6OuCAAAx9Lex/9gRHyis/9fjInO3lyfiVHUDAAAADgp2Rem499JRAYAAABcWGlETEeSlvOxANORppfycwMfjitprdFsfWqlsb2x3J4XUYpCurJWq87mY4VLUUja5bl8jG2v/FpfeT4inouI7xcvd8rlpUZtecTnPgAAAGBcXO07/v9HMe3kjzbg/wQAAACA86s0tAAAAABcFA75AQAA4OLrP/6/PaJ6AAAAAKfiK2+/3U5Z7/nXy+/ubK833r2+XG2ul+vbS+WlxtZmebXRWO3cs69+1PpqjcbmZ2Jj+2alVW22Ks2d3Rv1xvZG68baY4/ABgAAAM7Qcx+/8+skIvY+e7mTIr8PIMBj/jDqCgAnaWLUFQBGxl28YXwVRl0BYOSSI+YbvAMAAE+/mY8evP7fe/6/cwNwsRnrAwDjx/V/GF8FIwBhrKUR8YFu9plhywy9/v/L40bJsoi7xf1TnF8EAICzNd1JSVrOjwOmI03L5YhnI9JSFJKVtVp1Nj8++FWx8Ey7PNd5Z3LkmGEAAAAAAAAAAAAAAAAAAAAAAAAAoCvLksgAAACACy0i/VPSuZt/xEzxlen+8wOXkn8W44954Ufv/ODmYqu1Ndee/rfOs7wuRUTrh/n014Y+PgwAAAA4acne0Fnd4/T8de5MawUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAGHhw/72lXjrLuH/5YkSUBsWfjKnO61QUIuLK35OY3Pe+JCImTiD+3q2IeH5Q/CQeZllWymvRHz+NiMunHL/U2TTD4189gfgwzu60+5+3Bn3/0nip8zr4+zeZpyc1vP9L88jPd/q5Qf3fswfWVh8Y44V7P6sMjX8r4oXJwf1Pr/9NhsR/+cDa/pVl2cEY3/j67u6w+NmPI2YG/v4kj8WqtOqblebO7vW1+uJqdbW6MT8/98bCmwuvL8xWVtZq1fzvwBjf+9jPHx7W/isD4v/2N93+97D2vzJspX3+c+/m/Q91s4VB8a+9PPD3dyqGxE/z375P5vn2/Jlefq+b3+/Fn9598bD2Lw/Z/kd9/teO2f5Xv/rd3x9zUQDgDDR3dtcXa7Xq1iGZqWMs8zRmfjF1Lqrxf2ay73Q/ufNSn/ebae+tPprSa9U5qNi+THZmsSbinDT5f5mRdksAAMApeLTTP+qaAAAAAAAAAAAAAAAAAAAAwPg6i9uJ9cfcG01TAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAO9d8AAAD//yLg4A8=")
getitimer(0x0, &(0x7f0000000080))
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$getregset(0x4205, r0, 0x202, &(0x7f0000000240)={&(0x7f0000000180)=""/120, 0xffffffffffffff28})
setsockopt$MRT_DEL_VIF(0xffffffffffffffff, 0x0, 0xcb, 0x0, 0x21)

5m23.036543283s ago: executing program 2 (id=2040):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000001a300)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
unshare(0x8000000)
semget$private(0x0, 0x4000, 0x0)
semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000740))
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x810)
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000280)='./file2\x00', 0x2000010, &(0x7f0000000000)=ANY=[], 0x1, 0x6f5, &(0x7f0000002400)="$eJzs3c1vHGcdB/DvrNeut1Sp0yY0QkGYRCpIFokTK4VwwSCEcqhQVQ49W4nTWNkkVeKitELgAoITEof+AQXJNw4IiXtQuHApt159rITEJeIQ9bJoZmft3fX6LfFLAp9PNJ5n5nnmmd/85pkZ7zqrDfB/68pMmg9S5MrMm/fL5bXVufba6twLdXU7SVluJM3uLMXtpHiYzJf1Rd+UvvkmHy9dfvuzR2ufd5ea9VS1H9tuuxFGtF2pp0zX/U2P3HJ8t7tYqcPLS0mu1vNBE7vta6BhmbSz9RyOXGdQI52VvWy+l+sWeMb0nk5F97m5yVTyYpLJ+veA1HeHxuFFuK++3ivs6S4HAAAAz6lP7xx1BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPD8qb7/v7W+2OiuSqZT9L7/f6K3ri4/g+b7F8a2a/ngwGMBAAAAAAAAgIP3tcd5nPs5VpbHk3SK6m/+Z6rKE/mik3wp7+deFnM353I/C1nOcu7mQpKpvo4m7i8sL9+9sL5lafSWF0duefEwjxoAAAAAAAAA/uf8Mq3u3/8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBZUSRj3Vk1najnmUqjmY26rCT/TDJx1PHuQTFq5YPDjwMAAACeyuQTbPPy4zzO/RzrLXeK6jX/l6vXy5N5P7eznKUsp53FXKtfQ5ev+htrq3PttdW5W+VULg/2+/1/7ymMibqHsWpp1J5PVS1auZ6las25XK2CuZZGd99nk1O9ePri6vNRGVPxvdouI2vWaS139vut3kXYF4NvRTS2adnaCC5Zz8hsHVu55fFuBorqjZpkOBPDZ2fTzpoDS1NVk/H1PV1IY/2dnxMHkPMX63l5PL850JzvRn8u1jPRSJWJi73RV14z22ci+cZf//TOjfbtmzeu35s52kPag7Et1g+Pibm+TLz2XGeiucf2s1UmTq4vX8mP8pPMZDpv5W6W8tMsZDmL6dT1C/V4Ln9ObZ+p+YGlt3aKZKI+L91ztpuYpvPDqrSQM9W2x7KUIndyLYt5o/p3MRfy7VzKpVzuO8Mnt4y7Orbqqm8MX/W9M/23kcGf/WZdKO9uv924y81vd8Rbjc790r33l3k93pfX7qh/tN7qeN91MNuXpVd62Rkf2fmT3BubX6kL5T5+tcNz4nBN1ZkoL6DeU6IX3avdTDSrZ9Hmcf6HTrld2rc7nRsL723R/8rQ8uv1vBxWq1/dqXXP6FOxv8rx8kom6zvJ4Ogo615dv8v01XU2xnK3bvCJW253sqorit6V+uPcqQbA5it1ov4dbnNPF6u614bqTtf38LLuVF/dwO9buZN2rvUf6MwhJBOAXfrHO+vFqbw40fpX69PWJ61ft2603pz8wQvfeeH0RMb/Pv7d5uzY643TxV/ySX6+8fofAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4cvc++PDmQru9eHd0obF11UChleE1O/U8VCjqL/QZ1eZm/S0Fe+rwiAuTSQbWVN9ztP/7am7fpjUcxqZC5xfJoeen9yWCo9v8riw0d3W65wfW/Hlzhx/tHM9YhsbhLq6LAyw0ciA9d17eYiSMZfQAOKo7EnBYzi/feu/8vQ8+/NbSrYV3F99dvD1+6dLl2cuX3pg7f32pvTjb/XnUUQIHYeOhf9SRAAAAAAAAAAAAALs16qMCZ17a6UMjmwqNJMOf8fA/CwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIB9cWUmzQcpcmH23Gy5vLY61y6nXnmjZTNJo5EUP0uKh8l8ulOm+ror8seH6YzYz8dLl9/+7NHa5xt9Nbvtk0Y939r2tUlW6inTScbq+VMY6O/qU/dX/Kd3DGXCvuh0OvNPFx/sj/8GAAD//92u7JE=")
fchown(0xffffffffffffffff, 0x0, 0xee01)
mkdirat(0xffffffffffffff9c, 0x0, 0x14e174135c0b8755)

5m20.51889357s ago: executing program 2 (id=2054):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f0000000b80)={[{@mblk_io_submit}, {@nodioread_nolock}, {@noquota}, {@barrier}, {@noload}, {@dioread_nolock}]}, 0x1, 0x599, &(0x7f0000001280)="$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")
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x4a)
ftruncate(r0, 0x2007ffc)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
sendfile(r1, r1, 0x0, 0xe0000000)
creat(&(0x7f0000000200)='./file1\x00', 0x63)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, 0x0, 0x0)

5m19.95368987s ago: executing program 33 (id=2054):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f0000000b80)={[{@mblk_io_submit}, {@nodioread_nolock}, {@noquota}, {@barrier}, {@noload}, {@dioread_nolock}]}, 0x1, 0x599, &(0x7f0000001280)="$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")
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x4a)
ftruncate(r0, 0x2007ffc)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
sendfile(r1, r1, 0x0, 0xe0000000)
creat(&(0x7f0000000200)='./file1\x00', 0x63)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, 0x0, 0x0)

7.351808037s ago: executing program 4 (id=3538):
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r0 = socket$packet(0x11, 0x2, 0x300)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x8}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000080)={'bridge0\x00', {0x2, 0x4e22, @local}})
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, 0x0, 0x0, 0x4000003, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0900000008000000dd000000ff00000000000000", @ANYRES32, @ANYRES32=0x0], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000440), 0x10)
listen(0xffffffffffffffff, 0x0)

5.837938585s ago: executing program 4 (id=3544):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x20, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x73cea2d47785b264, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
open(&(0x7f0000000080)='./bus\x00', 0x206281, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r1 = epoll_create1(0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000400)={0xa})
epoll_pwait(r1, &(0x7f0000000080)=[{}], 0x1, 0x4c6, 0x0, 0x0)

5.676334355s ago: executing program 3 (id=3545):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800"/13], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000580)={r0, 0x0, 0x14, 0x0, &(0x7f0000000080)="f6f4e9a10000502468da5eb1c6b2feff8833c000", 0x0, 0x86, 0x0, 0x3, 0x0, &(0x7f0000000000)="daf9e8", 0x0}, 0x50)

5.488204684s ago: executing program 7 (id=3546):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000002c0)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0xfffffffffffffffc}, 0x18)
close(0x3)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})
r2 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0)
flock(r2, 0x2)

5.466029648s ago: executing program 6 (id=3547):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002140), 0x2, 0x0)
fcntl$setownex(r0, 0xf, &(0x7f0000000040)={0x2, 0xffffffffffffffff})
quotactl$Q_GETQUOTA(0x3, 0x0, 0x0, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, 0x0, &(0x7f00000002c0))
sendmsg$nl_route(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="540000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002c0012800e0001006970366772657461700000001800028014000700fc00000000000000000000000000000008000a00", @ANYRES32], 0x54}}, 0x0)

5.354046306s ago: executing program 3 (id=3548):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
connect$can_bcm(r0, &(0x7f0000000040)={0x1d, r2}, 0x10)

5.176140239s ago: executing program 7 (id=3549):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(0x0, r0)
sendmsg$TEAM_CMD_OPTIONS_GET(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001900)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010029bd7000fbdbdf2502000000080001"], 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x40010)

5.175884084s ago: executing program 3 (id=3550):
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/110, 0x14b}, {&(0x7f0000000280)=""/85, 0x53}, {&(0x7f0000000fc0)=""/4096, 0x564}, {&(0x7f0000000400)=""/106, 0xb}, {&(0x7f0000000540)=""/88, 0x60}, {&(0x7f0000000300)=""/88, 0x630}, {&(0x7f00000007c0)=""/154, 0x4a}, {&(0x7f0000000100)=""/16, 0x158}], 0x8, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x2, &(0x7f0000003700)={0x77359400})
sendmsg$IPCTNL_MSG_EXP_DELETE(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)=ANY=[@ANYBLOB="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"/312], 0x140}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010027bd7000fcdbdf254400000008000300", @ANYRES32=r3, @ANYBLOB="0a001800030303030303000004005a8020005a8018"], 0x4c}}, 0x4040810)

5.160399507s ago: executing program 0 (id=3551):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000100)="89e7ee2c78dad9b4b473fec96558fb", 0xf}, {&(0x7f0000000500)="e98314d58ce4b24ee137cea9c243", 0xe}], 0x2)

4.997449306s ago: executing program 7 (id=3552):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)=ANY=[@ANYBLOB="d80000001b0001000000000000000000ac1414aa000000000000000000000000fc0100"/48, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000c00"], 0xd8}}, 0x8814)

4.848141369s ago: executing program 7 (id=3553):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x800000, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r4)
r5 = socket$unix(0x1, 0x5, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000026c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2, 0x2}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x0, '\x00', 0x4, 0x7, 0x100, 0x8}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000001c0)=@newqdisc={0x6c, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x80000, {0x0, 0x0, 0x0, r7, {}, {0x2, 0xb}, {0x9, 0x4}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x40, 0x2, [@TCA_TBF_BURST={0x8, 0x6, 0x7f}, @TCA_TBF_PARMS={0x28, 0x1, {{0x0, 0x0, 0x8001, 0x7, 0x9223, 0x3}, {0x5, 0x2, 0xc, 0x2, 0x401, 0xe}, 0x2, 0x3, 0x19e8}}, @TCA_TBF_PRATE64={0xc, 0x5, 0x3e2e3c6fc38a2b0f}]}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x2000c0e9}, 0x4008000)
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

4.77171781s ago: executing program 4 (id=3554):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000040)={0x0, 0xaf1}, 0x8)
bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x25, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x5c}, [@initr0]}, 0x0}, 0x94)
sendmmsg$inet6(r0, &(0x7f0000000200)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x1, @loopback, 0x1}, 0x70, &(0x7f0000000580)=[{&(0x7f0000001680)='\t', 0x1}], 0x1}}], 0x1, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=@newlink={0x28, 0x10, 0x1, 0x70bd25, 0x25dfdbfa, {0x0, 0x0, 0x0, 0x0, 0x40810}, [@IFLA_GROUP={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x4008011}, 0x4004)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f00000001c0)={0x0, 0xffff}, 0x8)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4e, 0x0, 0x0)
close(r0)

2.965607309s ago: executing program 6 (id=3555):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmmsg$inet(r0, &(0x7f00000020c0)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000500)="0c1874268c0000bd3f4c2ee4c3e4fdfea05e8e04a1a42a60557fb65e7388442bcb546079b365311561bb95fb1aff7128184ea4ca0f437142f62b8f3200e2eb47d44e67968ef5a2b24506d380fd62fac61aa99133d75de2774168ed1224dee2e650791e490c7c3f514a1b39c61d40894d45c2205a1d988b31cd6dc9ba0908fb6e4cd35d064b5085cd470e8282240c64159ba4b6b084446629f37ec8700db7d6dea32c10c93f7f19f2de78816ca02e67b7ab59f59fdf2bea3156f5938df17892e404e8ae", 0x6e}], 0x1, 0x0, 0x0, 0x2000000}}], 0x800000000000369, 0x44000)

2.9002871s ago: executing program 3 (id=3556):
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r0 = socket$packet(0x11, 0x2, 0x300)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x8}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000080)={'bridge0\x00', {0x2, 0x4e22, @local}})
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, 0x0, 0x0, 0x4000003, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0900000008000000dd000000ff00000000000000", @ANYRES32, @ANYRES32=0x0], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000440), 0x10)
listen(0xffffffffffffffff, 0x0)

2.852815256s ago: executing program 6 (id=3558):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/20, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000002000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000f00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x30, 0x0, 0x1, 0x0, 0xffffe, {{}, {}, {0x14, 0x19, {0x1, 0x1, 0x0, 0xffffffff}}}}, 0x30}, 0x1, 0x0, 0x0, 0x24000001}, 0x1004)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffd69, 0x0, 0x0, 0x22, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1}, 0x10)
syz_emit_ethernet(0xfdef, &(0x7f0000000400)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0086dd600a000800fe"], 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r2, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}], 0x48}, 0x0)

2.768125052s ago: executing program 4 (id=3559):
sendmsg$TIPC_NL_MEDIA_SET(0xffffffffffffffff, 0x0, 0x5)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2182, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x7, [@var={0x4, 0x0, 0x0, 0xe, 0x3}, @func_proto={0x0, 0x0, 0x0, 0xd, 0x4}, @func={0x4, 0x0, 0x0, 0xf, 0x2}]}, {0x0, [0x0, 0x0, 0x0, 0x61, 0x5f]}}, 0x0, 0x47}, 0x28)
sendfile(r4, r5, 0x0, 0x20000023896)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000100)={0x1, &(0x7f0000000280)=[{0x2, 0x8, 0x8, 0x1}]}, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=@newlink={0x64, 0x10, 0x1, 0x70bd29, 0x0, {0x0, 0x0, 0x0, 0x0, 0x4d25c}, [@IFLA_ALT_IFNAME={0x14, 0x35, 'wlan1\x00'}, @IFLA_VFINFO_LIST={0x30, 0x16, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@IFLA_VF_MAC={0x28, 0x1, {0xffffffff, @random="56dbee55ed05"}}]}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x1}, 0x8040)
ioctl$sock_inet_SIOCSIFADDR(r6, 0x8916, &(0x7f00000001c0)={'macvlan0\x00', {0x2, 0x4e21, @private=0xa010102}})
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
write$P9_RCREATE(0xffffffffffffffff, &(0x7f0000000080)={0x18, 0x73, 0x2, {{0x40, 0x0, 0x2}, 0x8}}, 0x18)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
accept$inet6(0xffffffffffffffff, 0x0, &(0x7f0000000040))

