last executing test programs:

2m16.230605094s ago: executing program 2 (id=749):
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.net/syz1\x00', 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f00000001c0), 0x12)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r2, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_int(r3, 0x0, 0x16, &(0x7f0000000480)=0x6, 0x1)

2m16.060128504s ago: executing program 2 (id=753):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x1000, 0x0)
sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000010}, 0x4040091)
mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4)
setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(0xffffffffffffffff, 0x84, 0x8, 0x0, 0x0)
sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=[@sndinfo={0x20, 0x84, 0x2, {0x4, 0x41}}], 0x20, 0x4048800}, 0x10)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$getregset(0x4204, r0, 0x202, &(0x7f0000000180)={0x0})

2m15.852076856s ago: executing program 2 (id=754):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x6, 0x1c, &(0x7f0000000380)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x4, 0xf, &(0x7f00000004c0)=""/15, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000500)={0x2, 0x3, 0xffffff4b, 0xffffffff}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xaf}, 0x94)

2m15.804154509s ago: executing program 2 (id=755):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000001c0)='./file0\x00', 0x2048c5, &(0x7f0000000b00)={[{@fat=@uid={'uid', 0x3d, 0xee00}}, {@shortname_winnt}, {@numtail}, {@fat=@nfs_nostale_ro}, {@uni_xlate}, {@uni_xlateno}, {@fat=@showexec}, {@uni_xlate}, {@fat=@debug}, {@shortname_mixed}, {@fat=@quiet}, {@utf8no}]}, 0x0, 0x2a7, &(0x7f0000000f00)="$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")
r0 = syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
syz_io_uring_setup(0x1a1d, 0x0, &(0x7f0000000080), &(0x7f0000001740))
r1 = io_uring_setup(0x1b7b, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, 0x0, 0x0)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r2, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000080)={0x0, 0x10, &(0x7f0000000280)=[@in={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333404, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11080, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
read$FUSE(r0, &(0x7f0000002c00)={0x2020}, 0x2020)

2m15.392074063s ago: executing program 2 (id=758):
r0 = syz_mount_image$erofs(&(0x7f0000000280), &(0x7f0000000000)='./file0\x00', 0x810410, &(0x7f0000000040)=ANY=[], 0x0, 0x21e, &(0x7f00000002c0)="$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")
fadvise64(r0, 0x3, 0x10000000000001, 0x3)

2m15.074971312s ago: executing program 2 (id=760):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x83, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f0000000240)="b805000000dd00e1490000320f01d9660ff7e31bf7ecec05000000b90000c0fe0fae41d90100b9800000c00f3209083667dbd20f300f0826f30fc7b205000000660fc775022e0ffa600c980f320f3566b85700", 0x53}], 0x1, 0x17, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, 0x0}], 0x1, 0x6bb6c4a5b2d35090, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

2m14.76634408s ago: executing program 32 (id=760):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x83, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f0000000240)="b805000000dd00e1490000320f01d9660ff7e31bf7ecec05000000b90000c0fe0fae41d90100b9800000c00f3209083667dbd20f300f0826f30fc7b205000000660fc775022e0ffa600c980f320f3566b85700", 0x53}], 0x1, 0x17, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, 0x0}], 0x1, 0x6bb6c4a5b2d35090, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

5.548938715s ago: executing program 3 (id=2028):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x80e02, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000cce000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x4d, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x2, 0x1, 0x100000, 0x1000, &(0x7f0000cd0000/0x1000)=nil})

5.091859082s ago: executing program 3 (id=2032):
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001040)={0x1a, {"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", 0x1000}}, 0x1006)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f0000000340)={&(0x7f0000000240)=[0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0], &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000280), 0x3, 0x1, 0x7})
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_user\x00', 0x26e1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="120000000d000000040000000200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000000762712bf83df1311370dc1d6b277251a2527db93925bea389e268142803abc51b0e61290bf4a057f57f61250e5e4dee5a7a7adeb3d6eb80672132faecb91ba6ef23c632253d5192c5276eb55b493779e7dd4082b0c01227104cda5102ccc34048b7fb59b1caeb2f7c1737cd343d32e93edb600ad5e341afea92128d2d00d0e13f75a052c1064153746953dbe310cbf08116c3cd073d439ee2c1b6e2d32318502c83870b138019508"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r1}, &(0x7f0000000040), &(0x7f0000000140)=r0}, 0x20)
openat$cgroup_type(r0, &(0x7f0000000280), 0x2, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000200)={0x200002, 0x200003, 0x801, 0x4, 0x7})
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r5 = accept4(r4, 0x0, 0x0, 0x800)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

4.575983252s ago: executing program 0 (id=2038):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f0000006300)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0x10408}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000777a078afbd825c000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000023000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000db2100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000cc2351270000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x0, 0x0, {0x0, 0x5}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)

4.43181892s ago: executing program 1 (id=2041):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000002b80)={0x0, 0x0, &(0x7f0000002b40)={&(0x7f0000000080)=@newneigh={0x1c, 0x1c, 0x2, 0x70bd27, 0x25dfdbfb, {0xa, 0x0, 0x0, 0x0, 0x20, 0x94, 0x4}}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x20008040)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="c000000000010505000000000000000002000000240002801400018008000100ac1e010108000200ffffffff0c00028005000100210000000800074000000000240001800c00028005000100210000001400018008000100ac1e000108000200ac1e00015c0006800400038014000500fc020000000000000000000000000000240003"], 0xc0}, 0x1, 0x0, 0x0, 0x240c8011}, 0x40)

4.411175202s ago: executing program 0 (id=2042):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000280)=@o_path={&(0x7f0000000200)='./file0\x00', 0xffffffffffffffff, 0x4000, r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x103}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002940)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/fscaps', 0x242, 0x2a1)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
write$cgroup_pid(r6, &(0x7f00000002c0), 0x12)
write$P9_RGETLOCK(r5, 0x0, 0x23)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)

4.188790915s ago: executing program 1 (id=2045):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="06000000040000000800000007"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f00000000c0)=r4, 0x4)
sendmsg$unix(r3, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)

3.523525844s ago: executing program 1 (id=2047):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, [@call={0x85, 0x0, 0x0, 0x97}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

3.397761871s ago: executing program 3 (id=2048):
syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f0000000140)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x3, &(0x7f0000000000), 0xfc, 0x562, &(0x7f0000000780)="$eJzs3e9vG2cdAPDvOXaatIEE2IuBtFGxSe0EtZuVbRFCa5EQ7yaBBq9LlLpRVCeuYmdrogml4g9AQggm8QZe8QaJPwAJ9U+YkCax94ghUAUdSOwF7ND9cNtk9uJ2sV05n4/0+M733N33+9jOc+e7cy6AE+tsRFyJiJmIeCEiFsvplbLEflGy+T6499ZaVpJI09f/kURSTstmS8qSOVMuNlcMDpovBp3dvRurrVZzu5zc6G7ebHR29y5sbK6uN9ebW5cuLb+88srKSysXj6WdWbte/fZff/6T33zn1T987c0/X/37+R9l+S6U9b12HLfiNallr8V91YjYHkWwCZgp21OL3gMAAE+ybB//8xHxlXz/fzFm8r25wWYfGk9Gnh0AAABwHNLLC/HfJCIFAAAAplYlvwY2qdTLawEWolKp14treJ+K05VWu9P96vX2zta14lrZpahVrm+0mhfLa2qXopZkz5fvH1Eonr+Y12UlOXAN8M8W5/P6+lq7dW0SBzwAAADgBDpz6Pv/vxeL7/8AAADAlFkqh6cnnAcAAAAwOkuTTgAAAAAYucf4/j87ijwAAACAkfjua69lJe3d//raG7s7N9pvXLjW7Nyob+6s1dfa2zfr6+32eis9FbF51Ppa7fbNr8fWzq1Gt9npNjq7e1c32ztb3asbB26BDQAAAIzR5758570kIva/MZ+X6J3bnxmwgN8KwNSoDDlfmj28P9pcgPEatJkHpl/1k6td5gtTrFYMkknnAUzOUR3A3KA53hlFNgAAwCic++Kd99Lk4+f/qw+ODQBTatjz/8D0GXD+P10cdyLA2B1x/h+YYjVXAMKJd/T5/wHeyauuHB0hTY9cFwAAMFILeUkq9fJc4EJUPkwLsRS15PpGq3kxIj4bEX9arJ3Kni/nSyZ+NAAAAAAAAAAAAAAAAAAAAAAAAAAAQ0rTJNLHUH2spQAAAIBJiKj8LSnv/3Vu8fmFw8cHZpMP81sBf5Sm6Zu/fP0Xt1a73e3lbPo/8+mzEdF9u5z+4iSOYAAAAAA9vbv8F9/TaxPOBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBp9cG9t9Z6ZZxx734rIpb6xa/GXD6ci1pEnP5XEtWHlksiYuYY4u/fjoin+8VPsrRiqczicPxKRMznWYw8/jNpmvaNf+ZTR4eT7U7W/1zp9/dXibP5sP/ff7Uolz9t/MH9X+V+/zdzOH616P8+M2SML737u8ZDT3/wYPRUUV/t3//04icD+t/n+gWrfnzSD7+/tzcot/TXEef6bn+SA7Ea3c2bjc7u3oWNzdX15npz69Kl5ZdXXll5aeVi4/pGq1k+9o3x02d+/9Gg+HfPRpwu48/2cio3LEvF4JtJn24+m/R8NlIbtOYH/vfurXtfKEZrh1YRd29HnH+u//v/dD7s+/r/6j9pLt8OZPXnym1Csl+MR5Qf34h49rd/fHZg+2/PlWOP/v6fP7rpuRe+9+O/DDkrADAGnd29G6utVnN75CNvp2k63MzZXunwa04i9g9XZTtwx9yK+YgYUHUw1nz5qsawa35qYKrvz0eM6d151JHLjzJzeuqRPmzJ/hPQwBM8Mpt/ICfdMwEAAMftwd7/pDMBAAAAAAAAAAAAAAAAAACAk2sc/1fscMz9yTQVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOAT/T8AAP//v2jSdw==")
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
llistxattr(&(0x7f0000002300)='./file0\x00', 0x0, 0x6c)

3.283975328s ago: executing program 0 (id=2049):
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f0000000340)={&(0x7f0000000240)=[0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0], &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000280), 0x3, 0x1, 0x7})
ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c04, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x2ac, 0x0, 0x1, 0x15, 0x0, "89753015418ab0cb0900245518580ce0c8bf604cca41f31c108938fcfa393ef569e0bcf244bb4b23555b130900000000000000d0f08e8ad896ba67a07673defa", "8b609009aaa722681a1e2513d754f688a9e306ee1dba533f02e1b69da6e26ec889fee40080000027cc7d24fdc26f1a95d702020000e4b8fb1703e47463b969e4", "ca1bf5ffffffffffffff6570128218a0d22915ff6eddb10000800400", [0xc]})
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="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"], 0x1c0}}], 0x1, 0x810)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000200)={0x200002, 0x200003, 0x801, 0x4, 0x7})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

