last executing test programs:

14m27.892823721s ago: executing program 32 (id=67):
socket$nl_route(0x10, 0x3, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000700)=@generic={&(0x7f00000006c0)='./cgroup/cgroup.procs/../file0\x00', 0x0, 0x8}, 0x18)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
r0 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0xa4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1], 0x1, [0x8, 0x4, 0x0, 0x0, 0x0, 0x0, 0xfffd], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000000}]}]}]}}]}, 0xa4}, 0x1, 0x0, 0x0, 0x4c080}, 0x0)
r3 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000600)={'team0\x00', <r4=>0x0})
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x8c, 0x24, 0xf0b, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x12, r4, {0x0, 0xfff2}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x8, 0x4], [0x0, 0x8]}}]}}]}, 0x8c}}, 0x0)

13m53.093369921s ago: executing program 33 (id=168):
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f00000001c0)='./file0\x00', 0x80000c, &(0x7f0000000740)=ANY=[@ANYBLOB="706172743d3078303030303030303030303030303030342c6e6c733d63703433372c73657373696f6e3d3078666666666666666666666666666637662c747970653d883b7f382c63726561746f723dddf2bd6c2c6e6f6465636f6d706f73652c7569643d", @ANYRESHEX=0x0, @ANYRES32=0x0, @ANYRESHEX=0x0, @ANYBLOB="2c63726561746f723da9076de42c656172726965722c6e6f626172726965722c6e6f6465636f6d706f73652c6d61736b3d5e4d41595f524541442c7063723d30303030303030303030303030303030303030302c636f6e746578743d756e636f6e66696e65645f752c7375626a5f757365723d626172727565722c61707072616973655f747970653d696d617369672c666f776e65723d", @ANYRES32, @ANYBLOB="2c6f626a5f726f6c653d060a387b2640402c66736d616769633d3078303030303030303030303030303038302c66736d616769633d3078303030303030303030303030303030332c657569643d", @ANYRESDEC, @ANYBLOB=',\x00'], 0x1, 0x6da, &(0x7f0000004980)="$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")
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mounts\x00')
r1 = open(&(0x7f00000003c0)='./bus\x00', 0x14bb42, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000240)='./file0\x00', 0x0, 0x101499, 0x0)
mount$bind(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f0000000640)='./file0\x00', 0x0, 0x101800, 0x0)
mount$bind(&(0x7f0000000180)='.\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x94d510, 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(&(0x7f0000000040)='./file0/../file0\x00', &(0x7f0000000140)='./file0/../file0\x00', 0x0, 0x1217880, 0x0)
sendfile(r1, r0, 0x0, 0x80000000)

13m44.549557812s ago: executing program 34 (id=194):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='fdinfo/4\x00')
read$char_usb(r0, &(0x7f0000000000)=""/178, 0xb2)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x3)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000003180), 0x0, 0x10100, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r2, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(0xffffffffffffffff, 0x10, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a00)=[{&(0x7f0000000340)=""/145, 0x91}, {&(0x7f0000000440)=""/165, 0xa5}, {&(0x7f00000006c0)=""/124, 0x7c}, {&(0x7f0000000740)=""/4096, 0x1000}, {0x0}, {&(0x7f0000001880)=""/132, 0x84}, {&(0x7f0000001940)=""/177, 0xb1}], &(0x7f0000000280)=[0x3, 0x0], 0x7}, 0x20)
io_uring_enter(0xffffffffffffffff, 0x2def, 0x0, 0x0, 0x0, 0x0)
getsockopt$packet_buf(r2, 0x107, 0x6, 0x0, &(0x7f0000000300))

13m31.545688494s ago: executing program 35 (id=226):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETDEBUG(r0, 0x400454c9, &(0x7f00000001c0)=0x7)
write$cgroup_devices(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="1e0306003c5c980128846360"], 0xffdd)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6}]})
socket$inet(0x2, 0x800, 0x81)
close_range(r3, 0xffffffffffffffff, 0x0)

11m50.352102298s ago: executing program 36 (id=502):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={0x0, r3}, 0x18)
syz_pidfd_open(0x0, 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r4, 0xc08c5335, &(0x7f00000001c0)={0x0, 0x80, 0x0, 'queue0\x00'})

