last executing test programs:

8m14.820289917s ago: executing program 32 (id=966):
socket$inet_tcp(0x2, 0x1, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvfrom$inet6(0xffffffffffffffff, 0x0, 0x0, 0x10001, &(0x7f0000000140)={0xa, 0x4e23, 0x100, @private0={0xfc, 0x0, '\x00', 0x1}, 0x7fffffff}, 0x1c)
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040906097c0c5b"], 0x9)

7m54.123215102s ago: executing program 33 (id=1031):
socket(0x10, 0x803, 0x0)
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000480)=0x400000001, 0x4)
setsockopt$inet6_tcp_int(r1, 0x6, 0x22, &(0x7f0000356000)=0x1, 0x4)
connect$inet6(r1, &(0x7f0000000340)={0xa, 0x0, 0x100000, @loopback}, 0x1c)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="020d00051400000000000000000000000800120000000200c06b6e000000000006000000000000000000000000000000e00000020000000000000000000000000000000000000000000000000000000105000500008000000a000000000000000000000000000000000000000000000100"], 0xa0}}, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x2000c000, 0x0, 0x0)

7m5.070567762s ago: executing program 34 (id=1095):
syz_mount_image$fuse(0x0, &(0x7f00000001c0)='./file0\x00', 0x104020, 0x0, 0xfc, 0x0, 0x0)
chroot(0x0)
pipe(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x4000000000091}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x48)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x922bac8556bdad8e)
r3 = socket$xdp(0x2c, 0x3, 0x0)
getsockopt$XDP_MMAP_OFFSETS(r3, 0x11b, 0x1, 0x0, &(0x7f0000000080))

6m43.588049273s ago: executing program 35 (id=1109):
socket(0x10, 0x3, 0xfb)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000200)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x800000, &(0x7f0000000100)={[{@bh}, {@delalloc}, {@oldalloc}, {@debug}, {@dioread_nolock}, {}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$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")
madvise(&(0x7f000014b000/0xc00000)=nil, 0xc00000, 0x15)
mkdirat(0xffffffffffffff9c, 0x0, 0x61)
symlink(0x0, &(0x7f0000000040)='./file0/file1\x00')
accept4$vsock_stream(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x0, 0x0, @my=0x1}, 0x10, 0x800)

5m49.880260975s ago: executing program 36 (id=1185):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000002d80)={&(0x7f00000003c0)=ANY=[@ANYBLOB="500000000301010100000000000000000a0000"], 0x50}, 0x1, 0x0, 0x0, 0x4000004}, 0x44080)

5m49.466950453s ago: executing program 37 (id=1169):
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000080)={0x1, 0x0, [{0x7, 0x8, 0x0, 0x100, 0xde, 0x3, 0x4}]})
r1 = syz_create_resource$binfmt(0x0)
openat$binfmt(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
execveat$binfmt(0xffffffffffffff9c, r1, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup(r2)
write$P9_RGETLOCK(r0, &(0x7f0000000640)=ANY=[], 0x200002e6)
fcntl$setpipe(r0, 0x407, 0x7000000)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0xf2de1000)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
setrlimit(0x9, &(0x7f0000000080)={0x8606, 0xffff})
munlockall()
io_setup(0x7ff, &(0x7f0000000000))

5m40.431862431s ago: executing program 38 (id=1198):
r0 = landlock_create_ruleset(&(0x7f0000000000)={0x1080, 0x1}, 0x18, 0x0)
landlock_restrict_self(0xffffffffffffffff, 0x0)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000000c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00')
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r2)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000100f7000000000000000500000a44000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc08000340000000144c0000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a3100000000200003801c0000800c00018006000100d10300000c0004400000000000"], 0xb8}, 0x1, 0x0, 0x0, 0x4000850}, 0x4040)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4451099e661a63b1}, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
unshare(0x2040400)
r5 = fsopen(&(0x7f0000000440)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
unshare(0x2000400)
fsmount(r5, 0x0, 0x0)
ioctl$VIDIOC_ENUM_FRAMESIZES(0xffffffffffffffff, 0xc02c564a, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000019300)=@raw={'raw\x00', 0x3c1, 0x3, 0x2a4, 0xf0, 0x18c, 0x203, 0xf0, 0x19030000, 0x1dc, 0x2e0, 0x2e0, 0x1dc, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0xc8, 0xf0, 0x0, {}, [@common=@eui64={{0x24}}]}, @common=@unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x0, 0x4}}}, {{@uncond, 0x0, 0xa4, 0xec}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0xb, 'syz1\x00', {0x6c8}}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x300)

5m27.191415719s ago: executing program 39 (id=1215):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x74, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000ac0)=""/246, 0xf6}, {&(0x7f0000000600)=""/245, 0xf5}, {&(0x7f0000002340)=""/4059, 0xfdb}, {&(0x7f0000000500)=""/245, 0xf5}, {&(0x7f0000000700)=""/202, 0xca}, {&(0x7f0000000300)=""/205, 0xcd}, {&(0x7f0000000140)=""/40, 0x28}, {&(0x7f0000000440)=""/153, 0x99}, {&(0x7f0000000840)=""/107, 0x6b}, {&(0x7f0000000bc0)=""/150, 0x96}], 0xa}, 0x40002100)

4m51.434334247s ago: executing program 40 (id=1240):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000102c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x14, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, [@printk={@lx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x20c}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x0, 0x14, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x320e, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

4m27.639681699s ago: executing program 41 (id=1300):
syz_mount_image$erofs(&(0x7f0000001240), &(0x7f0000000200)='./file0\x00', 0x2800080, &(0x7f0000001280)=ANY=[], 0xff, 0x20d, &(0x7f0000001000)="$eJzsmb9v00AUx793dn60QggWBhYGIlEEdWwHUIXUoUjsSAUKWyNqqoLbVI6BtBJDxcLCyIDEyj/AwNCJgY2NFQaohMRAN9giHbrz2T45cUQQCQPvI/X1e8/v7p7P8jdSAoIg/lsOvvz8/OzKwvXzAI6ggZrOf7PyGm7Uf3rx4NzzxasvX3989W7r6OP94nq1Mfc/BuDtkoUYM2oshBDm9YaKzJZdNHTuBjjOar1izFgFx02dD8BwW+t7hu7MaBEGzp1OuHZ3IwxcGTwZfBla5v42gMM9hjUAdd0fM653d3bvt8MwiLpWKpJMRaT7RHnNn4lR56f6W+JY1GPZn3xet54+2ZNjR+dd4/w8cHhat8CwrPUCanAcJz8S4/5P2vn61tD7n5SwipleoWb1oGz68flJNvaXRGUKZzgBwZBm6qOKVx7++1aLghUz8oXOMicO998Pzvr6u1v82E5ejGEnNq1XpiCUcQEYuPRhNs+kxj3OylU9Z2hN7k/Svc8Y/mTDzvyjGW9uN7s7u/Mbm+31YD3Y8v3WJfeC6170m8qIkjjge/3M/+rKn2aN9SslXlllVfTacRx5PSCOvGzsJ9Fw3OU3ne9qDlf+xzF3OllDPkR12yUfdEz/cfWf9QXmrJJ2CIIgCIIgCIIgCIIgCIIgxuQUmPoWVP9QJQoA4vIjIYR/TVX/CgAA///65l8c")

4m21.173500693s ago: executing program 42 (id=1311):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x89f1, &(0x7f0000010640)={'tunl0\x00', &(0x7f0000000000)=@ethtool_cmd={0x2e, 0x0, 0x0, 0x0, 0xf8, 0x0, 0xfc, 0xfe, 0x0, 0x4, 0x0, 0x0, 0x0, 0xff, 0xff, 0x45, [0x0, 0x200089ff]}})
mlockall(0x1)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e22, @empty}, 0x67)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f00000005c0)='syz_tun\x00', 0x10)
sendto$inet(r1, 0x0, 0x0, 0x24000840, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
syz_emit_ethernet(0x42, &(0x7f00000000c0)={@local, @multicast, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0xfd, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x8, 0x2, 0x0, 0x0, 0x0, {[@timestamp={0x8, 0xa, 0xaf, 0xe757}]}}}}}}}, 0x0)

4m8.782966977s ago: executing program 43 (id=1328):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@bridge_setlink={0x2c, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x8, 0xc, 0x0, 0x0, [@AF_BRIDGE={0x4}]}, @IFLA_AF_SPEC={0x4}]}, 0x2c}}, 0x0)

4m8.74433773s ago: executing program 4 (id=1241):
r0 = syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f00000002c0)='mnt/encrypted_dir\x00', 0x68)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000680)='mnt/encrypted_dir\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r1, 0x800c6613, &(0x7f0000000040)=@v2={0x2, @adiantum, 0x1, '\x00', @d})
chdir(&(0x7f0000000540)='mnt/encrypted_dir\x00')
symlink(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='mnt/encrypted_dir\x00')
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc4}})
execve(&(0x7f00000000c0)='mnt/encrypted_dir\x00', 0x0, 0x0)

4m7.90356699s ago: executing program 4 (id=1330):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x7, 0xffffffff, 0x3}}}}]}, 0x4c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0x6, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_ADMIT_BYTES={0x8, 0x5, 0x8}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x240040e0}, 0x4890)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r4)
sendmsg$TIPC_CMD_ENABLE_BEARER(r4, 0x0, 0x0)

4m5.974699598s ago: executing program 4 (id=1333):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000100)=0x4)
poll(&(0x7f0000000000)=[{r0, 0x4}], 0x1, 0xb4b6)

4m5.5416709s ago: executing program 4 (id=1334):
socket$inet6_tcp(0xa, 0x1, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x40000, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x4f, 0x205)
sched_setaffinity(0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000000)='./file2\x00', 0x8040, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x1, 0x2d1, &(0x7f0000000740)="$eJzs3T9rJGUcB/DfbGb/qMVuYSWCA1pYHZdrbTbIHYipPLY4LTR4dyDZRUgg4h9cU4mdjaWvQBB8ITZ2loKtYGeEwMjMzmR3k3GzkWxE8/kUyZOZ5zvP73lmkkyTJ++9ONl/nMXT489+iV4vidawG3GSxCBaUfsilgy/DgDgv+wkz+P3fKbh9M9frcj2NlgXALA5l/z+r6Tlx0dFjx9urjYAYDMePnr7zZ3d3ftvZVkvHky+PBolEVF8np3feRofxDiexN3ox2lE+aLQjvJtoWg+yPN8mmaFQbwymR6NiuTk3R+r6+/8FlHmt6Mfg/LQ2dtGmX9j9/52NrOQnxZ1PFuNPyzy96Ifz5+Fl/L3GvIx6sSrLy/Ufyf68dP78WGM43FZxDz/+XaWvZ5/88en7xTlFflkejTqlv3m8q168OkN3yMAAAAAAAAAAAAAAAAAAAAAAP5/7lR753Sj3L+nOFTtv7N1WnzRjqw2WN6fZ5ZP6gvN9weKVp7n0zy+rffXuZtlWV51nOfTeCGtNhYEAAAAAAAAAAAAAAAAAACAW+7w40/298bjJwfX0qh3A0gj4s+HEf/0OsOFIy/F6s7dasy98bhVNZf7pItHYqvuk0SsLKOYxDUty2WNZy7UXDW++74xVczoMI2mU73LB203j3XFxkft2To29qmfrv29pHkNu2fF94obF+dvXCeaR2/HuSOdv6uwfhTXm06n8VT/ysvSea5sTFf0iWTV98Vrv87KXpjFUp9OuaqN8XbVWIifezbWep6jN4tf/FmR2K0DAAAAAAAAAAAAAAAAAAA2av7Xvw0nj1dGW3l3Y2UBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwI2a////dRrpcniNVCcODv+tuQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHB7/BUAAP//vaZV2Q==")
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000200)={0xaa, 0x2cc})
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, 0x0, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x103a42, 0x32)
ftruncate(r1, 0x6000000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000853)
syz_emit_ethernet(0x0, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0)
syz_clone(0x48411, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x0, 0x0, 0x0, 0xc, 0x0)
r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000002200), 0x40280, 0x0)
ioctl$int_in(r3, 0x5452, &(0x7f0000002380)=0x1)
write$tun(0xffffffffffffffff, 0x0, 0x0)
ioctl$OCFS2_IOC_RESVSP64(r2, 0x4030582a, &(0x7f0000000580)={0x1, 0x0, 0x2, 0x78a8, 0x9, 0x10})
inotify_add_watch(r1, &(0x7f0000000040)='./file1\x00', 0x44000000)

4m4.890585441s ago: executing program 4 (id=1337):
openat(0xffffffffffffff9c, 0x0, 0x60a41, 0xb3836f6d7a15f29)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x2004de, &(0x7f0000000100), 0x3, 0x451, &(0x7f0000000f80)="$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")
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000040)={[{@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@nfs_export_on}]})

4m3.371609366s ago: executing program 4 (id=1340):
syz_mount_image$erofs(&(0x7f0000000040), &(0x7f00000001c0)='./file2\x00', 0x800, &(0x7f0000000580)=ANY=[@ANYBLOB="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", @ANYBLOB="80c4d7e4f845e14f854a817679b4d470d01b954c7feb7f0a22c6b28823a98950b6481cfbafa8da55931c4b357cc99cb920bba5607ecf455bac2ed673a6d9f10ceab0440484d51ad55e62f6504a0df682df03f86ffc47bfd44c9904d7fb59f3b71dd1f28fefc6dbf5e8fc1b51977bfb37cacb36d1231a42eeefb170a7d98385920a4a3dbacdf1d5b3bafee4c1d09730e4b64e"], 0x2, 0x1a9, &(0x7f0000000200)="$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")
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000003480)={0x2020}, 0x2020)

4m2.283763179s ago: executing program 44 (id=1340):
syz_mount_image$erofs(&(0x7f0000000040), &(0x7f00000001c0)='./file2\x00', 0x800, &(0x7f0000000580)=ANY=[@ANYBLOB="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", @ANYBLOB="80c4d7e4f845e14f854a817679b4d470d01b954c7feb7f0a22c6b28823a98950b6481cfbafa8da55931c4b357cc99cb920bba5607ecf455bac2ed673a6d9f10ceab0440484d51ad55e62f6504a0df682df03f86ffc47bfd44c9904d7fb59f3b71dd1f28fefc6dbf5e8fc1b51977bfb37cacb36d1231a42eeefb170a7d98385920a4a3dbacdf1d5b3bafee4c1d09730e4b64e"], 0x2, 0x1a9, &(0x7f0000000200)="$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")
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000003480)={0x2020}, 0x2020)

3m54.138218618s ago: executing program 3 (id=1349):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x7, 0xffffffff, 0x3}}}}]}, 0x4c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0x6, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_ADMIT_BYTES={0x8, 0x5, 0x8}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x240040e0}, 0x4890)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r4)
sendmsg$TIPC_CMD_ENABLE_BEARER(r4, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)

3m53.357827931s ago: executing program 3 (id=1350):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000180)={{r0, <r1=>0xffffffffffffffff}, &(0x7f00000001c0), &(0x7f0000000240)='%+9llu \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r1, <r2=>0xffffffffffffffff}, 0x4)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, 0x0, 0x0}, 0x20)

3m52.882456347s ago: executing program 3 (id=1351):
socket$inet6_tcp(0xa, 0x1, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x40000, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x4f, 0x205)
sched_setaffinity(0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000000)='./file2\x00', 0x8040, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x1, 0x2d1, &(0x7f0000000740)="$eJzs3T9rJGUcB/DfbGb/qMVuYSWCA1pYHZdrbTbIHYipPLY4LTR4dyDZRUgg4h9cU4mdjaWvQBB8ITZ2loKtYGeEwMjMzmR3k3GzkWxE8/kUyZOZ5zvP73lmkkyTJ++9ONl/nMXT489+iV4vidawG3GSxCBaUfsilgy/DgDgv+wkz+P3fKbh9M9frcj2NlgXALA5l/z+r6Tlx0dFjx9urjYAYDMePnr7zZ3d3ftvZVkvHky+PBolEVF8np3feRofxDiexN3ox2lE+aLQjvJtoWg+yPN8mmaFQbwymR6NiuTk3R+r6+/8FlHmt6Mfg/LQ2dtGmX9j9/52NrOQnxZ1PFuNPyzy96Ifz5+Fl/L3GvIx6sSrLy/Ufyf68dP78WGM43FZxDz/+XaWvZ5/88en7xTlFflkejTqlv3m8q168OkN3yMAAAAAAAAAAAAAAAAAAAAAAP5/7lR753Sj3L+nOFTtv7N1WnzRjqw2WN6fZ5ZP6gvN9weKVp7n0zy+rffXuZtlWV51nOfTeCGtNhYEAAAAAAAAAAAAAAAAAACAW+7w40/298bjJwfX0qh3A0gj4s+HEf/0OsOFIy/F6s7dasy98bhVNZf7pItHYqvuk0SsLKOYxDUty2WNZy7UXDW++74xVczoMI2mU73LB203j3XFxkft2To29qmfrv29pHkNu2fF94obF+dvXCeaR2/HuSOdv6uwfhTXm06n8VT/ysvSea5sTFf0iWTV98Vrv87KXpjFUp9OuaqN8XbVWIifezbWep6jN4tf/FmR2K0DAAAAAAAAAAAAAAAAAAA2av7Xvw0nj1dGW3l3Y2UBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwI2a////dRrpcniNVCcODv+tuQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHB7/BUAAP//vaZV2Q==")
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000200)={0xaa, 0x2cc})
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, 0x0, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x103a42, 0x32)
ftruncate(r1, 0x6000000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000853)
syz_emit_ethernet(0x0, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0)
syz_clone(0x48411, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x0, 0x0, 0x0, 0xc, 0x0)
r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000002200), 0x40280, 0x0)
ioctl$int_in(r3, 0x5452, &(0x7f0000002380)=0x1)
write$tun(0xffffffffffffffff, 0x0, 0x0)
ioctl$OCFS2_IOC_RESVSP64(r2, 0x4030582a, &(0x7f0000000580)={0x1, 0x0, 0x2, 0x78a8, 0x9, 0x10})
inotify_add_watch(r1, &(0x7f0000000040)='./file1\x00', 0x44000000)

3m52.416276621s ago: executing program 3 (id=1352):
setuid(0xee00)
ioprio_set$uid(0x0, 0x0, 0x2004)

3m52.081933957s ago: executing program 3 (id=1353):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x0, 0x20}, 0xc)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x5, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000180)="1a", 0x1a958, 0x0, &(0x7f0000000440)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
writev(r0, &(0x7f00000008c0)=[{0x0}, {&(0x7f0000000480)="d04fc2edf5c9a541c006715b6e25fa29b38e99bb7e65f3837aa57d5553f2869ac1c0d66e1e6b4d285185e5ca8dde5a9f5f1612d0a665ef36d3ac30d63b402016fd6e8653cfc2873f1740e1e33c256b865e3aeeb650a85f6d0c6b604a91f20651ffcbbc0dfc9144c82586fbf03940818177397cbb61", 0x75}, {&(0x7f0000000540)="fd", 0x1}, {&(0x7f0000000580)="d967630ac1c5e49b7bd3464d6d166d532239564764c79cfb6b6b72405c0c1d43fdb1f2013b9a5db86995a0db998e38c80b24fed7c66386f45b482d6323e1c6c1fad871029fd6fb1eb45513f26d20a862b689e9b31b15d66ac7843c65fc876c6ad83bcda0077f6600ffbec551d8b163cf1af2eeb5da5226b451c3df64bb6b4c4e88e0493e0e4318bcd57436085864a2640b58515e34ba1a906f36bc403257e167e2a3316abd1eb40a2e93004a0ab8d535f018ea071c24aa911d4cdefa2148dd93a9689467bee20c27bdacb84952d1381ece5aed84059fb8b489b428f2ed6a6b55dd32a8a62c", 0xe5}, {&(0x7f0000000780)="0f02e3eb98e702efc24defeb5c6d95dff54b28c1275369d2a27aba46e1506ee7b5216786be41b4826e8fc8de1ceb479dabb6b2478af30f83a7cee5544df4b2f8aecc534558d2bf99c9c979fe2a4307065a7ec9941533c9710ef0d1f35d17a5fbbfa2aba8bd41151edcefa3cd9b45c412c4fd63ef6b877618af48d7948a01b3a0ba1bcc6ace95f036ac6c93e99b90b809ce415cb4c4690d33a16d7218083c377c37765feee624cf03ffa620a644e55768bcee2227051f707e171215fc16ac40608269064361dd763ddb67c7e639775e4c6192893fb6ae6aea3576baab3eb7c6d75070cb01ba92ce4af6", 0xe9}, {&(0x7f0000000880)}], 0x6)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
close_range(r1, 0xffffffffffffffff, 0x0)

3m51.737724311s ago: executing program 3 (id=1354):
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x48c803, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000080)=0x2, 0x4)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0x4002})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="050000005f000000430000000100000000000000", @ANYRES32, @ANYBLOB="00000000000000000000deaab52573bbb8a20000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
unshare(0x42000000)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCADDRT(r4, 0x890b, &(0x7f0000000840)={0x0, {0x2, 0x0, @rand_addr=0x64010100}, {0x4, 0x40, @remote}, {0x2, 0x0, @broadcast}, 0x1e5479436a6e0203, 0x0, 0x0, 0xfdffffffffffffff, 0x0, 0x0, 0x71cf0b8c, 0x800000000, 0x5})
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f0000000040)=[{0x20, 0x4, 0x0, 0xfffff010}, {0x30, 0x0, 0x0, 0x8000}, {0x6}]}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)

3m36.41970121s ago: executing program 45 (id=1354):
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x48c803, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000080)=0x2, 0x4)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0x4002})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="050000005f000000430000000100000000000000", @ANYRES32, @ANYBLOB="00000000000000000000deaab52573bbb8a20000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
unshare(0x42000000)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCADDRT(r4, 0x890b, &(0x7f0000000840)={0x0, {0x2, 0x0, @rand_addr=0x64010100}, {0x4, 0x40, @remote}, {0x2, 0x0, @broadcast}, 0x1e5479436a6e0203, 0x0, 0x0, 0xfdffffffffffffff, 0x0, 0x0, 0x71cf0b8c, 0x800000000, 0x5})
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f0000000040)=[{0x20, 0x4, 0x0, 0xfffff010}, {0x30, 0x0, 0x0, 0x8000}, {0x6}]}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)

3m23.826533649s ago: executing program 7 (id=1377):
r0 = socket$key(0xf, 0x3, 0x2)
recvfrom(r0, 0x0, 0x0, 0x2102, 0x0, 0x0)