2.767535588s ago: executing program 0 (id=3560):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800"/13], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000580)={r0, 0x0, 0x14, 0x0, &(0x7f0000000080)="f6f4e9a10000502468da5eb1c6b2feff8833c000", 0x0, 0x86, 0x0, 0x3, 0x0, &(0x7f0000000000)="daf9e8", 0x0}, 0x50)

2.652368759s ago: executing program 6 (id=3561):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x4000, &(0x7f0000000740)={[{@test_dummy_encryption}, {@i_version}, {@noblock_validity}, {@commit={'commit', 0x3d, 0x5}}, {@inlinecrypt}, {@max_batch_time}, {@abort}, {@auto_da_alloc}, {@lazytime}, {@noauto_da_alloc}, {@block_validity}]}, 0xd, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
socket$inet_tcp(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0xffffffb3, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
keyctl$session_to_parent(0x12)

2.56959881s ago: executing program 1 (id=3562):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000003c0)='kmem_cache_free\x00', r1}, 0x18)
close(r0)

2.395737403s ago: executing program 0 (id=3563):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[], &(0x7f0000000180), 0x0)

2.340137435s ago: executing program 1 (id=3564):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(0x0, r0)
sendmsg$TEAM_CMD_OPTIONS_GET(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001900)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010029bd7000fbdbdf2502000000080001"], 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x40010)

1.347730167s ago: executing program 7 (id=3565):
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10)
readv(r0, 0x0, 0x0)
sendfile(r0, r0, 0x0, 0x800000009)

1.181519474s ago: executing program 3 (id=3566):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="9feb0100180000000000000014000000140000000700000000000000010000060400000003000000ff000000002e5f515f7f"], 0x0, 0x33, 0x0, 0x1}, 0x28)

1.014548542s ago: executing program 4 (id=3567):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002140), 0x2, 0x0)
fcntl$setownex(r0, 0xf, &(0x7f0000000040)={0x2, 0xffffffffffffffff})
quotactl$Q_GETQUOTA(0x3, 0x0, 0x0, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, 0x0, &(0x7f00000002c0))
sendmsg$nl_route(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="540000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002c0012800e0001006970366772657461700000001800028014000700fc00000000000000000000000000000008000a00", @ANYRES32], 0x54}}, 0x0)

949.280746ms ago: executing program 7 (id=3568):
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/110, 0x14b}, {&(0x7f0000000280)=""/85, 0x53}, {&(0x7f0000000fc0)=""/4096, 0x564}, {&(0x7f0000000400)=""/106, 0xb}, {&(0x7f0000000540)=""/88, 0x60}, {&(0x7f0000000300)=""/88, 0x630}, {&(0x7f00000007c0)=""/154, 0x4a}, {&(0x7f0000000100)=""/16, 0x158}], 0x8, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x2, &(0x7f0000003700)={0x77359400})
sendmsg$IPCTNL_MSG_EXP_DELETE(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)=ANY=[@ANYBLOB="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"/312], 0x140}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010027bd7000fcdbdf254400000008000300", @ANYRES32=r3, @ANYBLOB="0a001800030303030303000004005a8020005a8018000080"], 0x4c}}, 0x4040810)

880.341804ms ago: executing program 6 (id=3569):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x85)
ioprio_set$uid(0x3, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00')
sendfile(r0, r1, 0x0, 0x3)

880.144914ms ago: executing program 0 (id=3570):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x3, &(0x7f0000000180)=[{0x28, 0x0, 0x73, 0xfffff034}, {0x50, 0x0, 0x5, 0x2}, {0x6, 0x7, 0x2, 0xffffffff}]}, 0x10)
syz_emit_ethernet(0x3e, &(0x7f00000002c0)=ANY=[@ANYBLOB="ffffffffffff00000000000008004500006addefd9"], 0x0)

865.626538ms ago: executing program 1 (id=3571):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000980)='mm_page_free\x00', r0, 0x0, 0x9}, 0x18)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000380), 0x84d03, 0x0)

856.444779ms ago: executing program 3 (id=3572):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000040)={0x0, 0xaf1}, 0x8)
bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x25, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x5c}, [@initr0]}, 0x0}, 0x94)
sendmmsg$inet6(r0, &(0x7f0000000200)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x1, @loopback, 0x1}, 0x70, &(0x7f0000000580)=[{&(0x7f0000001680)='\t', 0x1}], 0x1}}], 0x1, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=@newlink={0x28, 0x10, 0x1, 0x70bd25, 0x25dfdbfa, {0x0, 0x0, 0x0, 0x0, 0x40810}, [@IFLA_GROUP={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x4008011}, 0x4004)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f00000001c0)={0x0, 0xffff}, 0x8)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4e, 0x0, 0x0)
close(r0)

674.395197ms ago: executing program 4 (id=3573):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
close(r1)
socket$netlink(0x10, 0x3, 0x0)
writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000100)="89e7ee2c78dad9b4b473fec96558fb", 0xf}, {&(0x7f0000000500)="e98314d58ce4b24ee137cea9c243", 0xe}], 0x2)

578.372611ms ago: executing program 0 (id=3574):
io_pgetevents(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f00000006c0)=ANY=[@ANYBLOB="18110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000004fab0085000000860000009500000000"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000040)=r2, 0x4)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r3, 0x0, 0x0, 0x4)

576.329317ms ago: executing program 1 (id=3575):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800"/15], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000580)={r0, 0x0, 0x14, 0x0, &(0x7f0000000080)="f6f4e9a10000502468da5eb1c6b2feff8833c000", 0x0, 0x86, 0x0, 0x3, 0x0, &(0x7f0000000000)="daf9e8", 0x0}, 0x50)

478.095529ms ago: executing program 6 (id=3576):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000001, 0x31, 0xffffffffffffffff, 0xffffd000)
remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x1, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
mbind(&(0x7f00004c9000/0x3000)=nil, 0x3000, 0x8000, 0x0, 0x20, 0x2)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffc000)
socket(0x1e, 0x4, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
getpid()
madvise(&(0x7f0000a5e000/0x1000)=nil, 0x1000, 0x17)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00'})
r2 = syz_io_uring_setup(0x4b5, &(0x7f0000010400)={0x0, 0x86e1, 0x1, 0x8}, &(0x7f0000010080), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f0000000140)=[{0x0}, {0x0}], 0x2)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r2, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000340), 0xa002a0}], &(0x7f00000005c0), 0x2}, 0x20)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x4}, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x40002, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)

436.43954ms ago: executing program 0 (id=3577):
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x39)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@remote, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x1}, {{@in6=@mcast2, 0x0, 0x2b}, 0x0, @in=@empty, 0x0, 0x3}}, 0xe8)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="22cf330000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000011000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000000702"], 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x2, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x8000}, [@call={0x85, 0x0, 0x0, 0x75}]}, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r3}, 0x10)
r4 = gettid()
process_vm_writev(r4, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000002080)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast1=0xe0000002, @in, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x20, 0x11}, {0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffffffffffb}}}, 0xb8}}, 0x20004800)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r6 = syz_io_uring_setup(0x10d2, &(0x7f0000000480)={0x0, 0x758e, 0x80, 0x0, 0x34f}, &(0x7f00000000c0)=<r7=>0x0, &(0x7f0000000080)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000002c0)={0x1, &(0x7f0000000200)=[{0x32, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r7, r8, &(0x7f0000000200)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8})
io_uring_enter(r6, 0x47bc, 0x0, 0x0, 0x0, 0x0)

404.641411ms ago: executing program 1 (id=3578):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
getsockopt$IP6T_SO_GET_REVISION_TARGET(r0, 0x29, 0x45, &(0x7f0000000980)={'icmp\x00'}, &(0x7f00000009c0)=0x1e)

0s ago: executing program 1 (id=3579):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000411, &(0x7f0000000f40)={[{@grpid}, {@grpquota}, {@test_dummy_encryption}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0100000004000000080000000b"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="81ffffff00000000180012800e0001007769726567756172640000000400028008000a"], 0x40}}, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000d80)={0xffffffffffffffff, 0x20, &(0x7f0000000d40)={&(0x7f0000000b80)=""/156, 0x9c, 0x0, &(0x7f0000000c40)=""/217, 0xd9}}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x1800700, &(0x7f00000004c0)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0xff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@min_batch_time={'min_batch_time', 0x3d, 0x5}}, {@resgid}, {@barrier}, {@nombcache}]}, 0x0, 0x47c, &(0x7f0000001040)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10)

kernel console output (not intermixed with test programs):