11m8.793971942s ago: executing program 4 (id=614):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000240)={0x26, 'rng\x00', 0x0, 0x0, 'ansi_cprng\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000007580)="731623f1f50ef2bdf6ceffd5e4ebe4c66927d63b970ef26440cf433c53b6bc5d", 0x20)
r4 = accept$alg(r3, 0x0, 0x0)
recvmmsg(r4, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000002c40)=""/18, 0x12}], 0x1}}], 0x400000000000062, 0x0, 0x0)

11m6.832978076s ago: executing program 4 (id=617):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0x1ff, 0xb})
r3 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r4, 0xc02064b2, &(0x7f0000000100)={0x6, 0x1f, 0x6, 0x0, <r5=>0x0})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0x1ff, 0xb})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f00000001c0)={0x15, 0x1, 0x3})
ioctl$DRM_IOCTL_MODE_DESTROY_DUMB(r3, 0xc00464b4, &(0x7f0000000400)={r5})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000040)={0x49, 0x7fff, 0x4})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000002c0)={0x8, 0xd7, 0x8})
close_range(r0, 0xffffffffffffffff, 0x0)

11m4.87160233s ago: executing program 4 (id=623):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, 0x0, 0x4040001)
recvmsg$unix(r0, &(0x7f00000038c0)={0x0, 0x0, 0x0}, 0x1)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000005c0)='sched_kthread_stop_ret\x00', r2, 0x0, 0x9}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={0x0}, 0x18)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000001080)=ANY=[], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="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"/296], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r4, 0x2800000002000000, 0xe, 0x55, &(0x7f0000000140)="a06ad876d56a0064d082778c3938", &(0x7f0000000380)=""/85, 0x7300, 0x4000000, 0x0, 0x0, &(0x7f0000000000), &(0x7f0000000000), 0x0, 0x4}, 0x28)

11m4.341785271s ago: executing program 4 (id=626):
syz_mount_image$hfs(&(0x7f0000001600), &(0x7f0000000000)='./bus\x00', 0x2000000, &(0x7f00000002c0)={[{@file_umask={'file_umask', 0x3d, 0x1}}, {@part={'part', 0x3d, 0x2}}, {@codepage={'codepage', 0x3d, 'cp864'}}, {@file_umask={'file_umask', 0x3d, 0x1}}, {@iocharset={'iocharset', 0x3d, 'cp936'}}]}, 0x1, 0x30e, &(0x7f0000000900)="$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")
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@mpls_delroute={0x1c, 0x19, 0x9, 0x0, 0x0, {0x1c, 0x14, 0x10, 0x0, 0xfe, 0x0, 0x0, 0x1}}, 0x1c}, 0x1, 0x0, 0x0, 0x4000804}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000080)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r2, &(0x7f00000077c0)={0x2020, 0x0, <r3=>0x0, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000004200)={0x50, 0x0, r3, {0x7, 0x1f, 0x0, 0xfe05a, 0x5000, 0x0, 0x0, 0xc}}, 0x50)
syz_fuse_handle_req(r2, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff00", 0x2000, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r2, &(0x7f0000002140)="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", 0x2000, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000d40)={0x150, 0x0, 0x0, [{{0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}}, {0x0, 0x0, 0x8, 0x4, 'group_id'}}, {{0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, r4}}, {0x0, 0x0, 0x8, 0x40000002, 'group_id'}}]}, 0x0, 0x0})
r5 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents64(r5, 0x0, 0x0)
sendfile(r0, r0, 0x0, 0x800000009)

11m3.293044063s ago: executing program 4 (id=630):
r0 = syz_open_dev$radio(&(0x7f0000000000), 0x2, 0x2)
r1 = epoll_create(0x1)
socket$key(0xf, 0x3, 0x2)
r2 = dup3(r0, r1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
read$FUSE(r2, &(0x7f0000002900)={0x2020}, 0x2020)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r2, 0x89f4, &(0x7f0000000140)={'sit0\x00', &(0x7f0000000100)={@initdev={0xac, 0x1e, 0x1, 0x0}, 0x0, 0x0, 0x10, 0x0, [{@remote}]}})

10m55.618657388s ago: executing program 4 (id=645):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xf}}, 0x10)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r3, &(0x7f0000007fc0), 0x2d, 0x0)

10m54.49757845s ago: executing program 37 (id=645):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xf}}, 0x10)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r3, &(0x7f0000007fc0), 0x2d, 0x0)