3m23.065228246s ago: executing program 7 (id=1381):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000580)={0x2, 0x3, 0x0, 0x3, 0x7, 0x0, 0x70bd2c, 0x25dfdbfd, [@sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x7, 0xc}, @sadb_address={0x3, 0x5, 0x2b, 0x0, 0x0, @in={0x2, 0x4e20, @broadcast}}]}, 0x38}, 0x1, 0x7}, 0x0)

3m22.15224256s ago: executing program 7 (id=1384):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0500000005000000fd0900008500000041"], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r0}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000680), &(0x7f00000005c0), 0x6c, r0}, 0x38)

3m20.078551753s ago: executing program 7 (id=1386):
r0 = syz_open_dev$loop(&(0x7f00000000c0), 0x10001, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000009, 0x28011, r1, 0x0)
ioctl$BLKPG(r0, 0x1269, 0x0)

3m19.400116843s ago: executing program 7 (id=1387):
r0 = socket(0x10, 0x2, 0x0)
write(r0, &(0x7f0000000480)="1c0000001a009b8a140000003b00"/28, 0x1c)
recvmmsg(r0, &(0x7f00000043c0)=[{{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000200)=""/252, 0xfc}, {&(0x7f0000000180)=""/62, 0x3e}, {&(0x7f0000001c40)=""/71, 0x47}, {&(0x7f0000001d40)=""/4096, 0x1000}], 0x4}}, {{0x0, 0x0, 0x0}, 0xffffffff}], 0x2, 0x12122, 0x0)

3m18.416339779s ago: executing program 7 (id=1389):
socket(0x10, 0x3, 0xfb)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000200)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x800000, &(0x7f0000000100)={[{@bh}, {@delalloc}, {@oldalloc}, {@debug}, {@dioread_nolock}, {}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$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")
madvise(&(0x7f000014b000/0xc00000)=nil, 0xc00000, 0x15)
mkdirat(0xffffffffffffff9c, 0x0, 0x61)
symlink(0x0, &(0x7f0000000040)='./file0/file1\x00')
linkat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file1\x00', 0xffffffffffffff9c, &(0x7f00000003c0)='./file0/file2\x00', 0x1000)
accept4$vsock_stream(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x0, 0x0, @my=0x1}, 0x10, 0x800)

3m2.269933703s ago: executing program 46 (id=1389):
socket(0x10, 0x3, 0xfb)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000200)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x800000, &(0x7f0000000100)={[{@bh}, {@delalloc}, {@oldalloc}, {@debug}, {@dioread_nolock}, {}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
madvise(&(0x7f000014b000/0xc00000)=nil, 0xc00000, 0x15)
mkdirat(0xffffffffffffff9c, 0x0, 0x61)
symlink(0x0, &(0x7f0000000040)='./file0/file1\x00')
linkat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file1\x00', 0xffffffffffffff9c, &(0x7f00000003c0)='./file0/file2\x00', 0x1000)
accept4$vsock_stream(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x0, 0x0, @my=0x1}, 0x10, 0x800)

2m39.854512396s ago: executing program 6 (id=1442):
futex(0x0, 0x0, 0x4, 0x0, 0x0, 0x2)
futex(&(0x7f000000cffc)=0x3, 0x5, 0x2, 0x0, &(0x7f0000000000)=0x3, 0x3000000)

2m38.831605526s ago: executing program 6 (id=1444):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000004300), 0x1, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd2(0x0, 0x80000)
ioctl$KVM_HYPERV_EVENTFD(r1, 0x4018aebd, &(0x7f0000000000)={0x0, r2})
ioctl$KVM_HYPERV_EVENTFD(r1, 0x4018aebd, &(0x7f0000000100)={0x0, r2})

2m37.447157766s ago: executing program 6 (id=1448):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000001000)=@newae={0x64, 0x1e, 0x101, 0x70bd2d, 0x25dfdbfc, {{@in6=@private2, 0x4d3, 0xa, 0x33}, @in6=@remote, 0x4, 0x3500}, [@lifetime_val={0x24, 0x9, {0x6, 0x6, 0x1, 0x80000000}}]}, 0x64}, 0x1, 0x0, 0x0, 0x800}, 0x20000080)

2m36.655542996s ago: executing program 6 (id=1450):
socket$inet6_tcp(0xa, 0x1, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x40000, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x4f, 0x205)
sched_setaffinity(0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000000)='./file2\x00', 0x8040, &(0x7f0000000240)=ANY=[@ANYBLOB="6572726f72733d72656d6f756e742d726f2c756e695f786c6174653d312c756e695f786c6174653d302c757466383d302c73686f72746e616d653d6c6f7765722c73686f72746e616d653d6d697865642c696f636861727365743d64656661756c742c6e6f6e756d7461696c3d302c73686f72746e616d653d6c6f7765722c726f6469722c757466383d302c6572726f72733d72656d6f756e742d726f2c6572726f72733d636f6e74696e75652c756e695f786c6174653d302c756e695f786c6174653d302c646d61736b3d30303030303030303030303030303030303030303030312c747a3d5554432c6e6f6e756d7461696c3d302c73686f72746e616d653d6d697865642c6572726f72733d72656d6f756e742d726f2c6e6f6e756d7461696c3d302c6e6f6e756d7461696c3d302c756e695f786c6174653d302c73686f72746e616d653d6d697865642c73686f72746e616d653d77696e6e742c756e695f786c6174653d302c726f6469722c696f636861727365743d63703733372c73686f72746e616d653d77696e39352c696f636861727365743d6370313235312c73686f72746e616d653d77696e39352c73686f72746e616d653d77696e6e742c6e6f6e756d7461696c02002c00"], 0x1, 0x2d1, &(0x7f0000000740)="$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")
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000200)={0xaa, 0x2cc})
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, 0x0, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x103a42, 0x32)
ftruncate(r1, 0x6000000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000853)
syz_emit_ethernet(0x0, 0x0, 0x0)
r3 = syz_clone(0x48411, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
waitid(0x0, 0x0, 0x0, 0xc, 0x0)
r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000002200), 0x40280, 0x0)
ioctl$int_in(r4, 0x5452, &(0x7f0000002380)=0x1)
write$tun(0xffffffffffffffff, 0x0, 0x0)
ioctl$OCFS2_IOC_RESVSP64(r2, 0x4030582a, &(0x7f0000000580)={0x1, 0x0, 0x2, 0x78a8, 0x9, 0x10})
inotify_add_watch(r1, &(0x7f0000000040)='./file1\x00', 0x44000000)

2m34.504674552s ago: executing program 6 (id=1455):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_smc(0x2b, 0x1, 0x0)
syz_open_dev$video4linux(&(0x7f00000007c0), 0x3, 0x100)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet(0xa, 0x801, 0x84)
pipe(&(0x7f0000000040))
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="540000001000010400000000000000ffff0000", @ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e00140002800800010008000000060002000100000008000500", @ANYRES32=r0, @ANYBLOB='\b\x00\n\x00', @ANYRES64], 0x54}, 0x1, 0x0, 0x0, 0x81}, 0x0)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)

2m33.000191605s ago: executing program 6 (id=1457):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000200), r1)
getsockname$packet(r1, &(0x7f0000000440)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=@newlink={0x40, 0x10, 0x437, 0xfffffffe, 0x25dfdbff, {0x0, 0x0, 0x0, r2, 0x704c3, 0xc4a48b7f26bf141b}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @sit={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LOCAL={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x1c}}]}}}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x7}]}, 0x40}, 0x1, 0x0, 0x0, 0x20a7d52d1a3e1087}, 0x1000c014)
sendmmsg$inet(r0, &(0x7f00000018c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000080)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r2, @empty, @multicast1}}}], 0x20}}], 0x1, 0x4880)

2m29.547583736s ago: executing program 47 (id=1457):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000200), r1)
getsockname$packet(r1, &(0x7f0000000440)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=@newlink={0x40, 0x10, 0x437, 0xfffffffe, 0x25dfdbff, {0x0, 0x0, 0x0, r2, 0x704c3, 0xc4a48b7f26bf141b}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @sit={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LOCAL={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x1c}}]}}}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x7}]}, 0x40}, 0x1, 0x0, 0x0, 0x20a7d52d1a3e1087}, 0x1000c014)
sendmmsg$inet(r0, &(0x7f00000018c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000080)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r2, @empty, @multicast1}}}], 0x20}}], 0x1, 0x4880)

1m12.879913362s ago: executing program 9 (id=1625):
r0 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
openat$kvm(0xffffff9c, 0x0, 0x800, 0x0)
r3 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000140))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1})
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
r4 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r4, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000000)=""/59, 0x392000, 0x800, 0x0, 0x5}, 0x1c)
ioctl$UFFDIO_COPY(r3, 0xc028aa05, &(0x7f0000000040)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x40000000})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f0000000000)="0f79ab8c00ba200066b80000000066ef0f09660f38de16004026f0f650d1f3abcfdeef0f01c467670f01cb", 0x2b}], 0x1, 0x68, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1m10.327955603s ago: executing program 9 (id=1631):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})
r1 = syz_open_procfs(0x0, &(0x7f0000000440)='net/route\x00')
preadv(r1, &(0x7f0000000240)=[{&(0x7f00000000c0)=""/158, 0x9e}], 0x1, 0x80, 0x800003)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00009b3000/0x18000)=nil, 0x0, 0x0, 0x1, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x200000, &(0x7f0000000180), 0x3, 0x566, &(0x7f00000015c0)="$eJzs3V9rW+UfAPDvSdv9//3WwRjqhRR24WQuXVv/TBA2L0WHA72foc3KaLqMJh1rHWy7cDfeyBBEHIgvwHsvh2/AVyHoYMgoeuFN5aQnW9YkTZtlNvN8PnC25znnpN/z5DnPk+/JSUgAuTWR/lOIeDkivkoiDrdsG41s48TGfmuPbsymSxLr65/8kUSSrWvun2T/H8wqL0XEz19EnCy0x62trC6UKpXyUlafrC9enaytrJ66vFiaL8+Xr0zPzJx5a2b63XfeHlhbX7/w17cf3//gzJfH17758cGRu0mci0PZttZ2PINbrZWJmMiek7E4t2nHqQEEGyZJrx06nAPsvpFsnI9FOgccjpFs1AP/fTcjYh3IqcT4h5xq5gHNa/sBXQe/MB6+v3EB1N7+0Y33RmJf49rowFry1JVRer07PoD4aYyffr93N12ix/sQNwcQD6Dp1u2IOD062j7/Jdn817/T23jXb3OMvL3+wG66n+Y/b3TKfwqP85/okP8c7DB2+9F7/BceDCBMV2n+917H/Pfx1DU+ktX+18j5xpJLlyvl0xHx/4g4EWN703q/93Na8790SeM3c8HsOB6M7n36MXOleqnPcG0e3o545Un+m0Tb/L+vketu7v/0+biwzRjHyvde7batd/tbDT4DXv8h4rWO/f/kjlay9f3Jycb5MNk8K9r9eefYL93i76z9g5f2/4Gt2z+etN6vre08xvf7/i5329bv+b8n+bRR3pOtu16q15emIvYkH7Wvn37y2Ga9uX/a/hPHt57/Op3/+yPis222/87R7mnQMPT/3I76f+eFXz/8/Ltu8bfX/282SieyNduZ/7Z7gM/y3AEAAAAAAMCwKUTEoUgKxcflQqFY3Ph8x9E4UKhUa/WTl6rLV+ai8V3Z8RgrNO90H275PMRU9nnYZn16U30mIo5ExNcj+xv14my1MrfbjQcAAAAAAAAAAAAAAAAAAIAhcbDL9/9Tv43s9tEBz52f/Ib86jn+B/FLT8BQ8voP+WX8Q34Z/5Bfxj/kl/EP+WX8Q34Z/5Bfxj8AAAAAAAAAAAAAAAAAAAAAAAAAAAAM1IXz59Nlfe3Rjdm0PndtZXmheu3UXLm2UFxcni3OVpeuFuer1flKuThbXez19yrV6tWp6Vi+Plkv1+qTtZXVi4vV5Sv1i5cXS/Pli+Wxf6VVAAAAAAAAAAAAAAAAAAAA8GKprawulCqV8pJC18LZGIrD6LuQ9Orls9nJ0FeI0d1voMJzKOzyxAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALf4JAAD//5CPL9Y=")
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000500)={<r3=>0xffffffffffffffff})
recvmsg(r3, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000005c0)=""/151, 0x97}], 0x1, 0x0, 0xfffffffffffffeb4}, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0x4c, &(0x7f0000000080)={@random="a70b49c5294f", @multicast, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010100", 0x16, 0x11, 0xff, @empty, @local, {[], {0x0, 0xe22, 0x16, 0x0, @gue={{0x2, 0x0, 0x0, 0x3}, "00000000ffff"}}}}}}}, 0x0)
recvmmsg(r2, &(0x7f0000000040), 0x291962b, 0x45833af92e4b39ff, 0x0)

1m8.587247598s ago: executing program 9 (id=1638):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000180)=0x7f, 0x4)
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x44}}, 0xffffffff}, 0x1c)
write(r0, &(0x7f0000000300)="89ba41c97928dec7cec15a160d3dba2553b519a795020072aed129d4b5247c983455b3d757e8b2333a64d9abf416fd83f942661c47bcdf71f7d07ba20d03474a4a4bce636ea8d2b882b2b49ef18e2a96e41f206d930eda2769c5ee6d5e3d541ce9a21c3ce5cb5fbdad9a45de0000000000000000000000000000f1d3b9821c18", 0x80)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="5801000012001307"], 0x158}, 0x1, 0x0, 0x0, 0x24000884}, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f00000003c0)={[{@noauto_da_alloc}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@barrier}]}, 0x1, 0x43e, &(0x7f0000001380)="$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")
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="120141010dd88320030450f80800000003010902120001000010000904"], 0x0)
socket(0xa, 0x1, 0x0)
io_uring_setup(0x6a74, &(0x7f0000000180)={0x0, 0xaefa, 0x2000, 0x40})
socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x129942, 0x18)
fcntl$setlease(r2, 0x400, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x82040, 0x170)
openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x20040, 0x1ff)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x22060, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000280)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x2}]}, 0x10)
setsockopt$inet6_opts(r3, 0x29, 0x39, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], 0x1a0)
request_key(&(0x7f0000000000)='logon\x00', &(0x7f00000001c0)={'syz', 0x0}, &(0x7f00000000c0)='@^\x00', 0x0)

1m4.669671862s ago: executing program 9 (id=1648):
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip6_mr_vif\x00')
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x214802, &(0x7f0000000980)={[{@nojournal_checksum}, {@nombcache}, {@barrier}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@nodelalloc}, {@usrquota}, {@noauto_da_alloc}, {@bh}, {@init_itable}]}, 0xff, 0x551, &(0x7f0000000cc0)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x8000, 0xa0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x14, 0xd, "ef359f413bb9386ff7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e7376b7a5ff537ed73ac58818d78c660e677df8dc905b90242b7c528a076d2f6a00400", "036c5bc6780820d1cbf7966d61fdcf335263bd9b0abdc2542ded71038259ca171ce1a311ef545032d71e14ef3dc177e9b48b001d00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x8]})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
pwrite64(r2, &(0x7f0000000140)='2', 0xfdef, 0xe7c)
socket$key(0xf, 0x3, 0x2)
unshare(0x400)
socket$inet(0x2, 0xa, 0x0)
read$rfkill(r0, &(0x7f0000000080), 0x8)

1m2.924270949s ago: executing program 9 (id=1653):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e22, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000540)={{{@in=@private=0xa010101, @in6=@mcast1, 0x4e20, 0x7ff, 0x0, 0xfffe, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x10000000003, 0xfffffffffffffffe}, {0xffffffffffffffff, 0x0, 0xfffffffffffffffc, 0xff}, 0x0, 0x0, 0x1}, {{@in=@dev={0xac, 0x14, 0x14, 0x3c}, 0x0, 0x32}, 0x0, @in=@private=0xa010101, 0x0, 0x2, 0x0, 0xb7, 0xffffffde, 0xffffff7e}}, 0xe8)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x1c)

1m1.653036621s ago: executing program 9 (id=1657):
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0x3, 0xac5)
syz_clone3(&(0x7f0000000900)={0x23800000, &(0x7f0000000040)=<r0=>0xffffffffffffffff, 0x0, 0x0, {0x27}, 0x0, 0x0, 0x0, 0x0}, 0x58)
io_setup(0x8, &(0x7f0000000600)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000001300)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x6, r0, 0x0}])

58.740195477s ago: executing program 48 (id=1657):
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0x3, 0xac5)
syz_clone3(&(0x7f0000000900)={0x23800000, &(0x7f0000000040)=<r0=>0xffffffffffffffff, 0x0, 0x0, {0x27}, 0x0, 0x0, 0x0, 0x0}, 0x58)
io_setup(0x8, &(0x7f0000000600)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000001300)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x6, r0, 0x0}])

48.142835795s ago: executing program 1 (id=1681):
socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect$hid(0x5, 0x0, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x10200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
openat$cuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x6, 0x8, 0x8001, 0x0, 0x9, 0x0, 0x4, 0xfa11, 0x10}, 0x0)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, &(0x7f0000000200)={0x1, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0xfffd, 0x0, @ipv4={'\x00', '\xff\xff', @local}}}}, 0x108)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x1c, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0x6, 0x1, 0x0, 0x0, @str='\x16\x00'}]}, 0x1c}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000040)="704bf5ddec082d38277cd599f3e5441a687947fd7c78c8861e08e5daf58a258cee52c82a6ad6668ef01187bb25c994504e8abaee6931b5bfc7b3e78d7e1323b0a754c830889d8148bfe33c6814205fee39a06aebd717b487c522743bea193b694a7e4e6d615efb7a8de7", 0x6a}, {&(0x7f0000000200)="9f1d6354a2eb281438bb72042df7782a0122ed4a325534d75abca157dbea678b258ff89afdaf3833c436089b04fddb581551d434931e0990e272662ee46c53e2207b55da74af6d29d2619a42ee394c8758b1a3c8719883ffaf123523edd66d902081e3b1313598515a7c80330f3dff57716f000dc840232a2dcf2d8b724f4c77a4adc944668de60c67aa37102d0c903b7cf85a7f6442c2357eeb879627d6ee5ea7f96438e60d150f83362057c2c81f199710e271e005edcdbb1c66f8b6651f26b5e826d33cbe055451930fc623749bfc36298a6ad3", 0xd5}, {&(0x7f0000000340)="a6c88dd6650a2a8f33642893043f799944e368913e91805e65f91cc6eae92034a6db3df004b6d35033298e15d7f6bd1c7dd17aff885f84790ac6c2dbc8199383ebb5dbb03c9a13c5bddc51df5796378d20f011229bbcbeddf437ea1b2aed10534210805f3fb78bcf6a", 0x69}, {&(0x7f00000004c0)="b77e7e3bfcd84d3b85724a9a564e328a3633518b8404bf40cfc40534a4ae47cd9d67169045df25964fdb358ddb57735f8c1096ea5ed24603f29e81dd9f6faaa33244a0c755f5079860aa6642ab654535286bcf2cf7e0dbb867ae8030d17151d7da75ea3d5676c4d31639db9989eee0cfddff96ce0f10646b303afe8f0cf669936d84a0adbe5c42d1f295835d446189d6c45588b103c3", 0x96}], 0x4)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r6 = socket$inet6(0xa, 0x1, 0x100)
ioctl$ifreq_SIOCGIFINDEX_team(r6, 0x8933, &(0x7f0000000140))
sendmsg$nl_xfrm(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000780)=@newsa={0x140, 0x10, 0x1, 0xfffffffe, 0x25dfdbfd, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x80, 0x3c}, {@in=@broadcast, 0x4d4, 0x6c}, @in=@loopback, {0x0, 0x192, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8, 0x2}, {0xffffffffffffffff, 0x2a, 0x1f, 0x7b8}, {0x2, 0xfffffffc, 0xffffffbc}, 0x70bd2a, 0x0, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}, @XFRMA_IF_ID={0x8, 0x1f, 0x2}]}, 0x140}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r7, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r7, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r7, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x4}, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffa}, {}, 0x0, 0x0, 0x1}, {{@in6=@dev, 0x0, 0x32}, 0x0, @in=@private=0xa010100, 0x0, 0x0, 0x0, 0xb7, 0x2, 0xfffffffe}}, 0xe8)
sendmmsg(r7, &(0x7f0000007fc0), 0x800001d, 0x1c)

43.421116713s ago: executing program 1 (id=1691):
socket$xdp(0x2c, 0x3, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$netlink(0x10, 0x3, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000fc0))
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
socket$alg(0x26, 0x5, 0x0)
socket$alg(0x26, 0x5, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2000, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c0000001000010700000000000000000a000000060001"], 0x1c}, 0x1, 0x0, 0x0, 0x4004000}, 0x240080d0)