13140] usb 7-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  709.097674][T13140] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  709.106335][T13140] usb 7-1: Product: syz
[  709.110666][T13140] usb 7-1: Manufacturer: syz
[  709.115448][T13140] usb 7-1: SerialNumber: syz
[  709.353068][T13140] uvcvideo 7-1:220.0: Found UVC 7.01 device syz (8086:0b07)
[  709.364522][T13140] uvcvideo 7-1:220.0: No valid video chain found.
[  709.395741][T13140] usb 7-1: USB disconnect, device number 39
[  710.978418][T14105] random: crng reseeded on system resumption
[  711.447595][T14125] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2765'.
[  711.529202][T14108] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2759'.
[  711.538366][T13140] usb 1-1: new high-speed USB device number 53 using dummy_hcd
[  711.555528][T14119] syzkaller0: entered promiscuous mode
[  711.571559][T14119] syzkaller0: entered allmulticast mode
[  711.700925][T13140] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  711.732406][T13140] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  711.773833][T13140] usb 1-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  711.799956][T13140] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  711.819657][T13140] usb 1-1: config 0 descriptor??
[  711.926994][T14133] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2767'.
[  712.295098][T14141] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2770'.
[  713.507708][ T5830] Bluetooth: hci6: Opcode 0x1003 failed: -110
[  713.972803][T14131] veth5: entered promiscuous mode
[  713.978390][T14131] bridge2: port 1(veth5) entered blocking state
[  713.985908][T14131] bridge2: port 1(veth5) entered disabled state
[  713.992478][T14131] veth5: entered allmulticast mode
[  714.364475][T13145] usb 1-1: USB disconnect, device number 53
[  715.296451][T14174] random: crng reseeded on system resumption
[  715.694389][T14183] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2782'.
[  715.723282][T14171] syzkaller0: entered promiscuous mode
[  715.753164][T14171] syzkaller0: entered allmulticast mode
[  715.843784][T13145] usb 4-1: new low-speed USB device number 57 using dummy_hcd
[  715.856686][T14188] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2784'.
[  716.015957][T13145] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  716.032638][T13145] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  716.067054][T13145] usb 4-1: config 0 descriptor??
[  716.750885][T13145] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61
[  716.772970][T13145] asix 4-1:0.0: probe with driver asix failed with error -61
[  717.395657][T13145] usb 7-1: new high-speed USB device number 40 using dummy_hcd
[  717.556109][T13145] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  717.566802][T13145] usb 7-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  717.577206][T13145] usb 7-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  717.587369][T13145] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  717.609124][T13145] usb 7-1: config 0 descriptor??
[  718.109056][T14194] veth5: entered promiscuous mode
[  718.114977][T14194] bridge3: port 1(veth5) entered blocking state
[  718.122031][T14194] bridge3: port 1(veth5) entered disabled state
[  718.128911][T14194] veth5: entered allmulticast mode
[  718.426880][T14221] syzkaller0: entered promiscuous mode
[  718.433977][T14221] syzkaller0: entered allmulticast mode
[  719.318990][T13127] usb 4-1: USB disconnect, device number 57
[  719.494248][T14232] random: crng reseeded on system resumption
[  719.578702][T14235] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2799'.
[  719.746030][T14236] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2800'.
[  719.793960][T13127] usb 4-1: new high-speed USB device number 58 using dummy_hcd
[  719.974429][T13127] usb 4-1: Using ep0 maxpacket: 16
[  720.014088][T13127] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  720.046952][T13127] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  720.071647][T13127] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  720.086788][T13127] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  720.113274][T13127] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  720.159763][T13127] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  720.185017][T13127] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  720.217339][T13127] usb 4-1: Manufacturer: syz
[  720.236462][T13127] usb 4-1: config 0 descriptor??
[  720.311792][T11549] usb 7-1: USB disconnect, device number 40
[  720.577454][T13127] rc_core: IR keymap rc-hauppauge not found
[  720.583443][T13127] Registered IR keymap rc-empty
[  720.595325][T13127] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  720.633031][T13127] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  720.668310][T13127] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  720.699833][T13127] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input40
[  720.824383][T13127] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  720.855517][T13127] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  720.900222][T13127] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  720.927027][T13127] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  720.957229][T13127] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  720.984866][T13127] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  721.007141][T13127] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  721.034640][T13127] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  721.058392][T13127] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  721.087224][T13127] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  721.121967][T13127] mceusb 4-1:0.0: Registered І with mce emulator interface version 1
[  721.139097][T13127] mceusb 4-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  721.164063][T13127] usb 4-1: USB disconnect, device number 58
[  721.518453][T14269] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2806'.
[  722.465935][T14271] veth5: entered promiscuous mode
[  722.476071][T14271] bridge2: port 1(veth5) entered blocking state
[  722.508080][T14271] bridge2: port 1(veth5) entered disabled state
[  722.524118][T14271] veth5: entered allmulticast mode
[  723.158708][T14289] random: crng reseeded on system resumption
[  723.731560][T14293] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2815'.
[  724.304173][T13127] usb 8-1: new high-speed USB device number 16 using dummy_hcd
[  724.349386][T14309] syzkaller0: entered promiscuous mode
[  724.393857][T14309] syzkaller0: entered allmulticast mode
[  724.493845][T13127] usb 8-1: Using ep0 maxpacket: 16
[  724.529147][T13127] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  724.595411][T13127] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  724.642185][T13127] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  724.652352][T13127] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  724.662875][T13127] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  724.680820][T13127] usb 8-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  724.711279][T13127] usb 8-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  724.740065][T13127] usb 8-1: Manufacturer: syz
[  724.765910][T13127] usb 8-1: config 0 descriptor??
[  724.790978][T14314] syzkaller0: entered promiscuous mode
[  724.822062][T14314] syzkaller0: entered allmulticast mode
[  725.073792][T13127] rc_core: IR keymap rc-hauppauge not found
[  725.079881][T13127] Registered IR keymap rc-empty
[  725.086555][T13127] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  725.123910][T13127] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  725.235216][T13127] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/rc/rc0
[  725.276557][T13127] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/rc/rc0/input41
[  725.306571][T13127] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  725.344269][T13127] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  725.376083][T13127] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  725.403879][T13127] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  725.434091][T13127] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  725.463869][T13127] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  725.493841][T13127] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  725.523857][T13127] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  725.544042][T13127] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  725.580809][T13127] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  725.634302][T13127] mceusb 8-1:0.0: Registered І with mce emulator interface version 1
[  725.642544][T13127] mceusb 8-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  725.666464][T13127] usb 8-1: USB disconnect, device number 16
[  726.261226][T14331] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2828'.
[  726.623860][T13127] usb 1-1: new high-speed USB device number 54 using dummy_hcd
[  726.810342][T13127] usb 1-1: config 220 has an invalid interface number: 76 but max is 2
[  726.837702][T13127] usb 1-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  726.848075][T13127] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  726.859116][T13127] usb 1-1: config 220 has no interface number 2
[  726.876830][T13127] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  726.891284][T13127] usb 1-1: config 220 interface 0 has no altsetting 0
[  726.898812][T13127] usb 1-1: config 220 interface 76 has no altsetting 0
[  726.934227][T13127] usb 1-1: config 220 interface 1 has no altsetting 0
[  726.975093][T13127] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  726.988050][T13127] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  727.016827][T13127] usb 1-1: Product: syz
[  727.021048][T13127] usb 1-1: Manufacturer: syz
[  727.055165][T13127] usb 1-1: SerialNumber: syz
[  727.172311][T14339] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2832'.
[  727.393829][T13127] uvcvideo 1-1:220.0: Found UVC 7.01 device syz (8086:0b07)
[  727.401283][T13127] uvcvideo 1-1:220.0: No valid video chain found.
[  727.440749][T13127] usb 1-1: USB disconnect, device number 54
[  727.986929][T14348] random: crng reseeded on system resumption
[  728.486471][T13129] usb 2-1: new high-speed USB device number 46 using dummy_hcd
[  728.652650][T13129] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  728.662065][T13129] usb 2-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  728.681451][T13129] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66
[  728.704675][T13129] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  728.716274][T13129] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  728.729484][T13129] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  728.739277][T13129] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  728.747537][T13129] usb 2-1: Product: syz
[  728.752103][T13129] usb 2-1: Manufacturer: syz
[  728.766831][T13129] cdc_wdm 2-1:1.0: skipping garbage
[  728.772469][T13129] cdc_wdm 2-1:1.0: skipping garbage
[  728.798943][T13129] cdc_wdm 2-1:1.0: cdc-wdm0: USB WDM device
[  729.306731][T13129] cdc_wdm 2-1:1.0: Unknown control protocol
[  729.317116][T13129] usb 2-1: USB disconnect, device number 46
[  730.133799][T13140] usb 1-1: new high-speed USB device number 55 using dummy_hcd
[  730.178141][T14335] veth7: entered promiscuous mode
[  730.183577][T14335] bridge3: port 1(veth7) entered blocking state
[  730.192065][T14335] bridge3: port 1(veth7) entered disabled state
[  730.199854][T14335] veth7: entered allmulticast mode
[  730.285954][T13140] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  730.313757][T13140] usb 1-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  730.327088][T13140] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  730.428634][T13140] usb 1-1: config 0 descriptor??
[  730.487653][T13140] pwc: Askey VC010 type 2 USB webcam detected.
[  730.763142][T14378] syzkaller0: entered promiscuous mode
[  730.770365][T14378] syzkaller0: entered allmulticast mode
[  730.891960][T13140] pwc: recv_control_msg error -32 req 02 val 2b00
[  730.912966][T13140] pwc: recv_control_msg error -32 req 02 val 2700
[  730.942130][T13140] pwc: recv_control_msg error -32 req 02 val 2c00
[  730.958849][T13140] pwc: recv_control_msg error -32 req 04 val 1000
[  730.971093][T13140] pwc: recv_control_msg error -32 req 04 val 1300
[  731.004753][T13140] pwc: recv_control_msg error -32 req 04 val 1400
[  731.027227][T13140] pwc: recv_control_msg error -32 req 02 val 2000
[  731.036476][T14396] random: crng reseeded on system resumption
[  731.046537][T13140] pwc: recv_control_msg error -32 req 02 val 2100
[  731.056361][T13140] pwc: recv_control_msg error -32 req 04 val 1500
[  731.066553][T13140] pwc: recv_control_msg error -32 req 02 val 2500
[  731.077673][T13140] pwc: recv_control_msg error -32 req 02 val 2400
[  731.093830][T13140] pwc: recv_control_msg error -32 req 02 val 2600
[  731.118387][T13140] pwc: recv_control_msg error -71 req 02 val 2900
[  731.151641][T13140] pwc: recv_control_msg error -71 req 02 val 2800
[  731.193093][T13140] pwc: recv_control_msg error -71 req 04 val 1100
[  731.225246][T13140] pwc: recv_control_msg error -71 req 04 val 1200
[  731.289381][T13140] pwc: Registered as video103.
[  731.338935][T13140] input: PWC snapshot button as /devices/platform/dummy_hcd.0/usb1/1-1/input/input42
[  731.489972][T13140] usb 1-1: USB disconnect, device number 55
[  732.000671][T14412] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2851'.
[  734.269190][ T5831] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  734.279906][ T5831] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  734.296580][ T5831] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  734.328309][ T5831] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  734.346895][ T5831] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  734.584206][T14412] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  734.698443][T14412] batman_adv: batadv0: Removing interface: batadv_slave_1
[  734.817784][T14430] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2861'.
[  735.142076][T14438] random: crng reseeded on system resumption
[  735.580112][ T6033] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  735.884134][T13140] usb 2-1: new high-speed USB device number 47 using dummy_hcd
[  735.968463][T14440] syzkaller0: entered promiscuous mode
[  736.030253][T14440] syzkaller0: entered allmulticast mode
[  736.064192][T13140] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  736.117634][T13140] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  736.169576][T13140] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  736.209010][ T6033] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  736.264532][T13140] usb 2-1: config 0 descriptor??
[  736.277926][T13140] pwc: Askey VC010 type 2 USB webcam detected.
[  736.430149][T14456] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2871'.
[  736.469420][ T5830] Bluetooth: hci6: command tx timeout
[  736.749803][T13140] pwc: recv_control_msg error -32 req 02 val 2b00
[  736.760238][T13140] pwc: recv_control_msg error -32 req 02 val 2700
[  736.777983][T13140] pwc: recv_control_msg error -32 req 02 val 2c00
[  736.808792][T13140] pwc: recv_control_msg error -32 req 04 val 1000
[  736.823850][T13140] pwc: recv_control_msg error -32 req 04 val 1300
[  736.841724][T13140] pwc: recv_control_msg error -32 req 04 val 1400
[  736.849691][T13140] pwc: recv_control_msg error -32 req 02 val 2000
[  736.869419][T13140] pwc: recv_control_msg error -32 req 02 val 2100
[  736.878626][T13140] pwc: recv_control_msg error -32 req 04 val 1500
[  736.898565][T13140] pwc: recv_control_msg error -32 req 02 val 2500
[  736.917676][T13140] pwc: recv_control_msg error -32 req 02 val 2400
[  736.926801][T13140] pwc: recv_control_msg error -32 req 02 val 2600
[  736.942631][T13140] pwc: recv_control_msg error -71 req 02 val 2900
[  736.956109][T13140] pwc: recv_control_msg error -71 req 02 val 2800
[  736.973313][T13140] pwc: recv_control_msg error -71 req 04 val 1100
[  737.005865][T13140] pwc: recv_control_msg error -71 req 04 val 1200
[  737.048439][T13140] pwc: Registered as video103.
[  737.086215][T13140] input: PWC snapshot button as /devices/platform/dummy_hcd.1/usb2/2-1/input/input43
[  737.775048][T13140] usb 2-1: USB disconnect, device number 47
[  737.988078][T14482] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2878'.
[  738.386547][T14487] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2879'.
[  738.545618][ T5830] Bluetooth: hci6: command tx timeout
[  739.040115][ T6033] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  739.058728][T14464] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  739.428263][ T6033] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  739.642947][T14504] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2886'.
[  739.696210][T13140] usb 7-1: new high-speed USB device number 41 using dummy_hcd
[  739.886795][T13140] usb 7-1: Using ep0 maxpacket: 16
[  739.913155][T13140] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  739.967138][T13140] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  740.036016][T13140] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  740.064627][T13145] usb 2-1: new high-speed USB device number 48 using dummy_hcd
[  740.110703][T13140] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  740.121789][T14516] fuse: Unknown parameter 'user_id00000000000000000000'
[  740.176809][T13140] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  740.254918][T13145] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  740.294394][T13140] usb 7-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  740.313941][T13145] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  740.319677][T14425] chnl_net:caif_netlink_parms(): no params data found
[  740.363941][T13140] usb 7-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  740.397419][T13145] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  740.417316][T13140] usb 7-1: Manufacturer: syz
[  740.490405][T13140] usb 7-1: config 0 descriptor??
[  740.508100][T13145] usb 2-1: config 0 descriptor??
[  740.574807][ T6033] veth3: left allmulticast mode
[  740.587866][T13145] pwc: Askey VC010 type 2 USB webcam detected.
[  740.608315][ T6033] bridge0: port 2(veth3) entered disabled state
[  740.624010][ T5830] Bluetooth: hci6: command tx timeout
[  740.649692][ T6033] ip6gretap1: left allmulticast mode
[  740.659219][ T6033] ip6gretap1: left promiscuous mode
[  740.675103][ T6033] bridge0: port 1(ip6gretap1) entered disabled state
[  740.740296][ T6033] veth5: left allmulticast mode
[  740.756637][ T6033] bridge1: port 1(veth5) entered disabled state
[  740.810575][ T6033] veth7: left allmulticast mode
[  740.823987][ T6033] bridge2: port 1(veth7) entered disabled state
[  740.928301][T13145] pwc: recv_control_msg error -32 req 02 val 2b00
[  740.939215][T13145] pwc: recv_control_msg error -32 req 02 val 2700
[  740.955439][T13145] pwc: recv_control_msg error -32 req 02 val 2c00
[  740.967694][T13145] pwc: recv_control_msg error -32 req 04 val 1000
[  740.974455][T13140] rc_core: IR keymap rc-hauppauge not found
[  740.982065][T13140] Registered IR keymap rc-empty
[  740.996280][T13145] pwc: recv_control_msg error -32 req 04 val 1300
[  741.003393][T13140] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  741.016903][T13145] pwc: recv_control_msg error -32 req 04 val 1400
[  741.034434][T13145] pwc: recv_control_msg error -32 req 02 val 2000
[  741.044868][T13140] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  741.054732][T13145] pwc: recv_control_msg error -32 req 02 val 2100
[  741.076872][T13145] pwc: recv_control_msg error -32 req 04 val 1500
[  741.088073][T13145] pwc: recv_control_msg error -32 req 02 val 2500
[  741.096073][T13140] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/rc/rc0
[  741.125751][T13145] pwc: recv_control_msg error -32 req 02 val 2400
[  741.134340][T13145] pwc: recv_control_msg error -32 req 02 val 2600
[  741.148068][T13140] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/rc/rc0/input44
[  741.174435][T13145] pwc: recv_control_msg error -71 req 02 val 2900
[  741.183268][T13145] pwc: recv_control_msg error -71 req 02 val 2800
[  741.194130][T13140] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  741.212600][T13145] pwc: recv_control_msg error -71 req 04 val 1100
[  741.220339][T13140] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  741.231294][T13145] pwc: recv_control_msg error -71 req 04 val 1200
[  741.254102][T13145] pwc: Registered as video103.
[  741.269848][T13140] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  741.317721][ T6033] veth11: left allmulticast mode
[  741.323020][ T6033] bridge6: port 1(veth11) entered disabled state
[  741.332725][T13145] input: PWC snapshot button as /devices/platform/dummy_hcd.1/usb2/2-1/input/input45
[  741.344739][T13140] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  741.367233][T13140] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  741.385998][T13145] usb 2-1: USB disconnect, device number 48
[  741.409547][ T6033] veth13: left allmulticast mode
[  741.417482][T13140] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  741.444100][ T6033] bridge7: port 1(veth13) entered disabled state
[  741.473864][T13140] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  741.495591][T13140] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  741.521284][ T6033] veth15: left allmulticast mode
[  741.526952][T13140] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  741.544111][ T6033] bridge8: port 1(veth15) entered disabled state
[  741.584082][T13140] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  741.622248][T13140] mceusb 7-1:0.0: Registered І with mce emulator interface version 1
[  741.666079][T13140] mceusb 7-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  741.794811][T13140] usb 7-1: USB disconnect, device number 41
[  742.719790][ T5830] Bluetooth: hci6: command tx timeout
[  743.445210][T14566] random: crng reseeded on system resumption
[  743.837791][ T6454] smc: removing ib device syz1
[  743.838405][ T6033] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  743.856582][ T6033] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  743.867267][ T6033] bond0 (unregistering): Released all slaves
[  744.215156][T14557] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  744.372698][T14574] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2899'.
