last executing test programs:

7.766635775s ago: executing program 1 (id=1416):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_udplite(0x2, 0x2, 0x88)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000002000000b7080000000000007b8af8ff00000000b70800000002000037e4f0ff00000000bfa100ffbfa40000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a500000095000000000000"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0xc, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x6, 0x0, &(0x7f0000000340)=[{0x4, 0x2, 0x6, 0x8}, {0x0, 0x1, 0xb, 0x8}, {0x0, 0x2, 0x9, 0x5}, {0x1, 0x2, 0xf, 0x7}, {0x5, 0x2, 0xf, 0x2}, {0x5, 0x5, 0x3, 0x9}], 0x10, 0xfffffffb, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x800}, 0x18)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
inotify_init1(0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
syz_open_dev$tty1(0xc, 0x4, 0x1)
dup2(0xffffffffffffffff, 0xffffffffffffffff)

6.496007994s ago: executing program 1 (id=1419):
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, 0x0, &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x3, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0xb}, {0x5, 0x2, 0x13, 0xa}, {0x5, 0x5, 0x5, 0x9}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = syz_clone(0x800c000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)
kcmp(r0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_open_dev$loop(&(0x7f0000000080), 0x8b9, 0x80981)
r5 = memfd_create(&(0x7f0000000ac0)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13^\x13\xcb\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\xefo\xb8\x8f]\x14\x1d', 0x5)
r6 = syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0)
ioctl$I2C_SMBUS(r6, 0x720, &(0x7f0000003080)={0x1, 0x0, 0x6, &(0x7f0000003040)={0x0, "f4e1a230be8f46463fb1a5f1b44f44eaa65e485b747aa95df8c01eaf07677d18bc"}})
ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5)

5.508955488s ago: executing program 1 (id=1425):
r0 = syz_io_uring_setup(0x2ddf, &(0x7f00000006c0)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_setup(0x5c6, &(0x7f00000005c0), &(0x7f0000000300)=<r2=>0x0, &(0x7f0000000500))
syz_io_uring_submit(r2, r1, &(0x7f00000001c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10105, 0x0, {0x1}})
io_uring_enter(r0, 0x381b, 0x0, 0x0, 0x0, 0x0)

5.005647391s ago: executing program 1 (id=1427):
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r1 = inotify_init1(0x0)
fcntl$setown(r1, 0x8, 0xffffffffffffffff)
fcntl$getownex(r1, 0x10, &(0x7f0000000140)={0x0, <r2=>0x0})
r3 = syz_open_procfs(r2, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r3, 0x4004662b, &(0x7f0000000180)={@id={0x2, 0x0, @d}})

4.891217641s ago: executing program 1 (id=1429):
syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000300000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18008e06e3684a2c774d4029fb6d77e500000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f00000003c0)=@filter={'filter\x00', 0x42, 0x4, 0x358, 0xffffffff, 0x1e8, 0x0, 0x98, 0xffffffff, 0xffffffff, 0x2c0, 0x2c0, 0x2c0, 0xffffffff, 0x5, 0x0, {[{{@ip={@multicast2, @broadcast, 0x0, 0x0, 'wg1\x00', 'nicvf0\x00'}, 0x74000000, 0x70, 0x98, 0x1ba, {0x46010000, 0x2c000000000000}}, @REJECT={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'syz_tun\x00', 'veth1_to_bridge\x00'}, 0x287, 0xf0, 0x150, 0x0, {}, [@common=@unspec=@ipvs={{0x48}, {@ipv4=@local}}, @common=@unspec=@statistic={{0x38}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x3150def0ab80946e]}}}}, {{@uncond, 0x0, 0xa0, 0xd8, 0x0, {}, [@common=@addrtype={{0x30}}]}, @common=@inet=@SET3={0x38}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x3b8)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
keyctl$read(0x2, 0x0, &(0x7f0000001640)=""/4096, 0xfffffffffffffe67)
socket$qrtr(0x2a, 0x2, 0x0)
openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
r5 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff})
ioctl$NBD_SET_SOCK(r5, 0xab00, r6)
r7 = syz_open_dev$ndb(&(0x7f00000000c0), 0x0, 0x0)
ioctl$NBD_SET_FLAGS(r7, 0xab0a, 0x1000001000104)
ioctl$NBD_SET_SOCK(r7, 0xab00, r6)
ioctl$NBD_DO_IT(r5, 0xab03)
ioctl$NBD_CLEAR_SOCK(r7, 0xab04)
ioctl$VHOST_VDPA_GET_GROUP_NUM(r4, 0x8004af81, &(0x7f0000000080))
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r4, 0x40045532, &(0x7f0000000180)=0x103)
r8 = socket$inet6(0xa, 0x1, 0x8010000000000084)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r8, 0x84, 0x9, &(0x7f0000000300)={0x0, @in6={{0x1f, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x2000000, 0x0, 0xb3550aa4ba878396, 0x80}, 0x98)

3.955765272s ago: executing program 0 (id=1432):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000240)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'veth1_to_hsr\x00', <r3=>0x0})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000680)=ANY=[@ANYBLOB="18020000000000000000000000000030850000002c00000095000000000000002b4003fe37a077ae55f52c0d80a2649baca85309be96d5a45bbbdb5ff7ffffffd075b3eee14473f51be98db7efbb059842badcfc81364470e8e04acb807fbbabc68abdcce9f672b6bb61c302dfd5c11071adac29fd64d33a3502fbeb1ed99dd0e792f24c420bfcc2635421d339ad521d6953b1137850d9e9ebf65ee988ea2dbee528678eb47efb7b3f19046c6f1bd1bf56e585"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x100a, &(0x7f0000001400)=""/4106, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r6=>0x0})
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r9, r6, 0x25, 0x0, @val=@tcx={@void, @value}}, 0x40)
r10 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r10, 0xf, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x34, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x1, r4}]}, @IFLA_GROUP={0x8}]}, 0x34}}, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r1, r3, 0x25, 0x0, @val=@iter={0x0}}, 0x40)
sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r3}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)

3.889516827s ago: executing program 3 (id=1433):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000200), 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x28011, r0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
r1 = openat$tun(0xffffffffffffff9c, 0x0, 0x40a01, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, 0x0)
r2 = syz_open_procfs(0x0, 0x0)
pread64(r2, 0x0, 0x0, 0x0)
r3 = memfd_create(0x0, 0x0)
write(r3, 0x0, 0x0)
r4 = fanotify_init(0x8, 0x0)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x40)
fanotify_mark(r4, 0x41, 0x8000038, r5, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0xc0189436, &(0x7f0000000140))

3.653544997s ago: executing program 0 (id=1436):
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff})
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000280)={0x41, 0x2}, 0x10)

3.008810842s ago: executing program 4 (id=1437):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1803000000000000000000000000080018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/147}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0x3e, &(0x7f0000000280)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaaaa86dd60f4adf700086c00fe800000000000000000000000000000ff020000000000000000000000000001"], 0x0)

2.952535997s ago: executing program 3 (id=1438):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed85"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x4, 0x0, 0x0)
ioctl$int_in(r1, 0x5421, &(0x7f0000000300)=0x208)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
setsockopt$sock_int(r1, 0x1, 0x12, &(0x7f0000000180)=0x4000000, 0x4)
sendto$inet6(r1, 0x0, 0x1e, 0x2200c851, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)
poll(0x0, 0x0, 0x800)
sendto$inet6(r1, 0x0, 0x0, 0x1, 0x0, 0x0)
shutdown(r1, 0x1)
bind$inet6(r1, 0x0, 0x0)
ioctl$sock_SIOCOUTQNSD(r1, 0x894b, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
init_module(0x0, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

2.898586792s ago: executing program 2 (id=1439):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000440), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f0000000000)=ANY=[@ANYRES32], 0xff2e)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newqdisc={0x68, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x38, 0x2, {{0x0, 0x200000, 0x0, 0x0, 0xffffffff, 0x8003}, [@TCA_NETEM_LOSS={0x1c, 0x5, 0x0, 0x1, [@NETEM_LOSS_GI={0x18, 0x1, {0x7fffffff, 0x0, 0xfffffffd, 0x100000}}]}]}}}]}, 0x68}}, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r4, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r4, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r5 = syz_open_pts(r0, 0x0)
r6 = dup3(r5, r0, 0x0)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000080)=0x12)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e23}, 0x10)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23}, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000600), 0x4)
sendto$inet(0xffffffffffffffff, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03859bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b037511bf746bec66ba", 0x2acf, 0x11, 0x0, 0x27)
recvmsg(0xffffffffffffffff, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x200045ca}], 0xa, 0x0, 0x46, 0x407006}, 0x104)

2.898022592s ago: executing program 4 (id=1440):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f00000012c0)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYBLOB="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", @ANYBLOB="fe2ecf20a9a17bd2ed7e803f830375c150a1f848f604c2c1f932d2b7163be4b2b9a5bd521d185cfbee555b27608594beba6325923aaf5db74cff01000053db92c6c5fcbba0abd975fc76bea49b00513afc856ed89d3fadeda307ca587354322803b0983cc65725ae7f45fb95e7cdb28c6b886959b7dde2c87c73f6008cf6eed7861f24b7423704b95f3d05b92d3d7ff9d392833ecd02443320b60131a350360fcc1d659e2a03cb469caf0498bacae0735a161345b3d71a55f14ef636b6f832c7a6071fce83904dfd871b6d8e03648dbaa3a039eb5673792cae80335732030f9aeabaf3bb3cc4ca5fe75271d69b2e78beb2b81fc3cf3a18a7ae93a3cdbe6599b99408275e2b4b4477c6fcf4806134e839e13533ec000000000000006a1c000000000000000000000000000000000000000000000000000069c3288311b7414705e975eb3f1b77a120", @ANYRES64, @ANYBLOB="49696f6eb8aea6bc36bf5db1f3b96fae57289233cb12a3d40c0bb2411a03dacaa50822340029c335f772561b50f12a41aa96e20bb1cbb900b9c23ec2241e689dd4625180cb71db289d0090d93a9fd58cb0de7628467c6770d8a8aac096c58735299132d7971faf3e7b1486e77e5ad45d08c619e7be5bf3b74016225a63564c36706900943cffa8528fda31db2b0fc620d6f9a47d", @ANYRESOCT], 0x8, 0x2eb, &(0x7f00000004c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000d80), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
fdatasync(r0)

2.834655007s ago: executing program 0 (id=1441):
pipe(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d80000001c0081044e81f782db44b9040a1d08030e000000e8fea4a1180015000600142603600e1208000f1000810401a80016000a0001", 0x37}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)=@in6={0xa, 0x0, 0x0, @mcast1}, 0x80, 0x0, 0x0, 0x0, 0x5c8}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce620300fe"], 0xfe1b)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a5c000000060a09040000000000000000020000000900020073797a32000000000900010073797a3000000000300004"], 0x84}}, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000000)=ANY=[@ANYBLOB="563f00001800599c6d0eab070004000523"], 0xfe33)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0)

2.56962864s ago: executing program 4 (id=1442):
unshare(0x62040200)
r0 = fsopen(&(0x7f00000000c0)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6}]})
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

2.043322475s ago: executing program 2 (id=1443):
r0 = socket$unix(0x1, 0x1, 0x0)
recvmmsg$unix(r0, &(0x7f0000003240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0)

1.999729199s ago: executing program 2 (id=1444):
r0 = socket$tipc(0x1e, 0x5, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="043e1a0d01080001"], 0x1d)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0xa, 0x13, 0xffffffffffffffff, 0xfffff000)
open_tree(0xffffffffffffff9c, 0x0, 0x0)

1.905519307s ago: executing program 3 (id=1445):
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x6, "000080f104df000000a7d9de16c708db7200"})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r0 = socket$igmp(0x2, 0x3, 0x2)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'ipvlan1\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYRES8=r2, @ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e00140002800800010008000000060002000100000008000500", @ANYRES32=r2], 0x54}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x7, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x6)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r7, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000200)={0x28, r8, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x14, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xe, 0x1, @l2={'eth', 0x3a, 'vlan0\x00'}}]}]}, 0x28}}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r9=>0xffffffffffffffff})
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r9, 0x8982, &(0x7f0000002800)={0x1, 'vlan0\x00', {}, 0x40})
r10 = dup(r6)
ioctl$sock_SIOCETHTOOL(r10, 0x8946, &(0x7f0000000300)={'syz_tun\x00', &(0x7f0000000440)=@ethtool_link_settings={0x4c, 0x0, 0x0, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x0, 0x3}})
r11 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r11, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)

1.902257637s ago: executing program 2 (id=1446):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, 0x0, &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0xb}, {0x2, 0x2, 0xf, 0x7}, {0x4, 0x2, 0x13, 0x2}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f0000000040)={&(0x7f0000000000)=""/5, 0x1c000, 0x800}, 0x20)
setsockopt$XDP_TX_RING(r3, 0x11b, 0x3, &(0x7f00000003c0)=0x800, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'ipvlan0\x00'})
setsockopt$XDP_UMEM_FILL_RING(r3, 0x11b, 0x5, &(0x7f00000000c0)=0x40, 0x4)
setsockopt$XDP_UMEM_COMPLETION_RING(r3, 0x11b, 0x6, &(0x7f0000000280)=0x20, 0x4)
setsockopt$XDP_TX_RING(0xffffffffffffffff, 0x11b, 0x3, &(0x7f0000000240)=0x800, 0x4)
bind$xdp(0xffffffffffffffff, 0x0, 0x0)
setsockopt$XDP_UMEM_FILL_RING(0xffffffffffffffff, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x210000000013, 0x0, 0x0)

1.692763965s ago: executing program 0 (id=1447):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x8)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000d40)="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", 0x183}, {&(0x7f0000001040)="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", 0x16a}], 0x2}}, {{0x0, 0x0, &(0x7f0000000c80)=[{&(0x7f0000000f00)="63c3b174ab06077f6ee67ac1310d86586b13d2c9e203a9da866b81e20e9fe5c432193989489c1459ce9cd14fa3b43a0b9b6004118a35444790d70af5c873561ac1ad55af7f9f8551103f694e2a22346ca675898ce02a665ecc07e153e3949b954c1d74b105c14411925a8ae24778d40004000043b682d653bcf35d53fd33489a3a405042c0de04c24504000031e1d76db8609d0bf66d8d723a6c28a50d42ab169de383345fbee97bea33e8bfb5d705852d360ab703fc952fd91d2b4066fdc167ae016c1ea8", 0xc5}], 0x1}}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000640)="755ca9bd3fd87456466cd4ab09930a7972d7df968a6a6114f3db5548c265a1c0eadf9dc81f4de7a659bf2fd963b62ab6a3291b994ce3e68d29974cbd144ef4803bb11e49afd9e9f6c69e23d94b880d424a56af70b7b3f69ca07b85cd6fa37d39078bf235b355d36147cab8073e1818c615ae34fb38d8c92049fbd2d371eb493d8162d8836b8f9295d17e445e49134b4f94932984566c6d1d7b479a1d292cd39caf50ba08e39a6ac5b4d565b0f4eea211688dfcffad93d9c534ad1c8b2517dcf778797a45b32b88b7880c5122eff57a20ac7211b96753987c85f18d86103e0eb0d2266bd6e51695e6", 0xe8}, {&(0x7f0000000a40)="a874f71022111112ec5e2602f419e493ea5b4acf974d9283ee3375a461bb9065c90429ee1e99af0ae05a2cdf6095f3c3bcaf502fe5bc586d74a09a829064afeb21d6a37184cba31f9a404f96368db3439c616b32ca53867d1287a26ea498e4f743acd6252d1590999bc24f950e04e6a96c8637d150e4dca23239ce0412d084932196a057d6486b668c61dd5a01bb22529c0ae2eb008dea68a0770dc99559a527dd152975cbe3751d76d934cafa51e2d9c8cdea4d85e9d6f230d18ad14fdbd9b91a23af1d5d1342d649", 0xc9}, {&(0x7f00000003c0)="1ab19edbe25b681773e891fc5c1afd98d5418010c767b52201c900", 0x1b}], 0x3, &(0x7f0000001200)=ANY=[@ANYBLOB="800000000000000007000000070b450a010101ac1e000183073cac1e0101071b7dac1414bb64010101ac1414aaac1414bb00000000ac1414bb860916ba75d2956527442c2833ac1414bb00000003e000000100000004e0000002ffffff5dac1414bb0000cf107f000001000001ff8310bbded4a7067d627ba07946ab21900000100000000000000001000000000100000d0000000000000001000000000000000d00"], 0xb0}}], 0x3, 0x4004880)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