10m17.017871246s ago: executing program 3 (id=761):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
syz_genetlink_get_family_id$netlbl_unlabel(0x0, 0xffffffffffffffff)
ioctl$UI_ABS_SETUP(0xffffffffffffffff, 0x401c5504, &(0x7f0000000340)={0x400000100002f})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x15, 0x4, &(0x7f0000000080)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x71, 0x10, 0x13}, [@ldst={0x4, 0x0, 0x4, 0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x366, 0x10, &(0x7f0000000000), 0x2b2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

10m11.498155247s ago: executing program 3 (id=775):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_buf(r3, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r3, &(0x7f0000002940)=[{{0x0, 0x57, 0x0}}], 0x62, 0x0)

10m9.96007268s ago: executing program 3 (id=777):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f0000000580)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000d00)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
chdir(&(0x7f0000000000)='./file0\x00')
open(&(0x7f0000000440)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0)
unlink(&(0x7f0000000080)='./file0\x00')

10m9.650166821s ago: executing program 3 (id=782):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000440)={[{@noload}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@block_validity}, {@quota}]}, 0x3, 0x431, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_int(r0, 0x29, 0xb, 0x0, 0x0)
ioctl$sock_SIOCGPGRP(r0, 0x8904, 0x0)
chdir(&(0x7f0000000000)='./file0\x00')
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r2 = open(&(0x7f00000003c0)='./bus\x00', 0x84902, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x11, r2, 0x0)
write$FUSE_ATTR(r1, &(0x7f0000000440)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}}}, 0x78)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
write$binfmt_script(r3, &(0x7f0000000000), 0x208e24b)

10m8.010963534s ago: executing program 7 (id=787):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000100)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0xa, 0x4, 0x0, 0x2, 0x28, 0x67, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0xc, 0x0, 0x0, 0x9, [0x401, 0x5]}, @timestamp_prespec={0x44, 0x4, 0x9c, 0x3, 0x8}, @noop]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

10m6.738056257s ago: executing program 7 (id=792):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
mknodat(r0, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
chdir(&(0x7f00000000c0)='./bus\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdir(&(0x7f0000000240)='./bus\x00', 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
renameat2(r1, &(0x7f00000001c0)='./file0\x00', r1, &(0x7f0000000200)='./bus/file0\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents64(r2, &(0x7f0000000180)=""/105, 0x69)

10m6.227420308s ago: executing program 7 (id=793):
socket(0x10, 0x80002, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$xdp(0x2c, 0x3, 0x0)
r2 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r2, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r2, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000002c0)={'batadv_slave_1\x00', <r4=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r2, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4)
bind$xdp(r2, &(0x7f0000000100)={0x2c, 0x0, r4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0)

10m6.168781478s ago: executing program 3 (id=794):
syz_mount_image$msdos(&(0x7f0000000000), &(0x7f00000003c0)='./file0\x00', 0x80c406, &(0x7f0000000500)=ANY=[@ANYBLOB="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", @ANYRES16, @ANYRES32], 0xff, 0x2c1, &(0x7f0000000a40)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x100, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000), 0xfea7)

10m4.96092404s ago: executing program 3 (id=799):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000003c0)=0x7)
syz_open_dev$video4linux(&(0x7f00000001c0), 0x5, 0x80842)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x0, 0x6031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x5, &(0x7f0000000240)=0xffffffffffffffff, 0x81, 0x0)
get_mempolicy(0x0, 0x0, 0x0, &(0x7f0000ffc000/0x1000)=nil, 0x2)

10m4.718301551s ago: executing program 38 (id=799):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000003c0)=0x7)
syz_open_dev$video4linux(&(0x7f00000001c0), 0x5, 0x80842)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x0, 0x6031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x5, &(0x7f0000000240)=0xffffffffffffffff, 0x81, 0x0)
get_mempolicy(0x0, 0x0, 0x0, &(0x7f0000ffc000/0x1000)=nil, 0x2)

