last executing test programs:

12m26.266211885s ago: executing program 4 (id=5):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.current\x00', 0x26e1, 0x0)
close(r2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040))
r3 = openat$tun(0xffffffffffffff9c, &(0x7f00000017c0), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'ipvlan1\x00', 0x3101})
ioctl$TUNSETNOCSUM(r2, 0x8923, 0x20000000)

12m26.007905436s ago: executing program 4 (id=6):
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port0\x00', 0x511e36599023629, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r0, 0x0)
r1 = syz_io_uring_setup(0x24fa, &(0x7f00000002c0)={0x0, 0x0, 0x10100}, &(0x7f0000000480)=<r2=>0x0, &(0x7f0000000200)=<r3=>0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r4, &(0x7f00000001c0)=ANY=[@ANYBLOB='2'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READ_FIXED)
io_uring_enter(r1, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

12m25.61860562s ago: executing program 4 (id=8):
socket$netlink(0x10, 0x3, 0x9)
socket(0x10, 0x3, 0x6)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f00000004c0)=ANY=[@ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x10, 0x16, &(0x7f0000001f00)=ANY=[@ANYBLOB="61122800000000006113140000000000bf1000000000000025000200091b00003d030100000000008701000000000000bc26000000000000bf67000000000000150300000ee600f0670200001400000007030000ffffffffbf050000000000000f650000000000006507f4ff02000400070700004c0040ec1e00000000000000bf54000000000000070500000300f9ffae430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a82983d58719d72183f2cb7f43d555788be820b236dcb695dbfd737cbf5a9506d2d6b05fe70305863f970eac3590ac99b798f8125f1c322c2a154a8a8d0365fdda010639139b2fae1ed40d1a2fceed193688898e4aeb8f7dec07f68fe3c434e8c4e4fa7892190d97f56627b3771c5d76ff8dd66c147cca4ec32864aaefdfd0ffe5561b98c3605d97949f2ccb1a3898cc0a08c5877605492d271cae8e1c4ab7bc7e9fdf0e6e1e638f651722687ea0c937e1bc47a195abe7ce32b5e802e5075a53f70646032368"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
ioctl$TIOCL_GETKMSGREDIRECT(r2, 0x541c, &(0x7f0000000000))

12m25.323691255s ago: executing program 4 (id=10):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='task_newtask\x00', r0}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8)
close(r2)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x15, 0x10, 0x8, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x8, 0xf, &(0x7f0000000c80)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}, {}, {0x7, 0x0, 0xb, 0x2}, {0x85, 0x0, 0x0, 0x51}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_GET_PROG_INFO(0x1c, &(0x7f00000003c0)={r4, 0x0, 0x0}, 0x10)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000001e40)={r3, &(0x7f0000000300), 0x0}, 0x20)

12m24.653156658s ago: executing program 4 (id=12):
openat$audio(0xffffffffffffff9c, 0x0, 0x109842, 0x0)
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000180)="bb", 0x1}], 0x1, 0x0, 0x0, 0x80d0}, 0x8005)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, &(0x7f0000000180))

12m23.383172548s ago: executing program 4 (id=15):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000800))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000005c0)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000000)={0x4c, 0x0, &(0x7f00000000c0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x28, 0x18, &(0x7f0000000600)={@fd={0x66642a85, 0x0, r2}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x2, 0x27}, @ptr={0x70742a85, 0x0, &(0x7f00000004c0)=""/126, 0x7e, 0x0, 0x100000000000018}}, &(0x7f0000000280)={0x0, 0x18, 0x40}}, 0x1000}], 0x0, 0x0, 0x0})

12m8.295390245s ago: executing program 32 (id=15):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000800))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000005c0)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000000)={0x4c, 0x0, &(0x7f00000000c0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x28, 0x18, &(0x7f0000000600)={@fd={0x66642a85, 0x0, r2}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x2, 0x27}, @ptr={0x70742a85, 0x0, &(0x7f00000004c0)=""/126, 0x7e, 0x0, 0x100000000000018}}, &(0x7f0000000280)={0x0, 0x18, 0x40}}, 0x1000}], 0x0, 0x0, 0x0})

11m39.994789145s ago: executing program 0 (id=236):
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r0, 0x5)
syz_usb_connect$cdc_ecm(0x0, 0x4d, 0x0, 0x0)
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000040)={0x1, 0x1}, 0x8)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e20, @dev}, 0x10)
writev(0xffffffffffffffff, 0x0, 0x0)
sendmmsg(r1, &(0x7f0000002980), 0x400000000000239, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11m38.179492014s ago: executing program 0 (id=254):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
symlink(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0/../file0/file0\x00')
read$FUSE(r0, &(0x7f000000e280)={0x2020, 0x0, <r1=>0x0, <r2=>0x0}, 0x2020)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
write$FUSE_INIT(r0, &(0x7f0000000380)={0x50, 0x0, r1}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000008280)="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", 0x2000, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)={0x90, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x8000000000, 0x0, 0x0, 0x7, 0x2, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0xfffffff8}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f00000021c0)="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", 0x2000, &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000007c0)={0x90, 0x0, 0x4, {0x3, 0x0, 0x9d3, 0x3, 0x8, 0x2, {0x5, 0x6, 0x81, 0x7fff, 0xf5ef, 0x1, 0xa, 0x801, 0x8, 0xa000, 0x10000, r2, 0x0, 0x9, 0x2}}}, 0x0, 0x0, 0x0, 0x0, 0x0})

11m37.189491871s ago: executing program 0 (id=262):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
keyctl$KEYCTL_PKEY_ENCRYPT(0x18, &(0x7f0000000400)={0x0, 0x0, 0x1000}, 0x0, &(0x7f0000000980), &(0x7f0000000c00)=""/4096)

11m35.840850887s ago: executing program 0 (id=265):
syz_open_dev$cec(&(0x7f00000004c0), 0x0, 0x2841)
r0 = socket(0x23, 0x5, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2e, 0x0, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000000))
r2 = syz_io_uring_setup(0x497, &(0x7f0000000400)={0x0, 0x7079, 0x0, 0x4, 0x288}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000180)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0x0)

11m34.602538846s ago: executing program 0 (id=271):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x94)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000440)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
setpgid(r0, 0x0)
setpgid(0x0, r0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x400, 0x0)

11m33.154229114s ago: executing program 0 (id=276):
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x3d)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
r1 = creat(&(0x7f0000000300)='./bus\x00', 0x0)
io_setup(0xff, &(0x7f0000000380)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000140)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f00000001c0)="7f", 0x1, 0x0, 0x0, 0x0, r1}])

11m18.075332094s ago: executing program 33 (id=276):
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x3d)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
r1 = creat(&(0x7f0000000300)='./bus\x00', 0x0)
io_setup(0xff, &(0x7f0000000380)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000140)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f00000001c0)="7f", 0x1, 0x0, 0x0, 0x0, r1}])

3m50.145355486s ago: executing program 3 (id=2646):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8001c00180081064e81f782db44b9b545c7910006", 0x15}], 0x1}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="d8000000210081044e81f782db44b904020000", 0x13}], 0x1}, 0x0)
r0 = socket$kcm(0x2, 0x5, 0x84)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{0x10001, 0x0, 0xfffffffc, 0x5}, {0x2}], 0x10, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x84, 0x6e, &(0x7f0000000000)=r3, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1802000001000000000000000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = socket$kcm(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
close(r6)
recvmsg$unix(r5, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r7=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r4, 0x84, 0xd, &(0x7f0000000000)=r7, 0x8)

3m48.423700367s ago: executing program 3 (id=2658):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$P9_RGETLOCK(r2, &(0x7f00000002c0)=ANY=[], 0x200002e6)
fcntl$setpipe(r2, 0x407, 0x7000000)
fcntl$setpipe(r2, 0x407, 0x5)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r3=>0x0})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', <r4=>0x0})
r5 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$netlink(r5, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000240)=ANY=[@ANYBLOB="e00000001000090500000000000000006f6d8864d22a3f2ffaa46c88bca90000002b0e13e735a3184f123d6da2f1acfac0ee2dd2b184b27db1f302de337c0004060000000000bf852c8986626691b01b2d44e4ce2d715f2d28290a9423debbb86f9dba4a2dba4dbe076c02262600c446a567de243ab0d67683f7bb11c9cab3b3eed8a8bef4ff1631aa78acefca03c1a66db4424a8ba100022db258e58c03cddcf68d607a3e28bb7b5eb5100e434db5dd5e995aa0912086d9f4606d2e4cc898739222c5d3a83cb6b707f3336336ebb7d681000000140000800d000000cfe7336f9108"], 0xe0}], 0x1}, 0x0)
bind$packet(r1, &(0x7f0000000040)={0x11, 0x7, r4, 0x1, 0xdf, 0x6, @local}, 0x14)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x70bd2a, 0x8000000, {0x0, 0x0, 0x0, r3, {0x1f, 0x3}}}, 0x24}, 0x1, 0x0, 0x0, 0x20008040}, 0x4000000)
write$rfkill(r0, &(0x7f0000000000)={0x3, 0x10, 0x3}, 0x8)

3m45.925483793s ago: executing program 3 (id=2668):
r0 = socket$xdp(0x2c, 0x3, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000140)={'batadv_slave_1\x00', <r2=>0x0})
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x322000, 0x1000, 0x0, 0x2}, 0x20)
setsockopt$XDP_UMEM_COMPLETION_RING(r3, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r3, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r3, 0x11b, 0x5, &(0x7f0000000340)=0x8000, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000200)={'batadv_slave_1\x00', <r5=>0x0})
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f0000001780)=0x100000, 0x4)
bind$xdp(r3, &(0x7f0000000100)={0x2c, 0x0, r5}, 0x10)
bind$xdp(r0, &(0x7f0000000240)={0x2c, 0x1, r2, 0x0, r3}, 0x10)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f0000000c40)=0x4080, 0x4)

3m41.063480126s ago: executing program 3 (id=2680):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'bond0\x00'})
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x5, 0x5, 0x9fd, 0x84, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1a, 0x3, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x300, 0xed}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @tracing, r1, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200), 0x92f5e, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x6d)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f00000000c0))
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtaction={0x14, 0x30, 0x0, 0x0, 0x0, {0x9}}, 0x14}, 0x1, 0x0, 0x0, 0x4080000}, 0x20040000)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f0000000440)=[{{&(0x7f0000000000)=@generic={0x29, "1cf913da6a8a371c1217e0eff6fa933241c6f2d58cbdebbc7c6367f2751feb31a05ba188d7c3a62e941458557b976bd50a422762d3da6db8a8158c604d5b82615961bb25710a7b9ff7f6c0a94a81f02077f3e749ea4775f618f276e1b6d54c8df9922b5d2afec583eea2c0c5e133427d52e5fbcce19bb699f4b2ef3b1f28"}, 0x80, &(0x7f00000002c0)=[{&(0x7f00000001c0)}, {&(0x7f0000000200)="36f49895509174ce2f6ab83d14aa2faaaea1879275d03ab8e97d392e73f47ffffb46e511587d98c3c64365fc5d7b1119462c330ff5e755f3ebd8be73b57f12d745bbf70c9a6d931ac10f15e65d414f3c7356a63b65df4021e41a37b472008b45a7b0272ae66299373b6915ca84b2c54d2c3c84429b88b7e7242fdab62a2b5f4aade1de88242c61ae535421e86925c917e14e99de4a8ca6101232ccd998bbfa83fe2ee05eeefe6f56fe98dd8977e53033623f3f8612f5e572", 0xb8}], 0x2, &(0x7f0000000340)=[{0xb8, 0x29, 0xee007adc, "08a687116a3eda8dd03f28b62a74ce7f402cfab7980426eadbff70b43f05992a8aecbdb5ffbf4764ee05e6452e89dd0fc4feeb8df97cc73a87beac769f406795e79ea6043e783c98e973db8a8d67bc9ce7fa6e06140c93aec8fc7b9d4ee5414bda0727422bbc2a9606b0e2ff10fda3357f6d72057ac82fd75130ca31e5edea91cde8157b19674880864df866b37be0c083bd288b274afc2996c11013a8666fea1ac20f86fd497e"}], 0xb8}}], 0x1, 0x40)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000000240)={0x0, 0x7, 0x2000, {0x0, 0x1}, {0x46, 0x2}})
r3 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x822b01)
write$char_usb(r3, &(0x7f0000000040)="e2", 0x1b18)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)

3m39.899275079s ago: executing program 3 (id=2686):
syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00')
syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000d5e9bd40eb030200c0ba050000010902"], 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
landlock_create_ruleset(&(0x7f0000000000)={0x8000}, 0x10, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200))
r0 = syz_io_uring_setup(0x304, &(0x7f0000000240)={0x0, 0x0, 0x10100}, &(0x7f0000000500)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index=0xa, 0x0, 0x0, 0x1, 0x7})
write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[@ANYBLOB="06"], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

3m38.03166326s ago: executing program 3 (id=2698):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x602, 0x0)
r1 = creat(&(0x7f0000000140)='./file0\x00', 0x0)
close(r1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
r4 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000040)={0x90000005})
connect$unix(r2, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000180)={0x4000})
r5 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$BTRFS_IOC_SEND(r1, 0x40489426, &(0x7f00000001c0)={{r4}, 0x1, &(0x7f0000000100)=[0x7], 0x1, 0x4})
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000080)=0x1f6, 0x4)
sendmmsg$inet(r5, &(0x7f0000002b80)=[{{&(0x7f0000000040)={0x2, 0x4e24, @remote}, 0x10, 0x0}}], 0x1, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000001200), 0x4000, &(0x7f0000000000)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})

3m22.76837348s ago: executing program 34 (id=2698):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x602, 0x0)
r1 = creat(&(0x7f0000000140)='./file0\x00', 0x0)
close(r1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
r4 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000040)={0x90000005})
connect$unix(r2, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000180)={0x4000})
r5 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$BTRFS_IOC_SEND(r1, 0x40489426, &(0x7f00000001c0)={{r4}, 0x1, &(0x7f0000000100)=[0x7], 0x1, 0x4})
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000080)=0x1f6, 0x4)
sendmmsg$inet(r5, &(0x7f0000002b80)=[{{&(0x7f0000000040)={0x2, 0x4e24, @remote}, 0x10, 0x0}}], 0x1, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000001200), 0x4000, &(0x7f0000000000)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})

2m44.563089907s ago: executing program 7 (id=2904):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$kcm(0x2, 0x1000000000000002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x69, 0x11, 0x32}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
socket$igmp6(0xa, 0x3, 0x2)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r3}, &(0x7f0000000240), &(0x7f00000003c0)=r5}, 0x20)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000200)={r4, r1, 0x25, 0x2, @val=@tcx={@void, @value}}, 0x1c)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@broadcast, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @multicast1}, @timestamp_reply={0x11, 0x0, 0x0, 0xe000, 0x2, 0x1, 0xffffffff}}}}}, 0x0)

2m42.831973504s ago: executing program 7 (id=2910):
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
connect$unix(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0x1ff, 0x4)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7654}]}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000280)='htcp\x00', 0x5)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10)
sendmsg$inet(r0, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0)
recvmsg(r0, &(0x7f0000000580)={0x0, 0x2, &(0x7f0000000500)=[{&(0x7f0000000740)=""/4096, 0xa15b0}], 0x1, 0x0, 0x2000000000000}, 0x700)
mknodat$loop(0xffffffffffffffff, 0x0, 0xc000, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(0xffffffffffffffff, 0x80049367, &(0x7f0000000340))

2m40.417322423s ago: executing program 7 (id=2918):
r0 = openat$vsock(0xffffff9c, &(0x7f00000001c0), 0x40101, 0x0)
sendmsg$RDMA_NLDEV_CMD_GET(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4008000}, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000880}, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x2004c8, 0x8000000, 0x0, 0x10000000, 0xfffffffffffffffe, 0x1, 0x0, 0x0, 0x5]})
sendmsg$NL80211_CMD_SET_KEY(r3, &(0x7f0000000480)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000440)={&(0x7f0000000240)=ANY=[@ANYBLOB="01002abd7000fddbdf250a", @ANYBLOB="0800052479f7"], 0x24}, 0x1, 0x0, 0x0, 0x4004841}, 0x4810)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x400000000000002, 0x5, 0xfffffffffffffffe, 0x4, 0x2, 0x0, 0xefffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3], 0x0, 0x41901})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

2m36.95886184s ago: executing program 7 (id=2924):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000480)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
unshare(0x22020600)
r3 = syz_io_uring_setup(0x10d, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x40000000}, &(0x7f0000000380)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f0000000100)=@IORING_OP_SYMLINKAT={0x26, 0x40, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00'})
io_uring_enter(r3, 0x3f70, 0x0, 0x0, 0x0, 0x0)

2m34.831739507s ago: executing program 7 (id=2928):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x13, 0x4, 0x0, 0x0, 0x4c, 0x64, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp_prespec={0x44, 0x2c, 0xbd, 0x3, 0x1, [{@private=0xa010100}, {@remote}, {@broadcast}, {@empty, 0x3}, {@private=0xa010100, 0xa}]}, @noop, @noop, @rr={0x7, 0x7, 0x1, [@remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)

2m32.829866582s ago: executing program 7 (id=2941):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffc}}, &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
creat(&(0x7f0000000240)='./file0\x00', 0x148)
pipe2$9p(&(0x7f0000001900)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000004c0), 0x10400, &(0x7f0000000700)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3, @ANYBLOB=',cache=mmap'])
chmod(&(0x7f0000000140)='./file0\x00', 0x0)
r4 = open$dir(&(0x7f0000000180)='./file0\x00', 0x1, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0)
ftruncate(r5, 0x2000009)
sendfile(r4, r5, 0x0, 0x7ffff000)
utime(&(0x7f0000003000)='./file0\x00', 0x0)

2m17.522713015s ago: executing program 35 (id=2941):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffc}}, &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
creat(&(0x7f0000000240)='./file0\x00', 0x148)
pipe2$9p(&(0x7f0000001900)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000004c0), 0x10400, &(0x7f0000000700)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3, @ANYBLOB=',cache=mmap'])
chmod(&(0x7f0000000140)='./file0\x00', 0x0)
r4 = open$dir(&(0x7f0000000180)='./file0\x00', 0x1, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0)
ftruncate(r5, 0x2000009)
sendfile(r4, r5, 0x0, 0x7ffff000)
utime(&(0x7f0000003000)='./file0\x00', 0x0)

39.873529703s ago: executing program 8 (id=3283):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
setresuid(0x0, 0xee00, 0xffffffffffffffff)
setfsuid(0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r1, &(0x7f000001a240)=""/102400, 0x19000, 0x100008)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='rxrpc_call\x00', r0, 0x0, 0xfffffffffffffffc}, 0x18)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000002c0)=ANY=[], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rxrpc_call\x00', r2}, 0x10)
unshare(0x62040200)

37.89538399s ago: executing program 8 (id=3293):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
setpriority(0x0, r0, 0x8000000000000001)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_MCE_KILL(0x35, 0x1, 0x4)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f00000042c0)='mounts\x00')
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/crypto\x00', 0x0, 0x0)
read$FUSE(r3, &(0x7f0000000200)={0x2020}, 0x2020)
mount(&(0x7f0000000300), &(0x7f0000000080)='.\x00', &(0x7f0000000180)='tmpfs\x00', 0x2200890, 0x0)

36.258506994s ago: executing program 8 (id=3296):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f00000000c0)={0x1}, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = mq_open(&(0x7f0000000040)='!\x7f\x00\xca\x00\x00\x00\f\x00\x00\x01E!Tnux\x00', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000000)={0x0, 0x1, 0x8})
mq_timedreceive(r4, &(0x7f0000000180)=""/196, 0xc4, 0xffffffffff600000, 0x0)
mq_timedsend(r4, 0x0, 0x0, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002080)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40488e4)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
shutdown(0xffffffffffffffff, 0x1)

32.464267835s ago: executing program 8 (id=3303):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r0, 0x82307201, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x3, 0x800001, 0x0, &(0x7f0000000000), 0x0)
r1 = socket(0x2b, 0x1, 0x1)
accept$inet(r1, 0x0, 0x0)
syz_open_dev$mouse(0x0, 0x10000000006, 0x408040)
ioctl$BTRFS_IOC_SET_FEATURES(0xffffffffffffffff, 0x40309439, &(0x7f0000000100)={0x2, 0x1, 0x8})
r2 = socket(0x40000000015, 0x5, 0x0)
bind$inet(r2, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x4e24, 0x7f, @dev={0xfe, 0x80, '\x00', 0x41}, 0xca}, 0x1c)
sendto$inet(r2, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x2, 0x0, @loopback}, 0x10)
r3 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r3, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
bind$inet(r3, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x0, 0x0, 0x0)