1.05787546s ago: executing program 4 (id=1448):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000200), 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x28011, r0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
r1 = openat$tun(0xffffffffffffff9c, 0x0, 0x40a01, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, 0x0)
r2 = syz_open_procfs(0x0, 0x0)
pread64(r2, 0x0, 0x0, 0x0)
r3 = memfd_create(0x0, 0x0)
write(r3, 0x0, 0x0)
r4 = fanotify_init(0x8, 0x0)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x40)
fanotify_mark(r4, 0x41, 0x8000038, r5, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0xc0189436, &(0x7f0000000140))

980.201886ms ago: executing program 4 (id=1449):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$sock_int(r0, 0x1, 0x2a, 0x0, 0x0)
name_to_handle_at(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x6e, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x76, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

961.491508ms ago: executing program 2 (id=1450):
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, 0x0, &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x3, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0xb}, {0x5, 0x2, 0x13, 0xa}, {0x5, 0x5, 0x5, 0x9}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = syz_clone(0x800c000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)
kcmp(r0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r4 = syz_open_dev$loop(&(0x7f0000000080), 0x8b9, 0x80981)
r5 = memfd_create(&(0x7f0000000ac0)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13^\x13\xcb\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\xefo\xb8\x8f]\x14\x1d', 0x5)
r6 = syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0)
ioctl$I2C_SMBUS(r6, 0x720, &(0x7f0000003080)={0x1, 0x0, 0x6, &(0x7f0000003040)={0x0, "f4e1a230be8f46463fb1a5f1b44f44eaa65e485b747aa95df8c01eaf07677d18bc"}})
ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5)

737.387387ms ago: executing program 0 (id=1451):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1803000000000000000000000000080018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/147}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0x3e, &(0x7f0000000280)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaaaa86dd60f4adf700086c00fe800000000000000000000000000000ff020000000000000000000000000001"], 0x0)

727.436338ms ago: executing program 3 (id=1452):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f00000012c0)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYBLOB="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", @ANYBLOB="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", @ANYRES64, @ANYBLOB="49696f6eb8aea6bc36bf5db1f3b96fae57289233cb12a3d40c0bb2411a03dacaa50822340029c335f772561b50f12a41aa96e20bb1cbb900b9c23ec2241e689dd4625180cb71db289d0090d93a9fd58cb0de7628467c6770d8a8aac096c58735299132d7971faf3e7b1486e77e5ad45d08c619e7be5bf3b74016225a63564c36706900943cffa8528fda31db2b0fc620d6f9a47d", @ANYRESOCT], 0x8, 0x2eb, &(0x7f00000004c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000d80), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
fdatasync(r0)

631.260136ms ago: executing program 0 (id=1453):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000440), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f0000000000)=ANY=[@ANYRES32], 0xff2e)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newqdisc={0x68, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x38, 0x2, {{0x0, 0x200000, 0x0, 0x0, 0xffffffff, 0x8003}, [@TCA_NETEM_LOSS={0x1c, 0x5, 0x0, 0x1, [@NETEM_LOSS_GI={0x18, 0x1, {0x7fffffff, 0x0, 0xfffffffd, 0x100000}}]}]}}}]}, 0x68}}, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r4, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r4, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
syz_open_pts(r0, 0x0)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
bind$inet(r5, &(0x7f0000000000)={0x2, 0x4e23}, 0x10)
sendto$inet(r5, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23}, 0x10)
r6 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x129101)
ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r6, 0x40485404, 0x0)
setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000600), 0x4)
sendto$inet(r5, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03859bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b037511bf746bec66ba", 0x2acf, 0x11, 0x0, 0x27)
recvmsg(r5, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x200045ca}], 0xa, 0x0, 0x46, 0x407006}, 0x104)

569.549991ms ago: executing program 3 (id=1454):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000440), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f0000000000)=ANY=[@ANYRES32], 0xff2e)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newqdisc={0x68, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x38, 0x2, {{0x0, 0x200000, 0x0, 0x0, 0xffffffff, 0x8003}, [@TCA_NETEM_LOSS={0x1c, 0x5, 0x0, 0x1, [@NETEM_LOSS_GI={0x18, 0x1, {0x7fffffff, 0x0, 0xfffffffd, 0x100000}}]}]}}}]}, 0x68}}, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r4, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r4, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r5 = syz_open_pts(r0, 0x0)
r6 = dup3(r5, r0, 0x0)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000080)=0x12)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e23}, 0x10)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23}, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000600), 0x4)
sendto$inet(0xffffffffffffffff, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03859bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b037511bf746bec66ba", 0x2acf, 0x11, 0x0, 0x27)
recvmsg(0xffffffffffffffff, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x200045ca}], 0xa, 0x0, 0x46, 0x407006}, 0x104)

340.356351ms ago: executing program 4 (id=1455):
socket$alg(0x26, 0x5, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000008c0)='page_pool_state_hold\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000007c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002c00000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000008c0)='page_pool_state_hold\x00', r4}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r3, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1000000}, 0x50)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040))
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
rt_sigaction(0x1f, 0x0, &(0x7f0000004280)={0x0, 0x0, 0x0}, 0x8, &(0x7f00000042c0))
sendmsg$key(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x4004054)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000100)={0x4, 0x0, &(0x7f00008feff0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="020d0000100000002f3144e8edffffff03000600ff18000002004909000100000000000000001e0e080012000200010000d200000000000030006c540203009f7eae02000000adb20200000000f5"], 0x80}}, 0x0)
socket$key(0xf, 0x3, 0x2)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r5, &(0x7f00000021c0)={0x2020, 0x0, <r6=>0x0}, 0x2020)
write$FUSE_INIT(r5, &(0x7f0000000040)={0x50, 0x0, r6, {0x7, 0x1f, 0x0, 0x10400}}, 0x50)
syz_fuse_handle_req(r5, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r5, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x31, 0x0, 0x0, 0x0, 0x8000}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r7 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000006380)="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", 0x2000, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x56000}], 0x1)
close(r5)

258.651178ms ago: executing program 1 (id=1456):
r0 = socket$rds(0x15, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f0000000000)=0xfffffffffffffffe, 0x4)
r1 = dup2(r0, r0)
r2 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000080), 0xffffffffffffffff)
io_setup(0x6, &(0x7f0000000180)=<r3=>0x0)
syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
io_submit(r3, 0x0, &(0x7f0000000040))
r4 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = dup3(r4, r5, 0x0)
recvmmsg(r6, &(0x7f00000004c0)=[{{0x0, 0x0, 0x0}}], 0xf00, 0x0, 0x0)
sendmsg$key(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x40)
sendmsg$L2TP_CMD_NOOP(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x54, r2, 0x10, 0x70bd2d, 0x25dfdbfb, {}, [@L2TP_ATTR_MTU={0x6, 0x1c, 0x3}, @L2TP_ATTR_FD={0x8, 0x17, @udp=r6}, @L2TP_ATTR_RECV_TIMEOUT={0xc, 0x16, 0x7ff}, @L2TP_ATTR_COOKIE={0xc, 0xf, 0x6880}, @L2TP_ATTR_UDP_CSUM={0x5, 0xd, 0x1}, @L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5, 0x22, 0x1}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @loopback}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

149.494937ms ago: executing program 3 (id=1457):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[], 0x48)
ioctl$IOCTL_VMCI_GET_CONTEXT_ID(r0, 0x7b3, &(0x7f0000000800))
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x70)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xff}}, 0x10)
recvmmsg(r1, 0x0, 0x0, 0x2020, 0x0)
syz_open_pts(0xffffffffffffffff, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r4 = getpid()
r5 = syz_pidfd_open(r4, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f00000020c0)='net/wireless\x00')
preadv(r6, &(0x7f0000001540)=[{&(0x7f0000001600)=""/171, 0xab}, {&(0x7f0000000140)=""/88, 0x58}], 0x2, 0x0, 0x0)
setns(r5, 0x24020000)
syz_clone(0x5d000120, 0x0, 0x3, 0x0, 0x0, 0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nfc(&(0x7f0000000a00), r7)
sendmsg$NFC_CMD_DEP_LINK_UP(r7, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="dafeffff", @ANYRES16=r8, @ANYBLOB="b0ad00007000ffdbdf2504000000213019cafad67b78fb75e59f9bb1fa332809ae624a34942f1c9f35652ae42cf0f84878364529846afc85d12bde4f93dc2dfdac86eba48b5b0a255724e6de3c943a502098c53d47bdc1a8e0dc8482f8acd46e50ed106494d52810a1b641341270f5d49e932ff6bafe2492457be1b60f29"], 0x1c}, 0x1, 0x0, 0x0, 0x800c5}, 0x810)
sched_setscheduler(0x0, 0x1, 0x0)
getpid()

0s ago: executing program 2 (id=1458):
r0 = creat(&(0x7f0000000300)='./file0\x00', 0x363)
openat(r0, &(0x7f0000000040)='./file1\x00', 0x40042, 0x1ff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
setrlimit(0x8, &(0x7f00000000c0)={0x10000})
prctl$PR_SET_THP_DISABLE(0x41, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
socket(0x1, 0x80000, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, 0x0, 0x0)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg(r2, &(0x7f00000057c0)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000040)="ee3a60f01a6d", 0x6}], 0x1}}], 0x1, 0x0)
recvmmsg(r2, &(0x7f00000048c0)=[{{0x0, 0x0, &(0x7f0000004a00)}}], 0x1, 0x40000143, 0x0)
r3 = socket(0xa, 0x3, 0x3a)
getsockopt$nfc_llcp(r3, 0x3a, 0x1, 0x0, 0x20000000)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
add_key$keyring(&(0x7f0000000340), 0x0, 0x0, 0x0, 0xffffffffffffffff)
r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x80383, 0x0)
ioctl$SNDCTL_SEQ_PANIC(r4, 0x5100)
r5 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SG_GET_REQUEST_TABLE(r5, 0x2286, &(0x7f00000002c0))
rseq(0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