10m4.702178171s ago: executing program 7 (id=801):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000000, &(0x7f0000000240), 0x21, 0x4a6, &(0x7f0000000a40)="$eJzs3cFPG9kZAPBvBgiEkEDaHNqqbdI0bVpFscFJUJRTemlVRZGqRj31kFBwEMLGCJs00BzI/1CpkXpq/4QeKvVQKae97233tpfsYaXsbrSrsNIevJqxIYRgYDcES/j3k55m3jzj7z2sec98gF8APetcRKxFxLGIuBcRo+3rSbvEzVbJHvfyxaPp9RePppNoNu98luTt2bXY8jWZE+3nHIqIP/4u4i/Jm3HrK6vzU5VKealdLzaqi8X6yurluerUbHm2vFAqTU5Mjl+/cq10YGM9W/3P89/O3frT///3k2fvr/36b1m3RtptW8dxkFpDH9iMk+mPiFvvIlgX9LXHc6zbHeE7SSPiexFxPr//R6MvfzUBgKOs2RyN5ujWOgBw1KV5DixJC+1cwEikaaHQyuGdieG0Uqs3Lt2vLS/MtHJlYzGQ3p+rlMfbucKxGEiy+kR+/qpe2la/EhGnI+Lvg8fzemG6Vpnp5hsfAOhhJ7at/18OttZ/AOCIG+p2BwCAQ2f9B4DeY/0HgN5j/QeA3mP9B4DeY/0HgN5j/QeAnvKH27ez0lxvf/71zIOV5fnag8sz5fp8obo8XZiuLS0WZmu12fwze6p7PV+lVlucuBrLD4uNcr1RrK+s3q3Wlhcad/PP9b5bHjiUUQEAuzl99umHSUSs3Tiel9iyl4O1Go62tNsdALqmr9sdALrGbl/Qu/yMD+ywRe9rOv6J0JOD7wtwOC7+UP4fepX8P/Qu+X/oXfL/0LuazcSe/wDQY+T4Ab//BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgG9vJC9JWmjvBT4SaVooRJyMiLEYSO7PVcrjEXEqIj4YHBjM6hPd7jQA8JbST5L2/l8XRy+MbG89lnw1mB8j4q//vPOPh1ONxtJEdv3zzeuNJ+3rpW70HwDYy8Y6vbGOb3j54tH0RjnM/jz/TWtz0Szueru0WvqjPz8OxUBEDH+RtOst2fuVvgOIv/Y4In6w0/iTPDcy1t75dHv8LPbJQ42fvhY/zdtax+x78f0D6Av0mqfZ/HNzp/svjXP5cef7fyifod7exvy3/sb8l27Of30d5r9z+41x9b3fd2x7HPGj/p3iJ5vxkw7xL+wz/kc//un5Tm3Nf0VcjJ3jb41VbFQXi/WV1ctz1anZ8mx5oVSanJgcv37lWqmY56iLG5nqN31649Kp3cY/3CH+0B7j/8U+x//vr+/9+We7xP/Vz3d+/c/sEj9bE3+5z/hTw//tuH13Fn+mw/j3ev0v7TP+s49XZ/b5UADgENRXVuenKpXykhMnTpxsnnR7ZgLetVc3fbd7AgAAAAAAAAAAAAAAdHIY/07U7TECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwdH0TAAD//yyP2UE=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
open(&(0x7f0000000040)='./bus\x00', 0x1efb7e, 0x86d7ae2592eaaba6)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
mkdir(0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40086610, &(0x7f0000000140)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0})

10m3.778170663s ago: executing program 7 (id=803):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
bind$inet(r3, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x57)
sendmsg$alg(r3, 0x0, 0x0)

10m1.736570777s ago: executing program 7 (id=807):
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
symlink(0x0, 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x7ceaef35e997c63a, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$int_in(r0, 0x5452, &(0x7f0000000240)=0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
poll(&(0x7f0000000040)=[{r0, 0x8}], 0x1, 0x2)

10m0.913302468s ago: executing program 39 (id=807):
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
symlink(0x0, 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x7ceaef35e997c63a, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$int_in(r0, 0x5452, &(0x7f0000000240)=0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
poll(&(0x7f0000000040)=[{r0, 0x8}], 0x1, 0x2)

8m44.007340873s ago: executing program 1 (id=1075):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008d}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x3)
ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0105500, 0x0)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
syz_clone3(&(0x7f0000002c00)={0x100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
timer_create(0x0, 0x0, &(0x7f0000bbdffc))