28.338469475s ago: executing program 8 (id=3310):
ioperm(0x0, 0x7, 0x40000000000006)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_STATUS(r0, 0x408c5333, &(0x7f0000000280))
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x820000, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r3, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r3, 0x8)
r4 = accept4(r3, 0x0, 0x0, 0x0)
setsockopt(r4, 0x84, 0x80, &(0x7f00000003c0)="1a00000002000100", 0x8)
setsockopt$inet_sctp_SCTP_SET_PEER_PRIMARY_ADDR(r4, 0x84, 0x5, &(0x7f0000000540)={0x0, @in6={{0xa, 0x4e22, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x10}}}, 0x84)
ioctl$KVM_HYPERV_EVENTFD(r2, 0xc048aec8, &(0x7f0000000000)={0x5, 0xffffffffffffffff, 0xfffffffe})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f0000000080)={0xb, 0x7, 0x9, 0xa3, 0x7, 0x4})

26.931103004s ago: executing program 8 (id=3315):
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_TMR_TIMEBASE(r0, 0xc0045401, &(0x7f0000000340))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_mreqn(r1, 0x0, 0x3, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB, @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000940)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000180)='percpu_alloc_percpu\x00', r3}, 0x18)
sync()
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x4)
accept4(r1, 0x0, &(0x7f00000001c0), 0x80000)
openat$rdma_cm(0xffffff9c, &(0x7f0000000200), 0x2, 0x0)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r4, &(0x7f0000000000)={0x13, 0x10, 0x7, {0x0, 0xffffffffffffffff, 0x1}}, 0x18)

16.883615248s ago: executing program 2 (id=3338):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x16, 0x4, 0x0, 0x0, 0x58, 0x65, 0x0, 0x0, 0x0, 0x0, @private=0xa010100, @remote, {[@timestamp_prespec={0x44, 0x34, 0xc0, 0x3, 0x1, [{@private=0xa010100, 0x7ff}, {@multicast1, 0x5}, {@remote}, {@broadcast}, {@empty, 0x3}, {@private=0xa010100, 0xa}]}, @noop, @noop, @lsrr={0x83, 0xb, 0xdc, [@private=0xa010102, @multicast1]}, @rr={0x7, 0x3, 0x1}]}}}}})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r3, 0x0)
r4 = dup(r2)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000})
ioctl$KVM_NMI(r5, 0xae9a)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
write$binfmt_script(r0, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)

15.28749662s ago: executing program 2 (id=3345):
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0)
openat$cgroup_subtree(0xffffffffffffffff, 0x0, 0x2, 0x0)
fsopen(0x0, 0x0)
chdir(0x0)
ioctl$TIOCL_GETMOUSEREPORTING(0xffffffffffffffff, 0x5412, &(0x7f00000000c0)=0x13)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)={0x30, 0x1, 0x1, 0x101, 0x0, 0x0, {0xa}, [@CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x468}]}, @CTA_TUPLE_ORIG={0x10, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}]}]}, 0x30}}, 0x0)

11.404931528s ago: executing program 36 (id=3315):
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_TMR_TIMEBASE(r0, 0xc0045401, &(0x7f0000000340))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_mreqn(r1, 0x0, 0x3, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB, @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000940)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000180)='percpu_alloc_percpu\x00', r3}, 0x18)
sync()
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x4)
accept4(r1, 0x0, &(0x7f00000001c0), 0x80000)
openat$rdma_cm(0xffffff9c, &(0x7f0000000200), 0x2, 0x0)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r4, &(0x7f0000000000)={0x13, 0x10, 0x7, {0x0, 0xffffffffffffffff, 0x1}}, 0x18)

10.736644704s ago: executing program 2 (id=3352):
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@ipv4_newrule={0x24, 0x20, 0x301, 0x0, 0x0, {}, [@FRA_GENERIC_POLICY=@FRA_FWMASK={0x8, 0x10, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r2 = gettid()
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xffffffed]}, 0x0, 0x8)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x3, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r3}, 0x10)
timer_create(0x3, &(0x7f000049efa0)={0x0, 0x14, 0x4, @tid=r2}, &(0x7f0000044000))
timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
rt_sigprocmask(0x2, &(0x7f0000001140)={[0x8386]}, 0x0, 0x8)

10.00924848s ago: executing program 6 (id=3353):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000400)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_SUBDEV_ENUM_DV_TIMINGS(r3, 0xc0945662, &(0x7f0000000380)={0x0, 0x0, '\x00', {0x0, @reserved}})
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)
r5 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r5, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local, @loopback}, 0xc)
getsockopt$inet_buf(r5, 0x0, 0x29, &(0x7f0000000040)=""/185, &(0x7f0000000100)=0xb9)

9.889172888s ago: executing program 5 (id=3354):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
write$P9_RSTATu(0xffffffffffffffff, &(0x7f0000000580)=ANY=[], 0x20e)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0x42002, 0x0)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r5, r6, 0x0, 0x20000023896)
ioctl$TIOCVHANGUP(r5, 0x5437, 0x0)

9.643543095s ago: executing program 1 (id=3355):
socket$inet6(0xa, 0x3, 0x8000000003c)
socket$igmp6(0xa, 0x3, 0x2)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01)
r1 = syz_io_uring_setup(0x10d, &(0x7f0000000200), &(0x7f0000000340)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$inet(r5, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r4, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000140), 0x100}, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r6, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9, 0x12, r6, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080), 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_WRITE={0x17, 0x10, 0x4007, @fd_index=0x8000000, 0x2, 0x0})
io_uring_enter(r1, 0x3f70, 0x0, 0x0, 0x0, 0x0)

8.918419124s ago: executing program 6 (id=3356):
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x42400)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x42400)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getpid()
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x4c, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x13, 0x3, 'hash:net,iface\x00'}]}, 0x4c}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, 0x3, 0x6, 0x5, 0x0, 0x0, {0x2, 0x0, 0x4}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x48000}, 0x800)
r4 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x3)
dup3(r4, 0xffffffffffffffff, 0x0)

8.687835372s ago: executing program 1 (id=3357):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10002, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x3, &(0x7f0000000440)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
dup3(r1, r0, 0x0)

7.304037873s ago: executing program 6 (id=3358):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x28031, 0xffffffffffffffff, 0x8000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x1d1)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r3, &(0x7f0000001fc0)=""/184, 0x20002078)

7.268549694s ago: executing program 5 (id=3359):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x92)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x105042, 0x147)
ioctl$FICLONERANGE(r3, 0x4020940d, &(0x7f00000000c0)={{r3}, 0x0, 0x0, 0x100000})
syz_emit_vhci(&(0x7f00000001c0)=ANY=[@ANYBLOB="02c9001e001a000500170816"], 0x23)

5.587530064s ago: executing program 1 (id=3360):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
getpeername$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r1, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r3}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x36}], 0x1, 0x0, 0x0, 0x2f00}}], 0x1, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000040)={{0x1, 0x300, 0x0, 0x3}, 0x0, 0x0, 'id1\x00', 'timer1\x00', 0x0, 0x81, 0x1, 0xffffffffffffd0c4})
socket$inet6_sctp(0xa, 0x1, 0x84)
capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xfffffffb})
socket$inet_mptcp(0x2, 0x1, 0x106)
r4 = io_uring_setup(0x1de0, &(0x7f0000000440))
io_uring_register$IORING_REGISTER_PBUF_RING(r4, 0x16, &(0x7f0000000740)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x13, 0xe, &(0x7f0000000d00)=ANY=[@ANYBLOB="b70000008100003bbfa30000000000000703000003feffff720af0fff8ffffff71a4f0ff0000000071105400000000001d400500000000004704000001ed00000f030000000000001d440000000000006b0a00fe000000007313000000000000b5000000000000009500000000000000023bc065b58111c6dfa041b63af4a3912435f1a864a710aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168c50000000190f32050e436fe275daf51efd66fcd82e4fee5bef7af9aa0d7d600c095199fe3ff31a8fd3c0fd8b7ff831028e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646c0200000000000000020000e35208b0bb0d2cd829e654400e2438ec649dc76128610643a98d9ec21ead2ed51b104d4d91af25b845d8a7925c3109b151b8b9f75dd08d123deda82fc9c4d7ecc7a803bf28bf7076c15b463bebc72f526d8e8afcb913466aaa7f6df70252e79166d858fcd0e06dd31af9612f2460d0b11008e59a5923906f88b53987ad1714f62ba7a54f0c33d39000d0bfed3a6a59ff616236fd8f2477184bdef728d236619074d6ebdfd1f5089048ddff6da40f9411fe722631cb467600ade70063e5291569b33d21dae356e1c51f000001be8189679a16da18ec0ae564162a27afea62d84f3a10746443d6438e959532e0617d419c6bc6ea9f2bca4464f56e24e6d2105bd901204a1deeed4155617572652d950ad31928b0b0c3dc2869f478341d02d0f5ad94b081fcd507acb4b9c65fee9d5a17f48a7382f13d000000225d85ae49cee383dc5049076b989b40000000000000da60d2ae20cfb91d6a49964757cdf538f9ce2bdb1ab062cd54e67011d355d84ce97bb0c6b4a595e487efbb2d71cde2c140952f9a0f0bc6980fe78683ac5c0c31032599ddd71063be9261b2e1aab1675b34a22048ef8c126aeef5f510a8f1aded94a129e4aec6f8d9ab06fa2e04cfe0649226c697d9e8eaade69d0540059fe6c7fe7cd8697502c7596566d674e425da5e87e59602a9f6590521d31d38684dfca2e04ffc36d524c846128e04b3e0a1053abdc31282dfb15eb6841bb64a1b304502dda787343ce3c953992e4a982f3c48153baae244e7bf37548c7f1a4cad2422ee965a38f7defbd2160242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de44028d6112a0c2d21b2dc98816106dec28eaeb883418f562ae00023ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc4e95dd2d18383117c039862198899b212c55318294270a1ad10c80fef7c24d47afce829ba0f85da6d888f18ea40ab959f6074ab2a40d85d15017ab513cdc6c0e57fb1c1ca571380d7b4ead35a385e0b4a26b702396df7e0c1e02b6e4114f244a9bf93f04bf072f0861f7580e69db384ac7eeedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba34015ea5aacb1188883ad2a3b1832371fe5bc621426d1ed0a4a99702cc1b6912a1e717d29135753208165b9cdbae2ed9dc7358f0ebadde0b727f27feeb744ddcc536cbae315c7d1fe1399562ba6824840bd2951680f6f2f9a6a8346962a350845ffa0d829e4f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010aec0e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a532869d701723fedcbada1ee7baa5b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ceb201ddeb6dc5f6a903792283c42efc54fa84323afc4c10eff462c8843187f1dd48ef3fa293774d582956ff0f40b10ca94f6feeb2893c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88f15efaaeea831555877f9538d6ee6ba65893ff1f908ba7554ba583fef3ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738012e4fee18a22da19fcdb4c2890cda1f96b952511e3a69d694d625e0b2f808890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f6f096753b639a920099c1f69219927ea5301fff0a6063d427f0688430754c02180d61542c2571f983e9673560000000000000000005a7b57f03ca91a01ba2e30ca99e8ebc15ecb4d91675767999d146aef7799738b292fd640dfef6b04d086f737a159d7e0c6e4d81ad64a8bbca48568325b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a7bce14c6de4e7c0660d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b91b7d120617d12d91db2633d6864da40fc5d2f55ff07c53147de202ce517b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e1661061173f359e9052a4cecd89008f70314a0bdd491ec86a4555d89fe0120f64c62e8e3ed8bcb45202c3d4bbec8d722824c0ebca8db1ea4a003d2fbdc1f9be78537756ab5bbe4fe9af5d785d0128171c90d9900ce2532b0f9d01c4b45294fbba468df3e1b393cb4e62e754598e47df6bd06431c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd84990453f006694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee077515d0a8811922929e085392ab3d1311b8243266d87047f601fa88a0da36b9f302e8262395174328f2482d14008de83070744f143fdec90ba5a82668d5fac114c13955ad6dca5db2231d8ba14c54c47ed04a4b4ace17e357e1d6432399f87a7a14245bbd796a09313b247b95d37ff40a404bdad74bd20000000000000000000099fef7cd7af3ce64a92f95d89d125b1e641240d7e5e27a3d1f7684448c3e3822d617e205061298b939a191be4b48e169bde2cae3accc5bd40a2968b59c93d35f8e42366fdef9a2abae1cf01ce68abff26b61aac8aaa54ebbcefd23f21ce8153b9926e12e925cb56119df72c7533a48d028ad0c74e2a9478fa3ba18a1a2b65079cc1c7bc46dd12305a1ae9dd19e8d525206c0a728cfd42193abe8130bc01a2d69841f3d7799ac04bdc590bb1c89b9c695f163e57343c9bfb59909433c9001c5f8b23e26534a538fc933cac6c2a92d038df638a0f226df9fb857bd414c2cd69985e8053e3dfa41614d7c74d04d8c2471041d17c730fad28395f8d4688898cd58b9d600c851626529bb58aa364b55e73f053450665e7b94ad1012fd7a8139166fd5e59c84f4ab279b1b99c028db4cb9680c8035f967db18de738844da7e260a830c1ffa49f5af3c15423a0e315acb82a3e89218cb314e68fda4d94aa1d815babc13b9fd336dfaa6d5d164301190bc2d4c04087729033342045804a28082abc3b4762302a271722fb515f31e0dd115a292f1e68481a62c49d15ea5460a29c60b1058fb7aa9bf4ee3cbe11b03711a15d730646b72d074dab1e8c429339f3460d324c17a4a8bfc7d7eab45bef00664d6dc8230000000000000000000000000000000000000000000000000d88754d3dc03bf1511e9ae4b5bae5adfd337e72f8ffc1c15679a87ba581d0b99dec4f6da7858bb8534e9a0666d53b66089b1bca923b9d2c3db01884c0b8ce728e817349fa6faea6f4283651ae3063f52d1625fb21ed122ae437cf44263ff9a81de3b8fd3972297432e0b6fe6ba22b71b9d5340ce501a4d77dbba648c34fe8800b3949ebe5298bdb8dad7c2f8c3e69ef2e47b3478f6903283dafbf18f7a51bd154bcfa5ab57c80f0d2a3f703f9e65148df3295ec337bb3c65ff8b1be55959cb3e4423a22dab5b4fc3f8ef5251b48b03325f563181d5bd09db07029cbe35c10a5680398ed70cf970e53b76d5c20c962201d0904beb3d4296f73526bc2002626e915b028380f3a60c557b8eb9e3fe4fc8467334795e5868fa20a3d45a13925516393855561b29d77c52ac929e7748b4b6d64afa36"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x5}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, 0x0)

5.472431361s ago: executing program 6 (id=3361):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000"/34, @ANYRES32=0x41424344], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="1500"], 0x15)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

5.439433374s ago: executing program 2 (id=3362):
mkdir(&(0x7f00000001c0)='./file1\x00', 0x117)
mkdir(&(0x7f0000000100)='./file0\x00', 0x10)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f0000000100))
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x18, 0x0, &(0x7f0000000300)=[@acquire, @request_death], 0x0, 0x0, 0x0})
dup3(r2, r1, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f00000001c0)="46f6b6f5e696d9b37f381b837577a7213ba3fd3eff3cdb4090ba794f571ce22b75fbd01a425d4d560c7a5cb6995fa28202297fa90a4ad0be966096226948da5db222fd00f6ad720fd7665f7335c4b56a"})
r3 = openat$binder_debug(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
lseek(r3, 0x851, 0x0)

4.59972983s ago: executing program 5 (id=3363):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r0=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r0, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}}, 0x24}}, 0x0)
sendmsg$ETHTOOL_MSG_WOL_GET(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8001}, 0x40040)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000080)={0x0, &(0x7f0000000040)}, 0x10)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote}}}})
r1 = openat$vsock(0xffffff9c, &(0x7f00000001c0), 0x40101, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x84}, 0x24040900)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x2004c8, 0x8000000, 0x0, 0x10000000, 0xfffffffffffffffe, 0x100, 0x0, 0x0, 0x5]})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f00000002c0)={[0x400000000000002, 0x5, 0xfffffffffffffffe, 0x2, 0x2, 0x0, 0xefffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0xffffffffffffffff, 0x3], 0x0, 0x41901})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

4.50887079s ago: executing program 1 (id=3364):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
rmdir(&(0x7f00000001c0)='./cgroup/../file0\x00')

4.459548256s ago: executing program 5 (id=3365):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001000)=ANY=[@ANYBLOB="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"/2640], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='&\x00\x00\x00\a'], 0x50)
setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f0000000200)=r4, 0x4)
bind$bt_hci(r3, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r3, &(0x7f0000000000), 0xd)

4.445420487s ago: executing program 6 (id=3366):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
socket(0x15, 0x5, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f00000000c0)={@mcast1, 0x9, 0x0, 0x103, 0x11, 0x0, 0x3}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000c80)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0xffe0}, {0xffff, 0xffff}, {0xd}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0x3, 0x1, 0x1}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x51}, 0x20040000)
r5 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x170, 0x24, 0xd0f, 0x70bd2b, 0x0, {0x60, 0x0, 0x0, r7, {}, {0xffff, 0xffff}, {0xa}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x140, 0x2, [@TCA_GRED_STAB={0x104, 0x2, "52087def75c736f85cc7d27338360e8cb966058f66908611a2da3e15d87ea4bbea3d646bddcbf88d74a8f9e560e73cc92e50a1e1eb696bc28149a6f97bca767db6d5a2e4a0ce4e1f337f52af8d065ab3903bf929f30662e91d6466b050411964902e6bfd3d89271fd28b48677d5cf2caefd8a40abbe65daabf39f028156294855a66954d2349461e5b3fdf380433eb7182203d89bd1637c99109d611ac6ddd1f8bd70df15be1196d73cf82360c81beb73bd89d4e22511b72fa9373f5ff75156b83de4ba43f4325cb81ad4e1ebabd12279a1c2cb16d9b64ac46472168b729780d5697663cde109a2ea16079fdfb016066bd7f663500"}, @TCA_GRED_PARMS={0x38, 0x1, {0x1, 0x6, 0x37, 0xa, 0x80000001, 0xb, 0x6, 0xffffffff, 0x2, 0x0, 0x14, 0x9, 0x8, 0x6, 0x8bc, 0x6}}]}}]}, 0x170}}, 0x0)

3.299305615s ago: executing program 1 (id=3367):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'vxcan0\x00'})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
socket$phonet_pipe(0x23, 0x5, 0x2)
bind$phonet(r3, &(0x7f0000000000)={0x23, 0x1, 0x20, 0x4}, 0x10)
close(r3)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x101501, 0x0)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x118)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140), 0x8417f, 0x0)

3.298482947s ago: executing program 2 (id=3368):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmsg$inet6(r0, &(0x7f0000003940)={&(0x7f00000024c0)={0xa, 0x4e20, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}, 0x7fff}, 0x1c, &(0x7f0000003700)=[{&(0x7f0000002500)="84", 0x1}], 0x1}, 0x4040)
socket$inet(0xa, 0x801, 0x84)
socket$inet(0xa, 0x801, 0x84)

3.297690501s ago: executing program 5 (id=3369):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413e850000000f00000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2d, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
r5 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r5, &(0x7f0000002c80)={0xa, 0x14e24}, 0x1c)
connect$inet6(r5, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c)
sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0)

1.281992398s ago: executing program 5 (id=3370):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r5=>0x0]}, &(0x7f0000000240)=0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000000)={r5, 0x8, 0x290}, 0x8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYRESOCT=r4], 0x0, 0x4d, 0x0, 0x20000, 0x33d, 0x0, @void, @value}, 0x28)

858.076665ms ago: executing program 1 (id=3371):
dup(0xffffffffffffffff)
syz_open_dev$radio(0x0, 0x1, 0x2)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b07080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf5af51d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa16509945ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88c3c44b3b7486f979e8a3174b531f573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867ec92d13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d93e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a0000000000000000000000000000cf7b6c4ba9bec153d6834bfef080df374703a8ff56a63ec1fe5f2e05a79e3cace7283dd68d41e94420c325fe4dae144fde5ec25a87d625cab20753a77b323fa3783c8b675859b9012647885a242adfee2fe812ecbe5191e0a15142f7349e7627cc39d724e2e34e7a24154f26ae3125b36d0504965295d0453902ac7079b11a3a1e655e482331e3dc35b2e7e4e3ea99064fe5b9c8ae0ca3e5fd653f3286a99d81ce4eba765c38d097391ad4babac38ce5b4344e24a361cd54e5"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x2a, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='rcu_utilization\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r4, 0xc004500a, &(0x7f0000000080))
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000500)={0xa00, 0x18, 0xfa00, {0x0, 0x0}}, 0xfc36)