42.220926085s ago: executing program 1 (id=1693):
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000003b40)=[{{&(0x7f0000000240)=@generic={0x21, "1aee2c4f6843c6782466293e62d4f664c2efa8906f0d97822ac0d88ecdd9d47e182b3b523c6243022c1be9fd662325c023ac48a28ae996c41561bb7e9903c408613b4d29da0b9d5af499caa7759c17c667af8acea6dc52148f1233494efd8f08aaab6382d5e33471a107ec47df5b5312764e134c68842fd1a2078151812e"}, 0x80, &(0x7f00000009c0)=[{&(0x7f00000002c0)="f973085a6ea39ea1b25a1c6b351e11245900557d1c8e9f86bae5e5c64e50ef25afb0295d0c303850b4bff4d088bf9df67e013836e2882dad3f7698b52997f7efa9eb96f09be1c3019445927c6b2fe32d38ae2bcad2ac0d85ebd42914fb18b7d0670f8b3be16755ead6a6fb713fa618ce2cf424ea7cc84b04016b9a2afbfaf68803f1c1acb74fef", 0x87}, {&(0x7f0000000380)="82f294054d05973abfac6a6f31050418457d017c5fd68b034cf51b9f6a6d71daa5c776bca90037bc7c3d88b151fbf856f69ebd05e750f13f02af646b284953b6640a08c827c6f2ff4ad8e84077f9f03f94792aa17c4743cba3f355bb9c5b04b91ed70d253db68e17cdd561fab504479f723388dda974e2a9fb1bcda474c08d6222179b19e902009ea3cb3e42408bab6c1f29cb62d05805063967de38327e", 0x9e}, {&(0x7f0000000480)}, {&(0x7f0000000780)="8ff2f15bd0017ce4b36b6bc4335634254cffcc40c0312f5ff35991272b79d76712dc0c3cfdc0d70ce8004884e6917bed9ffee1584df7f06c7bccac71daf78bf3c68b8d5e56357654784bdbc700bceb1049c6a47d53c5ac29f83aed3ae9968fe8", 0x60}, {&(0x7f0000000800)="5193f0b40db29d9ce06f429ed3c2c6405967f1e559f08c35f5e63ad64c2746967cca1bbeaf6206a79c42badb4fb453f294c2932cb5552a5f9c1d633207a53c2f54d98c2f9e4323eac6c20c56e7607d212b210a0325f7c289d1a2552d7a3f2176a47e95bc46471fae9167768d58f22ff10ba3cc2050b1ee838ce9e4ac5a1544fec3e291272cfaaa4817539972fb8bb2ede331312f556ecea24236759bf0d51003477ec489820505cea6045a9939974c6f2ee3815378dc0a620982383e84", 0xbd}, {&(0x7f0000000900)="a9be9b2ff3a19d5a1226e5243d37d1fd2894c1ae880dc2316aa2d5ad08944c7135eb837eff354282dd5863c051eb7b9b17be0e4fdd6560f3f2c2c04af73a6cb75b5d05d6037f91e8f4f08e90", 0x4c}, {&(0x7f00000000c0)}], 0x7}}, {{&(0x7f0000000a40)=@alg={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_hmac_sha256\x00'}, 0x80, &(0x7f0000000600)=[{0x0}, {&(0x7f0000000ac0)="3eb85e3024a2953147f5444738e1388e15fef01893884c2eeb5c559f4a030ee6b08fca1e38ee56dac9cbbea3d6d43e34d9daf81d45289d2bc841e2c4c7072582b15ce7ff3e22b0f19d8a2643280daeb9791b2d0f9b216a0fda4f30804b739da3cce1691d6d88ff52d3e43b26d935d69e99673e98e92fe2fd18e63d4d5699814d9843367774e155678592d0eec07073e851f50827bde418748aa0741684fe603e34dc", 0xa2}, {&(0x7f0000000bc0)="61275006ed747229311198ab94c7e6699587b0d033c2f17d1ccbd45cba520b6888fbad95d4d6ae3cc7172b392f90693e992e52408ba7f1874d1767303d6acb170f216f71908f53a3be1833a25eb1fb2ba3913dcc1de30c5c7e914b13514dea44fb2b964aaa280d5a85512fede48830ca6ea5cd18ff95c871d91454240f370e0c8e2629e58605c4b29017a160709ec76547c92a21d0ec5589e228922b105d0b8b29256620c44d2118334025dedd46db5194f22b349264de22068d3d4db627db4fa827907e5bc02b69c36e94f8149f12116f75bd48aa86d41dfdf52e74b442782f530da1263fd0f699776e9459e33fe5", 0xef}, {&(0x7f0000000580)="8f966bd94d169820f6b844307d323b8c13deaeff91566b7f1725f39f", 0x1c}], 0x4, &(0x7f0000000cc0)=[@mark={{0x14, 0x1, 0x24, 0x9a9}}, @mark={{0x14, 0x1, 0x24, 0x4}}, @timestamping={{0x14, 0x1, 0x25, 0x101}}, @txtime={{0x18, 0x1, 0x3d, 0x2}}, @txtime={{0x18, 0x1, 0x3d, 0x80}}, @txtime={{0x18, 0x1, 0x3d, 0x9d}}], 0x90}}, {{0x0, 0x0, &(0x7f0000000f00)=[{&(0x7f0000000e00)="abc662f2a7dc713d226b612e712df36db5547daf508fb74a679224eba0fe5f05c530", 0x22}], 0x1}}], 0x3, 0x20000044)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'vlan1\x00'})
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)

40.568481916s ago: executing program 1 (id=1699):
socket$inet6_tcp(0xa, 0x1, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x40000, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x4f, 0x205)
sched_setaffinity(0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000000)='./file2\x00', 0x8040, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x1, 0x2d1, &(0x7f0000000740)="$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")
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000200)={0xaa, 0x2cc})
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x6, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x103a42, 0x32)
ftruncate(r0, 0x6000000)
sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000853)
syz_emit_ethernet(0x0, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0)
r1 = syz_clone(0x48411, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$setopts(0x4206, r1, 0x0, 0x0)
waitid(0x0, 0x0, 0x0, 0xc, 0x0)
r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000002200), 0x40280, 0x0)
ioctl$int_in(r2, 0x5452, &(0x7f0000002380)=0x1)
write$tun(0xffffffffffffffff, 0x0, 0x0)
ioctl$OCFS2_IOC_RESVSP64(0xffffffffffffffff, 0x4030582a, &(0x7f0000000580)={0x1, 0x0, 0x2, 0x78a8, 0x9, 0x10})
inotify_add_watch(r0, &(0x7f0000000040)='./file1\x00', 0x44000000)

39.04381494s ago: executing program 1 (id=1704):
r0 = syz_create_resource$binfmt(&(0x7f0000000000)='./file0\x00')
r1 = openat$binfmt(0xffffffffffffff9c, r0, 0x41, 0x1ff)
fcntl$setlease(r1, 0x400, 0x1)
r2 = syz_create_resource$binfmt(&(0x7f0000000000)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x1214040, 0x0)
pivot_root(&(0x7f00000001c0)='./file0\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x40000, 0x4e)
openat$binfmt(0xffffffffffffff9c, r2, 0x41, 0x1ff)

37.806248444s ago: executing program 1 (id=1707):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x7, 0xffffffff, 0x3}}}}]}, 0x4c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0x6, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_ADMIT_BYTES={0x8, 0x5, 0x8}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x240040e0}, 0x4890)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r4)
sendmsg$TIPC_CMD_ENABLE_BEARER(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c6572"], 0x38}}, 0x0)

35.761872468s ago: executing program 49 (id=1707):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x7, 0xffffffff, 0x3}}}}]}, 0x4c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0x6, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_ADMIT_BYTES={0x8, 0x5, 0x8}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x240040e0}, 0x4890)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r4)
sendmsg$TIPC_CMD_ENABLE_BEARER(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c6572"], 0x38}}, 0x0)

14.508193558s ago: executing program 0 (id=1764):
r0 = socket(0x40000000015, 0x5, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000000)=0x1, 0x4)
sendmmsg$inet(r0, &(0x7f00000004c0)=[{{&(0x7f0000001c00)={0x2, 0x4e29, @remote}, 0x10, &(0x7f00000005c0)=[{&(0x7f0000001c40)='~', 0x1}, {0x0}], 0x2}}], 0x1, 0x4000000)

13.84012011s ago: executing program 0 (id=1767):
socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect$hid(0x5, 0x0, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x10200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x6, 0x8, 0x8001, 0x0, 0x9, 0x0, 0x4, 0xfa11, 0x10}, 0x0)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, &(0x7f0000000200)={0x1, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0xfffd, 0x0, @ipv4={'\x00', '\xff\xff', @local}}}}, 0x108)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x1c, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0x6, 0x1, 0x0, 0x0, @str='\x16\x00'}]}, 0x1c}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000040)="704bf5ddec082d38277cd599f3e5441a687947fd7c78c8861e08e5daf58a258cee52c82a6ad6668ef01187bb25c994504e8abaee6931b5bfc7b3e78d7e1323b0a754c830889d8148bfe33c6814205fee39a06aebd717b487c522743bea193b694a7e4e6d615efb7a8de7", 0x6a}, {&(0x7f0000000200)="9f1d6354a2eb281438bb72042df7782a0122ed4a325534d75abca157dbea678b258ff89afdaf3833c436089b04fddb581551d434931e0990e272662ee46c53e2207b55da74af6d29d2619a42ee394c8758b1a3c8719883ffaf123523edd66d902081e3b1313598515a7c80330f3dff57716f000dc840232a2dcf2d8b724f4c77a4adc944668de60c67aa37102d0c903b7cf85a7f6442c2357eeb879627d6ee5ea7f96438e60d150f83362057c2c81f199710e271e005edcdbb1c66f8b6651f26b5e826d33cbe055451930fc623749bfc36298a6ad3", 0xd5}, {&(0x7f0000000340)="a6c88dd6650a2a8f33642893043f799944e368913e91805e65f91cc6eae92034a6db3df004b6d35033298e15d7f6bd1c7dd17aff885f84790ac6c2dbc8199383ebb5dbb03c9a13c5bddc51df5796378d20f011229bbcbeddf437ea1b2aed10534210805f3fb78bcf6a", 0x69}, {&(0x7f00000004c0)="b77e7e3bfcd84d3b85724a9a564e328a3633518b8404bf40cfc40534a4ae47cd9d67169045df25964fdb358ddb57735f8c1096ea5ed24603f29e81dd9f6faaa33244a0c755f5079860aa6642ab654535286bcf2cf7e0dbb867ae8030d17151d7da75ea3d5676c4d31639db9989eee0cfddff96ce0f10646b303afe8f0cf669936d84a0adbe5c42d1f295835d446189d6c45588b103c3", 0x96}], 0x4)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r6 = socket$inet6(0xa, 0x1, 0x100)
ioctl$ifreq_SIOCGIFINDEX_team(r6, 0x8933, &(0x7f0000000140))
sendmsg$nl_xfrm(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000780)=@newsa={0x140, 0x10, 0x1, 0xfffffffe, 0x25dfdbfd, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x80, 0x3c}, {@in=@broadcast, 0x4d4, 0x6c}, @in=@loopback, {0x0, 0x192, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8, 0x2}, {0xffffffffffffffff, 0x2a, 0x1f, 0x7b8}, {0x2, 0xfffffffc, 0xffffffbc}, 0x70bd2a, 0x0, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}, @XFRMA_IF_ID={0x8, 0x1f, 0x2}]}, 0x140}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r7, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r7, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r7, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x4}, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffa}, {}, 0x0, 0x0, 0x1}, {{@in6=@dev, 0x0, 0x32}, 0x0, @in=@private=0xa010100, 0x0, 0x0, 0x0, 0xb7, 0x2, 0xfffffffe}}, 0xe8)
sendmmsg(r7, &(0x7f0000007fc0), 0x800001d, 0x1c)

7.752651101s ago: executing program 5 (id=1779):
socket$inet(0x2, 0x2, 0x0)
syz_emit_ethernet(0x5a, &(0x7f0000000440)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd60ff00f500240600fc000000000000000000000000000001ff0200000000000000000000000000013c00000000000000010100000000000000004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="58c200bbc402ef00"], 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000029c0)=ANY=[@ANYBLOB="380000001a00010000000000000000000a00", @ANYRES32=0x0, @ANYBLOB="001b"], 0x38}}, 0x0)

7.223713073s ago: executing program 8 (id=1780):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
ioctl$FS_IOC_GETFSLABEL(r0, 0x400452c8, &(0x7f0000000100))

6.542550846s ago: executing program 5 (id=1782):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000700)=ANY=[@ANYBLOB="0a000007000000000000aaaaaaaaaa2981006d0086dd67000000003f06"], 0x52)

6.45952027s ago: executing program 8 (id=1783):
r0 = socket(0x40000000015, 0x5, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x3, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x10}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0xf)
bind$netlink(r1, &(0x7f00000000c0)={0x10, 0x0, 0x25dfdbfb, 0x2ffffffff}, 0xc)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r2, 0x0, 0x482, &(0x7f0000000040)={0x84, @broadcast, 0x4e21, 0x3, 'rr\x00', 0x1, 0x10000004, 0x8}, 0x2c)
r3 = socket$kcm(0xa, 0x2, 0x0)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f0000000000)={{0x84, @private=0xa010101, 0x4e21, 0x3, 'wrr\x00', 0x23, 0x81, 0x5}, {@dev={0xac, 0x14, 0x14, 0x3c}, 0x4e23, 0x10000, 0x1cb, 0x12d61, 0x12d58}}, 0x44)
socket$inet(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r4, 0x0, 0x487, &(0x7f0000000000)={{0x84, @rand_addr=0x64010100, 0x4e24, 0x3, 'lc\x00', 0x8, 0x323b, 0x55}, {@remote, 0x4e23, 0x10000, 0x0, 0x12d5c, 0x12d4c}}, 0x44)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000d00), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)={0x18, r5, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x41001}, 0x8000)
sendmsg$sock(r3, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev, 0xfffffeec}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000003c0)=0x6, 0xdc)
r6 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r6, &(0x7f0000000080)={0x0, 0x1, 0x3, 0x3, 0xfd}, 0x8)
write$rfkill(r6, &(0x7f0000000340)={0x6, 0x2, 0x3, 0x0, 0x1}, 0x8)
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x80}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x0, 0x0, 0xffff, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0xfffffffffffffffd, 0x1, 0x8, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x6}, 0x0, 0x0, 0x0, 0x0, 0x2}, {{@in=@rand_addr=0x64010102, 0x0, 0x33}, 0x2, @in=@loopback, 0x0, 0x0, 0x0, 0xb7, 0x0, 0x7fbfffd}}, 0xe8)
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, 0x0, 0x0)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc(aes))\x00'}, 0x58)
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r8, 0x6, 0x22, &(0x7f0000000200)=0xdf, 0x4)
ioctl$sock_SIOCETHTOOL(r8, 0x8946, &(0x7f0000000040)={'veth1\x00', &(0x7f00000002c0)=@ethtool_gstrings={0x4b, 0x3}})
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
accept4(r7, 0x0, 0x0, 0x0)

6.346125364s ago: executing program 2 (id=1784):
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000400)=ANY=[], 0x6f}, 0x1, 0x0, 0x0, 0x8040}, 0x0)

5.171954561s ago: executing program 2 (id=1785):
pipe(&(0x7f0000000000))
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd29, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x100, 0xe}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x4}, 0x0)
r5 = socket$unix(0x1, 0x2, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
r7 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000880)=@newtfilter={0x88, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r8, {0xffff, 0x5}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_matchall={{0xd}, {0x54, 0x2, [@TCA_MATCHALL_ACT={0x50, 0x2, [@m_ife={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_IFE_METALST={0x4}, @TCA_IFE_PARMS={0x1c, 0x1, {{0xec, 0xfbed, 0x10000002, 0x3, 0x4}, 0x1}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}]}, 0x88}}, 0x800)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r9)
socket$l2tp6(0xa, 0x2, 0x73)
ioctl$SIOCSIFHWADDR(r9, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
r10 = socket$kcm(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r11=>0x0})
sendmsg$kcm(r10, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, r11, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000140)='\r', 0x1}], 0x1}, 0x4)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
r12 = socket$kcm(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r13=>0x0})
sendmsg$kcm(r12, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, r13, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000200)='%', 0x1}], 0x1}, 0xc0)

4.911908022s ago: executing program 0 (id=1786):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500), 0xc)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f00000000c0)='./file2\x00', 0x20448a, &(0x7f0000000300), 0x12, 0x51a, &(0x7f0000001200)="$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")
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x1, 0x8000}, 0x4)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x8000}, 0x4)
r4 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x7005}, 0x4)
r5 = socket(0x10, 0x803, 0x0)
sendto(r5, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r5, &(0x7f00000008c0)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000100)=""/95, 0x5f}], 0x1}, 0xe}, {{0x0, 0x0, 0x0}, 0xfffff2cd}, {{0x0, 0x0, 0x0}, 0xb884}, {{0x0, 0x0, 0x0}, 0x8}, {{0x0, 0x0, 0x0}, 0x1107}, {{0x0, 0x0, 0x0}, 0x9}, {{0x0, 0x0, 0x0}}], 0x7, 0x40000000, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
syz_read_part_table(0x5df, &(0x7f0000000000)="$eJzs3DGIE1kYB/CXIBEFETs7gykichAh3UkEDXGQgAnBQ4s70c4t0qyVRYxgQCzMNhE5Gy0UYQ1aaCUiCCImFkIqUXavuN1l2eJY2CawLHMEZrvjYG/JHQe/Hzx4b97/zcfHMOVM4H8tHf6I4zgVQoj37vz0T/OVs+ey9dONCyGkwi8hhN/zs79OdlJJYvuuR5P1YrIuvt3TvDcf3en2Dhx+nd38nE72byVjZfjw8q6bY+qOXT/+/sh4dOhNNTwenBqc3N+8dK2fL7f7X+qvzjzNPtt+7oUp1X9Z+njwdmc26t4ozXyNWkvRanpjPTr/4FEhM9du5NdOJLkrU6rf3LqYef7kQ7mzvK/4qVqr9V58v59rVd51bo6GuW/ju1eT3MI/eLsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPj3Hbt+/P2R8ejQm2p4PDg1OLm/eelaP19u97/UX515mn12NMkVplT/Zenjwdud2ah7ozTzNWotRavpjfXo/INHhcxcu5FfO5HkrvzV4TiO27us39y6mHn+5EO5s7yv+Klaq/VefL+fa1XedW6Ohrlv47tXk9zC3l0WAgAAAAAAAAAAAAAAAAAAgL9ROXsuWz/duDCZ/xxC+GHmx7nJPE6+d08lue3/ACxOrqdDKL7d07w3H93p9g4cfp3d/Pxbkr+VjJXhw8v/QTvs0J8BAAD//9odjZ8=")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x42, 0x0)
r8 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
sendfile(r8, r7, 0x0, 0x80000000c)
ioctl$FS_IOC_GETFSMAP(r6, 0xc0c0583b, &(0x7f00000004c0)=ANY=[])
r9 = epoll_create1(0x0)
r10 = epoll_create1(0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, r10)
r11 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r11, 0x1, r10, &(0x7f0000000000)={0x20000002})
epoll_ctl$EPOLL_CTL_ADD(r11, 0x1, 0xffffffffffffffff, &(0x7f00000002c0)={0xa0000013})
epoll_ctl$EPOLL_CTL_ADD(r9, 0x1, r11, &(0x7f0000000580)={0xa0002008})
ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r1, 0x4068aea3, &(0x7f0000000340)={0xdf, 0x0, 0x18000})
ioctl$XFS_IOC_FSGEOMETRY_V4(r0, 0x8070587c, &(0x7f0000000600))

4.091971643s ago: executing program 5 (id=1787):
r0 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
sendto$netrom(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

3.017201591s ago: executing program 5 (id=1788):
r0 = socket(0x40000000015, 0x5, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f00000004c0)=[{{&(0x7f0000001c00)={0x2, 0x4e29, @remote}, 0x10, &(0x7f00000005c0)=[{&(0x7f0000001c40)='~', 0x1}, {0x0}], 0x2}}], 0x1, 0x4000000)

2.835051619s ago: executing program 0 (id=1789):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000300)=r1)
pselect6(0x40, &(0x7f0000000100)={0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x800, 0x0, 0x100000}, 0x0, &(0x7f0000000240)={0x1f, 0x2, 0xffff, 0x3, 0x4, 0x80000000000000, 0x6a9}, 0x0, 0x0)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f00000001c0)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000880)=""/91})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000001cc0)={0x1, 0x0, [{0x0, 0xffb, &(0x7f0000001d80)=""/4091}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0x1)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r0, 0xc400941d, &(0x7f0000000380)={0x0, 0x3ff, 0x5})

2.705423743s ago: executing program 2 (id=1790):
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
r0 = eventfd(0xfffffffc)
ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, &(0x7f0000000240)=r0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000456000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x69, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000040)={0x1, 0x0, [{0x4b564d02, 0xec000000, 0xcd}]})
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x3000001, 0x31, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_SREGS2(r3, 0x4140aecd, &(0x7f0000000580)={{0x1, 0xa000, 0xf, 0x1, 0x1, 0xfa, 0x3, 0x0, 0x0, 0x56, 0x4, 0x1}, {0x8080000, 0x2, 0xc, 0xf7, 0x3, 0x4, 0x8, 0xd2, 0x0, 0x26, 0x7}, {0xeeef0000, 0x60000, 0xb, 0xe, 0x4, 0xa, 0xfb, 0x0, 0x53, 0x0, 0x4}, {0x8080000, 0x80a0000, 0xe, 0x0, 0xfc, 0xb1, 0x8, 0xff, 0xe, 0xf8, 0x8, 0xff}, {0x3000, 0x10000, 0x10, 0x7, 0x9, 0x33, 0x80, 0x6, 0x6f, 0x6, 0x2, 0x10}, {0x4000, 0x3000, 0xf, 0x5, 0x3, 0x5, 0x4b, 0xff, 0x0, 0x2, 0xd9, 0xb}, {0x9000, 0xdddd0000, 0x1f, 0x5, 0x3, 0x2, 0x80, 0x2, 0x8, 0x0, 0x9, 0x8}, {0x58000, 0xa000, 0xe, 0x1, 0xd, 0x4, 0x0, 0xe, 0x6, 0x9, 0x40}, {0x80a0000, 0x1526}, {0x3000, 0x8}, 0xc0000022, 0x0, 0xd000, 0x130040, 0xf, 0x4000, 0x200000, 0x1, [0x3ff, 0x8001, 0x7fffffff, 0xfffffffffffffffb]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$VHOST_SET_VRING_KICK(0xffffffffffffffff, 0x4008af20, &(0x7f0000000040)={0x1, r0})
r4 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r4, 0x0, 0x0)
sendmmsg$inet(r4, &(0x7f0000005240), 0x4000095, 0x0)
setsockopt$inet_mreqn(r4, 0x0, 0x24, 0x0, 0x0)
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000140)={0x0, 0x1, 0x0, &(0x7f00000001c0)=""/43, 0x0})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x4030582a, 0x0)

2.551243597s ago: executing program 8 (id=1791):
socket$inet(0x2, 0x2, 0x0)
syz_emit_ethernet(0x5a, &(0x7f0000000440)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd60ff00f500240600fc000000000000000000000000000001ff0200000000000000000000000000013c00000000000000010100000000000000004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="58c200bbc402ef00"], 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000029c0)=ANY=[@ANYBLOB="380000001a00010000000000000000000a00", @ANYRES32=0x0, @ANYBLOB="001b"], 0x38}}, 0x0)

2.044236439s ago: executing program 5 (id=1792):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
ioctl$FS_IOC_GETFSLABEL(r0, 0x400452c8, &(0x7f0000000100))