3.252600259s ago: executing program 1 (id=2051):
r0 = syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x810, &(0x7f00000018c0)=ANY=[], 0xfd, 0x1501, &(0x7f00000002c0)="$eJzs3Am4T1X3OPC19t6H62b4JpnP2uvwTYZNkoSSZEiSJCRzQpIkSZK4ZEpCEjLeJHPInG665nnInHTzSpIkJCTZ/+c2/P16h5/3fX/9/vq/d32e5zz2cs7aZ+27nu89w/Pc79ddh1VvVKNKfWaGf4f+bYC//JMEAAkAMBAAcgBAAABlc5bNmb4/i8akf+sk4n9JgxlXugJxJUn/Mzbpf8Ym/c/YpP8Zm/Q/Y5P+Z2zS/4xN+i9EhjYr39WyZdxN3v//f079T5Ll+p8h4D/aIf3/T6P/paOl/xmb9D9jk/5nbNL/jCy40gWIK0w+/xmb9F+IDO0Pf6e84dyVfqct27+wCSGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQ/w+c85cYAPhtfKXrEkIIIYQQQgghxB/Hv3ulKxBCCCGEEEIIIcT/PgQFGgwEkAkyQwJkgUS4CrJCNsgOOSAGV0NOuAZywbWQG/JAXsgH+aEAFIQQCCwwRFAICkMcroMicD0UhWJQHEqAg5JQCm6A0nAjlIGboCzcDOXgFigPFX4+Z7rboTLcAVXgTqgK1aA61IC7oCbcDbXgHqgN90IduA/qwv1QDx6A+tAAGsKD0AgegsbQBJpCM2gOLaDlZfKTc/y9/OehB7wAPaEXJEFv6AMvQl/oB/1hAAyEl2AQvAyD4RUYAkNhGLwKw+E1GAGvw0gYBaPhDRgDY2EcjIcJMBGS4U2YBG/BZHj7oWwwFabBdJgBM2EWvAOzYQ7MhXdhHsyHBZCcZREshiXwHiyF9yEFPoBl8CGkwnJYASthFayGNbAW1sF62AAbYRNshi2wFbbBR7AddsBO2AW7YQ/shY9hH3wC++FTSMPP/sX8s7/Ph24ICKhQoUGDmTATJmACJmIiZsWsmB2zYwxjmBNzYi7MhbkxN+bFvJiE+bEgFkRCQkbGQlgI4xjHIlgEi2JRLI7F0aHDUlgKS+ONWAbLYFksi+WwHJbHClgBb8VbsRJWwspYGatgFayKVbE6Vse78C68G2thLayNtbEO1sG6WBfrYT2sj/WxITbERtgIG2NjbIpNsTk2x5bYElthK2yNrbEttsV22A7bY3vsgB2wI3bETtgJO2Nn7IJdsCt2xW74HD6Hz+Pz+AK+gL2wquqNfbAP9sW+2B8H4AB8CQfhy/gyvoJDcCgOw1fxVXwNR+AZHImjcDSOxkpqLI7D8chqIiZjMmaGSTgZJ+MUnIpTcTrOwJk4C2fhbJyDc/BdnIfzcT4uxIW4GJfgElyK72MKpuAyPIupuBxX4EpchatxFa7FdbgWN+BG3ICbcTNuxa34EX6EO3AH7sJduAf34Mf4MX6Cn+AQTMM0PIAH8CAexEN4CA/jYTyCR/AoHsVjeAyP43E8gSfxFJ7E03gaz+BZPAcA5/E8XsALeBEvpn/4VTqjjMqkMqkElaASVaLKqrKq7Cq7iqmYyqlyqlwql8qtcqu8Kq/Kr/KrgqqgIkWKVaQKqUIqruKqiCqiiqqiqrgqrpxyqpQqpUqr0qqMKqPKqptVOXWLKq8qqDbuVnWrqqTausrqDlVFVVFVVTVVXdVQNVRNVVPVUrVUbVVb1VF1VF11v6qnemN/bKDSO9NIDcXGahg2Vc1Uc9VCvYYPq1ZqBLZWbVRb9agahSOxvWrlOqgnVEc1Djupp9R4fFp1UROxq3pWdVPPqe7qedVDtXY9VS81BXurPmo69lX9VH81QM3Gaiq9Y9XVK+r5zEPVMPWqWoyvqRHqdTVSjVKj1RtqjBqrxqnxaoKaqJLVm2qSektNVm+rKWqqmqamqxlqppql3lGz1Rw1V72r5qn5aoFaqBapxWqJek8tVe+rFPWBWqY+VKlquVqhVqpVarVao9aqdWq92qA2qk1qs9qitqpt6iO1Xe1QO9UutVvtUXvVx2qf+kTtV5+qNPWZOqD+og6qz9Uh9YU6rL5UR9RX6qj6Wh1T36jj6lt1Qp1Up9R36rT6Xp1RZ9U59YM6r35UF9RP6qLyCjRqpbU2OtCZdGadoLPoRH2Vzqqz6ew6h47pq3VOfY3Opa/VuXUendfk0/l1AV1Qh5q01awjXUgX1nF9nS6ir9dFdTFdXJfQTpfUpfQNurS+UZfRN+my+mZdTt+iy+sKuqIHfZuupG/XlfUduoq+U1fV1XR1XUPfpWvqu3UtfY+ure/VdfR9uq6+X9fTD+j6uoFuqB/UjfRDurFuopvqZrq5bqFb6od1K/2Ibq3b6Lb6Ud1OP6bb68d1B/2E7qif1J30U7qzflp30c/orvpZ3U0/p7vrn/RF7XVP3Usn6d66j35R99X9dH89QA/UL+lB+mU9WL+ih+iheph+VQ/Xr+kR+nU9Uo/So/Ubeoweq8fp8XqCnqiT9Zt6kn5LT9Zv6yl6qp6mp+sZeqbu/+tMc/+J/Lf+Tv7gn8++VW/TH+nteofeqXfp3XqP3qv36n16n96v9+s0naYP6AP6oD6oD+lD+rA+rI/oI/qoPqqP6WP6uD6uT+iT+gf9nT6tv9dn9Fl9Vv+gz+vz+sKvPwMwaJTRxpjAZDKZTYLJYhLNVSaryWaymxwmZq42Oc01Jpe51uQ2eUxek8/kNwVMQRMaMtawiUwhU9jEzXWmiLneFDXFTHFTwjhT0pQyN/yP8y9XX0vT0rQyrUxr09q0NW1NO9POtDftTQfTwXQ0HU0n08l0Np1NF9PFdDVdTTfTzXQ33U0P08P0ND1NkkkyfcyLpq/pZ/qbAWageckMMoPMYDPYDDFDzDAzzAw3w80IM8KMNCPNaDPajDFjzDgzzkwwE0yyz2EmmUlmsplsppgpZtrAHGaGmWFmmVlmtplt5pq5Zp6ZZxaYBWaRWWSWmCVmqVlqUkyKWWaWmVSz3Cw3K81Ks9qsNmvNWrPerDcbzUaz2Ww2qWab2Wa2m+1mp9lpdpvdZq/Za/aZfWa/2W/STJo5YA6Yg+agOWQOmcPmsDlijpij5qg5Zo6Z4+a4OWFOmFPmlDltTpsz5ow5Z86Z8+a8uWAumIvmYvptX6ACFZjABJmCTEFCkBAkBolB1iBrkD3IHsSCWJAzyBnkCq4Ncgd5grxBviB/UCAoGIQBBTbgIAoKBYWDeHBdUCS4PigaFAuKByUCF5QMSgU3BKWDG4MywU1B2eDmoFxwS1A+qBBUDG4NbgsqBbcHlYM7girBnUHVoFpQPagR3BXUDO4OagX3BLWDe4M6wX1B3eD+oF7wQFA/aBA0DB4MGgUPBY2DJkHToFnQPGgRtPxD5/f+TJ5HXM+wV5gU9g77hC+GfcN+Yf9wQDgwfCkcFL4cDg5fCYeEQ8Nh4avh8PC1cET4ejgyHBWODt8Ix4Rjw3Hh+HBCODFMDt8MJ4VvhZPDt8Mp4dRwWjA9nBHODGeF74Szwznh3PDdcF44P1wQLgwXhYtD/OWWGFLCD8Jl4Ydharg8XBGuDFeFq8M14dpwXbg+3BBuDDeFm8sO+uXQcHu4I9wZ7gp3h3vCveHH4b7wk3B/+GmYFn4WHgj/Eh4MPw8PhV+Eh8MvwyPhV+HR8OvwWPhNeDz8NjwRngxPhd+Fp8PvwzPh2fBc+EN4PvwxvBD+FF4MffrNffrlnQwZykSZKIESKJESKStlpeyUnWIUo5yUk3JRLspNuSkv5aX8lJ8KUkFKx8RUiApRnOJUhIpQUSpKxak4OXJUikpRaSpNZagMlaWyVI7KUXkqTxWpIt1Gt9HtdDvdQXfQnXQnVaNqVINqUE2qSbWoFtWm2lSH6lBdqkv1qB7Vp/rUkBpSI2pEjakxNaWm1JyaU0tqSa2oFbWm1tSW2lI7akftqT11oA7UkTpSJ+pEnakzdaEu1JW6UjfqRt2pO/WgHtSTelISJVEf6kN9qS/1p/40kAbSIBpEg2kwDaEhNIyG0XAaTiNoBI2kUTSa3qAxNJbG0XiaQBMpmZJpEk2iyTSZptAUmkbTaAbNoFk0i2bTbJpLc2kezaMFtIAW0SJaQktoKS2lFEqhZbSMUimVVtAKWkWraA2toXW0jjbQBtpEm2gLbaFttI2203baSTtpN+2mvbSX9tE+2k/7KY3S6AAdoIN0kA7RITpMh+kIHaGjdJSO0TE6TsfpBJ2gU3SKTtNpOkNn6Bydo/P0I12gn+gieUqwWWyivcpmtdlsdpvD/nWc1+az+W0BW9CGNrfN87uYrLVFbTFb3Jawzpa0pewNfxOXtxVsRXurvc1Wsrfbyra8zQL/Na5p77a17D22tr3X1rB3/S6uY++zde1Dtp5tYuvbZrahbWEb2YdsY9vENrXNbHPbwrazj9n29nHbwT5hO9on/yZeat+36+x6u8FutPvsJ/ac/cEetV/b8/ZH29P2sgPtS3aQfdkOtq/YIXbo72MAO9q+YcfYsXacHW8n2Il/E0+z0+0MO9POsu/Y2XbO38RL7Ht2nk2xC+xCu8gu/jlOrynFfmCX2Q9tql1uV9iVdpVdbdfYtf+31pV2s91it9q99mO73e6wO+0uu9vu+TlOX8d++6lNs5/ZI/Yre9B+bg/ZY/aw/fLnOH19x+w39rj91p6wJ+0p+509bb+3Z+zZn9efvvbv7E/2ovUWGFmxZsMBZ+LMnMBZOJGv4qycjbNzDo7x1ZyTr+FcfC3n5jycl/Nxfi7ABTlkYsvMERfiwhzn67gIX89FuRgX5xLsuCSX4hu4NN/IZfgmLss3czm+hctzBa7It/JtXIlv58p8B1fhO7kqV+PqXIPv4pp8N9fie7g238t1+D6uy/dzPX6A63MDbsgPciN+iBtzE27Kzbg5t+CW/DC34ke4Nbfhtvwot+PHuD0/zh34Ce7IT3Infoo789PchZ/hrvwsd+PnuDs/zz34Be7JvTiJe3MffpH7cj/uzwN4IL/Eg/hlHsyv8BAeysP4VR7Or/EIfp1H8igezW/wGB7L43g8T+CJnMxv8iR+iyfz2zyFp/I0ns4zeCbP4nd4Ns/hufwuz+P5vIAX8iJezEv4PV7K73MKf8DL+ENO5eW8glfyKl7Na3gtr+P1vIE38ibezFt4K2/jj3g77+CdvIt38x7eyx/zPv6E9/OnnMaf8QH+Cx/kz/kQf8GH+Us+wl/xUf6aj/E3fJy/5RN8kk/xd3yav+czfJbP8Q98nn/kC/wTX2TPEGGkIh2ZKIgyRZmjhChLlBhdFWWNskXZoxxRLLo6yhldE+WKro1yR3mivFG+KH9UICoYhRFFNuIoigpFhaN4dF1UJLo+KhoVi4pHJSIXlYxKRTdEpaMbozLRTVHZ6OaoXHRLVD6qEFWMbo1uiypFt0eVozuiKtGdUdWoWlQ9qhHdFdWM7o5qRfdEtaN7ozLRfVHd6P6oXvRAVD9qEDWMHowaRQ9FjaMmUdOoWdQ8ahG1jB6OWkWPRK2jNlHb6NGoXfRY1D56POoQPRF1jJ68tL9Y8MvV9K/2J0W9I/3rG7J79KL44viS+HvxpfH34ynxD+LL4h/GU+PL4yviK+Or4qvja+Jr4+vi6+Mb4hvjm+Kb41viW+Pe18gMDtMfhMG4wGVymV2Cy+IS3VUuq8vmsrscLuaudjndNS6Xu9bldnlcXpfP5XcFXEEXOnLWsYtcIVfYxd11roi73hV1xVxxV8I5V9KVci1cS9fStXKPuNaujWvrHnWPusfcY+7xhF8Ld53cU66ze9p1cc+4Z9yzrpt7znV3z7se7gXX0/VySS7J9XF9XF/X1/V3/d1AN9ANcoPcYDfYDXFD3DA3zA13w90IN8KNdCPdaDfajXFj3Dg3zk1wE1yyS3aT3CQ32U12U9wUN81NczPcDDfLzXKz3Ww3181189w8t8AtcIvcIrfELXFL3VKX4lLcMrfMpbpUt8KtcKvcKrfGrXHr3Dq3wW1wm9wmt8VtcdvcNrfdbXc73U632+12e91et8/tc/vdfpfm0twBd8AddAfdIfeFO+y+dEfcV+6o+9odc9+44+5bd8KddKec16fd9+6MO+vOuR/cefeju+B+chedd8mxN2OTYm/FJsfejk2JTY1Ni02PzYjNjM2KvRObHZsTmxt7NzYvNj+2ILYwtii2OLYk9l5saez9WErsg9iy2Iex1Njy2IrYytiq2OqY9wW2R76QL+zj/jpfxF/vi/pivrgv4Z0v6Uv5G3xpf6Mv42/yZf3Nvpy/xZf3FXxF38Q39c18c9/Ct/QP+1b+Ed/at/Ft/aO+nX/Mt/eP+w7+Cd/RP+k7+ad8Z/+07+Kf8V39s/N/7bLv4V/wPX0vn+R7+z7+Rd/X9/P9/QA/0L/kB/mX/WD/ih/ih/ph/lU/3L/mR/jX/Ug/yo/2b/gxfqwf58f7CX6iT/Zv+kn+LT/Zv+2n+Kl+mp/uZ/iZfpZ/x8/2c/xc/66f5+f7BX6hX+QX+yX+Pb/Uv+9T/Ad+mf/Qp/rlfoVf6Vf51X6NX+vX+fV+g9/oN/nNfovf6rf5j/x2v8Pv9Lv8br/H7/Uf+33+E7/ff+rT/Gf+gP+LP+g/94f8F/6w/9If8V/5o/5rf8x/44/7b/0Jf9Kf8t/50/57f8af9ef8D/68/9Ff8D/5i/I3a0IIIYQQ/xR9mf29/87/qV+3dH0AINuOfIf/es5NuX8Z91P7OsYA4IleXRv8tjVokJSU9OuxqRqCwgsBIHYp/+fvH/g1Xg5t4THoAG2g9N+tr5+q+PN93383f/xmgESALL/lpD8eJcJfz3/jP5i/yXt8ufkXAhQtfCkn/US/xZfmL/MP5t/T7jLzZ/k8GaD1f8nJCpfiS/OXgkfgSejwuyOFEEIIIYQQQohf9FPnu13u+Tb9+Ty/uZSTGS7Fl3s+v4zKf8QahBBCCCGEEEII8d97+rnujz/coUObzv/Jg8x/jjL+BAMEgD9BGTL48w+u9G8mIYQQQgghxB/t0k3/la5ECCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYTIuP79bwhT//TBV3qNQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghxJX2fwIAAP//5g1V0w==")
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6, 0xff, 0x7, 0x7fc00002}]})
syz_clone3(0x0, 0xfffffffffffffe16)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000000)={<r2=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f0000000080)={r2, 0x1, r0, 0x7ffffffe})
dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)

2.664238174s ago: executing program 5 (id=2056):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/seq/clients\x00', 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000480)='fd/3\x00')
r2 = fanotify_init(0x0, 0x2)
fanotify_mark(r2, 0x1, 0x8000039, r1, 0x0)
readv(r0, &(0x7f00000008c0)=[{&(0x7f0000000300)=""/126, 0x7e}], 0x1)

2.576128699s ago: executing program 3 (id=2057):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400), 0x8040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000300)={0x1, 0x0, [{0x40000083, 0x0, 0x4}]})

2.56608018s ago: executing program 4 (id=2058):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000140)='./file2\x00', 0x2001004c, &(0x7f0000000340)=ANY=[@ANYRES16=0x0, @ANYRESOCT, @ANYRES8, @ANYRESHEX, @ANYRES64], 0xfe, 0x1522, &(0x7f0000003800)="$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")
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, 0x0, 0x0)
syz_read_part_table(0x5d4, &(0x7f0000000000)="$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")
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)

2.56010783s ago: executing program 5 (id=2059):
syz_mount_image$hfsplus(&(0x7f0000000340), &(0x7f0000000500)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x804880, &(0x7f0000000180)=ANY=[], 0xfd, 0x6b0, &(0x7f00000013c0)="$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")
io_setup(0x2e, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x40014)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000240)=""/87, 0x57)
getdents(r0, 0x0, 0x58)

2.284043847s ago: executing program 1 (id=2060):
syz_io_uring_setup(0x239, 0x0, 0x0, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000040)={0x0, 0xaf1}, 0x8)
bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000200)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x1, @loopback, 0x1}, 0x70, &(0x7f0000000580)=[{&(0x7f0000001680)='\t', 0x1}], 0x1}}], 0x1, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="100804000000000008001b"], 0x28}, 0x1, 0x0, 0x0, 0x4008011}, 0x4004)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f00000001c0)={0x0, 0xffff}, 0x8)
close(r0)

2.283893087s ago: executing program 4 (id=2061):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r1, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e25, @remote}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e21, @multicast1}, 0x10)

2.280153977s ago: executing program 3 (id=2062):
r0 = syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x2a0471a, &(0x7f0000000280)={[{@jqfmt_vfsv1}]}, 0x7e, 0x48f, &(0x7f0000000380)="$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")
munmap(&(0x7f0000008000/0x3000)=nil, 0x3000)
syz_mount_image$vfat(&(0x7f0000001800), &(0x7f0000000240)='./file1\x00', 0x31c8c8, &(0x7f0000000fc0)=ANY=[@ANYRES8=r0], 0x4, 0x299, &(0x7f0000000d00)="$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")
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_MCAST_MSFILTER(r1, 0x0, 0x30, &(0x7f0000000600)=ANY=[], 0x110)
setsockopt$inet_group_source_req(r1, 0x0, 0x2b, 0x0, 0x0)
setsockopt$inet_group_source_req(r1, 0x0, 0x2b, 0x0, 0x0)
keyctl$chown(0x4, 0x0, 0xee01, 0x0)
r2 = getpid()
mount$cgroup(0x0, 0x0, 0x0, 0x0, 0x0)
write$UHID_GET_REPORT_REPLY(0xffffffffffffffff, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
syz_pidfd_open(r2, 0x0)
setns(0xffffffffffffffff, 0x80)
umount2(0x0, 0x2)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x11)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x5603d}], 0x1)

2.229715059s ago: executing program 5 (id=2063):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f0000006300)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0x10408}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000777a078afbd825c000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000023000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000db2100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000cc2351270000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x0, 0x0, {0x0, 0x5}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)

2.210699401s ago: executing program 0 (id=2064):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
socket$inet6(0xa, 0x800000000000002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x7, &(0x7f0000000300)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x1}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})
socket$packet(0x11, 0x3, 0x300)
r4 = socket(0x10, 0x803, 0x0)
listen(0xffffffffffffffff, 0x0)
listen(0xffffffffffffffff, 0x32)
ioctl$sock_inet_tcp_SIOCINQ(0xffffffffffffffff, 0x541b, 0x0)
getsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x7, 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="280000003e000b01fcfffffffddbdf25047c0000080036801c0002000c000180060006008e0a0000"], 0x28}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xfff3}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x8, 0x1fa7}}]}}]}, 0x48}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000800)=@newtfilter={0x30, 0x2c, 0xd27, 0x70bd2b, 0xfffffffd, {0x0, 0x0, 0x0, r7, {}, {}, {0x2}}, [@filter_kind_options=@f_u32={{0x8}, {0xfccb}}, @TCA_CHAIN={0x0, 0xb, 0x8}, @TCA_CHAIN={0x0, 0xb, 0x8}]}, 0x30}, 0x1, 0x0, 0x0, 0x4080}, 0x0)

2.108118427s ago: executing program 4 (id=2065):
sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, 0x0, 0x4)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000000, 0x10, 0xffffffffffffffff, 0xade58000)
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={0x0}}, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r3, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)={&(0x7f0000000e80)={0x14, 0x1, 0x8, 0x301}, 0x14}}, 0x0)

1.904183399s ago: executing program 5 (id=2066):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'veth1_macvtap\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000e40)=ANY=[@ANYBLOB="54000000100003f9ffbd7004ffdbdf2500000000", @ANYRES32=r2], 0x54}, 0x1, 0x0, 0x0, 0x400c080}, 0x8002)

455.282253ms ago: executing program 0 (id=2067):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r0, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x42, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
munlockall()
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)

267.623334ms ago: executing program 1 (id=2068):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x56a, 0xed, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0xa0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x5, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x0, 0x4}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000840)={0x24, 0x0, 0x0, &(0x7f00000007c0)={0x0, 0x22, 0x5, {[@main=@item_4={0x3, 0x0, 0x9, "31f078aa"}]}}, 0x0}, 0x0)

253.464995ms ago: executing program 4 (id=2069):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/udp6\x00')
preadv(r1, &(0x7f0000000340)=[{&(0x7f0000000240)=""/208, 0xd0}], 0x1, 0x10201, 0x2)

169.38551ms ago: executing program 0 (id=2070):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f0000000000)={'nr0\x00', {0x2, 0x4e20, @loopback}})

120.114503ms ago: executing program 5 (id=2071):
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x300000c, 0x204031, 0xffffffffffffffff, 0xffffd000)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_int(r0, 0x29, 0x35, 0x0, &(0x7f00007d0000))

119.970223ms ago: executing program 4 (id=2072):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000640)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000400), r0)
sendmsg$NL80211_CMD_DEL_KEY(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000440)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010025bd7000fddbdf250c00000008000300", @ANYRES32=r1, @ANYBLOB="0a000600080211000000000004002800500050801400088104000100040001000400010004000200050009000000000004000500110001000024fb54b0f798fac4164411af00000006000419f2860000050002"], 0x7c}, 0x1, 0x0, 0x0, 0x1}, 0x40000c4)

93.745154ms ago: executing program 3 (id=2073):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x0, 0x0, 0xffffffff}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x3, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x29, 0x0, @empty, @empty}, {0x4e22, 0x0, 0x28, 0x0, @wg=@data={0x4, 0x0, 0x0, "200200"/16}}}}}}, 0x0)

57.176927ms ago: executing program 4 (id=2074):
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000000)='./file0\x00', 0x9, &(0x7f0000000040)=ANY=[@ANYBLOB='\x00', @ANYRES16], 0x0, 0x5e7, &(0x7f0000001a00)="$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")
chdir(&(0x7f0000000240)='./file0\x00')
syz_mount_image$udf(&(0x7f0000000040), &(0x7f0000000480)='./file0\x00', 0x2018008, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="2f93edc77863113d68e33456dfe3c025878b46bc73df14f991a8f7a341a10f44c05fc1c37ad73b0239a18733e7436f3b54758b4ce59af971d50e53c14277216c0bba6ad052fa7a6d77f0b19c8b2381abc46dfa7e4bc6c37bbab3f908f48d1a6055a6457c5d503502300a69dc517cc08b955df0d19ae4c120c512eceffbf3fc154e4ba08f2497b14e95cfdef1c26e8623eab9941404ca9d84df9a2c44e453a0cfffbf23e5bf1e872ee040a582eda3d84714e82dde4c02836e5f66775f4df1bdcfbc28eb5ced2b332944d3ab2b9efe3cbb2111fe"], 0xfe, 0x4b1, &(0x7f0000001d00)="$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")
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x3e, 0x0, 0x0)

0s ago: executing program 5 (id=2075):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
mknodat(0xffffffffffffff9c, 0x0, 0x21c0, 0x103)
landlock_create_ruleset(0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpgrp(0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x2, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
r4 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r4, 0x1, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={0x44, r1, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x7ff, 0x70}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syzkaller0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x81}, 0x24044884)

kernel console output (not intermixed with test programs):