551.232339ms ago: executing program 2 (id=3372):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r0, 0xc058534f, &(0x7f0000000200)={{0x0, 0x1}, 0x0, 0x21, 0x0, {0x0, 0x4}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a74000000060a0b04000100000000000002000000480004802800018007000100637400001c0002800500030001000000080001400000001708000240000000131c0001800a00010072656469720000000c00028008000140000000170900010073797a30000000000900020073797a32"], 0x9c}}, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r6, 0x4138ae84, &(0x7f0000000100)={{0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0xfc, 0x0, 0x4, 0x10}, {0x0, 0x0, 0x0, 0xc1, 0x0, 0x0, 0x9, 0x0, 0xd8}, {0xeeee0000, 0xdddd5000, 0xc, 0x0, 0x7, 0x2, 0x0, 0x0, 0x0, 0x6, 0x0, 0xfc}, {0xdddd0000, 0x0, 0xf, 0x0, 0x0, 0x18}, {0x1, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x3c}, {}, {0x0, 0x0, 0xd, 0xfe, 0x0, 0x0, 0x0, 0x0, 0xfe}, {0xd4ac0b8eca0a816f, 0xeeee8000, 0x0, 0x0, 0x0, 0x1, 0x3, 0xa, 0xfe}, {}, {0x10000}, 0xddf8ffdb, 0x0, 0xdddd0000, 0x140030, 0xb, 0xd01, 0x0, [0x0, 0x2, 0x7]})

0s ago: executing program 6 (id=3373):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_DELETE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x34, r1, 0x1, 0x70bd27, 0x4, {0x5}, [@L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0xaa8}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x2}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x7}, @L2TP_ATTR_SESSION_ID={0x8, 0xb, 0x2}]}, 0x34}, 0x1, 0x0, 0x0, 0x24000041}, 0x40040a4)
sendmsg$L2TP_CMD_SESSION_GET(r0, &(0x7f0000000600)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x1c, r1, 0x10, 0x70bd2c, 0x25dfdbfe, {}, [@L2TP_ATTR_PW_TYPE={0x6, 0x1, 0xb}]}, 0x1c}}, 0x4000)
syz_usb_connect(0x2, 0x24, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x4d, 0xcf, 0xf4, 0x8, 0x572, 0xd811, 0x94e2, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0xa0, 0x0, [{{0x9, 0x4, 0x1e, 0x0, 0x0, 0xb3, 0x5b, 0x1e}}]}}]}}, 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100007292bd404020305582a80000000109021b0001000000000904", @ANYBLOB="868f54"], 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f00000000c0)={<r3=>0x0, 0xf46, 0x4}, &(0x7f0000000100)=0x8)
getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6, &(0x7f0000000140)={r3, @in6={{0xa, 0x4e23, 0x6, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010102}, 0x8}}}, &(0x7f00000003c0)=0x84)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000340)={0x1b, 0x0, 0x0, 0x800000, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000d40)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000880), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
modify_ldt$write(0x1, &(0x7f0000000140)={0x1, 0x20000000, 0x1000, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
setsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r2, 0x84, 0x12, &(0x7f00000002c0)=0x5, 0x4)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000380)={r4, 0xe0, &(0x7f0000000480)={0x0, <r5=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64, 0x8, 0x0, 0x0}}, 0x10)
r6 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000d00)={r5}, 0x4)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000840)={r6, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0xffe4, 0xfffffffffffffda0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x4)

kernel console output (not intermixed with test programs):

