last executing test programs:

13m28.373456184s ago: executing program 2 (id=3):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r2, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r2, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4)

13m28.162445461s ago: executing program 2 (id=6):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x4, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000080)='task_rename\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000080)='task_rename\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x10, 0x4, 0x8, 0x7, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000940)={{r4}, &(0x7f00000008c0), &(0x7f0000000900)=r3}, 0x20)

13m28.013517053s ago: executing program 2 (id=7):
syz_mount_image$msdos(&(0x7f0000000480), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f00000004c0)=ANY=[@ANYRES64=0x0, @ANYRESOCT, @ANYRES32, @ANYRES16, @ANYRES32], 0x1, 0x159, &(0x7f0000000500)="$eJzs27HK01AUB/ATv6hVl87iEHBxKuoTKFJBDChKB4uDQnVppWCX6NRH8YV8FEE6dbuiKbXWVigYY7/+fksP/Sdw7pCc3EBe3Xg3Hk1nb6dPF9HJssjvRRHLLLpxIc6iNg8A4DxZphRfU0rp8jyufIqUUtsdAQBNM/8B4PSY/wBwev40/7ttNgYANOb5i+Hj+2XZf1YUnYgv82pQDerfOn/4qOzfLn7YeBxYVNXgbJ3fqfPi1/xiXF3ld3fml+LWzTr/nj14Um7l12LU/PIBAADgJPSKtZ37+16++uu3vK423g9s7d/zuJ7/kyUAAAeaffg4fj2ZvHmvUBxBMcwi/oM2jq/4/DLioLPavjMBTft50bfdCQAAAAAAAAAAAAAAsM/f+sAoj4h9x7S9RgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANj2LQAA//+EAU2W")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000180)='./bus\x00', 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x8005, 0x0, 0x0, 0x19, 0xd, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x8]})
renameat2(r0, &(0x7f0000000380)='./file0\x00', r0, &(0x7f0000000200)='./bus/file0\x00', 0x0)

13m27.508668714s ago: executing program 2 (id=8):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=@base={0x12, 0x4, 0x4, 0x12}, 0x50)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)=ANY=[@ANYRES32=r1, @ANYRES32=r0, @ANYRES16=r1], 0x10)
close(r0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000580)={{r1, <r3=>0xffffffffffffffff}, &(0x7f0000000500), &(0x7f0000000540)=r0}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000d80)={{r3}, &(0x7f0000000d00), &(0x7f0000000d40)=r0}, 0x20)

13m26.981779587s ago: executing program 2 (id=9):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha3-224\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
recvmmsg$unix(r3, &(0x7f0000003700)=[{{0x0, 0x700, 0x0, 0x0, 0x0, 0x500}}], 0x600, 0x0, 0x0)

13m26.56388903s ago: executing program 32 (id=9):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha3-224\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
recvmmsg$unix(r3, &(0x7f0000003700)=[{{0x0, 0x700, 0x0, 0x0, 0x0, 0x500}}], 0x600, 0x0, 0x0)

11m9.507767695s ago: executing program 5 (id=762):
r0 = socket$netlink(0x10, 0x3, 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r1)
socket$inet6_udp(0xa, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYRES32=r4, @ANYBLOB="05"], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r3, <r5=>0xffffffffffffffff}, &(0x7f00000006c0), &(0x7f0000000700)=r2}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000800)={{r5}, &(0x7f0000000780), &(0x7f00000007c0)=r1}, 0x20)
close_range(r0, 0xffffffffffffffff, 0x0)

11m9.208230949s ago: executing program 5 (id=765):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
close(0x3)
r1 = socket(0x2, 0x80805, 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r2, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000200)={<r3=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r2, 0x84, 0x7a, &(0x7f0000000340)={r3, @in6={{0xa, 0x3, 0x4, @mcast1}}}, &(0x7f0000000040)=0x84)
sendmmsg$inet_sctp(r1, &(0x7f00000032c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="30000000000000008400000001000000000000017c"], 0x30}], 0x1, 0x0)
setsockopt(r0, 0x84, 0x80, &(0x7f0000000080)="1a4f30d089f5bd5b", 0x8)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r0, 0x84, 0x5, &(0x7f00000000c0)={0x0, @in6={{0xa, 0x4e21, 0x8, @remote, 0x1000}}}, 0x84)

11m8.935783901s ago: executing program 5 (id=769):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x48, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
shmdt(0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0xfffffffffffffffe)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x5}, 0x2f)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x15, 0x1c, &(0x7f0000000000)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r2}, {}, {0x7, 0x0, 0xb, 0x6, 0x0, 0x0, 0x5}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0x6, 0x9}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x5, 0x1, 0xa, 0x9, 0x9}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x7, 0x0, 0xc}, {0x18, 0x6, 0x2, 0x0, r1}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

11m6.308171193s ago: executing program 5 (id=778):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
open_tree(r0, &(0x7f0000000640)='\x00', 0x89901)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

11m6.063728802s ago: executing program 5 (id=779):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008f50850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
write$cgroup_type(r1, &(0x7f0000000180), 0x40001)
openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001f80)=ANY=[@ANYBLOB="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"/2832], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff4f}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r2, 0x18000000000002a0, 0xe, 0x26f9, &(0x7f0000000040)="76389e147583ddd0569ba56a5cfd", 0x0, 0x14000, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

11m5.575845321s ago: executing program 5 (id=783):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000200)=0x1, 0x4)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000580)={'batadv_slave_0\x00', <r2=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4)
bind$xdp(r0, &(0x7f0000000100)={0x2c, 0xa, r2}, 0x10)
r3 = syz_io_uring_setup(0x110, &(0x7f0000000200)={0x0, 0xfecb, 0x100, 0x5, 0x3d4}, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r3, 0xdb4, 0x0, 0x0, 0x0, 0x0)

11m4.289361955s ago: executing program 33 (id=783):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000200)=0x1, 0x4)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000580)={'batadv_slave_0\x00', <r2=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4)
bind$xdp(r0, &(0x7f0000000100)={0x2c, 0xa, r2}, 0x10)
r3 = syz_io_uring_setup(0x110, &(0x7f0000000200)={0x0, 0xfecb, 0x100, 0x5, 0x3d4}, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r3, 0xdb4, 0x0, 0x0, 0x0, 0x0)

10m49.995901457s ago: executing program 1 (id=849):
unshare(0x68040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0xfffff000)
writev(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
bind$phonet(r1, &(0x7f0000000040)={0x23, 0x14}, 0x10)
bind$phonet(r0, &(0x7f0000000000)={0x23, 0x4}, 0x10)
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000080)={'syzkaller1\x00', @link_local})
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
bind$phonet(r3, &(0x7f0000000040)={0x23, 0x4, 0x2}, 0x10)

10m48.752715407s ago: executing program 1 (id=854):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
fstat(r1, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
setreuid(0x0, r2)
bind$inet(r0, &(0x7f0000000380)={0x2, 0x4e22, @multicast1}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x800000000f, &(0x7f0000000080)=0x7, 0x4)
listen(r0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r3, 0x29, 0x1a, &(0x7f0000000100)=0x401, 0x4)
setsockopt$sock_int(r3, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
bind$inet6(r3, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @empty, 0xffffffff}, 0x1c)

10m48.526464916s ago: executing program 1 (id=856):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='rxrpc_recvmsg\x00', r1}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='rxrpc_recvmsg\x00', r3}, 0x18)
r4 = socket$kcm(0x21, 0x2, 0x2)
recvmsg$kcm(r4, &(0x7f0000001a80)={0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0)

10m47.590896801s ago: executing program 1 (id=870):
socket$inet_smc(0x2b, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x9}, 0x1c)
listen(r0, 0x3)
syz_emit_ethernet(0x4a, &(0x7f00000003c0)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$netlink(r1, &(0x7f0000001f80)={0x0, 0x0, &(0x7f0000001f00)=[{&(0x7f0000002840)={0x114, 0x27, 0x1, 0x0, 0x0, "", [@nested={0x101, 0x0, 0x0, 0x1, [@generic="24d4e3455c7216da3484447f8a081f930884b55764ca84de3d0e7bc8d6f29cd84ba9408cf2351604f1724e10a8fcc3988de886d82375980e92a1ba2f8410b06773cbbf6293af17222761aa1289e6a8f1d888f4809cdccfe1c8695630dcb6bad9b53d1d97f2f820a715ce709fcaa40a70dc4c98ebbe761c0eec46d4f50508215e72fc781a471b1a7c769a074f2d6388253cfdd4b0e37a788fbb7296ae39bb35439c66437fa3347adfaca46f74fbc95f1b070287096cc9bdc953ea637c118a68a8ddc03aa44e8aa8ca5dac063a05", @typed={0x2d, 0x0, 0x0, 0x0, @binary="8bb982eb4ec7e08b552a2807c00bbfbbb5369dd1e04690a1267e29e89d27673db50050419e278e6130"}]}]}, 0x114}], 0x1}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f00000000c0)={@local, @dev, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x5}}}}}}}, 0x0)

10m46.6134674s ago: executing program 1 (id=862):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x88200200, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x220)
setpgid(0x0, r0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x10)
creat(&(0x7f00000001c0)='./file0\x00', 0x8)

10m45.979200341s ago: executing program 1 (id=866):
r0 = gettid()
timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x300000a, 0x4031, 0xffffffffffffffff, 0x0)
openat$drirender128(0xffffffffffffff9c, &(0x7f00000001c0), 0x400, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x5})
ioctl$UFFDIO_REGISTER(r1, 0xc020aa07, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1, 0x2})

10m30.85177429s ago: executing program 34 (id=866):
r0 = gettid()
timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x300000a, 0x4031, 0xffffffffffffffff, 0x0)
openat$drirender128(0xffffffffffffff9c, &(0x7f00000001c0), 0x400, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x5})
ioctl$UFFDIO_REGISTER(r1, 0xc020aa07, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1, 0x2})

18.68398126s ago: executing program 0 (id=2663):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6, 0xff, 0x7, 0x7fc00002}]})
syz_clone3(0x0, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x1, 0x32, 0x0, 0xffffd000)
syz_clone3(&(0x7f0000000340)={0x801400, &(0x7f0000000040)=<r1=>0xffffffffffffffff, 0x0, 0x0, {0x19}, 0x0, 0x0, 0x0, 0x0}, 0x40)
close(r1)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000500)={<r2=>0x0})
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x40000, 0x0)
fcntl$notify(r3, 0x402, 0x8000001c)
mkdirat(r3, &(0x7f0000000080)='./file1\x00', 0x74)
open(&(0x7f0000000200)='./file1\x00', 0x18080, 0x78e22799f4a46f88)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, &(0x7f0000000100)={r2, 0x1, r0, 0x0, 0x80000})
socket$inet6_udp(0xa, 0x2, 0x0)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_int(r4, 0x29, 0x17, &(0x7f0000000100)=0x14, 0x4)
r5 = socket$inet6(0xa, 0x1, 0x6)
getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r5, 0x84, 0x1e, &(0x7f0000000000), &(0x7f0000000040)=0x4)

16.285298313s ago: executing program 0 (id=2668):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x200000000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000002c0)=ANY=[@ANYRES32=r6, @ANYRES32=r5, @ANYBLOB='&\x00\x00'], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r6}, &(0x7f0000000000), &(0x7f0000000080)=r3}, 0x20)
sendmsg$inet(r4, &(0x7f0000000500)={0x0, 0x4003e80, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x20000281}], 0x1}, 0x0)

16.272359094s ago: executing program 7 (id=2669):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000002900)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000010, &(0x7f00000022c0)=ANY=[], 0x1, 0x6ca, &(0x7f0000000500)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='ns\x00')
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r3, &(0x7f0000000000)={0xa, 0x0, 0x1, @empty, 0x0, 0x3}, 0x20)
connect$l2tp6(r3, &(0x7f0000000f40)={0xa, 0x0, 0x0, @empty}, 0x20)
sendmmsg$inet6(r3, &(0x7f0000000ac0)=[{{&(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1b, 0x0}}], 0x17fd147c801ae9af, 0xff14)

14.135020567s ago: executing program 0 (id=2672):
syz_open_dev$dri(0x0, 0x40100001, 0x189002)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000c80)={&(0x7f0000000bc0)=ANY=[], &(0x7f0000000c40)=""/3, 0x26, 0x3, 0x1, 0x1}, 0x28)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, 0x0)
r4 = fanotify_init(0xf00, 0x1000)
fanotify_mark(r4, 0x105, 0x5000003a, r3, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./bus\x00', 0x42, 0x0)

12.509549758s ago: executing program 7 (id=2674):
socket$inet6_sctp(0xa, 0x801, 0x84)
openat$nullb(0xffffffffffffff9c, 0x0, 0x180, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
r0 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
write$dsp(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r1, &(0x7f0000000580)={0x1f, @none}, 0x8)
setsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x0)
ioctl$IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, 0x0)
socket$igmp6(0xa, 0x3, 0x2)

12.507859539s ago: executing program 0 (id=2675):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="f9c81d47136d376f0ec8f4513060d2e8ce32b7f8b4"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x46, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
ptrace$getsig(0x4202, r0, 0x6, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xb, 0x1f, 0x2, 0xbf22, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000300), &(0x7f0000000400), 0x401, r3, 0x0, 0xa002a0}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0xfffffffe, r3, 0x0, 0x1500}, 0x38)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_SAVE(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, 0x8, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0)

10.921894517s ago: executing program 0 (id=2678):
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_procfs(0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000040000000600000080"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000340), &(0x7f0000000340), 0x619, r4}, 0x38)

9.648990429s ago: executing program 4 (id=2680):
syz_mount_image$hfsplus(&(0x7f00000001c0), &(0x7f0000000400)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x4040, &(0x7f0000000040)=ANY=[@ANYRES64=0x0, @ANYRESHEX=0xee01, @ANYBLOB=',barrier,nls=iso8859-15,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c706172743d30783030303030303030372c706172743d3078303030303030303030303030303030322c00ff166d65d16cfb932fb90a29e03c152d6c0cfbf1abebad4cfe2772666948ba92ded3acb6b70084f4de9608826455015212635cbdff8cf6e1485ab9413b3b2086c5c49f7500a0d801dcec1bce"], 0x20, 0x6fe, &(0x7f0000000c00)="$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")
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x8010)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000000)='./file2\x00', 0x800008, &(0x7f0000000540)=ANY=[@ANYBLOB='de=0x00000000800000b1,norock,overriderockperm,gid=', @ANYRESHEX=0x0, @ANYBLOB=',mode=0x0000000000000401,norock,showassoc,hide,hide,norock,gid=', @ANYRESHEX=0x0, @ANYBLOB=',mode=0x0000000000001000,check=strict,iocharset=cp949,cruft,uid=', @ANYRESHEX=0x0, @ANYBLOB=',\x00'], 0xff, 0xa4a, &(0x7f00000007c0)="$eJzs3c1vHOd9B/DvLEmJoV1JcVTXFRxxJVcK47AUSdVSBR9SiVxJTPlSkBRgoYcojahCEFu3cQs4RoEoQNFTjBZo0UN7M3rqyUAuTQ+FL0V7a049FCj8LwQ9qScGM7skl+Qul2IoklY+H2J35+U3z/PMyzMPd3d2nvDFsnZ6y9jaWvXY5/i9fz6EEnOM3Zr+/JNPPy4fP3yaE+nLO8W/JINJ6kl/kjeSganpxYW5Hgk9SR4k+SwpkpxM83VPHqT467y6Of5Zin8s8+3qxF5Tppc1fqkd9fEHAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADHUTE1PT4+UZzIzPy99+pNSX2HqenFhSJrazvnrC/T9JOq1+/iJz3zTYrykcHB9a6+3zi7Ofv1JPWLebM59mbVIXkG89Err5959yv9tfXlu5XmF3Jy78l+8P2PnnxndXXlex3nFsUBluqYaR4jdxrzM0sLM3M37zTqM0sL9RvXro1fuXt7qX57ZraxdH9puTFXn1ps3FxeWKyPTH29PnHjxtV6Y+z+wr35O9Njs431idd/c3J8/Fr9W2O/17i5uLQwf+VbY0tTd2dmZ2fm71Qx5ewy5np5IP7uzHJ9uXFzrl5/9Hh15eq2kvVl2/FbBk30Wp8yaLJX0OT45OTExOTkxA9bvWdvTLj2zo13ro+P9483vZrWQHZEvKCDluPlS91388GfxGGfas32P5nNTOZzL++l3vFvKtNZzELmusxvWW//L11p7Jpt2tr/Vivf3zb/XPl0Medbo4Nd2v8uZTm8vw/y/XyUJ/lOVrOalXzvyEt0uH930sh8ZrKUhcxkLjerKfXWlHpu5FquZTzfzt0MZyn9uZ2ZzKaRpdzPUpbTqI6oqSymkZtZzkIWU89IpvL11DORG7mRq6mnkbHcz0LuZT53Mp2bVSqP8rja7ld3KeNG0MRegiZ3CdrRmHdr/zdsX6Sx/Z8TXkK1XffyCziLw/6stdr/E71DR6YOo0AAAADAgfv1/8yps6/9x/8mRb5afS9/e2a2MX7UxQIAAAAOUHW53pvly0A59NUU3v8DAADAy6aofmNXJBnKcHNo/ZdQPgQAAACAl0T1/f/5FMObE7z/BwAAgJdM73vs94woRtdv/1t/2Hx92IpojhVDt2dmG2NTC7PvTuRydZeB6pcGO1LrS4qB6ucHb+dCM+rCUPN1aDPFMs/BMmpi7N2JvJ2LrRUZeat8eWukQ+RkM/JrzcivtUf2ZUvk1TISAF52F3dpj/fa/r+d0WbE6Lmqye8/t6UN7qta1nEtKwAcFxt97Px/q0uzDu3/+ea9Ac53a/9/a5f3/2XEa3k03LykYCzfzftZzcOMpnXFwXCnVNd7I2hehjDa49OAodYlCz+9Xsvojs8DBjfWtT12JZMZ7fiJQFu6xXoZrjbj+l7UXgCAw3Vx13Z4vf2vPiTv2v6P7v7+v63NdUkhABwHGz3YP+/A8N6Dj3odAYCttNIAAAAAAAAAAAAAAAAAAAAAAAAAAABw8PZ0A///upysrq4k++0soMPAT//9X3+la8yPXkkGn6eEuw/UcjBlPv4DfUmOKvdv5rmXKvfxcdl0L9NA8bSqsL9QOkd8YgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBQFElfp+m15GSS8SRXDr9UL87Toy7AQanvb7HiWZ7lw5w66OIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPyya93/v5bm6yvNSemvJZeSPEjy+0ddxucx2GP+s0Mqx/HzR9Vz2/3/a8lA1or0Z21tbS0pBqamFxfmykOhOFnO//yTTz8uH12T/MH6wM5eFcoEyhy2dC7RyqFtysDWpb5cLTU0vfLBkz97/0/q07eqA/PW8u3Z6bk7i7+zGfh68eNmFwjt3SCsl/cvLv3b37RNPtHK/Mfp77Yi2/O9XeU7vTPfX+u0dJd89+Dx6spkmdNy473lP//jWvus13IheWskGdma0x+Wjy45Xdi+Pbcqflb8VXEqf58H1f4vt0axVpS76HS1/l969Hh1Zey7768+3CjTDx5/2JbAmQwnebi1lvUo03B1PunolSrXgTLX8SqofDrbI71dtaU4sbldt6zDl6tDZui51qHefR0qPbZ7q0RXt5dorawkf/unX8nlXff0yQ4pXu6RY0fFz4r/Ke7mv/OXbf1/1Mr9fykda2eHJKrItiOlfd6W6lW7tLnmk+0zvr09za61khfgR/mD/PbG/q9V5//2ejPZpd5snI++2TaxS71Zr1pd6sXJrTV1R71o6VUvdtbUfzq9o0XZmmvObmuRWmefbsu0ynm2GdWlnL+abyT9557rjPKNHmeUXsvvt/7/QzGS/8tT/f8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADHX5H0dZpeSy4lOZPkdDleT9a2xzzdR361oWI/xTww+ynzF0/RdUWLZ3mWD3PqsEsEAAAAAAAAwItxa/rzTz79uHxU38f35TdqrTn1pD/JmeLvBqamFxfmeiQ0kDxY/0p/sHNIl8l5UD69ujn+WTn2Ro/8jvbyAQD4Qvt5AAAA//9B+m/L")
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x1, 0x5, 0x29fd, 0x84, 0x105}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r3}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000100)={0x0, &(0x7f0000000040)=""/129, &(0x7f0000000680), 0x0, 0x6c, r3}, 0x38)