GE): vlan0: link becomes ready
[   61.441285][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   61.450585][ T4185] device veth0_vlan entered promiscuous mode
[   61.470960][ T4268] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.477261][  T154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.483480][ T4268] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.506383][ T4185] device veth1_vlan entered promiscuous mode
[   61.519589][  T154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.546150][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   61.555945][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   61.564950][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   61.652903][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   61.661090][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   61.683653][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   61.695523][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.705066][ T4185] device veth0_macvtap entered promiscuous mode
[   61.705492][  T644] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.718801][ T4185] device veth1_macvtap entered promiscuous mode
[   61.726627][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.729485][  T644] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.744900][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   61.766042][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   61.784327][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   61.795717][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   61.834510][ T4293] netlink: 'syz.2.3': attribute type 10 has an invalid length.
[   61.887030][ T4293] 8021q: adding VLAN 0 to HW filter on device batadv0
[   61.903337][ T4293] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   61.924751][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.926067][ T4185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.943720][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.953203][ T4185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.986314][ T4297] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   61.986406][ T4185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   62.041954][ T4185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.053822][ T4185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   62.065643][ T4185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.078279][ T4185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   62.090150][ T4185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.109937][ T4185] batman_adv: batadv0: Interface activated: batadv_slave_0
[   62.130701][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   62.162228][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   62.173137][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   62.202288][ T4185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.222728][ T4185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.242312][ T4185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.263238][ T4185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.285168][ T4185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.296087][ T4185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.312770][ T4185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.336670][ T4185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.374529][ T4185] batman_adv: batadv0: Interface activated: batadv_slave_1
[   62.398355][ T4268] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.404571][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   62.416159][ T4268] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.423617][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   62.453937][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   62.476358][ T4185] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   62.502367][ T4185] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   62.521861][ T4185] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   62.541591][ T4185] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
õåéUy·hW#ùíÓ	R58ø¬YÇêM[   62.822053][ T4268] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.852306][ T4268] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.887470][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   62.912190][ T4327] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   62.931722][  T644] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.939749][  T644] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.952274][ T4327] kvm: pic: non byte read
[   62.952835][ T4326] device syzkaller0 entered promiscuous mode
[   63.018237][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   63.206752][ T4335] device syzkaller0 entered promiscuous mode
[   63.288906][ T1111] Bluetooth: hci2: command 0x0419 tx timeout
[   63.355916][   T21] Bluetooth: hci0: command 0x0419 tx timeout
[   63.365664][   T21] Bluetooth: hci1: command 0x0419 tx timeout
[   63.372774][   T21] Bluetooth: hci4: command 0x0419 tx timeout
[   63.379095][   T21] Bluetooth: hci3: command 0x0419 tx timeout
[   63.451064][ T4344] tipc: Started in network mode
[   63.475966][ T4344] tipc: Node identity 0ad128bceb5c, cluster identity 4711
[   63.504879][ T4344] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   63.540482][ T4347] device syzkaller0 entered promiscuous mode
[   63.567632][ T4344] tipc: Resetting bearer <eth:syzkaller0>
[   63.580123][ T4343] tipc: Resetting bearer <eth:syzkaller0>
[   63.595903][ T4343] tipc: Disabling bearer <eth:syzkaller0>
[   64.162470][ T4367] IPv6: ADDRCONF(NETDEV_CHANGE): rose3: link becomes ready
[   64.605726][ T4373] APIC base relocation is unsupported by KVM
[   64.843640][ T4378] device syzkaller0 entered promiscuous mode
[   64.984657][ T4340] syz.4.5 (4340): drop_caches: 2
[   65.101068][ T4390] device syzkaller0 entered promiscuous mode
[   65.231327][ T4392] tipc: Started in network mode
[   65.247001][ T4392] tipc: Node identity a2279a3ee1c9, cluster identity 4711
[   65.255983][ T4392] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   65.287558][ T4392] device syzkaller0 entered promiscuous mode
[   65.339920][ T4392] tipc: Resetting bearer <eth:syzkaller0>
[   65.378380][ T4391] tipc: Resetting bearer <eth:syzkaller0>
[   65.429749][ T4391] tipc: Disabling bearer <eth:syzkaller0>
[   66.125968][ T4420] device syzkaller0 entered promiscuous mode
[   66.543227][ T4430] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready
[   66.577895][ T4429] device syzkaller0 entered promiscuous mode
[   66.840505][ T4438] device syzkaller0 entered promiscuous mode
[   67.319743][ T4455] device syzkaller0 entered promiscuous mode
[   67.619634][ T4464] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   67.883798][ T4471] device syzkaller0 entered promiscuous mode
[   68.276050][ T4235] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   68.319618][ T4483] device syzkaller0 entered promiscuous mode
[   68.567150][ T4495] device syzkaller0 entered promiscuous mode
[   68.652059][ T4235] usb 3-1: config 171 has an invalid descriptor of length 0, skipping remainder of the config
[   68.671629][ T4235] usb 3-1: config 171 has 0 interfaces, different from the descriptor's value: 1
[   68.858583][ T4501] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   68.865937][ T4235] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=fd.2e
[   68.887179][ T4235] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   68.911402][ T4235] usb 3-1: Product: syz
[   68.927185][ T4235] usb 3-1: Manufacturer: syz
[   68.939181][ T4235] usb 3-1: SerialNumber: syz
[   69.040799][ T4507] Zero length message leads to an empty skb
[   69.068814][ T4509] device syzkaller0 entered promiscuous mode
[   69.117069][ T4507] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   69.124754][ T4507] device syzkaller0 entered promiscuous mode
[   69.158864][ T4507] tipc: Resetting bearer <eth:syzkaller0>
[   69.168101][ T4506] tipc: Resetting bearer <eth:syzkaller0>
[   69.203482][ T4506] tipc: Disabling bearer <eth:syzkaller0>
[   69.343078][ T4235] usb 3-1: USB disconnect, device number 2
[   70.395059][ T4529] bridge0: port 2(bridge_slave_1) entered disabled state
[   70.403550][ T4529] bridge0: port 1(bridge_slave_0) entered disabled state
[   71.068545][ T4529] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   71.111011][ T4529] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   71.456478][ T4529] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   71.465958][ T4529] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   71.475232][ T4529] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   71.484595][ T4529] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   71.526555][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[   71.534019][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[   71.730807][ T4547] device syzkaller0 entered promiscuous mode
[   71.843173][ T4580] device syzkaller0 entered promiscuous mode
[   71.959764][ T4200] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201'
[   71.972280][ T4200] CPU: 1 PID: 4200 Comm: kworker/u5:5 Not tainted syzkaller #0
[   71.979979][ T4200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   71.990343][ T4200] Workqueue: hci4 hci_rx_work
[   71.995072][ T4200] Call Trace:
[   71.997348][ T4586] device syzkaller0 entered promiscuous mode
[   71.998374][ T4200]  <TASK>
[   71.998410][ T4200]  dump_stack_lvl+0x188/0x250
[   72.012377][ T4200]  ? show_regs_print_info+0x20/0x20
[   72.017716][ T4200]  ? load_image+0x400/0x400
[   72.022264][ T4200]  sysfs_create_dir_ns+0x26a/0x290
[   72.027472][ T4200]  ? sysfs_warn_dup+0xa0/0xa0
[   72.032177][ T4200]  ? process_one_work+0x85f/0x1010
[   72.037324][ T4200]  ? do_raw_spin_unlock+0x11d/0x230
[   72.042650][ T4200]  kobject_add_internal+0x6e0/0xd90
[   72.048168][ T4200]  kobject_add+0x160/0x230
[   72.052713][ T4200]  ? kobject_init+0x1d0/0x1d0
[   72.057533][ T4200]  ? klist_children_get+0x50/0x50
[   72.062681][ T4200]  ? get_device_parent+0x121/0x3f0
[   72.067905][ T4200]  device_add+0x483/0xfb0
[   72.072262][ T4200]  hci_conn_add_sysfs+0xd1/0x1e0
[   72.077225][ T4200]  le_conn_complete_evt+0xc48/0x15c0
[   72.082539][ T4200]  ? cs_le_create_conn+0x5e0/0x5e0
[   72.087674][ T4200]  ? __mutex_trylock_common+0x155/0x260
[   72.093423][ T4200]  hci_le_meta_evt+0x285/0x3c90
[   72.098279][ T4200]  ? hci_event_packet+0x37b/0x1370
[   72.103418][ T4200]  ? __lock_acquire+0x7d10/0x7d10
[   72.108572][ T4200]  ? hci_remote_host_features_evt+0x280/0x280
[   72.114711][ T4200]  ? __mutex_unlock_slowpath+0x1b0/0x6c0
[   72.120442][ T4200]  ? mark_lock+0x94/0x320
[   72.124782][ T4200]  ? mutex_unlock+0x10/0x10
[   72.129462][ T4200]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[   72.135457][ T4200]  ? lock_chain_count+0x20/0x20
[   72.140403][ T4200]  ? __rwlock_init+0x140/0x140
[   72.145294][ T4200]  hci_event_packet+0xe48/0x1370
[   72.150250][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[   72.155472][ T4200]  ? rcu_lock_release+0x20/0x20
[   72.160353][ T4200]  ? hci_send_to_monitor+0x9c/0x4a0
[   72.165677][ T4200]  hci_rx_work+0x255/0xa10
[   72.170116][ T4200]  process_one_work+0x85f/0x1010
[   72.175161][ T4200]  ? worker_detach_from_pool+0x240/0x240
[   72.180803][ T4200]  ? lockdep_hardirqs_off+0x70/0x100
[   72.186187][ T4200]  ? _raw_spin_lock_irq+0xb7/0xf0
[   72.191313][ T4200]  ? _raw_spin_lock_irqsave+0x100/0x100
[   72.196947][ T4200]  ? wq_worker_running+0x97/0x170
[   72.201976][ T4200]  worker_thread+0xaa6/0x1290
[   72.206677][ T4200]  kthread+0x436/0x520
[   72.210744][ T4200]  ? rcu_lock_release+0x20/0x20
[   72.215594][ T4200]  ? kthread_blkcg+0xd0/0xd0
[   72.220185][ T4200]  ret_from_fork+0x1f/0x30
[   72.224616][ T4200]  </TASK>
[   72.232838][ T4200] kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory.
[   72.246646][ T4200] Bluetooth: hci4: failed to register connection device
[   72.308448][ T4592] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   73.688059][ T4613] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.695565][ T4613] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.524147][ T4613] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   74.550530][ T4613] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   74.775339][ T4613] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   74.786462][ T4613] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   74.795816][ T4613] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   74.805320][ T4613] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   74.956225][ T4673] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability
[   74.996846][ T4645] device syzkaller0 entered promiscuous mode
[   75.011860][ T4651] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   75.250055][ T4672] device syzkaller0 entered promiscuous mode
[   75.956376][ T4702] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   75.964261][ T4702] device syzkaller0 entered promiscuous mode
[   75.990540][ T4702] tipc: Resetting bearer <eth:syzkaller0>
[   76.007939][ T4701] tipc: Resetting bearer <eth:syzkaller0>
[   76.030019][ T4701] tipc: Disabling bearer <eth:syzkaller0>
[   76.045034][  T154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.055989][  T154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.090940][  T644] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   76.137012][  T644] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.151620][  T644] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.454089][ T4711] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   76.551828][ T4707] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.559302][ T4707] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.443308][ T4707] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   77.504625][ T4707] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   77.886341][ T4707] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   77.897163][ T4707] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   77.906395][ T4707] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   77.915906][ T4707] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   77.973448][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   78.119695][ T4744] device syzkaller0 entered promiscuous mode
[   78.136604][ T4746] device syzkaller0 entered promiscuous mode
[   78.214471][ T4748] tipc: Started in network mode
[   78.233797][ T4748] tipc: Node identity a227db04ebb5, cluster identity 4711
[   78.241450][ T4748] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   78.304516][ T4748] device syzkaller0 entered promiscuous mode
[   78.327381][ T4748] tipc: Resetting bearer <eth:syzkaller0>
[   78.339617][ T4747] tipc: Resetting bearer <eth:syzkaller0>
[   78.348128][ T4747] tipc: Disabling bearer <eth:syzkaller0>
[   78.357535][ T4756] device syzkaller0 entered promiscuous mode
[   78.901688][ T4563] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   79.285623][ T4563] usb 1-1: config 171 has an invalid descriptor of length 0, skipping remainder of the config
[   79.315556][ T4563] usb 1-1: config 171 has 0 interfaces, different from the descriptor's value: 1
[   79.532594][ T4563] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=fd.2e
[   79.547983][ T4563] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   79.567012][ T4563] usb 1-1: Product: syz
[   79.577644][ T4563] usb 1-1: Manufacturer: syz
[   79.582628][ T4563] usb 1-1: SerialNumber: syz
[   79.884497][ T4771] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.892542][ T4771] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.540116][ T4771] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   80.560866][ T4771] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   80.908974][ T4771] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   80.918110][ T4771] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   80.928041][ T4771] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   80.937274][ T4771] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   81.073148][ T4789] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   81.118599][ T4793] device syzkaller0 entered promiscuous mode
[   81.138106][   T26] audit: type=1326 audit(1769401219.171:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4803 comm="syz.3.142" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb7694a2cb9 code=0x0
[   81.563109][ T4663] usb 1-1: USB disconnect, device number 2
[   81.675028][ T4818] device syzkaller0 entered promiscuous mode
[   81.754278][    T7] cfg80211: failed to load regulatory.db
[   82.208941][ T4826] device syzkaller0 entered promiscuous mode
[   82.336566][ T4833] tipc: Started in network mode
[   82.344008][ T4833] tipc: Node identity 5e105b61251d, cluster identity 4711
[   82.352755][ T4833] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   82.390795][ T4835] device syzkaller0 entered promiscuous mode
[   82.411056][ T4833] device syzkaller0 entered promiscuous mode
[   82.460705][ T4833] tipc: Resetting bearer <eth:syzkaller0>
[   82.540702][ T4832] tipc: Resetting bearer <eth:syzkaller0>
[   82.568571][ T4832] tipc: Disabling bearer <eth:syzkaller0>
[   82.580349][ T4841] device erspan0 entered promiscuous mode
[   82.587377][ T4841] device erspan0 left promiscuous mode
[   82.596314][ T4839] device syzkaller0 entered promiscuous mode
[   82.746392][ T4846] device syzkaller0 entered promiscuous mode
[   82.893599][ T4855] bridge0: mtu less than device minimum
[   83.072771][ T4851] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[   83.131748][ T4851] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[   83.165965][ T4868] device syzkaller0 entered promiscuous mode
[   83.346369][ T4872] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   83.386480][ T4872] device syzkaller0 entered promiscuous mode
[   83.440296][ T4872] tipc: Resetting bearer <eth:syzkaller0>
[   83.481428][ T4879] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   83.497491][ T4879] device syzkaller0 entered promiscuous mode
[   83.526187][ T4871] tipc: Resetting bearer <eth:syzkaller0>
[   83.549159][ T4871] tipc: Disabling bearer <eth:syzkaller0>
[   83.583804][ T4879] tipc: Resetting bearer <eth:syzkaller0>
[   83.602781][ T4884] device syzkaller0 entered promiscuous mode
[   83.620858][ T4878] tipc: Resetting bearer <eth:syzkaller0>
[   83.637914][ T4878] tipc: Disabling bearer <eth:syzkaller0>
[   83.926813][ T4892] device syzkaller0 entered promiscuous mode
[   84.049332][ T4897] loop1: detected capacity change from 0 to 256
[   84.123625][ T4897] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   84.213298][ T4897] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   85.203083][ T4913] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   85.248580][ T4913] device syzkaller0 entered promiscuous mode
[   85.286919][ T4913] tipc: Resetting bearer <eth:syzkaller0>
[   85.311700][ T4912] tipc: Resetting bearer <eth:syzkaller0>
[   85.339577][ T4912] tipc: Disabling bearer <eth:syzkaller0>
[   85.394593][ T4921] device syzkaller0 entered promiscuous mode
[   86.124001][ T4951] bridge0: mtu less than device minimum
[   86.200801][ T4953] loop0: detected capacity change from 0 to 16
[   86.283498][ T4953] erofs: Unknown parameter ''
[   87.345370][ T4959] device syzkaller0 entered promiscuous mode
[   87.450791][ T4961] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   87.472510][ T4961] device syzkaller0 entered promiscuous mode
[   87.509206][ T4961] tipc: Resetting bearer <eth:syzkaller0>
[   87.554301][ T4960] tipc: Resetting bearer <eth:syzkaller0>
[   87.580229][ T4960] tipc: Disabling bearer <eth:syzkaller0>
[   87.620050][ T4963] device syzkaller0 entered promiscuous mode
[   89.059344][ T4985] sched: RT throttling activated
[   89.853841][ T5003] device syzkaller0 entered promiscuous mode
[   90.621890][ T5009] sctp: [Deprecated]: syz.0.218 (pid 5009) Use of int in max_burst socket option deprecated.
[   90.621890][ T5009] Use struct sctp_assoc_value instead
[   90.789029][ T5015] device syzkaller0 entered promiscuous mode
[   90.979273][ T5027] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   91.308122][ T5040] device syzkaller0 entered promiscuous mode
[   91.675784][ T5054] process 'syz.1.233' launched './file0' with NULL argv: empty string added
[   92.630022][ T5062] device syzkaller0 entered promiscuous mode
[   93.032667][    C1] ODEBUG: Out of memory. ODEBUG disabled
[   93.587496][ T5078] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   93.668460][ T5086] device syzkaller0 entered promiscuous mode
[   93.722078][ T5078] tipc: Resetting bearer <eth:syzkaller0>
[   93.820253][ T5077] tipc: Resetting bearer <eth:syzkaller0>
[   93.864545][ T5077] tipc: Disabling bearer <eth:syzkaller0>
[   95.240308][ T5116] device syzkaller0 entered promiscuous mode
[   95.700948][ T5138] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   95.743978][ T5138] device syzkaller0 entered promiscuous mode
[   95.833588][ T5145] loop3: detected capacity change from 0 to 16
[   95.872253][ T5145] erofs: Unknown parameter ''
[   95.923938][ T5138] tipc: Resetting bearer <eth:syzkaller0>