are load for . failed with error -22
[  214.603251][ T8712] netdevsim netdevsim5: Falling back to sysfs fallback for: .
[  215.143249][ T8715] overlayfs: invalid redirect ((null))
[  216.030826][   T29] kauditd_printk_skb: 225 callbacks suppressed
[  216.030844][   T29] audit: type=1326 audit(1737407578.526:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8740 comm="syz.3.764" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7999185d29 code=0x0
[  216.652855][ T8657] syz.5.730 (8657) used greatest stack depth: 17520 bytes left
[  219.199466][ T8797] xt_ecn: cannot match TCP bits for non-tcp packets
[  219.554791][ T5868] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  220.774653][ T5868] usb 3-1: Using ep0 maxpacket: 32
[  220.854682][ T5868] usb 3-1: config 0 has an invalid interface number: 51 but max is 0
[  220.873066][ T5868] usb 3-1: config 0 has no interface number 0
[  220.892175][ T5868] usb 3-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  220.907285][ T5868] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  220.924686][ T5868] usb 3-1: Product: syz
[  220.933959][ T5868] usb 3-1: Manufacturer: syz
[  220.944201][ T5868] usb 3-1: SerialNumber: syz
[  220.970696][ T5868] usb 3-1: config 0 descriptor??
[  220.997322][ T5868] quatech2 3-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  221.211350][ T5868] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  221.264927][ T5868] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  221.415889][ T8795] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  221.464990][ T8795] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  222.979856][    C0] usb 3-1: qt2_read_bulk_callback - non-zero urb status: -71
[  222.983414][ T2148] usb 3-1: USB disconnect, device number 12
[  223.034819][ T2148] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  223.118254][ T2148] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  223.165817][ T2148] quatech2 3-1:0.51: device disconnected
[  224.504205][ T8856] netlink: 24 bytes leftover after parsing attributes in process `syz.3.804'.
[  224.811368][ T8863] tipc: New replicast peer: 255.255.255.255
[  224.839670][ T8863] tipc: Enabled bearer <udp:syz2>, priority 10
[  225.417612][ T8879] kvm: pic: level sensitive irq not supported
[  225.417698][ T8879] kvm: pic: non byte read
[  225.444374][ T8879] kvm: pic: level sensitive irq not supported
[  225.444440][ T8879] kvm: pic: non byte read
[  225.487207][ T8879] kvm: pic: level sensitive irq not supported
[  225.487274][ T8879] kvm: pic: non byte read
[  225.531970][ T8879] kvm: pic: level sensitive irq not supported
[  225.532037][ T8879] kvm: pic: non byte read
[  225.743973][ T8883] vlan2: entered promiscuous mode
[  225.755947][ T8883] bond0: entered promiscuous mode
[  225.774008][ T8883] bond0: left promiscuous mode
[  226.088475][ T8896] netlink: 24 bytes leftover after parsing attributes in process `syz.2.823'.
[  227.086752][ T8931] netlink: 4 bytes leftover after parsing attributes in process `syz.2.833'.
[  228.654144][ T8968] netlink: 'syz.5.846': attribute type 2 has an invalid length.
[  229.769599][ T8992] fuse: Bad value for 'rootmode'
[  229.930686][ T8998] netlink: 'syz.6.861': attribute type 62 has an invalid length.
[  229.948848][ T8997] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  231.219295][ T9017] netlink: 'syz.3.868': attribute type 10 has an invalid length.
[  231.991773][ T9017] 8021q: adding VLAN 0 to HW filter on device team0
[  232.080967][ T9017] bond0: (slave team0): Enslaving as an active interface with an up link
[  232.757011][ T9043] overlayfs: failed to clone upperpath
[  232.765916][ T9042] overlayfs: failed to clone upperpath
[  232.819548][ T9044] Invalid ELF header magic: != ELF
[  233.754188][ T9049] overlayfs: failed to clone lowerpath
[  233.796903][ T9054] netlink: 24 bytes leftover after parsing attributes in process `syz.1.881'.
[  233.805362][ T9055] overlayfs: failed to clone lowerpath
[  235.326511][ T9070] overlayfs: failed to clone upperpath
[  235.405974][ T9074] netlink: 12 bytes leftover after parsing attributes in process `syz.3.887'.
[  235.657332][ T9081] ipvlan2: entered promiscuous mode
[  236.049155][ T9089] overlayfs: failed to clone upperpath
[  236.500151][ T9096] netlink: 24 bytes leftover after parsing attributes in process `syz.1.898'.
[  237.387466][ T9117] overlayfs: failed to clone upperpath
[  237.419181][ T9117] overlayfs: failed to clone lowerpath
[  238.837803][ T9141] overlayfs: failed to clone upperpath
[  238.857794][ T9141] Invalid ELF header magic: != ELF
[  239.009081][ T9145] netlink: 4 bytes leftover after parsing attributes in process `syz.3.916'.
[  239.173330][ T9157] overlayfs: failed to clone upperpath
[  240.528477][ T9176] 9pnet: p9_errstr2errno: server reported unknown error ��Fc�g�KIe��B$�*�qg��!�k
[  242.742956][ T9201] netlink: 4 bytes leftover after parsing attributes in process `syz.1.933'.
[  243.072179][ T9216] overlayfs: failed to resolve './file1': -2
[  243.659784][ T9223] mmap: syz.6.944 (9223) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  244.003085][   T29] audit: type=1326 audit(1737407606.476:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9220 comm="syz.6.944" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4c5ed85d29 code=0x0
[  245.642641][ T9256] ceph: No mds server is up or the cluster is laggy
[  248.113267][ T9294] team0: Failed to send port change of device team_slave_0 via netlink (err -105)
[  248.391698][ T6475] team0: Failed to send port change of device team_slave_0 via netlink (err -105)
[  248.457261][ T9301] netlink: 'syz.1.970': attribute type 10 has an invalid length.
[  248.516297][ T9307] netlink: 4 bytes leftover after parsing attributes in process `syz.1.970'.
[  248.528861][ T9301] bridge0: port 2(bridge_slave_1) entered disabled state
[  248.536404][ T9301] bridge0: port 1(bridge_slave_0) entered disabled state
[  248.613324][ T9301] bridge0: port 2(bridge_slave_1) entered blocking state
[  248.620574][ T9301] bridge0: port 2(bridge_slave_1) entered forwarding state
[  248.628088][ T9301] bridge0: port 1(bridge_slave_0) entered blocking state
[  248.635368][ T9301] bridge0: port 1(bridge_slave_0) entered forwarding state
[  248.729564][ T9301] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  248.785431][ T9307] bridge_slave_1: left allmulticast mode
[  248.826354][ T9307] bridge_slave_1: left promiscuous mode
[  248.857408][ T9307] bridge0: port 2(bridge_slave_1) entered disabled state
[  248.955484][ T9307] bridge_slave_0: left allmulticast mode
[  248.961324][ T9307] bridge_slave_0: left promiscuous mode
[  248.967248][ T9307] bridge0: port 1(bridge_slave_0) entered disabled state
[  249.807907][ T9307] bond0: (slave bridge0): Releasing backup interface
[  250.166249][ T9323] netlink: 4 bytes leftover after parsing attributes in process `syz.2.977'.
[  250.334293][ T9325] No control pipe specified
[  250.353277][ T9325] No control pipe specified
[  253.789710][ T5830] Bluetooth: hci2: SCO packet for unknown connection handle 0
[  254.352149][ T9411] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  254.458863][ T9411] bridge0: port 2(bridge_slave_1) entered disabled state
[  254.467839][ T9411] bridge0: port 1(bridge_slave_0) entered disabled state
[  254.608816][ T9411] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  254.639696][ T9411] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  254.763843][ T9411] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  254.774075][ T9411] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  254.784234][ T9411] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  254.794647][ T9411] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  254.897195][ T9421] delete_channel: no stack
[  255.012260][ T9424] loop6: detected capacity change from 0 to 524287999
[  255.035846][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  255.045270][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  255.055505][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  255.064741][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  255.074423][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  255.083679][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  255.094783][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  255.103963][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  255.112119][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  255.121378][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  255.130319][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  255.139583][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  255.148160][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  255.157413][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  255.180995][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  255.190279][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  255.200064][ T9424] ldm_validate_partition_table(): Disk read failed.
[  255.255775][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  255.265021][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  255.298340][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  255.307619][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  255.334811][ T9424] Dev loop6: unable to read RDB block 0
[  255.355179][ T9424]  loop6: unable to read partition table
[  255.361221][ T9424] loop_reread_partitions: partition scan of loop6 (3�����) failed (rc=-5)
[  256.216879][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  256.223230][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  258.402827][ T9486] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1040'.
[  258.757491][   T29] audit: type=1326 audit(1737407621.256:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9505 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  258.804727][   T29] audit: type=1326 audit(1737407621.276:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9505 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  258.857148][   T29] audit: type=1326 audit(1737407621.276:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9505 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  258.885994][ T9508] overlayfs: failed to clone upperpath
[  258.897744][   T29] audit: type=1326 audit(1737407621.276:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9505 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  258.927659][   T29] audit: type=1326 audit(1737407621.276:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9505 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  258.933343][ T9508] Invalid ELF header len 8
[  258.961113][   T29] audit: type=1326 audit(1737407621.276:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9505 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  258.992426][   T29] audit: type=1326 audit(1737407621.276:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9505 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  259.025995][   T29] audit: type=1326 audit(1737407621.276:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9505 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  259.063764][   T29] audit: type=1326 audit(1737407621.276:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9505 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  259.086305][   T29] audit: type=1326 audit(1737407621.286:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9505 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  259.604813][ T9528] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1056'.
[  259.624964][ T9528] bridge_slave_1: left allmulticast mode
[  259.643145][ T9528] bridge_slave_1: left promiscuous mode
[  259.650854][ T9528] bridge0: port 2(bridge_slave_1) entered disabled state
[  259.664352][ T9528] bridge_slave_0: left allmulticast mode
[  259.670871][ T9528] bridge_slave_0: left promiscuous mode
[  259.735365][ T9528] bridge0: port 1(bridge_slave_0) entered disabled state
[  260.799139][ T9543] overlayfs: failed to clone upperpath
[  264.366992][ T9592] binder: BINDER_SET_CONTEXT_MGR already set
[  264.373620][ T9592] binder: 9591:9592 ioctl 4018620d 20000040 returned -16
[  264.759506][ T9614] overlayfs: failed to clone upperpath
[  264.990714][ T9626] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1095'.
[  265.739659][ T9652] overlayfs: failed to clone upperpath
[  266.650112][ T9664] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1110'.
[  266.679723][ T9664] bond0: entered allmulticast mode
[  266.696984][ T9664] netlink: 'syz.2.1110': attribute type 10 has an invalid length.
[  266.778728][ T9668] 9pnet_fd: Insufficient options for proto=fd
[  266.821493][ T9664] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  266.847147][ T9664] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  266.875150][ T9674] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1114'.
[  267.240551][   T29] kauditd_printk_skb: 16 callbacks suppressed
[  267.240568][   T29] audit: type=1326 audit(1737407629.736:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9686 comm="syz.6.1120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  268.335834][   T29] audit: type=1326 audit(1737407629.766:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9686 comm="syz.6.1120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  268.444861][   T29] audit: type=1326 audit(1737407629.776:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9686 comm="syz.6.1120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  268.514745][   T29] audit: type=1326 audit(1737407629.776:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9686 comm="syz.6.1120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  268.565525][   T29] audit: type=1326 audit(1737407629.776:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9686 comm="syz.6.1120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  268.607497][   T29] audit: type=1326 audit(1737407629.776:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9686 comm="syz.6.1120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  268.719344][   T29] audit: type=1326 audit(1737407629.776:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9686 comm="syz.6.1120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  268.752580][   T29] audit: type=1326 audit(1737407629.776:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9686 comm="syz.6.1120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  268.790659][   T29] audit: type=1326 audit(1737407629.776:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9686 comm="syz.6.1120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  268.832715][   T29] audit: type=1326 audit(1737407629.776:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9686 comm="syz.6.1120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  270.585321][ T9742] netlink: 'syz.6.1143': attribute type 4 has an invalid length.
[  270.622999][ T9742] netlink: 'syz.6.1143': attribute type 4 has an invalid length.
[  271.364625][ T9754] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  273.245408][ T9771] overlayfs: failed to clone upperpath
[  273.318863][ T9771] Invalid ELF header magic: != ELF
[  273.427653][   T29] kauditd_printk_skb: 17 callbacks suppressed
[  273.427670][   T29] audit: type=1326 audit(1737407635.926:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9776 comm="syz.1.1155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  273.489964][   T29] audit: type=1326 audit(1737407635.926:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9776 comm="syz.1.1155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  273.547289][   T29] audit: type=1326 audit(1737407635.956:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9776 comm="syz.1.1155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  273.585765][   T29] audit: type=1326 audit(1737407635.956:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9776 comm="syz.1.1155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  273.629371][   T29] audit: type=1326 audit(1737407635.956:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9776 comm="syz.1.1155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  273.659990][ T9789] netlink: 1304 bytes leftover after parsing attributes in process `syz.3.1157'.
[  273.661398][   T29] audit: type=1326 audit(1737407635.956:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9776 comm="syz.1.1155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  273.740708][   T29] audit: type=1326 audit(1737407635.956:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9776 comm="syz.1.1155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  273.775179][ T9779] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  273.781295][ T9779] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  273.832040][   T29] audit: type=1326 audit(1737407635.956:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9776 comm="syz.1.1155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  273.862062][ T9779] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  273.879107][ T9790] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1156'.
[  273.904624][ T9790] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1156'.
[  273.913647][ T9790] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1156'.
[  273.927893][   T29] audit: type=1326 audit(1737407635.976:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9776 comm="syz.1.1155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  273.951976][ T5830] Bluetooth: hci4: Unknown advertising packet type: 0x16
[  273.952046][ T5830] Bluetooth: hci4: Unknown advertising packet type: 0x1c
[  273.952046][   T29] audit: type=1326 audit(1737407636.026:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9776 comm="syz.1.1155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  274.000596][ T5830] Bluetooth: hci4: Malformed LE Event: 0x0d
[  274.984169][ T9798] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1162'.
[  275.066257][ T9798] bridge_slave_1: left allmulticast mode
[  275.071975][ T9798] bridge_slave_1: left promiscuous mode
[  275.195504][ T9798] bridge0: port 2(bridge_slave_1) entered disabled state
[  275.889276][ T5830] Bluetooth: hci4: command 0x0405 tx timeout
[  275.889395][ T5833] Bluetooth: hci3: command 0x0c1a tx timeout
[  275.895614][ T5831] Bluetooth: hci2: command 0x0c1a tx timeout
[  275.922408][ T9798] bridge2: port 1(bridge_slave_1) entered blocking state
[  275.945040][ T9798] bridge2: port 1(bridge_slave_1) entered disabled state
[  275.969941][ T9798] bridge_slave_1: entered allmulticast mode
[  276.047095][ T9798] bridge_slave_1: entered promiscuous mode
[  276.945053][ T9825] overlayfs: failed to clone upperpath
[  281.075566][ T5899] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  281.429211][ T5899] usb 3-1: Using ep0 maxpacket: 16
[  281.436552][ T5899] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  281.454632][ T5899] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  281.467887][ T5899] usb 3-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  281.477836][ T5899] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  281.494604][ T5899] usb 3-1: Product: syz
[  281.498835][ T5899] usb 3-1: Manufacturer: syz
[  281.503459][ T5899] usb 3-1: SerialNumber: syz
[  281.516663][ T5899] usb 3-1: config 0 descriptor??
[  281.524966][ T5899] em28xx 3-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  281.534424][ T5899] em28xx 3-1:0.0: Audio interface 0 found (Vendor Class)
[  282.388111][ T9922] 9pnet: p9_errstr2errno: server reported unknown error 184467440
[  282.612338][ T5899] em28xx 3-1:0.0: unknown em28xx chip ID (0)
[  282.672502][ T5899] em28xx 3-1:0.0: Config register raw data: 0xfffffffb
[  282.714430][ T5830] Bluetooth: hci4: unexpected event for opcode 0x2060
[  282.794936][   T29] kauditd_printk_skb: 7 callbacks suppressed
[  282.794953][   T29] audit: type=1326 audit(1737407645.286:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9933 comm="syz.1.1220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  282.893714][   T29] audit: type=1326 audit(1737407645.296:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9933 comm="syz.1.1220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  282.933560][   T29] audit: type=1326 audit(1737407645.296:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9933 comm="syz.1.1220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  283.002164][   T29] audit: type=1326 audit(1737407645.296:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9933 comm="syz.1.1220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  283.051663][   T29] audit: type=1326 audit(1737407645.296:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9933 comm="syz.1.1220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  283.077971][   T29] audit: type=1326 audit(1737407645.296:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9933 comm="syz.1.1220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  283.309007][   T29] audit: type=1326 audit(1737407645.296:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9933 comm="syz.1.1220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  283.331011][   T29] audit: type=1326 audit(1737407645.296:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9933 comm="syz.1.1220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  283.352726][   T29] audit: type=1326 audit(1737407645.296:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9933 comm="syz.1.1220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  283.766652][ T5899] em28xx 3-1:0.0: AC97 vendor ID = 0x00fc00fe
[  283.855929][   T29] audit: type=1326 audit(1737407645.296:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9933 comm="syz.1.1220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  284.067460][ T5899] em28xx 3-1:0.0: Unknown AC97 audio processor detected!
[  284.077237][ T5899] em28xx 3-1:0.0: couldn't setup AC97 register 2
[  284.094708][ T5899] em28xx 3-1:0.0: couldn't setup AC97 register 4
[  284.124933][ T5899] em28xx 3-1:0.0: couldn't setup AC97 register 6
[  284.131657][ T5899] em28xx 3-1:0.0: couldn't setup AC97 register 54
[  284.152121][ T5899] em28xx 3-1:0.0: couldn't setup AC97 register 56
[  284.165149][ T5899] usb 3-1: USB disconnect, device number 13
[  284.445299][ T9961] overlayfs: failed to clone upperpath
[  285.782040][ T9970] overlayfs: failed to clone lowerpath
[  285.826091][ T9970] overlayfs: missing 'lowerdir'
[  285.987502][ T9977] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  286.157173][ T9991] overlayfs: failed to clone upperpath
[  286.788653][ T5830] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  286.797648][ T5830] Bluetooth: hci4: Injecting HCI hardware error event
[  286.808584][ T5830] Bluetooth: hci4: hardware error 0x00
[  287.550026][T10018] overlayfs: failed to clone upperpath
[  287.911499][T10023] overlayfs: failed to clone upperpath
[  288.835027][ T5830] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  288.928609][T10029] kAFS: unable to lookup cell '/yz1'
[  289.192578][T10036] dns_resolver: Unsupported server list version (0)
[  290.265737][T10051] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  290.699155][T10054] bridge0: port 1(bridge_slave_0) entered disabled state
[  291.303740][T10054] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  291.391678][T10054] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  291.734207][T10054] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  291.763739][T10054] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  291.773075][T10054] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  291.782573][T10054] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  293.996028][T10099] syz.2.1269 (10099): drop_caches: 2
[  295.105523][T10136] netlink: 'syz.1.1283': attribute type 21 has an invalid length.
[  295.120248][T10136] netlink: 'syz.1.1283': attribute type 1 has an invalid length.
[  295.167212][T10138] overlayfs: failed to clone upperpath
[  295.195542][T10136] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.1283'.
[  295.227875][T10140] usb usb4: usbfs: process 10140 (syz.2.1287) did not claim interface 0 before use
[  295.315858][   T29] kauditd_printk_skb: 17 callbacks suppressed
[  295.315876][   T29] audit: type=1326 audit(1737407657.806:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10139 comm="syz.2.1287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  295.391164][   T29] audit: type=1326 audit(1737407657.806:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10139 comm="syz.2.1287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  295.445019][   T29] audit: type=1326 audit(1737407657.806:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10139 comm="syz.2.1287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  295.468032][   T29] audit: type=1326 audit(1737407657.806:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10139 comm="syz.2.1287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  295.494665][   T29] audit: type=1326 audit(1737407657.806:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10139 comm="syz.2.1287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  295.569244][   T29] audit: type=1326 audit(1737407657.806:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10139 comm="syz.2.1287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  296.508415][   T29] audit: type=1326 audit(1737407657.806:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10139 comm="syz.2.1287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=198 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  296.640048][   T29] audit: type=1326 audit(1737407657.806:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10139 comm="syz.2.1287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  296.662261][   T29] audit: type=1326 audit(1737407657.816:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10139 comm="syz.2.1287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  296.683945][   T29] audit: type=1326 audit(1737407657.816:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10139 comm="syz.2.1287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=207 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  299.135144][T10197] tipc: Started in network mode
[  299.140219][T10197] tipc: Node identity -N, cluster identity 4711
[  299.175520][T10082] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  299.334686][T10082] usb 3-1: Using ep0 maxpacket: 8
[  299.351555][T10082] usb 3-1: New USB device found, idVendor=1a0a, idProduct=0103, bcdDevice=ad.1d
[  299.394186][T10082] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  299.415427][T10082] usb 3-1: Product: syz
[  299.428062][T10082] usb 3-1: Manufacturer: syz
[  299.442065][T10082] usb 3-1: SerialNumber: syz