on device team0
[   86.839818][ T4378] EXT4-fs (loop4): Ignoring removed nobh option
[   86.846237][ T4378] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   86.881623][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   86.907857][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   86.921922][ T3653] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.929202][ T3653] bridge0: port 1(bridge_slave_0) entered forwarding state
[   86.939863][ T4378] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[   86.959471][ T4378] ext4 filesystem being mounted at /40/file0 supports timestamps until 2038 (0x7fffffff)
[   87.073023][ T3615] Bluetooth: hci3: command 0x0419 tx timeout
[   87.186443][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   87.220092][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   87.233388][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   87.246984][ T3653] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.254164][ T3653] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.269142][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   87.293044][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   87.308219][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   87.323428][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   87.349952][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   87.378928][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   87.403664][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   87.427081][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   87.440594][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   87.471164][ T4389] netlink: 4 bytes leftover after parsing attributes in process `syz.2.222'.
[   87.515075][ T4157] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   87.530074][ T4157] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   87.549420][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   87.589877][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   87.853507][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   87.861996][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   87.920932][ T4406] device veth7 entered promiscuous mode
[   87.941099][ T4157] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.016649][ T3915] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   88.040713][ T3915] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   88.115288][ T1209] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   88.138734][ T1209] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   88.189110][ T1209] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   88.219313][ T1209] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   88.268488][ T4157] device veth0_vlan entered promiscuous mode
[   88.317006][ T4157] device veth1_vlan entered promiscuous mode
[   88.417325][ T3919] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   88.457533][ T3919] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   88.526453][ T3919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   88.579902][ T3919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   88.616731][ T4157] device veth0_macvtap entered promiscuous mode
[   88.670671][ T3919] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   88.701904][ T4157] device veth1_macvtap entered promiscuous mode
[   88.786099][ T4157] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   88.858163][ T4157] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   88.916521][ T4157] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   88.961608][ T4157] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.006245][ T4157] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   89.057182][ T4157] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.115409][ T4157] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   89.155134][ T4157] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.221389][ T4157] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.279235][ T3919] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   89.296484][ T3919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   89.348187][ T4434] netlink: 4 bytes leftover after parsing attributes in process `syz.0.236'.
[   89.382519][ T4431] loop4: detected capacity change from 0 to 512
[   89.401871][ T4157] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.422555][ T4157] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.446274][ T4438] loop2: detected capacity change from 0 to 1024
[   89.453491][ T4157] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.464839][ T4157] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.475280][ T4157] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.486023][ T4157] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.496461][ T4157] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.507189][ T4157] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.525984][ T4431] EXT4-fs (loop4): Ignoring removed nobh option
[   89.532391][ T4431] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   89.557755][ T4157] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.600577][ T3919] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   89.637224][ T4431] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[   89.641470][ T3919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   89.656814][ T4431] ext4 filesystem being mounted at /45/file0 supports timestamps until 2038 (0x7fffffff)
[   89.699896][ T4438] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:476: comm syz.2.238: Invalid block bitmap block 0 in block_group 0
[   89.756944][ T4438] Quota error (device loop2): write_blk: dquota write failed
[   89.790193][ T4438] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   89.833067][ T4157] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.845357][ T4157] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.855300][ T4157] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.855811][ T4438] EXT4-fs error (device loop2): ext4_acquire_dquot:6196: comm syz.2.238: Failed to acquire dquot type 0
[   89.864297][ T4157] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.892906][ T4438] EXT4-fs error (device loop2): ext4_free_blocks:6225: comm syz.2.238: Freeing blocks not in datazone - block = 0, count = 4096
[   89.909169][ T4448] device veth5 entered promiscuous mode
[   89.916557][ T4438] EXT4-fs error (device loop2): ext4_read_inode_bitmap:140: comm syz.2.238: Invalid inode bitmap blk 0 in block_group 0
[   89.933843][ T3915] Quota error (device loop2): remove_tree: Getting block too big (0 >= 9)
[   89.942790][ T4438] EXT4-fs error (device loop2) in ext4_free_inode:362: Corrupt filesystem
[   89.970236][ T3915] EXT4-fs error (device loop2): ext4_release_dquot:6219: comm kworker/u4:9: Failed to release dquot type 0
[   89.991942][ T4438] EXT4-fs (loop2): 1 orphan inode deleted
[   89.998741][ T4438] EXT4-fs (loop2): mounted filesystem without journal. Opts: €�; ,errors=continue. Quota mode: writeback.
[   90.079238][ T4252] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.111872][ T4252] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.184187][ T4455] Cannot find add_set index 0 as target
[   90.192207][ T3915] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   90.287392][ T3915] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.320927][ T3915] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.393722][ T1209] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   90.622020][ T4470] loop1: detected capacity change from 0 to 128
[   90.740384][ T4470] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[   90.768224][ T4464] block nbd0: shutting down sockets
[   90.854250][ T4479] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[   90.909583][ T4470] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   90.924343][ T4479] netlink: 4 bytes leftover after parsing attributes in process `syz.3.249'.
[   91.326189][ T4490] device veth5 entered promiscuous mode
[   91.354022][ T4492] syz_tun: Device is already in use.
[   91.409601][ T4496] loop1: detected capacity change from 0 to 1024
[   91.547262][ T4500] loop2: detected capacity change from 0 to 512
[   91.580910][ T4496] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:476: comm syz.1.255: Invalid block bitmap block 0 in block_group 0
[   91.602535][ T4500] EXT4-fs (loop2): Ignoring removed nobh option
[   91.608886][ T4500] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   91.623636][ T4496] Quota error (device loop1): write_blk: dquota write failed
[   91.631077][ T4496] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[   91.644115][ T4496] EXT4-fs error (device loop1): ext4_acquire_dquot:6196: comm syz.1.255: Failed to acquire dquot type 0
[   91.679376][ T4500] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[   91.692666][ T4496] EXT4-fs error (device loop1): ext4_free_blocks:6225: comm syz.1.255: Freeing blocks not in datazone - block = 0, count = 4096
[   91.699236][ T4500] ext4 filesystem being mounted at /47/file0 supports timestamps until 2038 (0x7fffffff)
[   91.718213][ T4496] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.255: Invalid inode bitmap blk 0 in block_group 0
[   91.738719][ T3919] Quota error (device loop1): remove_tree: Getting block too big (0 >= 9)
[   91.778277][ T3919] EXT4-fs error (device loop1): ext4_release_dquot:6219: comm kworker/u4:10: Failed to release dquot type 0
[   91.797370][ T4496] EXT4-fs error (device loop1) in ext4_free_inode:362: Corrupt filesystem
[   91.815744][ T3811] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   91.828880][ T4496] EXT4-fs (loop1): 1 orphan inode deleted
[   91.838255][ T4496] EXT4-fs (loop1): mounted filesystem without journal. Opts: €�; ,errors=continue. Quota mode: writeback.
[   92.072516][ T3811] usb 5-1: Using ep0 maxpacket: 8
[   92.192899][ T3811] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   92.212128][ T3811] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   92.229996][ T3811] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   92.231205][ T4514] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[   92.278500][ T3811] usb 5-1: config 0 descriptor??
[   92.410327][ T4516] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[   92.571215][ T3811] iowarrior 5-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[   92.597493][ T4522] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[   92.981128][ T4538] loop2: detected capacity change from 0 to 128
[   93.039444][ T4537] device veth5 entered promiscuous mode
[   93.125208][ T4538] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[   93.128864][ T4540] loop1: detected capacity change from 0 to 1024
[   93.210225][ T4538] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   93.270250][ T4540] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:476: comm syz.1.270: Invalid block bitmap block 0 in block_group 0
[   93.371812][ T4540] Quota error (device loop1): write_blk: dquota write failed
[   93.394183][ T4540] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[   93.419808][ T4548] loop2: detected capacity change from 0 to 512
[   93.448560][ T4540] EXT4-fs error (device loop1): ext4_acquire_dquot:6196: comm syz.1.270: Failed to acquire dquot type 0
[   93.476647][ T4548] EXT4-fs (loop2): Ignoring removed nobh option
[   93.483423][ T4548] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   93.489031][ T4540] EXT4-fs error (device loop1): ext4_free_blocks:6225: comm syz.1.270: Freeing blocks not in datazone - block = 0, count = 4096
[   93.546806][ T4548] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[   93.566409][ T4540] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.270: Invalid inode bitmap blk 0 in block_group 0
[   93.578331][ T3919] Quota error (device loop1): remove_tree: Getting block too big (0 >= 9)
[   93.579805][ T4548] ext4 filesystem being mounted at /50/file0 supports timestamps until 2038 (0x7fffffff)
[   93.609433][ T4540] EXT4-fs error (device loop1) in ext4_free_inode:362: Corrupt filesystem
[   93.609808][ T3919] EXT4-fs error (device loop1): ext4_release_dquot:6219: comm kworker/u4:10: Failed to release dquot type 0
[   93.678761][ T4540] EXT4-fs (loop1): 1 orphan inode deleted
[   93.689888][ T4540] EXT4-fs (loop1): mounted filesystem without journal. Opts: €�; ,errors=continue. Quota mode: writeback.
[   93.999072][ T3662] usb 5-1: USB disconnect, device number 3
[   94.030238][ T3662] iowarrior 5-1:0.0: I/O-Warror #0 now disconnected
[   94.174027][ T4567] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[   94.250439][ T4567] netlink: 4 bytes leftover after parsing attributes in process `syz.1.278'.
[   94.405871][ T4567] device hsr_slave_1 left promiscuous mode
[   94.680268][ T4577] device veth7 entered promiscuous mode
[   94.720487][ T4582] loop1: detected capacity change from 0 to 128
[   94.925346][ T4582] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[   94.986420][ T4595] loop3: detected capacity change from 0 to 512
[   95.006036][ T4595] EXT4-fs (loop3): Ignoring removed nobh option
[   95.014043][ T4595] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   95.033143][ T4582] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   95.122882][ T4595] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[   95.143329][ T4595] ext4 filesystem being mounted at /66/file0 supports timestamps until 2038 (0x7fffffff)
[   95.232260][ T4605] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[   95.339971][ T4604] netlink: 4 bytes leftover after parsing attributes in process `syz.4.294'.
[   95.508705][ T4604] device hsr_slave_1 left promiscuous mode
[   95.682512][ T4616] device veth9 entered promiscuous mode
[   95.857003][ T4627] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_macvtap, syncid = 0, id = 0
[   95.870763][ T4621] IPVS: stopping backup sync thread 4627 ...
[   96.156473][ T4638] loop4: detected capacity change from 0 to 128
[   96.217464][ T4639] loop3: detected capacity change from 0 to 1024
[   96.238340][ T4638] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[   96.255968][ T4638] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   96.286649][ T4639] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:476: comm syz.3.303: Invalid block bitmap block 0 in block_group 0
[   96.305847][ T4639] Quota error (device loop3): write_blk: dquota write failed
[   96.321911][ T4639] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[   96.332524][ T4639] EXT4-fs error (device loop3): ext4_acquire_dquot:6196: comm syz.3.303: Failed to acquire dquot type 0
[   96.346139][ T4639] EXT4-fs error (device loop3): ext4_free_blocks:6225: comm syz.3.303: Freeing blocks not in datazone - block = 0, count = 4096
[   96.361515][ T4639] EXT4-fs error (device loop3): ext4_read_inode_bitmap:140: comm syz.3.303: Invalid inode bitmap blk 0 in block_group 0
[   96.374797][  T144] Quota error (device loop3): remove_tree: Getting block too big (0 >= 9)
[   96.375860][ T4639] EXT4-fs error (device loop3) in ext4_free_inode:362: Corrupt filesystem
[   96.389494][  T144] EXT4-fs error (device loop3): ext4_release_dquot:6219: comm kworker/u4:1: Failed to release dquot type 0
[   96.393615][ T4639] EXT4-fs (loop3): 1 orphan inode deleted
[   96.412716][ T4639] EXT4-fs (loop3): mounted filesystem without journal. Opts: €�; ,errors=continue. Quota mode: writeback.
[   96.769127][ T4652] device veth11 entered promiscuous mode
[   96.796015][ T4654] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[   96.989914][ T4648] netlink: 4 bytes leftover after parsing attributes in process `syz.1.308'.
[   97.057936][ T4659] loop2: detected capacity change from 0 to 512
[   97.307484][ T4659] EXT4-fs (loop2): Ignoring removed nobh option
[   97.314155][ T4659] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   97.391775][ T4659] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[   97.413256][ T4659] ext4 filesystem being mounted at /58/file0 supports timestamps until 2038 (0x7fffffff)
[   97.732848][ T4680] loop1: detected capacity change from 0 to 128
[   97.852867][ T4544] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 224: padding at end of block bitmap is not set
[   97.873212][ T4680] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[   97.925734][ T4544] EXT4-fs (loop2): Remounting filesystem read-only
[   97.925833][ T4685] loop4: detected capacity change from 0 to 1024
[   97.950144][ T4680] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   98.023733][ T4685] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:476: comm syz.4.321: Invalid block bitmap block 0 in block_group 0
[   98.149779][ T4685] Quota error (device loop4): write_blk: dquota write failed
[   98.181026][ T4693] device veth7 entered promiscuous mode
[   98.218638][ T4685] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[   98.238050][ T4685] EXT4-fs error (device loop4): ext4_acquire_dquot:6196: comm syz.4.321: Failed to acquire dquot type 0
[   98.258899][ T4685] EXT4-fs error (device loop4): ext4_free_blocks:6225: comm syz.4.321: Freeing blocks not in datazone - block = 0, count = 4096
[   98.290349][ T4685] EXT4-fs error (device loop4): ext4_read_inode_bitmap:140: comm syz.4.321: Invalid inode bitmap blk 0 in block_group 0
[   98.312044][ T4252] Quota error (device loop4): remove_tree: Getting block too big (0 >= 9)
[   98.321438][ T4252] EXT4-fs error (device loop4): ext4_release_dquot:6219: comm kworker/u4:13: Failed to release dquot type 0
[   98.340975][ T4685] EXT4-fs error (device loop4) in ext4_free_inode:362: Corrupt filesystem
[   98.351171][ T4685] EXT4-fs (loop4): 1 orphan inode deleted
[   98.367249][ T4685] EXT4-fs (loop4): mounted filesystem without journal. Opts: €�; ,errors=continue. Quota mode: writeback.
[   98.535387][ T4706] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[   98.610095][ T4702] netlink: 4 bytes leftover after parsing attributes in process `syz.3.326'.
[   98.733394][ T4714] loop3: detected capacity change from 0 to 512
[   98.746612][ T4716] nbd4: detected capacity change from 0 to 12
[   98.760806][  T150] block nbd4: Send control failed (result -89)
[   98.767884][  T150] block nbd4: Request send failed, requeueing
[   98.777381][ T3585] block nbd4: Receive control failed (result -32)
[   98.786566][ T4714] EXT4-fs (loop3): Ignoring removed nobh option
[   98.793078][ T4714] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   98.793727][  T150] block nbd4: Dead connection, failed to find a fallback
[   98.815828][  T150] block nbd4: shutting down sockets
[   98.823180][  T150] blk_update_request: I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   98.840434][  T150] Buffer I/O error on dev nbd4, logical block 0, async page read
[   98.850691][  T150] blk_update_request: I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   98.862942][  T150] Buffer I/O error on dev nbd4, logical block 0, async page read