1.880377283s ago: executing program 8 (id=1793):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2d}}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005e80)=[{{&(0x7f0000000100)={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f00000009c0)=[{&(0x7f0000000140)="2b3dcb037cf6eefdd865abf4cb8b1d17613cba0add0fc611e8e8edeb824ba694c30ed1d75eafde7ef357f25d275ad90b0ad65c4e3181039007d9096ab1a098bbd39415dc16914bbe91674f0deb1055864e2dc88798e3b3bf82e866c36f30af92cf204c04b58ef42e2744042bb5d5af77aff174539bd796f35aedbcaef63cce67d65f3321eb7700beef47308d9fc2b6d1a18e0484c097d27c0b2fc3b708c2897b9f55dd06c88b6db07b64431bff78a7eea64b1300bd6de2393e21f640e8b377e934245cd31a70d7f4823df271b235bd3d0b356a6bf5e7bd476d4ab8dd640f746dc0b90e080a494f", 0xe7}, {&(0x7f00000003c0)="fd3f12b11bb32a8a76e016794ce0643bb98d1c07715d51090783781fefb0a7b2b3e618c882ed4d2251b83d733eb420ce93c78f2f93f899e2bf36f1c58b9703d0ba118ad0b3f2cb5b3e51b06e5925d81e6e4fd80f4b3fec69874016431e01f64990254de92d67902dd61b93f3006dfe188282923bb8aa3c7af13dec03b0521221868f11d0301d273e3f6726d107520e8b6aed0a1b", 0x94}, {&(0x7f0000000600)="862581263117a595cc8b4d91c81820960c318c8396349d812700e75e525fa32b7544ceb489026264e882e6b071a12ffdb5e7ff35e2e1002046d831da9a75680854fe172d076b8dc3803ff9d26d49bf4b103373dff834806016adcd95ad25f436a81a0bd5d8cdc59c4ade543b23b68110ccfd37ccc3c778d40629a5e61b0e8cd6af005f30363c40c4bca955232d75b1609cd8da8771356513bf156c823aed462a5773220cfff599bc209f5f2d7baf2ac7cb7a896eb9708cef3b8c24cb243997889d197ee8bc4ab9a5c69628751008577fcf4074fbdee3591a3a2641", 0xdb}, {&(0x7f0000000e80)="853d812375877866806fdff43051b4023fa2334c45b8d31dff2233f12c7ffec14b58976722a067ecd394dcf55ad8bc6adf88e0dd053d47e5ddc3b08ac01e128339844430d1033bc401927fd38018f2b0e9b713aa160d7b265e90ca90a88cbb0b1493ccdd35f17ed434451c742e3d9c7607fb338490fb578a48c1853a42bbd171367e33a75c9cde0160143ad61ffad513ae1059f9e31087c6448fae895aa68e70fa53628160525c97bf79f68247bf691e8e46c94c3c0fa018fd9d10c19d7bf717ef1da47e10b55a09cb5e411146c03b26abef74a1b955c2202b9a4838f5b2495c6728602328820e2df2acfb22138f1d86c29f73641d1a55e8deadd320d9e951b33370ccebbd05a4d4358c514b5c7b695a9ec90b36ac77e9dd4e03569065d281b1b727a1692e26b8f363d7540e8ca2e806164a6fc46f8e2d2a6c128daf63a398077a13fbc0d539bda7fb8b904638e612482b548f1a089ec8d80fe0e6baf6379a037ce7efdf6ede864f2c8736b1abb71991ba15f2fd1372314390de9a3fa1a4eefc12dfd5bbf5c6606a4a5d2e08742f02fbc8aaa140a652369a2200736851cf259dde2999c8b2539d7702d0b37aae943e160e14d24b3eaa0b025d55a16c924f16e9eecebbc52b2069ba5223df0e252c78372aa13958a89a2b3a2044aa2275817ac942b261d2f2c25c45984b8af9dfa7652f7530aa4e714ad4c66b65ebaf42e223e415f1326bfd00d98bdaa4396a23aaa3623d0324beb61843f685a4e577247ae9b833aee04e55ae6d336d73513fc8cc62af87d2ba946a9c25d175e66990c636df62f853377274c1a04fb1fb235ee080cad746e239cdc728474812e995ac0c670f9885ad7704a28104492bd5c5f77f48efd5170cab39daa5b034349741fb857260796231aa7864e9517c159e7a5e05d86dd4f4185d0ece85f3bcdaf83dab3e2dfbe8ee2786b23b7f0dda7243e217382da2d3f481447f0f54f2d4b0d52e7afb07cc615c06699f53aadaf1073cbc7e40477acad0a92ec51ee421524bc082abb17cd85d21caf69dafb65e4896f5879c8c4e5a1ac91d4b9529da9cab44e27a88a1d446d5e59f6e186083d7b10ba0cee1933f62e8326fac01b12bdf3e6f7b9e18d729eb65d6e61bc29380e282347311220f54c7b52c3760a194a7a74f9aa418e09d298586750ec04e3c16d84658eaca1881922143eccd9ba1bc7b8174d597df913ef20f2c6af2863a1d4db8b2c7e6f2", 0x36b}], 0x4}}], 0x1, 0x40080a0)
setsockopt$inet_mtu(r0, 0x0, 0xa, &(0x7f0000000080)=0x4, 0x4)
sendmmsg$inet(r0, &(0x7f0000001a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40012)

1.224808642s ago: executing program 2 (id=1794):
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000400)=ANY=[], 0x6f}, 0x1, 0x0, 0x0, 0x8040}, 0x0)

896.787816ms ago: executing program 0 (id=1795):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000040900010073797a30000000008c000000090a010400000000000000000700000008000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d48001280140001800c000100636f756e7465720004000280200001800e000100636f6e6e6c696d69740000000c0002800800014000000008000001800b6fcf1a22796e736574000008000340000001"], 0xd4}}, 0x0)

823.978429ms ago: executing program 8 (id=1796):
socket$nl_route(0x10, 0x3, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x100, 0x0)
socket$unix(0x1, 0x1, 0x0)
r0 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
close(r0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r1, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @rand_addr=0x64010101, @dev={0xac, 0x14, 0x14, 0x21}}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)

716.952961ms ago: executing program 2 (id=1797):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000e00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000e40)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000380)={0x1c, r1, 0xf21, 0x0, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x48010}, 0x0)

699.238978ms ago: executing program 5 (id=1798):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500), 0xc)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f00000000c0)='./file2\x00', 0x20448a, &(0x7f0000000300), 0x12, 0x51a, &(0x7f0000001200)="$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")
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x1, 0x8000}, 0x4)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x8000}, 0x4)
r4 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x7005}, 0x4)
r5 = socket(0x10, 0x803, 0x0)
sendto(r5, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r5, &(0x7f00000008c0)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000100)=""/95, 0x5f}], 0x1}, 0xe}, {{0x0, 0x0, 0x0}, 0xfffff2cd}, {{0x0, 0x0, 0x0}, 0xb884}, {{0x0, 0x0, 0x0}, 0x8}, {{0x0, 0x0, 0x0}, 0x1107}, {{0x0, 0x0, 0x0}, 0x9}, {{0x0, 0x0, 0x0}}], 0x7, 0x40000000, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
syz_read_part_table(0x5df, &(0x7f0000000000)="$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")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x42, 0x0)
r8 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
sendfile(r8, r7, 0x0, 0x80000000c)
ioctl$FS_IOC_GETFSMAP(r6, 0xc0c0583b, &(0x7f00000004c0)=ANY=[])
r9 = epoll_create1(0x0)
r10 = epoll_create1(0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, r10)
r11 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r11, 0x1, r10, &(0x7f0000000000)={0x20000002})
epoll_ctl$EPOLL_CTL_ADD(r11, 0x1, 0xffffffffffffffff, &(0x7f00000002c0)={0xa0000013})
epoll_ctl$EPOLL_CTL_ADD(r9, 0x1, r11, &(0x7f0000000580)={0xa0002008})
ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r1, 0x4068aea3, &(0x7f0000000340)={0xdf, 0x0, 0x18000})
ioctl$XFS_IOC_FSGEOMETRY_V4(r0, 0x8070587c, &(0x7f0000000600))

88.868415ms ago: executing program 0 (id=1799):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=@newlink={0x50, 0x10, 0x1, 0x70bd6c, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0x2b24d, 0x55934}, [@IFLA_IFNAME={0x14, 0x3, 'netdevsim0\x00'}, @IFLA_VFINFO_LIST={0x18, 0x16, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@IFLA_VF_RATE={0x10, 0x6, {0x1000, 0xade, 0xfffffffb}}]}]}, @IFLA_IFALIASn={0x4}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000}, 0x4000040)

4.247087ms ago: executing program 8 (id=1800):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x6, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000f9ffffff0000000000000000850000002c00000095"], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000340)={r1, r2, 0x25, 0x0, @val=@iter={0x0}}, 0x20)
syz_emit_ethernet(0xdd0, &(0x7f0000000280)=ANY=[], 0x0)

0s ago: executing program 2 (id=1801):
r0 = socket(0x40000000015, 0x5, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f00000004c0)=[{{&(0x7f0000001c00)={0x2, 0x4e29, @remote}, 0x10, &(0x7f00000005c0)=[{&(0x7f0000001c40)='~', 0x1}, {0x0}], 0x2}}], 0x1, 0x4000000)

kernel console output (not intermixed with test programs):