[  299.655795][T10082] usb 3-1: config 0 descriptor??
[  299.668777][T10082] usb_ehset_test 3-1:0.0: probe with driver usb_ehset_test failed with error -32
[  300.564852][ T5868] usb 3-1: USB disconnect, device number 14
[  302.111464][T10238] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1319'.
[  303.174601][T10257] ip6t_REJECT: ECHOREPLY is not supported
[  305.216269][T10277] virt_wifi0 speed is unknown, defaulting to 1000
[  305.936885][T10277] virt_wifi0 speed is unknown, defaulting to 1000
[  306.018341][T10277] virt_wifi0 speed is unknown, defaulting to 1000
[  306.183846][T10277] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  306.406682][T10277] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  306.519500][T10277] virt_wifi0 speed is unknown, defaulting to 1000
[  306.567481][T10277] virt_wifi0 speed is unknown, defaulting to 1000
[  306.624303][T10277] virt_wifi0 speed is unknown, defaulting to 1000
[  306.815864][T10277] virt_wifi0 speed is unknown, defaulting to 1000
[  307.654219][T10277] virt_wifi0 speed is unknown, defaulting to 1000
[  309.886519][T10335] vlan1: entered allmulticast mode
[  310.163869][T10344] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1360'.
[  310.266447][T10349] overlayfs: failed to clone upperpath
[  312.327016][T10385] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  314.416907][T10420] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1388'.
[  314.433547][T10419] netlink: 108 bytes leftover after parsing attributes in process `syz.6.1389'.
[  314.442849][T10419] netlink: 108 bytes leftover after parsing attributes in process `syz.6.1389'.
[  314.452038][T10419] netlink: 108 bytes leftover after parsing attributes in process `syz.6.1389'.
[  316.693504][T10455] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1404'.
[  316.854661][T10082] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  317.016432][T10082] usb 3-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  317.031557][T10082] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  317.052491][T10082] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  317.063660][T10082] usb 3-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  317.077199][T10082] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  317.092549][T10082] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  317.117586][T10082] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  317.128526][T10082] usb 3-1: invalid MIDI out EP 0
[  317.180022][T10082] snd-usb-audio 3-1:27.0: probe with driver snd-usb-audio failed with error -22
[  317.322961][    T9] usb 3-1: USB disconnect, device number 15
[  317.483517][T10477] netlink: 'syz.5.1411': attribute type 9 has an invalid length.
[  317.532105][T10448] Invalid source name
[  317.536398][T10448] UBIFS error (pid: 10448): cannot open "/dev/sg0", error -22
[  317.625295][T10484] overlayfs: failed to clone upperpath
[  317.640783][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  317.647242][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  318.055134][   T29] kauditd_printk_skb: 7 callbacks suppressed
[  318.055152][   T29] audit: type=1326 audit(1737407680.556:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10499 comm="syz.3.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7999185d29 code=0x7ffc0000
[  318.388132][   T29] audit: type=1326 audit(1737407680.676:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10499 comm="syz.3.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f7999184690 code=0x7ffc0000
[  318.794837][   T29] audit: type=1326 audit(1737407680.676:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10499 comm="syz.3.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f7999184690 code=0x7ffc0000
[  318.864438][   T29] audit: type=1326 audit(1737407680.686:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10499 comm="syz.3.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7999185d29 code=0x7ffc0000
[  318.899391][   T29] audit: type=1326 audit(1737407680.696:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10499 comm="syz.3.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7999185d29 code=0x7ffc0000
[  318.964729][   T29] audit: type=1326 audit(1737407680.746:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10499 comm="syz.3.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f7999185d29 code=0x7ffc0000
[  319.054723][   T29] audit: type=1326 audit(1737407680.746:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10499 comm="syz.3.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7999185d29 code=0x7ffc0000
[  319.083441][   T29] audit: type=1326 audit(1737407680.746:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10499 comm="syz.3.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7999185d29 code=0x7ffc0000
[  319.110174][   T29] audit: type=1326 audit(1737407680.746:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10499 comm="syz.3.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7f7999185d29 code=0x7ffc0000
[  319.884761][   T29] audit: type=1326 audit(1737407680.756:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10499 comm="syz.3.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7999185d29 code=0x7ffc0000
[  320.055702][T10534] overlayfs: failed to clone upperpath
[  320.588682][T10547] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1432'.
[  321.182511][T10552] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1434'.
[  323.646143][T10596] netlink: 596 bytes leftover after parsing attributes in process `syz.5.1448'.
[  323.979492][T10605] netlink: 'syz.1.1451': attribute type 4 has an invalid length.
[  326.844638][   T29] kauditd_printk_skb: 22 callbacks suppressed
[  326.844655][   T29] audit: type=1326 audit(1737407689.336:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10664 comm="syz.1.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  326.875300][   T29] audit: type=1326 audit(1737407689.346:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10664 comm="syz.1.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  326.965943][   T29] audit: type=1326 audit(1737407689.346:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10664 comm="syz.1.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  327.005072][   T29] audit: type=1326 audit(1737407689.346:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10664 comm="syz.1.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  327.040716][   T29] audit: type=1326 audit(1737407689.346:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10664 comm="syz.1.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  327.064112][   T29] audit: type=1326 audit(1737407689.346:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10664 comm="syz.1.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  327.116335][   T29] audit: type=1326 audit(1737407689.346:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10664 comm="syz.1.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  327.178566][   T29] audit: type=1326 audit(1737407689.346:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10664 comm="syz.1.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  327.247055][T10678] overlayfs: failed to clone upperpath
[  327.259438][   T29] audit: type=1326 audit(1737407689.346:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10664 comm="syz.1.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  327.328271][   T29] audit: type=1326 audit(1737407689.346:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10664 comm="syz.1.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2f52985d29 code=0x7ffc0000
[  327.494076][T10689] overlayfs: failed to clone upperpath
[  327.810220][T10697] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1485'.
[  328.595053][ T5830] Bluetooth: hci3: command 0x0c1a tx timeout
[  328.847471][T10709] overlayfs: failed to clone upperpath
[  329.284341][T10717] netlink: 1788 bytes leftover after parsing attributes in process `syz.3.1495'.
[  331.225291][T10757] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1506'.
[  334.774712][T10082] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  335.585302][T10082] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  335.645225][T10082] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  335.679982][T10082] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  335.728784][T10082] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  335.755163][T10082] usb 3-1: SerialNumber: syz
[  335.970128][T10082] usb 3-1: 0:2 : does not exist
[  336.014422][T10082] usb 3-1: USB disconnect, device number 16
[  337.462497][T10856] wireguard0: entered promiscuous mode
[  337.508854][T10856] wireguard0: entered allmulticast mode
[  337.547107][T10860] overlayfs: failed to clone upperpath
[  338.969904][T10871] netlink: 108 bytes leftover after parsing attributes in process `syz.5.1547'.
[  338.979083][T10871] netlink: 108 bytes leftover after parsing attributes in process `syz.5.1547'.
[  338.988360][T10871] netlink: 108 bytes leftover after parsing attributes in process `syz.5.1547'.
[  340.005372][ T5868] IPVS: starting estimator thread 0...
[  340.094927][T10887] IPVS: using max 18 ests per chain, 43200 per kthread
[  340.719032][   T29] kauditd_printk_skb: 19 callbacks suppressed
[  340.719050][   T29] audit: type=1326 audit(1737407703.216:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10891 comm="syz.1.1552" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2f52985d29 code=0x0
[  340.794691][T10904] binder: 10894:10904 ioctl c0306201 0 returned -14
[  341.138854][T10916] netlink: 72 bytes leftover after parsing attributes in process `syz.6.1572'.
[  343.876231][T10957] overlayfs: failed to clone upperpath
[  345.896048][T10980] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  346.110095][T10982] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  346.121882][T10982] xt_SECMARK: unable to map security context 'system_u:object_r:dbusd_etc_t:s0'
[  352.121516][T11053] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1611'.
[  353.394996][T11072] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1618'.
[  354.696469][T11081] netlink: 168 bytes leftover after parsing attributes in process `syz.1.1617'.
[  355.191915][T11095] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1627'.
[  356.350785][T11112] trusted_key: encrypted_key: master key parameter is missing
[  357.231455][T11140] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  357.492434][T11154] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1650'.
[  357.501559][T11154] bridge_slave_0: left allmulticast mode
[  357.507656][T11154] bridge_slave_0: left promiscuous mode
[  357.513660][T11154] bridge0: port 1(bridge_slave_0) entered disabled state
[  357.532477][T11158] loop7: detected capacity change from 0 to 16384
[  357.638311][   T29] audit: type=1326 audit(1737407720.136:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11161 comm="syz.6.1654" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4c5ed85d29 code=0x0
[  359.245312][T11163] blk_print_req_error: 9 callbacks suppressed
[  359.245333][T11163] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0
[  359.296725][T11170] I/O error, dev loop7, sector 8 op 0x1:(WRITE) flags 0x800 phys_seg 15 prio class 0
[  359.314806][T11170] buffer_io_error: 9 callbacks suppressed
[  359.314825][T11170] Buffer I/O error on dev loop7, logical block 1, lost async page write
[  359.352765][T11170] Buffer I/O error on dev loop7, logical block 2, lost async page write
[  359.394904][T11163] Buffer I/O error on dev loop7, logical block 0, lost async page write
[  359.423384][T11170] Buffer I/O error on dev loop7, logical block 3, lost async page write
[  359.435187][T11170] Buffer I/O error on dev loop7, logical block 4, lost async page write
[  359.464866][T11179] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1657'.
[  359.475932][T11170] Buffer I/O error on dev loop7, logical block 5, lost async page write
[  359.486967][T11170] Buffer I/O error on dev loop7, logical block 6, lost async page write
[  359.495454][T11170] Buffer I/O error on dev loop7, logical block 7, lost async page write
[  359.499446][T11179] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1657'.
[  359.503970][T11170] Buffer I/O error on dev loop7, logical block 8, lost async page write
[  359.522132][T11170] Buffer I/O error on dev loop7, logical block 9, lost async page write
[  359.533565][T11179] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1657'.
[  359.572633][T11179] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1657'.
[  360.686462][   T29] audit: type=1326 audit(1737407723.186:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11195 comm="syz.3.1664" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7999185d29 code=0x0
[  360.942289][T11212] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1669'.
[  361.017940][T11203] virt_wifi0 speed is unknown, defaulting to 1000
[  361.543157][    T9] IPVS: starting estimator thread 0...
[  361.644876][T11238] IPVS: using max 22 ests per chain, 52800 per kthread
[  361.725959][T11245] tipc: Failed to remove unknown binding: 66,1,1/433849089:3445959020/3445959022
[  361.792153][T11245] tipc: Failed to remove unknown binding: 66,1,1/433849089:3445959020/3445959022
[  362.236668][T11261] Process accounting resumed
[  362.292749][T11263] overlayfs: failed to clone upperpath
[  364.312182][T11302] overlayfs: failed to clone upperpath
[  364.451160][T11307] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  364.469523][T11307] batman_adv: batadv0: Adding interface: ip6gretap1
[  364.476893][T11307] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  364.505747][T11307] batman_adv: batadv0: Interface activated: ip6gretap1
[  364.517292][T11308] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1707'.
[  364.536301][T11308] batman_adv: batadv0: Removing interface: batadv_slave_0
[  364.545665][T11308] batman_adv: batadv0: Removing interface: batadv_slave_1
[  364.554795][T11308] batman_adv: batadv0: Interface deactivated: ip6gretap1
[  364.562213][T11308] batman_adv: batadv0: Removing interface: ip6gretap1
[  368.354061][T11375] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1731'.
[  368.444855][T11380] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1733'.
[  368.462544][T11379] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  368.466295][T11375] 8021q: adding VLAN 0 to HW filter on device bond1
[  369.886246][T11389] dvmrp0: entered allmulticast mode
[  369.900817][T11392] pimreg: entered allmulticast mode
[  369.920917][T11389] batadv_slave_1: entered promiscuous mode
[  370.314781][ T5871] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  370.504803][ T5871] usb 3-1: Using ep0 maxpacket: 8
[  370.530421][ T5871] usb 3-1: unable to get BOS descriptor or descriptor too short
[  370.565819][ T5871] usb 3-1: config 4 has an invalid interface number: 147 but max is 0
[  370.603212][ T5871] usb 3-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  370.620223][ T5871] usb 3-1: config 4 has no interface number 0
[  370.629708][ T5871] usb 3-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e
[  370.644621][ T5871] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  370.652673][ T5871] usb 3-1: Product: syz
[  370.665807][ T5871] usb 3-1: Manufacturer: syz
[  370.670472][ T5871] usb 3-1: SerialNumber: syz
[  370.905169][ T5871] usb 3-1: Found UVC 0.02 device syz (04f2:b746)
[  370.911613][ T5871] uvcvideo 3-1:4.147: Entity type for entity Output 1 was not initialized!
[  370.928680][ T5871] usb 3-1: Failed to create links for entity 1
[  370.935708][ T5871] usb 3-1: Failed to register entities (-22).
[  370.946983][ T5871] usb 3-1: USB disconnect, device number 17
[  371.030923][ T5831] Bluetooth: hci3: unexpected event for opcode 0x0c0d
[  371.450428][T11435] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  371.511834][T11435] batadv_slave_0: entered promiscuous mode
[  372.620396][T11452] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  373.099953][T11455] Invalid source name
[  373.160604][T11455] UBIFS error (pid: 11455): cannot open "/dev/sg0", error -22
[  374.880534][T10089] IPVS: starting estimator thread 0...
[  375.015310][T11472] IPVS: using max 24 ests per chain, 57600 per kthread
[  375.553316][T11503] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1779'.
[  377.920426][T11541] netlink: 'syz.3.1795': attribute type 1 has an invalid length.
[  377.984284][T11542] x_tables: ip6_tables: NETMAP.0 target: invalid size 40 (kernel) != (user) 0
[  379.065704][T11541] 8021q: adding VLAN 0 to HW filter on device bond2
[  379.113881][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  379.131250][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  379.412977][T11543] bond2: (slave gretap1): making interface the new active one
[  379.466298][T11543] bond2: (slave gretap1): Enslaving as an active interface with an up link
[  381.884094][T11583] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1806'.
[  385.338652][T11599] netlink: 160 bytes leftover after parsing attributes in process `syz.3.1810'.
[  388.465616][T11639] xt_CT: You must specify a L4 protocol and not use inversions on it
[  389.686432][T11649] overlayfs: failed to clone upperpath
[  389.866382][T11658] binder: BINDER_SET_CONTEXT_MGR already set
[  389.874151][T11658] binder: 11657:11658 ioctl 4018620d 20000040 returned -16
[  390.045181][T11664] overlayfs: failed to clone upperpath
[  392.455764][T11688] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1839'.
[  395.188700][T11715] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  395.256645][T11717] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1851'.
[  395.320791][T11715] batman_adv: batadv0: Adding interface: ip6gretap1
[  395.360532][T11715] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  395.465085][T11715] batman_adv: batadv0: Interface activated: ip6gretap1
[  396.056600][T11717] batman_adv: batadv0: Removing interface: batadv_slave_0
[  396.223789][T11717] batman_adv: batadv0: Removing interface: batadv_slave_1
[  396.265425][T11717] batman_adv: batadv0: Interface deactivated: ip6gretap1
[  396.298056][T11717] batman_adv: batadv0: Removing interface: ip6gretap1
[  396.456093][   T29] audit: type=1326 audit(1737407758.956:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11733 comm="syz.5.1858" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6e22185d29 code=0x0
[  400.648529][T11780] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  400.669878][T11780] batman_adv: batadv0: Adding interface: ip6gretap1
[  400.676988][T11780] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  400.703869][T11780] batman_adv: batadv0: Interface activated: ip6gretap1
[  400.775758][T11780] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1873'.
[  400.801600][T11780] batman_adv: batadv0: Removing interface: batadv_slave_0
[  400.828134][T11780] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  400.845160][T11780] batman_adv: batadv0: Removing interface: batadv_slave_1
[  400.888680][T11780] batman_adv: batadv0: Interface deactivated: ip6gretap1
[  400.941574][T11780] batman_adv: batadv0: Removing interface: ip6gretap1
[  401.103837][T11799] overlayfs: failed to clone upperpath
[  404.231682][T11840] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1895'.
[  404.501381][T11842] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  404.546499][T11842] batman_adv: batadv0: Adding interface: ip6gretap1
[  404.568086][T11842] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  404.630981][T11842] batman_adv: batadv0: Interface activated: ip6gretap1
[  404.710632][T11842] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1896'.
[  404.746367][T11842] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  404.758062][T11842] batman_adv: batadv0: Removing interface: batadv_slave_0
[  404.772706][T11842] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  404.790660][T11842] batman_adv: batadv0: Removing interface: batadv_slave_1
[  404.815667][T11842] batman_adv: batadv0: Interface deactivated: ip6gretap1
[  404.838065][T11842] batman_adv: batadv0: Removing interface: ip6gretap1
[  407.690803][T11883] IPVS: sync thread started: state = BACKUP, mcast_ifn = hsr0, syncid = 0, id = 0
[  411.345514][T11923] overlayfs: failed to clone lowerpath
[  411.785267][T11918] overlayfs: failed to clone upperpath
[  412.055860][T11930] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1923'.
[  412.484054][T11945] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1931'.
[  412.570105][T11948] overlayfs: failed to clone upperpath
[  414.206027][T11964] loop2: detected capacity change from 0 to 7
[  414.248554][T11964] Dev loop2: unable to read RDB block 7
[  414.257373][T11970] netlink: 'syz.6.1937': attribute type 10 has an invalid length.
[  414.266962][T11970] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  414.285380][T11964]  loop2: AHDI p1 p4
[  414.295600][T11964] loop2: partition table partially beyond EOD, truncated
[  414.302936][T11964] loop2: p1 size 10 extends beyond EOD, truncated
[  414.311688][T11966] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  416.411874][   T35] wlan1: Trigger new scan to find an IBSS to join
[  416.709465][T12014] netlink: 'syz.6.1952': attribute type 1 has an invalid length.
[  416.718425][T12014] netlink: 44 bytes leftover after parsing attributes in process `syz.6.1952'.
[  419.360666][T12077] netlink: 64 bytes leftover after parsing attributes in process `syz.5.1975'.
[  419.397534][   T35] wlan1: Trigger new scan to find an IBSS to join
[  420.612941][T12100] overlayfs: failed to clone upperpath
[  421.616518][T12100] overlayfs: failed to clone lowerpath
[  421.878410][T12112] netlink: 'syz.5.1988': attribute type 4 has an invalid length.
[  421.888488][T12112] netlink: 'syz.5.1988': attribute type 4 has an invalid length.
[  421.900928][T12113] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1987'.
[  423.396271][  T302] wlan1: Trigger new scan to find an IBSS to join
[  424.016130][T12146] netlink: 60 bytes leftover after parsing attributes in process `syz.6.1999'.
[  424.580349][T12160] overlayfs: failed to clone upperpath
[  424.769403][ T6556] wlan1: Creating new IBSS network, BSSID 00:00:00:8d:00:00
[  424.913997][T12164] openvswitch: netlink: ct_state flags 010000e0 unsupported
[  425.750314][T12166] netlink: 341 bytes leftover after parsing attributes in process `syz.2.2006'.
[  426.973907][T12180] netlink: 'syz.2.2013': attribute type 1 has an invalid length.
[  427.048047][T12180] 8021q: adding VLAN 0 to HW filter on device bond2
[  427.285655][T12187] bond2: (slave gretap1): making interface the new active one
[  427.321681][T12187] bond2: (slave gretap1): Enslaving as an active interface with an up link
[  428.128397][T12180] bond2: (slave vlan1): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  431.425538][T12233] overlayfs: failed to clone upperpath
[  432.303403][T12232] virt_wifi0 speed is unknown, defaulting to 1000
[  432.336526][T12239] netlink: 'syz.1.2030': attribute type 1 has an invalid length.
[  432.424124][T12239] 8021q: adding VLAN 0 to HW filter on device bond1
[  432.633749][T12247] 9pnet_fd: Insufficient options for proto=fd
[  432.679919][T12243] bond1: (slave gretap1): making interface the new active one
[  432.725947][T12243] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  433.221197][T12262] netlink: 187320 bytes leftover after parsing attributes in process `syz.3.2037'.
[  433.231041][T12262] netlink: zone id is out of range
[  433.236319][T12262] netlink: zone id is out of range
[  433.959324][T12264] tmpfs: Unknown parameter 'fowner>00000000000000000000'
[  434.295924][T12275] batman_adv: batadv0: Adding interface: dummy0
[  434.311932][T12275] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  434.405482][T12275] batman_adv: batadv0: Interface activated: dummy0
[  434.486060][T12281] batadv0: mtu less than device minimum
[  434.537047][T12281] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  434.550146][T12281] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  434.562744][T12281] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  434.575535][T12281] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  434.588120][T12281] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  434.600647][T12281] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  434.613234][T12281] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  435.061235][T12309] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2058'.
[  435.071243][T12309] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2058'.
[  435.298140][T12315] virt_wifi0 speed is unknown, defaulting to 1000
[  436.471439][T12325] netlink: 'syz.3.2062': attribute type 12 has an invalid length.
[  437.895721][T12343] overlayfs: failed to clone upperpath
[  440.259852][T12368] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2077'.
[  440.475035][T12370] net_ratelimit: 13 callbacks suppressed
[  440.481076][T12370] openvswitch: netlink: Unexpected mask (mask=240, allowed=10048)
[  440.851925][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  440.866876][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  442.484102][T12390] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2083'.
[  446.996550][T12459] netlink: 'syz.5.2104': attribute type 4 has an invalid length.
[  447.309176][T12479] syz.3.2112[12479] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  447.310516][T12479] syz.3.2112[12479] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  447.330159][T12479] syz.3.2112[12479] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  447.357961][T12479] syz.3.2112[12479] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  447.376169][T12479] syz.3.2112[12479] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  447.393057][T12479] syz.3.2112[12479] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  447.853657][T12499] netlink: 'syz.5.2121': attribute type 1 has an invalid length.
[  447.927688][T12499] 8021q: adding VLAN 0 to HW filter on device bond2
[  448.003842][T12499] bond2: (slave gretap1): making interface the new active one
[  448.042918][T12507] openvswitch: netlink: Message has 8 unknown bytes.
[  448.058320][T12499] bond2: (slave gretap1): Enslaving as an active interface with an up link
[  448.134285][T12505] bond2: (slave vlan0): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  450.212104][T12535] syz.5.2133[12535] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  450.212214][T12535] syz.5.2133[12535] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  450.250191][T12535] syz.5.2133[12535] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  450.269822][T12532] syz.5.2133[12532] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  455.200654][T12582] netlink: 666 bytes leftover after parsing attributes in process `syz.3.2150'.