[  744.448498][T14582] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2901'.
[  744.545308][T14584] fuse: Unknown parameter 'user_id00000000000000000000'
[  744.686236][T14588] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2903'.
[  745.084888][T14595] veth7: entered promiscuous mode
[  745.094179][T14595] bridge4: port 1(veth7) entered blocking state
[  745.123251][T14595] bridge4: port 1(veth7) entered disabled state
[  745.162603][T14595] veth7: entered allmulticast mode
[  745.202945][T14425] bridge0: port 1(bridge_slave_0) entered blocking state
[  745.230978][T14425] bridge0: port 1(bridge_slave_0) entered disabled state
[  745.259003][T14425] bridge_slave_0: entered allmulticast mode
[  745.291468][T14425] bridge_slave_0: entered promiscuous mode
[  745.321007][T14425] bridge0: port 2(bridge_slave_1) entered blocking state
[  745.344852][T14425] bridge0: port 2(bridge_slave_1) entered disabled state
[  745.369277][T14425] bridge_slave_1: entered allmulticast mode
[  745.587897][T14425] bridge_slave_1: entered promiscuous mode
[  746.345790][T14601] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  747.027510][T14425] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  747.069963][T14627] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  747.250189][T14632] syzkaller0: entered promiscuous mode
[  747.255839][T14632] syzkaller0: entered allmulticast mode
[  747.270055][T14425] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  747.548610][T14637] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2916'.
[  747.644782][T14646] fuse: Unknown parameter 'user_id00000000000000000000'
[  747.909896][T14649] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2919'.
[  748.329728][T14657] loop1: detected capacity change from 0 to 1024
[  748.507193][T14657] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  748.562904][T14657] ext4 filesystem being mounted at /438/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  748.633821][T13127] usb 1-1: new high-speed USB device number 56 using dummy_hcd
[  748.756820][T14657] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: block 3: comm syz.1.2922: lblock 3 mapped to illegal pblock 3 (length 1)
[  748.792994][T14657] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117
[  748.817399][T14657] EXT4-fs (loop1): This should not happen!! Data will be lost
[  748.817399][T14657] 
[  748.836260][T13127] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  748.845703][T13127] usb 1-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  748.856778][T13127] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66
[  748.884572][T13127] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  748.895809][T13127] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  748.922523][T13127] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  748.941570][T13127] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  748.961868][T13127] usb 1-1: Product: syz
[  748.980620][T13127] usb 1-1: Manufacturer: syz
[  749.095643][T13127] cdc_wdm 1-1:1.0: skipping garbage
[  749.100929][T13127] cdc_wdm 1-1:1.0: skipping garbage
[  749.124915][T13127] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device
[  749.130157][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  749.130850][T13127] cdc_wdm 1-1:1.0: Unknown control protocol
[  749.307810][    C1] wdm_int_callback: 3 callbacks suppressed
[  749.307845][    C1] cdc_wdm 1-1:1.0: wdm_int_callback - 4 bytes
[  749.405327][T14673] loop1: detected capacity change from 0 to 128
[  749.482707][T14673] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  749.501826][T14673] ext4 filesystem being mounted at /439/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  749.519037][T13140] usb 1-1: USB disconnect, device number 56
[  749.670950][ T5827] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  751.601384][T14669] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  751.982549][T14425] team0: Port device team_slave_0 added
[  752.021647][T14425] team0: Port device team_slave_1 added
[  752.040262][T14695] fuse: Bad value for 'fd'
[  752.224960][ T1162] usb 1-1: new high-speed USB device number 57 using dummy_hcd
[  752.317840][T14425] batman_adv: batadv0: Adding interface: batadv_slave_0
[  752.370721][T14425] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  752.444060][ T1162] usb 1-1: Using ep0 maxpacket: 16
[  752.485574][ T1162] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  752.545497][ T1162] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  752.567525][T14425] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  752.578881][T14701] netlink: 24 bytes leftover after parsing attributes in process `syz.7.2934'.
[  752.618583][T14425] batman_adv: batadv0: Adding interface: batadv_slave_1
[  752.627579][ T1162] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  752.668023][ T1162] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  752.676168][T14425] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  752.706881][ T1162] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  752.766565][ T1162] usb 1-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  752.771734][T14425] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  752.793571][ T1162] usb 1-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  752.825912][ T1162] usb 1-1: Manufacturer: syz
[  752.842038][ T6033] tipc: Left network mode
[  752.905707][ T1162] usb 1-1: config 0 descriptor??
[  753.271020][T14425] hsr_slave_0: entered promiscuous mode
[  753.286519][T14425] hsr_slave_1: entered promiscuous mode
[  753.293036][T14425] debugfs: 'hsr0' already exists in 'hsr'
[  753.322728][T14425] Cannot create hsr debugfs directory
[  753.333969][ T1162] rc_core: IR keymap rc-hauppauge not found
[  753.340739][ T1162] Registered IR keymap rc-empty
[  753.351218][T13145] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[  753.377619][ T1162] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  753.416987][ T1162] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  753.475595][ T1162] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0
[  753.520877][ T1162] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0/input46
[  753.540697][T13145] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  753.551364][T13145] usb 8-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  753.561557][T13145] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  753.571969][ T1162] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  753.593349][T13145] usb 8-1: config 0 descriptor??
[  753.601059][ T1162] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  753.632147][T13145] pwc: Askey VC010 type 2 USB webcam detected.
[  753.641683][ T1162] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  753.683895][ T1162] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  753.713837][ T1162] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  753.735742][ T6033] hsr_slave_0: left promiscuous mode
[  753.748395][ T6033] hsr_slave_1: left promiscuous mode
[  753.755342][ T1162] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  753.757431][ T6033] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  753.771388][ T6033] batman_adv: batadv0: Removing interface: batadv_slave_0
[  753.785109][ T1162] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  753.805152][ T1162] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  753.846610][ T6033] veth1_macvtap: left promiscuous mode
[  753.857784][ T6033] veth0_macvtap: left promiscuous mode
[  753.873598][ T1162] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  753.881717][ T6033] veth1_vlan: left promiscuous mode
[  753.887540][ T6033] veth0_vlan: left promiscuous mode
[  753.923836][ T1162] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  754.037475][ T1162] mceusb 1-1:0.0: Registered І with mce emulator interface version 1
[  754.054148][T13145] pwc: recv_control_msg error -32 req 02 val 2b00
[  754.060880][ T1162] mceusb 1-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  754.073778][T13145] pwc: recv_control_msg error -32 req 02 val 2700
[  754.100014][ T1162] usb 1-1: USB disconnect, device number 57
[  754.106159][T13145] pwc: recv_control_msg error -32 req 02 val 2c00
[  754.127004][T13145] pwc: recv_control_msg error -32 req 04 val 1000
[  754.155236][T13145] pwc: recv_control_msg error -32 req 04 val 1300
[  754.174538][T13145] pwc: recv_control_msg error -32 req 04 val 1400
[  754.214855][T13145] pwc: recv_control_msg error -32 req 02 val 2000
[  754.225546][T13145] pwc: recv_control_msg error -32 req 02 val 2100
[  754.247480][T13145] pwc: recv_control_msg error -32 req 04 val 1500
[  754.267867][T13145] pwc: recv_control_msg error -32 req 02 val 2500
[  754.284714][T13145] pwc: recv_control_msg error -32 req 02 val 2400
[  754.495006][T13145] pwc: recv_control_msg error -71 req 02 val 2900
[  754.505780][T13145] pwc: recv_control_msg error -71 req 02 val 2800
[  754.530177][T13145] pwc: recv_control_msg error -71 req 04 val 1100
[  754.561992][T13145] pwc: recv_control_msg error -71 req 04 val 1200
[  754.594382][T13145] pwc: Registered as video103.
[  754.642408][T13145] input: PWC snapshot button as /devices/platform/dummy_hcd.7/usb8/8-1/input/input47
[  754.689650][T13145] usb 8-1: USB disconnect, device number 17
[  755.644700][ T6033] pim6reg (unregistering): left allmulticast mode
[  755.968885][T14761] fuse: Bad value for 'fd'
[  756.205945][T14766] xt_CT: You must specify a L4 protocol and not use inversions on it
[  756.262479][T14763] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2947'.
[  756.871813][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  756.878429][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  757.290398][ T6033] team0 (unregistering): Port device team_slave_1 removed
[  757.347464][ T6033] team0 (unregistering): Port device team_slave_0 removed
[  757.607288][T14777] netlink: 24 bytes leftover after parsing attributes in process `syz.7.2952'.
[  758.238471][T14739] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[  758.484466][T14788] fuse: Bad value for 'fd'
[  758.512837][T14750] syzkaller0: entered promiscuous mode
[  758.545191][T14790] random: crng reseeded on system resumption
[  758.551584][T14750] syzkaller0: entered allmulticast mode
[  758.565408][T14770] mac80211_hwsim hwsim15 wlan1: entered allmulticast mode
[  758.756515][T14794] loop3: detected capacity change from 0 to 512
[  758.821444][T14794] EXT4-fs: inline encryption not supported
[  758.862612][T14794] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  758.917099][T14796] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2961'.
[  758.935231][T14794] EXT4-fs (loop3): 1 truncate cleaned up
[  758.945805][T14794] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  759.017699][   T30] audit: type=1326 audit(1760031648.365:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14793 comm="syz.3.2960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08538eec9 code=0x7ffc0000
[  759.146048][   T30] audit: type=1326 audit(1760031648.365:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14793 comm="syz.3.2960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08538eec9 code=0x7ffc0000
[  759.168543][ T5970] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[  759.202800][   T30] audit: type=1326 audit(1760031648.365:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14793 comm="syz.3.2960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd08538eec9 code=0x7ffc0000
[  759.232391][   T30] audit: type=1326 audit(1760031648.365:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14793 comm="syz.3.2960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08538eec9 code=0x7ffc0000
[  759.240662][ T5833] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  759.264802][   T30] audit: type=1326 audit(1760031648.395:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14793 comm="syz.3.2960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd08538eec9 code=0x7ffc0000
[  759.334162][   T30] audit: type=1326 audit(1760031648.395:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14793 comm="syz.3.2960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08538eec9 code=0x7ffc0000
[  759.385942][ T5970] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  759.401772][   T30] audit: type=1326 audit(1760031648.395:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14793 comm="syz.3.2960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd08538eec9 code=0x7ffc0000
[  759.447506][ T5970] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  759.484596][ T5970] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  759.515523][   T30] audit: type=1326 audit(1760031648.395:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14793 comm="syz.3.2960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08538eec9 code=0x7ffc0000
[  759.541635][ T5970] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  759.614044][ T5970] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  759.627682][   T30] audit: type=1326 audit(1760031648.395:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14793 comm="syz.3.2960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7fd08538eec9 code=0x7ffc0000
[  759.678181][   T30] audit: type=1326 audit(1760031648.415:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14793 comm="syz.3.2960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08538eec9 code=0x7ffc0000
[  759.702142][ T5970] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  759.711436][ T5970] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  759.720985][ T5970] usb 8-1: Product: syz
[  759.725598][ T5970] usb 8-1: Manufacturer: syz
[  759.775696][ T5970] cdc_wdm 8-1:1.0: skipping garbage
[  759.781072][ T5970] cdc_wdm 8-1:1.0: skipping garbage
[  759.790368][ T5970] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  759.818170][ T5970] cdc_wdm 8-1:1.0: Unknown control protocol
[  759.996486][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - 6 bytes
[  760.053889][T13140] usb 4-1: new high-speed USB device number 59 using dummy_hcd
[  760.212051][ T5970] usb 8-1: USB disconnect, device number 18
[  760.225293][T13140] usb 4-1: Using ep0 maxpacket: 16
[  760.269052][T13140] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  760.307897][T13140] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  760.348095][T13140] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  760.374496][T13140] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  760.393761][T13140] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  760.444752][T13140] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  760.464657][T13140] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  760.472806][T13140] usb 4-1: Manufacturer: syz
[  760.515012][T13140] usb 4-1: config 0 descriptor??
[  760.855695][T13140] rc_core: IR keymap rc-hauppauge not found
[  760.861670][T13140] Registered IR keymap rc-empty
[  760.909478][T13140] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  760.954966][T13140] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  761.011141][T13140] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  761.041140][T13140] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input48
[  761.120210][T13140] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  761.194530][T13140] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  761.272283][T13140] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  762.263843][T13140] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  762.283818][T13140] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  762.310970][T13140] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  762.629640][T13140] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  762.656468][T13140] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  762.696211][T13140] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  762.723864][T13140] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  762.756455][T13140] mceusb 4-1:0.0: Registered І with mce emulator interface version 1
[  762.764924][T13140] mceusb 4-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  762.809641][T13140] usb 4-1: USB disconnect, device number 59
[  763.662621][T14826] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[  764.635401][T13127] usb 2-1: new high-speed USB device number 49 using dummy_hcd
[  764.761783][T14872] fuse: Unknown parameter '0x0000000000000004'
[  764.828003][T13127] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  764.879522][T13127] usb 2-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  764.935992][T13127] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66
[  764.997875][T13127] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  765.066428][T13127] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  765.162982][T13127] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  765.201421][T13127] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  765.228727][T13127] usb 2-1: Product: syz
[  765.232997][T13127] usb 2-1: Manufacturer: syz
[  765.273119][T13127] cdc_wdm 2-1:1.0: skipping garbage
[  765.301262][T13127] cdc_wdm 2-1:1.0: skipping garbage
[  765.338971][T13127] cdc_wdm 2-1:1.0: cdc-wdm0: USB WDM device
[  765.356851][T13127] cdc_wdm 2-1:1.0: Unknown control protocol
[  765.495851][    C0] cdc_wdm 2-1:1.0: wdm_int_callback - 7 bytes
[  765.651448][T14880] bridge0: port 2(bridge_slave_1) entered disabled state
[  765.658935][T14880] bridge0: port 1(bridge_slave_0) entered disabled state
[  765.767169][ T5908] usb 2-1: USB disconnect, device number 49
[  766.005327][T14880] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  766.273211][T14880] mac80211_hwsim hwsim11 wlan1: left allmulticast mode
[  766.407743][T14903] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  766.426886][ T6032] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  766.454898][ T6032] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  766.495845][ T6032] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  766.565091][ T6032] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  766.958126][T14896] tipc: Disabling bearer <eth:syzkaller0>
[  767.666486][T14425] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  767.719475][T14425] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  768.428249][T14425] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  768.533504][T14425] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  768.752339][T14924] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[  768.948092][T14939] syzkaller0: entered promiscuous mode
[  768.974440][T14939] syzkaller0: entered allmulticast mode
[  769.354464][T14954] random: crng reseeded on system resumption
[  769.434613][T14948] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2995'.
[  770.735942][T13138] usb 7-1: new high-speed USB device number 42 using dummy_hcd
[  770.908168][T13138] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  770.917195][T13138] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  770.927735][T13138] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  770.936911][T13138] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  770.948601][T13138] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  770.964419][T13138] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  770.978264][T13138] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  770.987088][T13138] usb 7-1: Product: syz
[  770.991282][T13138] usb 7-1: Manufacturer: syz
[  771.013857][T13138] cdc_wdm 7-1:1.0: skipping garbage
[  771.019947][T13138] cdc_wdm 7-1:1.0: skipping garbage
[  771.040768][T13138] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  771.048673][T13138] cdc_wdm 7-1:1.0: Unknown control protocol
[  771.219037][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - 7 bytes
[  771.422156][ T5915] usb 7-1: USB disconnect, device number 42
[  772.295775][T14966] mac80211_hwsim hwsim11 wlan1: entered allmulticast mode
[  772.792954][T14974] tipc: Started in network mode
[  773.014777][T14974] tipc: Node identity 4edc351fb539, cluster identity 4711
[  773.037587][T14974] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  773.245330][T14975] syzkaller0: entered promiscuous mode
[  773.250902][T14975] syzkaller0: entered allmulticast mode
[  773.297567][T14975] tipc: Resetting bearer <eth:syzkaller0>
[  773.558609][ T1323] tipc: Resetting bearer <eth:syzkaller0>
[  773.608606][T14972] tipc: Resetting bearer <eth:syzkaller0>
[  773.782319][T15001] random: crng reseeded on system resumption
[  774.000892][T15003] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3012'.
[  774.064014][ T5915] tipc: Node number set to 4226102559
[  774.240286][   T30] kauditd_printk_skb: 1 callbacks suppressed
[  774.240311][   T30] audit: type=1326 audit(1760031663.595:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15012 comm="syz.6.3015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  774.244500][T15013] netlink: 19 bytes leftover after parsing attributes in process `syz.6.3015'.
[  774.254658][   T30] audit: type=1326 audit(1760031663.595:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15012 comm="syz.6.3015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=210 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  774.320261][   T30] audit: type=1326 audit(1760031663.595:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15012 comm="syz.6.3015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  774.355014][   T30] audit: type=1326 audit(1760031663.595:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15012 comm="syz.6.3015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  774.403835][   T30] audit: type=1326 audit(1760031663.595:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15012 comm="syz.6.3015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  774.428387][   T30] audit: type=1326 audit(1760031663.595:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15012 comm="syz.6.3015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  774.452532][   T30] audit: type=1326 audit(1760031663.595:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15012 comm="syz.6.3015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  774.507891][   T30] audit: type=1326 audit(1760031663.595:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15012 comm="syz.6.3015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  774.531075][   T30] audit: type=1326 audit(1760031663.595:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15012 comm="syz.6.3015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  774.565723][   T30] audit: type=1326 audit(1760031663.595:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15012 comm="syz.6.3015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  776.256144][T14972] tipc: Disabling bearer <eth:syzkaller0>