8m42.953513195s ago: executing program 1 (id=1078):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0xc, &(0x7f0000000180)={0x5}, 0x10)
write(r4, &(0x7f0000000000)="1c0000001a005f0214f9f407000904001f0000000000000200020000", 0x1c)

8m41.972148017s ago: executing program 1 (id=1081):
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000001540)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="696f636861727365743d64656661756c742c0099f5d7f5e667601820a20492cf0082b38a04dda1d1835d80c76a090dccd479f8"], 0x1, 0x14d5, &(0x7f0000001580)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = openat$dlm_control(0xffffffffffffff9c, 0x0, 0xad82, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
read$FUSE(r0, 0x0, 0x0)
r4 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x460, 0x0, 0x150, 0x150, 0x0, 0xf8010000, 0x390, 0x238, 0x238, 0x390, 0x238, 0x3, 0x0, {[{{@ipv6={@mcast1, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, [], [], 'team_slave_0\x00', 'hsr0\x00', {}, {}, 0x84}, 0x0, 0x248, 0x270, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'batadv0\x00', {0x0, 0x0, 0x4, 0x0, 0x0, 0x1, 0x4}}}, @common=@inet=@sctp={{0x148}, {[], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x89c8, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe], 0x0, [], 0x0, 0x0, 0x4}}]}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x1}}}, {{@ipv6={@empty, @mcast1, [], [], 'batadv_slave_0\x00', 'gre0\x00'}, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x5}}, @inet=@rpfilter={{0x28}, {0x2}}]}, @common=@inet=@SYNPROXY={0x28, 'SYNPROXY\x00', 0x0, {0x0, 0x0, 0x20}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4c0)

8m36.154043119s ago: executing program 1 (id=1114):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f0000000000)={[{@dioread_lock}, {@dioread_nolock}]}, 0xfd, 0x586, &(0x7f0000000e80)="$eJzs3d9rU1ccAPDvTRt/b1YQ2fYwCj7M4Uxtux8O9uAexyYTttfRhTQWaWqkScV2wvRhvuxlyGCMCWN/wN59lD3sdX+FMAUZUubDXjpuetPGJmlrjbY2nw9Ez7nn3pz7zT3n9NychATQt4bTf3IRr0fED0nE4ZaywcgKh5f3W3x0rZQ+klha+uKfJJJsW3P/JPv/YJZ5LSL++C7iZK693tr8wnSxUinPZvmR+szlkdr8wqmLM8Wp8lT50tj4+Jn3xsc+/OD9tmMn9m4t1rfPP/7587ufnPn++OJPvz84ciuJs3EoK2uN4xlcb80Mx3D2muTj7JodR3tQ2U6SbPcJsCUDWT/PRzoGHI6BrNd35CLDrvJtRCwBfSrR/6FPNecBzXv7Ht0HvzQefrx8A9Qe/+DyeyOxr3FvdGAxeeLOKL0VGupB/Wkdd+7fvpU+onfvQwBs6PqNiDg9ONg+/iXZ+Ld1pzexz9o6jH/w4txN5z/vdJr/5FbmP9Fh/nOwQ9/dio37f+5Bl0O3uAr0pHT+91HH+e/KotXQQJZ7pTHnyycXLlbK6dj2akSciPzeNL/ees6ZxXtL3cpa53937t/+8/Gja6XmXDA7jweDayKdLNaLzxJzq4c3It7oOP9NVq5/0uH6p6/H+fZQOjpWvv1mt7I18d9abIv/+Vr6LeKtjtd/dbEjWX99cqTRHkaaraLdvzeP/bWayz9R9pTx93wFJr3+B9aPfyhpXa+tPX0dv+77r9ytbOP4O7f/PcmXjfSebNvVYr0+OxqxJ/msffvY6rHNfHP/NP4Tx9cf/zq1//0R8fUm47959GbXXbe7/afxT27++qcvQZpIt6+0iI0S9z795pdu9a8T/8DyHun1f7eROpEds5nxbzPntbXWDAAAAAAAADtXLiIORZIrrKRzuUJh+fMdR+NArlKt1U9eqM5dmozGd2WHIp9rrnQfbvk8xGj2edhmfmxNfjwijkTEjwP7G/lCqVqZ3O7gAQAAAAAAAAAAAAAAAAAAYIc4GLGv0/f/U38PbPfZAc/dOj/5Dexy3ft/VtKLX3oCdiR//6F/6f/Qv/R/6F/6P/Qv/R/6l/4P/Uv/h/6l/wMAAAAAAAAAAAAAAAAAAAAAAAAAAEBPnT93Ln0sLT66Vkrzk1fm56arV05NlmvThZm5UqFUnb1cmKpWpyrlQqk6s9HzVarVy6NjMXd1pF6u1Udq8wsTM9W5S/WJizPFqfJEOf9CogIAAAAAAAAAAAAAAAAAAICXS21+YbpYqZRnJXZfIokXUNfgTohU4quI6OkTbvfIBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACr/g8AAP//yZ4z2A==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f00000008c0)="10", 0x1, 0x8000c61)
r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x103042, 0x0)
creat(&(0x7f00000000c0)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r2 = open(&(0x7f0000000140)='./bus\x00', 0x127842, 0x0)
r3 = open(&(0x7f0000002000)='./bus\x00', 0x0, 0x0)
write$sndseq(r2, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time}], 0x1c)
sendfile(r2, r3, 0x0, 0x1000000201005)
pwritev2(r1, &(0x7f0000000500)=[{&(0x7f0000000140)='\x00', 0x1}], 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@func_proto={0x0, 0x0, 0x0, 0xd, 0xa}, @union={0xffffffff}]}}, &(0x7f0000000f40)=""/4089, 0x32, 0xff9, 0x1, 0x0, 0x0, @void, @value}, 0x20)
syz_usb_connect(0x0, 0x4a, &(0x7f0000000980)=ANY=[@ANYBLOB="120100003217a6409904581095310000000109023800010000000009040000013d78bf00053306000105240000000d240f0104000000000000000006241a000000090502"], 0x0)