[  457.066841][T12615] vlan2: entered promiscuous mode
[  457.073247][T12618] netlink: 'syz.2.2163': attribute type 1 has an invalid length.
[  457.158781][T12618] bond3: entered promiscuous mode
[  457.184397][T12618] bond3: entered allmulticast mode
[  457.335684][T12622] bond3: (slave ip6gretap1): making interface the new active one
[  457.363233][T12622] ip6gretap1: entered promiscuous mode
[  457.371620][T12622] ip6gretap1: entered allmulticast mode
[  457.383449][T12622] bond3: (slave ip6gretap1): Enslaving as an active interface with an up link
[  458.641565][   T11] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  459.847816][   T29] audit: type=1326 audit(1737407822.346:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12644 comm="syz.2.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  459.890734][   T29] audit: type=1326 audit(1737407822.346:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12644 comm="syz.2.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  460.060215][   T29] audit: type=1326 audit(1737407822.346:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12644 comm="syz.2.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  460.106811][   T29] audit: type=1326 audit(1737407822.346:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12644 comm="syz.2.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  460.129176][   T29] audit: type=1326 audit(1737407822.346:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12644 comm="syz.2.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  460.151028][   T29] audit: type=1326 audit(1737407822.346:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12644 comm="syz.2.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  460.175272][   T29] audit: type=1326 audit(1737407822.346:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12644 comm="syz.2.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  460.651569][   T29] audit: type=1326 audit(1737407822.346:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12644 comm="syz.2.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  460.868757][   T29] audit: type=1326 audit(1737407822.346:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12644 comm="syz.2.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  460.948305][   T29] audit: type=1326 audit(1737407822.346:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12644 comm="syz.2.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0c51b84690 code=0x7ffc0000
[  463.771900][T12692] capability: warning: `syz.1.2185' uses 32-bit capabilities (legacy support in use)
[  463.809258][T12694] macvlan0: entered promiscuous mode
[  463.823724][T12694] macvlan0: entered allmulticast mode
[  464.207437][T12706] ebtables: ebtables: counters copy to user failed while replacing table
[  466.907821][T12726] overlayfs: failed to clone upperpath
[  468.800495][T12755] siw: device registration error -23
[  469.265041][T12769] overlayfs: failed to clone upperpath
[  469.288969][T12769] overlayfs: failed to clone lowerpath
[  469.518042][T12782] xt_bpf: check failed: parse error
[  471.782460][T12793] overlayfs: failed to clone upperpath
[  471.808082][T12793] Process accounting resumed
[  473.010405][T12817] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2231'.
[  473.027530][T12817] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2231'.
[  473.122038][T12817] virt_wifi0 speed is unknown, defaulting to 1000
[  473.261624][T12821] bpf_get_probe_write_proto: 2 callbacks suppressed
[  473.261666][T12821] syz.6.2230[12821] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  473.268941][T12821] syz.6.2230[12821] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  473.281066][T12821] syz.6.2230[12821] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  474.120565][   T29] kauditd_printk_skb: 40 callbacks suppressed
[  474.120583][   T29] audit: type=1326 audit(1737407836.616:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12833 comm="syz.6.2236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  474.662402][   T29] audit: type=1326 audit(1737407836.616:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12833 comm="syz.6.2236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  474.810004][   T29] audit: type=1326 audit(1737407836.616:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12833 comm="syz.6.2236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  474.834118][   T29] audit: type=1326 audit(1737407836.616:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12833 comm="syz.6.2236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  474.865033][T12834] virt_wifi0 speed is unknown, defaulting to 1000
[  474.920104][   T29] audit: type=1326 audit(1737407836.616:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12833 comm="syz.6.2236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  475.032519][T12838] netlink: 'syz.3.2238': attribute type 14 has an invalid length.
[  475.040686][   T29] audit: type=1326 audit(1737407836.616:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12833 comm="syz.6.2236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  475.144871][   T29] audit: type=1326 audit(1737407836.616:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12833 comm="syz.6.2236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  475.167286][   T29] audit: type=1326 audit(1737407836.616:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12833 comm="syz.6.2236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  475.192665][   T29] audit: type=1326 audit(1737407836.616:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12833 comm="syz.6.2236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  476.389932][T12859] overlayfs: failed to clone upperpath
[  477.583086][T12867] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  477.690355][T12869] trusted_key: encrypted_key: insufficient parameters specified
[  478.848960][T12880] Invalid ELF header magic: != ELF
[  479.370364][T12886] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2253'.
[  479.479310][T12890] netlink: 108 bytes leftover after parsing attributes in process `syz.1.2254'.
[  479.488665][T12890] netlink: 108 bytes leftover after parsing attributes in process `syz.1.2254'.
[  479.497830][T12890] netlink: 108 bytes leftover after parsing attributes in process `syz.1.2254'.
[  479.749071][T12898] overlayfs: failed to clone upperpath
[  481.081974][T12912] overlayfs: failed to clone upperpath
[  483.602088][T12934] delete_channel: no stack
[  483.607530][T12933] delete_channel: no stack
[  489.391061][T12997] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  489.532717][T12999] 9pnet: Could not find request transport: fd0xffffffffffffffff0xffffffffffffffff
[  489.738770][   T29] audit: type=1326 audit(1737407852.216:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13011 comm="syz.6.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  489.912525][T13014] ref_ctr increment failed for inode: 0xb06 offset: 0x7 ref_ctr_offset: 0x2 of mm: 0xffff88801ac72600
[  489.925538][T13010] uprobe: syz.3.2296:13010 failed to unregister, leaking uprobe
[  490.673776][   T29] audit: type=1326 audit(1737407852.216:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13011 comm="syz.6.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  490.710203][   T29] audit: type=1326 audit(1737407852.216:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13011 comm="syz.6.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  491.140161][   T29] audit: type=1326 audit(1737407852.216:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13011 comm="syz.6.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  491.187504][   T29] audit: type=1326 audit(1737407852.216:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13011 comm="syz.6.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  491.715885][ T3472] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  491.755517][   T29] audit: type=1326 audit(1737407852.216:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13011 comm="syz.6.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  491.804684][   T29] audit: type=1326 audit(1737407852.216:522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13011 comm="syz.6.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  491.854716][   T29] audit: type=1326 audit(1737407852.216:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13011 comm="syz.6.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  491.961801][   T29] audit: type=1326 audit(1737407852.216:524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13011 comm="syz.6.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  491.995299][T13024] netlink: 11 bytes leftover after parsing attributes in process `syz.3.2301'.
[  492.005093][   T29] audit: type=1326 audit(1737407852.216:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13011 comm="syz.6.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5ed85d29 code=0x7ffc0000
[  492.024303][T13024] netlink: 7 bytes leftover after parsing attributes in process `syz.3.2301'.
[  493.259997][ T5831] Bluetooth: hci3: unexpected event 0x06 length: 4 > 3
[  495.327512][T13067] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2313'.
[  495.984039][T13074] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  495.989205][T13070] kAFS: unable to lookup cell '/yz1'
[  502.600030][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  502.614598][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  502.685915][T13100] xt_cluster: you have exceeded the maximum number of cluster nodes (16128 > 32)
[  503.554744][T13104] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2326'.
[  504.037812][T13112] xt_cgroup: invalid path, errno=-2
[  507.044204][T13153] overlayfs: failed to clone upperpath
[  507.054296][T13153] Process accounting resumed
[  508.053672][T13160] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2342'.
[  508.089308][T13160] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2342'.
[  508.165881][T13160] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2342'.
[  508.274933][T13160] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2342'.
[  512.057373][T13191] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  518.865090][T13270] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2375'.
[  519.343912][T13291] overlayfs: failed to clone upperpath
[  519.621218][T13309] netlink: 'syz.6.2388': attribute type 12 has an invalid length.
[  520.616050][T13320] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2392'.
[  520.682699][T13320] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2392'.
[  522.198475][T13354] netlink: 'syz.6.2416': attribute type 1 has an invalid length.
[  522.224393][T13357] netlink: 'syz.5.2406': attribute type 12 has an invalid length.
[  522.317847][T13354] bond1: (slave ip6gretap2): Enslaving as a backup interface with an up link
[  522.353914][T13354] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2416'.
[  522.414336][T13354] 8021q: adding VLAN 0 to HW filter on device batadv0
[  522.466073][T13354] bond1: (slave batadv0): Enslaving as a backup interface with an up link
[  523.596310][T13377] netlink: zone id is out of range
[  524.531250][T13377] netlink: zone id is out of range
[  524.550355][ T2199] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  524.569413][T13377] netlink: zone id is out of range
[  524.580534][T13377] netlink: del zone limit has 4 unknown bytes
[  526.611534][T13405] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2425'.
[  530.022034][T13457] netlink: 'syz.3.2441': attribute type 29 has an invalid length.
[  530.067042][T13457] netlink: 'syz.3.2441': attribute type 29 has an invalid length.
[  530.126316][T13464] netlink: 'syz.3.2441': attribute type 29 has an invalid length.
[  530.143164][T13464] netlink: 'syz.3.2441': attribute type 29 has an invalid length.
[  530.175201][T13464] netlink: 'syz.3.2441': attribute type 29 has an invalid length.
[  530.292216][T13464] netlink: 'syz.3.2441': attribute type 29 has an invalid length.
[  530.314245][T13464] netlink: 'syz.3.2441': attribute type 29 has an invalid length.
[  531.134609][T13471] overlayfs: failed to clone upperpath
[  531.294925][T13476] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap2
[  531.379629][T13476] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2446'.
[  531.800537][T13490] overlayfs: failed to clone upperpath
[  535.516846][T13517] netlink: 32 bytes leftover after parsing attributes in process `syz.6.2459'.
[  536.138562][T13529] kAFS: unable to lookup cell '/yz1'
[  536.399364][   T29] kauditd_printk_skb: 21 callbacks suppressed
[  536.399382][   T29] audit: type=1800 audit(1737407898.896:547): pid=13535 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.1.2465" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[  536.484990][T13537] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2463'.
[  536.518501][T13537] xt_connbytes: Forcing CT accounting to be enabled
[  537.979664][T13548] overlayfs: failed to clone upperpath
[  538.005483][T13547] delete_channel: no stack
[  547.035295][T13649] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2500'.
[  547.054755][T13649] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2500'.
[  548.165915][T13665] af_packet: tpacket_rcv: packet too big, clamped from 42 to 4294967286. macoff=82
[  548.941034][T13670] xt_CT: You must specify a L4 protocol and not use inversions on it
[  549.158443][T13679] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2508'.
[  549.216981][T13679] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2508'.
[  550.203140][T13694] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2513'.
[  550.658254][T13699] cifs: Unknown parameter 'no'�a��N�[G�zob,er��;%j��
[  550.658254][T13699] ��z�,�@q�������J#�"��h/.�W1ȱ�nNC�"�C�׈�E)�8+����'
[  553.427372][T13729] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2535'.
[  553.439187][T13729] xt_connbytes: Forcing CT accounting to be enabled
[  553.715922][T13738] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2527'.
[  554.946938][T13758] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2533'.
[  555.694705][   T29] audit: type=1326 audit(1737407917.916:548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13759 comm="syz.6.2536" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4c5ed85d29 code=0x0
[  556.548036][T13773] workqueue: Failed to create a rescuer kthread for wq "ceph-watch-notify": -EINTR
[  557.718886][ T6556] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  559.867085][T13810] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2546'.
[  560.770284][T13817] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2550'.
[  560.793845][T13819] overlayfs: failed to clone upperpath
[  563.435069][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  563.441416][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  566.327963][T13859] tipc: Resetting bearer <eth:team0>
[  566.437544][T13859] tipc: Disabling bearer <eth:team0>
[  566.541521][T13859] team0 (unregistering): Port device team_slave_0 removed
[  566.617304][T13859] team0 (unregistering): Port device team_slave_1 removed
[  567.038280][T13868] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2565'.
[  570.838177][T13896] 9pnet_fd: Insufficient options for proto=fd
[  570.947113][ T5871] IPVS: starting estimator thread 0...
[  571.064679][T13898] IPVS: using max 22 ests per chain, 52800 per kthread
[  571.710573][T13912] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  571.751078][T13912] bond0: (slave macvlan2): Enslaving as an active interface with an up link
[  572.246409][T13924] ipt_rpfilter: unknown options
[  575.197355][T13957] netlink: 'syz.5.2595': attribute type 1 has an invalid length.
[  576.669784][T13969] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2595'.
[  576.737703][T13957] bond3: entered promiscuous mode
[  576.811385][T13957] 8021q: adding VLAN 0 to HW filter on device bond3
[  576.930961][T13965] 8021q: adding VLAN 0 to HW filter on device bond3
[  577.065259][T13965] bond3: (slave ip6gre2): The slave device specified does not support setting the MAC address
[  577.922189][T13965] bond3: (slave ip6gre2): Setting fail_over_mac to active for active-backup mode
[  578.855791][T13965] bond3: (slave ip6gre2): making interface the new active one
[  578.929700][T13965] ip6gre2: entered promiscuous mode
[  578.969563][T13965] bond3: (slave ip6gre2): Enslaving as an active interface with an up link
[  580.048630][T13996] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  580.422709][   T29] audit: type=1107 audit(1737407942.896:549): pid=13991 uid=0 auid=4294967295 ses=4294967295 subj=_ msg='P'
[  582.085143][T13969] bond3 (unregistering): (slave ip6gre2): Releasing backup interface
[  582.098784][T13969] ip6gre2: left promiscuous mode
[  582.240634][T13969] bond3 (unregistering): Released all slaves
[  583.128851][T14031] overlayfs: failed to clone upperpath
[  583.256809][T14030] overlayfs: failed to clone upperpath
[  583.333526][T14037] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2619'.
[  583.347227][T14037] ip6gretap0: entered promiscuous mode
[  583.357894][T14037] ip6gretap0: left promiscuous mode
[  585.265005][T14050] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2623'.
[  585.301791][T14050] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2623'.
[  585.374782][T14050] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2623'.
[  585.418496][T14050] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2623'.
[  590.226355][T14094] netlink: 'syz.3.2637': attribute type 1 has an invalid length.
[  591.320507][   T12] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  593.333861][T14127] syz.1.2647: attempt to access beyond end of device
[  593.333861][T14127] loop3: rw=0, sector=0, nr_sectors = 1 limit=0
[  593.370376][T14127] FAT-fs (loop3): unable to read boot sector
[  593.383363][T14133] netlink: 'syz.2.2651': attribute type 10 has an invalid length.
[  593.402334][T14133] 8021q: adding VLAN 0 to HW filter on device team0
[  593.415913][T14133] team0: entered allmulticast mode
[  593.430197][T14133] vlan0: entered allmulticast mode
[  593.438277][T14133] veth0_vlan: entered allmulticast mode
[  593.449858][T14133] bond0: (slave team0): Enslaving as an active interface with an up link
[  593.525671][T14142] netlink: 32 bytes leftover after parsing attributes in process `syz.6.2654'.
[  593.589036][T14139] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2651'.
[  593.612626][T14146] netlink: 32 bytes leftover after parsing attributes in process `syz.6.2654'.
[  594.257675][T14144] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  594.416011][T14144] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  595.094730][T14144] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  595.112805][T14144] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  595.766515][T14157] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2658'.
[  595.794098][T14144] bond1: left allmulticast mode
[  595.809716][T14144] bridge1: left allmulticast mode
[  595.819888][T14144] bond1: left promiscuous mode
[  595.830043][T14144] bridge1: left promiscuous mode
[  595.868376][T14144] vlan2: left promiscuous mode
[  595.873433][T14144] vlan2: left allmulticast mode
[  595.951442][T14144] macvlan0: left promiscuous mode
[  595.957437][T14144] macvlan0: left allmulticast mode
[  596.112908][T14176] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2663'.
[  596.124065][T14176] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2663'.
[  599.211822][T14207] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2671'.
[  600.328793][ T5831] Bluetooth: hci2: unexpected event for opcode 0x041b
[  602.068143][T14227] set match dimension is over the limit!
[  602.665731][T14252] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2687'.
[  603.526116][T14252] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2687'.
[  603.615111][T14266] netlink: 'syz.1.2689': attribute type 10 has an invalid length.
[  606.092799][T14313] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2706'.
[  606.176764][T14313] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2706'.
[  611.335272][T14362] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2722'.
[  611.477384][T14369] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2725'.
[  611.500407][T14370] overlayfs: failed to resolve './file0': -2
[  611.541049][T14369] bond2: entered promiscuous mode
[  611.561061][T14369] 8021q: adding VLAN 0 to HW filter on device bond2
[  611.621950][T14373] 8021q: adding VLAN 0 to HW filter on device bond2
[  611.629655][T14373] bond2: (slave ip6gre1): The slave device specified does not support setting the MAC address
[  611.639830][T14369] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2725'.
[  611.641461][T14373] bond2: (slave ip6gre1): Error -95 calling set_mac_address
[  612.782136][T14369] bond2 (unregistering): Released all slaves
[  613.660860][T14387] uprobe: syz.1.2732:14387 failed to unregister, leaking uprobe
[  613.748573][T14394] team0: Device virt_wifi0 failed to register rx_handler
[  614.163887][T14414] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2735'.
[  614.209903][T14414] batman_adv: batadv0: Interface deactivated: dummy0
[  614.225580][T14418] netlink: 112 bytes leftover after parsing attributes in process `syz.5.2737'.
[  614.254738][T14414] batman_adv: batadv0: Removing interface: dummy0
[  614.445973][   T29] audit: type=1326 audit(1737407976.946:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14425 comm="syz.2.2740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  614.506937][   T29] audit: type=1326 audit(1737407976.966:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14425 comm="syz.2.2740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  614.552940][   T29] audit: type=1326 audit(1737407976.976:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14425 comm="syz.2.2740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  614.583952][   T29] audit: type=1326 audit(1737407976.976:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14425 comm="syz.2.2740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  614.625162][T14434] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2740'.
[  614.661428][   T29] audit: type=1326 audit(1737407976.976:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14425 comm="syz.2.2740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=120 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  614.692100][   T29] audit: type=1326 audit(1737407976.976:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14425 comm="syz.2.2740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  614.774752][   T29] audit: type=1326 audit(1737407976.976:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14425 comm="syz.2.2740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  614.830997][   T29] audit: type=1326 audit(1737407976.976:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14425 comm="syz.2.2740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  614.877180][   T29] audit: type=1326 audit(1737407976.976:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14425 comm="syz.2.2740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  614.906288][   T29] audit: type=1326 audit(1737407977.036:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14425 comm="syz.2.2740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  615.898599][T14457] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2749'.
[  615.917103][T14457] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2749'.
[  615.954718][T14457] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2749'.
[  615.963772][T14457] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2749'.
[  620.351039][T14494] ebt_limit: overflow, try lower: 570423552/2483027968
[  622.814420][T14500] sctp: [Deprecated]: syz.1.2760 (pid 14500) Use of int in max_burst socket option.
[  622.814420][T14500] Use struct sctp_assoc_value instead
[  623.558742][ T3063] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  623.742936][ T5830] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  623.759164][ T5830] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  623.782500][ T5830] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  623.809517][ T5830] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  623.820786][ T5830] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  623.833093][ T5830] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  623.936905][T14515] netlink: 596 bytes leftover after parsing attributes in process `syz.1.2764'.
[  624.136392][T14511] virt_wifi0 speed is unknown, defaulting to 1000
[  624.254829][T14523] Option 'TX��Ʈ�' to dns_resolver key: bad/missing value
[  625.185712][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  625.193279][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  625.704184][T14511] chnl_net:caif_netlink_parms(): no params data found
[  625.954673][ T5830] Bluetooth: hci5: command tx timeout
[  626.008565][T14511] bridge0: port 1(bridge_slave_0) entered blocking state
[  626.018218][T14511] bridge0: port 1(bridge_slave_0) entered disabled state
[  626.093187][T14511] bridge_slave_0: entered allmulticast mode
[  626.142052][T14511] bridge_slave_0: entered promiscuous mode
[  626.173856][T14511] bridge0: port 2(bridge_slave_1) entered blocking state
[  626.214840][T14511] bridge0: port 2(bridge_slave_1) entered disabled state
[  626.241808][T14511] bridge_slave_1: entered allmulticast mode
[  626.324894][T14511] bridge_slave_1: entered promiscuous mode
[  627.476788][T14511] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  627.522815][T14511] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  627.735505][T14562] netlink: 'syz.2.2779': attribute type 4 has an invalid length.
[  627.806441][T14511] team0: Port device team_slave_0 added
[  627.854488][T14563] hsr_slave_0: left promiscuous mode
[  627.887464][T14563] hsr_slave_1: left promiscuous mode
[  627.951714][T14511] team0: Port device team_slave_1 added
[  628.034977][ T5830] Bluetooth: hci5: command tx timeout
[  628.100467][T14511] batman_adv: batadv0: Adding interface: batadv_slave_0
[  628.124120][T14511] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  628.150906][T14511] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  628.163821][T14511] batman_adv: batadv0: Adding interface: batadv_slave_1
[  628.170985][T14511] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  628.197335][T14511] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  628.316888][T14577] overlayfs: failed to clone upperpath