[  776.322297][T15018] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[  776.388118][T14425] 8021q: adding VLAN 0 to HW filter on device bond0
[  776.564384][T15033] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3019'.
[  776.603303][T14425] 8021q: adding VLAN 0 to HW filter on device team0
[  776.725072][T15036] loop7: detected capacity change from 0 to 1024
[  776.764465][T15036] EXT4-fs: Ignoring removed orlov option
[  776.853392][T15036] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  776.946701][T15033] veth7: entered promiscuous mode
[  776.969604][T15033] bridge4: port 1(veth7) entered blocking state
[  777.003560][T15033] bridge4: port 1(veth7) entered disabled state
[  777.010394][T15033] veth7: entered allmulticast mode
[  777.026109][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  777.033359][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  777.702969][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  777.710267][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  777.965350][T12100] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  778.072568][T15056] binfmt_misc: register: failed to install interpreter file ./file0
[  778.357054][T15067] random: crng reseeded on system resumption
[  778.364771][T15061] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3026'.
[  778.444578][T15070] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3028'.
[  778.903049][T15083] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[  779.140937][T15088] loop7: detected capacity change from 0 to 512
[  779.159586][T15083] syzkaller0: entered promiscuous mode
[  779.205494][T15083] syzkaller0: entered allmulticast mode
[  779.235043][T15093] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3036'.
[  779.253388][T15088] EXT4-fs error (device loop7): ext4_orphan_get:1395: comm syz.7.3034: couldn't read orphan inode 26 (err -116)
[  779.309427][T15088] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  779.389835][T15088] ext4 filesystem being mounted at /162/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  780.297460][T12100] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  780.654013][   T30] kauditd_printk_skb: 4 callbacks suppressed
[  780.654040][   T30] audit: type=1326 audit(1760031669.995:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15114 comm="syz.7.3039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  780.718364][T15122] loop7: detected capacity change from 0 to 256
[  780.746409][   T30] audit: type=1326 audit(1760031669.995:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15114 comm="syz.7.3039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  780.806662][   T30] audit: type=1326 audit(1760031670.025:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15114 comm="syz.7.3039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  780.830880][   T30] audit: type=1326 audit(1760031670.025:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15114 comm="syz.7.3039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  780.853459][   T30] audit: type=1326 audit(1760031670.045:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15114 comm="syz.7.3039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  780.856050][T15122] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  780.878113][   T30] audit: type=1326 audit(1760031670.045:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15114 comm="syz.7.3039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  780.976854][T15126] netlink: 'syz.1.3040': attribute type 4 has an invalid length.
[  780.984721][T15126] netlink: 17 bytes leftover after parsing attributes in process `syz.1.3040'.
[  781.020261][T15122] FAT-fs (loop7): Filesystem has been set read-only
[  781.539033][   T30] audit: type=1326 audit(1760031670.055:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15114 comm="syz.7.3039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=238 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  781.561637][   T30] audit: type=1326 audit(1760031670.055:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15114 comm="syz.7.3039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  781.593199][   T30] audit: type=1326 audit(1760031670.055:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15114 comm="syz.7.3039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  781.616662][   T30] audit: type=1326 audit(1760031670.055:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15114 comm="syz.7.3039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  784.094703][T15105] veth5: entered promiscuous mode
[  784.100157][T15105] bridge5: port 1(veth5) entered blocking state
[  784.123892][T15105] bridge5: port 1(veth5) entered disabled state
[  784.130457][T15105] veth5: entered allmulticast mode
[  784.184745][T15120] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3039'.
[  784.523300][T14425] 8021q: adding VLAN 0 to HW filter on device batadv0
[  784.594388][T15177] random: crng reseeded on system resumption
[  785.741633][T15182] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3044'.
[  786.190029][T14425] veth0_vlan: entered promiscuous mode
[  786.225679][T15208] loop7: detected capacity change from 0 to 2048
[  786.248638][T14425] veth1_vlan: entered promiscuous mode
[  786.600636][T12211] Alternate GPT is invalid, using primary GPT.
[  786.919634][T15217] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3056'.
[  787.297749][T13138] usb 2-1: new high-speed USB device number 50 using dummy_hcd
[  787.306085][T12211]  loop7: p1 p2 p3
[  787.310177][T12211] loop7: partition table partially beyond EOD, truncated
[  787.387779][T15223] veth7: entered promiscuous mode
[  787.414560][T15223] bridge6: port 1(veth7) entered blocking state
[  787.432016][T15223] bridge6: port 1(veth7) entered disabled state
[  787.459942][T15223] veth7: entered allmulticast mode
[  787.486310][T13138] usb 2-1: Using ep0 maxpacket: 16
[  787.527496][T14425] veth0_macvtap: entered promiscuous mode
[  787.547154][T14425] veth1_macvtap: entered promiscuous mode
[  787.574743][T13138] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  787.634167][T13138] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  787.676540][T13138] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  787.679718][T14425] batman_adv: batadv0: Interface activated: batadv_slave_0
[  787.737296][T14425] batman_adv: batadv0: Interface activated: batadv_slave_1
[  787.740694][T13138] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  787.785728][T13138] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  787.841967][T13138] usb 2-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  787.851330][ T1323] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  787.870963][ T6031] Bluetooth: hci4: Frame reassembly failed (-84)
[  787.889669][T12190] udevd[12190]: inotify_add_watch(7, /dev/loop7p2, 10) failed: No such file or directory
[  787.907841][T12211] udevd[12211]: inotify_add_watch(7, /dev/loop7p1, 10) failed: No such file or directory
[  787.918197][ T1323] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  787.927098][T13138] usb 2-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  787.929189][T12212] udevd[12212]: inotify_add_watch(7, /dev/loop7p3, 10) failed: No such file or directory
[  787.955130][T13138] usb 2-1: Manufacturer: syz
[  787.973390][T13138] usb 2-1: config 0 descriptor??
[  787.980067][ T1323] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  788.015083][ T1323] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  789.041330][T15234] mac80211_hwsim hwsim17 wlan1: entered allmulticast mode
[  789.393861][T13138] rc_core: IR keymap rc-hauppauge not found
[  789.401109][ T1323] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  789.433877][T13138] Registered IR keymap rc-empty
[  789.449578][ T1323] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  789.463925][T13138] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  789.504622][T13138] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  789.564729][T13138] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0
[  789.635283][T13138] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input49
[  789.663387][T13138] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  789.682114][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  789.699526][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  789.705558][T13138] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  789.753976][T13138] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  789.784095][T13138] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  789.825624][T13138] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  789.854124][T13138] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  789.894052][T13138] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  789.904449][ T5830] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  789.911237][ T5831] Bluetooth: hci4: command 0x1003 tx timeout
[  789.973832][T13138] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  790.003886][T13138] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  790.032381][T15253] syzkaller0: entered promiscuous mode
[  790.037932][T13138] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  790.039957][T15253] syzkaller0: entered allmulticast mode
[  790.097226][T15256] loop0: detected capacity change from 0 to 128
[  790.136111][T13138] mceusb 2-1:0.0: Registered І with mce emulator interface version 1
[  790.163979][T13138] mceusb 2-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  790.197946][T13138] usb 2-1: USB disconnect, device number 50
[  790.211964][T12190] udevd[12190]: failed to send result of seq 22160 to main daemon: Connection refused
[  790.702791][T15260] loop3: detected capacity change from 0 to 764
[  790.769024][T15245] rock: directory entry would overflow storage
[  790.775770][T15245] rock: sig=0x4f50, size=4, remaining=3
[  790.782097][T15245] iso9660: Corrupted directory entry in block 4 of inode 1792
[  791.794481][T15271] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3072'.
[  793.147031][T15292] ieee802154 phy0 wpan0: encryption failed: -90
[  793.703258][T15304] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3082'.
[  794.745092][T15280] veth7: entered promiscuous mode
[  794.887234][T15298] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  794.925637][T15310] random: crng reseeded on system resumption
[  795.245168][T15299] syzkaller0: entered promiscuous mode
[  795.256803][T15299] syzkaller0: entered allmulticast mode
[  795.266530][T15299] tipc: Resetting bearer <eth:syzkaller0>
[  796.307637][   T30] kauditd_printk_skb: 50 callbacks suppressed
[  796.307665][   T30] audit: type=1800 audit(1760031685.655:534): pid=15323 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.3085" name="regulatory.db.p7s" dev="sda1" ino=449 res=0 errno=0
[  796.336534][T15323] faux_driver regulatory: loading /lib/firmware/regulatory.db.p7s failed with error -4
[  796.346531][T15323] faux_driver regulatory: Direct firmware load for regulatory.db.p7s failed with error -4
[  796.381945][T15323] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db.p7s
[  796.397265][T15323] syz.6.3085 (15323) used greatest stack depth: 19704 bytes left
[  796.876488][   T36] tipc: Resetting bearer <eth:syzkaller0>
[  796.926979][T15296] tipc: Resetting bearer <eth:syzkaller0>
[  796.940529][T15329] loop6: detected capacity change from 0 to 2048
[  797.049716][T15329] Alternate GPT is invalid, using primary GPT.
[  797.069713][T15329]  loop6: p1 p2 p3
[  797.073505][T15329] loop6: partition table partially beyond EOD, truncated
[  797.188394][T15336] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3091'.
[  797.281982][T15340] netlink: 60 bytes leftover after parsing attributes in process `+}[@'.
[  797.693211][T15345] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3094'.
[  799.269756][T15296] tipc: Disabling bearer <eth:syzkaller0>
[  799.333097][T15324] bridge0: port 2(bridge_slave_1) entered disabled state
[  799.341072][T15324] bridge0: port 1(bridge_slave_0) entered disabled state
[  799.510150][T15324] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  799.529716][T15324] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  799.674168][ T5830] Bluetooth: hci4: command 0x1003 tx timeout
[  799.682576][ T5831] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  800.359026][T15336] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3091'.
[  800.574730][ T6031] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  800.597459][   T30] audit: type=1326 audit(1760031689.935:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15358 comm="syz.4.3098" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ab398eec9 code=0x7ffc0000
[  800.623385][ T6031] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  800.640709][T15364] loop7: detected capacity change from 0 to 128
[  800.665291][ T6031] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  801.053966][T15364] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  801.055789][ T6031] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  801.155503][   T30] audit: type=1326 audit(1760031689.935:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15358 comm="syz.4.3098" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ab398eec9 code=0x7ffc0000
[  801.448321][T15364] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  801.549295][   T30] audit: type=1326 audit(1760031689.945:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15358 comm="syz.4.3098" exe="/root/syz-executor" sig=0 arch=c000003e syscall=437 compat=0 ip=0x7f7ab398eec9 code=0x7ffc0000
[  801.622165][   T30] audit: type=1326 audit(1760031689.945:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15358 comm="syz.4.3098" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ab398eec9 code=0x7ffc0000
[  801.647094][   T30] audit: type=1326 audit(1760031689.945:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15358 comm="syz.4.3098" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ab398eec9 code=0x7ffc0000
[  801.711565][T15373] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3101'.
[  801.787896][T15374] syzkaller0: refused to change device tx_queue_len
[  801.875951][   T36] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  801.942453][T15382] random: crng reseeded on system resumption
[  802.131309][T15387] loop3: detected capacity change from 0 to 2048
[  802.309394][T15390] netlink: 'syz.0.3111': attribute type 39 has an invalid length.
[  802.352745][T15387] Alternate GPT is invalid, using primary GPT.
[  802.381491][T15387]  loop3: p1 p2 p3
[  802.409088][T15387] loop3: partition table partially beyond EOD, truncated
[  802.824428][T15399] loop4: detected capacity change from 0 to 512
[  802.912318][T15401] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3112'.
[  802.944832][T15399] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=2
[  802.993238][T15399] EXT4-fs warning (device loop4): ext4_enable_quotas:7176: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  803.094763][T15409] loop0: detected capacity change from 0 to 1024
[  803.108688][T15409] EXT4-fs: Ignoring removed orlov option
[  803.118543][T15399] EXT4-fs (loop4): mount failed
[  805.134681][T15428] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3121'.
[  805.166010][T15430] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3122'.
[  805.260479][T15428] veth9: entered promiscuous mode
[  805.410413][T15438] lo: left promiscuous mode
[  805.434014][T15438] lo: left allmulticast mode
[  805.712168][T15450] random: crng reseeded on system resumption
[  805.815048][T15453] loop7: detected capacity change from 0 to 512
[  805.843863][T15453] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  805.894978][T15453] EXT4-fs (loop7): 1 truncate cleaned up
[  805.919150][T15453] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  806.739894][T15438] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  806.903423][T12100] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  807.188620][T15467] x_tables: ip_tables: DNAT target: used from hooks POSTROUTING, but only usable from PREROUTING/OUTPUT
[  807.365551][T15461] mac80211_hwsim hwsim19 wlan1: entered allmulticast mode
[  807.403446][   T13] netdevsim netdevsim1 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  807.436820][   T13] netdevsim netdevsim1 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  807.464460][T15468] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3134'.
[  807.556788][   T13] netdevsim netdevsim1 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  807.584140][   T13] netdevsim netdevsim1 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  807.828168][T15483] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3139'.
[  807.870901][T15485] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3141'.
[  808.107087][T15491] veth3: entered promiscuous mode
[  808.208562][T15495] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3144'.
[  809.248091][T15517] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3153'.
[  809.440716][T15528] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3157'.
[  810.057186][   T30] audit: type=1326 audit(1760031699.395:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15541 comm="syz.3.3163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08538eec9 code=0x7ffc0000
[  810.111036][   T30] audit: type=1326 audit(1760031699.435:541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15541 comm="syz.3.3163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd08538eec9 code=0x7ffc0000
[  810.149419][T15545] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3165'.
[  810.164584][T15548] netlink: 224 bytes leftover after parsing attributes in process `syz.7.3166'.
[  810.193780][T15548] ksmbd: Unknown IPC event: 4, ignore.
[  810.268818][T15551] random: crng reseeded on system resumption
[  810.354289][   T30] audit: type=1326 audit(1760031699.645:542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15544 comm="syz.4.3165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ab398eec9 code=0x7ffc0000
[  810.412575][   T30] audit: type=1326 audit(1760031699.655:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15544 comm="syz.4.3165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7ab398eec9 code=0x7ffc0000
[  810.477814][   T30] audit: type=1326 audit(1760031699.655:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15544 comm="syz.4.3165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ab398eec9 code=0x7ffc0000
[  810.531666][   T30] audit: type=1326 audit(1760031699.655:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15544 comm="syz.4.3165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f7ab398eec9 code=0x7ffc0000
[  810.554528][ T5831] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  810.563776][   T30] audit: type=1326 audit(1760031699.655:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15544 comm="syz.4.3165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ab398eec9 code=0x7ffc0000
[  810.586813][   T30] audit: type=1326 audit(1760031699.665:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15544 comm="syz.4.3165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f7ab398eec9 code=0x7ffc0000
[  810.609409][   T30] audit: type=1326 audit(1760031699.665:548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15544 comm="syz.4.3165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ab398eec9 code=0x7ffc0000
[  810.634005][   T30] audit: type=1326 audit(1760031699.665:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15544 comm="syz.4.3165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f7ab398eec9 code=0x7ffc0000
[  811.054623][T15563] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3171'.
[  811.321430][T15574] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3175'.
[  811.847891][T15588] random: crng reseeded on system resumption
[  812.496143][T15601] IPv6: Can't replace route, no match found
[  812.578784][T15609] wireguard0: entered promiscuous mode
[  812.584528][T15609] wireguard0: entered allmulticast mode
[  813.103321][T15616] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3193'.
[  813.596093][T15623] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  813.596093][T15623] The task syz.4.3195 (15623) triggered the difference, watch for misbehavior.
[  814.140291][T15635] random: crng reseeded on system resumption
[  815.331855][   T30] kauditd_printk_skb: 50 callbacks suppressed
[  815.331882][   T30] audit: type=1326 audit(1760031704.675:600): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=15632 comm="syz.7.3199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  815.450235][   T30] audit: type=1326 audit(1760031704.715:601): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=15632 comm="syz.7.3199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  815.483359][T15451] Set syz1 is full, maxelem 65536 reached
[  815.543510][   T30] audit: type=1326 audit(1760031704.715:602): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=15632 comm="syz.7.3199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  815.640303][T15657] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3208'.
[  815.685894][   T30] audit: type=1326 audit(1760031704.715:603): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=15632 comm="syz.7.3199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  816.578828][   T30] audit: type=1326 audit(1760031704.715:604): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=15632 comm="syz.7.3199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  816.657652][   T30] audit: type=1326 audit(1760031704.715:605): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=15632 comm="syz.7.3199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  816.703880][   T30] audit: type=1326 audit(1760031704.715:606): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=15632 comm="syz.7.3199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  816.766170][   T30] audit: type=1326 audit(1760031704.715:607): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=15632 comm="syz.7.3199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  816.833917][   T30] audit: type=1326 audit(1760031704.715:608): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=15632 comm="syz.7.3199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  816.883768][   T30] audit: type=1326 audit(1760031704.715:609): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=15632 comm="syz.7.3199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  816.997384][T15674] loop4: detected capacity change from 0 to 2048