llect_data cause=failed comm="syz.0.1326" name="file1" dev="loop0" ino=1048821 res=0 errno=0
[  859.710074][ T5788] Bluetooth: hci3: command tx timeout
[  859.788040][T10225] FAT-fs (loop0): error, corrupted directory (invalid entries)
[  859.867197][T10225] FAT-fs (loop0): error, corrupted directory (invalid entries)
[  860.075482][T10977] bridge0: port 1(bridge_slave_0) entered blocking state
[  860.084484][T10977] bridge0: port 1(bridge_slave_0) entered disabled state
[  860.094866][T10977] bridge_slave_0: entered allmulticast mode
[  860.115835][T10977] bridge_slave_0: entered promiscuous mode
[  860.223699][T10977] bridge0: port 2(bridge_slave_1) entered blocking state
[  860.231878][T10977] bridge0: port 2(bridge_slave_1) entered disabled state
[  860.239460][T10977] bridge_slave_1: entered allmulticast mode
[  860.283206][T10977] bridge_slave_1: entered promiscuous mode
[  860.369944][   T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  860.377929][   T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  860.697103][T10977] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  860.854774][   T57] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  860.927282][T10977] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  861.119622][   T57] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  861.272162][T10977] team0: Port device team_slave_0 added
[  861.353563][   T57] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  861.417386][T10977] team0: Port device team_slave_1 added
[  861.510322][ T7621] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  861.536675][ T7621] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  861.632098][T10977] batman_adv: batadv0: Adding interface: batadv_slave_0
[  861.639210][T10977] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  861.699944][T10977] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  861.738103][T10977] batman_adv: batadv0: Adding interface: batadv_slave_1
[  861.770269][T10977] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  861.804283][T10977] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  861.855501][   T57] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  862.474743][T10977] hsr_slave_0: entered promiscuous mode
[  862.485198][T10977] hsr_slave_1: entered promiscuous mode
[  862.570321][T10977] debugfs: 'hsr0' already exists in 'hsr'
[  862.576234][T10977] Cannot create hsr debugfs directory
[  862.805214][T11109] loop4: detected capacity change from 0 to 128
[  862.892376][T11109] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  863.031277][T11109] ext4 filesystem being mounted at /0/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  863.160149][T11109] EXT4-fs (loop4): shut down requested (1)
[  863.195487][T11109] fscrypt (loop4, inode 12): Error -5 getting encryption context
[  863.262810][T10921] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  863.288506][ T9345] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  863.304489][ T9345] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  863.322592][ T9345] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  863.348908][ T9345] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  863.366989][ T9345] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  863.526653][T10663] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  863.587034][T10921] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  863.634441][T10921] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  863.798954][   T57] bridge_slave_1: left allmulticast mode
[  863.842647][   T57] bridge_slave_1: left promiscuous mode
[  863.849197][   T57] bridge0: port 2(bridge_slave_1) entered disabled state
[  863.909370][   T57] bridge_slave_0: left allmulticast mode
[  863.950109][   T57] bridge_slave_0: left promiscuous mode
[  863.965236][   T57] bridge0: port 1(bridge_slave_0) entered disabled state
[  864.836049][   T57] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  864.885589][   T57] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  864.915610][   T57] bond0 (unregistering): Released all slaves
[  864.958114][T10921] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  865.136366][   T57] tipc: Left network mode
[  865.471487][ T9345] Bluetooth: hci4: command tx timeout
[  866.022427][   T57] hsr_slave_0: left promiscuous mode
[  866.045320][   T57] hsr_slave_1: left promiscuous mode
[  866.060451][   T57] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  866.068093][   T57] batman_adv: batadv0: Removing interface: batadv_slave_0
[  866.079587][   T57] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  866.097629][   T57] batman_adv: batadv0: Removing interface: batadv_slave_1
[  866.116961][T11152] loop4: detected capacity change from 0 to 256
[  866.124296][   T57] veth1_macvtap: left promiscuous mode
[  866.156265][   T57] veth0_macvtap: left promiscuous mode
[  866.166666][   T57] veth1_vlan: left promiscuous mode
[  866.187029][   T57] veth0_vlan: left promiscuous mode
[  866.212880][T11152] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  866.240338][T11152] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  866.287117][T11152] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  866.302234][T11155] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  866.302491][   T29] audit: type=1800 audit(1775642120.568:63): pid=11152 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1334" name="file1" dev="loop4" ino=1048852 res=0 errno=0
[  866.317586][T11152] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000001)
[  866.345543][   T29] audit: type=1800 audit(1775642120.608:64): pid=11155 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1334" name="file1" dev="loop4" ino=1048852 res=0 errno=0
[  866.528898][T10663] FAT-fs (loop4): error, corrupted directory (invalid entries)
[  866.560932][T10663] FAT-fs (loop4): error, corrupted directory (invalid entries)
[  867.233057][   T57] team0 (unregistering): Port device team_slave_1 removed
[  867.295638][   T57] team0 (unregistering): Port device team_slave_0 removed
[  867.550196][ T9345] Bluetooth: hci4: command tx timeout
[  868.501698][   T57] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  868.649605][   T57] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  868.835712][   T57] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  868.957716][   T57] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  869.193019][T11113] chnl_net:caif_netlink_parms(): no params data found
[  869.266306][T10977] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  869.354918][T10977] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  869.425223][T10977] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  869.630218][ T9345] Bluetooth: hci4: command tx timeout
[  869.766656][ T5788] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  869.785370][ T5788] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  869.797502][ T5788] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  869.825655][ T5788] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  869.831070][T10977] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  869.842891][ T5788] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  870.058767][T10921] 8021q: adding VLAN 0 to HW filter on device bond0
[  870.349148][T10921] 8021q: adding VLAN 0 to HW filter on device team0
[  870.401560][   T57] bridge_slave_1: left allmulticast mode
[  870.407379][   T57] bridge_slave_1: left promiscuous mode
[  870.440989][   T57] bridge0: port 2(bridge_slave_1) entered disabled state
[  870.490750][   T57] bridge_slave_0: left allmulticast mode
[  870.496996][   T57] bridge_slave_0: left promiscuous mode
[  870.512001][   T57] bridge0: port 1(bridge_slave_0) entered disabled state
[  871.172136][   T57] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  871.214340][   T57] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  871.235098][   T57] bond0 (unregistering): Released all slaves
[  871.368957][ T2985] bridge0: port 1(bridge_slave_0) entered blocking state
[  871.376498][ T2985] bridge0: port 1(bridge_slave_0) entered forwarding state
[  871.712107][ T9345] Bluetooth: hci4: command tx timeout
[  871.814542][T11113] bridge0: port 1(bridge_slave_0) entered blocking state
[  871.850146][T11113] bridge0: port 1(bridge_slave_0) entered disabled state
[  871.857751][T11113] bridge_slave_0: entered allmulticast mode
[  871.872164][ T9345] Bluetooth: hci0: command tx timeout
[  871.891610][T11113] bridge_slave_0: entered promiscuous mode
[  871.906765][T11113] bridge0: port 2(bridge_slave_1) entered blocking state
[  871.914580][T11113] bridge0: port 2(bridge_slave_1) entered disabled state
[  871.923115][T11113] bridge_slave_1: entered allmulticast mode
[  871.933479][T11113] bridge_slave_1: entered promiscuous mode
[  872.105639][ T2985] bridge0: port 2(bridge_slave_1) entered blocking state
[  872.113255][ T2985] bridge0: port 2(bridge_slave_1) entered forwarding state
[  872.205756][T11113] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  872.355739][T11113] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  872.612825][   T57] hsr_slave_0: left promiscuous mode
[  872.637103][   T57] hsr_slave_1: left promiscuous mode
[  872.654240][   T57] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  872.680623][   T57] batman_adv: batadv0: Removing interface: batadv_slave_0
[  872.702763][   T57] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  872.721615][   T57] batman_adv: batadv0: Removing interface: batadv_slave_1
[  872.767189][   T57] veth1_macvtap: left promiscuous mode
[  872.773127][   T57] veth0_macvtap: left promiscuous mode
[  872.778930][   T57] veth1_vlan: left promiscuous mode
[  872.797001][   T57] veth0_vlan: left promiscuous mode
[  873.698433][   T57] team0 (unregistering): Port device team_slave_1 removed
[  873.723785][   T57] team0 (unregistering): Port device team_slave_0 removed
[  873.949984][ T9345] Bluetooth: hci0: command tx timeout
[  874.165049][T11113] team0: Port device team_slave_0 added
[  874.276003][T11113] team0: Port device team_slave_1 added
[  874.489146][T11113] batman_adv: batadv0: Adding interface: batadv_slave_0
[  874.500015][T11113] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  874.569952][T11113] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  874.600351][T11113] batman_adv: batadv0: Adding interface: batadv_slave_1
[  874.607447][T11113] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  874.668071][T11113] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  875.134454][T11113] hsr_slave_0: entered promiscuous mode
[  875.155374][T11113] hsr_slave_1: entered promiscuous mode
[  876.007876][T10977] 8021q: adding VLAN 0 to HW filter on device bond0
[  876.030252][ T9345] Bluetooth: hci0: command tx timeout
[  876.225627][T11179] chnl_net:caif_netlink_parms(): no params data found
[  876.682498][T10977] 8021q: adding VLAN 0 to HW filter on device team0
[  876.744196][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[  876.751746][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[  876.914310][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[  876.921846][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[  877.149188][T10921] 8021q: adding VLAN 0 to HW filter on device batadv0
[  877.490034][T11179] bridge0: port 1(bridge_slave_0) entered blocking state
[  877.515078][T11179] bridge0: port 1(bridge_slave_0) entered disabled state
[  877.541615][T11179] bridge_slave_0: entered allmulticast mode
[  877.563768][T11179] bridge_slave_0: entered promiscuous mode
[  877.660006][T11179] bridge0: port 2(bridge_slave_1) entered blocking state
[  877.685839][T11179] bridge0: port 2(bridge_slave_1) entered disabled state
[  877.700835][T11179] bridge_slave_1: entered allmulticast mode
[  877.723998][T11179] bridge_slave_1: entered promiscuous mode
[  878.085752][T11179] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  878.123033][ T9345] Bluetooth: hci0: command tx timeout
[  878.195927][T11179] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  878.558963][T11179] team0: Port device team_slave_0 added
[  878.615102][T11179] team0: Port device team_slave_1 added
[  878.630853][T11113] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  878.847448][T11113] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  878.900942][T11179] batman_adv: batadv0: Adding interface: batadv_slave_0
[  878.908052][T11179] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  878.943497][T11179] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  878.965157][T11179] batman_adv: batadv0: Adding interface: batadv_slave_1
[  878.972465][T11179] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  879.007342][T11179] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  879.030831][T11113] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  879.063525][T11113] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  879.377594][T11179] hsr_slave_0: entered promiscuous mode
[  879.387711][T11179] hsr_slave_1: entered promiscuous mode
[  879.405147][T11179] debugfs: 'hsr0' already exists in 'hsr'
[  879.411454][T11179] Cannot create hsr debugfs directory
[  879.824595][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  879.833901][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  880.189116][T10977] 8021q: adding VLAN 0 to HW filter on device batadv0
[  880.471333][T10921] veth0_vlan: entered promiscuous mode
[  880.701542][T10921] veth1_vlan: entered promiscuous mode
[  881.302546][T10977] veth0_vlan: entered promiscuous mode
[  881.389021][T11113] 8021q: adding VLAN 0 to HW filter on device bond0
[  881.489134][T11113] 8021q: adding VLAN 0 to HW filter on device team0
[  881.677522][T10977] veth1_vlan: entered promiscuous mode
[  881.816270][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[  881.823809][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[  881.866689][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[  881.874232][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[  881.945724][T10921] veth0_macvtap: entered promiscuous mode
[  882.027502][T11179] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  882.151673][T11179] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  882.202387][T11179] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  882.232369][T11179] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  882.315750][T10921] veth1_macvtap: entered promiscuous mode
[  882.747741][T10977] veth0_macvtap: entered promiscuous mode
[  882.795120][T10921] batman_adv: batadv0: Interface activated: batadv_slave_0
[  882.868234][T10921] batman_adv: batadv0: Interface activated: batadv_slave_1
[  882.929301][T10977] veth1_macvtap: entered promiscuous mode
[  883.128199][   T13] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  883.151065][   T53] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  883.191457][  T546] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  883.274768][  T546] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  883.435906][T10977] batman_adv: batadv0: Interface activated: batadv_slave_0
[  883.580898][T10977] batman_adv: batadv0: Interface activated: batadv_slave_1
[  883.700940][   T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  883.719455][   T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  883.771242][   T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  883.800128][   T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  884.119338][T11113] 8021q: adding VLAN 0 to HW filter on device batadv0
[  884.229433][T11179] 8021q: adding VLAN 0 to HW filter on device bond0
[  884.484494][T11179] 8021q: adding VLAN 0 to HW filter on device team0
[  884.620561][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[  884.628035][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[  884.732133][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[  884.739574][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[  886.784417][T11113] veth0_vlan: entered promiscuous mode
[  887.007622][T11113] veth1_vlan: entered promiscuous mode
[  887.095047][T11179] 8021q: adding VLAN 0 to HW filter on device batadv0
[  887.468533][T11113] veth0_macvtap: entered promiscuous mode
[  887.581087][T11113] veth1_macvtap: entered promiscuous mode
[  887.862207][T11113] batman_adv: batadv0: Interface activated: batadv_slave_0
[  887.966774][T11113] batman_adv: batadv0: Interface activated: batadv_slave_1
[  888.169012][   T83] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  888.197842][   T83] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  888.291046][   T83] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  888.323875][   T83] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  889.682068][ T1119] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  889.734815][ T1119] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  889.828902][T11179] veth0_vlan: entered promiscuous mode
[  890.006373][T11179] veth1_vlan: entered promiscuous mode
[  890.015496][  T546] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  890.061369][  T546] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  890.202032][   T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  890.253822][   T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  890.563051][   T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  890.630669][   T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  890.765258][T11179] veth0_macvtap: entered promiscuous mode
[  890.889119][T11179] veth1_macvtap: entered promiscuous mode
[  891.118511][T11179] batman_adv: batadv0: Interface activated: batadv_slave_0
[  891.289181][T11179] batman_adv: batadv0: Interface activated: batadv_slave_1
[  891.461280][   T53] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  891.472428][ T9345] Bluetooth: hci3: unexpected event 0x10 length: 11 > 1
[  891.472689][ T9345] Bluetooth: hci3: hardware error 0xff
[  891.500553][   T53] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  891.601976][   T53] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  891.638064][   T53] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  892.721591][T11445] syzkaller0: entered promiscuous mode
[  892.752658][T11445] syzkaller0: entered allmulticast mode
[  893.630095][ T9345] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  894.731382][  T546] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  894.795497][  T546] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  895.079282][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  895.129870][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  896.465157][ T5788] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  896.475761][ T5788] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  896.485278][ T5788] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  896.498707][ T5788] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  896.510871][ T5788] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  897.272930][T11492] netlink: 328 bytes leftover after parsing attributes in process `syz.5.1361'.
[  897.428521][T11492] loop5: detected capacity change from 0 to 512
[  897.526579][T11492] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  897.600605][T11492] EXT4-fs (loop5): bad geometry: first data block is 0 with a 1k block and cluster size
[  897.656206][ T9916] hid_parser_main: 24 callbacks suppressed
[  897.656303][ T9916] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  897.751834][ T9916] hid-generic 0000:0000:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  897.875556][T11496] loop2: detected capacity change from 0 to 1024
[  897.990080][T11496] EXT4-fs (loop2): stripe (7) is not aligned with cluster size (4096), stripe is disabled
[  898.040103][T10274] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  898.093113][T11496] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  898.150955][T11496] EXT4-fs (loop2): orphan cleanup on readonly fs
[  898.195593][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  898.209979][T10274] usb 6-1: Using ep0 maxpacket: 32
[  898.250427][T10274] usb 6-1: New USB device found, idVendor=0403, idProduct=f850, bcdDevice= 0.08
[  898.310131][T10274] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  898.310872][T11496] EXT4-fs error (device loop2): __ext4_get_inode_loc:4797: comm syz.2.1362: Invalid inode table block 0 in block_group 0
[  898.340150][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  898.375155][T10274] usb 6-1: SerialNumber: syz
[  898.434112][T11496] loop2: lost filesystem error report for type 5 error -117
[  898.437602][T11496] EXT4-fs (loop2): Remounting filesystem read-only
[  898.445256][    C1] EXT4-fs (loop2): error count since last fsck: 1
[  898.445347][    C1] EXT4-fs (loop2): initial error at time 1775642152: __ext4_get_inode_loc:4797
[  898.445471][    C1] EXT4-fs (loop2): last error at time 1775642152: __ext4_get_inode_loc:4797
[  898.497480][T10274] usb 6-1: config 0 descriptor??
[  898.550745][T10274] ftdi_sio 6-1:0.0: FTDI USB Serial Device converter detected
[  898.573933][T10274] usb 6-1: Detected SIO
[  898.590308][ T5788] Bluetooth: hci5: command tx timeout
[  898.621980][T10274] usb 6-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  898.637365][T11482] chnl_net:caif_netlink_parms(): no params data found
[  898.645805][T11496] Quota error (device loop2): write_blk: dquota write failed
[  898.680520][T11496] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  898.747185][T11496] EXT4-fs (loop2): 1 truncate cleaned up
[  898.783272][T11496] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  899.128611][  T546] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  899.169886][  T546] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  899.426821][T10977] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  900.090630][T11516] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1363'.
[  900.282783][T11519] netlink: 52 bytes leftover after parsing attributes in process `syz.8.1341'.
[  900.446313][ T9916] usb 6-1: USB disconnect, device number 2
[  900.502146][ T9916] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  900.529874][ T9916] ftdi_sio 6-1:0.0: device disconnected
[  900.674151][ T5788] Bluetooth: hci5: command tx timeout
[  901.020412][T11482] bridge0: port 1(bridge_slave_0) entered blocking state
[  901.027889][T11482] bridge0: port 1(bridge_slave_0) entered disabled state
[  901.107778][T11482] bridge_slave_0: entered allmulticast mode
[  901.166377][T11482] bridge_slave_0: entered promiscuous mode
[  901.271284][ T5788] Bluetooth: hci4: unexpected event 0x10 length: 11 > 1
[  901.271532][ T5788] Bluetooth: hci4: hardware error 0xff
[  901.284575][T11524] loop2: detected capacity change from 0 to 512
[  901.293572][T11482] bridge0: port 2(bridge_slave_1) entered blocking state
[  901.318215][T11482] bridge0: port 2(bridge_slave_1) entered disabled state
[  901.414287][T11482] bridge_slave_1: entered allmulticast mode
[  901.508942][T11482] bridge_slave_1: entered promiscuous mode
[  901.644500][T11524] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  901.750502][T11524] ext4 filesystem being mounted at /7/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  901.875274][T11482] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  902.025305][T11482] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  902.534648][T11482] team0: Port device team_slave_0 added
[  902.614159][T11482] team0: Port device team_slave_1 added
[  902.656342][T11541] loop5: detected capacity change from 0 to 512
[  902.750254][ T9345] Bluetooth: hci5: command tx timeout
[  902.761319][T11541] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  902.770149][T10038] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  902.906038][T11482] batman_adv: batadv0: Adding interface: batadv_slave_0
[  902.929870][T11482] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  903.010172][T10038] usb 8-1: Using ep0 maxpacket: 8
[  903.032064][T10038] usb 8-1: config 1 has an invalid interface number: 53 but max is 0
[  903.059974][T10038] usb 8-1: config 1 has no interface number 0
[  903.066865][T11482] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  903.081531][T10038] usb 8-1: config 1 interface 53 has no altsetting 0
[  903.106299][T11482] batman_adv: batadv0: Adding interface: batadv_slave_1
[  903.140123][T10038] usb 8-1: New USB device found, idVendor=05ac, idProduct=0274, bcdDevice=af.04
[  903.175247][T10038] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  903.186046][T11482] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  903.240829][T10038] usb 8-1: Product: syz
[  903.245171][T10038] usb 8-1: Manufacturer: syz
[  903.280099][T10038] usb 8-1: SerialNumber: syz
[  903.350925][T11113] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  903.360023][T11482] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  903.474603][ T5788] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  903.581463][T10038] input: bcm5974 as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:1.53/input/input7
[  903.648373][ T5116] bcm5974 8-1:1.53: could not read from device
[  903.731165][ T5116] bcm5974 8-1:1.53: could not read from device
[  903.793152][T10038] usb 8-1: USB disconnect, device number 3
[  903.903157][T11482] hsr_slave_0: entered promiscuous mode
[  903.954064][T11482] hsr_slave_1: entered promiscuous mode
[  903.972874][T11482] debugfs: 'hsr0' already exists in 'hsr'
[  903.978746][T11482] Cannot create hsr debugfs directory
[  904.835865][ T5788] Bluetooth: hci5: command tx timeout
[  905.220053][ T9916] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  905.310246][  T794] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  905.341149][T10977] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  905.403441][ T9916] usb 6-1: config 17 has an invalid descriptor of length 0, skipping remainder of the config
[  905.437189][ T9916] usb 6-1: config 17 has 0 interfaces, different from the descriptor's value: 1
[  905.480110][ T9916] usb 6-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  905.489372][ T9916] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  905.556932][  T794] usb 8-1: Using ep0 maxpacket: 32
[  905.600504][  T794] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  905.612555][  T794] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  905.650173][  T794] usb 8-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  905.729973][  T794] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  905.806238][T10038] usb 6-1: USB disconnect, device number 3
[  905.817849][  T794] usb 8-1: config 0 descriptor??
[  906.352125][  T794] savu 0003:1E7D:2D5A.0009: item fetching failed at offset 5/8
[  906.429605][  T794] savu 0003:1E7D:2D5A.0009: parse failed
[  906.470169][  T794] savu 0003:1E7D:2D5A.0009: probe with driver savu failed with error -22
[  906.632805][  T794] usb 8-1: USB disconnect, device number 4
[  906.788610][T11482] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  906.917079][T11482] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  906.987716][T11482] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  907.169107][T11482] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  907.225243][T11567] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1375'.
[  907.371622][T11571] loop8: detected capacity change from 0 to 128
[  907.443792][T11571] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  907.540016][T11571] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  908.919970][T10416] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  908.995875][T11482] 8021q: adding VLAN 0 to HW filter on device bond0
[  909.100250][T10416] usb 9-1: Using ep0 maxpacket: 16
[  909.147248][T10416] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 2
[  909.183715][T10416] usb 9-1: config 0 interface 0 altsetting 252 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  909.257760][T11589] loop2: detected capacity change from 0 to 512
[  909.295831][T10416] usb 9-1: config 0 interface 0 altsetting 252 endpoint 0x81 has invalid wMaxPacketSize 0
[  909.354052][T11482] 8021q: adding VLAN 0 to HW filter on device team0
[  909.370199][T10416] usb 9-1: config 0 interface 0 has no altsetting 0
[  909.377055][T10416] usb 9-1: New USB device found, idVendor=0810, idProduct=0001, bcdDevice= 0.00
[  909.431780][T10416] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  909.505040][T10416] usb 9-1: config 0 descriptor??
[  909.530405][T11589] EXT4-fs error (device loop2): ext4_quota_enable:7217: comm syz.2.1382: inode #131072: comm syz.2.1382: iget: illegal inode #
[  909.680321][T11589] loop2: lost filesystem error report for type 5 error -117
[  909.689879][    C0] EXT4-fs (loop2): error count since last fsck: 1
[  909.704064][    C0] EXT4-fs (loop2): initial error at time 1775642163: ext4_quota_enable:7217
[  909.713024][    C0] EXT4-fs (loop2): last error at time 1775642163: ext4_quota_enable:7217
[  909.784996][T11589] EXT4-fs error (device loop2): ext4_quota_enable:7220: comm syz.2.1382: Bad quota inode: 131072, type: 2
[  909.879627][T11589] loop2: lost filesystem error report for type 5 error -117
[  909.882433][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  909.897446][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  909.936649][T11589] EXT4-fs warning (device loop2): ext4_enable_quotas:7261: Failed to enable quota tracking (type=2, err=-117, ino=131072). Please run e2fsck to fix.
[  909.981669][T11589] EXT4-fs (loop2): mount failed
[  909.994470][T10416] pantherlord 0003:0810:0001.000A: unknown main item tag 0x0