[   98.871909][  T264] blk_update_request: I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   98.883335][  T264] Buffer I/O error on dev nbd4, logical block 0, async page read
[   98.893257][  T264] blk_update_request: I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   98.904243][  T264] Buffer I/O error on dev nbd4, logical block 0, async page read
[   98.914752][  T264] blk_update_request: I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   98.926314][  T264] Buffer I/O error on dev nbd4, logical block 0, async page read
[   98.942872][  T264] blk_update_request: I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   98.953919][  T264] Buffer I/O error on dev nbd4, logical block 0, async page read
[   98.962430][  T264] blk_update_request: I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   98.973505][  T264] Buffer I/O error on dev nbd4, logical block 0, async page read
[   98.981538][  T264] blk_update_request: I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   98.992482][  T264] Buffer I/O error on dev nbd4, logical block 0, async page read
[   99.001064][ T4716] ldm_validate_partition_table(): Disk read failed.
[   99.010084][  T264] blk_update_request: I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   99.023492][  T264] Buffer I/O error on dev nbd4, logical block 0, async page read
[   99.032983][  T264] blk_update_request: I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   99.044119][ T4714] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[   99.063694][ T4714] ext4 filesystem being mounted at /74/file0 supports timestamps until 2038 (0x7fffffff)
[   99.076522][  T264] Buffer I/O error on dev nbd4, logical block 0, async page read
[   99.088992][ T4716] Dev nbd4: unable to read RDB block 0
[   99.244044][ T4716]  nbd4: unable to read partition table
[   99.253436][ T4716] nbd4: partition table beyond EOD, truncated
[   99.322788][ T3704] ldm_validate_partition_table(): Disk read failed.
[   99.352175][ T3704] Dev nbd4: unable to read RDB block 0
[   99.377106][ T4730] device veth3 entered promiscuous mode
[   99.395619][ T3704]  nbd4: unable to read partition table
[   99.442234][ T3704] nbd4: partition table beyond EOD, truncated
[   99.519501][ T3704] ldm_validate_partition_table(): Disk read failed.
[   99.618922][ T3704] Dev nbd4: unable to read RDB block 0
[   99.697909][ T3704]  nbd4: unable to read partition table
[   99.746521][ T3704] nbd4: partition table beyond EOD, truncated
[   99.751951][ T4738] loop1: detected capacity change from 0 to 1024
[   99.864095][ T4738] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:476: comm syz.1.338: Invalid block bitmap block 0 in block_group 0
[   99.888842][ T4738] Quota error (device loop1): write_blk: dquota write failed
[   99.931920][ T4738] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[   99.936780][ T4753] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[   99.953623][ T4753] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   99.961292][ T4753] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   99.974303][ T4738] EXT4-fs error (device loop1): ext4_acquire_dquot:6196: comm syz.1.338: Failed to acquire dquot type 0
[   99.987215][ T4738] EXT4-fs error (device loop1): ext4_free_blocks:6225: comm syz.1.338: Freeing blocks not in datazone - block = 0, count = 4096
[  100.002172][ T4738] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.338: Invalid inode bitmap blk 0 in block_group 0
[  100.008974][ T4753] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  100.031427][ T4738] EXT4-fs error (device loop1) in ext4_free_inode:362: Corrupt filesystem
[  100.038155][ T3653] Quota error (device loop1): remove_tree: Getting block too big (0 >= 9)
[  100.050106][ T4738] EXT4-fs (loop1): 1 orphan inode deleted
[  100.058967][ T3653] EXT4-fs error (device loop1): ext4_release_dquot:6219: comm kworker/u4:6: Failed to release dquot type 0
[  100.059977][ T4738] EXT4-fs (loop1): mounted filesystem without journal. Opts: €�; ,errors=continue. Quota mode: writeback.
[  100.076594][ T4757] netlink: 4 bytes leftover after parsing attributes in process `syz.0.342'.
[  100.761317][   T25] audit: type=1326 audit(1728564231.362:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4770 comm="syz.1.350" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa427b99ff9 code=0x0
[  100.799230][ T4771] device veth9 entered promiscuous mode
[  100.844717][ T4774] loop2: detected capacity change from 0 to 512
[  100.873091][ T4777] input: syz0 as /devices/virtual/input/input6
[  100.924417][ T4774] EXT4-fs (loop2): Ignoring removed nobh option
[  100.930784][ T4774] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  100.993799][ T4774] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  101.024613][ T4774] ext4 filesystem being mounted at /66/file0 supports timestamps until 2038 (0x7fffffff)
[  101.051815][ T4785] loop3: detected capacity change from 0 to 128
[  101.119238][ T4785] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  101.158104][ T4785] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  101.776555][ T4795] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  101.788255][ T4795] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  101.796902][ T4795] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  101.818648][ T4795] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  102.028645][ T4795] netlink: 4 bytes leftover after parsing attributes in process `syz.1.357'.
[  102.325130][   T25] audit: type=1326 audit(1728564232.932:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4803 comm="syz.2.359" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7ca8bdaff9 code=0x0
[  102.478150][ T4813] device veth11 entered promiscuous mode
[  102.630024][ T4822] loop1: detected capacity change from 0 to 128
[  102.730946][ T4822] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  102.790588][ T4822] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  102.887875][ T4829] loop3: detected capacity change from 0 to 512
[  102.955770][ T4829] EXT4-fs (loop3): Ignoring removed nobh option
[  102.962259][ T4829] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  103.009481][ T4829] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  103.031114][ T4829] ext4 filesystem being mounted at /87/file0 supports timestamps until 2038 (0x7fffffff)
[  103.187747][ T4840] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  103.246112][ T4840] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  103.254974][ T4840] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  103.443549][ T4840] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  103.668478][ T4852] netlink: 4 bytes leftover after parsing attributes in process `syz.1.371'.
[  104.156547][ T4857] device veth7 entered promiscuous mode
[  104.809708][ T4881] loop3: detected capacity change from 0 to 128
[  104.874677][ T4885] capability: warning: `syz.1.386' uses deprecated v2 capabilities in a way that may be insecure
[  104.888648][ T4881] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  104.988907][ T4881] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  105.434290][ T4897] device veth5 entered promiscuous mode
[  105.615887][ T4910] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  105.691414][ T4910] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  105.749908][ T4916] loop3: detected capacity change from 0 to 512
[  105.772538][ T4917] netlink: 4 bytes leftover after parsing attributes in process `syz.2.390'.
[  105.834119][ T4916] EXT4-fs (loop3): Ignoring removed nobh option
[  105.840663][ T4916] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  105.920963][ T4916] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  105.944922][ T4916] ext4 filesystem being mounted at /92/file0 supports timestamps until 2038 (0x7fffffff)
[  106.425473][ T4948] loop2: detected capacity change from 0 to 128
[  106.468201][ T4945] device veth7 entered promiscuous mode
[  106.488464][ T4948] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  106.489498][ T4947] syz_tun: Device is already in use.
[  106.598694][ T4948] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  106.751860][ T4958] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  106.814650][ T4958] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  106.814829][ T4958] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  106.851612][ T4958] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  106.955537][ T4963] netlink: 4 bytes leftover after parsing attributes in process `syz.3.412'.
[  107.035645][ T4970] loop1: detected capacity change from 0 to 512
[  107.068882][ T4970] EXT4-fs (loop1): Ignoring removed nobh option
[  107.077482][ T4970] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  107.258631][ T4970] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  107.283994][ T4970] ext4 filesystem being mounted at /48/file0 supports timestamps until 2038 (0x7fffffff)
[  107.533848][ T4990] device veth13 entered promiscuous mode
[  107.839496][ T5011] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  107.920901][ T5011] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  107.945463][ T5011] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  107.952245][ T5017] loop4: detected capacity change from 0 to 128
[  107.979097][ T5011] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  108.016032][ T5004] netlink: 4 bytes leftover after parsing attributes in process `syz.0.429'.
[  108.049228][ T5020] netlink: 8 bytes leftover after parsing attributes in process `syz.1.434'.
[  108.109327][ T5017] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  108.135797][ T5017] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  108.137270][ T5020] netlink: 24 bytes leftover after parsing attributes in process `syz.1.434'.
[  108.184122][ T5026] loop2: detected capacity change from 0 to 512
[  108.254904][ T5029] device veth9 entered promiscuous mode
[  108.266761][ T5026] EXT4-fs (loop2): Ignoring removed nobh option
[  108.273381][ T5026] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  108.324924][ T5026] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  108.351100][ T5026] ext4 filesystem being mounted at /78/file0 supports timestamps until 2038 (0x7fffffff)
[  108.625293][ T5035] device syzkaller0 entered promiscuous mode
[  108.880048][ T5057] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  108.933315][ T5057] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  108.953241][ T5065] loop3: detected capacity change from 0 to 128
[  108.968997][ T5057] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  108.998912][ T5057] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  109.019445][ T5065] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  109.038359][ T5065] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  109.069340][ T5061] device veth9 entered promiscuous mode
[  109.190313][ T5068] loop4: detected capacity change from 0 to 512
[  109.236951][ T5068] EXT4-fs (loop4): Ignoring removed nobh option
[  109.243376][ T5068] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  109.382526][ T5068] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  109.402997][ T5068] ext4 filesystem being mounted at /90/file0 supports timestamps until 2038 (0x7fffffff)
[  109.756416][ T5105] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  109.786800][ T5105] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  109.839540][ T5107] device veth15 entered promiscuous mode
[  109.839846][ T5105] netlink: 4 bytes leftover after parsing attributes in process `syz.2.464'.
[  109.855209][ T5111] syz.3.468 uses obsolete (PF_INET,SOCK_PACKET)
[  110.064747][ T5122] loop4: detected capacity change from 0 to 128
[  110.115679][ T5126] fuse: Bad value for 'fd'
[  110.159047][ T5121] loop2: detected capacity change from 0 to 512
[  110.182183][ T5122] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  110.184248][ T5122] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  110.234601][ T5121] EXT4-fs (loop2): Ignoring removed nobh option
[  110.234674][ T5121] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  110.342474][ T5121] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  110.342750][ T5121] ext4 filesystem being mounted at /87/file0 supports timestamps until 2038 (0x7fffffff)
[  110.812637][ T5143] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  110.869521][ T5143] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  110.917961][ T5143] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  110.956270][ T5143] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  111.027404][ T5137] netlink: 4 bytes leftover after parsing attributes in process `syz.1.481'.
[  111.107668][ T5156] device veth13 entered promiscuous mode
[  111.268821][ T5162] fuse: Bad value for 'fd'
[  111.387006][ T5170] loop3: detected capacity change from 0 to 128
[  111.420574][ T5169] loop2: detected capacity change from 0 to 512
[  111.500789][ T5169] EXT4-fs (loop2): Ignoring removed nobh option
[  111.508946][ T5169] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  111.559164][ T5170] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  111.591858][ T5169] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  111.614779][ T5169] ext4 filesystem being mounted at /91/file0 supports timestamps until 2038 (0x7fffffff)
[  111.779532][ T5170] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  112.889817][ T5193] netlink: 36 bytes leftover after parsing attributes in process `syz.2.497'.
[  113.159895][ T5199] device veth11 entered promiscuous mode
[  113.177347][ T5202] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  113.194780][ T5202] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  113.214976][ T5208] fuse: Bad value for 'fd'
[  113.221483][ T5202] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  113.264670][ T5202] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  113.370199][ T5196] netlink: 4 bytes leftover after parsing attributes in process `syz.3.499'.
[  113.497542][ T5220] loop2: detected capacity change from 0 to 128
[  113.665038][ T5220] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  113.710272][ T5220] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  114.564955][ T5237] netlink: 36 bytes leftover after parsing attributes in process `syz.1.513'.
[  114.659333][ T5240] device veth17 entered promiscuous mode
[  114.816562][ T5251] input: syz1 as /devices/virtual/input/input7
[  114.845201][ T3622] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  114.960268][ T5253] loop1: detected capacity change from 0 to 512
[  115.041834][ T5253] EXT4-fs (loop1): Ignoring removed nobh option
[  115.049356][ T5253] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  115.095358][ T5261] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  115.109765][ T5261] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  115.109941][ T5253] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  115.141283][ T5261] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  115.144221][ T5253] ext4 filesystem being mounted at /68/file0 supports timestamps until 2038 (0x7fffffff)
[  115.156771][ T5261] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  115.215044][ T5259] netlink: 4 bytes leftover after parsing attributes in process `syz.4.523'.
[  115.926995][ T3622] usb 4-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  115.949224][ T3622] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  115.966084][ T3622] usb 4-1: Product: syz
[  115.971028][ T3622] usb 4-1: Manufacturer: syz
[  115.978002][ T3622] usb 4-1: SerialNumber: syz
[  115.986790][ T3622] usb 4-1: config 0 descriptor??
[  116.201609][ T5282] netlink: 36 bytes leftover after parsing attributes in process `syz.4.529'.
[  116.354399][ T5282] syz_tun: Device is already in use.
[  116.430688][ T5290] device veth13 entered promiscuous mode
[  116.735497][ T5302] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  116.770441][ T5302] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  116.795188][ T5302] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  116.839254][ T5302] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  116.882550][ T5298] netlink: 4 bytes leftover after parsing attributes in process `syz.1.535'.
[  117.097492][ T5306] loop4: detected capacity change from 0 to 512
[  117.145228][ T5306] EXT4-fs (loop4): Ignoring removed nobh option
[  117.153048][ T5306] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  117.237073][ T5306] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  117.258727][ T5306] ext4 filesystem being mounted at /106/file0 supports timestamps until 2038 (0x7fffffff)
[  118.015954][   T26] usb 4-1: USB disconnect, device number 2
[  118.193669][ T5313] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 224: padding at end of block bitmap is not set
[  118.248469][ T5313] EXT4-fs (loop4): Remounting filesystem read-only
[  118.473202][ T5330] netlink: 36 bytes leftover after parsing attributes in process `syz.3.545'.
[  118.612844][ T5332] device veth15 entered promiscuous mode
[  118.890912][ T5342] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  118.934799][ T5344] fuse: Bad value for 'fd'
[  118.981851][ T5342] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  119.080075][ T5342] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  119.153220][ T5342] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  119.318507][ T5357] netlink: 'syz.0.555': attribute type 1 has an invalid length.
[  119.367536][ T5357] netlink: 48 bytes leftover after parsing attributes in process `syz.0.555'.
[  119.382644][ T3662] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  119.552701][ T5363] device veth15 entered promiscuous mode
[  119.561594][ T5365] netlink: 36 bytes leftover after parsing attributes in process `syz.0.559'.
[  119.672437][ T3662] usb 2-1: Using ep0 maxpacket: 8
[  119.757870][ T5371] fuse: Bad value for 'fd'
[  119.806352][ T3662] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  119.827321][ T3662] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  119.895309][ T3662] usb 2-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00
[  119.933589][ T3662] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  119.959439][ T3662] usb 2-1: config 0 descriptor??
[  120.034862][ T3662] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  120.037206][ T5379] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  120.110845][ T5384] 9pnet_virtio: no channels available for device syz
[  120.125875][ T5379] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  120.183910][ T5379] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  120.307868][ T5379] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  120.372976][ T3619] usb 2-1: USB disconnect, device number 2
[  120.393166][ T5387] netlink: 4 bytes leftover after parsing attributes in process `syz.3.565'.