[  628.761576][T14577] overlayfs: failed to clone lowerpath
[  628.990129][T14511] hsr_slave_0: entered promiscuous mode
[  629.073789][T14511] hsr_slave_1: entered promiscuous mode
[  629.105389][T14511] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  629.113002][T14511] Cannot create hsr debugfs directory
[  629.186628][T14587] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  629.478181][T14602] syz.6.2792: attempt to access beyond end of device
[  629.478181][T14602] loop13: rw=0, sector=0, nr_sectors = 1 limit=0
[  629.491582][T14602] FAT-fs (loop13): unable to read boot sector
[  629.574483][T14511] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  629.590505][T14511] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  629.598995][T14606] overlayfs: failed to clone upperpath
[  629.619146][T14511] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  629.661539][T14511] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  629.772867][T14511] 8021q: adding VLAN 0 to HW filter on device bond0
[  629.811579][T14511] 8021q: adding VLAN 0 to HW filter on device team0
[  629.840914][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  629.848105][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  629.897011][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  629.904187][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  630.126063][ T5830] Bluetooth: hci5: command tx timeout
[  631.226034][T14511] 8021q: adding VLAN 0 to HW filter on device batadv0
[  632.205093][ T5830] Bluetooth: hci5: command tx timeout
[  633.605611][T14511] veth0_vlan: entered promiscuous mode
[  633.647329][T14511] veth1_vlan: entered promiscuous mode
[  633.873929][T14662] syz.2.2813: attempt to access beyond end of device
[  633.873929][T14662] loop5: rw=0, sector=0, nr_sectors = 1 limit=0
[  634.057004][T14662] FAT-fs (loop5): unable to read boot sector
[  634.164268][T14511] veth0_macvtap: entered promiscuous mode
[  634.435195][T14511] veth1_macvtap: entered promiscuous mode
[  634.457185][T14511] batman_adv: batadv0: Interface activated: batadv_slave_0
[  634.476130][T14511] batman_adv: batadv0: Interface activated: batadv_slave_1
[  634.486895][T14511] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  634.496098][T14511] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  634.536513][T14511] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  634.545372][T14511] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  634.748414][ T6556] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  634.757553][ T6556] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  634.793666][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  634.807417][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  634.855906][T14675] syz_tun: entered allmulticast mode
[  634.866918][T14675] syz_tun: left allmulticast mode
[  636.105347][T14701] netlink: 'syz.1.2824': attribute type 4 has an invalid length.
[  636.182195][T14699] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2756'.
[  636.295077][T14699] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  636.304498][T14699] batman_adv: batadv0: Removing interface: batadv_slave_0
[  636.328534][T14713] netlink: 'syz.1.2828': attribute type 4 has an invalid length.
[  636.376543][T14712] syz.5.2827: attempt to access beyond end of device
[  636.376543][T14712] loop11: rw=0, sector=0, nr_sectors = 1 limit=0
[  636.425735][T14712] FAT-fs (loop11): unable to read boot sector
[  636.433372][T14699] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  636.484381][T14699] batman_adv: batadv0: Removing interface: batadv_slave_1
[  637.326364][T14733] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2836'.
[  637.390512][T14728] virt_wifi0 speed is unknown, defaulting to 1000
[  637.485637][T14737] netlink: 24 bytes leftover after parsing attributes in process `syz.7.2837'.
[  637.620481][T14740] vlan1: entered promiscuous mode
[  640.162827][T14766] overlayfs: failed to clone upperpath
[  640.731821][T14777] set match dimension is over the limit!
[  642.123159][T14806] x_tables: ip6_tables: rpfilter match: used from hooks POSTROUTING, but only valid from PREROUTING
[  642.894427][T14807] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2857'.
[  642.936693][T14807] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2857'.
[  643.097717][T14807] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2857'.
[  643.402486][T14807] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2857'.
[  644.395677][T14827] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2862'.
[  644.632073][T14827] tipc: Started in network mode
[  645.128041][T14827] tipc: Node identity 7, cluster identity 5
[  645.203273][T14827] tipc: Node number set to 7
[  648.912427][T14891] overlayfs: failed to clone upperpath
[  651.533016][T14916] xt_CT: You must specify a L4 protocol and not use inversions on it
[  653.138731][T14920] libceph: resolve '
[  653.138731][T14920] -&���f�Y�ǝ�a���2i�
[  653.138731][T14920] .���?��&�*��&' (ret=-3): failed
[  653.208367][T14923] overlayfs: failed to clone upperpath
[  656.979751][T14759] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  661.808356][T15002] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  661.817611][T15002] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  661.826431][T15002] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  661.835290][T15002] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  661.934005][T15002] team0: Port device vxlan0 added
[  661.946925][T15005] netlink: 'syz.2.2915': attribute type 10 has an invalid length.
[  662.023703][T15005] bond0: (slave netdevsim0): Releasing backup interface
[  662.040938][T15005] bond0: (slave netdevsim0): the permanent HWaddr of slave - ba:96:8e:79:68:39 - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  663.273789][T15005] netdevsim netdevsim2 netdevsim0: left allmulticast mode
[  663.764279][T15005] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  663.981182][T15005] team0: Port device netdevsim0 added
[  664.008161][T15023] pim6reg: entered allmulticast mode
[  665.323408][T15023] pim6reg: left allmulticast mode
[  667.159182][   T29] kauditd_printk_skb: 9 callbacks suppressed
[  667.159227][   T29] audit: type=1326 audit(1737408029.628:569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15042 comm="syz.2.2926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  667.263870][T15043] futex_wake_op: syz.2.2926 tries to shift op by -1; fix this program
[  667.453532][   T29] audit: type=1326 audit(1737408029.628:570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15042 comm="syz.2.2926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  667.544780][   T29] audit: type=1326 audit(1737408029.688:571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15042 comm="syz.2.2926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  667.596361][   T29] audit: type=1326 audit(1737408029.688:572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15042 comm="syz.2.2926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  667.618725][   T29] audit: type=1326 audit(1737408029.688:573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15042 comm="syz.2.2926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  667.656891][   T29] audit: type=1326 audit(1737408029.718:574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15042 comm="syz.2.2926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  667.738855][   T29] audit: type=1326 audit(1737408029.718:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15042 comm="syz.2.2926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  667.845810][   T29] audit: type=1326 audit(1737408029.718:576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15042 comm="syz.2.2926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  667.911835][   T29] audit: type=1326 audit(1737408029.718:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15042 comm="syz.2.2926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  668.185436][   T29] audit: type=1326 audit(1737408029.738:578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15042 comm="syz.2.2926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c51b85d29 code=0x7ffc0000
[  669.270765][T15071] netlink: 108 bytes leftover after parsing attributes in process `syz.5.2933'.
[  669.279939][T15071] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2933'.
[  669.409460][T15078] overlayfs: failed to clone upperpath
[  669.748577][T15092] virt_wifi0 speed is unknown, defaulting to 1000
[  686.273396][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  686.785390][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  686.814712][T15251] xt_TPROXY: Can be used only with -p tcp or -p udp
[  687.090451][T15262] overlayfs: failed to clone upperpath
[  687.300679][ T5831] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  687.336691][ T5831] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  688.083158][ T5831] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  688.092584][ T5831] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  688.100158][ T5831] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  688.107648][ T5831] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  688.147535][T15265] virt_wifi0 speed is unknown, defaulting to 1000
[  688.767268][T15265] chnl_net:caif_netlink_parms(): no params data found
[  689.082218][T15265] bridge0: port 1(bridge_slave_0) entered blocking state
[  689.089334][T15265] bridge0: port 1(bridge_slave_0) entered disabled state
[  689.100235][T15265] bridge_slave_0: entered allmulticast mode
[  689.114563][T15265] bridge_slave_0: entered promiscuous mode
[  689.122680][T15265] bridge0: port 2(bridge_slave_1) entered blocking state
[  689.129875][T15265] bridge0: port 2(bridge_slave_1) entered disabled state
[  689.137190][T15265] bridge_slave_1: entered allmulticast mode
[  689.144317][T15265] bridge_slave_1: entered promiscuous mode
[  690.299579][ T5831] Bluetooth: hci6: command tx timeout
[  690.360600][T15265] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  691.134547][T15265] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  692.290721][T15265] team0: Port device team_slave_0 added
[  692.356749][ T5831] Bluetooth: hci6: command tx timeout
[  693.179389][T15265] team0: Port device team_slave_1 added
[  693.486140][T15333] netlink: 'syz.5.3016': attribute type 2 has an invalid length.
[  694.230315][T15265] batman_adv: batadv0: Adding interface: batadv_slave_0
[  694.237701][T15265] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  694.321377][T15265] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  694.371942][T15265] batman_adv: batadv0: Adding interface: batadv_slave_1
[  694.378941][T15265] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  694.396239][T15345] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3019'.
[  694.515008][ T5831] Bluetooth: hci6: command tx timeout
[  694.534294][T15265] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  695.858120][T15265] hsr_slave_0: entered promiscuous mode
[  695.906534][T15265] hsr_slave_1: entered promiscuous mode
[  696.600377][ T5831] Bluetooth: hci6: command tx timeout
[  696.708939][T15265] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  696.757587][T15265] Cannot create hsr debugfs directory
[  700.725894][T15265] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  700.757177][T15265] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  700.799259][T15265] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  700.860654][T15265] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  701.864448][T15265] 8021q: adding VLAN 0 to HW filter on device bond0
[  702.058971][T15265] 8021q: adding VLAN 0 to HW filter on device team0
[  702.105788][  T302] bridge0: port 1(bridge_slave_0) entered blocking state
[  702.114788][  T302] bridge0: port 1(bridge_slave_0) entered forwarding state
[  702.135729][  T302] bridge0: port 2(bridge_slave_1) entered blocking state
[  702.142931][  T302] bridge0: port 2(bridge_slave_1) entered forwarding state
[  703.703642][T15427] virt_wifi0 speed is unknown, defaulting to 1000
[  704.687562][T15437] lo speed is unknown, defaulting to 1000
[  704.844331][T15443] ������: renamed from lo (while UP)
[  704.867178][T15437] ������ speed is unknown, defaulting to 1000
[  705.687223][T15437] ������ speed is unknown, defaulting to 1000
[  705.758999][T15437] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  705.842736][T15437] ������ speed is unknown, defaulting to 1000
[  705.954341][T15451] netlink: 1280 bytes leftover after parsing attributes in process `syz.1.3051'.
[  705.963609][T15451] openvswitch: netlink: Flow actions attr not present in new flow.
[  705.992404][T15437] ������ speed is unknown, defaulting to 1000
[  706.006715][T15265] 8021q: adding VLAN 0 to HW filter on device batadv0
[  706.016318][T15437] ������ speed is unknown, defaulting to 1000
[  706.031893][T15437] ������ speed is unknown, defaulting to 1000
[  706.059589][T15437] ������ speed is unknown, defaulting to 1000
[  706.087396][T15437] ������ speed is unknown, defaulting to 1000
[  706.123844][T15437] ������ speed is unknown, defaulting to 1000
[  708.517016][T15265] veth0_vlan: entered promiscuous mode
[  708.658151][T15265] veth1_vlan: entered promiscuous mode
[  709.433320][T15265] veth0_macvtap: entered promiscuous mode
[  709.474223][T15265] veth1_macvtap: entered promiscuous mode
[  709.528600][T15265] batman_adv: batadv0: Interface activated: batadv_slave_0
[  709.547330][T15265] batman_adv: batadv0: Interface activated: batadv_slave_1
[  709.682663][T15265] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  709.739196][T15265] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  710.783003][T15265] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  710.877764][T15265] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  711.995679][T14759] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  712.014021][T14759] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  712.155008][T14759] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  712.218011][T14759] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  712.267517][ T5831] Bluetooth: hci2: unexpected cc 0x042d length: 63 > 7
[  712.276747][ T5831] Bluetooth: hci2: unexpected event for opcode 0x042d
[  716.502264][ T5831] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  716.512700][ T5831] Bluetooth: hci2: Injecting HCI hardware error event
[  716.523487][ T5830] Bluetooth: hci2: hardware error 0x00
[  718.342268][T15559] overlayfs: conflicting lowerdir path
[  718.600267][ T5830] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  718.639204][T15573] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3087'.
[  718.698446][T15573] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3087'.
[  719.762643][T15573] dummy0: entered promiscuous mode
[  720.429487][T15573] bond0: entered promiscuous mode
[  720.469634][T15573] bond_slave_0: entered promiscuous mode
[  720.533220][T15573] bond_slave_1: entered promiscuous mode
[  720.541875][T15573] mac80211_hwsim hwsim15 wlan1: entered promiscuous mode
[  720.552996][T15573] macvlan2: entered promiscuous mode
[  720.558333][T15573] team0: entered promiscuous mode
[  720.569348][T15573] team_slave_0: entered promiscuous mode
[  720.578355][T15573] team_slave_1: entered promiscuous mode
[  720.649706][T15590] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3092'.
[  720.667237][T15573] vxlan0: entered promiscuous mode
[  720.713968][T15573] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  720.766487][T15573] Cannot create hsr debugfs directory
[  720.810578][T15573] hsr0: Slave A (dummy0) is not up; please bring it up to get a fully working HSR network
[  720.864035][T15573] hsr0: Slave B (bond0) is not up; please bring it up to get a fully working HSR network
[  721.270750][   T29] kauditd_printk_skb: 25 callbacks suppressed
[  721.270794][   T29] audit: type=1326 audit(1737408083.771:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15598 comm="syz.1.3093" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2f52985d29 code=0x0
[  721.718030][T15600] kvm: kvm [15592]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4000
[  721.740548][T15600] kvm: kvm [15592]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000
[  721.783655][T15600] kvm: kvm [15592]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x186) = 0x4000
[  721.810285][T15600] kvm: kvm [15592]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x187) = 0x4000
[  721.825970][T15600] kvm: kvm [15592]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x186) = 0x4000
[  724.085347][T15627] syz.6.3104 invoked oom-killer: gfp_mask=0x402dc0(GFP_KERNEL_ACCOUNT|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=0
[  724.098495][T15627] CPU: 1 UID: 0 PID: 15627 Comm: syz.6.3104 Not tainted 6.13.0-syzkaller-00164-g100ceb4817a2 #0
[  724.108919][T15627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  724.118986][T15627] Call Trace:
[  724.122271][T15627]  <TASK>
[  724.125203][T15627]  dump_stack_lvl+0x241/0x360
[  724.129911][T15627]  ? __pfx_dump_stack_lvl+0x10/0x10
[  724.135119][T15627]  ? __pfx__printk+0x10/0x10
[  724.139715][T15627]  ? ___ratelimit+0x4be/0x690
[  724.144403][T15627]  ? __pfx____ratelimit+0x10/0x10
[  724.149433][T15627]  dump_header+0xdb/0x6a0
[  724.153776][T15627]  oom_kill_process+0x3b8/0x950
[  724.158644][T15627]  out_of_memory+0xf34/0x12f0
[  724.163334][T15627]  ? __pfx___mutex_lock+0x10/0x10
[  724.168372][T15627]  ? __pfx_out_of_memory+0x10/0x10
[  724.173497][T15627]  ? __pfx_lock_release+0x10/0x10
[  724.178532][T15627]  mem_cgroup_out_of_memory+0x264/0x3c0
[  724.184085][T15627]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  724.190161][T15627]  ? _raw_spin_unlock+0x28/0x50
[  724.195015][T15627]  ? memcg1_oom_prepare+0x393/0x460
[  724.200226][T15627]  try_charge_memcg+0xc99/0x1150
[  724.205182][T15627]  ? __pfx_try_charge_memcg+0x10/0x10
[  724.210574][T15627]  ? get_mem_cgroup_from_objcg+0x1af/0x1d0
[  724.216393][T15627]  ? get_mem_cgroup_from_objcg+0x1a/0x1d0
[  724.222128][T15627]  obj_cgroup_charge_pages+0x91/0x230
[  724.227511][T15627]  ? __pfx_obj_cgroup_charge_pages+0x10/0x10
[  724.233512][T15627]  __memcg_kmem_charge_page+0xc8/0x1d0
[  724.238978][T15627]  __alloc_pages_noprof+0x2c9/0x710
[  724.244187][T15627]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  724.249936][T15627]  alloc_pages_mpol_noprof+0x3e1/0x780
[  724.255402][T15627]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  724.261380][T15627]  ? __kvmalloc_node_noprof+0x72/0x190
[  724.266847][T15627]  ? alloc_pages_noprof+0xef/0x170
[  724.271965][T15627]  io_pages_map+0x31d/0x520
[  724.276483][T15627]  io_allocate_scq_urings+0x3b8/0x650
[  724.281865][T15627]  io_uring_create+0x5b5/0xc00
[  724.286638][T15627]  __se_sys_io_uring_setup+0x2ba/0x330
[  724.292099][T15627]  ? __task_pid_nr_ns+0x28/0x450
[  724.297045][T15627]  ? __pfx___se_sys_io_uring_setup+0x10/0x10
[  724.303042][T15627]  ? do_syscall_64+0x100/0x230
[  724.307833][T15627]  ? do_syscall_64+0xb6/0x230
[  724.312536][T15627]  do_syscall_64+0xf3/0x230
[  724.317051][T15627]  ? clear_bhb_loop+0x35/0x90
[  724.321727][T15627]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  724.327626][T15627] RIP: 0033:0x7f4c5ed85d29
[  724.332041][T15627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  724.351661][T15627] RSP: 002b:00007f4c5fb69fc8 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[  724.360063][T15627] RAX: ffffffffffffffda RBX: 00007f4c5ef75fa0 RCX: 00007f4c5ed85d29
[  724.368024][T15627] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000003665
[  724.375978][T15627] RBP: 0000000020000100 R08: 0000000000000000 R09: 0000000000000000
[  724.383939][T15627] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[  724.391916][T15627] R13: 0000000000000000 R14: 0000000000003665 R15: 0000000000000000
[  724.399903][T15627]  </TASK>
[  724.410679][T15627] memory: usage 307200kB, limit 307200kB, failcnt 161
[  724.417454][T15627] memory+swap: usage 316448kB, limit 9007199254740988kB, failcnt 0
[  724.425379][T15627] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[  724.433186][T15627] Memory cgroup stats for /syz6:
[  724.433481][T15627] cache 0
[  724.441370][T15627] rss 0
[  724.444123][T15627] rss_huge 0
[  724.447300][T15627] shmem 0
[  724.450239][T15627] mapped_file 0
[  724.453683][T15627] dirty 0
[  724.456601][T15627] writeback 0
[  724.459917][T15627] workingset_refault_anon 8
[  724.464402][T15627] workingset_refault_file 0
[  724.468882][T15627] swap 9474048
[  724.472273][T15627] swapcached 0
[  724.475631][T15627] pgpgin 508975
[  724.479070][T15627] pgpgout 511019
[  724.482617][T15627] pgfault 444599
[  724.486151][T15627] pgmajfault 6
[  724.489499][T15627] inactive_anon 0
[  724.493151][T15627] active_anon 0
[  724.496589][T15627] inactive_file 0
[  724.500235][T15627] active_file 0
[  724.503673][T15627] unevictable 0
[  724.507125][T15627] hierarchical_memory_limit 314572800
[  724.512712][T15627] hierarchical_memsw_limit 9223372036854771712
[  724.518849][T15627] total_cache 0
[  724.522322][T15627] total_rss 0
[  724.525591][T15627] total_rss_huge 0
[  724.529562][T15627] total_shmem 0
[  724.533058][T15627] total_mapped_file 0
[  724.537027][T15627] total_dirty 0
[  724.540517][T15627] total_writeback 0
[  724.544302][T15627] total_workingset_refault_anon 8
[  724.549306][T15627] total_workingset_refault_file 0
[  724.554336][T15627] total_swap 9474048
[  724.558207][T15627] total_swapcached 0
[  724.562121][T15627] total_pgpgin 508975
[  724.566083][T15627] total_pgpgout 511019
[  724.570160][T15627] total_pgfault 444599
[  724.574207][T15627] total_pgmajfault 6
[  724.578077][T15627] total_inactive_anon 0
[  724.582258][T15627] total_active_anon 0
[  724.586237][T15627] total_inactive_file 0
[  724.590415][T15627] total_active_file 0
[  724.594379][T15627] total_unevictable 0
[  724.598357][T15627] anon_cost 51
[  724.601732][T15627] file_cost 0
[  724.604997][T15627] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz6,task_memcg=/syz6,task=syz.6.3104,pid=15625,uid=0
[  724.622179][T15627] Memory cgroup out of memory: Killed process 15625 (syz.6.3104) total-vm:101712kB, anon-rss:896kB, file-rss:22728kB, shmem-rss:0kB, UID:0 pgtables:144kB oom_score_adj:0
[  724.943915][T15638] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3105'.
[  726.428360][T15652] x_tables: unsorted underflow at hook 3
[  726.622872][T15658] overlayfs: failed to clone lowerpath
[  726.928029][T15668] lo speed is unknown, defaulting to 1000
[  726.954272][T15668] lo speed is unknown, defaulting to 1000
[  726.963833][T15668] lo speed is unknown, defaulting to 1000
[  727.604750][T15668] infiniband s
z1: set active
[  727.609898][T15668] infiniband s
z1: added lo
[  727.667326][T15668] RDS/IB: s
z1: added
[  727.672943][T15668] smc: adding ib device s
z1 with port count 1
[  727.679527][T15668] smc:    ib device s
z1 port 1 has pnetid 
[  727.730882][T10088] lo speed is unknown, defaulting to 1000
[  727.762928][T15668] lo speed is unknown, defaulting to 1000
[  727.888927][T15668] lo speed is unknown, defaulting to 1000
[  727.972498][T15683] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3120'.
[  727.994625][T15668] lo speed is unknown, defaulting to 1000
[  727.999644][T15683] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3120'.
[  728.053061][T15683] bond0: entered promiscuous mode
[  728.075319][T15683] bond_slave_0: entered promiscuous mode
[  728.087290][T15683] bond_slave_1: entered promiscuous mode
[  728.103709][T15683] 8021q: adding VLAN 0 to HW filter on device macvlan1
[  728.119108][T15668] lo speed is unknown, defaulting to 1000
[  728.193136][T15668] lo speed is unknown, defaulting to 1000
[  728.253328][T15668] lo speed is unknown, defaulting to 1000
[  728.314646][T15668] lo speed is unknown, defaulting to 1000
[  728.434151][T14764] lo speed is unknown, defaulting to 1000
[  729.652909][   T29] audit: type=1326 audit(1737408092.152:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15693 comm="syz.5.3125" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6e22185d29 code=0x0
[  729.911570][T15705] netlink: 'syz.1.3129': attribute type 1 has an invalid length.
[  729.942138][T15706] geneve1: entered promiscuous mode
[  729.955539][T15705] netlink: 83992 bytes leftover after parsing attributes in process `syz.1.3129'.
[  729.966994][T15706] team0: Device macvlan3 is up. Set it down before adding it as a team port
[  731.242384][T15706] geneve1: left promiscuous mode
[  732.199552][T15728] syz.1.3131 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  732.212850][T15729] xt_CT: You must specify a L4 protocol and not use inversions on it
[  732.942434][T15744] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3137'.
[  734.431426][T15760] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3141'.
[  738.811851][T15818] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3157'.
[  739.925902][T15818] bond0: (slave bond_slave_0): Releasing backup interface
[  740.137899][T15818] bond_slave_0 (unregistering): left promiscuous mode
[  741.047034][T15835] vlan0: entered promiscuous mode
[  741.077762][T15835] bond0: (slave vlan0): Opening slave failed
[  743.069724][T15860] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3174'.
[  746.951192][T15890] F2FS-fs (loop5): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  746.959875][T15890] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  746.969069][T15890] F2FS-fs (loop5): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  746.976821][T15890] F2FS-fs (loop5): Can't find valid F2FS filesystem in 2th superblock
[  747.719600][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  747.725970][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  749.795820][ T5831] Bluetooth: hci5: command 0x0406 tx timeout
[  750.053305][T15904] binder_alloc: 15902: pid 15902 spamming oneway? 1 buffers allocated for a total size of 4096
[  751.117865][T15920] kernel read not supported for file / 
���ԢW)�S���-� (pid: 15920 comm: syz.8.3188)
[  751.230353][   T29] audit: type=1800 audit(1737408113.733:606): pid=15920 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.8.3188" name=20019CCFFCD4A25729EB5393A7C72DEB dev="mqueue" ino=42479 res=0 errno=0
[  751.382264][T15924] overlayfs: failed to clone upperpath
[  753.538565][T15951] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3193'.
[  755.123304][ T5830] Bluetooth: Unknown BR/EDR signaling command 0x0e
[  755.130159][ T5830] Bluetooth: Wrong link type (-22)
[  755.137009][ T5830] Bluetooth: Unknown BR/EDR signaling command 0x10
[  755.143784][ T5830] Bluetooth: Wrong link type (-22)