8.746888963s ago: executing program 7 (id=2683):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE2(0xffffffffffffffff, 0xe, &(0x7f0000000bc0)={0x4, 0x0, &(0x7f0000000b00), 0x0}, 0x20)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000580), 0xa, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_procfs(0x0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000001a80)=@filter={'filter\x00', 0x42, 0x4, 0x2d8, 0xffffffff, 0xf8, 0x0, 0x0, 0xffffffff, 0xffffffff, 0x240, 0x240, 0x240, 0xffffffff, 0x4, 0x0, {[{{@ip={@rand_addr, @loopback, 0x0, 0x0, 'veth0_to_batadv\x00', 'wlan0\x00', {}, {}, 0x73}, 0x0, 0xd0, 0xf8, 0x0, {0x100000000000000}, [@common=@inet=@l2tp={{0x30}, {0x0, 0x0, 0x3, 0x0, 0x5}}, @common=@unspec=@connmark={{0x30}}]}, @REJECT={0x28}}, {{@uncond, 0x0, 0x70, 0x98}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x7}}}, {{@ip={@private, @loopback, 0x0, 0x0, 'batadv_slave_0\x00', 'dvmrp0\x00'}, 0x0, 0x70, 0xb0}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x338)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000001040)={0x0, 0x0, &(0x7f0000001000)={&(0x7f0000000380)=@newtfilter={0x40, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, r4, {0xffff, 0x7}, {}, {0xa}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x10, 0x2, [@TCA_CGROUP_EMATCHES={0xc, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xd8}}]}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x4044841}, 0x20000000)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x70800, 0x20)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWCHAIN={0x14, 0x3, 0xa, 0x801, 0x0, 0x0, {0x1}}], {0x14}}, 0x3c}, 0x1, 0x0, 0x0, 0x2000c045}, 0x0)

7.568450008s ago: executing program 4 (id=2684):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000400)=ANY=[], 0x8)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000240)='bridge0\x00', 0x10)
write(r0, &(0x7f00000000c0)="8f2a0a65bd8c3a2b", 0x8)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000240)='//\xf2/\x06\b/\xdf/o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x5e)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000480)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x40012020, 0x1, {0x2}})
mount(&(0x7f0000000040)=@nullb, &(0x7f0000000100)='.\x00', &(0x7f0000000000)='iso9660\x00', 0x1000080, 0x0)
r2 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$sock_int(r2, 0x1, 0xa, &(0x7f0000000080)=0x4, 0x4)
ioctl$sock_SIOCINQ(r2, 0x541b, &(0x7f0000000000))
openat$vhost_vsock(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)

7.268744682s ago: executing program 4 (id=2686):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
open_by_handle_at(0xffffffffffffffff, 0x0, 0x1)
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x60, 0x2, 0x6, 0x3, 0x0, 0x0, {0x0, 0x0, 0x7}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_MAXELEM={0x8, 0x13, 0x0}, @IPSET_ATTR_HASHSIZE={0x8}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000}, 0x20004000)

6.67984946s ago: executing program 3 (id=2688):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r4, 0x0, 0x1e0000}, 0x18)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'trusted:', 'syz', 0x20, 0xe8c}, 0x2d, 0xfffffffffffffff9)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
keyctl$instantiate(0xc, 0x0, 0x0, 0x20, 0xfffffffffffffffd)
add_key(&(0x7f0000000140)='encrypted\x00', 0x0, &(0x7f0000000100), 0x0, 0xfffffffffffffffe)
sendmsg$nl_xfrm(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000800)=@newsa={0x148, 0x10, 0x1, 0x0, 0x0, {{@in=@private, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x16}, {@in6=@loopback, 0x4d2, 0x6c}, @in=@local, {0x0, 0x0, 0x0, 0x1}, {}, {}, 0x0, 0x0, 0x2, 0x1}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}, @replay_val={0x10, 0xa, {0x70bd26, 0x70bd2a, 0x200}}]}, 0x148}}, 0x0)

6.604977596s ago: executing program 6 (id=2689):
r0 = socket$inet(0x2, 0x3, 0x4)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone3(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$rdma_cm(0xffffff9c, &(0x7f00000001c0), 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
setregid(0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x20000000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, 0x0, 0x0, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='ip6_vti0\x00', 0x10)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @private=0xa010100}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000f40)=[{{&(0x7f0000000040)={0x2, 0x0, @broadcast}, 0x10, 0x0}}], 0x68000, 0xe000)

5.952911708s ago: executing program 4 (id=2690):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$ARCH_SHSTK_DISABLE(0x1e, r0, 0x1, 0x5002)
ptrace$ARCH_SHSTK_ENABLE(0x1e, r0, 0x1, 0x5001)
ptrace$ARCH_SHSTK_UNLOCK(0x1e, r0, 0x1, 0x5004)
ptrace$getregset(0x4204, r0, 0x204, &(0x7f0000000040)={&(0x7f0000000080)=""/28, 0x8})
ptrace$setregset(0x4205, r0, 0x204, &(0x7f00000000c0)={&(0x7f0000000100)='LLLLLLLLLLLLLLLLLLLLLLLLLLLL', 0x8})

5.735906576s ago: executing program 3 (id=2691):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)
r4 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e27, 0xffffffff, @mcast2, 0x7}, 0x1c)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x70bd2d, 0x0, {{@in6=@loopback, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xc, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x407ffffffffffe, 0x800000000000002}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in=@local, 0x0, 0x3c}, 0x2, @in=@broadcast, 0x6, 0x4, 0x3}]}]}, 0xfc}}, 0x0)
sendmmsg$inet6(r4, &(0x7f0000003cc0)=[{{0x0, 0x0, 0x0}}], 0x20, 0x4001c00)

5.098950817s ago: executing program 6 (id=2692):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
close(0xffffffffffffffff)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TCSBRKP(r3, 0x5425, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCGPGRP(r3, 0x5437, 0x0)

4.107559687s ago: executing program 3 (id=2693):
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
arch_prctl$ARCH_SHSTK_DISABLE(0x5002, 0x2)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
r4 = socket$inet(0x2, 0x2, 0x0)
r5 = memfd_create(&(0x7f0000000b40)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6\xb5\x00\x83y\xf3\xb2\xe6b \x00\x00\x00\x00\x00\x00\x01\x00\x00\xf7\xffg\xf5\x12oP\xfe\xe6\xd2SLR\xa1\x00\x00\x17\x1f$^\xe1\x00\x00\x00\x00\x00\x00\a\xff;\xeb\xf1\xd0\xce\xe5\x19\x12\b\x01\xd9\xae>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xdcc\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0D\x93.\xf25\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x05\x00\xfd\xc7\x00\x00\x00\x00\x91\x98\x15\xec\xdb\xaa\t9\x11\xb4h$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{a?\xd0\xe1{\x84\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3J\xc2t\x96\xf8\xb1\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6Pr\xd4\xb5X\\\xdbD\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xba\xce\xb3%QF\x03\b\x9dh\xcb)\xf4f\x12[\xf9\r\t\xef{h\xb0\xc0:\x8f|\x8f\x06\xf8T\x826`M\x11\x1c\xb0*8\v\x1e\xcf\x03\xd3\xe8,?P\xac\x86\x13b\xa8D\x0f\x93\xab\x1c\x11\x00\xc5\x8d\x82\x9c\xd6B[\xc9\x00\xf5]\x81\xf3\xfd\x06M\xbe\xf9\xba\x9em\xe9\"\x03\x933P\x9b\xcc\x9b\f\xa7\x8f9\x988\tgC\xbc\xe0\xc5\xf4\xe0E%\xd9\xd8w\x00k\x042Y\xd9\xc5\xe59\xa95\xd1m\xd8hCuZYi\x10D\xb9\xe6\xff\x04K%yH\xe5\xf4\x8b\x03Ca8\x1e\xe9\\#\xf8O\fw\xd9\xf5cF\xcc\x1a2ex\xb4\x0fi$\x97\x81.\x02\x04m\xfbT2\xd4\"\x1e\xf0\x16\x0f\x97\xe6j}J\xca\xb8)f\xd5\xfd>\x9bU\xb0\x03Zt0\xc0b\xad\xef@o\xc1\xd6\x17T\f\xc30\xe2\x89\xf6L\x1b1\x9c\t\xa7\x80\x1b:\xbb\x04\xd7\xd1\x06\xa0\xe9\xbah\xb6\xb2\xea/{Q\xca\x14\x13\x9ajWt\xc9\xecd\r\xd5)\x1d\xaf\n\xc0\xc1\x1d}DY\x95&\xe7\xf4U\xff\xcd&\a\x9f\x1bg\xe5|~\xc1\xc5n\x12%ur\xa1\x9e`\xc2\x01\b,\x18\xaf\xccD\xdeag\xc6\xf3\xd6\x94\x9d\xae\x8bl\xee\x7fu\xe5bu\x84\x04\xb3@\xa1\xf7\xc6\x13\xf9I\xfa\x12\xfc\x96\",aT\xfd\"\x01\x92\xb1\xbf\x8a\x15\x88\xfd\x8f\x88\x87\x82\x9c:L\xd2\xb8\xfa5\x066\x82\xf3_LUr\xfa\xd2\x99d \x97c9G\x99\xe3\xcc$\x96cu\x97\xe7\xc7a\tm\xe8F\xc7j\xf8\x98\x81\xe7\xf7\xab3F\xf4u\xdaav\xd21\v\x99HG\xdfx\x1cPl\t#\xc1\x8e\xddW\x00'/668, 0x6)
fcntl$addseals(r5, 0x409, 0xc)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x208, 0xb8, 0x8, 0xfa04, 0xb8, 0x6c02, 0x170, 0x194, 0x194, 0x170, 0x194, 0x3, 0x0, {[{{@ip={@multicast2, @broadcast, 0x0, 0x0, 'veth0_to_hsr\x00', 'veth0_virt_wifi\x00', {}, {}, 0x6}, 0x0, 0x90, 0xb8, 0x0, {0x0, 0x74020000}, [@common=@socket0={{0x20}}]}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0xffff}}}, {{@ip={@multicast2, @dev, 0x0, 0x0, '\x00', 'tunl0\x00'}, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'snmp\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x268)

2.935892962s ago: executing program 6 (id=2694):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000001500)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
lseek(r4, 0x800, 0x3)
socket$nl_route(0x10, 0x3, 0x0)
syz_clone(0x2001100, 0x0, 0x0, 0x0, 0x0, 0x0)

2.935565012s ago: executing program 4 (id=2695):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r2=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x73, 0x11, 0x3e}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0xb7}, @exit={0x95, 0x0, 0xc2}], {0x95, 0x0, 0x1200}}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb}, 0x70)
r3 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r3, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_mreq(r4, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8)
syz_emit_ethernet(0x3e, &(0x7f0000000040)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x3d}, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x20, 0xfc, 0x2, 0x0, @rand_addr=0x1c, @multicast1=0xe0000300}, @dest_unreach={0x3, 0x6, 0x0, 0x0, 0xfa, 0x9, {0x5, 0x4, 0x0, 0x3d, 0xfff6, 0x65, 0x5, 0x1, 0x4, 0x3, @private=0xa010102, @local}}}}}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a48000000060a0b040000000000000000020000001c0004801800018008000100647570000c00028008000140000000ff0900010073797a30000000000900020073797a32"], 0x70}}, 0x0)
r6 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r6, 0x0, 0xca, &(0x7f0000000140)={0x1, 0x1, 0x4, 0x5, @vifc_lcl_addr=@remote, @loopback}, 0x10)
bind$packet(r0, &(0x7f00000000c0)={0x11, 0xf8, r2, 0x1, 0x0, 0x6, @remote}, 0x14)
r7 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000040)="2e00000011008188040f80ec59acbc0413a1f8480b000000", 0x18}, {&(0x7f00000000c0)="bc588bb49cff7d081d465efc09c57bbfb7b83fa6366c", 0x16}], 0x2}, 0x0)

2.892053286s ago: executing program 3 (id=2696):
preadv2(0xffffffffffffffff, &(0x7f0000000200)=[{0x0}], 0x1, 0x1, 0x7fff, 0x1a)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2400c800)
socket$nl_netfilter(0x10, 0x3, 0xc)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x25000, 0x0, 0x0, 0x0, 0x0, 0x0)
creat(&(0x7f0000000440)='./file0\x00', 0x0)

2.8390313s ago: executing program 7 (id=2697):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendto$inet6(0xffffffffffffffff, &(0x7f00000001c0)='O', 0x1, 0x80, &(0x7f0000000280)={0xa, 0x0, 0x0, @private2}, 0x1c)
r3 = socket$kcm(0x2, 0x1, 0x84)
setsockopt$sock_attach_bpf(r3, 0x84, 0xd, 0x0, 0x0)
openat$full(0xffffffffffffff9c, &(0x7f00000000c0), 0x109000, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000980), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_RESET_STATS(r4, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f00000009c0)={0x14, r5, 0x1, 0x70bd28, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x20040004}, 0x40000c0)

1.591436841s ago: executing program 7 (id=2698):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000002c0), 0x0, 0xd5b1, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100), 0x2, 0x500, &(0x7f0000000500)="$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")
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mkdir(&(0x7f0000000100)='./bus\x00', 0xe8)
chdir(&(0x7f00000001c0)='./bus\x00')
r0 = creat(0x0, 0xa)
fadvise64(r0, 0x3, 0x5, 0x1)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@nfs_export_on}]})
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x1000, 0x7)
linkat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file1\x00', 0xffffffffffffff9c, &(0x7f00000003c0)='./file0/file2\x00', 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x40000, 0x120)
getdents64(r1, &(0x7f0000000480)=""/240, 0xffb3)

1.589519641s ago: executing program 6 (id=2699):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x40, 0x0, 0xd0060)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffb000/0x4000)=nil)
read$qrtrtun(0xffffffffffffffff, &(0x7f00000004c0)=""/57, 0x39)
fsopen(0x0, 0x1)
read$FUSE(0xffffffffffffffff, &(0x7f0000002140)={0x2020}, 0x2020)
shmctl$IPC_RMID(r3, 0x0)
mount(&(0x7f00000000c0)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000000)='iso9660\x00', 0x208000, 0x0)

1.431371974s ago: executing program 3 (id=2700):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c0000003a000b89"], 0x1c}}, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000300)=ANY=[@ANYBLOB="aaaaaaaaaaaabfee05"], 0x0)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

538.068296ms ago: executing program 6 (id=2701):
socket$inet6(0xa, 0x3, 0x8000000003c)
socket$inet6(0xa, 0x3, 0x8000000003c)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet_udp(0x2, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xe, 0x4, 0x8, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r4}, &(0x7f0000000240), &(0x7f00000003c0)=r6}, 0x20)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000040)={r5, r2, 0x25, 0x0, @val=@tcx={@void, @value=r5}}, 0x1c)
syz_emit_ethernet(0x82, &(0x7f0000000640)={@random='\x00\a\x00', @multicast, @val={@val={0x88a8, 0x1, 0x1, 0x2}, {0x8100, 0x2, 0x0, 0x4}}, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "2f23aa", 0x44, 0x2f, 0x0, @empty, @mcast2, {[], {{0x0, 0x0, 0x1, 0x1}, {0x0, 0x0, 0x1, 0x1}, {0x1, 0x0, 0x1}, {0x8, 0x88be, 0x0, {{0x1, 0x1, 0x10, 0x0, 0x0, 0x1, 0x0, 0x5}, 0x1, {0x6}}}, {0x8, 0x22eb, 0x1, {{0x8, 0x2, 0x3, 0x3, 0x1, 0x1, 0x6, 0x3}, 0x2, {0x7, 0x6, 0x1, 0x7, 0x0, 0x0, 0x2, 0x0, 0x1}}}, {0x8, 0x6558, 0x2}}}}}}}, 0x0)