[  120.503525][ T5394] device veth19 entered promiscuous mode
[  120.552707][ T5396] netlink: 36 bytes leftover after parsing attributes in process `syz.0.572'.
[  120.670628][ T5401] loop4: detected capacity change from 0 to 512
[  120.687400][ T5404] fuse: Bad value for 'fd'
[  120.713045][ T5401] EXT4-fs (loop4): Ignoring removed nobh option
[  120.719943][ T5401] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  120.801542][ T5401] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  120.822227][ T5401] ext4 filesystem being mounted at /111/file0 supports timestamps until 2038 (0x7fffffff)
[  121.446073][ T5432] device veth11 entered promiscuous mode
[  122.118979][ T5439] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  122.191571][ T5439] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  122.213415][ T5439] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  122.238988][ T5439] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  122.308799][ T5443] netlink: 8 bytes leftover after parsing attributes in process `syz.0.586'.
[  122.312029][ T5448] loop2: detected capacity change from 0 to 128
[  122.329295][ T5443] netlink: 12 bytes leftover after parsing attributes in process `syz.0.586'.
[  122.415794][ T5448] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  122.497821][ T5448] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  123.950448][ T5476] device veth17 entered promiscuous mode
[  124.078561][   T25] audit: type=1326 audit(1728564254.682:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5478 comm="syz.1.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa427b99ff9 code=0x7ffc0000
[  124.152364][   T25] audit: type=1326 audit(1728564254.682:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5478 comm="syz.1.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa427b99ff9 code=0x7ffc0000
[  124.192547][ T5413] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 224: padding at end of block bitmap is not set
[  124.233457][ T5413] EXT4-fs (loop4): Remounting filesystem read-only
[  124.252497][   T25] audit: type=1326 audit(1728564254.712:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5478 comm="syz.1.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7fa427b99ff9 code=0x7ffc0000
[  124.340298][ T5484] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  124.342452][   T25] audit: type=1326 audit(1728564254.712:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5478 comm="syz.1.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa427b99ff9 code=0x7ffc0000
[  124.421889][ T5484] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  124.428885][   T25] audit: type=1326 audit(1728564254.712:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5478 comm="syz.1.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa427b99ff9 code=0x7ffc0000
[  124.490178][ T5484] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  124.531593][ T5484] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  124.603254][ T5481] netlink: 4 bytes leftover after parsing attributes in process `syz.1.599'.
[  124.632495][ T5488] netlink: 8 bytes leftover after parsing attributes in process `syz.3.601'.
[  124.652244][ T5488] netlink: 12 bytes leftover after parsing attributes in process `syz.3.601'.
[  125.056649][ T5515] loop3: detected capacity change from 0 to 512
[  125.205956][ T5511] device veth21 entered promiscuous mode
[  125.223222][ T5515] EXT4-fs (loop3): Ignoring removed nobh option
[  125.229571][ T5515] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  125.328428][ T5515] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  125.348394][ T5515] ext4 filesystem being mounted at /133/file0 supports timestamps until 2038 (0x7fffffff)
[  125.555636][ T5526] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  125.658754][ T5523] netlink: 4 bytes leftover after parsing attributes in process `syz.4.612'.
[  125.994855][ T5538] netlink: 8 bytes leftover after parsing attributes in process `syz.4.617'.
[  126.024074][ T5538] netlink: 12 bytes leftover after parsing attributes in process `syz.4.617'.
[  126.063526][ T5541] syz_tun: Device is already in use.
[  126.434859][ T5552] loop4: detected capacity change from 0 to 128
[  126.562370][ T5552] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  126.611826][ T5552] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  126.630770][ T5554] device veth9 entered promiscuous mode
[  127.385307][ T5567] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  127.449888][ T5567] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  127.513579][ T5569] netlink: 4 bytes leftover after parsing attributes in process `syz.2.626'.
[  127.639037][ T5576] netlink: 8 bytes leftover after parsing attributes in process `syz.1.630'.
[  127.948410][ T5591] loop1: detected capacity change from 0 to 128
[  127.957253][ T5590] device veth13 entered promiscuous mode
[  128.033018][ T5520] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 224: padding at end of block bitmap is not set
[  128.062633][ T5591] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  128.084352][ T5520] EXT4-fs (loop3): Remounting filesystem read-only
[  128.149443][ T5591] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  128.398043][ T5604] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  128.519899][ T5604] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  128.565614][ T5604] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  128.768377][ T5610] netlink: 4 bytes leftover after parsing attributes in process `syz.0.640'.
[  129.290275][ T5623] netlink: 8 bytes leftover after parsing attributes in process `syz.2.647'.
[  129.699158][ T5629] device veth19 entered promiscuous mode
[  129.853611][ T5637] loop2: detected capacity change from 0 to 128
[  129.971499][ T5637] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  130.082064][ T5637] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  130.671010][ T5646] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  130.736193][ T5646] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  130.827921][ T5646] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  131.412465][ T5664] netlink: 8 bytes leftover after parsing attributes in process `syz.3.661'.
[  132.321161][ T5682] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  132.435194][ T5682] netlink: 4 bytes leftover after parsing attributes in process `syz.0.666'.
[  132.577706][ T5692] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  132.664919][ T5696] loop4: detected capacity change from 0 to 512
[  132.676112][ T1387] ieee802154 phy0 wpan0: encryption failed: -22
[  132.682575][ T1387] ieee802154 phy1 wpan1: encryption failed: -22
[  132.694712][ T5698] process 'syz.0.672' launched './file1' with NULL argv: empty string added
[  132.730771][ T5696] EXT4-fs (loop4): Ignoring removed nobh option
[  132.737195][ T5696] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  132.761874][ T5700] netlink: 8 bytes leftover after parsing attributes in process `syz.3.675'.
[  132.831193][ T5696] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  132.850862][ T5696] ext4 filesystem being mounted at /127/file0 supports timestamps until 2038 (0x7fffffff)
[  133.386821][ T5718] netlink: 4 bytes leftover after parsing attributes in process `syz.2.681'.
[  133.596319][ T5730] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  133.618437][ T5730] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  133.663549][ T5730] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  133.704983][ T5730] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  133.780528][ T5735] netlink: 4 bytes leftover after parsing attributes in process `syz.1.683'.
[  133.815909][ T5737] netlink: 8 bytes leftover after parsing attributes in process `syz.3.689'.
[  134.040470][   T25] audit: type=1326 audit(1728564264.642:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5748 comm="syz.1.695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa427b99ff9 code=0x7ffc0000
[  134.084884][   T25] audit: type=1326 audit(1728564264.672:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5748 comm="syz.1.695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa427b99ff9 code=0x7ffc0000
[  134.132629][   T25] audit: type=1326 audit(1728564264.672:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5748 comm="syz.1.695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7fa427b99ff9 code=0x7ffc0000
[  134.186042][   T25] audit: type=1326 audit(1728564264.672:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5748 comm="syz.1.695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa427b99ff9 code=0x7ffc0000
[  134.234488][ T5754] netlink: 'syz.1.695': attribute type 1 has an invalid length.
[  134.261850][ T5754] netlink: 'syz.1.695': attribute type 2 has an invalid length.
[  134.332085][   T25] audit: type=1326 audit(1728564264.672:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5748 comm="syz.1.695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa427b99ff9 code=0x7ffc0000
[  134.418085][ T5754] netlink: 4 bytes leftover after parsing attributes in process `syz.1.695'.
[  134.436627][   T25] audit: type=1326 audit(1728564264.672:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5748 comm="syz.1.695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fa427b99ff9 code=0x7ffc0000
[  134.459954][   T25] audit: type=1326 audit(1728564264.672:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5748 comm="syz.1.695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa427b99ff9 code=0x7ffc0000
[  134.492975][   T25] audit: type=1326 audit(1728564264.672:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5748 comm="syz.1.695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa427b99ff9 code=0x7ffc0000
[  134.576178][   T25] audit: type=1326 audit(1728564264.672:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5748 comm="syz.1.695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fa427b99ff9 code=0x7ffc0000
[  134.666985][   T25] audit: type=1326 audit(1728564264.782:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5748 comm="syz.1.695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa427b99ff9 code=0x7fc00000
[  134.788576][ T5771] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  134.892776][ T5775] netlink: 4 bytes leftover after parsing attributes in process `syz.2.702'.
[  135.013235][ T5777] netlink: 8 bytes leftover after parsing attributes in process `syz.3.704'.
[  135.142952][ T5784] netlink: 60 bytes leftover after parsing attributes in process `syz.1.707'.
[  135.453758][ T5791] 8021q: adding VLAN 0 to HW filter on device ipvlan8
[  136.345085][ T5807] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  136.441485][ T5807] __nla_validate_parse: 1 callbacks suppressed
[  136.441500][ T5807] netlink: 4 bytes leftover after parsing attributes in process `syz.4.717'.
[  136.592678][ T5819] loop2: detected capacity change from 0 to 512
[  136.642934][ T5819] EXT4-fs (loop2): Ignoring removed nobh option
[  136.649260][ T5819] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  136.707186][ T5823] netlink: 'syz.4.722': attribute type 1 has an invalid length.
[  136.727745][ T5819] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  136.747237][ T5819] ext4 filesystem being mounted at /138/file0 supports timestamps until 2038 (0x7fffffff)
[  136.760312][ T5823] netlink: 134744 bytes leftover after parsing attributes in process `syz.4.722'.
[  139.129939][ T5858] syz_tun: Device is already in use.
[  139.180005][ T5856] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  139.257388][ T5856] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  139.333446][ T5856] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  139.378069][ T5856] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  139.432122][ T5865] netlink: 4 bytes leftover after parsing attributes in process `syz.1.733'.
[  139.444170][ T5867] netlink: 4 bytes leftover after parsing attributes in process `syz.4.736'.
[  140.006416][ T5880] netlink: 128 bytes leftover after parsing attributes in process `syz.3.740'.
[  140.411162][ T5896] fuse: Bad value for 'group_id'
[  140.510375][ T5898] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  140.539719][ T5898] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  140.581473][ T5898] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  140.617464][ T5898] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  140.648548][ T5905] netlink: 4 bytes leftover after parsing attributes in process `syz.3.748'.
[  140.833197][ T5912] device geneve2 entered promiscuous mode
[  141.047248][ T5920] loop1: detected capacity change from 0 to 512
[  141.097301][ T5920] EXT4-fs (loop1): Ignoring removed nobh option
[  141.103687][ T5920] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  141.284142][ T5920] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  141.303432][ T5920] ext4 filesystem being mounted at /120/file0 supports timestamps until 2038 (0x7fffffff)
[  141.400274][ T5932] fuse: Bad value for 'group_id'
[  142.457677][ T5942] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  142.622479][ T5953] netlink: 4 bytes leftover after parsing attributes in process `syz.4.764'.
[  143.018158][ T5972] fuse: Bad value for 'group_id'
[  143.079866][ T5970] loop3: detected capacity change from 0 to 512
[  143.118382][ T5970] EXT4-fs (loop3): Ignoring removed nobh option
[  143.124795][ T5970] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  143.202041][ T5970] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  143.221423][ T5970] ext4 filesystem being mounted at /168/file0 supports timestamps until 2038 (0x7fffffff)
[  143.339733][ T5989] netlink: 12 bytes leftover after parsing attributes in process `syz.4.782'.
[  144.065194][ T5999] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  144.147050][ T5999] netlink: 4 bytes leftover after parsing attributes in process `syz.4.784'.
[  144.241907][ T3662] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  144.542417][ T3615] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  144.663107][ T3662] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  144.682411][ T3662] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  144.722443][ T3662] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  144.731514][ T3662] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  144.792380][ T3615] usb 3-1: Using ep0 maxpacket: 8
[  144.822727][ T5991] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  144.857932][    T7] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  144.930313][ T3615] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[  144.950667][ T3615] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  145.082454][ T3615] usb 3-1: config 168 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  145.132510][    T7] usb 5-1: Using ep0 maxpacket: 8
[  145.244792][ T3615] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[  145.330942][ T3615] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  145.342596][    T7] usb 5-1: config 0 has no interfaces?
[  145.417757][    T7] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  145.427089][ T3615] usb 3-1: config 168 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  145.437994][    T7] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  145.523212][ T3615] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[  145.548340][    T7] usb 5-1: config 0 descriptor??
[  145.553809][ T3615] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  145.565339][ T3615] usb 3-1: config 168 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  145.812555][ T3615] usb 3-1: string descriptor 0 read error: -22
[  145.819219][ T3615] usb 3-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  145.862822][ T3615] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  145.865265][ T3662] usb 5-1: USB disconnect, device number 4
[  145.964584][ T3615] adutux 3-1:168.0: interrupt endpoints not found
[  146.068368][ T6030] loop3: detected capacity change from 0 to 512
[  146.106684][ T6030] EXT4-fs (loop3): Ignoring removed nobh option
[  146.113238][ T6030] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  146.151979][ T6030] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  146.172067][ T6030] ext4 filesystem being mounted at /177/file0 supports timestamps until 2038 (0x7fffffff)
[  146.200670][ T3807] usb 3-1: USB disconnect, device number 2
[  147.260123][ T6047] netlink: 4 bytes leftover after parsing attributes in process `syz.2.801'.
[  147.300899][ T2990] usb 2-1: USB disconnect, device number 3
[  147.372150][ T6042] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  147.451614][ T6048] netlink: 4 bytes leftover after parsing attributes in process `syz.4.800'.
[  147.621105][ T3662] libceph: connect (1)[c::]:6789 error -101
[  147.627789][ T3662] libceph: mon0 (1)[c::]:6789 connect error
[  148.153010][ T3662] libceph: connect (1)[c::]:6789 error -101
[  148.169285][ T3662] libceph: mon0 (1)[c::]:6789 connect error
[  148.180019][ T6064] ceph: No mds server is up or the cluster is laggy
[  148.261631][ T6077] loop4: detected capacity change from 0 to 512
[  148.297665][ T6077] EXT4-fs (loop4): Ignoring removed nobh option
[  148.304054][ T6077] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  148.342550][ T6077] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  148.361878][ T6077] ext4 filesystem being mounted at /155/file0 supports timestamps until 2038 (0x7fffffff)
[  149.323392][ T6096] netlink: 4 bytes leftover after parsing attributes in process `syz.3.816'.
[  149.388486][ T6101] raw_sendmsg: syz.2.819 forgot to set AF_INET. Fix it!
[  149.487661][ T6106] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  149.560334][ T6106] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  149.590147][ T6106] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  149.646563][ T6106] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  149.693837][ T6100] netlink: 4 bytes leftover after parsing attributes in process `syz.1.820'.
[  150.094953][ T6128] loop2: detected capacity change from 0 to 512
[  150.136409][ T6128] EXT4-fs (loop2): Ignoring removed nobh option
[  150.142971][ T6128] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  150.212592][ T6128] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  150.231944][ T6128] ext4 filesystem being mounted at /157/file0 supports timestamps until 2038 (0x7fffffff)
[  150.549073][ T6148] syz_tun: Device is already in use.
[  151.240623][ T6161] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  151.494874][ T6135] chnl_net:caif_netlink_parms(): no params data found
[  151.859498][ T6190] loop2: detected capacity change from 0 to 512
[  151.961830][ T6190] EXT4-fs (loop2): Ignoring removed nobh option