[  817.124217][T15674]  loop4: p1 p2 p3
[  817.429775][T15684] netlink: 52 bytes leftover after parsing attributes in process `syz.4.3218'.
[  817.490471][T15678] 9pnet: Could not find request transport: 0xffffffffffffffff
[  817.729582][T15689] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3220'.
[  817.758088][T15689] IPVS: Error connecting to the multicast addr
[  817.977342][T15697] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3223'.
[  818.068834][T15703] loop7: detected capacity change from 0 to 512
[  818.163389][T15703] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  818.221582][T15703] ext4 filesystem being mounted at /198/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  818.310472][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  818.317021][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  818.330717][T15703] EXT4-fs error (device loop7): ext4_do_update_inode:5624: inode #2: comm syz.7.3225: corrupted inode contents
[  818.350853][T15703] EXT4-fs error (device loop7): ext4_dirty_inode:6509: inode #2: comm syz.7.3225: mark_inode_dirty error
[  818.395570][T15703] EXT4-fs error (device loop7): ext4_do_update_inode:5624: inode #2: comm syz.7.3225: corrupted inode contents
[  818.430903][T15713] EXT4-fs error (device loop7): ext4_do_update_inode:5624: inode #2: comm syz.7.3225: corrupted inode contents
[  818.476422][T15713] EXT4-fs error (device loop7): ext4_dirty_inode:6509: inode #2: comm syz.7.3225: mark_inode_dirty error
[  818.527554][T15713] EXT4-fs error (device loop7): ext4_do_update_inode:5624: inode #2: comm syz.7.3225: corrupted inode contents
[  818.572235][T15713] EXT4-fs error (device loop7): __ext4_ext_dirty:206: inode #2: comm syz.7.3225: mark_inode_dirty error
[  818.590606][T15713] EXT4-fs error (device loop7): ext4_do_update_inode:5624: inode #2: comm syz.7.3225: corrupted inode contents
[  818.618289][T15713] EXT4-fs error (device loop7): ext4_dirty_inode:6509: inode #2: comm syz.7.3225: mark_inode_dirty error
[  818.860287][T15721] loop6: detected capacity change from 0 to 512
[  818.915816][T12100] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  819.556036][T15729] ieee802154 phy0 wpan0: encryption failed: -22
[  819.912368][T15721] EXT4-fs error (device loop6): ext4_orphan_get:1395: comm syz.6.3230: couldn't read orphan inode 26 (err -116)
[  819.975860][T15736] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3234'.
[  820.036282][T15721] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  820.103939][T15738] loop1: detected capacity change from 0 to 512
[  820.123970][T15721] ext4 filesystem being mounted at /441/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  820.147744][T15738] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  820.228775][T15738] EXT4-fs (loop1): 1 truncate cleaned up
[  820.249406][T15738] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  820.371620][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  820.625851][   T30] kauditd_printk_skb: 15 callbacks suppressed
[  820.625880][   T30] audit: type=1326 audit(1760031709.965:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15741 comm="syz.7.3238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  820.701167][   T30] audit: type=1326 audit(1760031709.965:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15741 comm="syz.7.3238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  820.735488][   T30] audit: type=1326 audit(1760031709.975:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15741 comm="syz.7.3238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  820.813780][   T30] audit: type=1326 audit(1760031709.975:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15741 comm="syz.7.3238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  820.948468][   T30] audit: type=1326 audit(1760031709.975:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15741 comm="syz.7.3238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  821.022148][   T30] audit: type=1326 audit(1760031710.005:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15741 comm="syz.7.3238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  821.279258][   T30] audit: type=1326 audit(1760031710.005:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15741 comm="syz.7.3238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  821.400661][   T30] audit: type=1326 audit(1760031710.005:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15741 comm="syz.7.3238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  821.423746][   T30] audit: type=1326 audit(1760031710.005:633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15741 comm="syz.7.3238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  821.593725][   T30] audit: type=1326 audit(1760031710.005:634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15741 comm="syz.7.3238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=136 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  823.050242][T15771] syzkaller0: entered promiscuous mode
[  823.055962][T15771] syzkaller0: entered allmulticast mode
[  823.251790][ T7095] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  823.574687][T15781] loop0: detected capacity change from 0 to 764
[  823.732411][T15781] rock: directory entry would overflow storage
[  823.758859][T15781] rock: sig=0x4f50, size=4, remaining=3
[  823.764932][T15781] iso9660: Corrupted directory entry in block 4 of inode 1792
[  823.816500][T14892] usb 7-1: new high-speed USB device number 43 using dummy_hcd
[  823.930815][T15788] loop7: detected capacity change from 0 to 128
[  823.998464][T15788] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  824.010826][T14892] usb 7-1: Using ep0 maxpacket: 16
[  824.021941][T14892] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  824.037207][T14892] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  824.061648][T15788] ext4 filesystem being mounted at /206/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  824.106070][T14892] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  824.124964][T15792] random: crng reseeded on system resumption
[  824.127658][T14892] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  824.153369][T14892] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  824.172639][T14892] usb 7-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  824.182741][T14892] usb 7-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  824.190912][T14892] usb 7-1: Manufacturer: syz
[  824.211147][T14892] usb 7-1: config 0 descriptor??
[  824.343655][T12100] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  824.673861][T14892] rc_core: IR keymap rc-hauppauge not found
[  824.683541][T14892] Registered IR keymap rc-empty
[  824.710715][T14892] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  824.767791][T14892] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  824.817860][T14892] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/rc/rc0
[  824.853504][T14892] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/rc/rc0/input50
[  824.908745][T14892] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  824.945319][T14892] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  824.994025][T14892] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  825.035251][T14892] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  825.074851][T15810] Cannot find add_set index 0 as target
[  825.091354][T14892] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  825.126765][T14892] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  825.164130][T14892] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  825.232534][T14892] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  825.273296][T14892] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  825.299455][T14892] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  825.347443][T14892] mceusb 7-1:0.0: Registered І with mce emulator interface version 1
[  825.376237][T14892] mceusb 7-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  825.415572][T14892] usb 7-1: USB disconnect, device number 43
[  825.906463][T15823] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3266'.
[  826.149162][T15832] netlink: 44 bytes leftover after parsing attributes in process `+}[@'.
[  826.158404][T15832] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  826.196484][T15832] loop4: detected capacity change from 0 to 512
[  826.204129][T15832] ext4: Unknown parameter 'bsddf"data'
[  826.424843][T15838] loop3: detected capacity change from 0 to 2048
[  826.432678][T15838] EXT4-fs: Ignoring removed nobh option
[  826.477212][T15838] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  826.515061][T15838] netlink: 'syz.3.3271': attribute type 10 has an invalid length.
[  826.575867][T15844] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3271'.
[  827.477904][T15819] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  827.529506][T15832] netlink: 224 bytes leftover after parsing attributes in process `+}[@'.
[  827.539468][T15843] lo speed is unknown, defaulting to 1000
[  827.546068][T15838] macvlan1: entered allmulticast mode
[  827.564288][T15832] ksmbd: Unknown IPC event: 4, ignore.
[  827.572553][T15838] veth1_vlan: entered allmulticast mode
[  827.588707][T15838] team0: Device macvlan1 is up. Set it down before adding it as a team port
[  827.615479][T15843] lo speed is unknown, defaulting to 1000
[  827.644669][T15843] lo speed is unknown, defaulting to 1000
[  827.663580][T15843] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  827.741477][T15843] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  827.788867][ T5833] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  827.836401][T15853] loop1: detected capacity change from 0 to 1024
[  827.844485][T15853] EXT4-fs: Ignoring removed nomblk_io_submit option
[  827.863501][T15853] EXT4-fs: inline encryption not supported
[  827.879425][T15843] lo speed is unknown, defaulting to 1000
[  827.909159][T15843] lo speed is unknown, defaulting to 1000
[  827.945608][T15853] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  827.961084][T15843] lo speed is unknown, defaulting to 1000
[  827.990533][T15843] lo speed is unknown, defaulting to 1000
[  828.057280][T15843] lo speed is unknown, defaulting to 1000
[  828.092691][   T30] kauditd_printk_skb: 13 callbacks suppressed
[  828.092720][   T30] audit: type=1800 audit(1760031717.435:648): pid=15853 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3276" name="file1" dev="loop1" ino=15 res=0 errno=0
[  828.138788][T15843] lo speed is unknown, defaulting to 1000
[  828.165296][T15843] lo speed is unknown, defaulting to 1000
[  828.217173][   T30] audit: type=1326 audit(1760031717.465:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15861 comm="syz.3.3277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08538eec9 code=0x7ffc0000
[  828.293813][   T30] audit: type=1326 audit(1760031717.465:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15861 comm="syz.3.3277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08538eec9 code=0x7ffc0000
[  828.362251][   T30] audit: type=1326 audit(1760031717.485:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15861 comm="syz.3.3277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd08538eec9 code=0x7ffc0000
[  828.375947][T15864] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3280'.
[  828.403066][T15853] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4192: comm syz.1.3276: Allocating blocks 497-513 which overlap fs metadata
[  828.437443][T15853] EXT4-fs (loop1): pa ffff88802417de80: logic 256, phys. 385, len 8
[  828.446150][T15853] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5443: group 0, free 0, pa_free 1
[  828.460520][   T30] audit: type=1326 audit(1760031717.485:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15861 comm="syz.3.3277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08538eec9 code=0x7ffc0000
[  828.556106][   T30] audit: type=1326 audit(1760031717.485:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15861 comm="syz.3.3277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08538eec9 code=0x7ffc0000
[  828.598552][T15873] loop7: detected capacity change from 0 to 1024
[  828.639708][   T30] audit: type=1326 audit(1760031717.485:654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15861 comm="syz.3.3277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd08538eec9 code=0x7ffc0000
[  828.654011][T15873] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  828.717464][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  828.721915][   T30] audit: type=1326 audit(1760031717.485:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15861 comm="syz.3.3277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08538eec9 code=0x7ffc0000
[  828.776042][T15873] EXT4-fs error (device loop7): ext4_orphan_get:1392: inode #11: comm syz.7.3275: iget: bogus i_mode (1)
[  828.793543][   T30] audit: type=1326 audit(1760031717.485:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15861 comm="syz.3.3277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd08538eec9 code=0x7ffc0000
[  828.833385][T15873] EXT4-fs error (device loop7): ext4_orphan_get:1395: comm syz.7.3275: couldn't read orphan inode 11 (err -117)
[  828.862149][   T30] audit: type=1326 audit(1760031717.485:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15861 comm="syz.3.3277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd08538eec9 code=0x7ffc0000
[  828.869636][T15873] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  828.908316][T15877] syzkaller0: entered promiscuous mode
[  828.914112][T15877] syzkaller0: entered allmulticast mode
[  828.935879][T15854] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  829.154370][T15891] netlink: 76 bytes leftover after parsing attributes in process `syz.4.3288'.
[  829.857816][T15909] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3297'.
[  831.543106][T15918] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  831.795920][T15934] lo speed is unknown, defaulting to 1000
[  832.014264][T15941] veth0_to_team: entered promiscuous mode
[  833.044184][T15957] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3316'.
[  833.126629][T15965] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3318'.
[  833.188570][T15961] netlink: 48 bytes leftover after parsing attributes in process `syz.3.3317'.
[  833.356947][T15963] syzkaller0: entered promiscuous mode
[  833.362720][T15963] syzkaller0: entered allmulticast mode
[  833.501666][   T30] kauditd_printk_skb: 52 callbacks suppressed
[  833.501694][   T30] audit: type=1326 audit(1760031722.845:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15977 comm="syz.1.3324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774b58eec9 code=0x7ffc0000
[  833.540774][   T30] audit: type=1326 audit(1760031722.845:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15977 comm="syz.1.3324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774b58eec9 code=0x7ffc0000
[  833.584724][   T30] audit: type=1326 audit(1760031722.885:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15977 comm="syz.1.3324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f774b58eec9 code=0x7ffc0000
[  833.652879][   T30] audit: type=1326 audit(1760031722.885:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15977 comm="syz.1.3324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774b58eec9 code=0x7ffc0000
[  833.697072][T15984] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3327'.
[  833.744857][   T30] audit: type=1326 audit(1760031722.885:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15977 comm="syz.1.3324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f774b58eec9 code=0x7ffc0000
[  833.823877][   T30] audit: type=1326 audit(1760031722.885:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15977 comm="syz.1.3324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774b58eec9 code=0x7ffc0000
[  833.903975][   T30] audit: type=1326 audit(1760031722.885:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15977 comm="syz.1.3324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774b58eec9 code=0x7ffc0000
[  833.960647][   T30] audit: type=1326 audit(1760031722.885:717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15977 comm="syz.1.3324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7f774b58eec9 code=0x7ffc0000
[  833.986127][   T30] audit: type=1326 audit(1760031723.065:718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15977 comm="syz.1.3324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f774b52af79 code=0x7ffc0000
[  834.009056][   T30] audit: type=1326 audit(1760031723.065:719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15977 comm="syz.1.3324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f774b58eec9 code=0x7ffc0000
[  835.305068][T15999] loop7: detected capacity change from 0 to 512
[  835.367988][T15999] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  835.398784][T15999] ext4 filesystem being mounted at /219/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  835.524052][T15999] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1286: group 0, block bitmap and bg descriptor inconsistent: 96 vs 864 free clusters
[  835.548043][T15999] EXT4-fs error (device loop7): ext4_acquire_dquot:6943: comm syz.7.3333: Failed to acquire dquot type 1
[  835.699087][T12100] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  836.523105][T16018] netlink: 48 bytes leftover after parsing attributes in process `syz.4.3339'.
[  837.355755][T15984] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[  837.365442][T15984] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[  837.375211][T15984] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  838.005125][T16038] loop7: detected capacity change from 0 to 512
[  838.012975][T16028] loop4: detected capacity change from 0 to 512
[  838.035402][T16038] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  838.085777][T16038] EXT4-fs error (device loop7): ext4_get_branch:178: inode #11: block 4294967295: comm syz.7.3347: invalid block
[  838.122716][T16038] EXT4-fs error (device loop7): ext4_free_branches:1020: inode #11: comm syz.7.3347: invalid indirect mapped block 4294967295 (level 1)
[  838.141905][T16038] EXT4-fs error (device loop7): ext4_free_branches:1020: inode #11: comm syz.7.3347: invalid indirect mapped block 4294967295 (level 1)
[  838.180271][T16038] EXT4-fs (loop7): 2 truncates cleaned up
[  838.195953][T16038] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  838.290297][T16038] EXT4-fs error (device loop7): ext4_get_parent:1833: inode #11: comm syz.7.3347: bad parent inode number: 3
[  838.396130][T12100] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  838.524493][T16055] netlink: 48 bytes leftover after parsing attributes in process `syz.0.3355'.
[  838.602078][   T30] kauditd_printk_skb: 82 callbacks suppressed
[  838.602105][   T30] audit: type=1326 audit(1760031727.945:800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16057 comm="syz.7.3356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  838.652625][   T30] audit: type=1326 audit(1760031727.985:801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16057 comm="syz.7.3356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  838.675989][   T30] audit: type=1326 audit(1760031727.995:802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16057 comm="syz.7.3356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  838.702608][   T30] audit: type=1326 audit(1760031727.995:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16057 comm="syz.7.3356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  838.776061][   T30] audit: type=1326 audit(1760031727.995:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16057 comm="syz.7.3356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  838.868298][   T30] audit: type=1326 audit(1760031727.995:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16057 comm="syz.7.3356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  838.918601][T16067] loop0: detected capacity change from 0 to 2048
[  838.923456][T16060] syzkaller0: entered promiscuous mode
[  838.935226][T16060] syzkaller0: entered allmulticast mode
[  838.941558][   T30] audit: type=1326 audit(1760031727.995:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16057 comm="syz.7.3356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  838.966779][   T30] audit: type=1326 audit(1760031728.015:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16057 comm="syz.7.3356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  838.999098][   T30] audit: type=1326 audit(1760031728.015:808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16057 comm="syz.7.3356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  839.022240][   T30] audit: type=1326 audit(1760031728.115:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16057 comm="syz.7.3356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb21d58eec9 code=0x7ffc0000
[  839.068497][T16067] Alternate GPT is invalid, using primary GPT.
[  839.078503][T16067]  loop0: p1 p2 p3
[  839.082339][T16067] loop0: partition table partially beyond EOD, truncated
[  839.086775][T16071] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3361'.
[  839.343227][T16081] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3366'.
[  841.657144][T16110] random: crng reseeded on system resumption
[  842.052767][T16132] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3389'.
[  842.325327][T16143] loop7: detected capacity change from 0 to 512
[  842.346950][T16145] loop0: detected capacity change from 0 to 164
[  842.676063][T16159] random: crng reseeded on system resumption
[  843.021169][T16171] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3405'.
[  843.097715][T16174] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3406'.
[  844.744208][T16171] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[  844.759151][T16171] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[  844.813828][T16171] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  844.840191][T16164] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  846.449268][   T30] kauditd_printk_skb: 34 callbacks suppressed