[   96.282182][ T5137] tipc: Resetting bearer <eth:syzkaller0>
[   96.470652][ T5137] tipc: Disabling bearer <eth:syzkaller0>
[   96.587219][ T5155] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[   96.651036][ T5155] 8021q: adding VLAN 0 to HW filter on device bond0
[   96.708608][ T5155] 8021q: adding VLAN 0 to HW filter on device team0
[   96.777683][ T5155] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   96.996528][ T5170] device syzkaller0 entered promiscuous mode
[   98.161858][ T5207] =======================================================
[   98.161858][ T5207] WARNING: The mand mount option has been deprecated and
[   98.161858][ T5207]          and is ignored by this kernel. Remove the mand
[   98.161858][ T5207]          option from the mount to silence this warning.
[   98.161858][ T5207] =======================================================
[   98.333697][ T5210] overlayfs: failed to clone lowerpath
[   99.276454][ T5240] device syzkaller0 entered promiscuous mode
[   99.374793][ T5233] sctp: failed to load transform for md5: -2
[   99.387865][ T5246] sctp: failed to load transform for md5: -2
[   99.412799][ T5254] device macvtap1 entered promiscuous mode
[   99.450967][ T5256] device macvtap2 entered promiscuous mode
[   99.519428][ T5254] overlayfs: failed to clone upperpath
[   99.815480][ T5271] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   99.862832][ T5271] device syzkaller0 entered promiscuous mode
[   99.905191][ T5271] tipc: Resetting bearer <eth:syzkaller0>
[   99.988879][ T5268] tipc: Resetting bearer <eth:syzkaller0>
[  100.030550][ T5268] tipc: Disabling bearer <eth:syzkaller0>
[  100.750032][ T5318] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  100.772545][ T5318] device syzkaller0 entered promiscuous mode
[  100.857951][ T5318] tipc: Resetting bearer <eth:syzkaller0>
[  100.931811][ T5317] tipc: Resetting bearer <eth:syzkaller0>
[  100.995673][ T5317] tipc: Disabling bearer <eth:syzkaller0>
[  101.070264][ T5330] device syzkaller0 entered promiscuous mode
[  102.944293][ T5402] device syzkaller0 entered promiscuous mode
[  102.956608][ T5394] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  104.462452][ T5412] device syzkaller0 entered promiscuous mode
[  104.638708][ T5419] device syzkaller0 entered promiscuous mode
[  105.316778][ T5447] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  105.597456][ T5463] device syzkaller0 entered promiscuous mode
[  107.167301][ T5495] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  107.172403][ T5491] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  107.987671][ T5503] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.995175][ T5503] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.585227][ T5503] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  108.614623][ T5503] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  108.731139][ T5503] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  108.741274][ T5503] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  108.750940][ T5503] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  108.762150][ T5503] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  108.874741][ T5517] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  108.929247][ T5548] netlink: 60 bytes leftover after parsing attributes in process `syz.2.387'.
[  108.965379][ T5548] netlink: 60 bytes leftover after parsing attributes in process `syz.2.387'.
[  109.018169][ T5548] netlink: 60 bytes leftover after parsing attributes in process `syz.2.387'.
[  109.044393][ T5517] tipc: Disabling bearer <eth:syzkaller0>
[  109.145840][ T5557] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready
[  109.363622][ T5567] netlink: 12 bytes leftover after parsing attributes in process `syz.2.395'.
[  109.437817][ T5573] device syzkaller0 entered promiscuous mode
[  109.596805][ T5582] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  109.643347][ T5582] device syzkaller0 entered promiscuous mode
[  109.677930][ T5582] tipc: Resetting bearer <eth:syzkaller0>
[  109.706452][ T5581] tipc: Resetting bearer <eth:syzkaller0>
[  109.739476][ T5581] tipc: Disabling bearer <eth:syzkaller0>
[  110.548448][ T5626] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  110.593441][ T5626] device syzkaller0 entered promiscuous mode
[  110.628223][ T5628] device syzkaller0 entered promiscuous mode
[  110.721044][ T5637] TCP: TCP_TX_DELAY enabled
[  111.422575][ T5666] device syzkaller0 entered promiscuous mode
[  111.568046][ T5675] netlink: 20 bytes leftover after parsing attributes in process `syz.2.433'.
[  111.766604][ T5678] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  111.828929][ T5684] device syzkaller0 entered promiscuous mode
[  112.371167][ T5710] device syzkaller0 entered promiscuous mode
[  112.518876][ T5714] netlink: 'syz.4.448': attribute type 7 has an invalid length.
[  113.372347][ T5745] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  113.896521][ T5756] device syzkaller0 entered promiscuous mode
[  114.088046][ T5768] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  114.247528][ T5778] syz.2.466 uses obsolete (PF_INET,SOCK_PACKET)
[  114.429199][ T5787] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  114.468671][ T5787] device syzkaller0 entered promiscuous mode
[  114.491425][ T5787] tipc: Resetting bearer <eth:syzkaller0>
[  114.514633][ T5785] tipc: Resetting bearer <eth:syzkaller0>
[  114.539666][ T5785] tipc: Disabling bearer <eth:syzkaller0>
[  114.569369][ T5796] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  114.579621][ T5792] device syzkaller0 entered promiscuous mode
[  114.629435][ T5792] tipc: Resetting bearer <eth:syzkaller0>
[  114.671665][ T5790] tipc: Resetting bearer <eth:syzkaller0>
[  114.746702][ T5790] tipc: Disabling bearer <eth:syzkaller0>
[  114.918647][ T5815] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  114.976714][ T5825] device syzkaller0 entered promiscuous mode
[  115.012244][ T5815] tipc: Resetting bearer <eth:syzkaller0>
[  115.041035][ T5814] tipc: Resetting bearer <eth:syzkaller0>
[  115.070747][ T5814] tipc: Disabling bearer <eth:syzkaller0>
[  115.304423][ T5841] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  115.312289][ T5841] device syzkaller0 entered promiscuous mode
[  115.338004][ T5841] tipc: Resetting bearer <eth:syzkaller0>
[  115.368358][ T5839] tipc: Resetting bearer <eth:syzkaller0>
[  115.410246][ T5839] tipc: Disabling bearer <eth:syzkaller0>
[  115.529900][ T5851] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  115.562546][ T5851] device syzkaller0 entered promiscuous mode
[  115.619759][ T5850] tipc: Resetting bearer <eth:syzkaller0>
[  115.662305][ T5850] tipc: Disabling bearer <eth:syzkaller0>
[  115.682868][ T5854] device syzkaller0 entered promiscuous mode
[  115.906196][ T5870] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  116.417450][ T5897] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[  116.457255][ T5897] device syzkaller0 entered promiscuous mode
[  117.397708][ T5933] netlink: 55631 bytes leftover after parsing attributes in process `syz.0.518'.
[  117.538529][ T5940] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[  117.556510][ T5940] device syzkaller0 entered promiscuous mode
[  117.777549][ T5954] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  117.795360][ T5954] device syzkaller0 entered promiscuous mode
[  117.903282][ T5954] tipc: Resetting bearer <eth:syzkaller0>
[  117.950636][ T5953] tipc: Resetting bearer <eth:syzkaller0>
[  117.973001][ T5959] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  118.005897][ T5953] tipc: Disabling bearer <eth:syzkaller0>
[  118.050320][ T5959] kvm: pic: non byte read
[  118.064154][ T5959] kvm: pic: non byte read
[  118.091985][ T5959] kvm: pic: non byte read
[  118.223082][ T5973] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  118.245917][ T5973] tipc: Resetting bearer <eth:syzkaller0>
[  118.263541][ T5972] tipc: Disabling bearer <eth:syzkaller0>
[  118.418998][ T5983] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[  118.932597][ T6003] IPv6: ADDRCONF(NETDEV_CHANGE): rose4: link becomes ready
[  119.329716][ T6030] device syzkaller0 entered promiscuous mode
[  119.693358][ T6048] netlink: 28 bytes leftover after parsing attributes in process `syz.3.555'.
[  119.743416][ T6048] netlink: 'syz.3.555': attribute type 1 has an invalid length.
[  119.813597][ T6048] netlink: 'syz.3.555': attribute type 2 has an invalid length.
[  119.821430][ T6048] netlink: 16 bytes leftover after parsing attributes in process `syz.3.555'.
[  119.951162][ T6057] device syzkaller0 entered promiscuous mode
[  120.131707][ T6061] device syzkaller0 entered promiscuous mode
[  120.408678][ T6075] netlink: 60 bytes leftover after parsing attributes in process `syz.3.565'.
[  120.458711][ T6075] netlink: 60 bytes leftover after parsing attributes in process `syz.3.565'.
[  120.498798][ T6078] netlink: 60 bytes leftover after parsing attributes in process `syz.3.565'.
[  120.536431][ T6081] netlink: 60 bytes leftover after parsing attributes in process `syz.3.565'.
[  120.579370][ T6075] netlink: 60 bytes leftover after parsing attributes in process `syz.3.565'.
[  120.841589][ T6095] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  120.870927][ T6095] device syzkaller0 entered promiscuous mode
[  120.914862][ T6095] tipc: Resetting bearer <eth:syzkaller0>
[  120.930858][ T6094] tipc: Resetting bearer <eth:syzkaller0>
[  120.985188][ T6094] tipc: Disabling bearer <eth:syzkaller0>
[  121.115676][ T6102] device syzkaller0 entered promiscuous mode
[  121.192259][ T6106] netlink: 48 bytes leftover after parsing attributes in process `syz.3.575'.
[  121.418245][ T6115] device syzkaller0 entered promiscuous mode
[  122.725894][ T6191] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  122.814568][ T6191] kvm: pic: non byte read
[  122.823837][ T6191] kvm: pic: non byte read
[  122.834623][ T6205] device syzkaller0 entered promiscuous mode
[  122.845263][ T6191] kvm: pic: non byte read
[  122.866239][ T6191] kvm: pic: non byte read
[  122.879587][ T6191] kvm: pic: non byte read
[  123.364184][ T6230] netlink: 'syz.3.621': attribute type 5 has an invalid length.
[  123.390001][ T6230] netlink: 4 bytes leftover after parsing attributes in process `syz.3.621'.
[  123.706211][ T6247] device syzkaller0 entered promiscuous mode
[  123.895216][ T6261] netlink: 64691 bytes leftover after parsing attributes in process `syz.0.629'.
[  124.065116][ T6273] netlink: 12 bytes leftover after parsing attributes in process `syz.0.634'.
[  124.578126][ T6317] device syzkaller0 entered promiscuous mode
[  124.710690][ T6323] netlink: 8 bytes leftover after parsing attributes in process `syz.2.643'.
[  125.055613][ T6337] netlink: 'syz.4.649': attribute type 20 has an invalid length.
[  125.742484][ T6355] device syzkaller0 entered promiscuous mode
[  125.845036][ T6361] netlink: 108 bytes leftover after parsing attributes in process `syz.2.659'.
[  126.928853][ T6400] device syzkaller0 entered promiscuous mode
[  127.699774][ T6431] device syzkaller0 entered promiscuous mode
[  127.958595][ T6448] device syzkaller0 entered promiscuous mode
[  128.676521][ T6482] device syzkaller0 entered promiscuous mode
[  129.244233][ T6510] netlink: 104 bytes leftover after parsing attributes in process `syz.4.724'.
[  129.802700][ T6531] netlink: 12 bytes leftover after parsing attributes in process `syz.3.732'.
[  129.812835][ T6532] netlink: 104 bytes leftover after parsing attributes in process `syz.1.731'.
[  130.050802][ T6544] device syzkaller0 entered promiscuous mode
[  130.556786][ T6560] ipt_CLUSTERIP: Please specify destination IP
[  131.555227][ T6585] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  131.594130][ T6585] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  131.756681][ T6594] loop2: detected capacity change from 0 to 128
[  132.964234][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  132.970650][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  133.723334][ T6616] chnl_net:caif_netlink_parms(): no params data found
[  133.959832][ T6616] bridge0: port 1(bridge_slave_0) entered blocking state
[  133.967112][ T6616] bridge0: port 1(bridge_slave_0) entered disabled state
[  133.975561][ T6616] device bridge_slave_0 entered promiscuous mode
[  133.984229][ T6616] bridge0: port 2(bridge_slave_1) entered blocking state
[  133.991379][ T6616] bridge0: port 2(bridge_slave_1) entered disabled state
[  133.999661][ T6616] device bridge_slave_1 entered promiscuous mode
[  134.023688][ T6616] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  134.056424][ T6616] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  134.128020][ T6616] team0: Port device team_slave_0 added
[  134.183196][ T6616] team0: Port device team_slave_1 added
[  134.254546][ T6616] batman_adv: batadv0: Adding interface: batadv_slave_0
[  134.301550][ T6616] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  134.391649][ T6616] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  134.429861][ T6616] batman_adv: batadv0: Adding interface: batadv_slave_1
[  134.461989][ T6616] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  134.559577][ T6616] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  134.702374][ T6616] device hsr_slave_0 entered promiscuous mode
[  134.740728][ T6616] device hsr_slave_1 entered promiscuous mode
[  134.757783][ T6616] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  134.791622][ T6616] Cannot create hsr debugfs directory
[  134.995022][ T6649] device syzkaller0 entered promiscuous mode
[  135.201711][ T4563] Bluetooth: hci4: command 0x0409 tx timeout
[  135.242933][ T6616] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  135.274518][ T6616] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  135.303072][ T6616] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  135.356441][ T6616] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  135.614395][ T6671] loop4: detected capacity change from 0 to 736
[  135.774527][ T6616] 8021q: adding VLAN 0 to HW filter on device bond0
[  135.778385][ T6671] rock: directory entry would overflow storage
[  135.788821][ T6671] rock: sig=0x3b10, size=4, remaining=3
[  135.831515][ T6616] 8021q: adding VLAN 0 to HW filter on device team0
[  135.877783][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  135.894069][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  135.966418][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  135.990869][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  136.012801][ T1444] bridge0: port 1(bridge_slave_0) entered blocking state
[  136.019919][ T1444] bridge0: port 1(bridge_slave_0) entered forwarding state
[  136.059279][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  136.089472][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  136.150022][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  136.182836][ T4268] bridge0: port 2(bridge_slave_1) entered blocking state
[  136.190143][ T4268] bridge0: port 2(bridge_slave_1) entered forwarding state
[  136.261642][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  136.270796][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  136.307615][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  136.337264][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  136.361593][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  136.376194][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  136.389743][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  136.407770][ T6689] netlink: 4 bytes leftover after parsing attributes in process `syz.4.788'.
[  136.429663][ T6689] device erspan0 entered promiscuous mode
[  136.439625][ T6689] device macvtap1 entered promiscuous mode
[  136.461281][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  136.477245][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  136.498037][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  136.510380][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  136.544067][ T6616] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  136.724713][ T6294] tipc: Left network mode
[  137.130966][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  137.140266][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  137.161132][ T6616] 8021q: adding VLAN 0 to HW filter on device batadv0
[  137.315395][ T4563] Bluetooth: hci4: command 0x041b tx timeout
[  137.921086][ T6294] device hsr_slave_0 left promiscuous mode
[  137.936422][ T6294] device hsr_slave_1 left promiscuous mode
[  137.964879][ T6294] batman_adv: batadv0: Removing interface: batadv_slave_0
[  137.986248][ T6294] batman_adv: batadv0: Removing interface: batadv_slave_1
[  137.997833][ T6294] device bridge_slave_1 left promiscuous mode
[  138.011208][ T6294] bridge0: port 2(bridge_slave_1) entered disabled state
[  138.037943][ T6294] device bridge_slave_0 left promiscuous mode
[  138.050773][ T6294] bridge0: port 1(bridge_slave_0) entered disabled state
[  138.446802][ T6294] team0 (unregistering): Port device team_slave_1 removed
[  138.473242][ T6294] team0 (unregistering): Port device team_slave_0 removed
[  138.500834][ T6294] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  138.555512][ T6294] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  138.718867][ T6294] bond0 (unregistering): (slave batadv0): Releasing backup interface
[  138.818737][ T6294] bond0 (unregistering): Released all slaves
[  138.986431][ T6780] device syzkaller0 entered promiscuous mode
[  139.106720][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  139.121357][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  139.240249][ T6616] device veth0_vlan entered promiscuous mode
[  139.290545][ T6791] device syzkaller0 entered promiscuous mode
[  139.309867][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  139.322308][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  139.341745][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  139.351649][ T4356] Bluetooth: hci4: command 0x040f tx timeout
[  139.352333][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  139.406432][ T6616] device veth1_vlan entered promiscuous mode
[  139.609751][  T644] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  139.652627][  T644] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  139.708834][  T644] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  139.739427][  T644] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  139.773954][ T6616] device veth0_macvtap entered promiscuous mode
[  139.819361][ T6616] device veth1_macvtap entered promiscuous mode
[  139.897700][ T6616] batman_adv: batadv0: Interface activated: batadv_slave_0
[  139.957654][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  139.969432][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  140.026786][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  140.072495][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  140.099998][ T6616] batman_adv: batadv0: Interface activated: batadv_slave_1
[  140.126203][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  140.144767][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  140.178271][ T6616] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  140.197805][ T6616] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  140.223858][ T6829] capability: warning: `syz.1.819' uses deprecated v2 capabilities in a way that may be insecure
[  140.238241][ T6616] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  140.268992][ T6616] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  140.387097][ T6833] device syzkaller0 entered promiscuous mode
[  140.530179][  T644] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  140.569940][  T644] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  140.632433][ T4730] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  140.641990][ T1444] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  140.669859][ T1444] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  140.707018][  T644] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  140.712541][ T6842] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  140.750087][ T6842] overlayfs: failed to set xattr on upper
[  140.782042][ T6842] overlayfs: ...falling back to index=off,metacopy=off.
[  140.905410][ T6854] netlink: 'syz.5.762': attribute type 16 has an invalid length.
[  140.959069][ T6854] netlink: 'syz.5.762': attribute type 17 has an invalid length.
[  141.026189][ T6854] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  141.053907][ T6854] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  141.084257][ T6854] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  141.114332][ T6854] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  141.441621][ T4559] Bluetooth: hci4: command 0x0419 tx timeout
[  141.673215][ T6879] device syzkaller0 entered promiscuous mode
[  142.256822][ T6897] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  142.327731][ T6897] kvm: pic: non byte read
[  142.352541][ T6897] kvm: pic: level sensitive irq not supported
[  142.353391][ T6897] kvm: pic: non byte read
[  142.409287][ T6897] kvm: pic: level sensitive irq not supported