[  151.968352][ T6190] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  152.037084][ T6190] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  152.056659][ T6190] ext4 filesystem being mounted at /159/file0 supports timestamps until 2038 (0x7fffffff)
[  152.904757][ T3807] Bluetooth: hci5: command 0x0409 tx timeout
[  153.334191][ T6206] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  153.361170][ T6206] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  153.379253][ T6206] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  153.443525][ T6206] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  153.652985][ T6135] bridge0: port 1(bridge_slave_0) entered blocking state
[  153.700167][ T6135] bridge0: port 1(bridge_slave_0) entered disabled state
[  153.747046][ T6135] device bridge_slave_0 entered promiscuous mode
[  153.797570][ T6135] bridge0: port 2(bridge_slave_1) entered blocking state
[  153.814793][ T6135] bridge0: port 2(bridge_slave_1) entered disabled state
[  153.862222][ T6135] device bridge_slave_1 entered promiscuous mode
[  154.029173][ T6135] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  154.114487][ T6135] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  154.269842][ T6135] team0: Port device team_slave_0 added
[  154.272709][ T6237] loop1: detected capacity change from 0 to 512
[  154.305996][ T6237] EXT4-fs (loop1): Ignoring removed nobh option
[  154.312520][ T6237] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  154.321897][ T6135] team0: Port device team_slave_1 added
[  154.369022][ T6237] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  154.388702][ T6237] ext4 filesystem being mounted at /144/file0 supports timestamps until 2038 (0x7fffffff)
[  154.560791][ T6135] batman_adv: batadv0: Adding interface: batadv_slave_0
[  154.585583][ T6135] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  154.868009][ T6135] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  154.959608][ T6256] fuse: Unknown parameter 'grou00000000000000000000'
[  155.132499][ T6251] netlink: 8 bytes leftover after parsing attributes in process `syz.2.865'.
[  155.228521][ T6251] netlink: 'syz.2.865': attribute type 2 has an invalid length.
[  155.268719][    T7] Bluetooth: hci5: command 0x041b tx timeout
[  155.287671][ T6254] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  155.336592][ T6254] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  155.349219][ T6254] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  155.359872][ T6254] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  155.378406][ T6135] batman_adv: batadv0: Adding interface: batadv_slave_1
[  155.400056][ T6135] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  155.428455][ T6135] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  155.632975][ T6135] device hsr_slave_0 entered promiscuous mode
[  155.672759][ T6135] device hsr_slave_1 entered promiscuous mode
[  155.699334][ T6135] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  155.709378][ T6135] Cannot create hsr debugfs directory
[  155.859603][ T6285] fuse: Unknown parameter 'grou00000000000000000000'
[  155.962970][ T6287] loop1: detected capacity change from 0 to 512
[  156.015850][ T6287] EXT4-fs (loop1): Ignoring removed nobh option
[  156.022238][ T6287] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  156.026665][ T6294] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  156.107554][ T6294] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  156.116959][ T6287] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  156.136181][    C0] vkms_vblank_simulate: vblank timer overrun
[  156.142588][ T6287] ext4 filesystem being mounted at /147/file0 supports timestamps until 2038 (0x7fffffff)
[  156.191573][ T6294] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  156.203337][ T6294] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  156.325476][ T6301] netlink: 4 bytes leftover after parsing attributes in process `syz.3.880'.
[  156.497960][ T6135] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.049525][ T6323] fuse: Unknown parameter 'grou00000000000000000000'
[  157.173426][ T6135] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.312571][ T6328] Bluetooth: hci5: command 0x040f tx timeout
[  157.328174][ T6135] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.499059][ T6135] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.756616][ T6348] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  157.766961][ T6348] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  157.774648][ T6348] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  157.786168][ T6348] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  157.808968][ T6135] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  157.818484][ T6345] netlink: 4 bytes leftover after parsing attributes in process `syz.3.897'.
[  157.828189][ T6135] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  157.880471][ T6135] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  157.889802][ T6135] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  157.905122][ T6350] device veth1_to_bridge entered promiscuous mode
[  157.925594][ T1551] bridge0: port 2(bridge_slave_1) entered disabled state
[  158.022821][ T6353] loop4: detected capacity change from 0 to 512
[  158.066501][ T6353] EXT4-fs (loop4): Ignoring removed nobh option
[  158.072944][ T6353] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  158.110744][ T6357] fuse: Unknown parameter 'group_i00000000000000000000'
[  158.143634][ T6353] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  158.163530][ T6353] ext4 filesystem being mounted at /177/file0 supports timestamps until 2038 (0x7fffffff)
[  158.210874][ T6135] 8021q: adding VLAN 0 to HW filter on device bond0
[  158.341985][  T156] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  158.370425][  T156] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  158.384729][ T6135] 8021q: adding VLAN 0 to HW filter on device team0
[  159.139956][ T4252] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  159.164307][ T4252] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  159.243474][ T4252] bridge0: port 1(bridge_slave_0) entered blocking state
[  159.250824][ T4252] bridge0: port 1(bridge_slave_0) entered forwarding state
[  159.280287][ T4252] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  159.290111][ T4252] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  159.309320][ T4252] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  159.326447][ T4252] bridge0: port 2(bridge_slave_1) entered blocking state
[  159.333614][ T4252] bridge0: port 2(bridge_slave_1) entered forwarding state
[  159.373033][ T6385] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  159.387558][ T6385] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  159.395284][ T6328] Bluetooth: hci5: command 0x0419 tx timeout
[  159.405644][ T6385] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  159.418282][ T6385] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  159.465229][ T6381] netlink: 4 bytes leftover after parsing attributes in process `syz.3.908'.
[  159.474572][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  159.488888][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  159.556588][ T4854] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  159.576266][ T4854] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  159.647600][ T6135] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  159.658328][ T6135] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  159.671535][ T4854] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  159.680900][ T4854] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  159.692148][ T4854] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  159.701002][ T4854] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  159.709806][ T4854] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  159.721327][ T4854] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  159.730872][ T4854] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  159.783959][ T4854] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  159.871818][ T6399] fuse: Unknown parameter 'group_i00000000000000000000'
[  159.935336][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  159.951102][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  159.965099][ T6135] 8021q: adding VLAN 0 to HW filter on device batadv0
[  159.997373][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  160.011483][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  160.058516][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  160.074586][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  160.083743][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  160.098284][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  160.119534][ T6135] device veth0_vlan entered promiscuous mode
[  160.156452][ T6135] device veth1_vlan entered promiscuous mode
[  160.170792][  T154] device hsr_slave_0 left promiscuous mode
[  160.194953][ T6406] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  160.211475][  T154] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  160.223225][  T154] batman_adv: batadv0: Removing interface: batadv_slave_0
[  160.223865][ T6409] loop2: detected capacity change from 0 to 512
[  160.237467][  T154] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  160.272620][  T154] batman_adv: batadv0: Removing interface: batadv_slave_1
[  160.282172][ T6409] EXT4-fs (loop2): Ignoring removed nobh option
[  160.289456][ T6409] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  160.302630][  T154] device bridge_slave_1 left promiscuous mode
[  160.319223][  T154] bridge0: port 2(bridge_slave_1) entered disabled state
[  160.347274][  T154] device bridge_slave_0 left promiscuous mode
[  160.383903][ T6409] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  160.403388][ T6409] ext4 filesystem being mounted at /180/file0 supports timestamps until 2038 (0x7fffffff)
[  160.432917][  T154] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.470130][  T154] device veth1_macvtap left promiscuous mode
[  160.485745][  T154] device veth0_macvtap left promiscuous mode
[  160.492031][  T154] device veth1_vlan left promiscuous mode
[  160.505915][  T154] device veth0_vlan left promiscuous mode
[  161.587574][ T6434] fuse: Unknown parameter 'group_i00000000000000000000'
[  161.732938][  T154] team0 (unregistering): Port device team_slave_1 removed
[  161.749175][  T154] team0 (unregistering): Port device team_slave_0 removed
[  161.764571][  T154] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  161.781396][  T154] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  161.904616][  T154] bond0 (unregistering): Released all slaves
[  161.942553][ T6436] loop4: detected capacity change from 0 to 32768
[  161.971218][ T6436] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.924 (6436)
[  162.026198][ T6432] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  162.076152][ T6436] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  162.077604][ T6428] netlink: 4 bytes leftover after parsing attributes in process `syz.2.922'.
[  162.129042][ T6436] BTRFS info (device loop4): using free space tree
[  162.139516][ T4854] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  162.151575][ T6436] BTRFS info (device loop4): has skinny extents
[  162.168216][ T4854] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  162.181685][ T6135] device veth0_macvtap entered promiscuous mode
[  162.193332][ T6135] device veth1_macvtap entered promiscuous mode
[  162.218747][ T6135] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  162.230336][ T6135] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.262949][ T6135] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  162.285875][ T6135] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.308418][ T6135] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  162.323799][ T6135] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.337457][ T6135] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  162.356493][ T6135] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.377970][ T6135] batman_adv: batadv0: Interface activated: batadv_slave_0
[  162.387868][ T4252] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  162.427535][ T6436] BTRFS info (device loop4): enabling ssd optimizations
[  162.444172][ T4252] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  162.484265][ T4252] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  162.515291][ T4252] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  162.554203][ T6135] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  162.598690][ T6135] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.644143][ T6473] BTRFS info (device loop4): scrub: started on devid 1
[  162.655560][ T6135] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  162.677070][ T6135] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.713895][ T6135] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  162.764789][ T6135] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.782523][ T6135] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  162.794505][ T6135] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.806870][ T6135] batman_adv: batadv0: Interface activated: batadv_slave_1
[  162.820637][ T6135] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  162.847706][ T6135] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  162.850873][ T6480] loop1: detected capacity change from 0 to 1024
[  162.898938][ T6135] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  162.928647][ T6135] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  162.949953][ T3919] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  162.960199][ T3919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  163.014171][ T6473] BTRFS info (device loop4): scrub: finished on devid 1 with status: 0
[  163.098796][ T6480] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:476: comm syz.1.931: Invalid block bitmap block 0 in block_group 0
[  163.114063][ T6480] __quota_error: 2 callbacks suppressed
[  163.114077][ T6480] Quota error (device loop1): write_blk: dquota write failed
[  163.128996][ T6480] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  163.139847][ T6480] EXT4-fs error (device loop1): ext4_acquire_dquot:6196: comm syz.1.931: Failed to acquire dquot type 0
[  163.180107][ T6480] EXT4-fs error (device loop1): ext4_free_blocks:6225: comm syz.1.931: Freeing blocks not in datazone - block = 0, count = 4096
[  163.212492][ T6486] loop3: detected capacity change from 0 to 512
[  163.224391][ T6480] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.931: Invalid inode bitmap blk 0 in block_group 0
[  163.239013][ T6480] EXT4-fs error (device loop1) in ext4_free_inode:362: Corrupt filesystem
[  163.248383][ T1551] Quota error (device loop1): remove_tree: Getting block too big (0 >= 9)
[  163.259551][ T1551] EXT4-fs error (device loop1): ext4_release_dquot:6219: comm kworker/u4:5: Failed to release dquot type 0
[  163.296690][ T3919] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  163.302053][ T6480] EXT4-fs (loop1): 1 orphan inode deleted
[  163.323329][ T6486] EXT4-fs (loop3): Ignoring removed nobh option
[  163.330396][ T6486] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  163.347130][ T3919] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  163.359542][ T6480] EXT4-fs (loop1): mounted filesystem without journal. Opts: €�; ,errors=continue. Quota mode: writeback.
[  163.376561][ T6490] fuse: Unknown parameter 'group_id00000000000000000000'
[  163.398386][ T6486] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  163.421043][ T6486] ext4 filesystem being mounted at /211/file0 supports timestamps until 2038 (0x7fffffff)
[  163.935846][ T1551] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  163.936318][ T4252] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  164.032968][ T4252] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  164.098165][ T4252] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  164.486330][ T6518] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  164.565352][ T6518] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  164.601563][ T6518] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  164.639869][ T6518] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  164.697355][ T6524] netlink: 4 bytes leftover after parsing attributes in process `syz.3.938'.
[  165.029896][ T6536] fuse: Unknown parameter 'group_id00000000000000000000'
[  165.225278][ T6539] netlink: 36 bytes leftover after parsing attributes in process `syz.3.945'.
[  165.693504][ T6501] loop2: detected capacity change from 0 to 32768
[  165.955382][ T6547] REISERFS warning (device nullb0):  reiserfs_fill_super: Cannot allocate commit workqueue
[  166.039501][ T6553] loop4: detected capacity change from 0 to 512
[  166.229225][ T6501] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  166.237710][ T6501] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  166.244504][ T6553] EXT4-fs (loop4): Ignoring removed nobh option
[  166.250983][ T6553] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  166.329805][ T6553] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  166.336241][ T6501] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  166.349480][ T6553] ext4 filesystem being mounted at /185/file0 supports timestamps until 2038 (0x7fffffff)
[  166.379655][ T6563] loop3: detected capacity change from 0 to 128
[  166.544517][ T6500] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  166.551612][ T6500] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  166.647001][ T6565] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  166.689888][ T6568] attempt to access beyond end of device
[  166.689888][ T6568] loop3: rw=2049, want=329, limit=128
[  166.816994][ T6565] netlink: 4 bytes leftover after parsing attributes in process `syz.0.953'.
[  166.845209][ T6563] attempt to access beyond end of device
[  166.845209][ T6563] loop3: rw=2049, want=369, limit=128
[  166.889679][ T6500] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 338ms
[  166.925892][ T6500] gfs2: fsid=syz:syz.0: jid=0: Done
[  166.934561][ T6565] device hsr_slave_1 left promiscuous mode
[  166.940130][ T6501] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  167.078459][ T6576] fuse: Unknown parameter 'group_id00000000000000000000'
[  167.209351][ T6580] netlink: 36 bytes leftover after parsing attributes in process `syz.3.957'.
[  168.220321][ T6586] loop4: detected capacity change from 0 to 32768
[  168.567482][ T6586] XFS (loop4): Mounting V5 Filesystem
[  168.813455][ T6607] REISERFS warning (device nullb0):  reiserfs_fill_super: Cannot allocate commit workqueue
[  168.900379][ T6586] XFS (loop4): Ending clean mount
[  169.120740][ T6618] loop2: detected capacity change from 0 to 128