[  910.003124][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  910.010926][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  910.029046][T10416] pantherlord 0003:0810:0001.000A: unknown main item tag 0x0
[  910.066718][T10416] pantherlord 0003:0810:0001.000A: unknown main item tag 0x0
[  910.096669][T10416] pantherlord 0003:0810:0001.000A: unknown main item tag 0x0
[  910.191352][T10416] pantherlord 0003:0810:0001.000A: unknown main item tag 0x0
[  910.245711][T10416] pantherlord 0003:0810:0001.000A: unknown main item tag 0x0
[  910.285441][T10416] pantherlord 0003:0810:0001.000A: unknown main item tag 0x3
[  910.317777][T10416] pantherlord 0003:0810:0001.000A: unknown main item tag 0x3
[  910.378709][T10416] pantherlord 0003:0810:0001.000A: unknown main item tag 0x3
[  910.408423][T10416] pantherlord 0003:0810:0001.000A: unknown main item tag 0x3
[  910.460049][T10416] pantherlord 0003:0810:0001.000A: item fetching failed at offset 31/33
[  910.526774][T10416] pantherlord 0003:0810:0001.000A: parse failed
[  910.587945][T10416] pantherlord 0003:0810:0001.000A: probe with driver pantherlord failed with error -22
[  910.660062][T10416] usb 9-1: USB disconnect, device number 2
[  912.825752][T11623] netlink: 52 bytes leftover after parsing attributes in process `syz.8.1388'.
[  913.935062][T11634] loop2: detected capacity change from 0 to 1024
[  914.013150][T11634] EXT4-fs: Ignoring removed nomblk_io_submit option
[  914.134817][T11638] loop7: detected capacity change from 0 to 1024
[  914.208358][T11635] loop8: detected capacity change from 0 to 8192
[  914.315660][T11500]  loop8: p1 p2 p3
[  914.317242][T11634] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  914.325277][T11500] loop8: partition table partially beyond EOD, truncated
[  914.426328][T11638] EXT4-fs: Ignoring removed bh option
[  914.433641][T11500] loop8: p1 start 16384 is beyond EOD, truncated
[  914.446554][T11638] EXT4-fs: Ignoring removed oldalloc option
[  914.453082][T11638] EXT4-fs: Ignoring removed nomblk_io_submit option
[  914.461885][T11500] loop8: p2 size 150994944 extends beyond EOD, truncated
[  914.541339][T11500] loop8: p3 start 67108864 is beyond EOD, truncated
[  914.599470][T11635]  loop8: p1 p2 p3
[  914.640269][T11635] loop8: partition table partially beyond EOD, truncated
[  914.648365][T11635] loop8: p1 start 16384 is beyond EOD, truncated
[  914.717933][T11482] 8021q: adding VLAN 0 to HW filter on device batadv0
[  914.740144][T11638] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e841c01c, mo2=0003]
[  914.748796][T11638] System zones: 0-1, 3-36
[  914.762043][T11635] loop8: p2 size 150994944 extends beyond EOD, truncated
[  914.960872][T11635] loop8: p3 start 67108864 is beyond EOD, truncated
[  914.999338][T11638] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  916.739042][T11407] udevd[11407]: inotify_add_watch(7, /dev/loop8p2, 10) failed: No such file or directory
[  917.056861][T11407] udevd[11407]: inotify_add_watch(7, /dev/loop8p2, 10) failed: No such file or directory
[  917.703262][T10977] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  918.570189][T11673] loop2: detected capacity change from 0 to 512
[  918.608698][T11482] veth0_vlan: entered promiscuous mode
[  918.793391][T11673] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  918.891219][T11673] ext4 filesystem being mounted at /13/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  918.895210][T11482] veth1_vlan: entered promiscuous mode
[  919.368205][T11482] veth0_macvtap: entered promiscuous mode
[  919.442201][T11482] veth1_macvtap: entered promiscuous mode
[  919.661559][T11482] batman_adv: batadv0: Interface activated: batadv_slave_0
[  919.772060][T11482] batman_adv: batadv0: Interface activated: batadv_slave_1
[  919.899928][   T13] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  919.944682][   T13] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  920.045238][   T13] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  920.064143][   T13] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  920.644035][T11685] loop8: detected capacity change from 0 to 16
[  920.720783][T11685] erofs (device loop8): mounted with root inode @ nid 36.
[  921.732334][T11692] netlink: 52 bytes leftover after parsing attributes in process `syz.8.1400'.
[  922.612197][T10977] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  923.418040][T11708] loop5: detected capacity change from 0 to 256
[  923.518405][T11708] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  923.630048][T11708] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  923.727461][T11708] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  923.830362][T11708] exFAT-fs (loop5): failed to load alloc-bitmap
[  923.863984][T11708] exFAT-fs (loop5): failed to recognize exfat type
[  924.786277][  T794] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  926.720188][  T794] usb 9-1: Using ep0 maxpacket: 8
[  927.791274][  T794] usb 9-1: unable to read config index 0 descriptor/all
[  927.798517][  T794] usb 9-1: can't read configurations, error -71
[  928.341364][T11733] loop8: detected capacity change from 0 to 256
[  928.381001][T10274] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  928.460370][T11733] exfat: Deprecated parameter 'namecase'
[  928.612018][T11733] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  928.641865][T10274] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  928.682851][T10274] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  928.762003][T10274] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  928.789898][T10274] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  928.860243][T10274] usb 6-1: SerialNumber: syz
[  929.192292][T10274] usb 6-1: 0:2 : does not exist
[  929.197390][T10274] usb 6-1: unit 5: unexpected type 0x09
[  929.730696][T10274] usb 6-1: USB disconnect, device number 4
[  929.940206][T11407] udevd[11407]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  930.507890][ T9345] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  930.520489][ T9345] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  930.530671][ T9345] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  930.560729][ T9345] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  930.579551][ T9345] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  931.512799][T11755] netlink: 52 bytes leftover after parsing attributes in process `syz.8.1410'.
[  931.990119][ T7621] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  931.998112][ T7621] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  932.701753][   T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  932.757335][   T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  932.759893][ T5788] Bluetooth: hci6: command tx timeout
[  934.004260][T11749] chnl_net:caif_netlink_parms(): no params data found
[  934.041625][T11772] loop6: detected capacity change from 0 to 256
[  934.466212][T11772] FAT-fs (loop6): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  934.500745][T11772] FAT-fs (loop6): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  934.650446][T11772] FAT-fs (loop6): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  934.741370][T11777] FAT-fs (loop6): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  934.752635][   T29] audit: type=1800 audit(1775642189.008:65): pid=11772 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.1358" name="file1" dev="loop6" ino=1048905 res=0 errno=0
[  934.841915][ T5788] Bluetooth: hci6: command tx timeout
[  934.891055][T11772] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000001)
[  934.957724][   T29] audit: type=1800 audit(1775642189.108:66): pid=11777 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.1358" name="file1" dev="loop6" ino=1048905 res=0 errno=0
[  936.920330][ T5788] Bluetooth: hci6: command tx timeout
[  937.629926][T11749] bridge0: port 1(bridge_slave_0) entered blocking state
[  937.687575][T11749] bridge0: port 1(bridge_slave_0) entered disabled state
[  937.771610][T11749] bridge_slave_0: entered allmulticast mode
[  937.832129][T11749] bridge_slave_0: entered promiscuous mode
[  937.940068][T11749] bridge0: port 2(bridge_slave_1) entered blocking state
[  937.986816][T11749] bridge0: port 2(bridge_slave_1) entered disabled state
[  938.048128][T11749] bridge_slave_1: entered allmulticast mode
[  938.080980][T11796] loop6: detected capacity change from 0 to 16
[  938.108016][T11749] bridge_slave_1: entered promiscuous mode
[  938.251246][T11796] erofs (device loop6): mounted with root inode @ nid 36.
[  938.456960][T11796] syz.6.1417: attempt to access beyond end of device
[  938.456960][T11796] loop6: rw=8912896, sector=1342177272, nr_sectors = 32 limit=16
[  938.569211][T11796] syz.6.1417: attempt to access beyond end of device
[  938.569211][T11796] loop6: rw=8388608, sector=1342177272, nr_sectors = 8 limit=16
[  938.757057][   T29] audit: type=1800 audit(1775642193.008:67): pid=11796 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.1417" name="file1" dev="loop6" ino=86 res=0 errno=0
[  938.873889][T11796] syz.6.1417: attempt to access beyond end of device
[  938.873889][T11796] loop6: rw=8388608, sector=1342177272, nr_sectors = 8 limit=16
[  938.990167][ T5788] Bluetooth: hci6: command tx timeout
[  939.044441][T11749] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  939.196412][T11749] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  939.402117][T11805] netlink: 'syz.2.1419': attribute type 3 has an invalid length.
[  939.460285][T11805] netlink: 'syz.2.1419': attribute type 3 has an invalid length.
[  939.520122][T11805] netlink: 112 bytes leftover after parsing attributes in process `syz.2.1419'.
[  939.611932][T11807] netlink: 52 bytes leftover after parsing attributes in process `syz.8.1420'.
[  939.932601][T11749] team0: Port device team_slave_0 added
[  940.019522][T11749] team0: Port device team_slave_1 added
[  940.545738][T11749] batman_adv: batadv0: Adding interface: batadv_slave_0
[  940.587684][T11749] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  940.792144][T11749] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  940.905306][T11749] batman_adv: batadv0: Adding interface: batadv_slave_1
[  940.920168][T11749] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  941.041839][T11749] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  941.283161][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  941.296882][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  941.656310][T11822] loop2: detected capacity change from 0 to 256
[  941.926513][T11749] hsr_slave_0: entered promiscuous mode
[  941.956586][T11749] hsr_slave_1: entered promiscuous mode
[  941.997755][T11749] debugfs: 'hsr0' already exists in 'hsr'
[  942.039941][T11749] Cannot create hsr debugfs directory
[  942.274921][T11822] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  942.390732][T11822] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  942.430139][T11822] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  942.534707][T11822] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000001)
[  942.542932][   T29] audit: type=1800 audit(1775642196.798:68): pid=11822 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1425" name="file1" dev="loop2" ino=1048906 res=0 errno=0
[  944.251429][T11842] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1430'.
[  944.872691][T10008] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  945.090184][T10008] usb 9-1: Using ep0 maxpacket: 32
[  945.165503][T10008] usb 9-1: config 0 has an invalid interface number: 188 but max is 0
[  945.199931][T10008] usb 9-1: config 0 has no interface number 0
[  945.237478][T10008] usb 9-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  945.307498][T10008] usb 9-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  945.352279][T10008] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  945.399682][T10008] usb 9-1: Product: syz
[  945.439994][T10008] usb 9-1: Manufacturer: syz
[  945.449175][T10008] usb 9-1: SerialNumber: syz
[  945.501871][T10008] usb 9-1: config 0 descriptor??
[  945.512341][T11849] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  945.846020][T11849] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  945.997325][T11749] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  946.164126][T11749] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  946.287924][T10008] asix 9-1:0.188 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61
[  946.328022][T11749] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  946.345966][T10008] asix 9-1:0.188: probe with driver asix failed with error -61
[  946.537699][T11749] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  946.873226][T11858] netlink: 52 bytes leftover after parsing attributes in process `syz.6.1433'.
[  947.650803][T10038] usb 9-1: USB disconnect, device number 5
[  948.515495][T11749] 8021q: adding VLAN 0 to HW filter on device bond0
[  948.879039][T11749] 8021q: adding VLAN 0 to HW filter on device team0
[  949.051944][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[  949.059418][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[  949.141735][T11874] loop6: detected capacity change from 0 to 512
[  949.330691][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[  949.335906][T11876] loop2: detected capacity change from 0 to 256
[  949.338111][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[  949.467817][T11879] loop8: detected capacity change from 0 to 512
[  949.602617][T11879] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended
[  949.676207][T11879] EXT4-fs (loop8): couldn't mount as ext2 due to feature incompatibilities
[  949.760008][T11876] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  949.900404][T11876] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  949.990601][T11876] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  950.176669][   T29] audit: type=1800 audit(1775642204.438:69): pid=11876 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1438" name="file1" dev="loop2" ino=1048908 res=0 errno=0
[  950.177293][T11876] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000001)
[  952.007514][T11893] loop2: detected capacity change from 0 to 128
[  952.369578][T11893] netlink: 'syz.2.1441': attribute type 29 has an invalid length.
[  952.563316][T11900] netlink: 52 bytes leftover after parsing attributes in process `syz.5.1443'.
[  953.434383][T11749] 8021q: adding VLAN 0 to HW filter on device batadv0
[  954.385735][T11749] veth0_vlan: entered promiscuous mode
[  954.552670][T11749] veth1_vlan: entered promiscuous mode
[  955.301277][T11924] loop6: detected capacity change from 0 to 256
[  955.354690][  T546] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  955.637998][T11924] FAT-fs (loop6): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  955.712938][T11924] FAT-fs (loop6): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  955.783431][  T546] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  955.841946][T11924] FAT-fs (loop6): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  956.042273][T11924] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000001)
[  956.079961][   T29] audit: type=1800 audit(1775642210.308:70): pid=11924 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.1450" name="file1" dev="loop6" ino=1048909 res=0 errno=0
[  956.187085][T11749] veth0_macvtap: entered promiscuous mode
[  956.834343][  T546] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  957.016046][T11749] veth1_macvtap: entered promiscuous mode
[  957.041274][T11482] FAT-fs (loop6): error, corrupted directory (invalid entries)
[  957.049580][T11482] FAT-fs (loop6): error, corrupted directory (invalid entries)
[  957.209267][T11943] loop2: detected capacity change from 0 to 512
[  957.214975][  T546] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  957.501512][T11943] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  957.544457][T11943] ext4 filesystem being mounted at /27/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  957.717362][T11749] batman_adv: batadv0: Interface activated: batadv_slave_0
[  957.957424][T11749] batman_adv: batadv0: Interface activated: batadv_slave_1
[  958.378946][T11950] loop8: detected capacity change from 0 to 128
[  958.528384][   T53] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  958.590661][   T53] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  958.969985][   T35] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  959.072085][   T53] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  959.148334][  T546] bridge_slave_1: left allmulticast mode
[  959.188048][  T546] bridge_slave_1: left promiscuous mode
[  959.216975][  T546] bridge0: port 2(bridge_slave_1) entered disabled state
[  959.322088][  T546] bridge_slave_0: left allmulticast mode
[  959.327974][  T546] bridge_slave_0: left promiscuous mode
[  959.371910][  T546] bridge0: port 1(bridge_slave_0) entered disabled state
[  960.695348][  T546] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  960.762658][  T546] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  960.845339][  T546] bond0 (unregistering): Released all slaves
[  961.212740][T10977] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  962.000298][  T546] hsr_slave_0: left promiscuous mode
[  962.113316][  T546] hsr_slave_1: left promiscuous mode
[  962.171427][  T546] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  962.237390][  T546] batman_adv: batadv0: Removing interface: batadv_slave_0
[  962.266710][T11972] loop2: detected capacity change from 0 to 512
[  962.324217][  T546] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  962.400045][  T546] batman_adv: batadv0: Removing interface: batadv_slave_1
[  962.582883][T11972] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  962.648660][  T546] veth1_macvtap: left promiscuous mode
[  962.697115][T11972] ext4 filesystem being mounted at /28/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  962.707860][  T546] veth0_macvtap: left promiscuous mode
[  962.745512][  T546] veth1_vlan: left promiscuous mode
[  962.790148][  T546] veth0_vlan: left promiscuous mode
[  963.323475][ T9345] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  963.351941][ T9345] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  963.361355][ T9345] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  963.379376][ T9345] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  963.399630][ T9345] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  963.487171][T11981] loop8: detected capacity change from 0 to 1024
[  963.588898][T11981] EXT4-fs (loop8): bad geometry: bigalloc file system with non-zero first_data_block
[  963.588898][T11981] 
[  965.396207][T11993] loop8: detected capacity change from 0 to 256
[  965.461584][  T546] team0 (unregistering): Port device team_slave_1 removed
[  965.470296][ T5788] Bluetooth: hci1: command tx timeout
[  965.588268][T11995] loop5: detected capacity change from 0 to 128
[  965.620475][  T546] team0 (unregistering): Port device team_slave_0 removed
[  965.759265][T11995] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  965.802031][T11993] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  965.880127][T11995] ext4 filesystem being mounted at /21/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  965.911643][T11993] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  965.975889][T11993] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  966.014755][T12000] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  966.025471][   T29] audit: type=1800 audit(1775642220.278:71): pid=11993 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.1464" name="file1" dev="loop8" ino=1048936 res=0 errno=0
[  966.134720][T11993] FAT-fs (loop8): error, invalid access to FAT (entry 0x00000001)
[  966.161636][   T29] audit: type=1800 audit(1775642220.428:72): pid=12000 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.1464" name="file1" dev="loop8" ino=1048936 res=0 errno=0
[  966.354886][T11993] ptrace attach of "./syz-executor exec"[12006] was attempted by "./syz-executor exec"[11993]
[  966.532386][T10977] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  967.142686][T11113] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  967.550251][ T9345] Bluetooth: hci1: command tx timeout
[  967.909937][   T24] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  968.132448][   T24] usb 9-1: Using ep0 maxpacket: 32
[  968.183423][   T24] usb 9-1: config 0 has an invalid interface number: 35 but max is 0
[  968.260393][   T24] usb 9-1: config 0 has no interface number 0
[  968.266690][   T24] usb 9-1: config 0 interface 35 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[  968.331527][   T24] usb 9-1: config 0 interface 35 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  968.334592][  T546] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  968.431404][   T24] usb 9-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.ad
[  968.463165][   T24] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  968.493366][   T24] usb 9-1: Product: syz
[  968.497707][   T24] usb 9-1: Manufacturer: syz
[  968.543818][   T24] usb 9-1: SerialNumber: syz
[  968.582779][   T24] usb 9-1: config 0 descriptor??
[  968.783470][  T546] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  968.842028][   T24] radio-si470x 9-1:0.35: this is not a si470x device.
[  968.912276][ T9345] Bluetooth: hci2: command 0x0406 tx timeout
[  969.338069][  T546] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  969.420561][   T24] radio-raremono 9-1:0.35: this is not Thanko's Raremono.
[  969.528929][T11980] chnl_net:caif_netlink_parms(): no params data found
[  969.544800][ T9483] usb 6-1: new full-speed USB device number 5 using dummy_hcd
[  969.630035][ T5788] Bluetooth: hci1: command tx timeout
[  969.832190][  T546] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  969.983262][ T9483] usb 6-1: unable to get BOS descriptor or descriptor too short
[  970.021389][ T9483] usb 6-1: unable to read config index 0 descriptor/start: -71
[  970.032101][T12043] random: crng reseeded on system resumption
[  970.052670][ T9483] usb 6-1: can't read configurations, error -71
[  970.995142][  T546] bridge_slave_1: left allmulticast mode
[  971.001430][  T546] bridge_slave_1: left promiscuous mode
[  971.056541][T10038] usb 9-1: USB disconnect, device number 6
[  971.083745][  T546] bridge0: port 2(bridge_slave_1) entered disabled state
[  971.269047][  T546] bridge_slave_0: left allmulticast mode
[  971.279881][  T546] bridge_slave_0: left promiscuous mode
[  971.286368][  T546] bridge0: port 1(bridge_slave_0) entered disabled state
[  971.709985][ T5788] Bluetooth: hci1: command tx timeout
[  971.932186][T12063] loop2: detected capacity change from 0 to 256
[  972.219075][T12066] process 'syz.8.1478' launched '/dev/fd/3' with NULL argv: empty string added
[  972.299590][T12063] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  972.402756][T12063] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  972.470194][T12063] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  972.540899][   T29] audit: type=1800 audit(1775642226.808:73): pid=12063 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1476" name="file1" dev="loop2" ino=1048937 res=0 errno=0
[  972.562680][T12063] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000001)
[  973.177743][  T546] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  973.250736][  T546] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  973.352312][  T546] bond0 (unregistering): Released all slaves
[  973.418701][T12078] loop8: detected capacity change from 0 to 4096
[  973.500503][T12078] EXT4-fs: inline encryption not supported
[  973.619928][T12078] EXT4-fs (loop8): Test dummy encryption mode enabled
[  973.738031][T12078] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  973.863169][T12078] System zones: 0-5
[  973.945748][T12078] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  974.114649][ T9483] usb 3-1: new full-speed USB device number 6 using dummy_hcd
[  974.382240][ T9483] usb 3-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  974.406318][ T9483] usb 3-1: config 0 interface 0 altsetting 254 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  974.482249][ T9483] usb 3-1: config 0 interface 0 has no altsetting 0
[  974.502180][ T9483] usb 3-1: New USB device found, idVendor=054c, idProduct=0374, bcdDevice= 0.00
[  974.531370][T11179] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  974.575448][ T9483] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  974.654192][ T9483] usb 3-1: config 0 descriptor??
[  974.697945][T12087] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  974.758545][T11980] bridge0: port 1(bridge_slave_0) entered blocking state
[  974.821787][T11980] bridge0: port 1(bridge_slave_0) entered disabled state
[  974.829514][T11980] bridge_slave_0: entered allmulticast mode
[  974.872654][T12095] loop5: detected capacity change from 0 to 512
[  974.920378][T11980] bridge_slave_0: entered promiscuous mode
[  974.988352][T12095] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  975.112337][T12087] loop2: detected capacity change from 0 to 512
[  975.141802][T12095] EXT4-fs warning (device loop5): ext4_expand_extra_isize_ea:2858: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  975.241421][T12087] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 not in group (block 0)!
[  975.283581][T12095] EXT4-fs (loop5): 1 truncate cleaned up
[  975.313502][T12087] EXT4-fs (loop2): group descriptors corrupted!
[  975.332860][T12095] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  975.455587][T12095] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  975.467562][T11980] bridge0: port 2(bridge_slave_1) entered blocking state
[  975.530232][T11980] bridge0: port 2(bridge_slave_1) entered disabled state
[  975.537965][T11980] bridge_slave_1: entered allmulticast mode
[  975.643417][T11980] bridge_slave_1: entered promiscuous mode
[  975.668637][ T9483] hid_parser_main: 6 callbacks suppressed
[  975.668732][ T9483] sony 0003:054C:0374.000B: unknown main item tag 0x0
[  975.750317][ T9483] sony 0003:054C:0374.000B: unknown main item tag 0x0
[  975.757451][ T9483] sony 0003:054C:0374.000B: unknown main item tag 0x0
[  975.807307][ T9483] sony 0003:054C:0374.000B: unknown main item tag 0x0
[  975.856207][ T9483] sony 0003:054C:0374.000B: unknown main item tag 0x0
[  975.941098][ T9483] sony 0003:054C:0374.000B: unknown main item tag 0x0
[  975.974543][ T9483] sony 0003:054C:0374.000B: item fetching failed at offset 9/36
[  976.039972][ T9483] sony 0003:054C:0374.000B: parse failed
[  976.046149][ T9483] sony 0003:054C:0374.000B: probe with driver sony failed with error -22
[  976.170872][T12105] loop8: detected capacity change from 0 to 256
[  976.221060][ T9483] usb 3-1: USB disconnect, device number 6
[  976.824537][  T546] hsr_slave_0: left promiscuous mode
[  976.889996][  T546] hsr_slave_1: left promiscuous mode
[  976.940919][  T546] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  976.987263][  T546] batman_adv: batadv0: Removing interface: batadv_slave_0
[  977.083258][  T546] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  977.136945][  T546] batman_adv: batadv0: Removing interface: batadv_slave_1
[  977.280511][  T546] veth1_macvtap: left promiscuous mode
[  977.317542][  T546] veth0_macvtap: left promiscuous mode
[  977.340233][  T546] veth1_vlan: left promiscuous mode
[  977.360093][  T546] veth0_vlan: left promiscuous mode
[  977.956384][T12123] loop8: detected capacity change from 0 to 256
[  978.210802][T12123] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  978.289019][T12123] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  978.424392][T12123] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  978.571828][   T29] audit: type=1800 audit(1775642232.828:74): pid=12123 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.1490" name="file1" dev="loop8" ino=1048940 res=0 errno=0
[  978.573233][T12123] FAT-fs (loop8): error, invalid access to FAT (entry 0x00000001)
[  979.271847][T12136] loop5: detected capacity change from 0 to 256
[  979.488337][T12136] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x5955b8de, utbl_chksum : 0xe619d30d)
[  979.642850][T12136] binfmt_misc: register: failed to install interpreter file ./file2
[  979.860607][  T546] team0 (unregistering): Port device team_slave_1 removed
[  980.033779][  T546] team0 (unregistering): Port device team_slave_0 removed
[  981.014019][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  981.034165][T11980] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  981.039852][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  981.188374][T11980] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  981.600261][ T9483] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  981.816650][ T9483] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  981.835994][T11980] team0: Port device team_slave_0 added
[  981.853085][ T9483] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  981.891673][ T9483] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  981.926598][T11980] team0: Port device team_slave_1 added
[  981.931609][ T9483] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  981.999267][ T9483] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  982.062316][ T9483] usb 6-1: config 0 descriptor??
[  982.074104][ T2985] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  982.110572][ T2985] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  982.385931][T11980] batman_adv: batadv0: Adding interface: batadv_slave_0