401.488987ms ago: executing program 4 (id=2702):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$nl_netfilter(0x10, 0x3, 0xc)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r3 = add_key$user(&(0x7f0000002100), &(0x7f0000002180)={'syz', 0x1}, &(0x7f00000021c0)='b', 0x1, 0xfffffffffffffffe)
r4 = add_key$user(&(0x7f0000000440), &(0x7f0000002340)={'syz', 0x3}, &(0x7f0000000100)="370c099069effa43de3e1404db09b4ce1ef77bde4b371532dd16447c1b13403656c86711f6e750026f23029a50d44299c7bf5c78dc5efae2d041016160e8bef7b30c05e298aa9572", 0x48, 0xffffffffffffffff)
keyctl$dh_compute(0x17, &(0x7f0000000400)={r3, r4, r3}, &(0x7f0000000280)=""/190, 0xbe, &(0x7f00000003c0)={&(0x7f0000000240)={'streebog512-generic\x00'}})
mount$afs(0x0, &(0x7f0000002840)='./file0\x00', &(0x7f0000002880), 0x700, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])

400.255137ms ago: executing program 0 (id=2703):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$fou(&(0x7f0000000480), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x1c, r5, 0x209, 0x0, 0x0, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}]}, 0x1c}}, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000140)={'veth0\x00', &(0x7f00000001c0)=@ethtool_perm_addr={0x20, 0x1b, "acdaca03f6596a3f83eae60bb5bcd5784fd49b1202a00976d2f379"}})

367.82662ms ago: executing program 6 (id=2704):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$nl_route(0x10, 0x3, 0x0)
r3 = fsopen(&(0x7f0000000000)='cifs\x00', 0x0)
r4 = socket$caif_stream(0x25, 0x1, 0x0)
sendmmsg$inet(r4, &(0x7f0000000040)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000440)=[{}], 0x1}}], 0x2, 0x7c9ce320e12d300)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000040)='source', &(0x7f0000005fc0)='//\xf2/\x06\b/\xdf/o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o', 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000010000000900010073797a300000000040000000030a010100000000000000000100000009000300040000000000000014000480080002400000000008000140000000000900010073797a300000000060000000060a010400000000000000000100000038000480240001800b00010072656a65637400001400028008000140000000000500020000000000100001800a000100726564697200000008000b40000000000900010073797a30000000001400000011000100"], 0xe8}}, 0x0)

315.614644ms ago: executing program 3 (id=2705):
r0 = inotify_init()
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bf"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r1, 0x0, 0xd}, 0x18)
socket$kcm(0x21, 0x2, 0x2)
syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000540)=0x4)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$inet_udp(0x2, 0x2, 0x0)
inotify_add_watch(r0, 0x0, 0x400017e)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, 0x0, &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r3, 0x0, 0xd}, 0x18)
r4 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f90f24fc60", 0x8c0}], 0x1}, 0x0)

0s ago: executing program 7 (id=2706):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$ARCH_SHSTK_DISABLE(0x1e, r0, 0x1, 0x5002)
ptrace$ARCH_SHSTK_ENABLE(0x1e, r0, 0x1, 0x5001)
ptrace$ARCH_SHSTK_UNLOCK(0x1e, r0, 0x1, 0x5004)
ptrace$getregset(0x4204, r0, 0x204, &(0x7f0000000040)={&(0x7f0000000080)=""/28, 0x8})

kernel console output (not intermixed with test programs):

16] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  277.460058][ T4416] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  277.476186][ T4416] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  277.489058][ T4416] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  277.503578][ T4416] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  277.512999][ T4416] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  277.526992][ T4416] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  277.536570][ T4416] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  277.555759][ T4416] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  277.564954][ T4416] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  277.575679][ T4416] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  277.580538][ T4326] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  277.584763][ T4416] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  277.603813][ T7620] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  277.824613][ T4326] usb 7-1: Using ep0 maxpacket: 16
[  277.832458][ T4326] usb 7-1: config 0 interface 0 altsetting 13 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  277.869753][ T4326] usb 7-1: config 0 interface 0 has no altsetting 0
[  277.885265][ T4326] usb 7-1: New USB device found, idVendor=046d, idProduct=ca04, bcdDevice= 0.00
[  277.912143][ T4326] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  277.938722][ T4326] usb 7-1: config 0 descriptor??
[  278.068110][ T7732] loop3: detected capacity change from 0 to 512
[  278.092938][ T7732] EXT4-fs: Ignoring removed nomblk_io_submit option
[  278.099730][ T7732] EXT4-fs: Ignoring removed nobh option
[  278.106497][ T7732] EXT4-fs: Ignoring removed nobh option
[  278.112468][ T7732] EXT4-fs: Conflicting test_dummy_encryption options
[  278.262807][ T4273] Bluetooth: hci5: command 0x0419 tx timeout
[  278.365584][ T4326] logitech 0003:046D:CA04.0004: unknown main item tag 0x0
[  278.379050][ T4326] logitech 0003:046D:CA04.0004: unknown main item tag 0x0
[  278.387687][ T4326] logitech 0003:046D:CA04.0004: unknown main item tag 0x0
[  278.405164][ T4326] logitech 0003:046D:CA04.0004: hidraw0: USB HID v0.05 Device [HID 046d:ca04] on usb-dummy_hcd.6-1/input0
[  278.424461][ T4326] logitech 0003:046D:CA04.0004: no inputs found
[  278.543909][ T6576] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  278.553195][ T6576] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  278.567477][ T7620] 8021q: adding VLAN 0 to HW filter on device batadv0
[  278.643741][ T4326] usb 7-1: USB disconnect, device number 2
[  279.057194][ T7760] netlink: 12 bytes leftover after parsing attributes in process `syz.3.999'.
[  279.247576][ T6584] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  279.281574][ T6584] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  279.324406][ T6584] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  279.342088][ T6584] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  279.366098][ T6584] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  279.375181][ T6584] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  279.397922][ T7620] device veth0_vlan entered promiscuous mode
[  279.427652][ T7620] device veth1_vlan entered promiscuous mode
[  279.461394][ T4273] Bluetooth: hci0: command 0x0406 tx timeout
[  279.477390][ T6593] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  279.503899][ T6593] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  279.555985][ T6593] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  279.564288][ T5012] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  279.576250][ T6593] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  279.609891][ T7620] device veth0_macvtap entered promiscuous mode
[  279.632236][ T7775] netlink: 'syz.4.1005': attribute type 39 has an invalid length.
[  279.741551][ T7620] device veth1_macvtap entered promiscuous mode
[  279.760596][ T5012] usb 4-1: Using ep0 maxpacket: 16
[  279.775365][ T5012] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  279.807029][ T5012] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  279.834029][ T5012] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  279.859238][ T7620] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  279.860664][ T5012] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  279.894749][ T5012] usb 4-1: Product: syz
[  279.904648][ T5012] usb 4-1: Manufacturer: syz
[  279.909133][ T7620] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  279.915513][ T5012] usb 4-1: SerialNumber: syz
[  279.925039][ T7620] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  279.945288][ T7620] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  279.959512][ T7620] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  279.976888][ T7620] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.015949][ T7620] batman_adv: batadv0: Interface activated: batadv_slave_0
[  280.036740][ T6576] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  280.059711][ T6576] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  280.070119][ T6576] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  280.088152][ T6576] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  280.101494][ T7620] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  280.119903][ T7620] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.131574][ T7620] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  280.151940][ T7620] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.157802][ T5012] usb 4-1: 0:2 : does not exist
[  280.179602][ T5012] usb 4-1: 5:0: failed to get current value for ch 0 (-22)
[  280.179806][ T7620] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  280.218417][ T7620] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.243112][ T5012] usb 4-1: USB disconnect, device number 7
[  280.251153][ T7620] batman_adv: batadv0: Interface activated: batadv_slave_1
[  280.297290][ T6593] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  280.310162][ T6593] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  280.367128][ T7620] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  280.384908][ T7620] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  280.397915][ T7620] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  280.407235][ T7620] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  280.543452][ T4275] udevd[4275]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  281.280998][ T6593] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  281.289507][ T6593] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  281.329423][ T7781] loop6: detected capacity change from 0 to 2048
[  281.379390][ T4416] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  281.397371][ T7781] UDF-fs: error (device loop6): udf_process_sequence: Primary Volume Descriptor not found!
[  281.428239][ T6566] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  281.579638][ T7781] UDF-fs: error (device loop6): udf_process_sequence: Primary Volume Descriptor not found!
[  281.593025][ T6566] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  281.612366][ T6565] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  282.649274][ T7804] netlink: 'syz.4.1014': attribute type 13 has an invalid length.
[  282.681483][ T7781] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=385, location=385
[  282.712471][ T7781] UDF-fs: warning (device loop6): udf_fill_super: No partition found (1)
[  282.725290][ T7804] netlink: 'syz.4.1014': attribute type 17 has an invalid length.
[  282.785756][ T7809] netlink: 156 bytes leftover after parsing attributes in process `syz.7.953'.
[  283.012422][ T7804] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  283.185645][ T7804] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  283.621146][ T4273] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  283.630652][ T4273] Bluetooth: hci4: Injecting HCI hardware error event
[  283.654644][   T48] Bluetooth: hci4: hardware error 0x00
[  285.035482][   T27] audit: type=1326 audit(1754447825.491:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7847 comm="syz.3.1030" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f77ab98ebe9 code=0x0
[  286.423707][   T48] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  287.192089][ T7867] netlink: 'syz.4.1034': attribute type 10 has an invalid length.
[  287.422823][ T7867] 8021q: adding VLAN 0 to HW filter on device batadv0
[  287.455942][ T7867] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  287.509584][ T7868] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  287.547013][ T7868] batman_adv: batadv0: Removing interface: batadv_slave_0
[  287.609596][ T7868] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  287.642843][ T7868] batman_adv: batadv0: Removing interface: batadv_slave_1
[  287.724102][ T7868] bond0: (slave batadv0): Releasing backup interface
[  287.969544][ T7889] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  287.996475][ T7889] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  288.007377][ T7889] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  288.083987][ T4331] kernel read not supported for file [userfaultfd] (pid: 4331 comm: kworker/0:7)
[  291.096762][ T7928] loop7: detected capacity change from 0 to 8192
[  292.470271][ T7964] netlink: 'syz.0.1065': attribute type 2 has an invalid length.
[  294.647080][ T7976] netlink: 'syz.6.1069': attribute type 13 has an invalid length.
[  294.689594][ T7976] netlink: 'syz.6.1069': attribute type 17 has an invalid length.
[  295.123212][ T7976] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  295.317952][ T7976] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  297.548842][ T8015] loop3: detected capacity change from 0 to 256
[  297.577748][ T8015] exfat: Deprecated parameter 'namecase'
[  297.623114][ T8015] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  298.244215][ T8030] xt_NFQUEUE: number of total queues is 0
[  299.376106][ T8036] loop3: detected capacity change from 0 to 16
[  299.607410][ T8036] erofs: (device loop3): mounted with root inode @ nid 36.
[  300.086844][ T8045] loop6: detected capacity change from 0 to 256
[  300.191395][ T8045] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x46ae1815, utbl_chksum : 0xe619d30d)
[  300.204867][ T8045] exFAT-fs (loop6): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  302.887213][ T8063] overlayfs: failed to clone upperpath
[  302.915166][ T8061] netlink: 96 bytes leftover after parsing attributes in process `syz.7.1100'.
[  310.806961][ T8147] loop6: detected capacity change from 0 to 24
[  311.034002][ T8147] MTD: Attempt to mount non-MTD device "/dev/loop6"
[  311.230731][ T8147] romfs: bad initial checksum on dev loop6.
[  311.493011][ T4275] udevd[4275]: incorrect romfs checksum on /dev/loop6
[  312.031428][ T8163] xt_NFQUEUE: number of total queues is 0
[  313.197133][   T27] audit: type=1804 audit(1754447853.651:102): pid=8177 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1130" name="bus" dev="ramfs" ino=48424 res=1 errno=0
[  317.321451][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  317.327849][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  317.906934][ T8216] xt_NFQUEUE: number of total queues is 0
[  322.992098][ T8247] overlayfs: bad mount option "redirect_dir=off\"
[  325.398916][ T8263] xt_NFQUEUE: number of total queues is 0
[  328.963578][ T8301] loop6: detected capacity change from 0 to 64
[  329.414338][ T8311] netlink: 'syz.7.1167': attribute type 13 has an invalid length.
[  329.438956][ T8311] netlink: 'syz.7.1167': attribute type 17 has an invalid length.
[  329.779626][ T8311] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  329.911287][ T8311] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  331.441264][ T8326] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized
[  332.031392][ T8330] sctp: [Deprecated]: syz.7.1173 (pid 8330) Use of int in max_burst socket option.
[  332.031392][ T8330] Use struct sctp_assoc_value instead
[  332.245306][ T8334] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1176'.
[  332.280930][ T8334] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  332.634291][ T8334] batman_adv: batadv0: Removing interface: batadv_slave_1
[  333.435901][ T8339] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1177'.
[  333.501570][ T8339] tc_dump_action: action bad kind
[  334.810149][ T8364] netlink: 'syz.0.1184': attribute type 1 has an invalid length.
[  334.934636][ T8367] bond1: (slave gretap1): making interface the new active one
[  334.956886][ T8367] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  335.075472][ T8364] bond1: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  335.789311][ T8383] netlink: 'syz.0.1186': attribute type 13 has an invalid length.
[  335.851254][ T8383] netlink: 'syz.0.1186': attribute type 17 has an invalid length.
[  336.929657][ T8383] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  336.930091][ T8402] capability: warning: `syz.4.1195' uses deprecated v2 capabilities in a way that may be insecure
[  336.983246][ T8398] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1194'.
[  337.055684][ T8399] sch_tbf: burst 88 is lower than device veth3 mtu (1514) !
[  340.330515][ T5012] usb 8-1: new full-speed USB device number 2 using dummy_hcd
[  340.348342][ T8426] random: crng reseeded on system resumption
[  340.522360][ T5012] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  340.547279][ T5012] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  340.584180][ T5012] usb 8-1: config 0 interface 0 altsetting 0 has a duplicate endpoint with address 0x2, skipping
[  340.633009][ T5012] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  340.677697][ T5012] usb 8-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  340.709758][ T5012] usb 8-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  340.736819][ T5012] usb 8-1: Manufacturer: syz
[  340.763874][ T5012] usb 8-1: config 0 descriptor??
[  340.978319][ T8437] loop3: detected capacity change from 0 to 128
[  341.024177][ T8437] EXT4-fs: Ignoring removed nomblk_io_submit option
[  341.095174][ T8437] EXT4-fs: Ignoring removed nomblk_io_submit option
[  341.182510][ T8426] Restarting kernel threads ... done.
[  341.214154][ T8437] EXT4-fs (loop3): Test dummy encryption mode enabled
[  341.282710][ T8437] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  341.367214][ T8437] ext4 filesystem being mounted at /238/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  341.437646][ T6476] usb 8-1: USB disconnect, device number 2
[  341.798321][ T8437] fscrypt (loop3): Missing crypto API support for AES-256-XTS (API name: "xts(aes)")
[  342.128449][ T4269] EXT4-fs (loop3): unmounting filesystem.
[  342.295206][ T8466] netlink: 'syz.6.1208': attribute type 13 has an invalid length.
[  342.359957][ T8466] netlink: 'syz.6.1208': attribute type 17 has an invalid length.
[  343.229807][ T8466] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  343.346781][ T8466] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  345.125575][ T8491] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1214'.
[  345.175610][ T8491] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1214'.
[  347.451426][   T27] audit: type=1326 audit(1754447887.911:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.6.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  347.510599][   T27] audit: type=1326 audit(1754447887.911:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.6.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  347.563668][   T27] audit: type=1326 audit(1754447887.911:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.6.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  347.630883][   T27] audit: type=1326 audit(1754447887.911:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.6.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  347.753694][   T27] audit: type=1326 audit(1754447887.911:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.6.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  347.798206][   T27] audit: type=1326 audit(1754447887.911:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.6.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  347.828626][   T27] audit: type=1326 audit(1754447887.911:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.6.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  347.858527][ T8517] loop3: detected capacity change from 0 to 1024
[  347.865737][   T27] audit: type=1326 audit(1754447887.911:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.6.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  347.911171][ T8517] EXT4-fs: inline encryption not supported
[  347.930154][ T8517] EXT4-fs: Ignoring removed i_version option
[  347.940985][ T8517] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  347.958663][   T27] audit: type=1326 audit(1754447887.911:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.6.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  348.017751][   T27] audit: type=1326 audit(1754447887.911:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8503 comm="syz.6.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  348.066711][ T8517] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  348.243813][ T8517] Trying to write to read-only block-device loop3
[  348.268307][ T8517] Trying to write to read-only block-device loop3
[  348.451618][ T4269] EXT4-fs error (device loop3): mb_free_blocks:1815: group 0, inode 15: block 129:freeing already freed block (bit 8); block bitmap corrupt.
[  348.480128][ T6593] Trying to write to read-only block-device loop3
[  348.480287][ T4269] Trying to write to read-only block-device loop3
[  348.487194][ T4269] Trying to write to read-only block-device loop3
[  348.501239][ T4269] Trying to write to read-only block-device loop3
[  348.508540][ T4269] Trying to write to read-only block-device loop3
[  348.515463][ T4269] Trying to write to read-only block-device loop3
[  348.522595][ T4269] Trying to write to read-only block-device loop3
[  348.555042][ T6593] Trying to write to read-only block-device loop3
[  348.568698][ T4269] EXT4-fs (loop3): unmounting filesystem.
[  350.076450][ T5007] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  350.419392][ T5007] usb 4-1: Using ep0 maxpacket: 16
[  350.475644][ T5007] usb 4-1: New USB device found, idVendor=0471, idProduct=0327, bcdDevice=61.a4
[  351.577508][ T5007] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  351.647754][ T5007] usb 4-1: config 0 descriptor??
[  351.695830][ T5007] gspca_main: sonixj-2.14.0 probing 0471:0327
[  351.860608][ T5007] gspca_sonixj: reg_w1 err -71
[  351.865555][ T5007] sonixj: probe of 4-1:0.0 failed with error -71
[  351.894134][ T5007] usb 4-1: USB disconnect, device number 8
[  353.728895][ T8574] loop3: detected capacity change from 0 to 40427
[  353.918388][ T8551] bridge0: port 2(bridge_slave_1) entered disabled state
[  353.927061][ T8551] bridge0: port 1(bridge_slave_0) entered disabled state
[  353.950576][ T4275] I/O error, dev loop3, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  355.064968][ T8587] loop6: detected capacity change from 0 to 1024
[  355.078086][ T8587] EXT4-fs: Ignoring removed orlov option
[  355.084658][ T8587] EXT4-fs: Ignoring removed nomblk_io_submit option
[  355.269418][ T8587] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  356.243618][ T8598] loop3: detected capacity change from 0 to 8192
[  356.298437][ T8598]  loop3: p1 p2[DM] p4
[  356.317280][ T8598] loop3: p1 size 196608 extends beyond EOD, truncated
[  356.341635][ T8598] loop3: p2 start 4292936063 is beyond EOD, truncated
[  356.348584][ T8598] loop3: p4 size 50331648 extends beyond EOD, truncated
[  356.488282][ T8551] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  356.598707][ T8551] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  357.315806][ T8551] netdevsim netdevsim7 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  357.325014][ T8551] netdevsim netdevsim7 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  357.335075][ T8551] netdevsim netdevsim7 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  357.344625][ T8551] netdevsim netdevsim7 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  357.654523][   T27] kauditd_printk_skb: 6 callbacks suppressed
[  357.654539][   T27] audit: type=1326 audit(1754447898.111:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.0.1258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  357.727149][ T7081] EXT4-fs (loop6): unmounting filesystem.
[  357.740195][   T27] audit: type=1326 audit(1754447898.141:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.0.1258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  357.839139][   T27] audit: type=1326 audit(1754447898.141:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.0.1258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  357.865038][   T27] audit: type=1326 audit(1754447898.141:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.0.1258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  358.394757][   T27] audit: type=1326 audit(1754447898.141:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.0.1258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  358.613367][   T27] audit: type=1326 audit(1754447898.141:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.0.1258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  358.636692][   T27] audit: type=1326 audit(1754447898.141:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.0.1258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  358.805735][   T27] audit: type=1326 audit(1754447898.141:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.0.1258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  358.856543][   T27] audit: type=1326 audit(1754447898.141:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.0.1258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  359.570569][   T27] audit: type=1326 audit(1754447898.141:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.0.1258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  359.698115][ T8625] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  360.685109][ T8643] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1260'.
[  360.727733][ T8643] 8021q: VLANs not supported on ip6gre0
[  360.786166][ T8647] netlink: 'syz.4.1262': attribute type 4 has an invalid length.
[  360.922708][ T8651] netlink: 'syz.4.1262': attribute type 4 has an invalid length.
[  362.975551][ T8682] 9pnet_fd: Insufficient options for proto=fd
[  364.849856][ T8722] tipc: Failed to remove unknown binding: 66,1,1/0:2268187019/2268187021
[  366.262457][   T27] kauditd_printk_skb: 35 callbacks suppressed
[  366.262475][   T27] audit: type=1326 audit(1754447906.721:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8734 comm="syz.3.1291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  366.303031][   T27] audit: type=1326 audit(1754447906.721:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8734 comm="syz.3.1291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  366.337542][ T5012] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  366.398928][   T27] audit: type=1326 audit(1754447906.851:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8734 comm="syz.3.1291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  367.332494][   T27] audit: type=1326 audit(1754447906.881:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8734 comm="syz.3.1291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  367.478912][   T27] audit: type=1326 audit(1754447906.881:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8734 comm="syz.3.1291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  367.582232][   T27] audit: type=1326 audit(1754447906.881:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8734 comm="syz.3.1291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  367.605808][   T27] audit: type=1326 audit(1754447906.881:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8734 comm="syz.3.1291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  367.630606][   T27] audit: type=1326 audit(1754447906.891:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8734 comm="syz.3.1291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  367.690518][ T5012] usb 7-1: Using ep0 maxpacket: 32
[  367.697811][ T5012] usb 7-1: config 0 has an invalid interface number: 2 but max is 0