8m33.430214055s ago: executing program 1 (id=1123):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000180)=0x7f, 0x4)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
write$binfmt_register(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast2, 0x4}, 0x1c)
write(r0, &(0x7f00000001c0)="89ba41c97928dec7cec15a160d3dba257872aed129d4b5247c9834550448a4f46c37425b873ec95db3d757e8b2333a64d9abf416fd83f942661c47bcdf71f7d07ba2b2f051829a7f66952e57962614db0d03474a4a4bce636ea8d2b882b2b49ef18e76edbec7302a96e41f206d930eda2769c56e6d5e3d541ce9a21c3ce5cb5f", 0x80)

8m31.839825428s ago: executing program 1 (id=1133):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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")
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
rename(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

8m31.452306948s ago: executing program 40 (id=1133):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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")
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
rename(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

7m0.918056931s ago: executing program 6 (id=1407):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r3 = openat$userio(0xffffffffffffff9c, &(0x7f0000000000), 0x40101, 0x0)
write$USERIO_CMD_REGISTER(r3, &(0x7f0000000000), 0x2)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x10)

6m59.873835863s ago: executing program 6 (id=1411):
socket$inet6(0xa, 0x6, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
socket$unix(0x1, 0x1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x14, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socket$unix(0x1, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6(0xa, 0x3, 0x2)
socket(0x40000000015, 0x5, 0x0)
socket$kcm(0x10, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)={0x2c, 0x13, 0x821, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @fd=r1}, @typed={0x6, 0x0, 0x0, 0x0, @str='!\xa5'}, @typed={0xc, 0x1, 0x0, 0x0, @u64}]}, 0x2c}], 0x1}, 0x0)

6m59.773078453s ago: executing program 6 (id=1412):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x400, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2a1, &(0x7f0000000580)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
rename(&(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='./bus\x00')

6m56.507499359s ago: executing program 6 (id=1416):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000180)={[{@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x88}}, {@resuid}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@resgid}, {@usrquota}, {@data_err_abort}, {@data_err_abort}]}, 0x1, 0x5d8, &(0x7f0000001200)="$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")
sched_setscheduler(0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000000)={0xd2f0})
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x4800, 0x0, 0x0, 0x0, &(0x7f0000000000))
chdir(&(0x7f00000003c0)='./bus\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000200)={[{@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r1 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r1, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
linkat(r1, &(0x7f0000000100)='./file1\x00', r1, &(0x7f0000000240)='./file0\x00', 0x0)
rename(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000f00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