[  169.216321][ T3578] XFS (loop4): Unmounting Filesystem
[  169.280330][ T6593] loop1: detected capacity change from 0 to 32768
[  169.353875][ T6622] attempt to access beyond end of device
[  169.353875][ T6622] loop2: rw=2049, want=769, limit=128
[  169.367036][ T6593] (syz.1.971,6593,1):ocfs2_parse_options:1447 ERROR: Unrecognized mount option "localalloc=>0000000000000001" or missing value
[  169.422415][ T6593] (syz.1.971,6593,1):ocfs2_fill_super:1177 ERROR: status = -22
[  169.731404][ T6617] attempt to access beyond end of device
[  169.731404][ T6617] loop2: rw=524288, want=369, limit=128
[  169.767845][ T3662] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  169.803417][ T6618] attempt to access beyond end of device
[  169.803417][ T6618] loop2: rw=2049, want=1041, limit=128
[  170.026510][ T6629] fuse: Bad value for 'user_id'
[  170.068319][ T6625] loop2: detected capacity change from 0 to 512
[  170.091289][ T6631] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  170.118425][ T6625] EXT4-fs (loop2): Ignoring removed nobh option
[  170.125129][ T6625] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  170.200199][ T6631] netlink: 4 bytes leftover after parsing attributes in process `syz.4.967'.
[  170.213912][ T3662] usb 2-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  170.232366][ T3662] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30
[  170.244706][ T3662] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  170.261726][ T6625] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  170.281312][ T6625] ext4 filesystem being mounted at /189/file0 supports timestamps until 2038 (0x7fffffff)
[  170.298481][ T3662] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  170.309248][ T3662] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  170.476806][ T3662] usb 2-1: config 0 descriptor??
[  171.759253][ T6502] Bluetooth: hci2: command 0x0406 tx timeout
[  171.765654][ T6502] Bluetooth: hci1: command 0x0406 tx timeout
[  171.771850][ T6502] Bluetooth: hci4: command 0x0406 tx timeout
[  172.025745][ T3662] usb 2-1: string descriptor 0 read error: -71
[  172.042636][ T3662] usb 2-1: USB disconnect, device number 4
[  173.086716][ T6668] fuse: Bad value for 'user_id'
[  173.208009][ T6681] netlink: 20 bytes leftover after parsing attributes in process `syz.3.985'.
[  173.237186][ T6681] netlink: 68 bytes leftover after parsing attributes in process `syz.3.985'.
[  173.258811][ T6678] netlink: 28 bytes leftover after parsing attributes in process `syz.1.982'.
[  173.282381][ T6678] netlink: 8 bytes leftover after parsing attributes in process `syz.1.982'.
[  173.326543][ T6684] loop2: detected capacity change from 0 to 512
[  173.403157][ T6684] EXT4-fs (loop2): Ignoring removed nobh option
[  173.409506][ T6684] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  173.485664][ T6684] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  173.505043][ T6684] ext4 filesystem being mounted at /191/file0 supports timestamps until 2038 (0x7fffffff)
[  174.652568][ T6721] netlink: 'syz.4.999': attribute type 16 has an invalid length.
[  174.695041][ T6721] netlink: 'syz.4.999': attribute type 17 has an invalid length.
[  174.742465][ T6721] netlink: 'syz.4.999': attribute type 27 has an invalid length.
[  174.760670][ T6726] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1002'.
[  174.785250][ T6727] device geneve0 entered promiscuous mode
[  174.791149][ T6727] device macvlan2 entered promiscuous mode
[  174.979294][ T6736] fuse: Bad value for 'fd'
[  175.106741][ T6744] fuse: Unknown parameter '00000000000000000000'
[  175.942438][ T2990] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  175.972745][ T6765] fuse: Bad value for 'fd'
[  176.072810][ T6767] fuse: Bad value for 'fd'
[  176.352877][ T2990] usb 2-1: config index 0 descriptor too short (expected 43306, got 18)
[  176.364314][ T2990] usb 2-1: config 153 has too many interfaces: 250, using maximum allowed: 32
[  176.382373][ T2990] usb 2-1: config 153 has an invalid descriptor of length 62, skipping remainder of the config
[  176.421937][ T2990] usb 2-1: config 153 has 0 interfaces, different from the descriptor's value: 250
[  176.466541][ T2990] usb 2-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  176.492860][ T2990] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  176.498193][ T6775] loop4: detected capacity change from 0 to 128
[  176.720549][ T6778] attempt to access beyond end of device
[  176.720549][ T6778] loop4: rw=2049, want=609, limit=128
[  176.805717][ T6756] binder: 6755:6756 ioctl c0306201 0 returned -14
[  176.818407][ T6775] attempt to access beyond end of device
[  176.818407][ T6775] loop4: rw=2049, want=1041, limit=128
[  176.852581][ T2990] usb 2-1: string descriptor 0 read error: -71
[  176.860388][ T2990] usb 2-1: USB disconnect, device number 5
[  176.876789][ T6782] ax25_connect(): syz.2.1021 uses autobind, please contact jreuter@yaina.de
[  177.699491][ T6798] fuse: Bad value for 'fd'
[  177.806101][ T6802] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1028'.
[  177.822675][ T6802] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1028'.
[  177.948832][ T6810] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  177.970763][ T6810] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  177.988440][ T6810] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  178.076503][ T6804] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1030'.
[  178.409800][ T6830] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1041'.
[  178.456110][ T6830] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1041'.
[  178.473082][ T6834] fuse: Bad value for 'fd'
[  178.571967][ T6841] fuse: Bad value for 'fd'
[  178.596413][ T3616] Bluetooth: hci5: Controller not accepting commands anymore: ncmd = 0
[  178.628753][ T3616] Bluetooth: hci5: Injecting HCI hardware error event
[  178.662096][ T6836] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  178.679601][ T3585] Bluetooth: hci5: hardware error 0x00
[  178.771414][ T6836] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  179.126979][ T6878] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1049'.
[  179.159134][    C0] Illegal XDP return value 4294967274, expect packet loss!
[  179.412864][ T6897] fuse: Bad value for 'fd'
[  180.016754][ T6925] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1063'.
[  182.442241][ T6941] fuse: Bad value for 'fd'
[  182.764705][ T6956] loop3: detected capacity change from 0 to 512
[  182.786642][ T6956] EXT4-fs (loop3): Ignoring removed nobh option
[  182.793066][ T6956] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  182.887329][ T6956] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  182.906928][ T6956] ext4 filesystem being mounted at /248/file0 supports timestamps until 2038 (0x7fffffff)
[  184.041308][ T6982] fuse: Invalid rootmode
[  184.244534][ T6993] device veth1_to_bridge left promiscuous mode
[  184.290639][ T4146] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  184.305199][ T4146] bridge0: port 2(bridge_slave_1) entered blocking state
[  184.312354][ T4146] bridge0: port 2(bridge_slave_1) entered forwarding state
[  184.365828][   T25] audit: type=1804 audit(1728564314.972:22): pid=6995 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1089" name="/newroot/214/bus/file1" dev="overlay" ino=1170 res=1 errno=0
[  184.376178][ T6999] loop1: detected capacity change from 0 to 512
[  184.421553][ T7005] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  184.457980][ T7002] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1091'.
[  184.511530][ T6999] EXT4-fs (loop1): Ignoring removed nobh option
[  184.518076][ T6999] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  184.598360][ T6999] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  184.617883][ T6999] ext4 filesystem being mounted at /193/file0 supports timestamps until 2038 (0x7fffffff)
[  184.779453][   T25] audit: type=1326 audit(1728564315.362:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.4.1096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d529fcff9 code=0x7ffc0000
[  184.812082][   T25] audit: type=1326 audit(1728564315.372:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.4.1096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f8d529fcff9 code=0x7ffc0000
[  184.836554][   T25] audit: type=1326 audit(1728564315.372:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.4.1096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d529fcff9 code=0x7ffc0000
[  185.234013][ T7022] fuse: Invalid rootmode
[  185.274796][   T25] audit: type=1326 audit(1728564315.372:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.4.1096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d529fcff9 code=0x7ffc0000
[  185.450616][   T25] audit: type=1326 audit(1728564315.372:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.4.1096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f8d529fcff9 code=0x7ffc0000
[  185.551605][   T25] audit: type=1326 audit(1728564315.372:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.4.1096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d529fcff9 code=0x7ffc0000
[  185.615512][ T7032] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1100'.
[  185.639743][ T7032] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1100'.
[  185.709245][   T25] audit: type=1326 audit(1728564315.372:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.4.1096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d529fcff9 code=0x7ffc0000
[  186.310423][ T7052] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  186.335758][ T7054] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1106'.
[  186.886844][ T7062] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  186.909993][ T7073] loop4: detected capacity change from 0 to 512
[  187.186984][ T7073] EXT4-fs (loop4): Ignoring removed nobh option
[  187.193611][ T7073] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  187.265980][ T3584] Bluetooth: hci1: SCO packet for unknown connection handle 0
[  187.274745][ T3584] Bluetooth: hci1: SCO packet for unknown connection handle 1039
[  187.315183][ T7073] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  187.334544][ T7073] ext4 filesystem being mounted at /220/file0 supports timestamps until 2038 (0x7fffffff)
[  188.883066][ T7108] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1119'.
[  188.902582][ T7108] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  189.787528][ T6500] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  190.282601][ T6500] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  190.341572][ T6500] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  190.405802][ T6500] usb 2-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  190.470471][ T6500] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.544085][ T6500] usb 2-1: config 0 descriptor??
[  190.730511][ T7161] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  190.887109][ T7161] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1130'.
[  191.005062][ T7166] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1132'.
[  191.051949][ T7166] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1132'.
[  191.108323][ T6500] cm6533_jd 0003:0D8C:0022.0001: unknown main item tag 0x0
[  191.108490][ T6500] cm6533_jd 0003:0D8C:0022.0001: unknown main item tag 0x0
[  191.153051][ T6500] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0D8C:0022.0001/input/input8
[  191.257928][ T6500] cm6533_jd 0003:0D8C:0022.0001: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.1-1/input0
[  192.332692][ T3614] usb 2-1: reset high-speed USB device number 6 using dummy_hcd
[  192.447432][ T7206] fuse: Bad value for 'rootmode'
[  193.875530][ T7042] usb 2-1: USB disconnect, device number 6
[  194.132634][ T1387] ieee802154 phy0 wpan0: encryption failed: -22
[  194.138935][ T1387] ieee802154 phy1 wpan1: encryption failed: -22
[  194.174052][ T7228] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1144'.
[  194.235351][ T7228] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1144'.
[  194.322859][ T7234] loop2: detected capacity change from 0 to 512
[  194.378376][ T7234] EXT4-fs (loop2): Ignoring removed nobh option
[  194.413821][ T7234] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  194.458838][ T7241] fuse: Bad value for 'rootmode'
[  194.517871][ T7234] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  194.621903][ T7250] loop4: detected capacity change from 0 to 128
[  194.636523][ T7243] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  194.643571][ T7243] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  194.693003][ T7234] ext4 filesystem being mounted at /219/file0 supports timestamps until 2038 (0x7fffffff)
[  194.730575][ T7243] vhci_hcd vhci_hcd.0: Device attached
[  194.777713][ T7248] vhci_hcd: connection closed
[  194.786385][ T1551] vhci_hcd: stop threads
[  194.845284][ T1551] vhci_hcd: release socket
[  194.869408][ T1551] vhci_hcd: disconnect device
[  194.905484][ T7250] attempt to access beyond end of device
[  194.905484][ T7250] loop4: rw=2049, want=449, limit=128
[  195.153686][ T7255] usb usb2: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  195.523239][ T7247] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 224: padding at end of block bitmap is not set
[  195.738743][ T7247] EXT4-fs (loop2): Remounting filesystem read-only
[  195.836383][ T7276] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  195.914327][ T7272] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1158'.
[  195.970309][ T7279] fuse: Bad value for 'rootmode'
[  197.257684][ T7302] netlink: 'syz.1.1168': attribute type 10 has an invalid length.
[  197.330497][ T7302] device syz_tun entered promiscuous mode
[  197.589150][ T7313] fuse: Unknown parameter 'use00000000000000000000'
[  197.737078][ T7322] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  197.743631][ T7322] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  197.772618][ T7322] vhci_hcd vhci_hcd.0: Device attached
[  197.788641][ T7331] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  197.798783][ T7332] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  197.810722][ T7332] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  197.833171][ T7332] vhci_hcd vhci_hcd.0: Device attached
[  197.867426][ T7326] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1175'.
[  197.879364][ T7333] usbip_core: unknown command
[  197.889658][ T7333] vhci_hcd: unknown pdu 0
[  197.898630][ T7333] usbip_core: unknown command
[  197.908579][    T9] vhci_hcd: stop threads
[  197.931829][    T9] vhci_hcd: release socket
[  197.959659][    T9] vhci_hcd: disconnect device
[  198.092603][ T3806] usb 16-1: SetAddress Request (2) to port 0
[  198.099288][ T3806] usb 16-1: new SuperSpeed USB device number 2 using vhci_hcd
[  198.160220][ T7343] fuse: Bad value for 'fd'
[  198.195361][ T7346] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1181'.
[  198.215585][ T7346] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1181'.
[  198.517744][ T7323] vhci_hcd: connection reset by peer
[  198.607204][ T3915] vhci_hcd: stop threads
[  198.611522][ T3915] vhci_hcd: release socket
[  198.645595][ T3915] vhci_hcd: disconnect device
[  199.432471][ T7374] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1193'.
[  199.441464][ T7374] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1193'.
[  199.643036][ T2989] Bluetooth: hci3: command 0x0405 tx timeout
[  199.677748][ T7394] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1202'.
[  201.365328][ T7424] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1213'.
[  201.522667][ T7424] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1213'.
[  202.494786][ T3807] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  202.832386][ T3807] usb 5-1: Using ep0 maxpacket: 8
[  203.516109][ T3806] usb 16-1: device descriptor read/8, error -110
[  203.892670][ T6502] vhci_hcd: vhci_device speed not set
[  203.932548][ T3807] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[  203.976393][ T3807] usb 5-1: config 179 has no interface number 0
[  203.999073][ T3807] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 64, changing to 10
[  204.099171][ T3807] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 1029, setting to 1024
[  204.165970][ T3807] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  204.292635][ T4961] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  204.743208][ T4961] usb 2-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  204.764558][ T4961] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  204.961163][ T4961] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  204.970335][ T4961] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  204.980262][ T4961] usb 2-1: config 0 descriptor??
[  205.003521][ T7460] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  205.023599][ T4961] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  205.082479][ T3806] usb usb16-port1: Cannot enable. Maybe the USB cable is bad?
[  205.162776][ T3806] usb usb16-port1: attempt power cycle
[  205.335880][ T7477] fuse: Bad value for 'fd'
[  205.914629][ T3807] usb 5-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  205.936176][ T3807] usb 5-1: config 179 interface 65 has no altsetting 0
[  205.957147][ T3807] usb 5-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  205.969385][ T3807] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  206.032547][ T3807] usb 5-1: can't set config #179, error -71
[  206.054147][ T3807] usb 5-1: USB disconnect, device number 5
[  206.265815][ T3806] usb usb16-port1: Cannot enable. Maybe the USB cable is bad?
[  206.607263][ T3806] usb usb16-port1: Cannot enable. Maybe the USB cable is bad?
[  206.635356][ T3806] usb usb16-port1: unable to enumerate USB device
[  207.172986][ T3806] usb 2-1: USB disconnect, device number 7
[  207.515604][ T7512] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1240'.
[  207.537213][ T7512] (unnamed net_device) (uninitialized): (slave veth1): Device is not bonding slave
[  207.615571][ T7512] (unnamed net_device) (uninitialized): option active_slave: invalid value (veth1)
[  209.467164][ T7534] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1246'.
[  212.455361][ T7571] loop4: detected capacity change from 0 to 512
[  212.556239][ T7571] EXT4-fs (loop4): Ignoring removed nobh option
[  212.569486][ T7571] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  214.180309][ T7571] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  214.244395][ T7571] ext4 filesystem being mounted at /248/file0 supports timestamps until 2038 (0x7fffffff)
[  214.894221][ T7618] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1271'.
[  214.904147][ T7618] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1271'.
[  215.231304][ T7634] fuse: Unknown parameter 'use00000000000000000000'