[  982.435318][T11980] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  982.599987][T11980] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  982.700051][ T9483] plantronics 0003:047F:FFFF.000C: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  982.714953][T11980] batman_adv: batadv0: Adding interface: batadv_slave_1
[  982.766848][T11980] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  982.900050][T11980] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  983.540266][ T5848] usb 2-1: new low-speed USB device number 6 using dummy_hcd
[  983.788080][ T5848] usb 2-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  983.850383][ T5848] usb 2-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[  983.905285][ T5848] usb 2-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  983.917756][T11980] hsr_slave_0: entered promiscuous mode
[  983.967071][ T5848] usb 2-1: config 0 interface 0 has no altsetting 0
[  983.980122][T10008] usb 6-1: reset high-speed USB device number 7 using dummy_hcd
[  983.985141][T11980] hsr_slave_1: entered promiscuous mode
[  984.017249][ T5848] usb 2-1: New USB device found, idVendor=046d, idProduct=c52f, bcdDevice= 0.00
[  984.059462][ T5848] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  984.075649][T11980] debugfs: 'hsr0' already exists in 'hsr'
[  984.120084][T11980] Cannot create hsr debugfs directory
[  984.121844][ T5848] usb 2-1: config 0 descriptor??
[  984.140177][T10008] usb 6-1: device descriptor read/64, error -32
[  984.303497][ T9483] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  984.410192][T10008] usb 6-1: reset high-speed USB device number 7 using dummy_hcd
[  984.495342][ T9483] usb 3-1: Using ep0 maxpacket: 16
[  984.567970][ T9483] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  984.587995][T10008] usb 6-1: device descriptor read/64, error -32
[  984.619151][ T9483] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[  984.647965][ T9483] usb 3-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[  984.648095][ T5848] hid (null): invalid report_count 1200852662
[  984.685088][ T5848] logitech-djreceiver 0003:046D:C52F.000D: unknown main item tag 0x1
[  984.742398][ T9483] usb 3-1: config 0 interface 0 has no altsetting 0
[  984.742560][ T5848] logitech-djreceiver 0003:046D:C52F.000D: unknown main item tag 0x0
[  984.774728][ T9483] usb 3-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  984.815668][ T5848] logitech-djreceiver 0003:046D:C52F.000D: invalid report_count 1200852662
[  984.836868][ T9483] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  984.872271][ T5848] logitech-djreceiver 0003:046D:C52F.000D: item 0 4 1 9 parsing failed
[  984.913290][T10008] usb 6-1: reset high-speed USB device number 7 using dummy_hcd
[  984.934075][ T5848] logitech-djreceiver 0003:046D:C52F.000D: logi_dj_probe: parse failed
[  984.935660][ T9483] usb 3-1: config 0 descriptor??
[  984.982748][T10008] usb 6-1: device descriptor read/8, error -32
[  985.008551][ T5848] logitech-djreceiver 0003:046D:C52F.000D: probe with driver logitech-djreceiver failed with error -22
[  985.130394][ T5848] usb 2-1: USB disconnect, device number 6
[  985.228137][T10008] usb 6-1: reset high-speed USB device number 7 using dummy_hcd
[  985.327861][T10008] usb 6-1: device descriptor read/8, error -32
[  985.439578][ T9483] hid (null): invalid report_count 438683788
[  985.470360][T10008] raw-gadget.0 gadget.5: failed to queue suspend event
[  985.478833][ T9483] hid (null): invalid report_size 8049
[  985.512805][T10038] usb 6-1: USB disconnect, device number 7
[  985.520190][ T9483] hid (null): unknown global tag 0xe
[  985.551656][T12177] loop8: detected capacity change from 0 to 256
[  985.558843][ T9483] hid (null): unknown global tag 0xd
[  985.587695][ T9483] hid (null): invalid report_count 46221
[  985.613942][ T9483] hid (null): unknown global tag 0xc
[  985.656762][T12164] raw-gadget.0 gadget.5: failed to queue disconnect event
[  985.838331][T12177] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  985.920155][T12177] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  986.016155][T12177] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  986.173285][T12178] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  986.199982][   T29] audit: type=1800 audit(1775642240.438:75): pid=12177 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.1502" name="file1" dev="loop8" ino=1048946 res=0 errno=0
[  986.341227][ T9483] usb 3-1: USB disconnect, device number 7
[  986.424091][   T29] audit: type=1800 audit(1775642240.688:76): pid=12178 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.1502" name="file1" dev="loop8" ino=1048946 res=0 errno=0
[  986.434684][T12177] FAT-fs (loop8): error, invalid access to FAT (entry 0x00000001)
[  986.508171][T12184] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1503'.
[  987.546842][T12196] loop1: detected capacity change from 0 to 256
[  987.617665][   T29] audit: type=1326 audit(1775642241.878:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12193 comm="syz.5.1505" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fa5f6c code=0x0
[  988.046790][T11980] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  988.255695][T11980] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  988.265045][T12196] FAT-fs (loop1): Directory bread(block 64) failed
[  988.303250][T12196] FAT-fs (loop1): Directory bread(block 65) failed
[  988.324027][T12196] FAT-fs (loop1): Directory bread(block 66) failed
[  988.355167][T12196] FAT-fs (loop1): Directory bread(block 67) failed
[  988.438132][T12196] FAT-fs (loop1): Directory bread(block 68) failed
[  988.452992][T11980] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  988.470449][T12196] FAT-fs (loop1): Directory bread(block 69) failed
[  988.477331][T12196] FAT-fs (loop1): Directory bread(block 70) failed
[  988.554224][T12196] FAT-fs (loop1): Directory bread(block 71) failed
[  988.593449][T12196] FAT-fs (loop1): Directory bread(block 72) failed
[  988.655746][T11980] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  988.656202][T12196] FAT-fs (loop1): Directory bread(block 73) failed
[  990.320070][T10038] usb 2-1: new full-speed USB device number 7 using dummy_hcd
[  990.535981][T10038] usb 2-1: unable to get BOS descriptor or descriptor too short
[  990.607695][T10038] usb 2-1: not running at top speed; connect to a high speed hub
[  990.673935][T11980] 8021q: adding VLAN 0 to HW filter on device bond0
[  990.691527][T10038] usb 2-1: config 39 has an invalid interface number: 215 but max is 0
[  990.713073][T10038] usb 2-1: config 39 has no interface number 0
[  990.720909][T10038] usb 2-1: config 39 interface 215 altsetting 9 has an invalid descriptor for endpoint zero, skipping
[  990.726808][T11636] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  990.788767][T10038] usb 2-1: config 39 interface 215 has no altsetting 0
[  990.871718][T10038] usb 2-1: New USB device found, idVendor=0af0, idProduct=7706, bcdDevice=d8.dc
[  990.908251][T10038] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  990.936860][T11980] 8021q: adding VLAN 0 to HW filter on device team0
[  990.946025][T10038] usb 2-1: Product: syz
[  990.984041][T10038] usb 2-1: Manufacturer: syz
[  990.988840][T10038] usb 2-1: SerialNumber: syz
[  991.085486][   T83] bridge0: port 1(bridge_slave_0) entered blocking state
[  991.093134][   T83] bridge0: port 1(bridge_slave_0) entered forwarding state
[  991.327654][T12227] loop2: detected capacity change from 0 to 128
[  991.393793][   T83] bridge0: port 2(bridge_slave_1) entered blocking state
[  991.401318][   T83] bridge0: port 2(bridge_slave_1) entered forwarding state
[  991.405365][T10038] hso 2-1:39.215: Not our interface
[  991.467046][T10038] usb 2-1: USB disconnect, device number 7
[  992.713596][T12232] loop2: detected capacity change from 0 to 16
[  992.811797][T12232] erofs (device loop2): mounted with root inode @ nid 36.
[  992.836628][T12234] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1515'.
[  992.979334][T12232] syz.2.1514: attempt to access beyond end of device
[  992.979334][T12232] loop2: rw=524288, sector=1056, nr_sectors = 16 limit=16
[  993.094083][T12232] syz.2.1514: attempt to access beyond end of device
[  993.094083][T12232] loop2: rw=524288, sector=16, nr_sectors = 40 limit=16
[  993.223788][T12232] erofs (device loop2): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 8192
[  993.274672][T12232] erofs (device loop2): read error -117 @ 1 of nid 89
[  993.294943][   T29] audit: type=1800 audit(1775642247.548:78): pid=12232 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1514" name="file2" dev="loop2" ino=89 res=0 errno=0
[  993.838956][T12242] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1516'.
[  994.167754][T12246] loop2: detected capacity change from 0 to 256
[  994.488613][T11980] 8021q: adding VLAN 0 to HW filter on device batadv0
[  994.511201][ T9345] Bluetooth: hci0: command 0x0406 tx timeout
[  994.805487][T12246] FAT-fs (loop2): Directory bread(block 64) failed
[  994.833434][T12246] FAT-fs (loop2): Directory bread(block 65) failed
[  994.860408][T12246] FAT-fs (loop2): Directory bread(block 66) failed
[  994.890866][T12246] FAT-fs (loop2): Directory bread(block 67) failed
[  994.897715][T12246] FAT-fs (loop2): Directory bread(block 68) failed
[  994.980280][T12246] FAT-fs (loop2): Directory bread(block 69) failed
[  995.000390][T12246] FAT-fs (loop2): Directory bread(block 70) failed
[  995.007101][T12246] FAT-fs (loop2): Directory bread(block 71) failed
[  995.080421][T12246] FAT-fs (loop2): Directory bread(block 72) failed
[  995.087148][T12246] FAT-fs (loop2): Directory bread(block 73) failed
[  995.329079][T12246] syz.2.1517: attempt to access beyond end of device
[  995.329079][T12246] loop2: rw=8912896, sector=1160, nr_sectors = 4 limit=256
[  995.436557][T12246] syz.2.1517: attempt to access beyond end of device
[  995.436557][T12246] loop2: rw=8388608, sector=1160, nr_sectors = 4 limit=256
[  995.522695][   T29] audit: type=1800 audit(1775642249.788:79): pid=12246 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1517" name="file0" dev="loop2" ino=1048954 res=0 errno=0
[  995.943490][   T12] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  996.204407][   T12] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  996.539214][   T12] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  996.795031][   T12] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  997.631987][   T12] bridge_slave_1: left allmulticast mode
[  997.648607][   T12] bridge_slave_1: left promiscuous mode
[  997.671694][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  997.720295][T10274] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  997.800066][   T12] bridge_slave_0: left allmulticast mode
[  997.805897][   T12] bridge_slave_0: left promiscuous mode
[  997.827093][T12271] loop5: detected capacity change from 0 to 256
[  997.855242][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  997.901377][T12271] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  997.946749][T12271] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  997.970885][T10274] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  998.004204][T10274] usb 9-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  998.042602][T10274] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  998.094574][T12271] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  998.210065][T12271] exFAT-fs (loop5): failed to load alloc-bitmap
[  998.318143][T12271] exFAT-fs (loop5): failed to recognize exfat type
[  998.773785][T10274] usb 9-1: config 0 descriptor??
[ 1001.925891][T10274] usbhid 9-1:0.0: can't add hid device: -71
[ 1001.950426][T10274] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[ 1001.973743][T10274] usb 9-1: USB disconnect, device number 7
[ 1002.399199][T12288] netlink: 'syz.2.1526': attribute type 1 has an invalid length.
[ 1002.484640][T12293] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1525'.
[ 1002.700457][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[ 1002.707046][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[ 1002.893610][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1002.991451][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1003.073017][   T12] bond0 (unregistering): Released all slaves
[ 1003.455817][T11980] veth0_vlan: entered promiscuous mode
[ 1003.986119][T11980] veth1_vlan: entered promiscuous mode
[ 1004.725204][   T12] hsr_slave_0: left promiscuous mode
[ 1004.764267][   T12] hsr_slave_1: left promiscuous mode
[ 1004.792124][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1004.799668][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1004.892299][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1004.907290][T12322] loop2: detected capacity change from 0 to 16
[ 1004.934933][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1004.985989][T12322] erofs (device loop2): mounted with root inode @ nid 36.
[ 1005.081315][   T12] veth1_macvtap: left promiscuous mode
[ 1005.108647][   T12] veth0_macvtap: left promiscuous mode
[ 1005.143570][   T12] veth1_vlan: left promiscuous mode
[ 1005.173620][   T12] veth0_vlan: left promiscuous mode
[ 1006.033137][T12332] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1539'.
[ 1008.034834][   T12] team0 (unregistering): Port device team_slave_1 removed
[ 1008.168813][   T12] team0 (unregistering): Port device team_slave_0 removed
[ 1008.387581][T12355] loop1: detected capacity change from 0 to 512
[ 1008.577117][T12355] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[ 1008.622366][T12355] ext4 filesystem being mounted at /9/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1009.042125][T12365] loop2: detected capacity change from 0 to 512
[ 1009.082572][T12365] EXT4-fs: Ignoring removed i_version option
[ 1009.117416][T12365] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1009.244333][T12365] EXT4-fs (loop2): 1 truncate cleaned up
[ 1009.300198][T12365] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1009.753646][T11980] veth0_macvtap: entered promiscuous mode
[ 1009.905266][T11980] veth1_macvtap: entered promiscuous mode
[ 1010.046063][T10977] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1010.141958][T12374] loop5: detected capacity change from 0 to 256
[ 1010.183667][T12374] exfat: Unknown parameter 'ÃxFÂ(c`'
[ 1010.192104][T11980] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1010.290748][T11749] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[ 1010.319285][T11980] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1010.533293][  T546] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1010.592584][   T57] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1010.747486][   T57] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1010.769368][   T57] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1010.882988][T12379] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1550'.
[ 1011.099333][T12386] loop1: detected capacity change from 0 to 512
[ 1011.195149][T12386] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1011.361145][T12386] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.1549: invalid indirect mapped block 4294967295 (level 1)
[ 1011.485373][T12386] loop1: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1011.489905][    C0] EXT4-fs (loop1): error count since last fsck: 1
[ 1011.505947][    C0] EXT4-fs (loop1): initial error at time 1775642265: ext4_free_branches:1023: inode 11
[ 1011.515950][    C0] EXT4-fs (loop1): last error at time 1775642265: ext4_free_branches:1023: inode 11
[ 1011.530487][T12386] EXT4-fs (loop1): Remounting filesystem read-only
[ 1011.598907][T12386] EXT4-fs (loop1): 2 truncates cleaned up
[ 1011.643824][T12386] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1011.776043][T12384] loop8: detected capacity change from 0 to 4096
[ 1011.837521][T12397] loop2: detected capacity change from 0 to 512
[ 1011.910960][T12384] EXT4-fs: Ignoring removed orlov option
[ 1011.985643][T12384] EXT4-fs (loop8): Test dummy encryption mode enabled
[ 1012.097962][T12384] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1012.202476][T11749] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1012.584467][T11179] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1013.903629][T12423] loop1: detected capacity change from 0 to 128
[ 1014.813747][T12435] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1562'.
[ 1015.204194][T12440] loop1: detected capacity change from 0 to 128
[ 1018.226168][T12481] loop5: detected capacity change from 0 to 512
[ 1018.330097][T12481] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1018.489650][T12481] EXT4-fs (loop5): 1 truncate cleaned up
[ 1018.585616][T12481] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1018.636089][T12487] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1574'.
[ 1018.969125][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1019.023980][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1019.133869][T11113] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1019.346985][ T9113] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1019.362734][ T9113] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1019.494776][T12494] loop1: detected capacity change from 0 to 1024
[ 1019.580191][T12494] EXT4-fs (loop1): bad geometry: bigalloc file system with non-zero first_data_block
[ 1019.580191][T12494] 
[ 1020.664039][T12502] loop9: detected capacity change from 0 to 256
[ 1021.441967][T12510] netlink: 328 bytes leftover after parsing attributes in process `syz.1.1580'.
[ 1021.566149][T12513] loop1: detected capacity change from 0 to 512
[ 1021.714218][T12513] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1021.777614][T12513] EXT4-fs (loop1): bad geometry: first data block is 0 with a 1k block and cluster size
[ 1021.857923][T12517] loop2: detected capacity change from 0 to 512
[ 1021.996848][T12517] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1022.040648][T12517] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[ 1022.144292][T12520] loop9: detected capacity change from 0 to 256
[ 1022.160251][   T24] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[ 1022.230150][T12520] exFAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1022.284069][T12520] exFAT-fs (loop9): Medium has reported failures. Some data may be lost.
[ 1022.379954][   T24] usb 2-1: Using ep0 maxpacket: 32
[ 1022.462907][T12520] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1022.505806][   T24] usb 2-1: New USB device found, idVendor=0403, idProduct=f850, bcdDevice= 0.08
[ 1022.547879][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1022.563204][T12520] exFAT-fs (loop9): failed to load alloc-bitmap
[ 1022.573280][   T24] usb 2-1: SerialNumber: syz
[ 1022.578001][   T24] usb 2-1: config 0 descriptor??
[ 1022.620284][T12520] exFAT-fs (loop9): failed to recognize exfat type
[ 1022.631682][   T24] ftdi_sio 2-1:0.0: FTDI USB Serial Device converter detected
[ 1022.655869][   T24] usb 2-1: Detected SIO
[ 1022.728630][   T24] usb 2-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1022.748901][T12523] netlink: 556 bytes leftover after parsing attributes in process `syz.5.1584'.
[ 1022.821396][T12523] netlink: 556 bytes leftover after parsing attributes in process `syz.5.1584'.
[ 1023.667942][T12530] netlink: 12 bytes leftover after parsing attributes in process `syz.9.1583'.
[ 1026.291701][T12529] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1585'.
[ 1027.078456][T10008] usb 2-1: USB disconnect, device number 8
[ 1027.117014][T10008] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1027.162320][T10008] ftdi_sio 2-1:0.0: device disconnected
[ 1027.208106][T12535] usb usb1: usbfs: interface 0 claimed by hub while 'syz.5.1586' sets config #1
[ 1027.499589][T12538] loop8: detected capacity change from 0 to 512
[ 1027.674955][T12538] EXT4-fs (loop8): 1 truncate cleaned up
[ 1027.719604][T12546] netlink: 12 bytes leftover after parsing attributes in process `syz.9.1587'.
[ 1027.752596][T12538] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1030.107196][T11179] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1030.741188][T12580] netlink: 328 bytes leftover after parsing attributes in process `syz.2.1600'.
[ 1030.760810][T12577] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1599'.
[ 1030.873986][T12581] loop2: detected capacity change from 0 to 512
[ 1030.980657][T12581] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1031.060397][T12581] EXT4-fs (loop2): bad geometry: first data block is 0 with a 1k block and cluster size
[ 1031.403213][T10038] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[ 1031.590195][T10038] usb 3-1: Using ep0 maxpacket: 32
[ 1031.680261][T10038] usb 3-1: New USB device found, idVendor=0403, idProduct=f850, bcdDevice= 0.08
[ 1031.689540][T10038] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1031.729449][T10038] usb 3-1: SerialNumber: syz
[ 1031.775853][T10038] usb 3-1: config 0 descriptor??
[ 1031.858903][T10038] ftdi_sio 3-1:0.0: FTDI USB Serial Device converter detected
[ 1031.916915][T10038] usb 3-1: Detected SIO
[ 1031.970618][T10038] usb 3-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1032.292970][T12597] loop5: detected capacity change from 0 to 256
[ 1032.521803][T12597] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1032.610257][T12597] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1032.770290][T12597] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1032.886920][   T29] audit: type=1800 audit(1775642287.148:80): pid=12597 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1603" name="file1" dev="loop5" ino=1048967 res=0 errno=0
[ 1032.960595][T12597] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000001)
[ 1033.750066][T10038] usb 3-1: USB disconnect, device number 8
[ 1033.785817][T10038] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1033.892266][T10038] ftdi_sio 3-1:0.0: device disconnected
[ 1034.766414][T12619] loop5: detected capacity change from 0 to 512
[ 1034.925831][T12619] EXT4-fs (loop5): 1 truncate cleaned up
[ 1034.941814][T12623] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1612'.
[ 1034.955439][T12619] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1035.510105][   T24] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[ 1035.760887][   T24] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[ 1035.785561][   T24] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[ 1035.850229][   T24] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[ 1035.913991][   T24] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[ 1035.968049][   T24] usb 10-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[ 1036.019966][   T24] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1036.054537][   T24] usb 10-1: Product: syz
[ 1036.058995][   T24] usb 10-1: Manufacturer: syz
[ 1036.104262][   T24] usb 10-1: SerialNumber: syz
[ 1036.154317][   T24] usb 10-1: config 0 descriptor??
[ 1036.188004][   T24] ums-isd200 10-1:0.0: USB Mass Storage device detected
[ 1036.356491][T12640] loop1: detected capacity change from 0 to 256
[ 1036.648552][T12644] netlink: 328 bytes leftover after parsing attributes in process `syz.8.1619'.
[ 1036.681810][   T24] scsi host1: usb-storage 10-1:0.0
[ 1036.737163][T12640] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1036.749271][   T24] usb 10-1: USB disconnect, device number 3
[ 1036.815116][T12640] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1036.854336][T12646] loop8: detected capacity change from 0 to 512
[ 1036.928420][T12646] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[ 1036.983231][T12640] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1036.995306][T12646] EXT4-fs (loop8): bad geometry: first data block is 0 with a 1k block and cluster size
[ 1037.121511][T12640] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000001)
[ 1037.140086][   T29] audit: type=1800 audit(1775642291.388:81): pid=12640 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1618" name="file1" dev="loop1" ino=1048968 res=0 errno=0
[ 1037.432098][T11113] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1037.450364][T10038] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[ 1037.659554][T10038] usb 9-1: Using ep0 maxpacket: 32
[ 1037.700918][T10038] usb 9-1: New USB device found, idVendor=0403, idProduct=f850, bcdDevice= 0.08
[ 1037.740232][T10038] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1037.788585][T10038] usb 9-1: SerialNumber: syz
[ 1037.823177][T10038] usb 9-1: config 0 descriptor??
[ 1037.887487][T10038] ftdi_sio 9-1:0.0: FTDI USB Serial Device converter detected
[ 1037.942799][T10038] usb 9-1: Detected SIO
[ 1037.976434][T10038] usb 9-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1038.369470][T12658] syzkaller0: entered promiscuous mode
[ 1038.422755][T10008] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[ 1038.429627][T12658] syzkaller0: entered allmulticast mode
[ 1038.578550][T12658] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[ 1038.637070][T10008] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1038.668121][T10008] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 32
[ 1038.763038][T10008] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1038.793602][T10008] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1038.847875][T10008] usb 6-1: Product: syz
[ 1038.868018][T10008] usb 6-1: Manufacturer: syz
[ 1038.887261][T10008] usb 6-1: SerialNumber: syz
[ 1039.171577][T12656] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[ 1039.546563][T12671] loop1: detected capacity change from 0 to 256
[ 1039.740502][T10038] usb 9-1: USB disconnect, device number 8
[ 1039.817466][T10038] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1039.886766][T10038] ftdi_sio 9-1:0.0: device disconnected
[ 1040.080569][T10008] cdc_ncm 6-1:1.0: bind() failure
[ 1040.113637][T12671] FAT-fs (loop1): Directory bread(block 64) failed
[ 1040.140265][T12671] FAT-fs (loop1): Directory bread(block 65) failed
[ 1040.169397][T10008] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found
[ 1040.180459][T12671] FAT-fs (loop1): Directory bread(block 66) failed
[ 1040.193960][T12671] FAT-fs (loop1): Directory bread(block 67) failed
[ 1040.240114][T10008] cdc_ncm 6-1:1.1: bind() failure
[ 1040.240583][T12671] FAT-fs (loop1): Directory bread(block 68) failed
[ 1040.293987][T12671] FAT-fs (loop1): Directory bread(block 69) failed
[ 1040.324282][T10008] usb 6-1: USB disconnect, device number 9
[ 1040.363928][T12671] FAT-fs (loop1): Directory bread(block 70) failed
[ 1040.449979][T12671] FAT-fs (loop1): Directory bread(block 71) failed
[ 1040.504500][T12671] FAT-fs (loop1): Directory bread(block 72) failed
[ 1040.555179][T12671] FAT-fs (loop1): Directory bread(block 73) failed
[ 1040.636137][T12680] loop2: detected capacity change from 0 to 128
[ 1040.796734][T12680] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1040.940229][T12680] ext4 filesystem being mounted at /78/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1041.147562][T12680] fscrypt (loop2, inode 12): Unsupported encryption flags (0x08)
[ 1041.508405][T10977] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1041.783545][T12695] loop9: detected capacity change from 0 to 1024
[ 1041.941743][T12695] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1042.110377][T12700] syz.2.1633 (12700): /proc/12698/oom_adj is deprecated, please use /proc/12698/oom_score_adj instead.
[ 1042.410238][T12709] loop8: detected capacity change from 0 to 512
[ 1042.419367][T12709] EXT4-fs: Ignoring removed nobh option
[ 1042.537328][T12709] EXT4-fs (loop8): fragment/cluster size (4096) != block size (1024)
[ 1042.559469][   T24] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[ 1042.810739][   T24] usb 6-1: Using ep0 maxpacket: 16
[ 1042.839965][T11980] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1042.856976][   T24] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1042.915211][   T24] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1042.964495][T12709] loop8: detected capacity change from 0 to 1024
[ 1043.048117][   T24] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1043.086569][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1043.126590][   T24] usb 6-1: Product: syz
[ 1043.127777][T12709] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1043.143629][   T24] usb 6-1: Manufacturer: syz
[ 1043.143732][   T24] usb 6-1: SerialNumber: syz
[ 1043.352194][T12716] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[ 1043.500732][   T24] usb 6-1: 0:2 : does not exist
[ 1043.568512][   T24] usb 6-1: 5:0: failed to get current value for ch 0 (-22)
[ 1043.595163][T12721] netlink: 328 bytes leftover after parsing attributes in process `syz.9.1638'.
[ 1043.758722][T11179] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1043.776127][T12723] loop9: detected capacity change from 0 to 512
[ 1043.860630][T12723] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[ 1043.920587][T12723] EXT4-fs (loop9): bad geometry: first data block is 0 with a 1k block and cluster size
[ 1044.340047][   T24] usb 6-1: USB disconnect, device number 10
[ 1044.430257][T10008] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[ 1044.500995][T12730] loop8: detected capacity change from 0 to 256
[ 1044.573896][T12730] exFAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1044.608124][T12730] exFAT-fs (loop8): Medium has reported failures. Some data may be lost.
[ 1044.640299][T10008] usb 10-1: Using ep0 maxpacket: 32