[  367.708570][   T27] audit: type=1326 audit(1754447906.891:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8734 comm="syz.3.1291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  367.731764][ T5012] usb 7-1: config 0 has no interface number 0
[  367.738281][ T5012] usb 7-1: config 0 interface 2 has no altsetting 0
[  367.965889][   T27] audit: type=1326 audit(1754447906.891:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8734 comm="syz.3.1291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  368.452315][ T5012] usb 7-1: string descriptor 0 read error: -71
[  368.460866][ T5012] usb 7-1: New USB device found, idVendor=086a, idProduct=0003, bcdDevice=f0.3f
[  368.486763][ T5012] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  368.520548][ T5012] usb 7-1: config 0 descriptor??
[  368.542603][ T5012] usb 7-1: can't set config #0, error -71
[  368.716132][ T5012] usb 7-1: USB disconnect, device number 3
[  368.831830][ T8767] loop6: detected capacity change from 0 to 512
[  368.856843][ T8767] EXT4-fs: Ignoring removed nobh option
[  368.947970][ T8767] EXT4-fs warning (device loop6): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  369.010642][ T8767] EXT4-fs warning (device loop6): dx_probe:881: Enable large directory feature to access it
[  369.021507][ T8767] EXT4-fs warning (device loop6): dx_probe:966: inode #2: comm syz.6.1299: Corrupt directory, running e2fsck is recommended
[  369.046421][ T8767] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -117
[  369.057578][ T8767] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2195: inode #15: comm syz.6.1299: corrupted in-inode xattr
[  369.081346][ T8767] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.1299: couldn't read orphan inode 15 (err -117)
[  369.125123][ T8767] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  369.346077][ T7081] EXT4-fs (loop6): unmounting filesystem.
[  369.557036][ T8789] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1307'.
[  371.389739][ T8815] device batadv_slave_1 entered promiscuous mode
[  371.397247][   T27] kauditd_printk_skb: 22 callbacks suppressed
[  371.397264][   T27] audit: type=1326 audit(1754447911.861:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8818 comm="syz.4.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  371.461569][ T8814] device batadv_slave_1 left promiscuous mode
[  371.481640][   T27] audit: type=1326 audit(1754447911.861:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8818 comm="syz.4.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  371.571006][   T27] audit: type=1326 audit(1754447911.871:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8818 comm="syz.4.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  371.650943][   T27] audit: type=1326 audit(1754447911.941:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8818 comm="syz.4.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  371.770511][   T27] audit: type=1326 audit(1754447911.941:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8818 comm="syz.4.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  371.820484][   T27] audit: type=1326 audit(1754447911.941:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8823 comm="syz.4.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f0f407c14a5 code=0x7ffc0000
[  371.888579][   T27] audit: type=1326 audit(1754447912.131:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8823 comm="syz.4.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  371.965414][   T27] audit: type=1326 audit(1754447912.221:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8818 comm="syz.4.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  371.994016][ T8829] netlink: 28 bytes leftover after parsing attributes in process `syz.7.1320'.
[  372.061635][   T27] audit: type=1326 audit(1754447912.221:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8818 comm="syz.4.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  372.069713][ T8829] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1320'.
[  372.140586][   T27] audit: type=1326 audit(1754447912.221:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8818 comm="syz.4.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  372.386944][ T8836] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1322'.
[  373.303746][ T8855] netlink: 15743 bytes leftover after parsing attributes in process `syz.6.1327'.
[  373.574601][ T8864] loop7: detected capacity change from 0 to 512
[  373.670354][ T8864] EXT4-fs (loop7): revision level too high, forcing read-only mode
[  373.704057][ T8864] EXT4-fs (loop7): orphan cleanup on readonly fs
[  373.716936][ T8864] EXT4-fs warning (device loop7): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  373.732714][ T8864] EXT4-fs (loop7): Cannot turn on quotas: error -117
[  373.763270][ T8864] EXT4-fs error (device loop7): ext4_validate_block_bitmap:438: comm syz.7.1328: bg 0: block 40: padding at end of block bitmap is not set
[  373.790868][ T8864] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  373.829134][ T8864] EXT4-fs (loop7): 1 truncate cleaned up
[  373.844227][ T8864] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  374.205966][ T8871] syz.6.1333 (8871) used greatest stack depth: 17952 bytes left
[  374.336933][ T8877] bridge0: port 1(syz_tun) entered blocking state
[  374.404868][ T8877] bridge0: port 1(syz_tun) entered disabled state
[  374.505250][ T8877] device syz_tun entered promiscuous mode
[  374.549653][ T7620] EXT4-fs (loop7): unmounting filesystem.
[  374.601679][ T8877] bridge0: port 1(syz_tun) entered blocking state
[  374.611316][ T8877] bridge0: port 1(syz_tun) entered forwarding state
[  375.174818][ T8904] netlink: 15743 bytes leftover after parsing attributes in process `syz.4.1344'.
[  380.234845][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  380.241373][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  380.737469][ T8944] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(3)
[  380.745115][ T8944] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  380.840201][ T8944] vhci_hcd vhci_hcd.0: Device attached
[  381.090545][    T7] usb 45-1: new high-speed USB device number 2 using vhci_hcd
[  381.666368][ T8945] vhci_hcd: connection closed
[  382.201160][ T6590] vhci_hcd: stop threads
[  382.290419][ T6590] vhci_hcd: release socket
[  382.310510][ T6590] vhci_hcd: disconnect device
[  382.401526][ T8953] netlink: 'syz.7.1359': attribute type 1 has an invalid length.
[  383.781404][ T8953] 8021q: adding VLAN 0 to HW filter on device bond1
[  383.815985][ T8960] bond1: (slave vlan2): Opening slave failed
[  385.204394][ T8983] loop7: detected capacity change from 0 to 128
[  385.407559][ T8983] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[  386.373740][ T8993] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1371'.
[  386.534697][ T8996] IPv6: sit1: Disabled Multicast RS
[  387.650674][    T7] vhci_hcd: vhci_device speed not set
[  387.668741][ T9007] IPv6: sit1: Disabled Multicast RS
[  395.091764][ T9059] bridge0: port 2(syz_tun) entered blocking state
[  395.098502][ T9059] bridge0: port 2(syz_tun) entered disabled state
[  395.115687][ T9059] device syz_tun entered promiscuous mode
[  395.285166][ T9064] netlink: 'syz.4.1394': attribute type 1 has an invalid length.
[  396.260675][ T9064] device bond2 entered promiscuous mode
[  396.459726][ T9067] bond2: (slave ip6gretap1): making interface the new active one
[  396.488550][ T9067] device ip6gretap1 entered promiscuous mode
[  396.538236][ T9067] bond2: (slave ip6gretap1): Enslaving as an active interface with an up link
[  396.581030][ T9068] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1394'.
[  396.591563][ T9068] device bond2 left promiscuous mode
[  396.617885][ T9068] device ip6gretap1 left promiscuous mode
[  396.635621][ T9068] 8021q: adding VLAN 0 to HW filter on device bond2
[  396.749718][   T27] kauditd_printk_skb: 27 callbacks suppressed
[  396.749735][   T27] audit: type=1326 audit(1754447937.201:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9078 comm="syz.7.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7fc00000
[  396.781759][ T9085] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  396.830807][   T48] Bluetooth: hci5: command 0x0406 tx timeout
[  396.861721][ T9085] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  396.884712][ T9091] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1401'.
[  396.897700][ T9085] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  396.932655][ T9085] device bridge_slave_0 left promiscuous mode
[  396.939052][ T9085] bridge0: port 1(bridge_slave_0) entered disabled state
[  397.039329][ T9085] device bridge_slave_1 left promiscuous mode
[  397.049276][ T9085] bridge0: port 2(bridge_slave_1) entered disabled state
[  397.146236][ T9085] bond0: (slave bond_slave_0): Releasing backup interface
[  397.888307][   T27] audit: type=1326 audit(1754447938.341:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9078 comm="syz.7.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7fc00000
[  397.921733][ T9085] bond0: (slave bond_slave_1): Releasing backup interface
[  397.983228][   T27] audit: type=1326 audit(1754447938.341:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9078 comm="syz.7.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f85a418ebe9 code=0x7fc00000
[  398.011325][   T27] audit: type=1326 audit(1754447938.341:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9078 comm="syz.7.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7fc00000
[  398.046594][   T27] audit: type=1326 audit(1754447938.341:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9078 comm="syz.7.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7fc00000
[  398.077188][   T27] audit: type=1326 audit(1754447938.341:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9078 comm="syz.7.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7fc00000
[  398.101146][   T27] audit: type=1326 audit(1754447938.341:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9078 comm="syz.7.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7fc00000
[  398.157157][ T9085] team0: Port device team_slave_0 removed
[  398.278107][   T27] audit: type=1326 audit(1754447938.341:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9078 comm="syz.7.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7fc00000
[  398.309334][ T9085] team0: Port device team_slave_1 removed
[  398.310853][   T27] audit: type=1326 audit(1754447938.341:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9078 comm="syz.7.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7fc00000
[  398.337837][ T9085] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  398.376762][ T9085] batman_adv: batadv0: Removing interface: batadv_slave_0
[  398.633181][ T9085] bond0: (slave wlan1): Releasing backup interface
[  398.964812][ T9087] team0: Mode changed to "loadbalance"
[  399.014570][   T27] audit: type=1326 audit(1754447938.341:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9078 comm="syz.7.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7fc00000
[  400.840474][ T9138] device bridge1 entered promiscuous mode
[  401.417327][ T9137] loop7: detected capacity change from 0 to 512
[  401.719120][ T9137] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  403.041752][ T7620] EXT4-fs (loop7): unmounting filesystem.
[  403.249318][ T9165] loop6: detected capacity change from 0 to 1024
[  403.311031][ T9168] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1420'.
[  403.322681][ T9165] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  403.426092][ T9171] blktrace: Concurrent blktraces are not allowed on loop0
[  403.988441][ T9176] device vlan2 entered promiscuous mode
[  404.126143][ T9176] device ip6gretap0 entered promiscuous mode
[  406.924979][ T9213] --map-set only usable from mangle table
[  413.504118][ T9263] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  416.706864][ T5007] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  417.469366][ T5007] usb 7-1: Using ep0 maxpacket: 16
[  417.481705][ T5007] usb 7-1: config 1 has an invalid descriptor of length 97, skipping remainder of the config
[  417.494638][ T5007] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  417.507500][ T5007] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  418.238860][ T5007] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  418.251441][ T5007] usb 7-1: Product: syz
[  418.255782][ T5007] usb 7-1: Manufacturer: syz
[  418.260761][ T5007] usb 7-1: SerialNumber: syz
[  418.476451][ T5007] usb 7-1: 0:2 : does not exist
[  418.504312][ T5007] usb 7-1: 5:0: failed to get current value for ch 0 (-22)
[  421.333548][ T5007] usb 7-1: USB disconnect, device number 4
[  421.817391][ T4275] udevd[4275]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  422.288040][ T9342] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1480'.
[  423.210481][ T5007] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  424.182145][ T5007] usb 8-1: config 0 has no interfaces?
[  424.192931][ T5007] usb 8-1: New USB device found, idVendor=10d6, idProduct=2200, bcdDevice= 0.02
[  424.230513][ T5007] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  424.259349][ T5007] usb 8-1: SerialNumber: syz
[  424.280406][ T5007] usb 8-1: config 0 descriptor??
[  425.721369][ T5007] usb 8-1: USB disconnect, device number 3
[  426.195683][ T9384] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1492'.
[  426.674650][ T9384] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[  426.847000][ T9394] netlink: 'syz.7.1494': attribute type 1 has an invalid length.
[  427.006975][ T9395] bond2: (slave ip6gretap1): Enslaving as a backup interface with an up link
[  427.231096][ T9394] netlink: 28 bytes leftover after parsing attributes in process `syz.7.1494'.
[  427.810981][ T9394] bond2 (unregistering): (slave ip6gretap1): Releasing backup interface
[  428.062271][ T9394] bond2 (unregistering): Released all slaves
[  428.663073][ T9414] tipc: Failed to remove unknown binding: 66,1,1/0:3619833490/3619833492
[  428.741884][ T9417] tipc: Failed to remove unknown binding: 66,1,1/0:3619833490/3619833492
[  428.773775][ T9418] netlink: 'syz.4.1503': attribute type 1 has an invalid length.
[  428.802011][ T9417] tipc: Failed to remove unknown binding: 66,1,1/0:3619833490/3619833492
[  428.882265][ T9418] 8021q: adding VLAN 0 to HW filter on device bond3
[  429.586546][ T9422] bond3: (slave veth5): Enslaving as an active interface with a down link
[  429.721694][ T9418] device veth1 entered promiscuous mode
[  429.742804][ T9418] device veth1 left promiscuous mode
[  429.756326][ T9418] bond3: (slave vlan2): making interface the new active one
[  429.766609][ T9418] device veth1 entered promiscuous mode
[  429.775227][ T9418] device vlan2 entered promiscuous mode
[  429.782628][ T9418] bond3: (slave vlan2): Enslaving as an active interface with an up link
[  429.797959][ T9428] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1506'.
[  429.814863][ T4416] IPv6: ADDRCONF(NETDEV_CHANGE): bond3: link becomes ready
[  430.862532][ T9447] netlink: 28 bytes leftover after parsing attributes in process `syz.7.1510'.
[  431.272997][ T9452] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1511'.
[  431.438457][ T9452] device syz_tun left promiscuous mode
[  431.447810][ T9452] bridge0: port 2(syz_tun) entered disabled state
[  431.470522][ T9452] bridge0: port 1(team0) entered disabled state
[  431.543739][ T9462] SET target dimension over the limit!
[  432.437410][   T27] kauditd_printk_skb: 57 callbacks suppressed
[  432.437427][   T27] audit: type=1326 audit(1754447972.891:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9467 comm="syz.6.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  432.470088][   T27] audit: type=1326 audit(1754447972.931:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9467 comm="syz.6.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  432.503101][ T9466] loop7: detected capacity change from 0 to 512
[  432.522903][   T27] audit: type=1326 audit(1754447972.931:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9467 comm="syz.6.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  432.584376][ T9466] EXT4-fs (loop7): orphan cleanup on readonly fs
[  432.609697][ T9466] Quota error (device loop7): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0
[  432.640783][ T9466] Quota error (device loop7): qtree_read_dquot: Can't read quota structure for id 0
[  432.666789][ T9466] EXT4-fs error (device loop7): ext4_acquire_dquot:6814: comm syz.7.1518: Failed to acquire dquot type 1
[  432.719693][   T27] audit: type=1326 audit(1754447972.931:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9467 comm="syz.6.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  432.799556][ T9466] EXT4-fs (loop7): 1 truncate cleaned up
[  432.994637][ T9466] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  433.008681][   T27] audit: type=1326 audit(1754447972.931:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9467 comm="syz.6.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  434.580498][   T27] audit: type=1326 audit(1754447972.931:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9467 comm="syz.6.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  434.633088][ T9466] EXT4-fs (loop7): warning: mounting fs with errors, running e2fsck is recommended
[  434.663663][ T9483] syz.0.1522 sent an empty control message without MSG_MORE.
[  434.668520][   T27] audit: type=1326 audit(1754447972.931:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9467 comm="syz.6.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  434.708390][ T9466] EXT4-fs warning (device loop7): read_mmp_block:115: Error -117 while reading MMP block 8
[  434.733000][   T27] audit: type=1326 audit(1754447972.931:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9467 comm="syz.6.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  434.847101][ T7620] EXT4-fs (loop7): unmounting filesystem.
[  435.735626][ T9490] loop6: detected capacity change from 0 to 32768
[  435.807580][ T9490] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 scanned by syz.6.1524 (9490)
[  435.829918][ T9490] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  435.843060][ T9490] BTRFS info (device loop6): using sha256 (sha256-avx2) checksum algorithm
[  435.851866][ T9490] BTRFS info (device loop6): using free space tree
[  436.253971][ T9509] loop7: detected capacity change from 0 to 2048
[  436.639356][ T9509] EXT4-fs error (device loop7): ext4_orphan_get:1426: comm syz.7.1525: bad orphan inode 8192
[  436.652362][ T9509] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  436.962238][ T7620] EXT4-fs (loop7): unmounting filesystem.
[  437.050953][ T9490] BTRFS info (device loop6): enabling ssd optimizations
[  438.511788][ T7081] BTRFS info (device loop6): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  439.666219][   T27] kauditd_printk_skb: 61 callbacks suppressed
[  439.666235][   T27] audit: type=1326 audit(1754447980.121:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9540 comm="syz.3.1532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  439.769262][   T27] audit: type=1326 audit(1754447980.191:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9540 comm="syz.3.1532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  440.201403][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  440.208250][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  446.143496][ T6590] device vlan2 left promiscuous mode
[  447.846346][ T9625] Cannot find map_set index 0 as target
[  450.000963][ T9637] device vlan2 entered promiscuous mode
[  450.149133][ T9637] device ip6gretap0 entered promiscuous mode
[  450.622119][ T9653] loop6: detected capacity change from 0 to 1024
[  453.537924][   T48] Bluetooth: min 6 > max 0
[  455.641444][   T48] Bluetooth: hci1: command 0x2021 tx timeout
[  457.380655][ T9711] loop6: detected capacity change from 0 to 256
[  457.573046][ T9711] FAT-fs (loop6): Directory bread(block 64) failed
[  457.688892][ T9711] FAT-fs (loop6): Directory bread(block 65) failed
[  457.710588][ T9711] FAT-fs (loop6): Directory bread(block 66) failed
[  457.717210][ T9711] FAT-fs (loop6): Directory bread(block 67) failed
[  457.769606][ T9711] FAT-fs (loop6): Directory bread(block 68) failed
[  457.850508][ T9711] FAT-fs (loop6): Directory bread(block 69) failed
[  457.857453][ T9711] FAT-fs (loop6): Directory bread(block 70) failed
[  457.868522][ T9711] FAT-fs (loop6): Directory bread(block 71) failed
[  457.896440][ T9711] FAT-fs (loop6): Directory bread(block 72) failed
[  457.943459][ T9711] FAT-fs (loop6): Directory bread(block 73) failed
[  459.005383][ T9727] loop6: detected capacity change from 0 to 2048
[  459.426730][ T9727] EXT4-fs error (device loop6): ext4_orphan_get:1426: comm syz.6.1581: bad orphan inode 8192
[  459.442041][ T9727] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  459.741994][ T7081] EXT4-fs (loop6): unmounting filesystem.
[  461.490662][   T27] audit: type=1326 audit(1754448001.891:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9747 comm="syz.0.1590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  462.011303][   T27] audit: type=1326 audit(1754448001.891:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9747 comm="syz.0.1590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  462.120281][   T27] audit: type=1326 audit(1754448001.891:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9747 comm="syz.0.1590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  462.143140][   T27] audit: type=1326 audit(1754448001.891:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9747 comm="syz.0.1590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  466.442929][ T9781] loop7: detected capacity change from 0 to 2048
[  466.691119][ T9781]  loop7: p1 < > p3
[  466.704870][ T9781] loop7: p3 size 134217728 extends beyond EOD, truncated
[  467.345608][ T4363] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  467.733014][ T9805] netlink: 'syz.3.1604': attribute type 10 has an invalid length.
[  467.783965][ T9805] device wlan1 entered promiscuous mode
[  467.790611][ T9805] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  468.000449][ T4363] usb 7-1: Using ep0 maxpacket: 16
[  468.007712][ T4363] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  468.028541][ T4363] usb 7-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  468.063035][ T4363] usb 7-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice=29.00
[  468.458126][ T4363] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  468.580379][    C1] hrtimer: interrupt took 61203 ns
[  468.612893][ T4363] usb 7-1: Product: syz
[  468.693091][ T4363] usb 7-1: Manufacturer: syz
[  468.774616][ T4363] usb 7-1: SerialNumber: syz
[  468.802888][ T9820] overlayfs: failed to clone upperpath
[  468.816687][ T4275] udevd[4275]: inotify_add_watch(7, /dev/loop7p1, 10) failed: No such file or directory
[  468.845091][ T4271] udevd[4271]: inotify_add_watch(7, /dev/loop7p3, 10) failed: No such file or directory
[  468.862790][ T4363] usb 7-1: config 0 descriptor??
[  468.961895][ T9821] overlayfs: unrecognized mount option "mask=MAY_WRITE" or missing value
[  469.028858][ T4292] udevd[4292]: inotify_add_watch(7, /dev/loop7p3, 10) failed: No such file or directory
[  469.061038][ T4271] udevd[4271]: inotify_add_watch(7, /dev/loop7p1, 10) failed: No such file or directory
[  470.528098][ T4373] usb 7-1: USB disconnect, device number 5
[  472.542007][ T9860] netlink: 'syz.4.1622': attribute type 5 has an invalid length.
[  472.673895][ T9864] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1624'.
[  472.812135][ T9869] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1626'.
[  472.977349][ T9875] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  472.986235][ T9875] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  472.994004][ T9875] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  474.498379][ T9895] loop6: detected capacity change from 0 to 128