[  846.449295][   T30] audit: type=1326 audit(1760031735.795:844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16183 comm="syz.6.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  846.533235][   T30] audit: type=1326 audit(1760031735.795:845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16183 comm="syz.6.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  846.599076][   T30] audit: type=1326 audit(1760031735.805:846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16183 comm="syz.6.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  846.680743][   T30] audit: type=1326 audit(1760031735.805:847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16183 comm="syz.6.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  846.777302][   T30] audit: type=1326 audit(1760031735.805:848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16183 comm="syz.6.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  846.810263][T16164] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  846.832783][T16193] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3413'.
[  846.860549][   T30] audit: type=1326 audit(1760031735.805:849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16183 comm="syz.6.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  846.916469][   T30] audit: type=1326 audit(1760031735.825:850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16183 comm="syz.6.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  846.922256][T16199] loop0: detected capacity change from 0 to 512
[  847.021477][   T30] audit: type=1326 audit(1760031735.825:851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16183 comm="syz.6.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  847.071021][T16164] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  847.086147][   T30] audit: type=1326 audit(1760031735.825:852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16183 comm="syz.6.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  847.136411][T16205] mac80211_hwsim hwsim19 wlan1: left allmulticast mode
[  847.154567][T16205] veth3: left promiscuous mode
[  847.196961][   T30] audit: type=1326 audit(1760031735.825:853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16183 comm="syz.6.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  847.244945][T16196] pim6reg1: entered promiscuous mode
[  847.250519][T16196] pim6reg1: entered allmulticast mode
[  847.379354][T16164] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  847.619614][ T6033] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  847.657186][ T6033] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  847.742160][ T6033] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  847.810515][ T6033] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  848.844486][T16224] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3424'.
[  848.981017][T16228] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3423'.
[  849.073854][   T43] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  849.191897][T16239] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3426'.
[  849.206872][T16216] infiniband syz!: set down
[  849.224469][T16216] infiniband syz!: added team_slave_0
[  849.232733][T16216] syz!: rxe_create_cq: returned err = -12
[  849.251000][   T43] usb 5-1: Using ep0 maxpacket: 16
[  849.258991][   T43] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  849.280070][T16216] infiniband syz!: Couldn't create ib_mad CQ
[  849.291179][T16216] infiniband syz!: Couldn't open port 1
[  849.304013][   T43] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  849.335572][   T43] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  849.357423][T16243] loop0: detected capacity change from 0 to 2048
[  849.369151][   T43] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  849.371670][T16216] RDS/IB: syz!: added
[  849.387151][T16216] smc: adding ib device syz! with port count 1
[  849.388559][   T43] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  849.394140][T16216] smc:    ib device syz! port 1 has no pnetid
[  849.421351][   T43] usb 5-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  849.434710][T16243] Alternate GPT is invalid, using primary GPT.
[  849.441560][   T43] usb 5-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  849.449823][T16243]  loop0: p1 p2 p3
[  849.456195][T16243] loop0: partition table partially beyond EOD, truncated
[  849.465367][   T43] usb 5-1: Manufacturer: syz
[  849.480693][   T43] usb 5-1: config 0 descriptor??
[  849.863789][   T43] rc_core: IR keymap rc-hauppauge not found
[  849.875142][   T43] Registered IR keymap rc-empty
[  849.889438][   T43] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[  849.908648][T16257] mac80211_hwsim hwsim11 wlan1: left allmulticast mode
[  849.916520][T16258] random: crng reseeded on system resumption
[  849.925920][   T43] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[  849.968676][   T43] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0
[  850.003335][   T43] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0/input51
[  850.075769][   T43] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[  850.104762][   T43] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[  850.133988][   T43] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[  850.173891][   T43] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[  850.224071][   T43] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[  850.488035][T16262] lo speed is unknown, defaulting to 1000
[  850.926931][   T43] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[  850.953832][   T43] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[  850.973914][   T43] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[  851.013918][   T43] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[  851.038274][   T43] mceusb 5-1:0.0: Error: mce write submit urb error = -90
[  851.087496][   T43] mceusb 5-1:0.0: Registered І with mce emulator interface version 1
[  851.098024][T16268] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3437'.
[  851.122749][T16265] loop3: detected capacity change from 0 to 128
[  851.129253][   T43] mceusb 5-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  851.162161][   T43] usb 5-1: USB disconnect, device number 2
[  851.176200][T16265] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  851.214851][T16265] ext4 filesystem being mounted at /573/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  851.487798][T16276] 9pnet_fd: Insufficient options for proto=fd
[  851.852297][T16278] loop1: detected capacity change from 0 to 128
[  851.941364][ T5833] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  851.968734][T16278] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a842c018, mo2=0002]
[  852.021213][T16278] System zones: 1-3, 19-19, 35-36
[  852.039855][T16278] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  852.114469][T16278] ext4 filesystem being mounted at /534/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  852.156976][T14886] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  852.186362][   T30] kauditd_printk_skb: 64 callbacks suppressed
[  852.186390][   T30] audit: type=1800 audit(1760031741.535:918): pid=16278 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3441" name="file1" dev="loop1" ino=12 res=0 errno=0
[  852.290257][T14886] hid-generic 0000:0000:0000.000B: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  853.310963][T16298] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3447'.
[  853.312036][ T5827] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  853.454766][   T30] audit: type=1326 audit(1760031742.805:919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16297 comm="syz.0.3447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7399d8eec9 code=0x7ffc0000
[  853.483230][T16302] ªªªªªªÿÿòÿÿÿòÿÿ: renamed from wg2 (while UP)
[  853.491026][   T30] audit: type=1326 audit(1760031742.805:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16297 comm="syz.0.3447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7399d8eec9 code=0x7ffc0000
[  853.544396][   T30] audit: type=1326 audit(1760031742.805:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16297 comm="syz.0.3447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7399d8eec9 code=0x7ffc0000
[  853.625277][   T30] audit: type=1326 audit(1760031742.825:922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16297 comm="syz.0.3447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f7399d8eec9 code=0x7ffc0000
[  853.668388][   T30] audit: type=1326 audit(1760031742.825:923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16297 comm="syz.0.3447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7399d8eec9 code=0x7ffc0000
[  853.724341][   T30] audit: type=1326 audit(1760031742.825:924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16297 comm="syz.0.3447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7399d8eec9 code=0x7ffc0000
[  853.766376][   T30] audit: type=1326 audit(1760031742.825:925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16297 comm="syz.0.3447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f7399d8eec9 code=0x7ffc0000
[  853.791699][   T30] audit: type=1326 audit(1760031742.825:926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16297 comm="syz.0.3447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7399d8eec9 code=0x7ffc0000
[  853.816271][   T30] audit: type=1326 audit(1760031742.825:927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16297 comm="syz.0.3447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7399d8eec9 code=0x7ffc0000
[  854.168404][T16317] syzkaller0: entered promiscuous mode
[  854.183052][T16317] syzkaller0: entered allmulticast mode
[  854.407574][T13130] kernel write not supported for file /1430/net/rt_acct (pid: 13130 comm: kworker/1:10)
[  854.696029][T16325] loop1: detected capacity change from 0 to 8192
[  854.943030][T16325] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[  854.963074][T16325] FAT-fs (loop1): Filesystem has been set read-only
[  855.414712][T16337] program syz.1.3462 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  855.615340][T16343] loop0: detected capacity change from 0 to 1024
[  856.640222][T16356] netlink: 32 bytes leftover after parsing attributes in process `syz.6.3468'.
[  858.835546][T16379] bridge0: port 2(bridge_slave_1) entered disabled state
[  858.843102][T16379] bridge0: port 1(bridge_slave_0) entered disabled state
[  859.055921][T16387] loop6: detected capacity change from 0 to 1024
[  859.064495][T16387] EXT4-fs: inline encryption not supported
[  859.070897][T16387] EXT4-fs: Ignoring removed bh option
[  859.079132][T16379] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  859.096566][T16387] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  859.169747][ T7095] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  859.298625][ T6031] netdevsim netdevsim7 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  859.317034][ T6031] netdevsim netdevsim7 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  859.365391][ T6031] netdevsim netdevsim7 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  859.396608][ T6031] netdevsim netdevsim7 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  859.490109][T13138] kernel write not supported for file bpf-prog (pid: 13138 comm: kworker/0:7)
[  860.452191][T16406] mac80211_hwsim hwsim19 wlan1: entered allmulticast mode
[  861.200144][T16408] syzkaller0: entered promiscuous mode
[  861.237392][T16408] syzkaller0: entered allmulticast mode
[  861.346620][T16391] Bluetooth: hci6: command 0x0406 tx timeout
[  861.719517][T16430] loop1: detected capacity change from 0 to 512
[  861.836919][T16430] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  862.066673][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  862.447270][   T30] kauditd_printk_skb: 90 callbacks suppressed
[  862.447298][   T30] audit: type=1326 audit(1760031751.795:1018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16441 comm="syz.0.3499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7399d8eec9 code=0x7ffc0000
[  862.513994][   T30] audit: type=1326 audit(1760031751.795:1019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16441 comm="syz.0.3499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=276 compat=0 ip=0x7f7399d8eec9 code=0x7ffc0000
[  862.549793][   T30] audit: type=1326 audit(1760031751.795:1020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16441 comm="syz.0.3499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7399d8eec9 code=0x7ffc0000
[  862.573159][   T30] audit: type=1326 audit(1760031751.825:1021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16441 comm="syz.0.3499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7399d8eec9 code=0x7ffc0000
[  862.675619][T16447] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3501'.
[  864.134279][T14886] IPVS: starting estimator thread 0...
[  864.263582][T16455] IPVS: using max 24 ests per chain, 57600 per kthread
[  865.137900][T16457] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3504'.
[  865.433798][T16469] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3509'.
[  865.447117][T16473] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3510'.
[  865.486774][T16472] loop4: detected capacity change from 0 to 2364
[  865.530364][T16478] random: crng reseeded on system resumption
[  865.569476][   T30] audit: type=1326 audit(1760031754.905:1022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16471 comm="syz.6.3510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  865.665283][   T30] audit: type=1326 audit(1760031754.905:1023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16471 comm="syz.6.3510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  865.724691][   T30] audit: type=1326 audit(1760031754.965:1024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16471 comm="syz.6.3510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  865.781270][   T30] audit: type=1326 audit(1760031754.965:1025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16471 comm="syz.6.3510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  865.806444][   T30] audit: type=1326 audit(1760031754.965:1026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16471 comm="syz.6.3510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  865.836505][   T30] audit: type=1326 audit(1760031754.965:1027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16471 comm="syz.6.3510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  865.995346][T16480] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3514'.
[  866.826943][T16488] lo speed is unknown, defaulting to 1000
[  866.855947][T16489] ieee802154 phy0 wpan0: encryption failed: -22
[  867.686187][T16499] netlink: 'syz.0.3521': attribute type 13 has an invalid length.
[  868.477762][T16501] syzkaller0: entered promiscuous mode
[  868.486408][T16501] syzkaller0: entered allmulticast mode
[  868.502696][   T30] kauditd_printk_skb: 23 callbacks suppressed
[  868.502723][   T30] audit: type=1107 audit(1760031757.845:1051): pid=16507 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  868.990778][T16516] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3526'.
[  868.996477][T16517] random: crng reseeded on system resumption
[  869.113588][   T30] audit: type=1326 audit(1760031758.455:1052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16514 comm="syz.6.3526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  869.180636][   T30] audit: type=1326 audit(1760031758.455:1053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16514 comm="syz.6.3526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  869.204920][   T30] audit: type=1326 audit(1760031758.455:1054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16514 comm="syz.6.3526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  869.235996][   T30] audit: type=1326 audit(1760031758.465:1055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16514 comm="syz.6.3526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  869.266823][   T30] audit: type=1326 audit(1760031758.465:1056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16514 comm="syz.6.3526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  869.290513][   T30] audit: type=1326 audit(1760031758.485:1057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16514 comm="syz.6.3526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  869.339006][T16523] loop7: detected capacity change from 0 to 512
[  869.345831][   T30] audit: type=1326 audit(1760031758.485:1058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16514 comm="syz.6.3526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  869.370342][T16523] ext4: Unknown parameter 'bsddf"data'
[  869.380645][   T30] audit: type=1326 audit(1760031758.485:1059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16514 comm="syz.6.3526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  869.404459][   T30] audit: type=1326 audit(1760031758.485:1060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16514 comm="syz.6.3526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f8ce318eec9 code=0x7ffc0000
[  871.003536][T16537] loop1: detected capacity change from 0 to 1024
[  871.013585][T16537] EXT4-fs: inline encryption not supported
[  871.019600][T16537] EXT4-fs: Ignoring removed i_version option
[  871.091933][T16537] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  871.107609][T16516] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[  871.143368][T16516] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[  871.163916][T16516] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  871.287270][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  872.962956][T16560] loop0: detected capacity change from 0 to 1024
[  873.195304][T16563] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  873.250856][T16557] tipc: Resetting bearer <eth:syzkaller0>
[  873.267749][T16571] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3547'.
[  873.659097][T16584] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3552'.
[  875.563291][T16557] tipc: Disabling bearer <eth:syzkaller0>
[  875.654306][T16590] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  875.665618][T16591] mac80211_hwsim hwsim19 wlan1: left allmulticast mode
[  875.677850][T16605] ieee802154 phy0 wpan0: encryption failed: -22
[  875.714404][T16592] syzkaller0: entered promiscuous mode
[  875.723777][T16592] syzkaller0: entered allmulticast mode
[  875.757693][T16601] tipc: Resetting bearer <eth:syzkaller0>
[  875.813524][T16586] tipc: Resetting bearer <eth:syzkaller0>
[  875.914932][T16586] tipc: Disabling bearer <eth:syzkaller0>
[  876.005371][T16616] loop6: detected capacity change from 0 to 1024
[  876.028877][T16616] EXT4-fs: Ignoring removed i_version option
[  876.046016][T16616] EXT4-fs: inline encryption not supported
[  876.065107][T16616] EXT4-fs (loop6): Test dummy encryption mode enabled
[  876.145991][T16616] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  876.930235][T16625] mac80211_hwsim hwsim19 wlan1: entered allmulticast mode
[  877.461712][   T30] kauditd_printk_skb: 23 callbacks suppressed
[  877.461739][   T30] audit: type=1326 audit(1760031766.805:1084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16627 comm="syz.0.3563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7399d8eec9 code=0x7ffc0000
[  877.610313][   T30] audit: type=1326 audit(1760031766.845:1085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16627 comm="syz.0.3563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7399d8eec9 code=0x7ffc0000
[  877.677007][   T30] audit: type=1326 audit(1760031766.865:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16627 comm="syz.0.3563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7f7399d8eec9 code=0x7ffc0000
[  877.710503][ T7095] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  877.763843][   T30] audit: type=1326 audit(1760031766.865:1087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16627 comm="syz.0.3563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7399d8eec9 code=0x7ffc0000
[  877.780205][T16636] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3567'.
[  877.823956][   T30] audit: type=1326 audit(1760031766.865:1088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16627 comm="syz.0.3563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7399d8eec9 code=0x7ffc0000
[  877.901523][T16642] random: crng reseeded on system resumption
[  878.103012][T16645] bridge0: port 2(bridge_slave_1) entered disabled state
[  878.110555][T16645] bridge0: port 1(bridge_slave_0) entered disabled state
[  878.352157][T16645] veth0_to_team: left promiscuous mode
[  878.415952][T16645] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  878.628028][T16645] veth1_vlan: left allmulticast mode
[  878.634221][T16667] loop1: detected capacity change from 0 to 512
[  878.654679][T16667] EXT4-fs: test_dummy_encryption requires encrypt feature
[  878.656716][T16645] macvlan1: left allmulticast mode
[  878.764093][T16668] loop1: detected capacity change from 0 to 512
[  878.766661][T16645] mac80211_hwsim hwsim8 wlan1: left allmulticast mode
[  878.799639][T16645] veth3: left promiscuous mode
[  878.813379][T16668] 
[  878.815757][T16668] ======================================================
[  878.822783][T16668] WARNING: possible circular locking dependency detected
[  878.829821][T16668] syzkaller #0 Not tainted
[  878.834254][T16668] ------------------------------------------------------
[  878.841284][T16668] syz.1.3579/16668 is trying to acquire lock:
[  878.847365][T16668] ffff88803302eb98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x27a/0x600
[  878.857368][T16668] 
[  878.857368][T16668] but task is already holding lock:
[  878.864765][T16668] ffff88807a7ec3b8 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x4ba/0x870
[  878.874686][T16668] 
[  878.874686][T16668] which lock already depends on the new lock.
[  878.874686][T16668] 
[  878.885111][T16668] 
[  878.885111][T16668] the existing dependency chain (in reverse order) is:
[  878.894155][T16668] 
[  878.894155][T16668] -> #2 (&ei->xattr_sem){++++}-{4:4}:
[  878.901772][T16668]        down_write+0x92/0x200
[  878.906588][T16668]        ext4_inline_data_truncate+0x1b3/0xc80
[  878.907867][T16645] veth7: left promiscuous mode
[  878.912791][T16668]        ext4_truncate+0x9b4/0x1210
[  878.912842][T16668]        ext4_evict_inode+0x7a8/0x18e0
[  878.912884][T16668]        evict+0x3e6/0x920
[  878.932689][T16668]        iput.part.0+0x6a9/0xb00
[  878.937674][T16668]        iput+0x35/0x40
[  878.941886][T16668]        ext4_orphan_cleanup+0x731/0x11e0