[  142.410005][ T6897] kvm: pic: non byte read
[  142.465359][ T6897] kvm: pic: level sensitive irq not supported
[  142.465442][ T6897] kvm: pic: non byte read
[  142.479987][   T26] audit: type=1326 audit(1769401280.511:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6909 comm="syz.3.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7694a2cb9 code=0x7ffc0000
[  142.512222][ T6897] kvm: pic: level sensitive irq not supported
[  142.512377][ T6897] kvm: pic: non byte read
[  142.570122][   T26] audit: type=1326 audit(1769401280.541:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6909 comm="syz.3.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7694a2cb9 code=0x7ffc0000
[  142.643132][ T6897] kvm: pic: level sensitive irq not supported
[  142.643222][ T6897] kvm: pic: non byte read
[  142.678322][   T26] audit: type=1326 audit(1769401280.541:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6909 comm="syz.3.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7694a2cb9 code=0x7ffc0000
[  142.811605][   T26] audit: type=1326 audit(1769401280.541:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6909 comm="syz.3.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7694a2cb9 code=0x7ffc0000
[  142.925284][   T26] audit: type=1326 audit(1769401280.541:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6909 comm="syz.3.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=30 compat=0 ip=0x7fb7694a2cb9 code=0x7ffc0000
[  143.008398][   T26] audit: type=1326 audit(1769401280.541:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6909 comm="syz.3.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7694a2cb9 code=0x7ffc0000
[  143.077896][   T26] audit: type=1326 audit(1769401280.541:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6909 comm="syz.3.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7694a2cb9 code=0x7ffc0000
[  143.198294][   T26] audit: type=1326 audit(1769401280.541:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6909 comm="syz.3.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7694a2cb9 code=0x7ffc0000
[  143.277835][   T26] audit: type=1326 audit(1769401280.541:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6909 comm="syz.3.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7694a2cb9 code=0x7ffc0000
[  143.392653][   T26] audit: type=1326 audit(1769401280.541:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6909 comm="syz.3.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=67 compat=0 ip=0x7fb7694a2cb9 code=0x7ffc0000
[  143.409804][ T6939] device syzkaller0 entered promiscuous mode
[  144.122517][ T6980] IPv6: ADDRCONF(NETDEV_CHANGE): rose3: link becomes ready
[  144.450689][ T6992] device syzkaller0 entered promiscuous mode
[  144.808144][ T7009] device bridge_slave_0 left promiscuous mode
[  144.829252][ T7009] bridge0: port 1(bridge_slave_0) entered disabled state
[  144.901319][ T7009] device bridge_slave_1 left promiscuous mode
[  144.953822][ T7009] bridge0: port 2(bridge_slave_1) entered disabled state
[  144.961002][ T7018] loop5: detected capacity change from 0 to 16
[  145.008288][ T7009] bond0: (slave bond_slave_0): Releasing backup interface
[  145.016344][ T7018] erofs: (device loop5): mounted with root inode @ nid 36.
[  145.054093][ T7009] bond0: (slave bond_slave_1): Releasing backup interface
[  145.085653][ T7018] attempt to access beyond end of device
[  145.085653][ T7018] loop5: rw=524288, want=1342177304, limit=16
[  145.106826][ T7009] team0: Port device team_slave_0 removed
[  145.113939][ T7018] attempt to access beyond end of device
[  145.113939][ T7018] loop5: rw=0, want=1342177280, limit=16
[  145.145102][ T7009] team0: Port device team_slave_1 removed
[  145.173040][ T7009] batman_adv: batadv0: Removing interface: batadv_slave_0
[  145.197153][ T7009] batman_adv: batadv0: Removing interface: batadv_slave_1
[  145.334397][ T7013] team0: Mode changed to "loadbalance"
[  146.263971][ T7062] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  146.306628][ T7066] device syzkaller0 entered promiscuous mode
[  146.322581][ T7062] kvm: pic: non byte read
[  146.995734][ T7108] device syzkaller0 entered promiscuous mode
[  147.337045][ T7117] device syzkaller0 entered promiscuous mode
[  147.384788][ T7127] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready
[  147.506087][ T7141] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  147.959107][ T7161] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  147.977580][ T7161] 8021q: adding VLAN 0 to HW filter on device bond0
[  147.998745][ T7161] 8021q: adding VLAN 0 to HW filter on device team0
[  148.039047][ T7161] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  148.558202][ T7183] device syzkaller0 entered promiscuous mode
[  148.584293][ T7192] team0: Unable to change to the same mode the team is in
[  148.938107][ T7217] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  149.165689][   T26] kauditd_printk_skb: 61 callbacks suppressed
[  149.165745][   T26] audit: type=1326 audit(1769401287.201:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7229 comm="syz.1.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba74d4cb9 code=0x7ffc0000
[  149.233663][   T26] audit: type=1326 audit(1769401287.211:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7229 comm="syz.1.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f8ba74d4cb9 code=0x7ffc0000
[  149.333277][   T26] audit: type=1326 audit(1769401287.211:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7229 comm="syz.1.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba74d4cb9 code=0x7ffc0000
[  149.430015][   T26] audit: type=1326 audit(1769401287.211:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7229 comm="syz.1.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba74d4cb9 code=0x7ffc0000
[  149.541575][   T26] audit: type=1326 audit(1769401287.211:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7229 comm="syz.1.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7f8ba74d4cb9 code=0x7ffc0000
[  149.625224][   T26] audit: type=1326 audit(1769401287.211:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7229 comm="syz.1.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba74d4cb9 code=0x7ffc0000
[  149.739878][   T26] audit: type=1326 audit(1769401287.211:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7229 comm="syz.1.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=432 compat=0 ip=0x7f8ba74d4cb9 code=0x7ffc0000
[  149.768442][ T7251] device syzkaller0 entered promiscuous mode
[  149.770505][   T26] audit: type=1326 audit(1769401287.211:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7229 comm="syz.1.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba74d4cb9 code=0x7ffc0000
[  149.810115][ T7260] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  149.836390][   T26] audit: type=1326 audit(1769401287.211:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7229 comm="syz.1.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba74d4cb9 code=0x7ffc0000
[  150.259322][ T7286] overlayfs: failed to clone upperpath
[  150.295255][ T7286] overlayfs: failed to clone upperpath
[  150.490145][ T7295] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  150.753700][ T7278] bridge0: port 2(bridge_slave_1) entered disabled state
[  150.761104][ T7278] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.131983][ T7278] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  151.167771][ T7278] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  151.285894][ T7278] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  151.300835][ T7278] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  151.310229][ T7278] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  151.327969][ T7278] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  151.647854][ T7325] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  151.727347][ T7325] tipc: Resetting bearer <eth:syzkaller0>
[  151.782375][ T7322] tipc: Disabling bearer <eth:syzkaller0>
[  152.984652][ T7376] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  152.998116][ T7376] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  153.007889][ T7376] overlayfs: missing 'lowerdir'
[  153.178153][ T7387] loop5: detected capacity change from 0 to 16
[  153.221941][ T7357] device macvtap1 left promiscuous mode
[  153.231794][ T7387] erofs: (device loop5): mounted with root inode @ nid 36.
[  153.337253][ T7387] erofs: (device loop5): erofs_read_inode: bogus i_mode (4355) @ nid 46
[  154.606274][ T7428] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  154.647837][ T7428] device syzkaller0 entered promiscuous mode
[  155.218801][ T7425] tipc: Resetting bearer <eth:syzkaller0>
[  155.268442][ T7425] tipc: Disabling bearer <eth:syzkaller0>
[  155.733475][ T7458] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  155.768717][ T7463] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  155.775172][ T7458] kvm: pic: non byte read
[  155.805442][ T7463] device syzkaller0 entered promiscuous mode
[  156.030253][ T7473] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  156.151177][ T4263] kernel read not supported for file /input/event1 (pid: 4263 comm: kworker/1:5)
[  156.483575][ T7499] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  156.490586][ T7499] overlayfs: failed to set xattr on upper
[  156.541908][ T7499] overlayfs: ...falling back to index=off,metacopy=off.
[  156.566573][ T7499] overlayfs: ...falling back to xino=off.
[  156.762170][ T7507] device macvlan0 entered promiscuous mode
[  156.993338][ T7526] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  158.113203][ T7558] raw_sendmsg: syz.5.1026 forgot to set AF_INET. Fix it!
[  158.479927][ T7569] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[  158.515773][ T7571] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  158.533691][ T7571] device syzkaller0 entered promiscuous mode
[  158.555819][ T7569] device syzkaller0 entered promiscuous mode
[  158.589096][ T7571] tipc: Resetting bearer <eth:syzkaller0>
[  158.640412][ T7570] tipc: Resetting bearer <eth:syzkaller0>
[  158.658713][ T7570] tipc: Disabling bearer <eth:syzkaller0>
[  158.729075][ T7576] device syzkaller0 entered promiscuous mode
[  160.103305][ T7625] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[  160.172073][ T7625] device syzkaller0 entered promiscuous mode
[  160.403532][ T7634] device macvlan0 left promiscuous mode
[  160.457043][   T26] audit: type=1326 audit(1769401298.481:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7635 comm="syz.5.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59c1272cb9 code=0x7ffc0000
[  160.519344][ T7632] device syzkaller0 entered promiscuous mode
[  160.540977][   T26] audit: type=1326 audit(1769401298.481:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7635 comm="syz.5.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59c1272cb9 code=0x7ffc0000
[  160.645891][   T26] audit: type=1326 audit(1769401298.521:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7635 comm="syz.5.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59c1272cb9 code=0x7ffc0000
[  160.744506][   T26] audit: type=1326 audit(1769401298.521:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7635 comm="syz.5.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=290 compat=0 ip=0x7f59c1272cb9 code=0x7ffc0000
[  160.840072][   T26] audit: type=1326 audit(1769401298.521:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7635 comm="syz.5.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59c1272cb9 code=0x7ffc0000
[  160.977797][   T26] audit: type=1326 audit(1769401298.521:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7635 comm="syz.5.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59c1272cb9 code=0x7ffc0000
[  161.065749][   T26] audit: type=1326 audit(1769401298.521:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7635 comm="syz.5.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59c1272cb9 code=0x7ffc0000
[  161.190634][   T26] audit: type=1326 audit(1769401298.521:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7635 comm="syz.5.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59c1272cb9 code=0x7ffc0000
[  161.283946][   T26] audit: type=1326 audit(1769401298.521:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7635 comm="syz.5.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7f59c1272cb9 code=0x7ffc0000
[  161.398282][   T26] audit: type=1326 audit(1769401298.521:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7635 comm="syz.5.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59c1272cb9 code=0x7ffc0000
[  161.420157][ T7675] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  162.868015][ T7741] tipc: Started in network mode
[  162.887661][ T7741] tipc: Node identity 0ed55201c0f2, cluster identity 4711
[  162.918280][ T7741] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  162.952603][ T7748] device syzkaller0 entered promiscuous mode
[  162.971769][ T7747] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[  163.002385][ T7741] tipc: Resetting bearer <eth:syzkaller0>
[  163.028327][ T7740] tipc: Resetting bearer <eth:syzkaller0>
[  163.068512][ T7740] tipc: Disabling bearer <eth:syzkaller0>
[  163.360126][ T7759] device syzkaller0 entered promiscuous mode
[  163.489247][ T7769] netlink: 192 bytes leftover after parsing attributes in process `syz.5.1090'.
[  163.499223][ T7769] netem: invalid attributes len -5
[  163.510691][ T7769] netem: change failed
[  164.014482][ T7788] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[  164.048160][ T7788] device syzkaller0 entered promiscuous mode
[  164.092567][ T7786] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  164.101361][ T7786] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  164.204419][ T7797] loop4: detected capacity change from 0 to 164
[  164.430530][ T7803] device syzkaller0 entered promiscuous mode
[  165.496052][ T7870] device syzkaller0 entered promiscuous mode
[  165.533422][ T7877] loop0: detected capacity change from 0 to 736
[  165.663785][ T7877] rock: directory entry would overflow storage
[  165.680345][ T7877] rock: sig=0x3b10, size=4, remaining=3
[  165.940503][ T7892] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  166.604413][ T7929] ±ÿþ€: renamed from team_slave_1
[  167.150666][ T7955] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  168.236463][ T7997] device syzkaller0 entered promiscuous mode
[  168.291028][ T7999] ±ÿþ€: renamed from team_slave_1
[  168.733407][ T8015] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  168.748062][ T8015] device syzkaller0 entered promiscuous mode
[  168.797651][ T8015] tipc: Resetting bearer <eth:syzkaller0>
[  168.807167][ T8014] tipc: Resetting bearer <eth:syzkaller0>
[  168.847769][ T8014] tipc: Disabling bearer <eth:syzkaller0>
[  170.627939][ T8082] overlayfs: failed to clone lowerpath
[  170.731034][ T8084] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  171.361092][ T8109] loop5: detected capacity change from 0 to 128
[  174.865548][ T8142] device macvtap1 left promiscuous mode
[  175.147496][ T8184] loop4: detected capacity change from 0 to 128
[  175.188453][ T4730] tipc: Left network mode
[  175.342602][ T4663] Process accounting resumed
[  175.365531][ T4663] FAT-fs (loop4): error, corrupted file size (i_pos 548, 512)
[  175.434956][ T4663] FAT-fs (loop4): Filesystem has been set read-only
[  175.480656][ T4663] Bluetooth: hci0: command 0x0409 tx timeout
[  175.545126][ T8157] chnl_net:caif_netlink_parms(): no params data found
[  175.849375][ T8157] bridge0: port 1(bridge_slave_0) entered blocking state
[  175.915635][ T8157] bridge0: port 1(bridge_slave_0) entered disabled state
[  175.932797][ T8157] device bridge_slave_0 entered promiscuous mode
[  175.962515][ T8157] bridge0: port 2(bridge_slave_1) entered blocking state
[  175.969728][ T8157] bridge0: port 2(bridge_slave_1) entered disabled state
[  176.008929][ T8157] device bridge_slave_1 entered promiscuous mode
[  176.068996][ T8157] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  176.119567][ T8157] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  176.164565][ T8234] loop5: detected capacity change from 0 to 128
[  176.224852][ T8157] team0: Port device team_slave_0 added
[  176.254162][ T8157] team0: Port device team_slave_1 added
[  176.362723][ T8157] batman_adv: batadv0: Adding interface: batadv_slave_0
[  176.369720][ T8157] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  176.458888][ T8157] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  176.501253][ T8157] batman_adv: batadv0: Adding interface: batadv_slave_1
[  176.529715][ T8157] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  176.587914][ T8157] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  176.735683][ T8157] device hsr_slave_0 entered promiscuous mode
[  176.781969][ T8157] device hsr_slave_1 entered promiscuous mode
[  176.791670][ T8157] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  176.799357][ T8157] Cannot create hsr debugfs directory
[  176.833609][ T8253] device syzkaller0 entered promiscuous mode
[  176.966959][ T4730] device hsr_slave_0 left promiscuous mode
[  176.982750][ T4730] device hsr_slave_1 left promiscuous mode
[  176.995366][ T4730] batman_adv: batadv0: Removing interface: batadv_slave_0
[  177.090274][ T4730] batman_adv: batadv0: Removing interface: batadv_slave_1
[  177.110617][ T4730] device bridge_slave_1 left promiscuous mode
[  177.140503][ T4730] bridge0: port 2(bridge_slave_1) entered disabled state
[  177.157406][ T4730] device bridge_slave_0 left promiscuous mode
[  177.184312][ T4730] bridge0: port 1(bridge_slave_0) entered disabled state
[  177.500968][ T4730] team0 (unregistering): Port device 
2
6±ÿþ€ removed
[  177.528744][ T4730] team0 (unregistering): Port device team_slave_0 removed
[  177.558960][ T4730] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  177.590964][ T4730] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  177.601675][ T4663] Bluetooth: hci0: command 0x041b tx timeout
[  177.737778][ T4730] bond0 (unregistering): Released all slaves
[  179.096189][ T8330] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  179.133658][ T8330] 8021q: adding VLAN 0 to HW filter on device bond0
[  179.158335][ T8330] 8021q: adding VLAN 0 to HW filter on device team0
[  179.212989][ T8330] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  179.671976][ T4256] Bluetooth: hci0: command 0x040f tx timeout
[  180.924603][ T8157] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  181.003966][ T8157] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  181.067840][ T8157] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  181.098544][ T8397] overlayfs: failed to clone upperpath
[  181.111698][ T1111] Bluetooth: hci3: command 0x0406 tx timeout
[  181.114617][ T8157] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  181.121922][ T1111] Bluetooth: hci1: command 0x0406 tx timeout
[  181.192140][ T1111] Bluetooth: hci2: command 0x0406 tx timeout
[  181.751613][ T4256] Bluetooth: hci0: command 0x0419 tx timeout
[  182.586177][ T8157] 8021q: adding VLAN 0 to HW filter on device bond0
[  182.647731][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  182.840123][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  182.908868][ T8157] 8021q: adding VLAN 0 to HW filter on device team0
[  182.978926][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  183.018609][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  183.088230][ T1444] bridge0: port 1(bridge_slave_0) entered blocking state
[  183.095652][ T1444] bridge0: port 1(bridge_slave_0) entered forwarding state
[  183.761631][ T8157] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  183.772856][ T8157] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  183.794952][ T8459] device syzkaller0 entered promiscuous mode
[  183.875679][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  183.902453][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  183.962925][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  184.012639][ T1444] bridge0: port 2(bridge_slave_1) entered blocking state
[  184.020038][ T1444] bridge0: port 2(bridge_slave_1) entered forwarding state
[  184.091775][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  184.101842][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  184.110647][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  184.120384][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  184.129388][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  184.138527][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  184.151716][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  184.160283][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  184.182444][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  184.209947][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  184.240073][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  184.267441][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  184.550420][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  184.566847][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  184.586919][ T8482] loop3: detected capacity change from 0 to 1764