[  474.699914][   T27] audit: type=1326 audit(1754448015.151:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9891 comm="syz.4.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  474.774536][   T27] audit: type=1326 audit(1754448015.151:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9891 comm="syz.4.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  474.846335][ T9895] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  475.039058][ T9895] ext4 filesystem being mounted at /164/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  475.252516][   T27] audit: type=1326 audit(1754448015.151:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9891 comm="syz.4.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  475.319713][   T27] audit: type=1326 audit(1754448015.151:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9891 comm="syz.4.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  476.703979][ T7081] EXT4-fs (loop6): unmounting filesystem.
[  476.905829][ T6595] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  477.456053][ T6595] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  478.485677][ T6595] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  479.301358][ T6595] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  480.550582][   T27] audit: type=1326 audit(1754448020.891:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9962 comm="syz.7.1653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  481.029803][   T27] audit: type=1326 audit(1754448020.891:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9962 comm="syz.7.1653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  481.077342][ T9971] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(4)
[  481.084088][ T9971] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  481.102337][ T9971] vhci_hcd vhci_hcd.0: Device attached
[  481.133675][   T27] audit: type=1326 audit(1754448020.891:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9962 comm="syz.7.1653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  481.210579][   T27] audit: type=1326 audit(1754448020.891:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9962 comm="syz.7.1653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  481.235333][ T9976] netlink: 48 bytes leftover after parsing attributes in process `syz.7.1656'.
[  481.310630][ T4331] vhci_hcd: vhci_device speed not set
[  481.368747][ T6595] tipc: Left network mode
[  481.400603][ T4331] usb 45-1: new full-speed USB device number 3 using vhci_hcd
[  481.430550][ T4363] usb 7-1: new low-speed USB device number 6 using dummy_hcd
[  481.635592][ T4363] usb 7-1: config 0 has no interfaces?
[  481.646599][ T4363] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  481.671980][ T9984] loop7: detected capacity change from 0 to 8
[  481.680013][ T4363] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  481.751965][ T4363] usb 7-1: config 0 descriptor??
[  481.811106][ T9984] SQUASHFS error: xz decompression failed, data probably corrupt
[  481.819900][ T9984] SQUASHFS error: Failed to read block 0x108: -5
[  481.890659][ T9984] SQUASHFS error: Unable to read metadata cache entry [106]
[  481.898042][ T9984] SQUASHFS error: Unable to read inode 0x11f
[  482.023540][ T9972] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 2
[  482.052329][ T6576] vhci_hcd: stop threads
[  482.056089][    T7] usb 7-1: USB disconnect, device number 6
[  482.056731][ T6576] vhci_hcd: release socket
[  482.101449][ T6576] vhci_hcd: disconnect device
[  482.307523][ T9990] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1659'.
[  484.044570][ T6476] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  484.321842][ T6476] usb 8-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e
[  484.382192][ T6476] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  484.437371][T10019] xt_HMARK: proto mask must be zero with L3 mode
[  484.445920][ T6476] usb 8-1: config 0 descriptor??
[  484.745213][T10010] netlink: 'syz.7.1664': attribute type 10 has an invalid length.
[  484.772799][T10010] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  484.829904][ T6476] ath6kl: Failed to submit usb control message: -71
[  484.840892][ T6476] ath6kl: unable to send the bmi data to the device: -71
[  484.848274][ T6476] ath6kl: Unable to send get target info: -71
[  484.877497][ T6476] ath6kl: Failed to init ath6kl core: -71
[  485.082263][ T6476] ath6kl_usb: probe of 8-1:0.0 failed with error -71
[  485.119022][ T6476] usb 8-1: USB disconnect, device number 4
[  486.590872][ T4331] vhci_hcd: vhci_device speed not set
[  486.614370][T10045] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  486.926725][T10058] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(4)
[  486.933381][T10058] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  487.234215][T10058] vhci_hcd vhci_hcd.0: Device attached
[  488.110749][   T22] vhci_hcd: vhci_device speed not set
[  488.180523][   T22] usb 47-1: new full-speed USB device number 2 using vhci_hcd
[  488.180700][ T4326] usb 8-1: new low-speed USB device number 5 using dummy_hcd
[  488.283938][ T6595] device hsr_slave_0 left promiscuous mode
[  488.312378][ T6595] device hsr_slave_1 left promiscuous mode
[  488.340632][ T6595] device vlan3 left promiscuous mode
[  488.346226][ T6595] device bond0 left promiscuous mode
[  488.367843][ T6595] bridge0: port 1(vlan3) entered disabled state
[  488.403864][ T4326] usb 8-1: config 0 has no interfaces?
[  488.412368][ T4326] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  488.455268][ T4326] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  488.496607][ T4326] usb 8-1: config 0 descriptor??
[  488.667559][ T6595] device veth1_macvtap left promiscuous mode
[  488.678794][ T6595] device veth0_macvtap left promiscuous mode
[  488.694417][ T6595] device veth1_vlan left promiscuous mode
[  488.756841][T10059] vhci_hcd: unknown pdu 2
[  488.762994][ T6584] vhci_hcd: stop threads
[  488.767482][ T6584] vhci_hcd: release socket
[  488.782897][ T6584] vhci_hcd: disconnect device
[  488.784588][ T4326] usb 8-1: USB disconnect, device number 5
[  488.853086][   T22] vhci_hcd: vhci_device speed not set
[  489.865938][ T6595] bond5 (unregistering): Released all slaves
[  490.988122][ T6595] bond4 (unregistering): Released all slaves
[  491.001935][ T6595] bond3 (unregistering): Released all slaves
[  491.370500][ T6595] bond2 (unregistering): Released all slaves
[  492.577695][ T6595] bond1 (unregistering): Released all slaves
[  495.643457][T10131] overlayfs: missing 'workdir'
[  495.648245][ T4331] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  495.661619][ T4331] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  495.792605][T10132] fido_id[10132]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  496.105871][ T6595] team0 (unregistering): Port device bond0 removed
[  496.337772][ T6595] bond0 (unregistering): Released all slaves
[  496.483577][T10103] device vlan2 entered promiscuous mode
[  498.066976][T10161] loop6: detected capacity change from 0 to 256
[  498.148148][T10161] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  498.418124][   T27] audit: type=1326 audit(1754448038.871:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10168 comm="syz.7.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  498.862840][T10161] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  498.936743][T10161] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  498.949082][   T27] audit: type=1326 audit(1754448039.331:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10168 comm="syz.7.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  498.949131][   T27] audit: type=1326 audit(1754448039.331:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10168 comm="syz.7.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  499.125079][   T27] audit: type=1326 audit(1754448039.331:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10168 comm="syz.7.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  499.148374][   T27] audit: type=1326 audit(1754448039.331:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10168 comm="syz.7.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  499.180477][   T27] audit: type=1326 audit(1754448039.331:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10168 comm="syz.7.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  499.323347][   T27] audit: type=1326 audit(1754448039.331:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10168 comm="syz.7.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  499.406021][   T27] audit: type=1326 audit(1754448039.331:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10168 comm="syz.7.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  499.441177][   T27] audit: type=1326 audit(1754448039.331:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10168 comm="syz.7.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  499.467587][   T27] audit: type=1326 audit(1754448039.331:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10168 comm="syz.7.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  500.747624][T10206] overlayfs: failed to clone upperpath
[  501.623782][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  501.631559][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  502.670183][T10223] xt_nfacct: accounting object `syz1' does not exists
[  504.152089][T10239] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1723'.
[  504.377044][ T4273] Bluetooth: hci5: Unknown advertising packet type: 0x4b00
[  504.377121][ T4273] Bluetooth: hci5: Unknown advertising packet type: 0xa00
[  504.385517][ T4273] Bluetooth: hci5: Malformed LE Event: 0x0d
[  504.403560][T10251] netlink: 'syz.7.1725': attribute type 12 has an invalid length.
[  505.337875][T10266] loop7: detected capacity change from 0 to 256
[  505.400784][T10266] exFAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  505.430443][T10266] exFAT-fs (loop7): Medium has reported failures. Some data may be lost.
[  505.462714][T10266] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  511.625427][T10327] loop7: detected capacity change from 0 to 128
[  512.488810][T10327] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  512.518908][T10327] ext4 filesystem being mounted at /132/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  512.755246][ T7620] EXT4-fs (loop7): unmounting filesystem.
[  515.656982][T10258] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  515.676908][T10258] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  515.689833][T10258] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  515.705306][T10258] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  515.759692][T10350] capability: warning: `syz.7.1750' uses 32-bit capabilities (legacy support in use)
[  515.864745][T10357] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1751'.
[  518.292015][T10369] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1753'.
[  526.272768][T10430] bridge0: port 1(syz_tun) entered disabled state
[  528.405645][T10430] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  528.416486][T10430] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  528.425976][T10430] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  528.435074][T10430] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  528.590477][T10461] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1787'.
[  528.622996][T10466] netlink: 'syz.3.1777': attribute type 10 has an invalid length.
[  530.008372][T10495] loop6: detected capacity change from 0 to 2048
[  530.102530][T10499] loop7: detected capacity change from 0 to 512
[  530.152684][T10499] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  530.177723][T10495]  loop6: p1 < > p3
[  530.188789][T10495] loop6: p3 size 134217728 extends beyond EOD, truncated
[  530.241102][T10499] EXT4-fs (loop7): warning: checktime reached, running e2fsck is recommended
[  530.261064][T10499] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c01c, mo2=0002]
[  530.291916][T10499] System zones: 0-2, 18-18, 34-34
[  530.377964][T10499] EXT4-fs error (device loop7): ext4_orphan_get:1400: inode #15: comm syz.7.1784: iget: bad i_size value: 360287970189639680
[  530.405638][T10499] EXT4-fs error (device loop7): ext4_orphan_get:1405: comm syz.7.1784: couldn't read orphan inode 15 (err -117)
[  530.431249][T10495] kvm: emulating exchange as write
[  530.501646][T10499] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  530.597223][T10499] EXT4-fs (loop7): unmounting filesystem.
[  535.306900][T10546] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1793'.
[  535.599019][T10547] ptrace attach of "./syz-executor exec"[4270] was attempted by "./syz-executor exec"[10547]
[  538.197788][T10567] netlink: 92 bytes leftover after parsing attributes in process `syz.6.1801'.
[  540.621395][T10609] device team0 left promiscuous mode
[  540.626765][T10609] device bond0 left promiscuous mode
[  540.670688][T10609] device wlan1 left promiscuous mode
[  540.682636][T10609] device bond1 left promiscuous mode
[  542.068622][T10626] overlayfs: failed to clone lowerpath
[  545.220487][   T27] kauditd_printk_skb: 20 callbacks suppressed
[  545.220507][   T27] audit: type=1326 audit(1754448085.661:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10645 comm="syz.3.1823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  546.022029][   T27] audit: type=1326 audit(1754448085.661:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10645 comm="syz.3.1823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  546.092198][   T27] audit: type=1326 audit(1754448085.661:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10645 comm="syz.3.1823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  546.169843][T10667] device bridge1 left promiscuous mode
[  546.277918][   T27] audit: type=1326 audit(1754448085.661:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10645 comm="syz.3.1823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  549.281025][T10695] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  549.289860][T10695] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  549.299178][T10695] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  549.308093][T10695] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  549.539704][T10695] bond0: (slave vxlan0): Enslaving as an active interface with an up link
[  550.270534][ T4273] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  550.279638][ T4273] Bluetooth: hci0: Injecting HCI hardware error event
[  550.290104][   T48] Bluetooth: hci0: hardware error 0x00
[  550.532394][T10721] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  550.532394][T10721] The task syz.0.1837 (10721) triggered the difference, watch for misbehavior.
[  550.750418][ T3624] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  551.038128][T10732] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1842'.
[  551.050418][ T3624] usb 7-1: Using ep0 maxpacket: 32
[  551.058512][ T3624] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  551.081112][ T3624] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  551.099511][ T3624] usb 7-1: New USB device found, idVendor=17ef, idProduct=6062, bcdDevice= 0.00
[  551.117463][ T3624] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  551.150814][ T3624] usb 7-1: config 0 descriptor??
[  552.309047][ T3624] usbhid 7-1:0.0: can't add hid device: -71
[  552.396496][ T3624] usbhid: probe of 7-1:0.0 failed with error -71
[  552.458304][ T3624] usb 7-1: USB disconnect, device number 7
[  552.500632][   T48] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  557.009114][T10818] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  557.115819][T10818] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  557.256205][T10818] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  557.528507][T10818] bond0: (slave bond_slave_0): Releasing backup interface
[  557.641081][T10818] bond0: (slave bond_slave_1): Releasing backup interface
[  557.857847][T10818] team0: Port device team_slave_0 removed
[  557.968912][T10818] team0: Port device team_slave_1 removed
[  558.093159][T10818] bond0: (slave wlan1): Releasing backup interface
[  558.532944][T10818] bond1: (slave gretap1): Releasing active interface
[  559.043384][T10818] bond2: (slave ip6gretap1): Releasing active interface
[  559.139083][T10841] ipt_REJECT: ECHOREPLY no longer supported.
[  559.673827][T10818] bond3: (slave veth5): Releasing active interface
[  559.684247][T10818] bond3: (slave veth5): the permanent HWaddr of slave - 6a:1a:75:56:f7:fd - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  559.762965][T10818] device vlan2 entered promiscuous mode
[  560.164342][T10818] bond3: (slave vlan2): Releasing active interface
[  560.187111][T10818] device vlan2 left promiscuous mode
[  560.265642][T10818] device veth1 left promiscuous mode
[  560.290883][T10820] team0: Mode changed to "broadcast"
[  560.676780][T10852] loop6: detected capacity change from 0 to 32768
[  560.684276][T10852] XFS: ikeep mount option is deprecated.
[  562.986901][T10852] XFS (loop6): Mounting V5 Filesystem
[  563.067620][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  563.074402][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  563.149213][T10875] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1878'.
[  563.214512][T10875] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[  563.444042][T10852] XFS (loop6): Ending clean mount
[  563.457560][T10852] XFS (loop6): Quotacheck needed: Please wait.
[  563.482969][T10883] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1878'.
[  564.266232][T10852] XFS (loop6): Quotacheck: Done.
[  564.303714][ T7081] XFS (loop6): Unmounting Filesystem
[  567.147065][T10899] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1884'.
[  567.219569][T10899] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1884'.
[  567.514050][   T27] audit: type=1326 audit(1754448107.921:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10902 comm="syz.4.1886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  567.623722][   T27] audit: type=1326 audit(1754448107.921:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10902 comm="syz.4.1886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  567.850081][   T27] audit: type=1326 audit(1754448107.921:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10902 comm="syz.4.1886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  568.021253][   T27] audit: type=1326 audit(1754448107.921:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10902 comm="syz.4.1886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=137 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  568.180239][   T27] audit: type=1326 audit(1754448107.921:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10902 comm="syz.4.1886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  568.400386][   T27] audit: type=1326 audit(1754448107.921:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10902 comm="syz.4.1886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  568.508631][   T27] audit: type=1326 audit(1754448107.921:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10902 comm="syz.4.1886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  568.544538][T10921] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  568.554859][   T27] audit: type=1326 audit(1754448107.921:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10902 comm="syz.4.1886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  569.925624][T10921] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  570.278900][   T27] audit: type=1326 audit(1754448107.921:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10902 comm="syz.4.1886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  570.329862][T10921] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  570.565427][   T27] audit: type=1326 audit(1754448107.921:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10902 comm="syz.4.1886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  571.974849][T10921] device vlan0 entered promiscuous mode
[  572.221748][T10925] team0: Mode changed to "activebackup"
[  572.240619][T10929] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1888'.
[  572.634982][   T27] kauditd_printk_skb: 7 callbacks suppressed
[  572.635018][   T27] audit: type=1326 audit(1754448113.091:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10950 comm="syz.3.1897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  574.072037][   T27] audit: type=1326 audit(1754448114.371:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10950 comm="syz.3.1897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  574.150543][   T27] audit: type=1326 audit(1754448114.371:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10950 comm="syz.3.1897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  574.229294][   T27] audit: type=1326 audit(1754448114.371:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10950 comm="syz.3.1897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  574.260130][   T27] audit: type=1326 audit(1754448114.371:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10950 comm="syz.3.1897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  574.293064][   T27] audit: type=1326 audit(1754448114.371:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10950 comm="syz.3.1897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=312 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  574.988592][T10973] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1899'.
[  574.999000][T10973] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1899'.
[  575.071811][   T27] audit: type=1326 audit(1754448114.381:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10950 comm="syz.3.1897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  575.191738][   T27] audit: type=1326 audit(1754448114.381:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10950 comm="syz.3.1897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  575.326509][   T27] audit: type=1326 audit(1754448114.421:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10950 comm="syz.3.1897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=81 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  575.365434][   T27] audit: type=1326 audit(1754448114.421:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10950 comm="syz.3.1897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77ab98ebe9 code=0x7ffc0000
[  575.733017][T10984] xt_CT: You must specify a L4 protocol and not use inversions on it
[  578.582075][T11001] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1910'.
[  580.802862][T11029] loop6: detected capacity change from 0 to 64
[  587.451533][T11098] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1929'.
[  588.271331][T11103] netlink: 'syz.0.1930': attribute type 5 has an invalid length.
[  588.299041][T11103] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.1930'.
[  590.000890][T11121] loop6: detected capacity change from 0 to 1024
[  590.222355][T11121] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  590.241444][T11121] ext4 filesystem being mounted at /221/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  590.562930][T11121] EXT4-fs error (device loop6): ext4_map_blocks:745: inode #15: block 3: comm syz.6.1937: lblock 3 mapped to illegal pblock 3 (length 3)
[  591.300835][T11121] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  591.409671][T11121] EXT4-fs (loop6): This should not happen!! Data will be lost
[  591.409671][T11121] 
[  591.474814][T11133] EXT4-fs error (device loop6): ext4_map_blocks:635: inode #15: block 3: comm syz.6.1937: lblock 3 mapped to illegal pblock 3 (length 1)
[  591.696818][T11119] EXT4-fs error (device loop6): ext4_map_blocks:635: inode #15: block 3: comm syz.6.1937: lblock 3 mapped to illegal pblock 3 (length 1)
[  592.496939][   T11] EXT4-fs error (device loop6): ext4_map_blocks:745: inode #15: block 8: comm kworker/u4:1: lblock 8 mapped to illegal pblock 8 (length 8)
[  593.151530][   T11] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  593.220387][   T11] EXT4-fs (loop6): This should not happen!! Data will be lost
[  593.220387][   T11] 
[  593.269234][ T7081] EXT4-fs (loop6): unmounting filesystem.
[  593.850594][ T6476] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  594.085346][ T6476] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  594.134037][T11178] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1948'.
[  594.201342][ T6476] usb 8-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[  594.322915][ T6476] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40
[  594.372974][ T6476] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  594.389201][ T6476] usb 8-1: SerialNumber: syz