6m53.336642476s ago: executing program 6 (id=1424):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x679fd000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x1c, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00'}, 0x10)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r3, 0x0, 0x32, 0x0, 0x0)
sendmmsg$inet(r3, &(0x7f0000002240)=[{{&(0x7f0000000000)={0x2, 0x4e20, @broadcast}, 0x10, 0x0, 0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB="3000000000000000000000000700000000830b4be0000001e0000001008911e44833856ee8b2"], 0x50}}], 0x1, 0x0)

6m50.474068142s ago: executing program 6 (id=1433):
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
ioctl$SNDCTL_SEQ_THRESHOLD(r1, 0x4004510d, &(0x7f0000000000)=0x5)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'\x00', 0x52d35ce30131f272})
syz_mount_image$ext4(&(0x7f0000000980)='ext4\x00', &(0x7f0000002000)='./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x58, &(0x7f00000000c0)={[{@orlov}, {@acl}, {@nomblk_io_submit}, {@barrier}, {@norecovery}, {@barrier_val={'barrier', 0x3d, 0x100}}, {@usrquota}, {@nobarrier}]}, 0xfe, 0x799, &(0x7f00000001c0)="$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")
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
listen(r3, 0x0)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r5 = accept(r2, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[], 0xfffffdef}}, 0x1)
recvfrom(r4, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x4100, 0x0, 0x0)

6m49.897336683s ago: executing program 41 (id=1433):
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
ioctl$SNDCTL_SEQ_THRESHOLD(r1, 0x4004510d, &(0x7f0000000000)=0x5)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'\x00', 0x52d35ce30131f272})
syz_mount_image$ext4(&(0x7f0000000980)='ext4\x00', &(0x7f0000002000)='./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x58, &(0x7f00000000c0)={[{@orlov}, {@acl}, {@nomblk_io_submit}, {@barrier}, {@norecovery}, {@barrier_val={'barrier', 0x3d, 0x100}}, {@usrquota}, {@nobarrier}]}, 0xfe, 0x799, &(0x7f00000001c0)="$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")
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
listen(r3, 0x0)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r5 = accept(r2, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[], 0xfffffdef}}, 0x1)
recvfrom(r4, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x4100, 0x0, 0x0)

20.952967274s ago: executing program 8 (id=2526):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000300), 0x103000, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, r1, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x80041285, 0x0)
io_uring_setup(0x1d06, &(0x7f00000003c0)={0x0, 0x4, 0x2, 0x0, 0xa7})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x400c800, 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=@base={0x12, 0x4, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_mount_image$squashfs(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x0, &(0x7f0000000240), 0x1, 0x1a7, &(0x7f0000000640)="$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")
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r5, &(0x7f0000000240), &(0x7f00000004c0)=@tcp6=r4}, 0x20)

17.09018947s ago: executing program 8 (id=2532):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
ioprio_get$pid(0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x11a, 0x2, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet_dccp(0x2, 0x6, 0x0)
io_setup(0x800, &(0x7f0000000fc0)=<r4=>0x0)
io_submit(r4, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r3, 0x0, 0x6}, 0x18)
r5 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(r5, 0x40085112, &(0x7f0000000080)=@e={0xff, 0x9, 0x0, 0x0, @SEQ_NOTEON=@special})

11.597951133s ago: executing program 8 (id=2549):
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x360b, 0x0, 0x0, 0x0)
r4 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(r4, 0xc0145608, &(0x7f0000000100)={0x3, 0x2, 0x1})

7.748206159s ago: executing program 5 (id=2560):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, 0x0, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0xf, 0xf, &(0x7f0000000080)=@ringbuf={{}, {{}, {}, {}, {0x85, 0x0, 0x0, 0x11}}, {}, [], {{0x6}, {0x5}, {0x85, 0x0, 0x0, 0x85}}}, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r2, 0x0, 0x44001)
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x8001000d, 0xad, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x8d, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
ioctl(r1, 0x8b1a, &(0x7f0000000040))
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x2c, r5, 0x1, 0x70bd2d, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x994}], @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0x8b}]}, 0x2c}}, 0x0)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, 0x0)

7.577638933s ago: executing program 5 (id=2561):
r0 = socket(0x10, 0x80003, 0x0)
sendmsg$nl_generic(r0, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000001140)=[{{0x0, 0x0, 0x0}, 0x8}, {{0x0, 0x0, 0x0}, 0x3}, {{&(0x7f0000000700)=@ieee802154={0x24, @long}, 0x80, 0x0}}], 0x3, 0x0, 0x0)