[  184.635145][ T8157] 8021q: adding VLAN 0 to HW filter on device batadv0
[  184.725896][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  184.762747][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  184.871318][ T6297] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  184.892298][ T6297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  184.951433][ T8157] device veth0_vlan entered promiscuous mode
[  184.965642][ T8157] device veth1_vlan entered promiscuous mode
[  185.017186][ T6297] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  185.035726][ T6297] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  185.074639][ T6297] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  185.157432][  T644] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  185.174444][  T644] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  185.219502][ T8157] device veth0_macvtap entered promiscuous mode
[  185.267960][ T8157] device veth1_macvtap entered promiscuous mode
[  185.302046][ T8509] loop3: detected capacity change from 0 to 16
[  185.666162][ T8157] batman_adv: batadv0: Interface activated: batadv_slave_0
[  185.782601][ T8509] erofs: (device loop3): mounted with root inode @ nid 36.
[  185.931085][ T8509] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  186.011644][ T6297] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  186.055318][ T6297] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  186.106358][ T6297] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  186.115729][ T6297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  186.145916][ T8157] batman_adv: batadv0: Interface activated: batadv_slave_1
[  186.165718][ T6297] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  186.186985][ T6297] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  186.225213][ T8524] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  186.359550][ T8157] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  186.390759][ T8157] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  186.436032][ T8157] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  186.460391][ T8157] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  188.062566][ T6294] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  188.126089][ T6294] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  188.140898][ T1444] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  188.159947][ T1444] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  188.165406][ T6294] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  188.209411][ T6294] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  190.099798][ T8665] overlayfs: failed to clone upperpath
[  190.352477][ T8671] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  190.370684][ T8671] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  190.407261][ T8675] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  191.692263][ T8713] overlayfs: failed to clone upperpath
[  191.824979][ T8719] input: syz1 as /devices/virtual/input/input5
[  192.015488][ T8731] tipc: Started in network mode
[  192.020422][ T8731] tipc: Node identity , cluster identity 4711
[  192.092471][ T8731] tipc: Failed to set node id, please configure manually
[  192.107949][   T26] kauditd_printk_skb: 7 callbacks suppressed
[  192.107964][   T26] audit: type=1326 audit(1769401330.141:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8733 comm="syz.4.1377" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f991e6a9cb9 code=0x0
[  192.137306][ T8731] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  193.408504][ T8753] overlayfs: failed to clone upperpath
[  193.704963][ T4242] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  193.987627][ T4242] usb 6-1: Using ep0 maxpacket: 32
[  194.051535][ T4249] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  194.131829][ T4242] usb 6-1: config 0 has an invalid interface number: 188 but max is 0
[  194.143736][ T4242] usb 6-1: config 0 has no interface number 0
[  194.157075][ T4242] usb 6-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  194.291558][ T4249] usb 1-1: Using ep0 maxpacket: 16
[  194.337688][ T4242] usb 6-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  194.351686][ T4242] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  194.374219][ T4242] usb 6-1: Product: syz
[  194.394486][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  194.396281][ T4242] usb 6-1: Manufacturer: syz
[  194.400914][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  194.426912][ T4242] usb 6-1: SerialNumber: syz
[  194.431720][ T4249] usb 1-1: config 1 has an invalid interface number: 105 but max is 0
[  194.431745][ T4249] usb 1-1: config 1 has no interface number 0
[  194.431776][ T4249] usb 1-1: config 1 interface 105 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[  194.491582][ T4249] usb 1-1: config 1 interface 105 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  194.494948][ T4242] usb 6-1: config 0 descriptor??
[  194.523627][ T4249] usb 1-1: config 1 interface 105 has no altsetting 0
[  194.861673][ T4249] usb 1-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[  194.922049][ T4249] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  195.062482][ T4249] usb 1-1: Product: syz
[  195.137833][ T4249] usb 1-1: Manufacturer: syz
[  195.249916][ T4249] usb 1-1: SerialNumber: syz
[  195.501782][ T8767] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  195.509591][ T8767] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  195.519523][ T8754] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  195.520466][ T8781] overlayfs: failed to clone upperpath
[  195.744318][ T8754] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  195.787113][ T8791] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  196.017913][ T8767] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  196.036567][ T8767] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  196.411560][    T7] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  196.841844][    T7] usb 4-1: Using ep0 maxpacket: 32
[  196.952370][ T4242] asix 6-1:0.188 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  197.011902][    T7] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  197.064612][ T4242] asix: probe of 6-1:0.188 failed with error -71
[  197.097964][    T7] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  197.331605][    T7] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  197.341747][ T4242] usb 6-1: USB disconnect, device number 2
[  197.392940][    T7] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  197.411620][ T4249] aqc111 1-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -71
[  197.452346][ T4249] aqc111 1-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -71
[  197.453064][    T7] usb 4-1: config 0 descriptor??
[  197.501541][ T4249] aqc111 1-1:1.105 eth5: register 'aqc111' at usb-dummy_hcd.0-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter, 56:7b:54:43:9c:62
[  197.523160][    T7] hub 4-1:0.0: USB hub found
[  197.532231][ T4249] usb 1-1: USB disconnect, device number 3
[  197.582522][ T4249] aqc111 1-1:1.105 eth5: unregister 'aqc111' usb-dummy_hcd.0-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter
[  197.702146][ T4249] aqc111 1-1:1.105 eth5 (unregistered): Failed to write(0x1) reg index 0x0002: -19
[  197.721623][ T4249] aqc111 1-1:1.105 eth5 (unregistered): Failed to write(0x1) reg index 0x0002: -19
[  197.731155][ T4249] aqc111 1-1:1.105 eth5 (unregistered): Failed to write(0x61) reg index 0x0000: -19
[  197.782706][    T7] hub 4-1:0.0: config failed, can't read hub descriptor (err -90)
[  197.920218][ T8836] overlayfs: failed to clone upperpath
[  198.087939][    T7] usbhid 4-1:0.0: can't add hid device: -71
[  198.091629][ T4249] usb 1-1: new full-speed USB device number 4 using dummy_hcd
[  198.098045][    T7] usbhid: probe of 4-1:0.0 failed with error -71
[  198.153404][    T7] usb 4-1: USB disconnect, device number 2
[  198.462745][ T4249] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  198.478307][ T4249] usb 1-1: New USB device found, idVendor=1e7d, idProduct=3138, bcdDevice= 0.00
[  198.487802][ T4249] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.498403][ T4249] usb 1-1: config 0 descriptor??
[  198.521920][ T8818] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  198.941766][ T8882] kvm: emulating exchange as write
[  199.003170][ T4249] ryos 0003:1E7D:3138.0001: hidraw0: USB HID v1.01 Device [HID 1e7d:3138] on usb-dummy_hcd.0-1/input0
[  199.052185][    T7] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  199.309502][ T4249] usb 1-1: USB disconnect, device number 4
[  199.371624][    T7] usb 6-1: Using ep0 maxpacket: 32
[  199.522061][    T7] usb 6-1: config 0 has an invalid interface number: 67 but max is 0
[  199.530345][    T7] usb 6-1: config 0 has no interface number 0
[  199.741948][    T7] usb 6-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  199.751131][    T7] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  199.787145][    T7] usb 6-1: Product: syz
[  199.791877][    T7] usb 6-1: Manufacturer: syz
[  199.796602][    T7] usb 6-1: SerialNumber: syz
[  199.831184][    T7] usb 6-1: config 0 descriptor??
[  199.901929][    T7] smsc95xx v2.0.0
[  200.086579][ T8906] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1932529263 (123681872832 ns) > initial count (115867806784 ns). Using initial count to start timer.
[  200.337669][    T7] smsc95xx 6-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[  200.363922][    T7] smsc95xx 6-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  200.494647][ T8918] kvm: pic: non byte write
[  201.061734][    T7] smsc95xx 6-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000020: -71
[  201.090255][    T7] smsc95xx: probe of 6-1:0.67 failed with error -71
[  201.131805][    T7] usb 6-1: USB disconnect, device number 3
[  201.244510][ T8941] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1454'.
[  201.287926][ T8941] netlink: 43 bytes leftover after parsing attributes in process `syz.1.1454'.
[  201.327132][ T8941] netlink: 'syz.1.1454': attribute type 5 has an invalid length.
[  201.397179][ T8941] netlink: 43 bytes leftover after parsing attributes in process `syz.1.1454'.
[  201.664899][ T8950] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  202.314913][ T8990] overlayfs: failed to clone upperpath
[  202.632318][ T9000] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  202.666724][ T9000] device syzkaller0 entered promiscuous mode
[  202.713035][ T9000] tipc: Resetting bearer <eth:syzkaller0>
[  202.743335][ T8999] tipc: Resetting bearer <eth:syzkaller0>
[  202.768293][ T8999] tipc: Disabling bearer <eth:syzkaller0>
[  202.901686][    T7] usb 4-1: new full-speed USB device number 3 using dummy_hcd
[  203.245602][ T9030] usb usb1: usbfs: process 9030 (syz.5.1492) did not claim interface 0 before use
[  203.331775][    T7] usb 4-1: unable to get BOS descriptor or descriptor too short
[  203.401619][    T7] usb 4-1: not running at top speed; connect to a high speed hub
[  203.511965][    T7] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  203.551493][    T7] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  203.851868][    T7] usb 4-1: string descriptor 0 read error: -22
[  203.864460][    T7] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  203.898700][    T7] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  203.929224][ T9052] tipc: Started in network mode
[  203.947515][ T9052] tipc: Node identity c2a5ab886c43, cluster identity 4711
[  203.969806][ T9052] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  203.996453][    T7] usb 4-1: 0:2 : does not exist
[  204.014675][ T9053] device syzkaller0 entered promiscuous mode
[  204.056768][ T9052] tipc: Resetting bearer <eth:syzkaller0>
[  204.096004][ T9051] tipc: Resetting bearer <eth:syzkaller0>
[  204.131559][ T9051] tipc: Disabling bearer <eth:syzkaller0>
[  204.697628][ T9081] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  204.897898][ T4242] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  205.171944][ T4242] usb 1-1: Using ep0 maxpacket: 16
[  205.322671][ T4242] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  205.333260][ T4242] usb 1-1: config 1 has no interface number 1
[  205.340234][ T4242] usb 1-1: config 1 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  205.362017][    T7] usb 4-1: 5:0: cannot get min/max values for control 3 (id 5)
[  205.393139][ T4242] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  205.445933][ T4242] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  205.627029][ T9121] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  205.641852][    T7] usb 4-1: 5:0: cannot get min/max values for control 3 (id 5)
[  205.650574][ T4242] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  205.673915][ T4242] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  205.697278][    T7] usb 4-1: USB disconnect, device number 3
[  205.713887][ T4242] usb 1-1: Product: syz
[  205.731516][ T4242] usb 1-1: Manufacturer: syz
[  205.747086][ T4242] usb 1-1: SerialNumber: syz
[  206.256268][ T4242] usb 1-1: 2:1 : format type 0 is detected, processed as PCM
[  206.557798][ T9165] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  206.632159][ T9170] overlayfs: failed to clone upperpath
[  207.385869][ T4242] usb 1-1: USB disconnect, device number 5
[  207.735050][ T4176] udevd[4176]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  208.865858][ T9250] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  208.926285][ T9250] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  209.919652][ T4191] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  210.281870][ T4191] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  210.321563][ T4191] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  210.521713][ T4191] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  210.531057][ T4191] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  210.554187][ T4191] usb 6-1: Product: syz
[  210.558676][ T4191] usb 6-1: Manufacturer: syz
[  210.587137][ T4191] usb 6-1: SerialNumber: syz
[  210.668328][ T4191] cdc_mbim 6-1:1.0: skipping garbage
[  210.870885][ T9279] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  211.597199][ T9355] input: syz1 as /devices/virtual/input/input6
[  211.767110][ T9279] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  211.827531][ T4191] cdc_mbim 6-1:1.0: dwNtbInMaxSize=1 is too small. Using 2048
[  211.837578][ T4191] cdc_mbim 6-1:1.0: setting rx_max = 2048
[  212.038214][ T4191] cdc_mbim 6-1:1.0: cdc-wdm0: USB WDM device
[  212.081549][ T4263] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  212.097004][ T4191] cdc_mbim 6-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.5-1, CDC MBIM, 7e:a0:20:70:fe:cc
[  212.136099][ T4191] usb 6-1: USB disconnect, device number 4
[  212.152148][ T4191] cdc_mbim 6-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.5-1, CDC MBIM
[  212.346072][ T4263] usb 1-1: Using ep0 maxpacket: 32
[  212.475148][ T4263] usb 1-1: config 0 has an invalid interface number: 196 but max is 0
[  212.494915][ T4263] usb 1-1: config 0 has no interface number 0
[  212.501250][ T4263] usb 1-1: config 0 interface 196 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 528
[  212.521508][ T4263] usb 1-1: config 0 interface 196 has no altsetting 0
[  212.691824][ T4263] usb 1-1: New USB device found, idVendor=05ac, idProduct=77c2, bcdDevice=eb.3a
[  212.711220][ T4263] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  212.719843][ T4263] usb 1-1: Product: syz
[  212.724852][ T4263] usb 1-1: Manufacturer: syz
[  212.729574][ T4263] usb 1-1: SerialNumber: syz
[  212.751332][ T4263] usb 1-1: config 0 descriptor??
[  212.771842][ T9367] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  212.832037][ T9395] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  212.850371][ T9395] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  212.870821][ T9399] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  212.899532][ T9399] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  213.332662][ T9421] overlayfs: conflicting lowerdir path
[  213.371999][ T9421] overlayfs: overlay with incompat feature 'volatile' cannot be mounted
[  213.577915][ T4263] ipheth 1-1:0.196: Apple iPhone USB Ethernet device attached
[  214.825375][ T4191] usb 1-1: USB disconnect, device number 6
[  214.970585][ T9492] input: syz1 as /devices/virtual/input/input7
[  215.005207][ T9496] overlayfs: failed to set xattr on upper
[  215.021947][ T4191] ipheth 1-1:0.196: Apple iPhone USB Ethernet now disconnected
[  215.083264][ T9496] overlayfs: ...falling back to index=off,metacopy=off.
[  215.357950][ T4730] tipc: Left network mode
[  215.766396][ T9506] chnl_net:caif_netlink_parms(): no params data found
[  216.024659][ T9506] bridge0: port 1(bridge_slave_0) entered blocking state
[  216.041699][ T9506] bridge0: port 1(bridge_slave_0) entered disabled state
[  216.060330][ T9506] device bridge_slave_0 entered promiscuous mode
[  216.085297][ T9506] bridge0: port 2(bridge_slave_1) entered blocking state
[  216.100871][ T9506] bridge0: port 2(bridge_slave_1) entered disabled state
[  216.128130][ T9506] device bridge_slave_1 entered promiscuous mode
[  216.139973][ T9524] netlink: 104 bytes leftover after parsing attributes in process `syz.3.1672'.
[  216.201391][ T9506] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  216.247258][ T9506] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  216.339355][ T9506] team0: Port device team_slave_0 added
[  216.377026][ T9506] team0: Port device team_slave_1 added
[  216.470908][ T9565] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1681'.
[  216.506089][ T9506] batman_adv: batadv0: Adding interface: batadv_slave_0
[  216.520497][ T9506] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  216.597996][ T9506] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  216.675699][ T9506] batman_adv: batadv0: Adding interface: batadv_slave_1
[  216.704130][ T9506] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  216.741183][ T9506] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  216.910804][ T4730] device hsr_slave_0 left promiscuous mode
[  216.919443][ T4730] device hsr_slave_1 left promiscuous mode
[  216.952048][ T4730] batman_adv: batadv0: Removing interface: batadv_slave_0
[  216.980353][ T4730] batman_adv: batadv0: Removing interface: batadv_slave_1
[  216.995680][ T4730] device bridge_slave_1 left promiscuous mode
[  217.011045][ T4730] bridge0: port 2(bridge_slave_1) entered disabled state
[  217.029606][ T4730] device bridge_slave_0 left promiscuous mode
[  217.038488][ T4730] bridge0: port 1(bridge_slave_0) entered disabled state
[  217.351578][ T4256] Bluetooth: hci4: command 0x0409 tx timeout
[  217.440315][ T4730] team0 (unregistering): Port device team_slave_1 removed
[  217.484845][ T4730] team0 (unregistering): Port device team_slave_0 removed
[  217.550642][ T4730] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  217.588483][ T4730] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  217.760290][ T4730] bond0 (unregistering): Released all slaves
[  218.420285][ T9506] device hsr_slave_0 entered promiscuous mode
[  218.427341][ T9506] device hsr_slave_1 entered promiscuous mode
[  218.434563][ T9506] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  218.443042][ T9506] Cannot create hsr debugfs directory
[  218.668439][ T9641] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1701'.
[  218.853858][ T9657] overlayfs: failed to clone upperpath
[  219.806431][ T4663] Bluetooth: hci4: command 0x041b tx timeout
[  220.089650][ T9506] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  220.176451][ T9506] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  220.233442][ T9506] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  220.278496][ T9506] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  220.492440][ T9716] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1722'.
[  220.644684][ T9506] 8021q: adding VLAN 0 to HW filter on device bond0
[  220.706855][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  220.728088][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  220.761153][ T9506] 8021q: adding VLAN 0 to HW filter on device team0
[  220.797312][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  220.844001][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  220.882681][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[  220.889932][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[  220.941876][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  220.980574][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  221.000717][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  221.039015][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  221.046208][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  221.135959][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  221.161073][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  221.218028][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  221.255573][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  221.286981][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  221.322568][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  221.363905][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  221.402422][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  221.435336][ T9506] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  221.545309][ T9506] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  221.585535][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  221.604569][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  221.634378][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  221.827932][ T9790] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1745'.