[  594.680553][T11184] 9pnet: Could not find request transport: f
[  596.708438][ T5009] usb 8-1: USB disconnect, device number 6
[  597.144372][T11227] netlink: 6 bytes leftover after parsing attributes in process `syz.7.1959'.
[  597.153411][T11227] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  602.600656][T11273] batman_adv: batadv0: Adding interface: dummy0
[  602.606988][T11273] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. If you experience problems getting traffic through try increasing the MTU to 1560.
[  602.626820][T11273] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[  603.468817][T11280] loop7: detected capacity change from 0 to 128
[  605.396445][T11280] syz.7.1971: attempt to access beyond end of device
[  605.396445][T11280] loop7: rw=2049, sector=145, nr_sectors = 160 limit=128
[  605.586382][T11280] syz.7.1971: attempt to access beyond end of device
[  605.586382][T11280] loop7: rw=524288, sector=145, nr_sectors = 160 limit=128
[  606.381039][T11317] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1980'.
[  606.777743][T11301] xt_hashlimit: max too large, truncated to 1048576
[  607.979961][T11344] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  609.760781][T11359] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  611.735051][    T7] tipc: Node number set to 2886997007
[  614.272007][T11414] netlink: 'syz.3.2003': attribute type 4 has an invalid length.
[  614.279942][T11414] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.2003'.
[  615.187719][T11422] netlink: 'syz.3.2005': attribute type 1 has an invalid length.
[  615.494432][T11430] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2005'.
[  615.943612][T11430] 8021q: adding VLAN 0 to HW filter on device bond2
[  616.017687][T11428] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 20000 - 0
[  616.057300][T11428] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 20000 - 0
[  616.072708][T11428] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 20000 - 0
[  616.086098][T11428] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 20000 - 0
[  616.116987][T11428] bond2: (slave geneve2): making interface the new active one
[  616.132879][T11428] bond2: (slave geneve2): Enslaving as an active interface with an up link
[  616.160430][   T68] IPv6: ADDRCONF(NETDEV_CHANGE): bond2: link becomes ready
[  618.636829][T11475] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2016'.
[  619.083051][T11489] Cannot find set identified by id 0 to match
[  619.110480][T11475] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2016'.
[  621.503102][T11513] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  624.504956][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  624.511742][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  624.982014][T11563] Cannot find set identified by id 0 to match
[  625.679254][T11542] 9pnet: Could not find request transport: f
[  625.858102][T11573] loop7: detected capacity change from 0 to 1764
[  626.869850][T11583] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2040'.
[  626.983681][T11584] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2040'.
[  627.605109][T11593] 9pnet_virtio: no channels available for device 
[  627.626550][T11597] overlayfs: failed to clone lowerpath
[  630.481794][T11633] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2052'.
[  630.490904][T11633] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2052'.
[  637.113036][T11717] netlink: 168 bytes leftover after parsing attributes in process `syz.4.2071'.
[  641.888896][T11763] netlink: 24 bytes leftover after parsing attributes in process `syz.7.2083'.
[  642.041171][T11769] sch_tbf: burst 511 is lower than device veth3 mtu (1514) !
[  642.254983][T11776] loop6: detected capacity change from 0 to 1764
[  643.310951][T11787] xt_CT: You must specify a L4 protocol and not use inversions on it
[  646.431817][T11807] loop6: detected capacity change from 0 to 128
[  647.626814][T11833] ptrace attach of "./syz-executor exec"[7081] was attempted by "./syz-executor exec"[11833]
[  655.485111][T11923] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  655.494567][T11923] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  655.503675][T11923] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  655.512600][T11923] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  655.686746][T11923] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 20000 - 0
[  655.757746][T11923] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 20000 - 0
[  655.797991][T11923] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 20000 - 0
[  655.860810][T11923] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 20000 - 0
[  656.194945][ T5009] usb 7-1: new full-speed USB device number 8 using dummy_hcd
[  656.429958][ T5009] usb 7-1: config 0 has an invalid interface number: 20 but max is 0
[  656.454671][ T5009] usb 7-1: config 0 has no interface number 0
[  656.481300][ T5009] usb 7-1: config 0 interface 20 altsetting 0 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[  656.525619][ T5009] usb 7-1: New USB device found, idVendor=04e6, idProduct=000b, bcdDevice= 1.00
[  656.591413][ T5009] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  656.650413][ T5009] usb 7-1: Product: syz
[  656.706936][ T5009] usb 7-1: Manufacturer: syz
[  656.730447][ T5009] usb 7-1: SerialNumber: syz
[  656.774008][ T5009] usb 7-1: config 0 descriptor??
[  656.811617][T11962] netlink: 'syz.3.2118': attribute type 1 has an invalid length.
[  656.820646][T11962] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2118'.
[  656.876187][T11951] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  657.038069][ T5009] usb-storage 7-1:0.20: USB Mass Storage device detected
[  657.373782][ T5009] usb-storage 7-1:0.20: Quirks match for vid 04e6 pid 000b: 4
[  657.442349][ T5009] scsi host1: usb-storage 7-1:0.20
[  657.548397][ T5009] usb 7-1: USB disconnect, device number 8
[  660.931777][T11995] netlink: 'syz.0.2126': attribute type 1 has an invalid length.
[  661.004130][T12002] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 20000 - 0
[  661.013482][T12002] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 20000 - 0
[  661.022953][T12002] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 20000 - 0
[  661.032575][T12002] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 20000 - 0
[  661.043362][T12002] bond2: (slave geneve2): making interface the new active one
[  661.220625][   T26] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  661.347087][T12002] bond2: (slave geneve2): Enslaving as an active interface with an up link
[  661.765394][T11995] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2126'.
[  661.811542][T11995] 8021q: adding VLAN 0 to HW filter on device bond2
[  661.870398][   T26] usb 8-1: Using ep0 maxpacket: 8
[  661.882005][   T26] usb 8-1: New USB device found, idVendor=2833, idProduct=0201, bcdDevice=2a.d5
[  662.960312][T12012] 9pnet_fd: Insufficient options for proto=fd
[  663.136821][   T26] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  663.162801][   T68] IPv6: ADDRCONF(NETDEV_CHANGE): bond2: link becomes ready
[  663.207316][   T26] usb 8-1: config 0 descriptor??
[  664.778386][T12017] I/O error, dev loop7, sector 2 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 2
[  664.792550][T12017] EXT4-fs (loop7): unable to read superblock
[  664.861242][ T3624] usb 8-1: USB disconnect, device number 7
[  665.231425][   T27] kauditd_printk_skb: 22 callbacks suppressed
[  665.231460][   T27] audit: type=1326 audit(1754448205.681:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12026 comm="syz.6.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  665.819337][   T27] audit: type=1326 audit(1754448205.681:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12026 comm="syz.6.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  665.970592][   T27] audit: type=1326 audit(1754448205.681:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12026 comm="syz.6.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  666.100648][   T27] audit: type=1326 audit(1754448205.681:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12026 comm="syz.6.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  666.150381][   T27] audit: type=1326 audit(1754448205.681:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12026 comm="syz.6.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  666.229501][T12048] netlink: 'syz.0.2138': attribute type 1 has an invalid length.
[  666.237558][T12048] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2138'.
[  667.041337][   T27] audit: type=1326 audit(1754448205.681:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12026 comm="syz.6.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  668.036692][   T27] audit: type=1326 audit(1754448205.681:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12026 comm="syz.6.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  668.226958][   T27] audit: type=1326 audit(1754448205.691:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12026 comm="syz.6.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157118ebe9 code=0x7ffc0000
[  668.571363][T12068] netlink: 'syz.4.2144': attribute type 1 has an invalid length.
[  668.717132][T12070] netdevsim netdevsim4 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  668.788008][T12070] netdevsim netdevsim4 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  668.850789][T12070] netdevsim netdevsim4 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  668.863210][T12070] netdevsim netdevsim4 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  668.905100][T12070] bond4: (slave geneve2): making interface the new active one
[  668.937911][T12070] bond4: (slave geneve2): Enslaving as an active interface with an up link
[  668.975648][T12068] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2144'.
[  669.034988][T12068] 8021q: adding VLAN 0 to HW filter on device bond4
[  672.214890][T12104] netlink: 'syz.7.2153': attribute type 1 has an invalid length.
[  672.223240][T12104] netlink: 24 bytes leftover after parsing attributes in process `syz.7.2153'.
[  672.833184][T12108] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2157'.
[  676.030128][T12142] netlink: 'syz.6.2164': attribute type 1 has an invalid length.
[  677.713604][T12151] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 20000 - 0
[  677.723882][T12151] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 20000 - 0
[  677.732994][T12151] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 20000 - 0
[  677.741896][T12151] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 20000 - 0
[  677.752406][T12151] bond1: (slave geneve2): making interface the new active one
[  677.761187][T12151] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  677.817171][T12142] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2164'.
[  677.837639][T12142] 8021q: adding VLAN 0 to HW filter on device bond1
[  678.673125][ T4900] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready
[  680.429767][T12189] loop7: detected capacity change from 0 to 1024
[  681.591163][ T6585] hfsplus: b-tree write err: -5, ino 4
[  681.681544][T12199] 9pnet_virtio: no channels available for device 
[  684.119703][T12222] netlink: 'syz.7.2183': attribute type 1 has an invalid length.
[  684.208417][T12225] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 20000 - 0
[  684.318874][T12225] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 20000 - 0
[  684.361622][T12225] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 20000 - 0
[  684.387149][T12225] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 20000 - 0
[  684.437794][T12225] bond2: (slave geneve2): making interface the new active one
[  684.636150][T12225] bond2: (slave geneve2): Enslaving as an active interface with an up link
[  685.391375][T12222] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2183'.
[  685.951103][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  685.958001][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  686.758676][T12239] loop7: detected capacity change from 0 to 1024
[  686.792615][T12239] EXT4-fs (loop7): filesystem is read-only
[  686.825105][   T27] audit: type=1326 audit(1754448227.281:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12238 comm="syz.7.2187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  686.978813][   T27] audit: type=1326 audit(1754448227.281:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12238 comm="syz.7.2187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  687.055204][   T27] audit: type=1326 audit(1754448227.281:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12238 comm="syz.7.2187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  687.127800][   T27] audit: type=1326 audit(1754448227.281:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12238 comm="syz.7.2187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  687.198801][   T27] audit: type=1326 audit(1754448227.281:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12238 comm="syz.7.2187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  687.199934][T12245] loop7: detected capacity change from 0 to 4096
[  687.279970][T12245] ntfs3: loop7: Different NTFS' sector size (4096) and media sector size (512)
[  687.298087][   T27] audit: type=1326 audit(1754448227.281:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12238 comm="syz.7.2187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  687.401387][   T27] audit: type=1326 audit(1754448227.281:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12238 comm="syz.7.2187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  687.456095][T12245] ntfs3: loop7: Mark volume as dirty due to NTFS errors
[  687.526681][T12245] ntfs3: loop7: Failed to load $Extend.
[  687.618526][   T27] audit: type=1326 audit(1754448227.281:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12238 comm="syz.7.2187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  688.262949][   T27] audit: type=1326 audit(1754448227.281:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12238 comm="syz.7.2187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  688.295759][   T27] audit: type=1326 audit(1754448227.281:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12238 comm="syz.7.2187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85a418ebe9 code=0x7ffc0000
[  691.729350][T12276] netlink: 180900 bytes leftover after parsing attributes in process `syz.0.2199'.
[  691.882811][T12276] openvswitch: netlink: Flow actions attr not present in new flow.
[  695.546466][T12294] loop7: detected capacity change from 0 to 4096
[  696.347653][T12294] EXT4-fs: failed to create workqueue
[  696.413977][T12294] EXT4-fs (loop7): mount failed
[  704.813676][T12423] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2231'.
[  705.371944][T12423] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2231'.
[  706.251659][T12428] tipc: Enabled bearer <udp:syz2>, priority 10
[  706.380833][T12423] tipc: Enabling of bearer <eth:team0> rejected, failed to enable media
[  706.522918][T12434] tipc: Started in network mode
[  706.528071][T12434] tipc: Node identity 080211, cluster identity 4711
[  706.534924][T12434] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  707.916927][ T3624] tipc: Node number set to 134353152
[  712.524334][T12484] No such timeout policy "syz0"
[  715.486855][T12512] netdevsim netdevsim6 netdevsim0: set [1, 1] type 2 family 0 port 6081 - 0
[  715.496011][T12512] netdevsim netdevsim6 netdevsim1: set [1, 1] type 2 family 0 port 6081 - 0
[  715.505030][T12512] netdevsim netdevsim6 netdevsim2: set [1, 1] type 2 family 0 port 6081 - 0
[  715.514039][T12512] netdevsim netdevsim6 netdevsim3: set [1, 1] type 2 family 0 port 6081 - 0
[  717.091457][T12515] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2257'.
[  717.163470][T12515] device macvtap1 entered promiscuous mode
[  717.180968][T12515] device bridge0 entered promiscuous mode
[  717.548328][T12528] device bridge0 left promiscuous mode
[  721.720361][ T5009] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  721.767210][T12581] tipc: Started in network mode
[  721.790887][T12581] tipc: Node identity 080211000001, cluster identity 4711
[  721.816474][T12581] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  722.006269][T12581] device syzkaller0 entered promiscuous mode
[  722.027526][T12581] tipc: Resetting bearer <eth:syzkaller0>
[  722.137385][T12581] tipc: Resetting bearer <eth:syzkaller0>
[  722.291462][ T5009] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  722.331861][ T5009] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  722.368725][ T5009] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  722.603050][ T5009] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  723.049108][ T3624] tipc: Node number set to 134418688
[  723.057821][T12574] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  724.349030][ T5007] usb 8-1: USB disconnect, device number 8
[  728.070861][   T27] kauditd_printk_skb: 20 callbacks suppressed
[  728.070877][   T27] audit: type=1326 audit(1754448268.531:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12643 comm="syz.0.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  728.250431][   T27] audit: type=1326 audit(1754448268.531:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12643 comm="syz.0.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  728.394017][T12654] xt_recent: hitcount (16385) is larger than allowed maximum (255)
[  729.229770][   T27] audit: type=1326 audit(1754448268.531:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12643 comm="syz.0.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  729.274706][   T27] audit: type=1326 audit(1754448268.531:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12643 comm="syz.0.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  729.830390][   T27] audit: type=1326 audit(1754448268.531:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12643 comm="syz.0.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  729.872367][T12658] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2297'.
[  730.074700][T12663] bridge0: port 1(ip6gretap1) entered blocking state
[  730.091555][   T27] audit: type=1326 audit(1754448268.531:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12643 comm="syz.0.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  730.098534][T12663] bridge0: port 1(ip6gretap1) entered disabled state
[  730.225756][T12663] device ip6gretap1 entered promiscuous mode
[  730.371512][   T27] audit: type=1326 audit(1754448268.531:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12643 comm="syz.0.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  730.876315][T12673] ptrace attach of "./syz-executor exec"[7081] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[  731.052105][   T27] audit: type=1326 audit(1754448268.531:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12643 comm="syz.0.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  731.376677][   T27] audit: type=1326 audit(1754448268.531:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12643 comm="syz.0.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  731.399211][   T27] audit: type=1326 audit(1754448268.531:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12643 comm="syz.0.2293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63f7b8ebe9 code=0x7ffc0000
[  731.586914][T12666] device veth3 entered promiscuous mode
[  731.648614][T12666] bridge0: port 2(veth3) entered blocking state
[  731.775005][T12666] bridge0: port 2(veth3) entered disabled state
[  732.245395][T12678] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  732.254488][T12678] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  732.263397][T12678] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  732.272211][T12678] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  736.585395][T12720] netlink: 84 bytes leftover after parsing attributes in process `syz.7.2311'.
[  737.918313][T12730] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2317'.
[  737.974130][T12730] bridge3: port 1(ip6gretap1) entered blocking state
[  737.996039][T12730] bridge3: port 1(ip6gretap1) entered disabled state
[  738.521862][T12730] device ip6gretap1 entered promiscuous mode
[  738.773158][T12745] device veth7 entered promiscuous mode
[  741.061030][T12761] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2320'.
[  748.122272][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  748.128659][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  749.975392][T12843] loop7: detected capacity change from 0 to 256
[  750.167924][T12843] FAT-fs (loop7): Directory bread(block 64) failed
[  750.215346][T12843] FAT-fs (loop7): Directory bread(block 65) failed
[  750.269520][T12843] FAT-fs (loop7): Directory bread(block 66) failed
[  750.732239][T12843] FAT-fs (loop7): Directory bread(block 67) failed
[  750.750794][T12843] FAT-fs (loop7): Directory bread(block 68) failed
[  751.066254][T12843] FAT-fs (loop7): Directory bread(block 69) failed
[  751.149790][T12843] FAT-fs (loop7): Directory bread(block 70) failed
[  751.288482][T12843] FAT-fs (loop7): Directory bread(block 71) failed
[  751.325500][T12843] FAT-fs (loop7): Directory bread(block 72) failed
[  751.370124][T12843] FAT-fs (loop7): Directory bread(block 73) failed
[  752.300018][T12867] IPVS: Unknown mcast interface: vcan0
[  754.951089][ T6572] kworker/u4:25: attempt to access beyond end of device
[  754.951089][ T6572] loop7: rw=1, sector=1224, nr_sectors = 544 limit=256
[  755.057218][ T6572] kworker/u4:25: attempt to access beyond end of device
[  755.057218][ T6572] loop7: rw=1, sector=1800, nr_sectors = 128 limit=256
[  755.578550][ T6572] kworker/u4:25: attempt to access beyond end of device
[  755.578550][ T6572] loop7: rw=1, sector=1960, nr_sectors = 13888 limit=256
[  756.240890][ T6572] kworker/u4:25: attempt to access beyond end of device
[  756.240890][ T6572] loop7: rw=1, sector=15848, nr_sectors = 9600 limit=256
[  757.015666][T12904] loop6: detected capacity change from 0 to 512
[  757.055820][T12904] EXT4-fs: Ignoring removed mblk_io_submit option
[  757.228102][T12904] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  757.238258][T12904] EXT4-fs (loop6): DAX unsupported by block device.
[  759.142693][T12924] netlink: 'syz.3.2361': attribute type 7 has an invalid length.
[  759.574205][T12933] No source specified
[  759.950480][ T4326] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  761.241805][ T4326] usb 7-1: New USB device found, idVendor=0572, idProduct=cb01, bcdDevice=26.65
[  761.451394][ T4326] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  761.471011][ T4326] usb 7-1: Product: syz
[  761.475258][ T4326] usb 7-1: Manufacturer: syz
[  761.480000][ T4326] usb 7-1: SerialNumber: syz
[  761.520315][ T4326] usb 7-1: config 0 descriptor??
[  761.572878][T12939] netlink: 'syz.7.2375': attribute type 7 has an invalid length.
[  762.307595][T12925] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2362'.
[  762.385600][T12925] device macvtap2 entered promiscuous mode
[  762.520457][T12925] device bond0 entered promiscuous mode
[  762.526722][T12925] 8021q: adding VLAN 0 to HW filter on device macvtap2
[  763.537331][T12957] device bond0 left promiscuous mode
[  763.616882][ T4326] cx82310_eth: probe of 7-1:0.0 failed with error -22
[  763.655489][ T4326] cxacru 7-1:0.0: usbatm_usb_probe: bind failed: -19!
[  763.710651][ T4326] usb 7-1: USB disconnect, device number 9
[  764.088347][T12975] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  764.097161][T12975] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  764.105947][T12975] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  764.114764][T12975] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  766.170681][   T48] Bluetooth: Frame is too long (len 18, expected len 4)
[  766.835346][T12992] loop7: detected capacity change from 0 to 4096
[  767.049601][ T3624] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  768.383728][T13003] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  768.396894][ T3624] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  768.438623][ T3624] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  768.516349][ T3624] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  768.699283][ T3624] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  768.750719][T12987] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  769.874209][ T3624] usb 7-1: USB disconnect, device number 10