[  878.947658][T16668]        ext4_fill_super+0x8db7/0xaf70
[  878.953170][T16668]        get_tree_bdev_flags+0x38c/0x620
[  878.958869][T16668]        vfs_get_tree+0x8e/0x340
[  878.963839][T16668]        path_mount+0x7b9/0x23a0
[  878.968784][T16668]        __x64_sys_mount+0x293/0x310
[  878.974081][T16668]        do_syscall_64+0xcd/0xfa0
[  878.979125][T16668]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  878.985549][T16668] 
[  878.985549][T16668] -> #1 (sb_internal){.+.+}-{0:0}:
[  878.992959][T16668]        ext4_evict_inode+0xe3e/0x18e0
[  878.998535][T16668]        evict+0x3e6/0x920
[  879.002961][T16668]        iput.part.0+0x6a9/0xb00
[  879.007911][T16668]        iput+0x35/0x40
[  879.012077][T16668]        ext4_ext_migrate+0xc6f/0x1ee0
[  879.017546][T16668]        __ext4_ioctl+0x3178/0x4410
[  879.022760][T16668]        __x64_sys_ioctl+0x18e/0x210
[  879.028055][T16668]        do_syscall_64+0xcd/0xfa0
[  879.033094][T16668]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  879.039520][T16668] 
[  879.039520][T16668] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[  879.047966][T16668]        __lock_acquire+0x12a6/0x1ce0
[  879.053399][T16668]        lock_acquire+0x179/0x350
[  879.058429][T16668]        ext4_writepages+0x224/0x7d0
[  879.063735][T16668]        do_writepages+0x27a/0x600
[  879.068863][T16668]        __writeback_single_inode+0x160/0xfb0
[  879.074946][T16668]        writeback_single_inode+0x2bc/0x550
[  879.080860][T16668]        write_inode_now+0x170/0x1e0
[  879.086159][T16668]        iput.part.0+0x487/0xb00
[  879.091108][T16668]        iput+0x35/0x40
[  879.095272][T16668]        ext4_xattr_block_set+0x67c/0x3650
[  879.101114][T16668]        ext4_expand_extra_isize_ea+0x1442/0x1ab0
[  879.107800][T16668]        __ext4_expand_extra_isize+0x346/0x480
[  879.113991][T16668]        __ext4_mark_inode_dirty+0x544/0x870
[  879.119991][T16668]        ext4_evict_inode+0x74e/0x18e0
[  879.125557][T16668]        evict+0x3e6/0x920
[  879.129980][T16668]        iput.part.0+0x6a9/0xb00
[  879.134925][T16668]        iput+0x35/0x40
[  879.139081][T16668]        ext4_orphan_cleanup+0x731/0x11e0
[  879.144813][T16668]        ext4_fill_super+0x8db7/0xaf70
[  879.150292][T16668]        get_tree_bdev_flags+0x38c/0x620
[  879.155949][T16668]        vfs_get_tree+0x8e/0x340
[  879.160904][T16668]        path_mount+0x7b9/0x23a0
[  879.165905][T16668]        __x64_sys_mount+0x293/0x310
[  879.171204][T16668]        do_syscall_64+0xcd/0xfa0
[  879.176250][T16668]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  879.182681][T16668] 
[  879.182681][T16668] other info that might help us debug this:
[  879.182681][T16668] 
[  879.192908][T16668] Chain exists of:
[  879.192908][T16668]   &sbi->s_writepages_rwsem --> sb_internal --> &ei->xattr_sem
[  879.192908][T16668] 
[  879.206326][T16668]  Possible unsafe locking scenario:
[  879.206326][T16668] 
[  879.213771][T16668]        CPU0                    CPU1
[  879.219127][T16668]        ----                    ----
[  879.224482][T16668]   lock(&ei->xattr_sem);
[  879.228815][T16668]                                lock(sb_internal);
[  879.235405][T16668]                                lock(&ei->xattr_sem);
[  879.242264][T16668]   rlock(&sbi->s_writepages_rwsem);
[  879.247553][T16668] 
[  879.247553][T16668]  *** DEADLOCK ***
[  879.247553][T16668] 
[  879.255692][T16668] 3 locks held by syz.1.3579/16668:
[  879.260883][T16668]  #0: ffff8880330280e0 (&type->s_umount_key#28/1){+.+.}-{4:4}, at: alloc_super+0x1e3/0xb60
[  879.271061][T16668]  #1: ffff888033028610 (sb_internal){.+.+}-{0:0}, at: evict+0x3e6/0x920
[  879.279562][T16668]  #2: ffff88807a7ec3b8 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x4ba/0x870
[  879.289976][T16668] 
[  879.289976][T16668] stack backtrace:
[  879.295862][T16668] CPU: 1 UID: 0 PID: 16668 Comm: syz.1.3579 Not tainted syzkaller #0 PREEMPT(full) 
[  879.295904][T16668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  879.295924][T16668] Call Trace:
[  879.295936][T16668]  <TASK>
[  879.295950][T16668]  dump_stack_lvl+0x116/0x1f0
[  879.295992][T16668]  print_circular_bug+0x275/0x350
[  879.296048][T16668]  check_noncircular+0x14c/0x170
[  879.296106][T16668]  __lock_acquire+0x12a6/0x1ce0
[  879.296164][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  879.296209][T16668]  lock_acquire+0x179/0x350
[  879.296238][T16668]  ? do_writepages+0x27a/0x600
[  879.296271][T16668]  ? __pfx___might_resched+0x10/0x10
[  879.296319][T16668]  ext4_writepages+0x224/0x7d0
[  879.296361][T16668]  ? do_writepages+0x27a/0x600
[  879.296392][T16668]  ? __pfx_ext4_writepages+0x10/0x10
[  879.296446][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  879.296489][T16668]  ? __pfx_ext4_writepages+0x10/0x10
[  879.296531][T16668]  do_writepages+0x27a/0x600
[  879.296565][T16668]  ? __pfx_do_writepages+0x10/0x10
[  879.296601][T16668]  __writeback_single_inode+0x160/0xfb0
[  879.296645][T16668]  ? __pfx___writeback_single_inode+0x10/0x10
[  879.296685][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  879.296725][T16668]  ? do_raw_spin_unlock+0x172/0x230
[  879.296763][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  879.296806][T16668]  writeback_single_inode+0x2bc/0x550
[  879.296851][T16668]  write_inode_now+0x170/0x1e0
[  879.296893][T16668]  ? __pfx_write_inode_now+0x10/0x10
[  879.296933][T16668]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  879.297000][T16668]  ? find_held_lock+0x2b/0x80
[  879.297043][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  879.297085][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  879.297128][T16668]  iput.part.0+0x487/0xb00
[  879.297168][T16668]  iput+0x35/0x40
[  879.297200][T16668]  ext4_xattr_block_set+0x67c/0x3650
[  879.297265][T16668]  ? __pfx_ext4_xattr_block_set+0x10/0x10
[  879.297324][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  879.297364][T16668]  ? xattr_find_entry+0x289/0x330
[  879.297423][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  879.297463][T16668]  ? ext4_xattr_block_find+0x59/0x430
[  879.297518][T16668]  ext4_expand_extra_isize_ea+0x1442/0x1ab0
[  879.297568][T16668]  ? __pfx_ext4_expand_extra_isize_ea+0x10/0x10
[  879.297610][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  879.297650][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  879.297690][T16668]  ? dquot_initialize_needed+0x183/0x2a0
[  879.297729][T16668]  __ext4_expand_extra_isize+0x346/0x480
[  879.297792][T16668]  __ext4_mark_inode_dirty+0x544/0x870
[  879.297838][T16668]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  879.297882][T16668]  ? __pfx___might_resched+0x10/0x10
[  879.297929][T16668]  ? ext4_journal_check_start+0x22b/0x340
[  879.297968][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  879.298008][T16668]  ? __ext4_journal_start_sb+0x19e/0x690
[  879.298044][T16668]  ? ext4_evict_inode+0x5cf/0x18e0
[  879.298088][T16668]  ext4_evict_inode+0x74e/0x18e0
[  879.298134][T16668]  ? __pfx_ext4_evict_inode+0x10/0x10
[  879.298176][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  879.298221][T16668]  ? __pfx_ext4_evict_inode+0x10/0x10
[  879.298262][T16668]  evict+0x3e6/0x920
[  879.298296][T16668]  ? __pfx_evict+0x10/0x10
[  879.298327][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  879.298372][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  879.298424][T16668]  iput.part.0+0x6a9/0xb00
[  879.298456][T16668]  ? __pfx_ext4_drop_inode+0x10/0x10
[  879.298492][T16668]  iput+0x35/0x40
[  879.298523][T16668]  ext4_orphan_cleanup+0x731/0x11e0
[  879.298572][T16668]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  879.298619][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  879.298658][T16668]  ? ext4_register_li_request+0xec/0x9b0
[  879.298709][T16668]  ext4_fill_super+0x8db7/0xaf70
[  879.298771][T16668]  ? __pfx_ext4_fill_super+0x10/0x10
[  879.298817][T16668]  ? do_raw_spin_lock+0x12c/0x2b0
[  879.298853][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  879.298892][T16668]  ? find_held_lock+0x2b/0x80
[  879.298937][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  879.298977][T16668]  ? sb_set_blocksize+0x176/0x1d0
[  879.299028][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  879.299067][T16668]  ? setup_bdev_super+0x369/0x730
[  879.299112][T16668]  get_tree_bdev_flags+0x38c/0x620
[  879.299158][T16668]  ? __pfx_ext4_fill_super+0x10/0x10
[  879.299206][T16668]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  879.299255][T16668]  ? apparmor_capable+0x114/0x1d0
[  879.299303][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  879.299344][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  879.299383][T16668]  ? security_capable+0x7e/0x260
[  879.299430][T16668]  vfs_get_tree+0x8e/0x340
[  879.299470][T16668]  path_mount+0x7b9/0x23a0
[  879.299504][T16668]  ? __pfx_path_mount+0x10/0x10
[  879.299536][T16668]  ? putname+0x154/0x1a0
[  879.299572][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  879.299611][T16668]  ? putname+0x154/0x1a0
[  879.299645][T16668]  ? __x64_sys_mount+0x293/0x310
[  879.299675][T16668]  __x64_sys_mount+0x293/0x310
[  879.299706][T16668]  ? __pfx___x64_sys_mount+0x10/0x10
[  879.299744][T16668]  do_syscall_64+0xcd/0xfa0
[  879.299785][T16668]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  879.299819][T16668] RIP: 0033:0x7f774b59066a
[  879.299847][T16668] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  879.299880][T16668] RSP: 002b:00007f774c441e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  879.299911][T16668] RAX: ffffffffffffffda RBX: 00007f774c441ef0 RCX: 00007f774b59066a
[  879.299933][T16668] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f774c441eb0
[  879.299955][T16668] RBP: 0000200000000180 R08: 00007f774c441ef0 R09: 0000000001800700
[  879.299977][T16668] R10: 0000000001800700 R11: 0000000000000246 R12: 00002000000001c0
[  879.299999][T16668] R13: 00007f774c441eb0 R14: 000000000000047c R15: 00002000000004c0
[  879.300034][T16668]  </TASK>
[  879.874029][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  879.880455][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  879.887982][T16668] ------------[ cut here ]------------
[  879.893504][T16668] EA inode 11 i_nlink=2
[  879.899149][T16668] WARNING: CPU: 0 PID: 16668 at fs/ext4/xattr.c:1056 ext4_xattr_inode_update_ref+0x4ec/0x610
[  879.914068][T16668] Modules linked in:
[  879.918000][T16668] CPU: 0 UID: 0 PID: 16668 Comm: syz.1.3579 Not tainted syzkaller #0 PREEMPT(full) 
[  879.927699][T16668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  879.937823][T16668] RIP: 0010:ext4_xattr_inode_update_ref+0x4ec/0x610
[  879.944536][T16668] Code: df 48 8d 7b 40 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 23 01 00 00 48 8b 73 40 44 89 e2 48 c7 c7 c0 4c a8 8b e8 55 17 ed fe 90 <0f> 0b 90 90 e9 d9 fe ff ff e8 56 de 2e ff 44 0f b6 2d 01 59 de 0d
[  879.964250][T16668] RSP: 0018:ffffc9001c347178 EFLAGS: 00010282
[  879.970360][T16668] RAX: 0000000000000000 RBX: ffff888078814588 RCX: ffffc9000cbaf000
[  879.978422][T16668] RDX: 0000000000080000 RSI: ffffffff817a9ef5 RDI: 0000000000000001
[  879.979278][T16663] loop6: detected capacity change from 0 to 1024
[  879.986673][T16668] RBP: ffffc9001c347240 R08: 0000000000000001 R09: 0000000000000000
[  879.993962][T16663] EXT4-fs: Ignoring removed orlov option
[  880.001008][T16668] R10: 0000000000000001 R11: 000000002d2d2d2d R12: 0000000000000002
[  880.014605][T16668] R13: 0000000000000000 R14: 1ffff92003868e32 R15: ffff888078814778
[  880.022623][T16668] FS:  00007f774c4426c0(0000) GS:ffff8881249e0000(0000) knlGS:0000000000000000
[  880.031655][T16668] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  880.038317][T16668] CR2: 00007fb21d7b2d58 CR3: 0000000046ff0000 CR4: 0000000000350ef0
[  880.046444][T16668] Call Trace:
[  880.047392][T16663] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  880.049738][T16668]  <TASK>
[  880.065277][T16668]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[  880.071715][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.077440][T16668]  ? ext4_xattr_inode_iget+0x1ee/0x400
[  880.082945][T16668]  ext4_xattr_set_entry+0x158f/0x1f00
[  880.088434][T16668]  ? __pfx_ext4_xattr_set_entry+0x10/0x10
[  880.094247][T16668]  ? xattr_find_entry+0x289/0x330
[  880.099323][T16668]  ext4_xattr_ibody_set+0x3d6/0x5d0
[  880.104589][T16668]  ext4_expand_extra_isize_ea+0x148c/0x1ab0
[  880.110546][T16668]  ? __pfx_ext4_expand_extra_isize_ea+0x10/0x10
[  880.116951][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.122825][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.128541][T16668]  ? dquot_initialize_needed+0x183/0x2a0
[  880.134269][T16668]  __ext4_expand_extra_isize+0x346/0x480
[  880.139986][T16668]  __ext4_mark_inode_dirty+0x544/0x870
[  880.145571][T16668]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  880.151623][T16668]  ? __pfx___might_resched+0x10/0x10
[  880.156996][T16668]  ? ext4_journal_check_start+0x22b/0x340
[  880.162827][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.168514][T16668]  ? __ext4_journal_start_sb+0x19e/0x690
[  880.174198][T16668]  ? ext4_evict_inode+0x5cf/0x18e0
[  880.179370][T16668]  ext4_evict_inode+0x74e/0x18e0
[  880.184425][T16668]  ? __pfx_ext4_evict_inode+0x10/0x10
[  880.189821][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.195524][T16668]  ? __pfx_ext4_evict_inode+0x10/0x10
[  880.200927][T16668]  evict+0x3e6/0x920
[  880.204893][T16668]  ? __pfx_evict+0x10/0x10
[  880.209349][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.215072][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.220739][T16668]  iput.part.0+0x6a9/0xb00
[  880.225276][T16668]  ? __pfx_ext4_drop_inode+0x10/0x10
[  880.230595][T16668]  iput+0x35/0x40
[  880.234288][T16668]  ext4_orphan_cleanup+0x731/0x11e0
[  880.239537][T16668]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  880.245257][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.250916][T16668]  ? ext4_register_li_request+0xec/0x9b0
[  880.256649][T16668]  ext4_fill_super+0x8db7/0xaf70
[  880.261762][T16668]  ? __pfx_ext4_fill_super+0x10/0x10
[  880.267151][T16668]  ? do_raw_spin_lock+0x12c/0x2b0
[  880.272201][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.277915][T16668]  ? find_held_lock+0x2b/0x80
[  880.282634][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.288328][T16668]  ? sb_set_blocksize+0x176/0x1d0
[  880.293411][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.299094][T16668]  ? setup_bdev_super+0x369/0x730
[  880.304467][T16668]  get_tree_bdev_flags+0x38c/0x620
[  880.309626][T16668]  ? __pfx_ext4_fill_super+0x10/0x10
[  880.314961][T16668]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  880.320623][T16668]  ? apparmor_capable+0x114/0x1d0
[  880.325702][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.331353][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.337049][T16668]  ? security_capable+0x7e/0x260
[  880.342055][T16668]  vfs_get_tree+0x8e/0x340
[  880.346540][T16668]  path_mount+0x7b9/0x23a0
[  880.350979][T16668]  ? __pfx_path_mount+0x10/0x10
[  880.355889][T16668]  ? putname+0x154/0x1a0
[  880.360173][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.365890][T16668]  ? putname+0x154/0x1a0
[  880.370182][T16668]  ? __x64_sys_mount+0x293/0x310
[  880.375395][T16668]  __x64_sys_mount+0x293/0x310
[  880.380205][T16668]  ? __pfx___x64_sys_mount+0x10/0x10
[  880.385623][T16668]  do_syscall_64+0xcd/0xfa0
[  880.390171][T16668]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  880.396119][T16668] RIP: 0033:0x7f774b59066a
[  880.400566][T16668] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  880.420292][T16668] RSP: 002b:00007f774c441e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  880.428758][T16668] RAX: ffffffffffffffda RBX: 00007f774c441ef0 RCX: 00007f774b59066a
[  880.436777][T16668] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f774c441eb0
[  880.444780][T16668] RBP: 0000200000000180 R08: 00007f774c441ef0 R09: 0000000001800700
[  880.452754][T16668] R10: 0000000001800700 R11: 0000000000000246 R12: 00002000000001c0
[  880.460774][T16668] R13: 00007f774c441eb0 R14: 000000000000047c R15: 00002000000004c0
[  880.468818][T16668]  </TASK>
[  880.471837][T16668] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  880.479113][T16668] CPU: 0 UID: 0 PID: 16668 Comm: syz.1.3579 Not tainted syzkaller #0 PREEMPT(full) 
[  880.488496][T16668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  880.498563][T16668] Call Trace:
[  880.501841][T16668]  <TASK>
[  880.504769][T16668]  dump_stack_lvl+0x3d/0x1f0
[  880.509375][T16668]  vpanic+0x640/0x6f0
[  880.513389][T16668]  ? ext4_xattr_inode_update_ref+0x4ec/0x610
[  880.519408][T16668]  panic+0xca/0xd0
[  880.523170][T16668]  ? __pfx_panic+0x10/0x10
[  880.527899][T16668]  check_panic_on_warn+0xab/0xb0
[  880.532880][T16668]  __warn+0xf6/0x3c0
[  880.536783][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.542439][T16668]  ? ext4_xattr_inode_update_ref+0x4ec/0x610
[  880.548455][T16668]  report_bug+0x3c3/0x580
[  880.552800][T16668]  ? ext4_xattr_inode_update_ref+0x4ec/0x610
[  880.558815][T16668]  handle_bug+0x184/0x210
[  880.563168][T16668]  exc_invalid_op+0x17/0x50
[  880.567705][T16668]  asm_exc_invalid_op+0x1a/0x20
[  880.572578][T16668] RIP: 0010:ext4_xattr_inode_update_ref+0x4ec/0x610
[  880.579201][T16668] Code: df 48 8d 7b 40 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 23 01 00 00 48 8b 73 40 44 89 e2 48 c7 c7 c0 4c a8 8b e8 55 17 ed fe 90 <0f> 0b 90 90 e9 d9 fe ff ff e8 56 de 2e ff 44 0f b6 2d 01 59 de 0d
[  880.598831][T16668] RSP: 0018:ffffc9001c347178 EFLAGS: 00010282
[  880.604914][T16668] RAX: 0000000000000000 RBX: ffff888078814588 RCX: ffffc9000cbaf000
[  880.612894][T16668] RDX: 0000000000080000 RSI: ffffffff817a9ef5 RDI: 0000000000000001
[  880.620867][T16668] RBP: ffffc9001c347240 R08: 0000000000000001 R09: 0000000000000000
[  880.628847][T16668] R10: 0000000000000001 R11: 000000002d2d2d2d R12: 0000000000000002
[  880.636849][T16668] R13: 0000000000000000 R14: 1ffff92003868e32 R15: ffff888078814778
[  880.644841][T16668]  ? __warn_printk+0x1a5/0x350
[  880.649643][T16668]  ? ext4_xattr_inode_update_ref+0x4eb/0x610
[  880.655658][T16668]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[  880.662023][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.667674][T16668]  ? ext4_xattr_inode_iget+0x1ee/0x400
[  880.673175][T16668]  ext4_xattr_set_entry+0x158f/0x1f00
[  880.678593][T16668]  ? __pfx_ext4_xattr_set_entry+0x10/0x10
[  880.684344][T16668]  ? xattr_find_entry+0x289/0x330
[  880.689403][T16668]  ext4_xattr_ibody_set+0x3d6/0x5d0
[  880.694621][T16668]  ext4_expand_extra_isize_ea+0x148c/0x1ab0
[  880.700538][T16668]  ? __pfx_ext4_expand_extra_isize_ea+0x10/0x10
[  880.706796][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.712445][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.718095][T16668]  ? dquot_initialize_needed+0x183/0x2a0
[  880.723755][T16668]  __ext4_expand_extra_isize+0x346/0x480
[  880.729430][T16668]  __ext4_mark_inode_dirty+0x544/0x870
[  880.734995][T16668]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  880.741002][T16668]  ? __pfx___might_resched+0x10/0x10
[  880.746320][T16668]  ? ext4_journal_check_start+0x22b/0x340
[  880.752060][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.757707][T16668]  ? __ext4_journal_start_sb+0x19e/0x690
[  880.763357][T16668]  ? ext4_evict_inode+0x5cf/0x18e0
[  880.768501][T16668]  ext4_evict_inode+0x74e/0x18e0
[  880.773469][T16668]  ? __pfx_ext4_evict_inode+0x10/0x10
[  880.778862][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.784525][T16668]  ? __pfx_ext4_evict_inode+0x10/0x10
[  880.789939][T16668]  evict+0x3e6/0x920
[  880.793847][T16668]  ? __pfx_evict+0x10/0x10
[  880.798272][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.803935][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.810034][T16668]  iput.part.0+0x6a9/0xb00
[  880.814470][T16668]  ? __pfx_ext4_drop_inode+0x10/0x10
[  880.819765][T16668]  iput+0x35/0x40
[  880.823439][T16668]  ext4_orphan_cleanup+0x731/0x11e0
[  880.828713][T16668]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  880.834380][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.840037][T16668]  ? ext4_register_li_request+0xec/0x9b0
[  880.845701][T16668]  ext4_fill_super+0x8db7/0xaf70
[  880.850689][T16668]  ? __pfx_ext4_fill_super+0x10/0x10
[  880.855998][T16668]  ? do_raw_spin_lock+0x12c/0x2b0
[  880.861035][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.866707][T16668]  ? find_held_lock+0x2b/0x80
[  880.871438][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.877110][T16668]  ? sb_set_blocksize+0x176/0x1d0
[  880.882168][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.887819][T16668]  ? setup_bdev_super+0x369/0x730
[  880.892874][T16668]  get_tree_bdev_flags+0x38c/0x620
[  880.898020][T16668]  ? __pfx_ext4_fill_super+0x10/0x10
[  880.903347][T16668]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  880.909113][T16668]  ? apparmor_capable+0x114/0x1d0
[  880.914171][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.919827][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.925573][T16668]  ? security_capable+0x7e/0x260
[  880.930561][T16668]  vfs_get_tree+0x8e/0x340
[  880.935011][T16668]  path_mount+0x7b9/0x23a0
[  880.939438][T16668]  ? __pfx_path_mount+0x10/0x10
[  880.944294][T16668]  ? putname+0x154/0x1a0
[  880.948548][T16668]  ? srso_alias_return_thunk+0x5/0xfbef5
[  880.954212][T16668]  ? putname+0x154/0x1a0
[  880.958463][T16668]  ? __x64_sys_mount+0x293/0x310
[  880.963420][T16668]  __x64_sys_mount+0x293/0x310
[  880.968302][T16668]  ? __pfx___x64_sys_mount+0x10/0x10
[  880.973630][T16668]  do_syscall_64+0xcd/0xfa0
[  880.978220][T16668]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  880.984137][T16668] RIP: 0033:0x7f774b59066a
[  880.988559][T16668] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  881.008184][T16668] RSP: 002b:00007f774c441e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  881.016619][T16668] RAX: ffffffffffffffda RBX: 00007f774c441ef0 RCX: 00007f774b59066a
[  881.024767][T16668] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f774c441eb0
[  881.032747][T16668] RBP: 0000200000000180 R08: 00007f774c441ef0 R09: 0000000001800700
[  881.040719][T16668] R10: 0000000001800700 R11: 0000000000000246 R12: 00002000000001c0
[  881.048688][T16668] R13: 00007f774c441eb0 R14: 000000000000047c R15: 00002000000004c0
[  881.056675][T16668]  </TASK>
[  881.059960][T16668] Kernel Offset: disabled
[  881.064284][T16668] Rebooting in 86400 seconds..