[  221.837192][ T4256] Bluetooth: hci4: command 0x040f tx timeout
[  222.140151][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  222.156124][ T4268] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  222.183454][ T9506] 8021q: adding VLAN 0 to HW filter on device batadv0
[  222.797689][  T644] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  222.810043][  T644] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  222.902055][ T6294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  222.920066][ T6294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  222.948833][ T9506] device veth0_vlan entered promiscuous mode
[  222.975798][ T6294] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  222.996975][ T6294] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  223.042148][ T9506] device veth1_vlan entered promiscuous mode
[  223.159117][ T9506] device veth0_macvtap entered promiscuous mode
[  223.176244][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  223.195077][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  223.337331][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  223.348448][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  223.422097][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  223.649820][ T9849] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1765'.
[  223.745523][ T9506] device veth1_macvtap entered promiscuous mode
[  223.805365][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  223.839177][ T9506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  223.872493][ T9506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.884180][ T9506] batman_adv: batadv0: Interface activated: batadv_slave_0
[  223.900277][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  223.912155][ T4663] Bluetooth: hci4: command 0x0419 tx timeout
[  223.921049][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  224.273460][ T9506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  224.291467][ T9506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  224.341947][ T9506] batman_adv: batadv0: Interface activated: batadv_slave_1
[  224.400075][ T9506] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  224.501481][ T9506] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  224.556674][ T9506] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  224.616692][ T9506] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  224.648020][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  224.690782][ T1444] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  225.827727][ T6294] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  225.856984][ T6294] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  225.917393][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  225.950337][ T6297] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  225.969391][ T6297] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  225.970771][ T9885] loop3: detected capacity change from 0 to 512
[  225.995676][ T6294] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  226.171887][ T9885] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  226.184617][ T9885] ext4 filesystem being mounted at /311/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  226.238128][ T9885] EXT4-fs error (device loop3): ext4_do_update_inode:5222: inode #2: comm syz.3.1776: corrupted inode contents
[  226.264254][ T9885] EXT4-fs error (device loop3): ext4_dirty_inode:6058: inode #2: comm syz.3.1776: mark_inode_dirty error
[  226.279757][ T9885] EXT4-fs error (device loop3): ext4_do_update_inode:5222: inode #2: comm syz.3.1776: corrupted inode contents
[  226.355589][ T9885] EXT4-fs error (device loop3): ext4_do_update_inode:5222: inode #2: comm syz.3.1776: corrupted inode contents
[  226.359470][ T9902] loop0: detected capacity change from 0 to 4096
[  226.390511][ T9885] EXT4-fs error (device loop3): ext4_setattr:5483: inode #2: comm syz.3.1776: mark_inode_dirty error
[  226.406930][ T9904] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1780'.
[  226.453595][ T9902] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrquota,noquota,,errors=continue. Quota mode: writeback.
[  226.475852][ T4256] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  226.483115][ T9902] EXT4-fs (loop0): Cannot change quota options when quota turned on
[  226.901869][ T4256] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  227.053150][ T4256] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  227.411637][ T4256] usb 6-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[  227.461894][ T4256] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  227.514780][ T4256] usb 6-1: config 0 descriptor??
[  227.795325][ T9940] loop0: detected capacity change from 0 to 128
[  227.829291][ T9940] FAT-fs (loop0): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  227.890538][   T26] audit: type=1800 audit(1769401365.921:101): pid=9940 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1791" name="file1" dev="loop0" ino=1048597 res=0 errno=0
[  227.952893][ T4256] usbhid 6-1:0.0: can't add hid device: -71
[  227.959195][ T4256] usbhid: probe of 6-1:0.0 failed with error -71
[  228.083640][ T9950] loop3: detected capacity change from 0 to 1024
[  228.764313][ T9950] hfsplus: xattr searching failed
[  228.928104][ T9951] loop0: detected capacity change from 0 to 256
[  229.714369][ T4256] usb 6-1: USB disconnect, device number 5
[  229.868842][ T1444] hfsplus: b-tree write err: -5, ino 3
[  229.895883][ T9956] loop5: detected capacity change from 0 to 1024
[  229.910418][ T9951] attempt to access beyond end of device
[  229.910418][ T9951] loop0: rw=2049, want=288, limit=256
[  229.945970][ T9951] attempt to access beyond end of device
[  229.945970][ T9951] loop0: rw=2049, want=360, limit=256
[  230.053916][ T9956] EXT4-fs (loop5): mounted filesystem without journal. Opts: auto_da_alloc,minixdf,,errors=continue. Quota mode: none.
[  230.091177][ T9969] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1795'.
[  230.380072][ T9981] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability
[  230.449851][ T9978] loop0: detected capacity change from 0 to 8192
[  230.497474][ T9978] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found
[  230.527098][ T9978] UDF-fs: Scanning with blocksize 512 failed
[  230.555978][ T9978] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found
[  230.576351][ T9978] UDF-fs: Scanning with blocksize 1024 failed
[  230.604856][ T9978] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found
[  230.753515][ T9978] UDF-fs: Scanning with blocksize 2048 failed
[  231.509815][ T9978] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  232.239955][   T26] audit: type=1800 audit(1769401370.271:102): pid=9956 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1797" name="file1" dev="loop5" ino=15 res=0 errno=0
[  232.369553][ T9993] loop3: detected capacity change from 0 to 256
[  232.744892][ T9993] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  233.626164][T10016] loop3: detected capacity change from 0 to 512
[  233.682471][T10016] EXT4-fs (loop3): Ignoring removed bh option
[  233.773049][T10016] EXT4-fs (loop3): mounted filesystem without journal. Opts: i_version,nogrpid,bh,,errors=continue. Quota mode: writeback.
[  233.812109][T10016] ext4 filesystem being mounted at /318/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  234.859183][T10027] loop0: detected capacity change from 0 to 128
[  235.376832][T10027] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  235.463502][T10027] ext4 filesystem being mounted at /70/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  235.585607][T10027] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  235.617561][T10043] overlayfs: failed to resolve './file0': -2
[  235.633969][T10027] EXT4-fs (loop0): shut down requested (2)
[  235.691310][T10027] fscrypt: loop0: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12
[  235.721344][T10049] fscrypt (loop0, inode 13): Error -5 getting encryption context
[  235.739427][T10049] EXT4-fs warning (device loop0): ext4_lookup:1870: Inconsistent encryption contexts: 12/13
[  235.823560][T10027] fscrypt (loop0, inode 13): Error -5 getting encryption context
[  235.881924][T10027] EXT4-fs warning (device loop0): ext4_lookup:1870: Inconsistent encryption contexts: 12/13
[  236.200823][T10070] Cannot find add_set index 4096 as target
[  236.230007][T10071] loop0: detected capacity change from 0 to 1024
[  236.276444][T10071] hfsplus: invalid length 32517 has been corrected to 255
[  236.281295][T10073] loop5: detected capacity change from 0 to 512
[  236.341899][ T4256] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  236.421212][T10073] EXT4-fs (loop5): mounted filesystem without journal. Opts: grpquota,nobarrier,noload,,errors=continue. Quota mode: writeback.
[  236.461584][T10073] ext4 filesystem being mounted at /6/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  236.483358][   T26] audit: type=1800 audit(1769401374.521:103): pid=10078 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1834" name="file1" dev="loop0" ino=20 res=0 errno=0
[  236.737503][ T4256] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  236.782798][ T4256] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  236.840014][ T4256] usb 4-1: config 0 descriptor??
[  236.913180][ T4256] cp210x 4-1:0.0: cp210x converter detected
[  237.331740][ T4256] cp210x 4-1:0.0: failed to get vendor val 0x0010 size 3: -71
[  237.351642][ T4256] cp210x 4-1:0.0: failed to get vendor val 0x000e size 678: -71
[  237.359514][ T4256] cp210x 4-1:0.0: GPIO initialisation failed: -71
[  237.410889][ T4256] usb 4-1: cp210x converter now attached to ttyUSB0
[  237.489789][ T4256] usb 4-1: USB disconnect, device number 4
[  237.526963][ T4256] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  237.556539][T10112] loop5: detected capacity change from 0 to 512
[  237.573013][ T4256] cp210x 4-1:0.0: device disconnected
[  237.667492][T10112] EXT4-fs (loop5): Ignoring removed oldalloc option
[  237.737058][T10116] loop0: detected capacity change from 0 to 128
[  237.756811][T10112] EXT4-fs (loop5): mounted filesystem without journal. Opts: acl,nodiscard,oldalloc,,errors=continue. Quota mode: none.
[  237.923359][T10112] syz.5.1850 (pid 10112) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  237.992895][T10116] EXT4-fs (loop0): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000005,min_batch_time=0x000000000000000c,,errors=continue. Quota mode: none.
[  238.014433][T10116] ext4 filesystem being mounted at /73/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  238.097601][T10116] EXT4-fs warning (device loop0): ext4_dirblock_csum_set:427: inode #2: comm syz.0.1852: No space for directory leaf checksum. Please run e2fsck -D.
[  238.129991][ T9201] udevd[9201]: incorrect jbd checksum on /dev/loop0
[  238.228157][ T9201] udevd[9201]: incorrect jbd checksum on /dev/loop0
[  238.346363][T10130] loop0: detected capacity change from 0 to 512
[  238.389090][T10130] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  238.421576][T10130] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  238.490264][T10130] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0002]
[  238.515392][T10130] System zones: 1-12
[  238.530642][T10130] EXT4-fs (loop0): 1 truncate cleaned up
[  238.568415][T10130] EXT4-fs (loop0): mounted filesystem without journal. Opts: nolazytime,init_itable=0x000000007fffffff,debug,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[  238.701578][    T7] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  238.709504][T10130] EXT4-fs warning (device loop0): verify_group_input:165: Last group not full
[  239.057070][T10153] loop3: detected capacity change from 0 to 1024
[  239.097024][T10153] EXT4-fs (loop3): inline encryption not supported
[  239.104226][T10153] EXT4-fs (loop3): Ignoring removed bh option
[  239.110331][T10153] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  239.182788][    T7] usb 6-1: config 220 has an invalid interface number: 76 but max is 2
[  239.191209][    T7] usb 6-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  239.213169][    T7] usb 6-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  239.236621][T10153] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,data_err=abort,inlinecrypt,noauto_da_alloc,data_err=ignore,discard,data_err=ignore,grpquota,noblock_validity,lazytime,bh,errors=remount-ro,. Quota mode: writeback.
[  239.241514][    T7] usb 6-1: config 220 has no interface number 2
[  239.266651][    T7] usb 6-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  239.280279][    T7] usb 6-1: config 220 interface 0 has no altsetting 0
[  239.287143][    T7] usb 6-1: config 220 interface 76 has no altsetting 0
[  239.294152][    T7] usb 6-1: config 220 interface 1 has no altsetting 0
[  239.481652][    T7] usb 6-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  239.491191][    T7] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  239.521544][    T7] usb 6-1: Product: syz
[  239.526001][    T7] usb 6-1: Manufacturer: syz
[  239.530633][    T7] usb 6-1: SerialNumber: syz
[  239.711529][ T4709] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  239.734404][T10165] fuse: Bad value for 'group_id'
[  239.923015][    T7] usb 6-1: Found UVC 7.01 device syz (8086:0b07)
[  239.929805][    T7] usb 6-1: No valid video chain found.
[  239.945808][    T7] usb 6-1: selecting invalid altsetting 0
[  240.045306][    T7] usb 6-1: selecting invalid altsetting 0
[  240.063923][    T7] usbtest: probe of 6-1:220.1 failed with error -22
[  240.081765][ T4709] usb 4-1: config 220 has an invalid interface number: 76 but max is 2
[  240.111534][ T4709] usb 4-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  240.123761][    T7] usb 6-1: USB disconnect, device number 6
[  240.151635][ T4709] usb 4-1: config 220 has no interface number 2
[  240.171697][ T4709] usb 4-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  240.211889][ T4709] usb 4-1: config 220 interface 0 has no altsetting 0
[  240.239254][ T4709] usb 4-1: config 220 interface 76 has no altsetting 0
[  240.255974][ T4709] usb 4-1: config 220 interface 1 has no altsetting 0
[  240.441658][ T4709] usb 4-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  240.460587][ T4709] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  240.487996][ T4709] usb 4-1: Product: syz
[  240.502876][ T4709] usb 4-1: Manufacturer: syz
[  240.525058][ T4709] usb 4-1: SerialNumber: syz
[  240.649063][T10189] fuse: Bad value for 'group_id'
[  240.869827][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #40!!!
[  240.931899][ T4709] uvcvideo 4-1:220.1: Unknown video format 448b07f1-fe7d-ffff-ffff-030000ffffff
[  241.071617][ T4709] usb 4-1: Found UVC 7.01 device syz (8086:0b07)
[  241.611504][ T4709] usb 4-1: No valid video chain found.
[  241.617075][ T4709] usb 4-1: selecting invalid altsetting 0
[  241.763802][ T4709] usb 4-1: selecting invalid altsetting 0
[  241.775164][ T4709] usbtest: probe of 4-1:220.1 failed with error -22
[  241.808759][ T4709] usb 4-1: USB disconnect, device number 5
[  241.909900][T10212] loop5: detected capacity change from 0 to 512
[  242.031747][T10212] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  242.223766][T10212] EXT4-fs (loop5): 1 truncate cleaned up
[  242.233595][T10212] EXT4-fs (loop5): mounted filesystem without journal. Opts: init_itable,max_dir_size_kb=0x00000000000001ff,stripe=0x0000000000000000,noblock_validity,,errors=continue. Quota mode: none.
[  242.759650][T10212] EXT4-fs error (device loop5): ext4_find_dest_de:2115: inode #2: block 13: comm syz.5.1890: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  242.925670][T10232] fuse: Bad value for 'group_id'
[  243.082198][T10237] loop5: detected capacity change from 0 to 16
[  243.109813][T10237] erofs: (device loop5): mounted with root inode @ nid 36.
[  243.177301][T10239] netlink: 'syz.3.1899': attribute type 1 has an invalid length.
[  243.478096][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #382!!!
[  243.487362][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #382!!!
[  243.496549][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #382!!!
[  243.505648][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #382!!!
[  243.514752][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #382!!!
[  243.523920][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #382!!!
[  243.533018][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #382!!!
[  243.542197][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #382!!!
[  243.551464][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #382!!!
[  245.103731][T10263] loop0: detected capacity change from 0 to 16
[  245.157643][T10263] erofs: (device loop0): mounted with root inode @ nid 36.
[  245.299479][T10266] loop5: detected capacity change from 0 to 512
[  245.408242][T10266] EXT4-fs (loop5): orphan cleanup on readonly fs
[  245.423777][T10266] EXT4-fs error (device loop5): ext4_orphan_get:1426: comm syz.5.1909: bad orphan inode 13
[  245.523849][T10273] fuse: Bad value for 'group_id'
[  245.568129][T10266] ext4_test_bit(bit=12, block=18) = 1
[  245.607764][T10266] is_bad_inode(inode)=0
[  245.621722][T10266] NEXT_ORPHAN(inode)=2130706432
[  245.626809][T10266] max_ino=32
[  245.630032][T10266] i_nlink=1
[  245.682371][T10266] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  245.733450][T10280] loop0: detected capacity change from 0 to 256
[  245.767606][T10266] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  245.839485][T10280] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  245.856426][T10266] EXT4-fs (loop5): re-mounted. Opts: (null). Quota mode: writeback.
[  245.951715][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  245.983599][T10280] FAT-fs (loop0): Filesystem has been set read-only
[  246.024215][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  246.051538][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  246.074557][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  246.131683][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  246.140539][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  246.271588][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  246.440215][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  246.487423][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  246.581608][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  246.677518][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  246.787102][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  246.842893][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  246.896570][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  246.924164][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  246.959849][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  247.001588][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  247.057199][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  247.118316][T10321] loop5: detected capacity change from 0 to 128
[  247.121724][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  247.222179][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  247.258132][T10321] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  247.271709][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  247.284871][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  247.298188][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  247.307207][T10280] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  247.316230][   T26] audit: type=1800 audit(1769401385.351:104): pid=10280 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1913" name="file1" dev="loop0" ino=1048599 res=0 errno=0
[  247.343957][T10321] ext4 filesystem being mounted at /19/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  248.826574][T10346] loop5: detected capacity change from 0 to 512
[  249.008718][T10346] EXT4-fs (loop5): 1 truncate cleaned up
[  249.016697][T10346] EXT4-fs (loop5): mounted filesystem without journal. Opts: jqfmt=vfsv1,,errors=continue. Quota mode: none.
[  249.196778][   T26] audit: type=1800 audit(1769401387.231:105): pid=10346 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1930" name="file0" dev="loop5" ino=13 res=0 errno=0
[  249.198913][T10346] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.1930: bg 0: block 465: padding at end of block bitmap is not set
[  249.311531][    T7] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  249.335426][T10346] EXT4-fs (loop5): Delayed block allocation failed for inode 13 at logical offset 2 with max blocks 10 with error 28