[  771.562561][T13027] tipc: Started in network mode
[  771.567593][T13027] tipc: Node identity 7ee8b7154fd6, cluster identity 4711
[  771.635095][T12601] udevd[12601]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  771.653441][T13027] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  771.691346][T13037] device syzkaller0 entered promiscuous mode
[  771.977055][T13035] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2391'.
[  772.099866][T13045] 8021q: adding VLAN 0 to HW filter on device bond5
[  772.154143][T13027] tipc: Resetting bearer <eth:syzkaller0>
[  772.216389][T13047] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  772.229849][T13047] bond5: (slave macvlan2): Enslaving as a backup interface with a down link
[  772.243223][T13025] tipc: Resetting bearer <eth:syzkaller0>
[  772.306244][T13049] xt_connbytes: Forcing CT accounting to be enabled
[  772.313609][T13049] set match dimension is over the limit!
[  772.703171][   T26] tipc: Node number set to 826193685
[  772.820722][T13025] tipc: Disabling bearer <eth:syzkaller0>
[  773.345556][T13051] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  773.548398][T13062] loop7: detected capacity change from 0 to 128
[  774.217961][T13065] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  774.226785][T13065] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  774.235652][T13065] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  774.244401][T13065] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  782.131701][T13109] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  782.168566][T13109] device syzkaller0 entered promiscuous mode
[  782.239024][T13109] tipc: Resetting bearer <eth:syzkaller0>
[  782.249980][T13108] tipc: Resetting bearer <eth:syzkaller0>
[  782.387489][T13108] tipc: Disabling bearer <eth:syzkaller0>
[  783.290472][T13124] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  783.548152][T13133] loop7: detected capacity change from 0 to 512
[  783.576927][T13133] EXT4-fs: Ignoring removed mblk_io_submit option
[  783.606236][T13133] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  783.644354][T13133] EXT4-fs (loop7): DAX unsupported by block device.
[  787.740427][    T7] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  787.960383][    T7] usb 7-1: Using ep0 maxpacket: 32
[  787.969523][    T7] usb 7-1: config 0 has an invalid interface number: 50 but max is 0
[  788.128257][    T7] usb 7-1: config 0 has no interface number 0
[  788.248852][    T7] usb 7-1: New USB device found, idVendor=0403, idProduct=bca2, bcdDevice=bf.71
[  788.431412][    T7] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=27
[  788.586997][T13173] loop7: detected capacity change from 0 to 512
[  788.596478][    T7] usb 7-1: SerialNumber: syz
[  788.781687][T13173] EXT4-fs: Ignoring removed bh option
[  788.804230][    T7] usb 7-1: config 0 descriptor??
[  788.948377][T13173] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  789.018123][    T7] ftdi_sio 7-1:0.50: FTDI USB Serial Device converter detected
[  789.204992][    T7] ftdi_sio ttyUSB0: unknown device type: 0xbf71
[  789.787518][T13173] EXT4-fs (loop7): 1 truncate cleaned up
[  789.876394][T13173] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  790.026864][T13178] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2427'.
[  790.309770][    T7] usb 7-1: USB disconnect, device number 11
[  790.326615][    T7] ftdi_sio 7-1:0.50: device disconnected
[  792.453133][ T7620] EXT4-fs (loop7): unmounting filesystem.
[  792.466125][T13187] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2432'.
[  795.609468][T13220] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  796.107592][T13223] netlink: 72 bytes leftover after parsing attributes in process `syz.7.2437'.
[  798.918013][T13252] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2448'.
[  803.792863][T13296] netlink: 'syz.6.2459': attribute type 10 has an invalid length.
[  803.841624][T13296] bond0: (slave wlan1): Opening slave failed
[  805.411917][T13324] overlayfs: failed to clone lowerpath
[  806.914567][T13339] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  809.084104][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  809.091035][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  809.348969][T13375] netlink: 72 bytes leftover after parsing attributes in process `syz.3.2480'.
[  809.366247][ T4417] IPv6: ADDRCONF(NETDEV_CHANGE): vlan2: link becomes ready
[  810.361688][T13381] netlink: 'syz.6.2483': attribute type 10 has an invalid length.
[  810.403982][T13381] team0: Port device dummy0 added
[  812.834793][T13394] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  812.842377][T13394] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  812.853134][T13394] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  812.860847][T13394] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  812.868431][T13394] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  812.876094][T13394] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  816.676604][T13450] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  820.065209][T13482] netlink: 32 bytes leftover after parsing attributes in process `syz.6.2505'.
[  827.321101][T13555] IPv6: Can't replace route, no match found
[  831.360146][T13586] device gtp0 entered promiscuous mode
[  831.400801][T13592] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  833.362502][T13616] loop6: detected capacity change from 0 to 256
[  833.799159][T13616] FAT-fs (loop6): Directory bread(block 64) failed
[  833.821832][T13616] FAT-fs (loop6): Directory bread(block 65) failed
[  833.872305][T13616] FAT-fs (loop6): Directory bread(block 66) failed
[  834.191792][T13616] FAT-fs (loop6): Directory bread(block 67) failed
[  834.221923][T13616] FAT-fs (loop6): Directory bread(block 68) failed
[  834.228524][T13616] FAT-fs (loop6): Directory bread(block 69) failed
[  834.306842][T13620] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  834.327114][T13616] FAT-fs (loop6): Directory bread(block 70) failed
[  834.340812][T13621] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  834.361311][T13616] FAT-fs (loop6): Directory bread(block 71) failed
[  834.379393][T13616] FAT-fs (loop6): Directory bread(block 72) failed
[  834.399773][T13616] FAT-fs (loop6): Directory bread(block 73) failed
[  834.727208][T13631] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  834.765481][T13631] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[  836.172273][T13631] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[  836.564354][T13631] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[  836.838542][T13631] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready
[  837.165368][T13631] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[  837.359320][T13645] trusted_key: encrypted_key: insufficient parameters specified
[  837.798622][T13631] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[  837.891316][T13638] device ip6erspan0 entered promiscuous mode
[  838.734650][T13666] overlayfs: failed to clone lowerpath
[  842.248729][T13694] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2557'.
[  842.968240][T13720] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  842.983467][T13720] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[  842.991953][T13720] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[  843.000384][T13720] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[  843.768912][T13720] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready
[  843.776757][T13720] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[  843.784521][T13720] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[  843.794096][T13720] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  843.908489][T13720] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  848.365903][T13777] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  849.548982][T13794] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  850.787855][T13794] device syzkaller0 entered promiscuous mode
[  852.079239][T13794] tipc: Resetting bearer <eth:syzkaller0>
[  852.283244][T13793] tipc: Resetting bearer <eth:syzkaller0>
[  852.456553][T13793] tipc: Disabling bearer <eth:syzkaller0>
[  853.447867][T13834] loop7: detected capacity change from 0 to 512
[  853.523993][T13837] futex_wake_op: syz.4.2597 tries to shift op by -1; fix this program
[  853.539843][   T27] kauditd_printk_skb: 19 callbacks suppressed
[  853.539857][   T27] audit: type=1326 audit(1754448393.991:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13836 comm="syz.4.2597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  853.615986][   T27] audit: type=1326 audit(1754448394.021:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13836 comm="syz.4.2597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  853.646087][T13834] EXT4-fs error (device loop7): ext4_validate_block_bitmap:438: comm syz.7.2594: bg 0: block 393: padding at end of block bitmap is not set
[  854.051790][T13834] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  854.287728][   T27] audit: type=1326 audit(1754448394.031:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13836 comm="syz.4.2597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  854.289948][T13834] EXT4-fs (loop7): 2 truncates cleaned up
[  854.389900][   T27] audit: type=1326 audit(1754448394.031:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13836 comm="syz.4.2597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  854.407728][T13834] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  854.568012][   T27] audit: type=1326 audit(1754448394.031:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13836 comm="syz.4.2597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  854.672312][   T27] audit: type=1326 audit(1754448394.031:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13836 comm="syz.4.2597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  854.704571][   T27] audit: type=1326 audit(1754448394.031:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13836 comm="syz.4.2597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  854.727882][   T27] audit: type=1326 audit(1754448394.031:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13836 comm="syz.4.2597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  855.012237][   T27] audit: type=1326 audit(1754448394.031:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13836 comm="syz.4.2597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  855.492596][   T27] audit: type=1326 audit(1754448394.031:541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13836 comm="syz.4.2597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0f4078ebe9 code=0x7ffc0000
[  857.481513][ T7620] EXT4-fs (loop7): unmounting filesystem.
[  858.211027][T13884] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  859.197613][T13911] tipc: Resetting bearer <eth:syzkaller0>
[  859.198579][T13911] tipc: Resetting bearer <eth:syzkaller0>
[  860.136328][T13918] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2616'.
[  861.248503][T13918] device macvtap1 entered promiscuous mode
[  861.284916][T13918] device ip6gretap0 entered promiscuous mode
[  861.322154][T13928] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2616'.
[  861.378377][T13928] device ip6gretap0 left promiscuous mode
[  861.981574][T13936] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2620'.
[  862.053245][T13937] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2621'.
[  862.169321][T13937] bridge2: port 1(ip6gretap2) entered blocking state
[  862.195885][T13937] bridge2: port 1(ip6gretap2) entered disabled state
[  862.225635][T13937] device ip6gretap2 entered promiscuous mode
[  864.971204][T13940] device veth9 entered promiscuous mode
[  865.041040][T13940] bridge2: port 2(veth9) entered blocking state
[  865.095978][T13940] bridge2: port 2(veth9) entered disabled state
[  868.588245][T13980] delete_channel: no stack
[  869.192844][T13996] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2633'.
[  870.400746][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  870.436386][T13998] UBIFS error (pid: 13998): cannot open "./file0", error -22
[  870.437404][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  872.137471][T14023] xt_TCPMSS: Only works on TCP SYN packets
[  874.929095][T14040] xt_socket: unknown flags 0x4
[  876.014256][T14053] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2648'.
[  881.502570][T14110] netlink: 72 bytes leftover after parsing attributes in process `syz.4.2662'.
[  882.358373][T14119] loop6: detected capacity change from 0 to 256
[  882.387006][T14119] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  882.417100][T14119] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  882.453212][T14119] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d)
[  883.421448][T14126] trusted_key: encrypted_key: keyword 'updat`Êfault' not recognized
[  884.582999][T14130] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2667'.
[  884.646319][T14136] loop7: detected capacity change from 0 to 1024
[  889.188655][T14171] MPTCP: kernel_bind error, err=-98
[  894.858346][T14193] ipt_REJECT: TCP_RESET invalid for non-tcp
[  896.352196][T14236] xt_TCPMSS: Only works on TCP SYN packets
[  898.461561][T14244] netlink: 14 bytes leftover after parsing attributes in process `syz.4.2695'.
[  898.542543][T14258] loop7: detected capacity change from 0 to 512
[  898.941443][T14258] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  899.067208][T14258] ext4 filesystem being mounted at /316/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  899.979760][ T7620] 
[  899.982155][ T7620] ======================================================
[  899.989199][ T7620] WARNING: possible circular locking dependency detected
[  899.996252][ T7620] 6.1.147-syzkaller #0 Not tainted
[  900.001394][ T7620] ------------------------------------------------------
[  900.008437][ T7620] syz-executor/7620 is trying to acquire lock:
[  900.014744][ T7620] ffff888071679698 (&ei->i_data_sem/2){++++}-{3:3}, at: ext4_map_blocks+0x316/0x1b60
[  900.024427][ T7620] 
[  900.024427][ T7620] but task is already holding lock:
[  900.031814][ T7620] ffff88807331a208 (&s->s_dquot.dqio_sem){++++}-{3:3}, at: v2_write_dquot+0x12b/0x190
[  900.041436][ T7620] 
[  900.041436][ T7620] which lock already depends on the new lock.
[  900.041436][ T7620] 
[  900.051859][ T7620] 
[  900.051859][ T7620] the existing dependency chain (in reverse order) is:
[  900.060894][ T7620] 
[  900.060894][ T7620] -> #2 (&s->s_dquot.dqio_sem){++++}-{3:3}:
[  900.069008][ T7620]        down_read+0x42/0x2d0
[  900.073722][ T7620]        v2_read_dquot+0x4a/0x110
[  900.078778][ T7620]        dquot_acquire+0x152/0x520
[  900.083915][ T7620]        ext4_acquire_dquot+0x2d9/0x4a0
[  900.089489][ T7620]        dqget+0x778/0xeb0
[  900.093929][ T7620]        __dquot_initialize+0x328/0xcb0
[  900.099494][ T7620]        ext4_process_orphan+0x54/0x300
[  900.105057][ T7620]        ext4_orphan_cleanup+0xbd3/0x1400
[  900.110782][ T7620]        ext4_fill_super+0x7b78/0x8110
[  900.116240][ T7620]        get_tree_bdev+0x3f1/0x610
[  900.121363][ T7620]        vfs_get_tree+0x88/0x270
[  900.126313][ T7620]        do_new_mount+0x24a/0xa40
[  900.131341][ T7620]        __se_sys_mount+0x2d6/0x3c0
[  900.137159][ T7620]        do_syscall_64+0x4c/0xa0
[  900.142105][ T7620]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  900.148542][ T7620] 
[  900.148542][ T7620] -> #1 (&dquot->dq_lock){+.+.}-{3:3}:
[  900.156290][ T7620]        __mutex_lock+0x120/0xaf0
[  900.161331][ T7620]        dquot_commit+0x5a/0x410
[  900.166286][ T7620]        ext4_write_dquot+0x1f0/0x360
[  900.171675][ T7620]        mark_all_dquot_dirty+0xf9/0x400
[  900.177318][ T7620]        __dquot_alloc_space+0x5fc/0xe60
[  900.182957][ T7620]        ext4_mb_new_blocks+0xf74/0x4720
[  900.188610][ T7620]        ext4_ext_map_blocks+0x143c/0x66d0
[  900.194431][ T7620]        ext4_map_blocks+0x9d1/0x1b60
[  900.199818][ T7620]        ext4_getblk+0x1ab/0x6d0
[  900.204770][ T7620]        ext4_bread+0x26/0x170
[  900.209570][ T7620]        ext4_append+0x2c3/0x560
[  900.214573][ T7620]        ext4_init_new_dir+0x2b8/0x570
[  900.220100][ T7620]        ext4_mkdir+0x47d/0xc50
[  900.224978][ T7620]        vfs_mkdir+0x387/0x570
[  900.229812][ T7620]        do_mkdirat+0x1d0/0x430
[  900.234688][ T7620]        __x64_sys_mkdir+0x6a/0x80
[  900.239809][ T7620]        do_syscall_64+0x4c/0xa0
[  900.244839][ T7620]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  900.251275][ T7620] 
[  900.251275][ T7620] -> #0 (&ei->i_data_sem/2){++++}-{3:3}:
[  900.259112][ T7620]        __lock_acquire+0x2cf8/0x7c50
[  900.264512][ T7620]        lock_acquire+0x1b4/0x490
[  900.269549][ T7620]        down_read+0x42/0x2d0
[  900.274245][ T7620]        ext4_map_blocks+0x316/0x1b60
[  900.279644][ T7620]        ext4_getblk+0x1ab/0x6d0
[  900.284627][ T7620]        ext4_bread+0x26/0x170
[  900.289419][ T7620]        ext4_quota_write+0x230/0x570
[  900.294814][ T7620]        get_free_dqblk+0x312/0x660
[  900.300022][ T7620]        do_insert_tree+0x22b/0x1040
[  900.305318][ T7620]        do_insert_tree+0x9eb/0x1040
[  900.310640][ T7620]        qtree_write_dquot+0x48d/0x5b0
[  900.316125][ T7620]        v2_write_dquot+0x108/0x190
[  900.321331][ T7620]        dquot_acquire+0x2d5/0x520
[  900.326479][ T7620]        ext4_acquire_dquot+0x2d9/0x4a0
[  900.332033][ T7620]        dqget+0x778/0xeb0
[  900.336460][ T7620]        __dquot_initialize+0x3b6/0xcb0
[  900.342018][ T7620]        ext4_unlink+0x143/0x600
[  900.346970][ T7620]        vfs_unlink+0x385/0x600
[  900.351830][ T7620]        do_unlinkat+0x324/0x560
[  900.356775][ T7620]        __x64_sys_unlink+0x45/0x50
[  900.361980][ T7620]        do_syscall_64+0x4c/0xa0
[  900.366927][ T7620]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  900.373361][ T7620] 
[  900.373361][ T7620] other info that might help us debug this:
[  900.373361][ T7620] 
[  900.383589][ T7620] Chain exists of:
[  900.383589][ T7620]   &ei->i_data_sem/2 --> &dquot->dq_lock --> &s->s_dquot.dqio_sem
[  900.383589][ T7620] 
[  900.397253][ T7620]  Possible unsafe locking scenario:
[  900.397253][ T7620] 
[  900.404723][ T7620]        CPU0                    CPU1
[  900.410152][ T7620]        ----                    ----
[  900.415537][ T7620]   lock(&s->s_dquot.dqio_sem);
[  900.420407][ T7620]                                lock(&dquot->dq_lock);
[  900.427351][ T7620]                                lock(&s->s_dquot.dqio_sem);
[  900.434727][ T7620]   lock(&ei->i_data_sem/2);
[  900.439334][ T7620] 
[  900.439334][ T7620]  *** DEADLOCK ***
[  900.439334][ T7620] 
[  900.447482][ T7620] 5 locks held by syz-executor/7620:
[  900.452771][ T7620]  #0: ffff88807331a460 (sb_writers#4){.+.+}-{0:0}, at: mnt_want_write+0x3d/0x90
[  900.461941][ T7620]  #1: ffff88807167de48 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: do_unlinkat+0x178/0x560
[  900.472242][ T7620]  #2: ffff88807167a218 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: vfs_unlink+0xee/0x600
[  900.482442][ T7620]  #3: ffff8880510685e8 (&dquot->dq_lock){+.+.}-{3:3}, at: dquot_acquire+0x63/0x520
[  900.491857][ T7620]  #4: ffff88807331a208 (&s->s_dquot.dqio_sem){++++}-{3:3}, at: v2_write_dquot+0x12b/0x190
[  900.501911][ T7620] 
[  900.501911][ T7620] stack backtrace:
[  900.507816][ T7620] CPU: 0 PID: 7620 Comm: syz-executor Not tainted 6.1.147-syzkaller #0
[  900.516063][ T7620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  900.526138][ T7620] Call Trace:
[  900.529429][ T7620]  <TASK>
[  900.532380][ T7620]  dump_stack_lvl+0x168/0x22e
[  900.537106][ T7620]  ? load_image+0x3b0/0x3b0
[  900.541623][ T7620]  ? show_regs_print_info+0x12/0x12
[  900.546859][ T7620]  ? print_circular_bug+0x12b/0x1a0
[  900.552073][ T7620]  check_noncircular+0x274/0x310
[  900.557038][ T7620]  ? add_chain_block+0x940/0x940
[  900.562004][ T7620]  ? lockdep_lock+0xdc/0x1e0
[  900.566728][ T7620]  ? mark_lock+0x94/0x320
[  900.571078][ T7620]  ? _find_first_zero_bit+0xcf/0x100
[  900.576384][ T7620]  __lock_acquire+0x2cf8/0x7c50
[  900.581270][ T7620]  ? verify_lock_unused+0x140/0x140
[  900.586491][ T7620]  ? verify_lock_unused+0x140/0x140
[  900.591713][ T7620]  lock_acquire+0x1b4/0x490
[  900.596266][ T7620]  ? ext4_map_blocks+0x316/0x1b60
[  900.601399][ T7620]  ? __might_sleep+0xd0/0xd0
[  900.606184][ T7620]  ? mark_lock+0x94/0x320
[  900.610529][ T7620]  ? read_lock_is_recursive+0x10/0x10
[  900.615919][ T7620]  ? rcu_is_watching+0x11/0xa0
[  900.620726][ T7620]  down_read+0x42/0x2d0
[  900.624894][ T7620]  ? ext4_map_blocks+0x316/0x1b60
[  900.629936][ T7620]  ext4_map_blocks+0x316/0x1b60
[  900.634807][ T7620]  ? _raw_spin_unlock+0x40/0x40
[  900.639675][ T7620]  ? __stack_depot_save+0x421/0x460
[  900.644892][ T7620]  ? ext4_issue_zeroout+0x250/0x250
[  900.650108][ T7620]  ? kasan_set_track+0x60/0x70
[  900.654922][ T7620]  ? kasan_set_track+0x4b/0x70
[  900.659696][ T7620]  ? __kasan_kmalloc+0x8e/0xa0
[  900.664478][ T7620]  ? __kmalloc+0xb0/0x240
[  900.668829][ T7620]  ? get_free_dqblk+0x45/0x660
[  900.673700][ T7620]  ? do_insert_tree+0x9eb/0x1040
[  900.678647][ T7620]  ? qtree_write_dquot+0x48d/0x5b0
[  900.683770][ T7620]  ? v2_write_dquot+0x108/0x190
[  900.688637][ T7620]  ext4_getblk+0x1ab/0x6d0
[  900.693160][ T7620]  ? do_syscall_64+0x4c/0xa0
[  900.697759][ T7620]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  900.703844][ T7620]  ? ext4_get_block_unwritten+0x100/0x100
[  900.709585][ T7620]  ext4_bread+0x26/0x170
[  900.713850][ T7620]  ext4_quota_write+0x230/0x570
[  900.718715][ T7620]  ? ext4_quota_read+0x380/0x380
[  900.723666][ T7620]  ? get_free_dqblk+0x45/0x660
[  900.728467][ T7620]  ? get_free_dqblk+0x45/0x660
[  900.733240][ T7620]  ? __kmalloc+0xe1/0x240
[  900.737591][ T7620]  get_free_dqblk+0x312/0x660
[  900.742282][ T7620]  ? ext4_quota_read+0x380/0x380
[  900.747232][ T7620]  do_insert_tree+0x22b/0x1040
[  900.752019][ T7620]  ? ext4_quota_read+0x305/0x380
[  900.756977][ T7620]  do_insert_tree+0x9eb/0x1040
[  900.761757][ T7620]  qtree_write_dquot+0x48d/0x5b0
[  900.766709][ T7620]  ? qtree_entry_unused+0xe0/0xe0
[  900.771744][ T7620]  ? rwsem_write_trylock+0x12f/0x1b0
[  900.777131][ T7620]  ? trace_contention_end+0x5f/0x170
[  900.782431][ T7620]  ? preempt_count_add+0x8d/0x190
[  900.787476][ T7620]  v2_write_dquot+0x108/0x190
[  900.792172][ T7620]  dquot_acquire+0x2d5/0x520
[  900.796777][ T7620]  ext4_acquire_dquot+0x2d9/0x4a0
[  900.801818][ T7620]  dqget+0x778/0xeb0
[  900.805726][ T7620]  __dquot_initialize+0x3b6/0xcb0
[  900.810765][ T7620]  ? dquot_initialize+0x20/0x20
[  900.815632][ T7620]  ? __might_sleep+0xd0/0xd0
[  900.820239][ T7620]  ? preempt_count_add+0x8d/0x190
[  900.825273][ T7620]  ? rwsem_write_trylock+0x12f/0x1b0
[  900.830573][ T7620]  ? clear_nonspinnable+0x60/0x60
[  900.835610][ T7620]  ext4_unlink+0x143/0x600
[  900.840047][ T7620]  vfs_unlink+0x385/0x600
[  900.844395][ T7620]  do_unlinkat+0x324/0x560
[  900.848835][ T7620]  ? fsnotify_link_count+0xf0/0xf0
[  900.853961][ T7620]  ? getname_flags+0x206/0x500
[  900.858745][ T7620]  __x64_sys_unlink+0x45/0x50
[  900.863520][ T7620]  do_syscall_64+0x4c/0xa0
[  900.868037][ T7620]  ? clear_bhb_loop+0x60/0xb0
[  900.872727][ T7620]  ? clear_bhb_loop+0x60/0xb0
[  900.877438][ T7620]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  900.883354][ T7620] RIP: 0033:0x7f85a418e197
[  900.887789][ T7620] Code: 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 57 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  900.907499][ T7620] RSP: 002b:00007fff07a11b18 EFLAGS: 00000206 ORIG_RAX: 0000000000000057
[  900.915926][ T7620] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f85a418e197
[  900.923949][ T7620] RDX: 00007fff07a11b40 RSI: 00007fff07a11bd0 RDI: 00007fff07a11bd0
[  900.931932][ T7620] RBP: 00007fff07a11bd0 R08: 0000000000000000 R09: 0000000000000000
[  900.939912][ T7620] R10: 0000000000000100 R11: 0000000000000206 R12: 00007fff07a12cc0
[  900.947915][ T7620] R13: 00007f85a4211c05 R14: 00000000000dba42 R15: 00007fff07a14e80
[  900.956000][ T7620]  </TASK>
[  901.517256][T14276] caif:caif_disconnect_client(): nothing to disconnect
[  901.743964][ T7620] EXT4-fs (loop7): unmounting filesystem.