[  755.162378][ T5830] Bluetooth: hci6: link tx timeout
[  755.168350][ T5830] Bluetooth: hci6: killing stalled connection 11:aa:aa:aa:aa:aa
[  757.228240][ T5830] Bluetooth: hci6: command 0x0406 tx timeout
[  761.644451][T16018] overlayfs: failed to clone upperpath
[  766.762466][T16078] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  766.803889][T16078] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  766.848863][T16078] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[  766.953728][T16085] Invalid source name
[  766.965579][T16085] UBIFS error (pid: 16085): cannot open "./file0", error -22
[  767.128737][T16077] bridge3: entered promiscuous mode
[  767.174449][T16077] bridge3: entered allmulticast mode
[  767.197660][T16089] bond_slave_0: entered promiscuous mode
[  767.203822][T16089] bond_slave_1: entered promiscuous mode
[  767.233513][T16089] bond_slave_0: left promiscuous mode
[  767.239062][T16089] bond_slave_1: left promiscuous mode
[  775.388831][T16180] vlan0: entered promiscuous mode
[  777.074945][T16198] overlayfs: failed to clone upperpath
[  777.146610][   T94] libceph: connect (1)[c::]:6789 error -101
[  777.154645][   T94] libceph: mon0 (1)[c::]:6789 connect error
[  777.234586][T16200] ceph: No mds server is up or the cluster is laggy
[  777.442489][   T94] libceph: connect (1)[c::]:6789 error -101
[  777.495659][   T94] libceph: mon0 (1)[c::]:6789 connect error
[  779.027355][   T29] audit: type=1326 audit(2000000007.750:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16223 comm="syz.8.3276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe91585d29 code=0x7ffc0000
[  779.295129][   T29] audit: type=1326 audit(2000000007.760:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16223 comm="syz.8.3276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe91585d29 code=0x7ffc0000
[  779.334074][   T29] audit: type=1326 audit(2000000007.770:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16223 comm="syz.8.3276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efe91585d29 code=0x7ffc0000
[  779.459108][   T29] audit: type=1326 audit(2000000007.770:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16223 comm="syz.8.3276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe91585d29 code=0x7ffc0000
[  779.560481][   T29] audit: type=1326 audit(2000000007.780:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16223 comm="syz.8.3276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe91585d29 code=0x7ffc0000
[  779.586595][   T29] audit: type=1326 audit(2000000007.790:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16223 comm="syz.8.3276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=281 compat=0 ip=0x7efe91585d29 code=0x7ffc0000
[  779.644779][   T29] audit: type=1326 audit(2000000007.790:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16223 comm="syz.8.3276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe91585d29 code=0x7ffc0000
[  780.035369][T16236] xt_l2tp: invalid flags combination: 4
[  780.989314][   T29] audit: type=1326 audit(2000000007.840:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16223 comm="syz.8.3276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe91585d29 code=0x7ffc0000
[  782.174807][   T29] audit: type=1326 audit(2000000007.840:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16223 comm="syz.8.3276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efe91585d29 code=0x7ffc0000
[  782.387597][   T29] audit: type=1326 audit(2000000007.840:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16223 comm="syz.8.3276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe91585d29 code=0x7ffc0000
[  783.252124][T16252] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3284'.
[  783.327527][T16257] veth0_to_team: entered promiscuous mode
[  784.132769][T16257] veth0_to_team: entered allmulticast mode
[  784.260007][T16267] x_tables: unsorted underflow at hook 3
[  784.271237][T16267] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3288'.
[  784.354112][T16271] netlink: 'syz.5.3291': attribute type 4 has an invalid length.
[  793.956966][T16337] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3307'.
[  794.102750][T16344] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3307'.
[  794.265329][T16345] virt_wifi0 speed is unknown, defaulting to 1000
[  794.280595][T16345] ������ speed is unknown, defaulting to 1000
[  794.294972][T16345] lo speed is unknown, defaulting to 1000
[  794.886806][T16343] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3308'.
[  796.159461][T16362] netdevsim netdevsim6: loading /lib/firmware/. failed with error -22
[  796.171321][T16362] netdevsim netdevsim6: Direct firmware load for . failed with error -22
[  796.181377][T16362] netdevsim netdevsim6: Falling back to sysfs fallback for: .
[  800.514169][T16397] netlink: 'syz.5.3325': attribute type 21 has an invalid length.
[  800.831918][T16406] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3326'.
[  800.841137][T16406] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3326'.
[  800.850823][T16406] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3326'.
[  802.246529][T16411] netlink: 'syz.1.3329': attribute type 21 has an invalid length.
[  802.366261][T16411] netlink: 'syz.1.3329': attribute type 6 has an invalid length.
[  802.645443][T16411] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3329'.
[  802.697710][T16411] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  804.342205][T16430] overlayfs: failed to clone upperpath
[  808.708549][T16475] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3346'.
[  809.195442][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  809.201816][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  811.258543][ T5831] Bluetooth: hci6: command 0x0406 tx timeout
[  812.430738][T16492] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3351'.
[  815.795301][T16512] overlayfs: failed to clone upperpath
[  816.962624][ T5831] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  816.974041][ T5831] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  816.982605][ T5831] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  816.993603][ T5831] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  817.107433][ T5831] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  817.121442][ T5831] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  817.732311][T16517] virt_wifi0 speed is unknown, defaulting to 1000
[  817.770447][T16517] ������ speed is unknown, defaulting to 1000
[  817.809025][T16517] lo speed is unknown, defaulting to 1000
[  819.494740][ T5831] Bluetooth: hci7: command tx timeout
[  821.544399][ T5830] Bluetooth: hci7: command tx timeout
[  822.322403][T16517] chnl_net:caif_netlink_parms(): no params data found
[  822.666047][   T30] INFO: task kworker/u8:9:6475 blocked for more than 143 seconds.
[  822.673917][   T30]       Not tainted 6.13.0-syzkaller-00164-g100ceb4817a2 #0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  822.774168][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  823.064697][   T30] task:kworker/u8:9    state:D stack:20528 pid:6475  tgid:6475  ppid:2      flags:0x00004000
[  823.166388][   T30] Workqueue: events_unbound netfs_write_collection_worker
[  823.245100][   T30] Call Trace:
[  823.272121][   T30]  <TASK>
[  823.295349][   T30]  __schedule+0x17fb/0x4be0
[  823.322317][   T30]  ? __pfx___schedule+0x10/0x10
[  823.357265][   T30]  ? __pfx_lock_release+0x10/0x10
[  823.414610][   T30]  ? schedule+0x90/0x320
[  823.418967][   T30]  ? wq_worker_sleeping+0x66/0x240
[  823.482614][   T30]  ? schedule+0x90/0x320
[  823.487127][   T30]  schedule+0x14b/0x320
[  823.491311][   T30]  bit_wait+0x12/0xd0
[  823.514288][   T30]  __wait_on_bit+0xb0/0x2f0
[  823.518868][   T30]  ? __pfx_bit_wait+0x10/0x10
[  823.523575][   T30]  out_of_line_wait_on_bit+0x1d5/0x260
[  823.572479][   T30]  ? __pfx_bit_wait+0x10/0x10
[  823.584191][   T30]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  823.590265][   T30]  ? __pfx_wake_bit_function+0x10/0x10
[  823.614118][   T30]  netfs_retry_writes+0x16e/0x19b0
[  823.619320][   T30]  ? __pfx_validate_chain+0x10/0x10
[  823.624689][ T5830] Bluetooth: hci7: command tx timeout
[  823.638046][   T30]  ? stack_trace_save+0x118/0x1d0
[  823.643148][   T30]  ? __pfx_netfs_retry_writes+0x10/0x10
[  823.651190][   T30]  ? lockdep_unlock+0x16a/0x300
[  823.656174][   T30]  netfs_write_collection_worker+0x2f90/0x3bb0
[  823.662412][   T30]  ? process_scheduled_works+0x976/0x1840
[  823.668205][   T30]  process_scheduled_works+0xa66/0x1840
[  823.673800][   T30]  ? __pfx_process_scheduled_works+0x10/0x10
[  823.680055][   T30]  ? assign_work+0x364/0x3d0
[  823.684742][   T30]  worker_thread+0x870/0xd30
[  823.689364][   T30]  ? __kthread_parkme+0x169/0x1d0
[  823.694538][   T30]  ? __pfx_worker_thread+0x10/0x10
[  823.699671][   T30]  kthread+0x2f0/0x390
[  823.703756][   T30]  ? __pfx_worker_thread+0x10/0x10
[  823.709157][   T30]  ? __pfx_kthread+0x10/0x10
[  823.713781][   T30]  ret_from_fork+0x4b/0x80
[  823.718305][   T30]  ? __pfx_kthread+0x10/0x10
[  823.722915][   T30]  ret_from_fork_asm+0x1a/0x30
[  823.727770][   T30]  </TASK>
[  823.760683][   T30] INFO: task syz.7.2941:15085 blocked for more than 144 seconds.
[  823.768613][   T30]       Not tainted 6.13.0-syzkaller-00164-g100ceb4817a2 #0
[  823.775986][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  823.793597][   T30] task:syz.7.2941      state:D stack:22608 pid:15085 tgid:15084 ppid:14511  flags:0x00004006
[  823.843526][   T30] Call Trace:
[  823.846951][   T30]  <TASK>
[  823.849907][   T30]  __schedule+0x17fb/0x4be0
[  823.865598][   T30]  ? __pfx___schedule+0x10/0x10
[  823.870518][   T30]  ? __pfx_lock_release+0x10/0x10
[  823.884150][   T30]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  823.890118][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  823.924259][   T30]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  823.930672][   T30]  ? schedule+0x90/0x320
[  823.954298][   T30]  schedule+0x14b/0x320
[  823.958527][   T30]  schedule_preempt_disabled+0x13/0x30
[  823.964107][   T30]  __mutex_lock+0x7e7/0xee0
[  823.968645][   T30]  ? __mutex_lock+0x5ef/0xee0
[  823.973351][   T30]  ? netfs_writepages+0x12b/0x9e0
[  824.005939][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  824.011056][   T30]  netfs_writepages+0x12b/0x9e0
[  824.024132][   T30]  ? mark_lock+0x9a/0x360
[  824.028525][   T30]  ? __pfx_lock_release+0x10/0x10
[  824.033569][   T30]  ? __lock_acquire+0x1397/0x2100
[  824.054120][   T30]  ? __pfx_netfs_writepages+0x10/0x10
[  824.060042][   T30]  ? __pfx_netfs_writepages+0x10/0x10
[  824.084131][   T30]  do_writepages+0x35f/0x880
[  824.088867][   T30]  ? __pfx_do_writepages+0x10/0x10
[  824.104143][   T30]  ? filemap_fdatawrite+0x1e8/0x2a0
[  824.109414][   T30]  ? do_raw_spin_lock+0x14f/0x370
[  824.124318][   T30]  ? __pfx_lock_release+0x10/0x10
[  824.129424][   T30]  ? do_raw_spin_unlock+0x13c/0x8b0
[  824.144058][   T30]  ? wbc_attach_and_unlock_inode+0x561/0x580
[  824.150209][   T30]  filemap_fdatawrite+0x1f3/0x2a0
[  824.155445][   T30]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  824.161643][   T30]  ? kmem_cache_free+0x30e/0x410
[  824.166734][   T30]  ? __pfx_ima_file_free+0x10/0x10
[  824.171880][   T30]  v9fs_dir_release+0x151/0x560
[  824.176910][   T30]  ? __pfx___might_resched+0x10/0x10
[  824.182210][   T30]  ? __pfx_v9fs_dir_release+0x10/0x10
[  824.192070][   T30]  ? __pfx_call_rcu+0x10/0x10
[  824.200245][   T30]  ? evm_file_release+0x105/0x1e0
[  824.205767][   T30]  ? __pfx_v9fs_dir_release+0x10/0x10
[  824.211167][   T30]  __fput+0x23c/0xa50
[  824.215325][   T30]  task_work_run+0x24f/0x310
[  824.219938][   T30]  ? __phys_addr+0xba/0x170
[  824.228884][   T30]  ? __pfx_task_work_run+0x10/0x10
[  824.244201][   T30]  ? task_work_add+0x321/0x490
[  824.249050][   T30]  get_signal+0x15f7/0x1750
[  824.253585][   T30]  ? fput+0x1fa/0x290
[  824.264093][   T30]  ? __pfx_get_signal+0x10/0x10
[  824.269014][   T30]  arch_do_signal_or_restart+0x96/0x860
[  824.282817][   T30]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  824.289197][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  824.304087][   T30]  ? syscall_exit_to_user_mode+0xa3/0x340
[  824.309866][   T30]  syscall_exit_to_user_mode+0xce/0x340
[  824.323809][   T30]  do_syscall_64+0x100/0x230
[  824.328732][   T30]  ? clear_bhb_loop+0x35/0x90
[  824.333442][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  824.357569][   T30] RIP: 0033:0x7fcace185d29
[  824.362133][   T30] RSP: 002b:00007fcacef0a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  824.380543][   T30] RAX: 0000000000180000 RBX: 00007fcace375fa0 RCX: 00007fcace185d29
[  824.390917][   T30] RDX: 0000000000000000 RSI: 000000000000000a RDI: 0000000000000009
[  824.404075][   T30] RBP: 00007fcace201b08 R08: 0000000000000000 R09: 0000000000000000
[  824.412088][   T30] R10: 000000007ffff000 R11: 0000000000000246 R12: 0000000000000000
[  824.428949][   T30] R13: 0000000000000000 R14: 00007fcace375fa0 R15: 00007ffe64808a48
[  824.440369][   T30]  </TASK>
[  824.574945][   T30] 
[  824.574945][   T30] Showing all locks held in the system:
[  824.582735][   T30] 1 lock held by khungtaskd/30:
[  824.626576][   T30]  #0: ffffffff8e937da0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x55/0x2a0
[  824.636692][   T30] 3 locks held by kworker/u8:5/302:
[  824.641904][   T30]  #0: ffff888143efd148 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  824.653356][   T30]  #1: ffffc90002fd7d00 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  824.665928][   T30]  #2: ffff88805ac93ef0 (&ctx->wb_lock){+.+.}-{4:4}, at: netfs_writepages+0x12b/0x9e0
[  824.676387][   T30] 2 locks held by getty/5581:
[  824.681086][   T30]  #0: ffff888030ff60a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  824.690970][   T30]  #1: ffffc90002fde2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x6a6/0x1e00
[  824.701223][   T30] 1 lock held by syz-executor/5816:
[  824.714996][   T30]  #0: ffffffff8e93d180 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x530
[  824.736222][   T30] 5 locks held by kworker/0:5/5871:
[  824.741474][   T30] 2 locks held by kworker/u8:9/6475:
[  824.753874][   T30]  #0: ffff88801ac89148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  824.778053][   T30]  #1: ffffc90003f6fd00 ((work_completion)(&rreq->work)#2){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  824.794204][   T30] 1 lock held by syz.5.2257/12904:
[  824.799366][   T30] 1 lock held by syz.7.2941/15085:
[  824.812685][   T30]  #0: ffff88805ac93ef0 (&ctx->wb_lock){+.+.}-{4:4}, at: netfs_writepages+0x12b/0x9e0
[  824.822503][   T30] 3 locks held by syz.7.2941/15090:
[  824.844688][   T30]  #0: ffff88805d1c8420 (sb_writers#20){.+.+}-{0:0}, at: mnt_want_write+0x3f/0x90
[  824.854535][   T30]  #1: ffff88805ac93b38 (&sb->s_type->i_mutex_key#28){++++}-{4:4}, at: vfs_utimes+0x44d/0x770
[  824.864961][   T30]  #2: ffff88805ac93ef0 (&ctx->wb_lock){+.+.}-{4:4}, at: netfs_writepages+0xcf/0x9e0
[  824.875289][   T30] 2 locks held by kworker/u8:16/15636:
[  824.880760][   T30]  #0: ffff8880b863e798 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  824.890772][   T30]  #1: ffffc900050b7d00 ((work_completion)(&(&bat_priv->nc.work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  824.904114][   T30] 2 locks held by syz.8.3315/16368:
[  824.909320][   T30]  #0: ffff88805d1c80e0 (&type->s_umount_key#62){++++}-{4:4}, at: super_lock+0x27c/0x400
[  824.919369][   T30]  #1: ffff88805d1ca7d0 (&bdi->wb_switch_rwsem){+.+.}-{4:4}, at: sync_inodes_sb+0x26e/0xb50
[  824.929782][   T30] 2 locks held by syz-executor/16517:
[  824.935208][   T30]  #0: ffff888023c18d80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_unregister_dev+0x203/0x510
[  824.946621][   T30]  #1: ffff888023c18078 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x5c8/0x11c0
[  824.956462][   T30] 4 locks held by syz.2.3372/16574:
[  824.961660][   T30]  #0: ffff88807defb808 (&sb->s_type->i_mutex_key#9){+.+.}-{4:4}, at: sock_close+0x90/0x240
[  824.971813][   T30]  #1: ffffffff8fd092d0 ((netlink_chain).rwsem){++++}-{4:4}, at: blocking_notifier_call_chain+0x53/0x90
[  824.983509][   T30]  #2: ffff88803233dcc8 (&nft_net->commit_mutex){+.+.}-{4:4}, at: nft_rcv_nl_event+0x120/0x6b0
[  824.994319][   T30]  #3: ffffffff8e93d2b8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x381/0x830
[  825.005321][   T30] 
[  825.007798][   T30] =============================================
[  825.007798][   T30] 
[  825.024043][   T30] NMI backtrace for cpu 0
[  825.028427][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-syzkaller-00164-g100ceb4817a2 #0
[  825.038595][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  825.048666][   T30] Call Trace:
[  825.051962][   T30]  <TASK>
[  825.054905][   T30]  dump_stack_lvl+0x241/0x360
[  825.059609][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  825.064826][   T30]  ? __pfx__printk+0x10/0x10
[  825.069452][   T30]  nmi_cpu_backtrace+0x49c/0x4d0
[  825.074420][   T30]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  825.079903][   T30]  ? _printk+0xd5/0x120
[  825.084075][   T30]  ? __pfx__printk+0x10/0x10
[  825.088680][   T30]  ? __wake_up_klogd+0xcc/0x110
[  825.093543][   T30]  ? __pfx__printk+0x10/0x10
[  825.098149][   T30]  ? __rcu_read_unlock+0xa1/0x110
[  825.103190][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  825.109190][   T30]  nmi_trigger_cpumask_backtrace+0x198/0x320
[  825.115195][   T30]  watchdog+0xff6/0x1040
[  825.119454][   T30]  ? watchdog+0x1ea/0x1040
[  825.123885][   T30]  ? __pfx_watchdog+0x10/0x10
[  825.128574][   T30]  kthread+0x2f0/0x390
[  825.132658][   T30]  ? __pfx_watchdog+0x10/0x10
[  825.137345][   T30]  ? __pfx_kthread+0x10/0x10
[  825.141951][   T30]  ret_from_fork+0x4b/0x80
[  825.146373][   T30]  ? __pfx_kthread+0x10/0x10
[  825.150980][   T30]  ret_from_fork_asm+0x1a/0x30
[  825.155773][   T30]  </TASK>
[  825.159622][   T30] Sending NMI from CPU 0 to CPUs 1:
[  825.165162][    C1] NMI backtrace for cpu 1
[  825.165175][    C1] CPU: 1 UID: 0 PID: 16574 Comm: syz.2.3372 Not tainted 6.13.0-syzkaller-00164-g100ceb4817a2 #0
[  825.165192][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  825.165201][    C1] RIP: 0010:unwind_next_frame+0x6c3/0x22d0
[  825.165221][    C1] Code: e9 32 02 00 00 4d 89 ec 4d 89 ee 48 89 e8 4c 29 f0 48 89 c1 48 c1 f9 02 48 c1 e8 3f 48 01 c8 48 83 e0 fe 49 8d 1c 46 48 89 d8 <48> c1 e8 03 48 b9 00 00 00 00 00 fc ff df 0f b6 04 08 84 c0 75 27
[  825.165234][    C1] RSP: 0018:ffffc9000c13ea50 EFLAGS: 00000246
[  825.165248][    C1] RAX: ffffffff90345e1c RBX: ffffffff90345e1c RCX: 0000000000000000
[  825.165259][    C1] RDX: 00000000000b0001 RSI: ffffffff90af1c24 RDI: ffffffff814ba8a0
[  825.165270][    C1] RBP: ffffffff90345e1c R08: 0000000000000001 R09: ffffc9000c13ec10
[  825.165280][    C1] R10: ffffc9000c13eb70 R11: ffffffff818b3080 R12: ffffffff90345e1c
[  825.165291][    C1] R13: ffffffff90345e1c R14: ffffffff90345e1c R15: ffffffff820cac35
[  825.165302][    C1] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  825.165314][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  825.165324][    C1] CR2: 0000001b32814ff8 CR3: 000000000e736000 CR4: 00000000003526f0
[  825.165338][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  825.165347][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  825.165356][    C1] Call Trace:
[  825.165362][    C1]  <NMI>
[  825.165367][    C1]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  825.165389][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  825.165407][    C1]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  825.165426][    C1]  ? nmi_handle+0x2a/0x5a0
[  825.165450][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  825.165469][    C1]  ? nmi_handle+0x14f/0x5a0
[  825.165484][    C1]  ? nmi_handle+0x2a/0x5a0
[  825.165500][    C1]  ? unwind_next_frame+0x6c3/0x22d0
[  825.165514][    C1]  ? default_do_nmi+0x63/0x160
[  825.165534][    C1]  ? exc_nmi+0x123/0x1f0
[  825.165553][    C1]  ? end_repeat_nmi+0xf/0x53
[  825.165570][    C1]  ? __reset_page_owner+0x75/0x430
[  825.165589][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  825.165613][    C1]  ? unwind_next_frame+0xb0/0x22d0
[  825.165626][    C1]  ? unwind_next_frame+0x6c3/0x22d0
[  825.165641][    C1]  ? unwind_next_frame+0x6c3/0x22d0
[  825.165657][    C1]  ? unwind_next_frame+0x6c3/0x22d0
[  825.165672][    C1]  </NMI>
[  825.165677][    C1]  <TASK>
[  825.165686][    C1]  ? __reset_page_owner+0x76/0x430
[  825.165704][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  825.165725][    C1]  arch_stack_walk+0x11c/0x150
[  825.165745][    C1]  ? __reset_page_owner+0x76/0x430
[  825.165765][    C1]  stack_trace_save+0x118/0x1d0
[  825.165785][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  825.165810][    C1]  save_stack+0xfb/0x1f0
[  825.165826][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  825.165842][    C1]  ? __pfx_save_stack+0x10/0x10
[  825.165866][    C1]  ? page_ext_get+0x20/0x2a0
[  825.165887][    C1]  __reset_page_owner+0x76/0x430
[  825.165905][    C1]  ? __mem_cgroup_uncharge_folios+0x14a/0x1c0
[  825.165927][    C1]  free_unref_folios+0xe23/0x1890
[  825.165946][    C1]  ? __page_cache_release+0x95f/0xb90
[  825.165964][    C1]  folios_put_refs+0x76c/0x860
[  825.165982][    C1]  ? __pfx_folios_put_refs+0x10/0x10
[  825.165996][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  825.166012][    C1]  ? folio_batch_remove_exceptionals+0x18a/0x1f0
[  825.166030][    C1]  shmem_undo_range+0x593/0x1820
[  825.166048][    C1]  ? __pfx_lock_release+0x10/0x10
[  825.166064][    C1]  ? unwind_next_frame+0x18e6/0x22d0
[  825.166082][    C1]  ? 0xffffffffa0003c00
[  825.166093][    C1]  ? __pfx_shmem_undo_range+0x10/0x10
[  825.166124][    C1]  ? stack_trace_save+0x118/0x1d0
[  825.166168][    C1]  shmem_evict_inode+0x29b/0xa80
[  825.166185][    C1]  ? inode_wait_for_writeback+0x111/0x2a0
[  825.166201][    C1]  ? __pfx_shmem_evict_inode+0x10/0x10
[  825.166220][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[  825.166241][    C1]  ? __pfx_shmem_evict_inode+0x10/0x10
[  825.166256][    C1]  evict+0x4e8/0x9a0
[  825.166277][    C1]  ? __pfx_evict+0x10/0x10
[  825.166296][    C1]  ? _raw_spin_unlock+0x28/0x50
[  825.166308][    C1]  ? iput+0x713/0xa50
[  825.166325][    C1]  __dentry_kill+0x20d/0x630
[  825.166340][    C1]  ? shrink_kill+0x8d/0x2c0
[  825.166354][    C1]  shrink_kill+0xa9/0x2c0
[  825.166368][    C1]  shrink_dentry_list+0x2c0/0x5b0
[  825.166386][    C1]  shrink_dcache_parent+0xcb/0x3b0
[  825.166404][    C1]  ? __pfx_shrink_dcache_parent+0x10/0x10
[  825.166426][    C1]  do_one_tree+0x23/0xe0
[  825.166441][    C1]  shrink_dcache_for_umount+0xb4/0x180
[  825.166458][    C1]  generic_shutdown_super+0x6a/0x2d0
[  825.166476][    C1]  kill_litter_super+0x76/0xb0
[  825.166493][    C1]  deactivate_locked_super+0xc4/0x130
[  825.166509][    C1]  cleanup_mnt+0x41f/0x4b0
[  825.166525][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  825.166542][    C1]  task_work_run+0x24f/0x310
[  825.166562][    C1]  ? __pfx_task_work_run+0x10/0x10
[  825.166578][    C1]  ? do_exit+0xa25/0x28e0
[  825.166593][    C1]  ? do_exit+0xa25/0x28e0
[  825.166609][    C1]  do_exit+0xa2a/0x28e0
[  825.166627][    C1]  ? __pfx_do_exit+0x10/0x10
[  825.166642][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  825.166663][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  825.166679][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  825.166694][    C1]  ? _raw_spin_lock_irq+0xdf/0x120
[  825.166710][    C1]  do_group_exit+0x207/0x2c0
[  825.166724][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  825.166737][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  825.166753][    C1]  get_signal+0x16b2/0x1750
[  825.166778][    C1]  ? __pfx_get_signal+0x10/0x10
[  825.166800][    C1]  arch_do_signal_or_restart+0x96/0x860
[  825.166821][    C1]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  825.166840][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  825.166861][    C1]  ? syscall_exit_to_user_mode+0xa3/0x340
[  825.166879][    C1]  syscall_exit_to_user_mode+0xce/0x340
[  825.166896][    C1]  do_syscall_64+0x100/0x230
[  825.166912][    C1]  ? clear_bhb_loop+0x35/0x90
[  825.166930][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  825.166946][    C1] RIP: 0033:0x7f0c51b85d29
[  825.166957][    C1] Code: Unable to access opcode bytes at 0x7f0c51b85cff.
[  825.166965][    C1] RSP: 002b:00007f0c52a09038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  825.166979][    C1] RAX: 000000000000009c RBX: 00007f0c51d75fa0 RCX: 00007f0c51b85d29
[  825.166989][    C1] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003
[  825.166998][    C1] RBP: 00007f0c51c01b08 R08: 0000000000000000 R09: 0000000000000000
[  825.167007][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  825.167015][    C1] R13: 0000000000000000 R14: 00007f0c51d75fa0 R15: 00007ffd47bb4af8
[  825.167033][    C1]  </TASK>
[  825.233457][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  825.233475][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-syzkaller-00164-g100ceb4817a2 #0
[  825.233495][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  825.233506][   T30] Call Trace:
[  825.233513][   T30]  <TASK>
[  825.233521][   T30]  dump_stack_lvl+0x241/0x360
[  825.233550][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  825.233572][   T30]  ? __pfx__printk+0x10/0x10
[  825.233589][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  825.233616][   T30]  ? vscnprintf+0x5d/0x90
[  825.233642][   T30]  panic+0x349/0x880
[  825.233662][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  825.233689][   T30]  ? __pfx_panic+0x10/0x10
[  825.233705][   T30]  ? tick_nohz_tick_stopped+0x82/0xb0
[  825.233731][   T30]  ? __irq_work_queue_local+0x137/0x410
[  825.233752][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  825.233770][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  825.233794][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[  825.233821][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[  825.233847][   T30]  watchdog+0x1035/0x1040
[  825.233868][   T30]  ? watchdog+0x1ea/0x1040
[  825.233892][   T30]  ? __pfx_watchdog+0x10/0x10
[  825.233910][   T30]  kthread+0x2f0/0x390
[  825.233933][   T30]  ? __pfx_watchdog+0x10/0x10
[  825.233950][   T30]  ? __pfx_kthread+0x10/0x10
[  825.233970][   T30]  ret_from_fork+0x4b/0x80
[  825.233986][   T30]  ? __pfx_kthread+0x10/0x10
[  825.234005][   T30]  ret_from_fork_asm+0x1a/0x30
[  825.234039][   T30]  </TASK>
[  825.962730][   T30] Kernel Offset: disabled
[  825.967046][   T30] Rebooting in 86400 seconds..