[  215.289481][ T7639] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  215.354905][ T7639] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1278'.
[  215.704452][ T7650] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1282'.
[  215.747958][ T7650] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1282'.
[  218.485445][ T7604] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 224: padding at end of block bitmap is not set
[  218.513230][ T7604] EXT4-fs (loop4): Remounting filesystem read-only
[  219.714186][ T7692] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1296'.
[  219.723583][ T7692] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1296'.
[  221.779567][ T7724] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1308'.
[  221.823646][ T7731] fuse: Bad value for 'fd'
[  221.972432][ T7724] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1308'.
[  222.652003][ T7734] input: syz0 as /devices/virtual/input/input9
[  222.799238][ T7744] loop1: detected capacity change from 0 to 512
[  222.811048][   T25] audit: type=1804 audit(1728564353.412:30): pid=7742 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1312" name="/newroot/251/bus/file1" dev="overlay" ino=1379 res=1 errno=0
[  222.907382][ T7744] EXT4-fs (loop1): Ignoring removed nobh option
[  222.940374][ T7744] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  222.986511][ T7744] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  223.051624][ T7744] ext4 filesystem being mounted at /239/file0 supports timestamps until 2038 (0x7fffffff)
[  223.115308][ T7762] block nbd4: shutting down sockets
[  224.019592][ T7770] fuse: Bad value for 'fd'
[  224.138695][ T7778] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1324'.
[  224.258917][ T7778] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1324'.
[  224.309602][   T25] audit: type=1804 audit(1728564354.912:31): pid=7785 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1325" name="/newroot/253/bus/file1" dev="overlay" ino=1370 res=1 errno=0
[  225.474362][ T7755] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 224: padding at end of block bitmap is not set
[  225.622054][ T7755] EXT4-fs (loop1): Remounting filesystem read-only
[  225.692947][   T21] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  225.712795][    T9] wlan1: Trigger new scan to find an IBSS to join
[  225.898930][ T7817] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1337'.
[  225.928487][ T7817] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1337'.
[  226.212569][   T21] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  226.227393][ T7828] netlink: 'syz.4.1342': attribute type 16 has an invalid length.
[  226.229788][ T7821] fuse: Bad value for 'fd'
[  226.247971][ T7828] netlink: 'syz.4.1342': attribute type 17 has an invalid length.
[  226.389220][   T21] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  226.406556][   T21] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  226.419563][   T21] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  226.435459][   T21] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  226.696373][   T21] usb 3-1: config 0 descriptor??
[  227.801928][ T7828] bridge0: port 3(syz_tun) entered disabled state
[  227.814710][   T21] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  227.830977][   T21] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  227.841969][   T21] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving
[  227.855727][ T7828] bridge0: port 2(bridge_slave_1) entered disabled state
[  227.864095][ T7828] bridge0: port 1(bridge_slave_0) entered disabled state
[  227.896214][   T21] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  228.328912][ T7041] usb 3-1: USB disconnect, device number 3
[  228.730228][ T7828] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  228.766157][ T7828] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  229.520542][ T7828] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  229.530765][ T7828] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  229.539796][ T7828] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  229.549005][ T7828] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  229.651149][ T7828] device veth3 left promiscuous mode
[  229.656873][ T7828] device veth5 left promiscuous mode
[  229.662449][ T7828] device veth7 left promiscuous mode
[  229.694897][ T7828] device veth9 left promiscuous mode
[  229.701518][ T7828] device veth11 left promiscuous mode
[  229.728638][ T4854] wlan1: Trigger new scan to find an IBSS to join
[  229.738354][ T7828] device veth13 left promiscuous mode
[  229.789990][ T7828] device veth15 left promiscuous mode
[  229.832478][ T7828] device veth17 left promiscuous mode
[  229.867159][ T7828] device veth19 left promiscuous mode
[  229.907989][ T7828] device veth21 left promiscuous mode
[  229.952791][ T7848] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1348'.
[  230.035800][ T7848] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1348'.
[  230.493439][ T7885] fuse: Bad value for 'fd'
[  230.533461][ T7884] loop3: detected capacity change from 0 to 512
[  230.563331][ T7892] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1363'.
[  230.602716][ T7884] EXT4-fs (loop3): Ignoring removed nobh option
[  230.609190][ T7884] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  230.705796][ T7884] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  230.725305][ T7884] ext4 filesystem being mounted at /319/file0 supports timestamps until 2038 (0x7fffffff)
[  232.435383][ T7896] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 224: padding at end of block bitmap is not set
[  232.439066][ T1551] wlan1: Creating new IBSS network, BSSID fe:18:af:86:9a:66
[  232.544138][ T7896] EXT4-fs (loop3): Remounting filesystem read-only
[  232.868990][ T7905] block nbd0: shutting down sockets
[  233.349967][ T7911] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1367'.
[  233.420275][ T7911] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1367'.
[  233.503075][ T7921] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  233.670237][ T7921] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  233.695366][ T7921] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  234.441078][ T7934] fuse: Bad value for 'fd'
[  234.497808][ T7924] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1368'.
[  235.528624][ T7949] loop1: detected capacity change from 0 to 512
[  235.817241][ T7949] EXT4-fs (loop1): Ignoring removed nobh option
[  235.823614][ T7949] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  236.609897][ T7949] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  236.628002][ T7965] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1381'.
[  236.629199][ T7949] ext4 filesystem being mounted at /248/file0 supports timestamps until 2038 (0x7fffffff)
[  236.702765][ T7965] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1381'.
[  236.832136][ T7959] tipc: Started in network mode
[  236.859305][ T7959] tipc: Node identity f7, cluster identity 4711
[  236.878054][ T7959] tipc: Node number set to 247
[  236.924917][ T7963] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 224: padding at end of block bitmap is not set
[  237.132602][ T7963] EXT4-fs (loop1): Remounting filesystem read-only
[  238.985665][ T8002] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1392'.
[  239.032130][ T8002] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1392'.
[  239.072897][ T7980] netlink: 128 bytes leftover after parsing attributes in process `syz.3.1387'.
[  239.610691][ T8013] loop3: detected capacity change from 0 to 512
[  239.663699][ T8013] EXT4-fs (loop3): Ignoring removed nobh option
[  239.670071][ T8013] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  239.741210][ T8013] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,nobh,max_batch_time=0x00000000000003ff,nojournal_checksum,usrquota,dioread_nolock,nodiscard,. Quota mode: writeback.
[  239.760600][ T8013] ext4 filesystem being mounted at /325/file0 supports timestamps until 2038 (0x7fffffff)
[  240.725728][ T8034] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  240.944529][ T8036] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1401'.
[  243.946062][ T8057] 9pnet_virtio: no channels available for device syz
[  244.903178][ T8065] netlink: 'syz.2.1410': attribute type 4 has an invalid length.
[  245.162780][ T8082] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  245.263138][ T8082] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1414'.
[  247.480672][ T8106] netlink: 1 bytes leftover after parsing attributes in process `syz.0.1418'.
[  248.156561][ T8129] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1428'.
[  248.170474][   T25] audit: type=1400 audit(1728564378.772:32): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=8117 comm="syz.3.1426"
[  248.204810][ T8128] SET target dimension over the limit!
[  249.159910][ T8145] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  249.317300][ T8142] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1432'.
[  250.049973][ T8140] block nbd1: shutting down sockets
[  250.149574][ T8164] loop4: detected capacity change from 0 to 128
[  250.295314][ T8169] netlink: 'syz.0.1441': attribute type 1 has an invalid length.
[  250.356666][ T8169] netlink: 'syz.0.1441': attribute type 4 has an invalid length.
[  250.383274][ T8169] netlink: 15334 bytes leftover after parsing attributes in process `syz.0.1441'.
[  250.427000][ T4252] attempt to access beyond end of device
[  250.427000][ T4252] loop4: rw=1, want=761, limit=128
[  250.738907][   T25] audit: type=1326 audit(1728564381.342:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8174 comm="syz.4.1442" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8d529fcff9 code=0x0
[  251.347578][ T8186] tipc: Started in network mode
[  251.352725][ T8186] tipc: Node identity aaaaaaaaaa32, cluster identity 4711
[  251.360189][ T8186] tipc: Enabled bearer <eth:vlan0>, priority 10
[  251.371502][ T8186] tipc: Resetting bearer <eth:vlan0>
[  251.972717][   T25] audit: type=1804 audit(1728564382.572:34): pid=8194 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1448" name="/newroot/281/bus/file1" dev="overlay" ino=1551 res=1 errno=0
[  252.068814][ T8186] tipc: Disabling bearer <eth:vlan0>
[  253.143515][ T8220] ------------[ cut here ]------------
[  253.149497][ T8220] WARNING: CPU: 0 PID: 8220 at net/wireless/core.h:220 cfg80211_wireless_stats+0x57d/0x660
[  253.159714][ T8220] Modules linked in:
[  253.164506][ T8220] CPU: 0 PID: 8220 Comm: syz.3.1457 Not tainted 5.15.167-syzkaller #0
[  253.172845][ T8220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  253.183094][ T8220] RIP: 0010:cfg80211_wireless_stats+0x57d/0x660
[  253.189463][ T8220] Code: 00 00 65 48 8b 0c 25 28 00 00 00 48 3b 4c 24 60 0f 85 e7 00 00 00 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 73 81 c5 f7 <0f> 0b e9 3c fc ff ff e8 67 81 c5 f7 0f 0b e9 81 fd ff ff e8 5b 81
[  253.209265][ T8220] RSP: 0000:ffffc90002f878a0 EFLAGS: 00010283
[  253.215496][ T8220] RAX: ffffffff89bad8fd RBX: 0000000000000000 RCX: 0000000000040000
[  253.223772][ T8220] RDX: ffffc90005922000 RSI: 0000000000001db8 RDI: 0000000000001db9
[  253.231840][ T8220] RBP: ffffc90002f87950 R08: ffffffff89bad500 R09: ffffed1003861c15
[  253.240094][ T8220] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff888148094000
[  253.248505][ T8220] R13: ffff8880783fe000 R14: 1ffff1100f07fc00 R15: ffff8881480945c0
[  253.256633][ T8220] FS:  00007ffa141176c0(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000
[  253.265743][ T8220] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  253.272461][ T8220] CR2: 0000000020001540 CR3: 000000002235a000 CR4: 00000000003506f0
[  253.280540][ T8220] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  253.288674][ T8220] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  253.297481][ T8220] Call Trace:
[  253.300822][ T8220]  <TASK>
[  253.304224][ T8220]  ? __warn+0x15b/0x300
[  253.308679][ T8220]  ? cfg80211_wireless_stats+0x57d/0x660
[  253.315733][ T8220]  ? report_bug+0x1b7/0x2e0
[  253.322323][ T8220]  ? handle_bug+0x3d/0x70
[  253.326691][ T8220]  ? exc_invalid_op+0x16/0x40
[  253.332335][ T8220]  ? asm_exc_invalid_op+0x16/0x20
[  253.337466][ T8220]  ? cfg80211_wireless_stats+0x180/0x660
[  253.344493][ T8220]  ? cfg80211_wireless_stats+0x57d/0x660
[  253.350389][ T8220]  ? cfg80211_wireless_stats+0x57d/0x660
[  253.356506][ T8220]  ? asm_sysvec_call_function_single+0x16/0x20
[  253.363482][ T8220]  ? cfg80211_wext_giwretry+0x360/0x360
[  253.369118][ T8220]  ? seq_read_iter+0x8cc/0xd10
[  253.374730][ T8220]  ? cfg80211_wext_giwretry+0x360/0x360
[  253.381598][ T8220]  wireless_dev_seq_show+0x49/0x4a0
[  253.387086][ T8220]  ? kvmalloc_node+0x80/0x140
[  253.391871][ T8220]  ? mutex_lock_nested+0x17/0x20
[  253.397478][ T8220]  seq_read_iter+0x918/0xd10
[  253.408381][ T8220]  seq_read+0x452/0x5c0
[  253.416739][ T8220]  ? seq_open+0x140/0x140
[  253.421173][ T8220]  ? print_irqtrace_events+0x210/0x210
[  253.428791][ T8220]  ? asm_sysvec_call_function_single+0x16/0x20
[  253.438471][ T8220]  ? asm_sysvec_call_function_single+0x16/0x20
[  253.449208][ T8220]  ? seq_open+0x140/0x140
[  253.459353][ T8220]  proc_reg_read+0x1f9/0x2e0
[  253.465728][ T8220]  do_iter_read+0x4c6/0x760
[  253.472311][ T8220]  do_preadv+0x211/0x350
[  253.476584][ T8220]  ? do_writev+0x470/0x470
[  253.481531][ T8220]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  253.488780][ T8220]  ? vtime_user_exit+0x2d1/0x400
[  253.498256][ T8220]  ? syscall_enter_from_user_mode+0x2e/0x240
[  253.504509][ T8220]  ? lockdep_hardirqs_on+0x94/0x130
[  253.509786][ T8220]  ? syscall_enter_from_user_mode+0x2e/0x240
[  253.517466][ T8220]  do_syscall_64+0x3b/0xb0
[  253.521940][ T8220]  ? clear_bhb_loop+0x15/0x70
[  253.526988][ T8220]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  253.533452][ T8220] RIP: 0033:0x7ffa15cbfff9
[  253.537920][ T8220] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  253.559423][ T8220] RSP: 002b:00007ffa14117038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  253.570761][ T8220] RAX: ffffffffffffffda RBX: 00007ffa15e78058 RCX: 00007ffa15cbfff9
[  253.579517][ T8220] RDX: 0000000000000002 RSI: 0000000020001540 RDI: 0000000000000007
[  253.587657][ T8220] RBP: 00007ffa15d32296 R08: 0000000000000000 R09: 0000000000000000
[  253.595785][ T8220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  253.606445][ T8220] R13: 0000000000000000 R14: 00007ffa15e78058 R15: 00007ffdd598f518
[  253.622263][ T8220]  </TASK>
[  253.625454][ T8220] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  253.632725][ T8220] CPU: 0 PID: 8220 Comm: syz.3.1457 Not tainted 5.15.167-syzkaller #0
[  253.640853][ T8220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  253.650891][ T8220] Call Trace:
[  253.654151][ T8220]  <TASK>
[  253.657060][ T8220]  dump_stack_lvl+0x1e3/0x2d0
[  253.661716][ T8220]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[  253.667323][ T8220]  ? panic+0x860/0x860
[  253.671368][ T8220]  ? cfg80211_wireless_stats+0x57d/0x660
[  253.676980][ T8220]  ? cfg80211_wireless_stats+0x480/0x660
[  253.682597][ T8220]  ? cfg80211_wireless_stats+0x480/0x660
[  253.688227][ T8220]  panic+0x318/0x860
[  253.692110][ T8220]  ? __warn+0x16a/0x300
[  253.696243][ T8220]  ? fb_is_primary_device+0xd0/0xd0
[  253.701427][ T8220]  ? cfg80211_wireless_stats+0x57d/0x660
[  253.707034][ T8220]  __warn+0x2b2/0x300
[  253.710995][ T8220]  ? cfg80211_wireless_stats+0x57d/0x660
[  253.716603][ T8220]  report_bug+0x1b7/0x2e0
[  253.720919][ T8220]  handle_bug+0x3d/0x70
[  253.725050][ T8220]  exc_invalid_op+0x16/0x40
[  253.729530][ T8220]  asm_exc_invalid_op+0x16/0x20
[  253.734369][ T8220] RIP: 0010:cfg80211_wireless_stats+0x57d/0x660
[  253.740617][ T8220] Code: 00 00 65 48 8b 0c 25 28 00 00 00 48 3b 4c 24 60 0f 85 e7 00 00 00 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 73 81 c5 f7 <0f> 0b e9 3c fc ff ff e8 67 81 c5 f7 0f 0b e9 81 fd ff ff e8 5b 81
[  253.760211][ T8220] RSP: 0000:ffffc90002f878a0 EFLAGS: 00010283
[  253.766285][ T8220] RAX: ffffffff89bad8fd RBX: 0000000000000000 RCX: 0000000000040000
[  253.774263][ T8220] RDX: ffffc90005922000 RSI: 0000000000001db8 RDI: 0000000000001db9
[  253.782239][ T8220] RBP: ffffc90002f87950 R08: ffffffff89bad500 R09: ffffed1003861c15
[  253.790194][ T8220] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff888148094000
[  253.798174][ T8220] R13: ffff8880783fe000 R14: 1ffff1100f07fc00 R15: ffff8881480945c0
[  253.806137][ T8220]  ? cfg80211_wireless_stats+0x180/0x660
[  253.811755][ T8220]  ? cfg80211_wireless_stats+0x57d/0x660
[  253.817374][ T8220]  ? asm_sysvec_call_function_single+0x16/0x20
[  253.823513][ T8220]  ? cfg80211_wext_giwretry+0x360/0x360
[  253.829036][ T8220]  ? seq_read_iter+0x8cc/0xd10
[  253.833777][ T8220]  ? cfg80211_wext_giwretry+0x360/0x360
[  253.839307][ T8220]  wireless_dev_seq_show+0x49/0x4a0
[  253.844487][ T8220]  ? kvmalloc_node+0x80/0x140
[  253.849145][ T8220]  ? mutex_lock_nested+0x17/0x20
[  253.854064][ T8220]  seq_read_iter+0x918/0xd10
[  253.858641][ T8220]  seq_read+0x452/0x5c0
[  253.862776][ T8220]  ? seq_open+0x140/0x140
[  253.867079][ T8220]  ? print_irqtrace_events+0x210/0x210
[  253.872516][ T8220]  ? asm_sysvec_call_function_single+0x16/0x20
[  253.878650][ T8220]  ? asm_sysvec_call_function_single+0x16/0x20
[  253.884788][ T8220]  ? seq_open+0x140/0x140
[  253.889095][ T8220]  proc_reg_read+0x1f9/0x2e0
[  253.893668][ T8220]  do_iter_read+0x4c6/0x760
[  253.898167][ T8220]  do_preadv+0x211/0x350
[  253.902403][ T8220]  ? do_writev+0x470/0x470
[  253.906826][ T8220]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  253.912787][ T8220]  ? vtime_user_exit+0x2d1/0x400
[  253.917708][ T8220]  ? syscall_enter_from_user_mode+0x2e/0x240
[  253.923668][ T8220]  ? lockdep_hardirqs_on+0x94/0x130
[  253.928845][ T8220]  ? syscall_enter_from_user_mode+0x2e/0x240
[  253.934807][ T8220]  do_syscall_64+0x3b/0xb0
[  253.939201][ T8220]  ? clear_bhb_loop+0x15/0x70
[  253.943853][ T8220]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  253.949724][ T8220] RIP: 0033:0x7ffa15cbfff9
[  253.954118][ T8220] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  253.973701][ T8220] RSP: 002b:00007ffa14117038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  253.982092][ T8220] RAX: ffffffffffffffda RBX: 00007ffa15e78058 RCX: 00007ffa15cbfff9
[  253.990040][ T8220] RDX: 0000000000000002 RSI: 0000000020001540 RDI: 0000000000000007
[  253.997990][ T8220] RBP: 00007ffa15d32296 R08: 0000000000000000 R09: 0000000000000000
[  254.005941][ T8220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  254.013887][ T8220] R13: 0000000000000000 R14: 00007ffa15e78058 R15: 00007ffdd598f518
[  254.021844][ T8220]  </TASK>
[  254.025107][ T8220] Kernel Offset: disabled
[  254.029689][ T8220] Rebooting in 86400 seconds..