[  249.377136][T10346] EXT4-fs (loop5): This should not happen!! Data will be lost
[  249.377136][T10346] 
[  249.390841][T10346] EXT4-fs (loop5): Total free blocks count 0
[  249.407715][T10346] EXT4-fs (loop5): Free/Dirty block details
[  249.449419][T10346] EXT4-fs (loop5): free_blocks=0
[  249.460751][T10369] loop3: detected capacity change from 0 to 1024
[  249.473853][T10346] EXT4-fs (loop5): dirty_blocks=10
[  249.479458][T10346] EXT4-fs (loop5): Block reservation details
[  249.497348][T10346] EXT4-fs (loop5): i_reserved_data_blocks=10
[  249.539410][T10369] EXT4-fs (loop3): Ignoring removed orlov option
[  249.551645][    T7] usb 1-1: Using ep0 maxpacket: 16
[  249.599615][T10369] EXT4-fs (loop3): mounted filesystem without journal. Opts: resgid=0x0000000000000000,bsddf,init_itable=0x0000000000000040,nobarrier,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,nombcache,lazytime,,errors=continue. Quota mode: none.
[  249.671764][    T7] usb 1-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  249.704421][    T7] usb 1-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[  249.745185][    T7] usb 1-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[  249.822388][    T7] usb 1-1: config 0 interface 0 has no altsetting 0
[  249.845435][    T7] usb 1-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  249.863454][    T7] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  249.881352][    T7] usb 1-1: config 0 descriptor??
[  250.034430][T10389] loop3: detected capacity change from 0 to 256
[  250.096674][T10389] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  250.159319][T10394] loop5: detected capacity change from 0 to 512
[  250.179874][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  250.199396][T10389] FAT-fs (loop3): Filesystem has been set read-only
[  250.206573][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  250.264244][T10394] EXT4-fs (loop5): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  250.268186][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  250.286619][T10394] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  250.344537][T10394] EXT4-fs warning (device loop5): ext4_expand_extra_isize_ea:2806: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  250.393307][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  250.402520][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  250.413031][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  250.427821][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  250.436923][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  250.446761][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  250.455785][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  250.465014][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  250.473919][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  250.483009][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  250.491917][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  250.500964][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  250.510008][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  250.519070][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  250.541949][T10394] EXT4-fs (loop5): 1 truncate cleaned up
[  250.547898][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  250.621899][T10394] EXT4-fs (loop5): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,dioread_nolock,debug_want_extra_isize=0x000000000000006a,jqfmt=vfsold,bsdgroups,grpjquota=,,errors=continue. Quota mode: none.
[  250.628241][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  250.648497][ T4709] usb 1-1: USB disconnect, device number 7
[  250.838914][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  250.908874][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  250.960617][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  251.001218][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  251.058967][T10389] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  251.108994][   T26] audit: type=1800 audit(1769401389.141:106): pid=10389 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1940" name="file1" dev="loop3" ino=1048600 res=0 errno=0
[  255.331548][ T4709] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  255.612987][T10489] fuse: Unknown parameter 'fdHèIÕcá²âŠáó‡˜'
[  256.779337][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  256.785865][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  257.441580][ T4709] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  257.524064][ T4709] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  257.543882][T10503] loop3: detected capacity change from 0 to 128
[  257.565615][ T4709] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  257.601866][T10503] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  257.618354][ T4709] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  257.634809][ T4709] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  257.673846][ T4709] usb 6-1: config 0 descriptor??
[  258.081558][    T7] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  258.184091][ T4709] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[  258.246344][ T4709] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  258.331603][    T7] usb 4-1: Using ep0 maxpacket: 32
[  258.451871][    T7] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 32
[  258.645266][    T7] usb 4-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= a.f5
[  258.668094][    T7] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  258.688822][    T7] usb 4-1: Product: syz
[  258.697659][    T7] usb 4-1: Manufacturer: syz
[  258.707965][    T7] usb 4-1: SerialNumber: syz
[  258.785600][    T7] usb 4-1: config 0 descriptor??
[  258.838946][T10506] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  259.628112][    T7] usb 4-1: USB disconnect, device number 6
[  259.713336][    C0] plantronics 0003:047F:FFFF.0003: usb_submit_urb(ctrl) failed: -1
[  259.901014][T10542] overlayfs: missing 'lowerdir'
[  260.887147][T10561] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  261.083656][T10561] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  261.316323][ T4709] usb 6-1: USB disconnect, device number 7
[  261.766995][T10583] loop5: detected capacity change from 0 to 4096
[  261.773272][T10590] fuse: Unknown parameter 'group_id00000000000000000000'
[  261.835670][T10583] EXT4-fs (loop5): Test dummy encryption mode enabled
[  261.867538][T10583] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0103]
[  261.886197][T10583] System zones: 0-5
[  261.947539][T10583] EXT4-fs (loop5): mounted filesystem without journal. Opts: debug,delalloc,journal_ioprio=0x0000000000000000,test_dummy_encryption,nodiscard,min_batch_time=0x0000000000000004,nodiscard,abort,,errors=continue. Quota mode: writeback.
[  262.961972][T10625] fuse: Unknown parameter 'group_id00000000000000000000'
[  264.242211][T10651] loop3: detected capacity change from 0 to 512
[  264.329642][T10651] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  264.409942][T10651] EXT4-fs (loop3): orphan cleanup on readonly fs
[  264.463584][T10661] fuse: Unknown parameter 'group_id00000000000000000000'
[  264.476163][T10651] EXT4-fs error (device loop3): ext4_orphan_get:1426: comm syz.3.2048: bad orphan inode 15
[  264.544109][T10651] ext4_test_bit(bit=14, block=18) = 1
[  264.560813][T10651] is_bad_inode(inode)=0
[  264.565456][T10651] NEXT_ORPHAN(inode)=1023
[  264.571013][T10651] max_ino=32
[  264.578954][T10651] i_nlink=0
[  264.595399][T10651] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2922: inode #15: comm syz.3.2048: corrupted xattr block 19
[  264.634012][T10651] EXT4-fs warning (device loop3): ext4_evict_inode:302: xattr delete (err -117)
[  264.644694][T10651] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  265.000674][T10678] loop5: detected capacity change from 0 to 1024
[  265.290473][T10684] loop3: detected capacity change from 0 to 512
[  265.657120][T10699] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2064'.
[  267.074274][T10702] netlink: 52 bytes leftover after parsing attributes in process `syz.5.2066'.
[  267.161023][T10684] EXT4-fs (loop3): 1 truncate cleaned up
[  267.167077][T10684] EXT4-fs (loop3): mounted filesystem without journal. Opts: jqfmt=vfsv1,,errors=continue. Quota mode: none.
[  267.611161][T10729] ------------[ cut here ]------------
[  267.616889][T10729] DEBUG_LOCKS_WARN_ON(!test_bit(class_idx, lock_classes_in_use))
[  267.616936][T10729] WARNING: CPU: 0 PID: 10729 at kernel/locking/lockdep.c:4982 __lock_acquire+0x5c37/0x7d10
[  267.634730][T10729] Modules linked in:
[  267.638626][T10729] CPU: 0 PID: 10729 Comm: syz.5.2075 Not tainted syzkaller #0
[  267.646172][T10729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  267.656258][T10729] RIP: 0010:__lock_acquire+0x5c37/0x7d10
[  267.661979][T10729] Code: 04 08 84 c0 0f 85 73 1c 00 00 83 3d ca a8 2c 0c 00 0f 85 31 fe ff ff 48 c7 c7 20 26 2b 8a 48 c7 c6 c0 4e 2b 8a e8 c9 95 53 08 <0f> 0b e9 17 fe ff ff 0f 0b e9 26 b7 ff ff c7 44 24 68 00 00 00 00
[  267.682377][T10729] RSP: 0000:ffffc9000353e700 EFLAGS: 00010046
[  267.688443][T10729] RAX: c996a49d7a5f7d00 RBX: aaaaaaaaaaaaa1fc RCX: ffff88802bd9bb80
[  267.696594][T10729] RDX: 0000000000000000 RSI: 0000000080000002 RDI: 0000000000000000
[  267.704555][T10729] RBP: ffffc9000353e950 R08: ffff8880b902795b R09: 1ffff11017204f2b
[  267.712602][T10729] R10: dffffc0000000000 R11: ffffed1017204f2c R12: ffff88802bd9c6e0
[  267.720565][T10729] R13: ffff88802bd9bb80 R14: ffffffff8fb938f8 R15: ffff88802bd9c6c0
[  267.728523][T10729] FS:  00007f8feb0cd6c0(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000
[  267.737634][T10729] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  267.744206][T10729] CR2: fffffffffffffe70 CR3: 000000004880f000 CR4: 00000000003506f0
[  267.752254][T10729] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  267.760298][T10729] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  267.768357][T10729] Call Trace:
[  267.771642][T10729]  <TASK>
[  267.774566][T10729]  ? kvm_sched_clock_read+0x14/0x40
[  267.779758][T10729]  ? preempt_count_add+0x8d/0x190
[  267.784885][T10729]  ? get_page_from_freelist+0x1bbd/0x1ca0
[  267.790613][T10729]  ? verify_lock_unused+0x140/0x140
[  267.795927][T10729]  ? mark_lock+0x94/0x320
[  267.800248][T10729]  ? __lock_acquire+0x12e8/0x7d10
[  267.805264][T10729]  ? mark_lock+0x94/0x320
[  267.809579][T10729]  ? mark_lock+0x94/0x320
[  267.813913][T10729]  lock_acquire+0x19e/0x400
[  267.818408][T10729]  ? percpu_counter_add_batch+0xb1/0x160
[  267.824128][T10729]  ? __lock_acquire+0x12e8/0x7d10
[  267.829526][T10729]  ? read_lock_is_recursive+0x10/0x10
[  267.834894][T10729]  ? _raw_spin_lock_irqsave+0x8b/0x100
[  267.840521][T10729]  ? lockdep_hardirqs_off+0x70/0x100
[  267.846033][T10729]  _raw_spin_lock_irqsave+0xb0/0x100
[  267.851421][T10729]  ? percpu_counter_add_batch+0xb1/0x160
[  267.857085][T10729]  ? _raw_spin_lock+0x40/0x40
[  267.861878][T10729]  ? percpu_counter_add_batch+0x13b/0x160
[  267.867600][T10729]  percpu_counter_add_batch+0xb1/0x160
[  267.873231][T10729]  shmem_alloc_and_acct_page+0x2ed/0xbe0
[  267.878885][T10729]  ? shmem_swapin_page+0x2300/0x2300
[  267.884193][T10729]  ? rcu_lock_release+0x5/0x20
[  267.888990][T10729]  ? __lock_acquire+0x7d10/0x7d10
[  267.894124][T10729]  ? xas_descend+0x210/0x3b0
[  267.898712][T10729]  ? xas_load+0x127/0x140
[  267.903410][T10729]  ? pagecache_get_page+0xc27/0xf10
[  267.908616][T10729]  ? page_cache_prev_miss+0x380/0x380
[  267.914010][T10729]  ? mark_lock+0x94/0x320
[  267.918422][T10729]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[  267.924396][T10729]  shmem_getpage_gfp+0x14f4/0x2d40
[  267.929858][T10729]  shmem_write_begin+0xcd/0x1a0
[  267.934697][T10729]  generic_perform_write+0x2b6/0x550
[  267.940057][T10729]  ? atime_needs_update+0x780/0x780
[  267.945592][T10729]  ? grab_cache_page_write_begin+0xa0/0xa0
[  267.951393][T10729]  ? file_remove_privs+0x5d0/0x5d0
[  267.956505][T10729]  ? rwsem_write_trylock+0x135/0x1c0
[  267.961866][T10729]  ? clear_nonspinnable+0x60/0x60
[  267.966880][T10729]  __generic_file_write_iter+0x25f/0x4e0
[  267.972831][T10729]  generic_file_write_iter+0xa6/0x1b0
[  267.978331][T10729]  __kernel_write+0x51c/0x970
[  267.983015][T10729]  ? vfs_read+0xd60/0xd60
[  267.987337][T10729]  ? __up_read+0x2b2/0x6b0
[  267.991847][T10729]  ? up_read+0x20/0x20
[  267.995907][T10729]  ? get_dump_page+0x4cf/0x680
[  268.000752][T10729]  __dump_emit+0x249/0x370
[  268.005176][T10729]  ? do_raw_spin_unlock+0x11d/0x230
[  268.010542][T10729]  ? wait_for_dump_helpers+0x3d0/0x3d0
[  268.016080][T10729]  ? dump_emit+0x153/0x3d0
[  268.020493][T10729]  dump_user_range+0x84/0x340
[  268.025242][T10729]  elf_core_dump+0x2fbd/0x3500
[  268.030261][T10729]  ? load_elf_library+0x920/0x920
[  268.035274][T10729]  ? verify_lock_unused+0x140/0x140
[  268.040463][T10729]  ? dump_vma_snapshot+0xb00/0xe40
[  268.045570][T10729]  ? rcu_read_lock_any_held+0xb0/0x130
[  268.051025][T10729]  ? getname_kernel+0x142/0x2e0
[  268.055907][T10729]  do_coredump+0x14c7/0x2ac0
[  268.060612][T10729]  ? nfs_stat_to_errno+0x190/0x190
[  268.065842][T10729]  ? lock_chain_count+0x20/0x20
[  268.070901][T10729]  ? _raw_spin_unlock_irq+0x1f/0x40
[  268.076191][T10729]  ? lockdep_hardirqs_on+0x94/0x140
[  268.081578][T10729]  get_signal+0x40a/0x12c0
[  268.086014][T10729]  arch_do_signal_or_restart+0xe7/0x12c0
[  268.091645][T10729]  ? force_sig_fault_to_task+0x130/0x130
[  268.097359][T10729]  ? get_sigframe_size+0x10/0x10
[  268.102375][T10729]  ? __bad_area_nosemaphore+0x400/0x5a0
[  268.107977][T10729]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[  268.114036][T10729]  ? exit_to_user_mode_loop+0x3b/0x130
[  268.119483][T10729]  exit_to_user_mode_loop+0x9e/0x130
[  268.124840][T10729]  exit_to_user_mode_prepare+0xee/0x180
[  268.130424][T10729]  irqentry_exit_to_user_mode+0x5/0x30
[  268.135871][T10729]  exc_page_fault+0x88/0x100
[  268.140450][T10729]  asm_exc_page_fault+0x22/0x30
[  268.145290][T10729] RIP: 0033:0x7f8fece92cc1
[  268.149695][T10729] Code: 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  268.169555][T10729] RSP: 002b:fffffffffffffe70 EFLAGS: 00010217
[  268.175747][T10729] RAX: 0000000000000000 RBX: 00007f8fed10e090 RCX: 00007f8fece92cb9
[  268.183879][T10729] RDX: 0000000000000000 RSI: fffffffffffffe70 RDI: 0000000000008000
[  268.191837][T10729] RBP: 00007f8fecf00bf7 R08: 0000000000000000 R09: 0000000000000000
[  268.199795][T10729] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  268.207847][T10729] R13: 00007f8fed10e128 R14: 00007f8fed10e090 R15: 00007fff0c1006a8
[  268.215825][T10729]  </TASK>
[  268.218835][T10729] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  268.226096][T10729] CPU: 0 PID: 10729 Comm: syz.5.2075 Not tainted syzkaller #0
[  268.233710][T10729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  268.243849][T10729] Call Trace:
[  268.247142][T10729]  <TASK>
[  268.250062][T10729]  dump_stack_lvl+0x188/0x250
[  268.254730][T10729]  ? show_regs_print_info+0x20/0x20
[  268.260091][T10729]  ? load_image+0x400/0x400
[  268.264690][T10729]  panic+0x2e5/0x810
[  268.268583][T10729]  ? bpf_jit_dump+0xd0/0xd0
[  268.273178][T10729]  ? __lock_acquire+0x5c37/0x7d10
[  268.278194][T10729]  __warn+0x248/0x2b0
[  268.282192][T10729]  ? __lock_acquire+0x5c37/0x7d10
[  268.287204][T10729]  report_bug+0x1b7/0x2e0
[  268.291539][T10729]  handle_bug+0x3a/0x70
[  268.295786][T10729]  exc_invalid_op+0x16/0x40
[  268.300282][T10729]  asm_exc_invalid_op+0x16/0x20
[  268.305120][T10729] RIP: 0010:__lock_acquire+0x5c37/0x7d10
[  268.310827][T10729] Code: 04 08 84 c0 0f 85 73 1c 00 00 83 3d ca a8 2c 0c 00 0f 85 31 fe ff ff 48 c7 c7 20 26 2b 8a 48 c7 c6 c0 4e 2b 8a e8 c9 95 53 08 <0f> 0b e9 17 fe ff ff 0f 0b e9 26 b7 ff ff c7 44 24 68 00 00 00 00
[  268.330591][T10729] RSP: 0000:ffffc9000353e700 EFLAGS: 00010046
[  268.336732][T10729] RAX: c996a49d7a5f7d00 RBX: aaaaaaaaaaaaa1fc RCX: ffff88802bd9bb80
[  268.344719][T10729] RDX: 0000000000000000 RSI: 0000000080000002 RDI: 0000000000000000
[  268.352686][T10729] RBP: ffffc9000353e950 R08: ffff8880b902795b R09: 1ffff11017204f2b
[  268.360805][T10729] R10: dffffc0000000000 R11: ffffed1017204f2c R12: ffff88802bd9c6e0
[  268.368815][T10729] R13: ffff88802bd9bb80 R14: ffffffff8fb938f8 R15: ffff88802bd9c6c0
[  268.376816][T10729]  ? kvm_sched_clock_read+0x14/0x40
[  268.382431][T10729]  ? preempt_count_add+0x8d/0x190
[  268.387564][T10729]  ? get_page_from_freelist+0x1bbd/0x1ca0
[  268.393284][T10729]  ? verify_lock_unused+0x140/0x140
[  268.398560][T10729]  ? mark_lock+0x94/0x320
[  268.402895][T10729]  ? __lock_acquire+0x12e8/0x7d10
[  268.407909][T10729]  ? mark_lock+0x94/0x320
[  268.412313][T10729]  ? mark_lock+0x94/0x320
[  268.416638][T10729]  lock_acquire+0x19e/0x400
[  268.421216][T10729]  ? percpu_counter_add_batch+0xb1/0x160
[  268.426924][T10729]  ? __lock_acquire+0x12e8/0x7d10
[  268.431965][T10729]  ? read_lock_is_recursive+0x10/0x10
[  268.437523][T10729]  ? _raw_spin_lock_irqsave+0x8b/0x100
[  268.442971][T10729]  ? lockdep_hardirqs_off+0x70/0x100
[  268.448428][T10729]  _raw_spin_lock_irqsave+0xb0/0x100
[  268.453896][T10729]  ? percpu_counter_add_batch+0xb1/0x160
[  268.459603][T10729]  ? _raw_spin_lock+0x40/0x40
[  268.464288][T10729]  ? percpu_counter_add_batch+0x13b/0x160
[  268.469997][T10729]  percpu_counter_add_batch+0xb1/0x160
[  268.475445][T10729]  shmem_alloc_and_acct_page+0x2ed/0xbe0
[  268.481071][T10729]  ? shmem_swapin_page+0x2300/0x2300
[  268.486435][T10729]  ? rcu_lock_release+0x5/0x20
[  268.491191][T10729]  ? __lock_acquire+0x7d10/0x7d10
[  268.496201][T10729]  ? xas_descend+0x210/0x3b0
[  268.500792][T10729]  ? xas_load+0x127/0x140
[  268.505200][T10729]  ? pagecache_get_page+0xc27/0xf10
[  268.510385][T10729]  ? page_cache_prev_miss+0x380/0x380
[  268.515743][T10729]  ? mark_lock+0x94/0x320
[  268.520058][T10729]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[  268.526026][T10729]  shmem_getpage_gfp+0x14f4/0x2d40
[  268.531132][T10729]  shmem_write_begin+0xcd/0x1a0
[  268.535970][T10729]  generic_perform_write+0x2b6/0x550
[  268.541251][T10729]  ? atime_needs_update+0x780/0x780
[  268.546541][T10729]  ? grab_cache_page_write_begin+0xa0/0xa0
[  268.552428][T10729]  ? file_remove_privs+0x5d0/0x5d0
[  268.557527][T10729]  ? rwsem_write_trylock+0x135/0x1c0
[  268.562819][T10729]  ? clear_nonspinnable+0x60/0x60
[  268.567830][T10729]  __generic_file_write_iter+0x25f/0x4e0
[  268.573457][T10729]  generic_file_write_iter+0xa6/0x1b0
[  268.578919][T10729]  __kernel_write+0x51c/0x970
[  268.583839][T10729]  ? vfs_read+0xd60/0xd60
[  268.588282][T10729]  ? __up_read+0x2b2/0x6b0
[  268.592692][T10729]  ? up_read+0x20/0x20
[  268.596783][T10729]  ? get_dump_page+0x4cf/0x680
[  268.601635][T10729]  __dump_emit+0x249/0x370
[  268.606130][T10729]  ? do_raw_spin_unlock+0x11d/0x230
[  268.611335][T10729]  ? wait_for_dump_helpers+0x3d0/0x3d0
[  268.616778][T10729]  ? dump_emit+0x153/0x3d0
[  268.621272][T10729]  dump_user_range+0x84/0x340
[  268.625947][T10729]  elf_core_dump+0x2fbd/0x3500
[  268.630899][T10729]  ? load_elf_library+0x920/0x920
[  268.635943][T10729]  ? verify_lock_unused+0x140/0x140
[  268.641221][T10729]  ? dump_vma_snapshot+0xb00/0xe40
[  268.646332][T10729]  ? rcu_read_lock_any_held+0xb0/0x130
[  268.651790][T10729]  ? getname_kernel+0x142/0x2e0
[  268.656646][T10729]  do_coredump+0x14c7/0x2ac0
[  268.661228][T10729]  ? nfs_stat_to_errno+0x190/0x190
[  268.666327][T10729]  ? lock_chain_count+0x20/0x20
[  268.671166][T10729]  ? _raw_spin_unlock_irq+0x1f/0x40
[  268.676455][T10729]  ? lockdep_hardirqs_on+0x94/0x140
[  268.681858][T10729]  get_signal+0x40a/0x12c0
[  268.686268][T10729]  arch_do_signal_or_restart+0xe7/0x12c0
[  268.691977][T10729]  ? force_sig_fault_to_task+0x130/0x130
[  268.697603][T10729]  ? get_sigframe_size+0x10/0x10
[  268.702528][T10729]  ? __bad_area_nosemaphore+0x400/0x5a0
[  268.708062][T10729]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[  268.714118][T10729]  ? exit_to_user_mode_loop+0x3b/0x130
[  268.719565][T10729]  exit_to_user_mode_loop+0x9e/0x130
[  268.724862][T10729]  exit_to_user_mode_prepare+0xee/0x180
[  268.730485][T10729]  irqentry_exit_to_user_mode+0x5/0x30
[  268.736193][T10729]  exc_page_fault+0x88/0x100
[  268.740770][T10729]  asm_exc_page_fault+0x22/0x30
[  268.745611][T10729] RIP: 0033:0x7f8fece92cc1
[  268.750114][T10729] Code: 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  268.769833][T10729] RSP: 002b:fffffffffffffe70 EFLAGS: 00010217
[  268.776069][T10729] RAX: 0000000000000000 RBX: 00007f8fed10e090 RCX: 00007f8fece92cb9
[  268.784291][T10729] RDX: 0000000000000000 RSI: fffffffffffffe70 RDI: 0000000000008000
[  268.792335][T10729] RBP: 00007f8fecf00bf7 R08: 0000000000000000 R09: 0000000000000000
[  268.800379][T10729] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  268.808426][T10729] R13: 00007f8fed10e128 R14: 00007f8fed10e090 R15: 00007fff0c1006a8
[  268.816395][T10729]  </TASK>
[  268.819912][T10729] Kernel Offset: disabled
[  268.824232][T10729] Rebooting in 86400 seconds..