[ 1044.720175][T10008] usb 10-1: New USB device found, idVendor=0403, idProduct=f850, bcdDevice= 0.08
[ 1044.729553][T10008] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1044.792478][T12731] loop2: detected capacity change from 0 to 2048
[ 1044.812843][T10008] usb 10-1: SerialNumber: syz
[ 1044.869383][T12730] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1044.871827][T11500] udevd[11500]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1044.888994][T10008] usb 10-1: config 0 descriptor??
[ 1044.980026][T12733] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1643'.
[ 1044.994308][T12730] exFAT-fs (loop8): failed to load alloc-bitmap
[ 1045.006193][T10008] ftdi_sio 10-1:0.0: FTDI USB Serial Device converter detected
[ 1045.061564][T12730] exFAT-fs (loop8): failed to recognize exfat type
[ 1045.127556][T10008] usb 10-1: Detected SIO
[ 1045.134329][T12731] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1045.156782][T10008] usb 10-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1045.207568][T12730] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1641'.
[ 1045.237324][   T29] audit: type=1800 audit(1775642299.478:82): pid=12731 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1642" name="file1" dev="loop2" ino=15 res=0 errno=0
[ 1045.290120][T12730] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1641'.
[ 1045.340092][   T29] audit: type=1800 audit(1775642299.498:83): pid=12731 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1642" name="file1" dev="loop2" ino=15 res=0 errno=0
[ 1045.768431][T10977] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1046.471343][T12752] loop8: detected capacity change from 0 to 512
[ 1046.519989][T10038] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[ 1046.710155][   T24] usb 10-1: USB disconnect, device number 4
[ 1046.730197][T10038] usb 6-1: Using ep0 maxpacket: 8
[ 1046.742870][   T24] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1046.781445][   T24] ftdi_sio 10-1:0.0: device disconnected
[ 1046.833833][T10038] usb 6-1: unable to get BOS descriptor or descriptor too short
[ 1046.848148][T12752] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[ 1046.904323][T10038] usb 6-1: no configurations
[ 1046.909110][T10038] usb 6-1: can't read configurations, error -22
[ 1046.940685][T12752] ext4 filesystem being mounted at /71/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1047.386476][T12762] loop9: detected capacity change from 0 to 1024
[ 1047.439540][T12762] EXT4-fs: Ignoring removed bh option
[ 1047.610316][T12762] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback.
[ 1047.921198][T12762] loop9: detected capacity change from 1024 to 64
[ 1047.996203][T12773] syz.9.1648 uses obsolete (PF_INET,SOCK_PACKET)
[ 1048.315879][T11179] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[ 1048.428847][T12777] loop2: detected capacity change from 0 to 1024
[ 1048.463229][T12777] ext4: Unknown parameter 'defcontext'
[ 1049.251135][T12784] syzkaller0: entered promiscuous mode
[ 1049.297339][T12784] syzkaller0: entered allmulticast mode
[ 1049.395683][T11980] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[ 1049.411006][T12782] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[ 1049.474890][T12767] kmmpd-loop9: attempt to access beyond end of device
[ 1049.474890][T12767] loop9: rw=8402945, sector=128, nr_sectors = 2 limit=64
[ 1049.544006][T12767] Buffer I/O error on dev loop9, logical block 64, lost sync page write
[ 1049.571936][   T13] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1050.028907][   T13] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1050.306178][   T13] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1050.518274][   T13] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1051.099635][   T13] bridge_slave_1: left allmulticast mode
[ 1051.116227][   T13] bridge_slave_1: left promiscuous mode
[ 1051.160710][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1051.231407][   T13] bridge_slave_0: left allmulticast mode
[ 1051.237267][   T13] bridge_slave_0: left promiscuous mode
[ 1051.274973][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1052.419587][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1052.492730][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1052.560703][   T13] bond0 (unregistering): Released all slaves
[ 1053.590160][   T13] hsr_slave_0: left promiscuous mode
[ 1053.629562][   T13] hsr_slave_1: left promiscuous mode
[ 1053.637675][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1053.729994][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1053.759563][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1053.811615][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1054.002171][   T13] veth1_macvtap: left promiscuous mode
[ 1054.047984][   T13] veth0_macvtap: left promiscuous mode
[ 1054.090273][   T13] veth1_vlan: left promiscuous mode
[ 1054.104583][   T13] veth0_vlan: left promiscuous mode
[ 1054.112009][ T5786] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1054.121485][ T5786] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1054.130773][ T5786] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1054.194976][ T5786] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1054.215127][ T5786] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1055.023413][T12827] loop1: detected capacity change from 0 to 2048
[ 1055.832916][   T13] team0 (unregistering): Port device team_slave_1 removed
[ 1055.891862][   T13] team0 (unregistering): Port device team_slave_0 removed
[ 1055.951520][ T5786] Bluetooth: hci6: command 0x0406 tx timeout
[ 1056.271474][ T5786] Bluetooth: hci1: command tx timeout
[ 1057.475190][T12848] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1667'.
[ 1058.350229][ T5786] Bluetooth: hci1: command tx timeout
[ 1058.450024][T12855] Illegal XDP return value 4294967294 on prog  (id 54) dev syz_tun, expect packet loss!
[ 1059.064194][T12816] chnl_net:caif_netlink_parms(): no params data found
[ 1059.956150][T12863] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[ 1060.430061][ T5786] Bluetooth: hci1: command tx timeout
[ 1061.052574][T12890] loop5: detected capacity change from 0 to 256
[ 1061.073942][T12890] exfat: Deprecated parameter 'namecase'
[ 1061.154828][T12890] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[ 1061.295646][T12816] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1061.358730][T12816] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1061.381519][T12816] bridge_slave_0: entered allmulticast mode
[ 1061.420179][T12816] bridge_slave_0: entered promiscuous mode
[ 1061.526521][T12816] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1061.560736][T12816] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1061.594948][T12816] bridge_slave_1: entered allmulticast mode
[ 1061.640744][T12816] bridge_slave_1: entered promiscuous mode
[ 1062.082338][T12816] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1062.137168][T12900] loop5: detected capacity change from 0 to 256
[ 1062.305332][T12816] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1062.384263][T12900] FAT-fs (loop5): Directory bread(block 64) failed
[ 1062.404916][T12900] FAT-fs (loop5): Directory bread(block 65) failed
[ 1062.450553][T12900] FAT-fs (loop5): Directory bread(block 66) failed
[ 1062.470030][T12900] FAT-fs (loop5): Directory bread(block 67) failed
[ 1062.505019][T12900] FAT-fs (loop5): Directory bread(block 68) failed
[ 1062.513494][ T5786] Bluetooth: hci1: command tx timeout
[ 1062.533061][T12900] FAT-fs (loop5): Directory bread(block 69) failed
[ 1062.540864][T12900] FAT-fs (loop5): Directory bread(block 70) failed
[ 1062.548304][T12900] FAT-fs (loop5): Directory bread(block 71) failed
[ 1062.555522][T12900] FAT-fs (loop5): Directory bread(block 72) failed
[ 1062.563231][T12900] FAT-fs (loop5): Directory bread(block 73) failed
[ 1062.716757][T12816] team0: Port device team_slave_0 added
[ 1062.765960][T12816] team0: Port device team_slave_1 added
[ 1062.925964][T12816] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1062.945357][T12816] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1063.008272][T12816] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1063.061381][T12816] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1063.068781][T12816] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1063.190013][T12816] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1063.777761][T12910] loop5: detected capacity change from 0 to 512
[ 1063.837038][T12912] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1681'.
[ 1063.979291][T12816] hsr_slave_0: entered promiscuous mode
[ 1064.050466][T12816] hsr_slave_1: entered promiscuous mode
[ 1064.136438][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[ 1064.141902][T12816] debugfs: 'hsr0' already exists in 'hsr'
[ 1064.144639][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[ 1064.150859][T12816] Cannot create hsr debugfs directory
[ 1064.222481][T12910] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[ 1064.330199][T12910] ext4 filesystem being mounted at /76/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1064.708460][T12925] syzkaller0: entered promiscuous mode
[ 1064.739016][T12925] syzkaller0: entered allmulticast mode
[ 1064.847559][T12925] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[ 1065.712287][T12937] loop8: detected capacity change from 0 to 256
[ 1065.788321][T11113] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[ 1066.866038][T12946] loop8: detected capacity change from 0 to 256
[ 1067.418599][T12816] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1067.457185][T12816] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1067.508471][T12816] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1067.562500][T12816] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1067.972298][T12283] kworker/u8:13: attempt to access beyond end of device
[ 1067.972298][T12283] loop8: rw=1, sector=256, nr_sectors = 288 limit=256
[ 1068.072025][T12283] kworker/u8:13: attempt to access beyond end of device
[ 1068.072025][T12283] loop8: rw=1, sector=608, nr_sectors = 416 limit=256
[ 1068.145003][T12283] kworker/u8:13: attempt to access beyond end of device
[ 1068.145003][T12283] loop8: rw=1, sector=1056, nr_sectors = 1816 limit=256
[ 1068.719916][T12816] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1068.814881][T12816] 8021q: adding VLAN 0 to HW filter on device team0
[ 1068.943424][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1068.951137][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1069.078844][ T7621] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1069.086467][ T7621] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1069.490082][T12972] loop8: detected capacity change from 0 to 1024
[ 1069.571389][T12972] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1069.594226][T12972] EXT4-fs (loop8): bad geometry: bigalloc file system with non-zero first_data_block
[ 1069.594226][T12972] 
[ 1069.714896][T12981] netlink: 'syz.2.1695': attribute type 3 has an invalid length.
[ 1069.871087][T12979] syzkaller0: entered promiscuous mode
[ 1069.876750][T12979] syzkaller0: entered allmulticast mode
[ 1070.038084][T12979] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[ 1071.199602][T13003] loop1: detected capacity change from 0 to 256
[ 1071.393212][T13003] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1071.440831][T13003] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1071.510832][T13003] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1071.615195][T13003] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000001)
[ 1071.619882][   T29] audit: type=1800 audit(1775642325.878:84): pid=13003 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1699" name="file1" dev="loop1" ino=1048973 res=0 errno=0
[ 1071.805940][T12816] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1071.956241][T13009] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1700'.
[ 1072.382535][T11749] FAT-fs (loop1): error, corrupted directory (invalid entries)
[ 1072.491051][T11749] FAT-fs (loop1): error, corrupted directory (invalid entries)
[ 1072.517381][T12816] veth0_vlan: entered promiscuous mode
[ 1072.695603][T12816] veth1_vlan: entered promiscuous mode
[ 1073.132663][T12816] veth0_macvtap: entered promiscuous mode
[ 1073.489627][T12816] veth1_macvtap: entered promiscuous mode
[ 1073.631412][   T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1073.712446][T13026] vlan0: entered promiscuous mode
[ 1073.842829][   T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1074.106811][   T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1074.288250][   T12] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1074.405119][T12816] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1074.496101][T12816] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1074.688266][T12280] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1074.706655][T12280] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1074.778945][T12280] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1074.824401][  T546] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1075.148034][   T12] bridge_slave_1: left allmulticast mode
[ 1075.181970][   T12] bridge_slave_1: left promiscuous mode
[ 1075.188476][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1075.225484][   T12] bridge_slave_0: left allmulticast mode
[ 1075.275688][   T12] bridge_slave_0: left promiscuous mode
[ 1075.288511][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1075.836393][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1075.897344][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1075.931378][   T12] bond0 (unregistering): Released all slaves
[ 1076.784899][ T5788] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1076.788901][T13048] loop8: detected capacity change from 0 to 256
[ 1076.809456][ T5788] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1076.834399][ T5788] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1076.850252][ T5788] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1076.882352][ T5788] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1077.016300][T13048] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1077.081133][T13048] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1077.094669][T13048] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[ 1077.192552][   T29] audit: type=1800 audit(1775642331.408:85): pid=13048 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.1713" name="file1" dev="loop8" ino=1048999 res=0 errno=0
[ 1077.214144][T13048] FAT-fs (loop8): error, invalid access to FAT (entry 0x00000001)
[ 1077.319116][   T12] hsr_slave_0: left promiscuous mode
[ 1077.342602][   T12] hsr_slave_1: left promiscuous mode
[ 1077.371166][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1077.440294][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1077.461607][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1077.483575][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1077.541155][   T12] veth1_macvtap: left promiscuous mode
[ 1077.551098][   T12] veth0_macvtap: left promiscuous mode
[ 1077.567815][   T12] veth1_vlan: left promiscuous mode
[ 1077.620110][   T12] veth0_vlan: left promiscuous mode
[ 1078.033840][T13065] ieee802154 phy0 wpan0: encryption failed: -22
[ 1078.064550][T13065] loop5: detected capacity change from 0 to 256
[ 1078.201120][T13067] loop8: detected capacity change from 0 to 4096
[ 1078.261034][T13065] FAT-fs (loop5): Directory bread(block 64) failed
[ 1078.270705][T13067] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1078.328541][T13065] FAT-fs (loop5): Directory bread(block 65) failed
[ 1078.379448][T13065] FAT-fs (loop5): Directory bread(block 66) failed
[ 1078.450722][T13065] FAT-fs (loop5): Directory bread(block 67) failed
[ 1078.466483][T13065] FAT-fs (loop5): Directory bread(block 68) failed
[ 1078.474610][T13065] FAT-fs (loop5): Directory bread(block 69) failed
[ 1078.483403][T13065] FAT-fs (loop5): Directory bread(block 70) failed
[ 1078.580051][T13065] FAT-fs (loop5): Directory bread(block 71) failed
[ 1078.598920][T13065] FAT-fs (loop5): Directory bread(block 72) failed
[ 1078.611813][T13065] FAT-fs (loop5): Directory bread(block 73) failed
[ 1078.824170][T11179] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1078.845092][T13065] FAT-fs (loop5): Filesystem has been set read-only
[ 1078.904258][T13065] FAT-fs (loop5): error, fat_free_clusters: deleting FAT entry beyond EOF
[ 1079.070284][ T5788] Bluetooth: hci2: command tx timeout
[ 1079.087984][   T12] team0 (unregistering): Port device team_slave_1 removed
[ 1079.202372][   T12] team0 (unregistering): Port device team_slave_0 removed
[ 1079.776169][T13053] syzkaller0: entered promiscuous mode
[ 1079.790038][T13053] syzkaller0: entered allmulticast mode
[ 1081.149978][ T5788] Bluetooth: hci2: command tx timeout
[ 1081.476916][T13049] chnl_net:caif_netlink_parms(): no params data found
[ 1082.605744][T13119] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1728'.
[ 1082.663446][T13119] netlink: 'syz.2.1728': attribute type 7 has an invalid length.
[ 1083.151806][T13049] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1083.159274][T13049] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1083.230032][ T5788] Bluetooth: hci2: command tx timeout
[ 1083.250433][T13049] bridge_slave_0: entered allmulticast mode
[ 1083.259641][T13049] bridge_slave_0: entered promiscuous mode
[ 1083.329420][T13125] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1083.400485][T13049] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1083.440761][T13049] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1083.460417][T13049] bridge_slave_1: entered allmulticast mode
[ 1083.469549][T13049] bridge_slave_1: entered promiscuous mode
[ 1083.783460][T13049] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1083.878742][T13049] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1084.199598][T13049] team0: Port device team_slave_0 added
[ 1084.400794][T13049] team0: Port device team_slave_1 added
[ 1084.795505][T13049] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1084.840217][T13049] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1084.939691][T13049] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1085.005145][T13049] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1085.033620][T13049] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1085.142662][T13049] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1085.164383][T13152] netlink: 7 bytes leftover after parsing attributes in process `syz.8.1736'.
[ 1085.233021][T13152] netlink: 7 bytes leftover after parsing attributes in process `syz.8.1736'.
[ 1085.273934][  T546] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1085.310000][ T5788] Bluetooth: hci2: command tx timeout
[ 1085.338025][  T546] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1085.349531][T13151] netlink: 'syz.8.1736': attribute type 4 has an invalid length.
[ 1086.026618][T13049] hsr_slave_0: entered promiscuous mode
[ 1086.071353][T13049] hsr_slave_1: entered promiscuous mode
[ 1086.102182][T13049] debugfs: 'hsr0' already exists in 'hsr'
[ 1086.118618][T13049] Cannot create hsr debugfs directory
[ 1086.300513][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1086.356714][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1086.499492][T13167] netlink: 76 bytes leftover after parsing attributes in process `syz.8.1740'.
[ 1087.068223][T13172] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1087.627643][T13178] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1741'.
[ 1088.321044][T13192] netlink: 'syz.8.1744': attribute type 1 has an invalid length.
[ 1088.429498][T13196] netlink: 'syz.8.1744': attribute type 8 has an invalid length.
[ 1088.654713][T13192] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1089.278152][T13196] bond1: (slave geneve2): making interface the new active one
[ 1089.305563][T13196] bond1: (slave geneve2): Enslaving as an active interface with an up link
[ 1089.392709][  T546] netdevsim netdevsim8 netdevsim0: set [1, 1] type 2 family 0 port 20004 - 0
[ 1089.435409][  T546] netdevsim netdevsim8 netdevsim1: set [1, 1] type 2 family 0 port 20004 - 0
[ 1089.514034][   T57] netdevsim netdevsim8 netdevsim2: set [1, 1] type 2 family 0 port 20004 - 0
[ 1089.574851][   T57] netdevsim netdevsim8 netdevsim3: set [1, 1] type 2 family 0 port 20004 - 0
[ 1090.347425][T13049] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1090.456139][T13049] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1090.612150][T13049] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1090.949940][T13049] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1091.979042][T13231] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1092.334485][T13049] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1092.583530][T13049] 8021q: adding VLAN 0 to HW filter on device team0
[ 1092.685494][   T57] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1092.693189][   T57] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1092.833097][   T57] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1092.840738][   T57] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1092.929665][T13241] syzkaller0: entered promiscuous mode
[ 1092.935575][T13241] syzkaller0: entered allmulticast mode
[ 1095.541990][T13262] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1757'.
[ 1097.113219][T13049] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1097.890776][T13301] syzkaller0: entered promiscuous mode
[ 1097.918078][T13301] syzkaller0: entered allmulticast mode
[ 1098.270420][T13310] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1767'.
[ 1099.557640][T13318] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1768'.
[ 1099.632067][T13320] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1768'.
[ 1100.754130][T13049] veth0_vlan: entered promiscuous mode
[ 1101.101306][T13049] veth1_vlan: entered promiscuous mode
[ 1101.877882][T13049] veth0_macvtap: entered promiscuous mode
[ 1101.996109][T13049] veth1_macvtap: entered promiscuous mode
[ 1102.437343][T13049] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1102.733972][T13049] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1102.965868][   T13] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1102.996676][   T13] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1103.063922][   T13] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1103.137728][   T13] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1105.466306][T10008] IPVS: starting estimator thread 0...
[ 1105.580185][T13375] IPVS: using max 336 ests per chain, 16800 per kthread
[ 1106.978461][T13403] loop0: detected capacity change from 0 to 512
[ 1107.172623][T13403] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[ 1107.220742][T13403] ext4 filesystem being mounted at /8/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1108.606058][T12816] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[ 1109.208838][T13434] netlink: 28 bytes leftover after parsing attributes in process `syz.8.1791'.
[ 1109.352993][T13430] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1111.490468][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1111.498476][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1111.708757][T13469] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 1111.737191][T13467] loop5: detected capacity change from 0 to 512
[ 1111.859241][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1111.868369][T13472] =====================================================
[ 1111.875867][T13472] BUG: KMSAN: uninit-value in eth_type_trans+0x477/0x9b0
[ 1111.883209][T13472]  eth_type_trans+0x477/0x9b0
[ 1111.888054][T13472]  bpf_prog_run_generic_xdp+0x1313/0x20d0
[ 1111.894117][T13472]  do_xdp_generic+0xe07/0x17f0
[ 1111.899046][T13472]  tun_get_user+0x525a/0x7830
[ 1111.901055][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1111.903963][T13472]  tun_chr_write_iter+0x3e9/0x5c0
[ 1111.916333][T13472]  vfs_write+0xbe1/0x15c0
[ 1111.920988][T13472]  ksys_write+0x1d9/0x470
[ 1111.925480][T13472]  __ia32_sys_write+0x9a/0xf0
[ 1111.930407][T13472]  ia32_sys_call+0x37a7/0x4360
[ 1111.935297][T13472]  do_int80_emulation+0x15a/0x330
[ 1111.940577][T13472]  asm_int80_emulation+0x1f/0x30
[ 1111.945656][T13472] 
[ 1111.948047][T13472] Uninit was stored to memory at:
[ 1111.953425][T13472]  pskb_expand_head+0x4a0/0x1fb0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1111.958540][T13472]  do_xdp_generic+0xb30/0x17f0
[ 1111.963547][T13472]  tun_get_user+0x525a/0x7830
[ 1111.968392][T13472]  tun_chr_write_iter+0x3e9/0x5c0
[ 1111.973683][T13472]  vfs_write+0xbe1/0x15c0
[ 1111.978205][T13472]  ksys_write+0x1d9/0x470
[ 1111.982795][T13472]  __ia32_sys_write+0x9a/0xf0
[ 1111.987641][T13472]  ia32_sys_call+0x37a7/0x4360
[ 1111.992622][T13472]  do_int80_emulation+0x15a/0x330
[ 1111.997827][T13472]  asm_int80_emulation+0x1f/0x30
[ 1112.002994][T13472] 
[ 1112.005376][T13472] Uninit was created at:
[ 1112.009917][T13472]  __kmalloc_node_track_caller_noprof+0x4f6/0x1750
[ 1112.016579][T13472]  __alloc_skb+0x90d/0x1190
[ 1112.021314][T13472]  alloc_skb_with_frags+0xc5/0xa60
[ 1112.026574][T13472]  sock_alloc_send_pskb+0xacb/0xc60
[ 1112.032047][T13472]  tun_get_user+0xcfc/0x7830
[ 1112.036786][T13472]  tun_chr_write_iter+0x3e9/0x5c0
[ 1112.042041][T13472]  vfs_write+0xbe1/0x15c0
[ 1112.046534][T13472]  ksys_write+0x1d9/0x470
[ 1112.051110][T13472]  __ia32_sys_write+0x9a/0xf0
[ 1112.055958][T13472]  ia32_sys_call+0x37a7/0x4360
[ 1112.060926][T13472]  do_int80_emulation+0x15a/0x330
[ 1112.066132][T13472]  asm_int80_emulation+0x1f/0x30
[ 1112.071283][T13472] 
[ 1112.073708][T13472] CPU: 0 UID: 0 PID: 13472 Comm: syz.8.1800 Not tainted syzkaller #0 PREEMPT(full) 
[ 1112.083324][T13472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1112.093667][T13472] =====================================================
[ 1112.100761][T13472] Disabling lock debugging due to kernel taint
[ 1112.107002][T13472] Kernel panic - not syncing: kmsan.panic set ...
[ 1112.113552][T13472] CPU: 0 UID: 0 PID: 13472 Comm: syz.8.1800 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[ 1112.124666][T13472] Tainted: [B]=BAD_PAGE
[ 1112.128901][T13472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1112.139077][T13472] Call Trace:
[ 1112.142444][T13472]  <TASK>
[ 1112.145451][T13472]  __dump_stack+0x26/0x30
[ 1112.149933][T13472]  dump_stack_lvl+0x50/0x1c0
[ 1112.154668][T13472]  ? dump_stack+0x12/0x25
[ 1112.159139][T13472]  dump_stack+0x1e/0x25
[ 1112.163425][T13472]  vpanic+0x7b4/0x1430
[ 1112.167672][T13472]  panic+0x15d/0x160
[ 1112.171756][T13472]  kmsan_report+0x31a/0x320
[ 1112.176443][T13472]  ? __msan_warning+0x1b/0x30
[ 1112.181281][T13472]  ? eth_type_trans+0x477/0x9b0
[ 1112.186281][T13472]  ? bpf_prog_run_generic_xdp+0x1313/0x20d0
[ 1112.192330][T13472]  ? do_xdp_generic+0xe07/0x17f0
[ 1112.197415][T13472]  ? tun_get_user+0x525a/0x7830
[ 1112.202418][T13472]  ? tun_chr_write_iter+0x3e9/0x5c0
[ 1112.207773][T13472]  ? vfs_write+0xbe1/0x15c0
[ 1112.212429][T13472]  ? ksys_write+0x1d9/0x470
[ 1112.217087][T13472]  ? __ia32_sys_write+0x9a/0xf0
[ 1112.222105][T13472]  ? ia32_sys_call+0x37a7/0x4360
[ 1112.227158][T13472]  ? do_int80_emulation+0x15a/0x330
[ 1112.232518][T13472]  ? asm_int80_emulation+0x1f/0x30
[ 1112.237760][T13472]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1112.243709][T13472]  ? bpf_xdp_adjust_head+0x2e2/0x390
[ 1112.249166][T13472]  ? kmsan_get_metadata+0xf1/0x160
[ 1112.254400][T13472]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1112.260339][T13472]  ? ___bpf_prog_run+0xe958/0xea90
[ 1112.265615][T13472]  ? kmsan_get_metadata+0xf1/0x160
[ 1112.270854][T13472]  __msan_warning+0x1b/0x30
[ 1112.275521][T13472]  eth_type_trans+0x477/0x9b0
[ 1112.280385][T13472]  bpf_prog_run_generic_xdp+0x1313/0x20d0
[ 1112.286272][T13472]  ? pskb_expand_head+0x1c0e/0x1fb0
[ 1112.291669][T13472]  do_xdp_generic+0xe07/0x17f0
[ 1112.296646][T13472]  ? tun_get_user+0x51dc/0x7830
[ 1112.301658][T13472]  tun_get_user+0x525a/0x7830
[ 1112.306496][T13472]  ? stack_depot_save_flags+0x35/0x790
[ 1112.312127][T13472]  ? kmsan_get_metadata+0xf1/0x160
[ 1112.317359][T13472]  ? kmsan_get_metadata+0xf1/0x160
[ 1112.322597][T13472]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[ 1112.329116][T13472]  ? kmsan_get_metadata+0x40/0x160
[ 1112.334390][T13472]  tun_chr_write_iter+0x3e9/0x5c0
[ 1112.339598][T13472]  vfs_write+0xbe1/0x15c0
[ 1112.344114][T13472]  ? __pfx_tun_chr_write_iter+0x10/0x10
[ 1112.349826][T13472]  ksys_write+0x1d9/0x470
[ 1112.354332][T13472]  __ia32_sys_write+0x9a/0xf0
[ 1112.359181][T13472]  ia32_sys_call+0x37a7/0x4360
[ 1112.364065][T13472]  do_int80_emulation+0x15a/0x330
[ 1112.369258][T13472]  ? clear_bhb_loop+0x50/0xa0
[ 1112.374062][T13472]  ? clear_bhb_loop+0x50/0xa0
[ 1112.378877][T13472]  asm_int80_emulation+0x1f/0x30
[ 1112.383948][T13472] RIP: 0023:0xf7105cab
[ 1112.388106][T13472] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[ 1112.407849][T13472] RSP: 002b:00000000f53c644c EFLAGS: 00000246 ORIG_RAX: 0000000000000004
[ 1112.416405][T13472] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000080000280
[ 1112.424478][T13472] RDX: 0000000000000dd0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1112.432551][T13472] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1112.440619][T13472] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1112.448679][T13472] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1112.456783][T13472]  </TASK>
[ 1112.460249][T13472] Kernel Offset: disabled
[ 1112.464619][T13472] Rebooting in 86400 seconds..