7.577035313s ago: executing program 2 (id=2562):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
setsockopt$llc_int(r0, 0x10c, 0x7, 0x0, 0x0)
sendmmsg$inet(r0, &(0x7f0000000c40)=[{{&(0x7f0000000040)={0x2, 0x0, @multicast2}, 0x23, 0x0}}], 0x1, 0x8014)

7.521861721s ago: executing program 0 (id=2563):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
r4 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000280)={'ip6tnl0\x00', <r5=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xb, &(0x7f0000000600)=ANY=[], &(0x7f0000000040)='GPL\x00', 0xc1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000000000), 0x4000000000001f2, 0x0)
sendmsg$can_raw(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x1d, r5}, 0x10, &(0x7f0000000240)={&(0x7f0000000100)=@can={{}, 0xfc, 0x0, 0x0, 0x0, "5d5901d3284a3d58"}, 0x10}}, 0x0)

7.340883786s ago: executing program 2 (id=2564):
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
add_key(&(0x7f0000000580)='rxrpc\x00', 0x0, &(0x7f0000000600)="4f89fe156ef9de280d4a80c894d7c69e40dd3767d2abb8945e69", 0x1a, 0xfffffffffffffffb)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(0xffffffffffffffff, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'team_slave_0\x00'})
r3 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x25dfdbfd, 0x2ffffffff}, 0xc)
mkdir(0x0, 0x82)
mount$afs(0x0, 0x0, &(0x7f00000001c0), 0x0, &(0x7f0000000500)={[{@dyn}]})
r4 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r4, 0xc1205531, &(0x7f0000000040)=""/112)

6.503379018s ago: executing program 0 (id=2565):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f00000000c0)='cpuset.memory_spread_slab\x00', 0x2, 0x0)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r2, 0x6, 0x21, 0x0, 0x0)
write$cgroup_int(r3, &(0x7f00000003c0)=0x1000, 0x41)
r4 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000440)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r4, &(0x7f0000000400), 0x11)
write$cgroup_int(r3, &(0x7f0000000100), 0x12)

6.449928917s ago: executing program 5 (id=2566):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x180000c, &(0x7f0000000540)=ANY=[@ANYBLOB='nls=ascii,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c706172743d3078303030303030303030303030303062622c6e6f626172726965722c6e6f626172726965722c63726561746f723d7fcfb5b72c706172743d3078303030303030303030303030303130312c6769643d", @ANYRESHEX=0x0, @ANYBLOB="2c756d61736b3d30303030303030303030303030303030303030303030302c6465636f6d706f73652c666f7263652c6e6f6465636f6d706f73652c626172726965722c6e6f6465636f6d706f73652c747970653db029e1c02c7569643d", @ANYRES16, @ANYBLOB="2c747970653dd2100d1b2c7529643dd4f81c66210bbcbf82440a104ab956f2ba5e36e41ccb1b040fa8b829b0b87078de654c66ac22aebaa2c653ef127e38e0aa2229f9cf6a8503", @ANYRESDEC=0x0, @ANYBLOB="060000bd00", @ANYRES32=0x0, @ANYRES8=0x0], 0x1, 0x6ed, &(0x7f0000000dc0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000440)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000003680)='sched_switch\x00', r4}, 0x10)
sendmmsg(0xffffffffffffffff, &(0x7f0000000180), 0x400008a, 0x0)
write$binfmt_script(r0, &(0x7f0000000280), 0xfea7)

6.432247977s ago: executing program 9 (id=2567):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x210000000013, 0x0, 0x0)
connect$inet(r3, 0x0, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCGARP(0xffffffffffffffff, 0x8954, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f00000004c0)=@nat={'nat\x00', 0x8, 0x5, 0x380, 0x188, 0xd0, 0xffffffff, 0x230, 0x188, 0x2e8, 0x2e8, 0xffffffff, 0x2e8, 0x2e8, 0x5, 0x0, {[{{@uncond, 0xae01, 0x98, 0xd0, 0x0, {}, [@common=@unspec=@cgroup0={{0x28}}]}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x15, @multicast2, @loopback, @port, @icmp_id}}}}, {{@ip={@broadcast, @private, 0x0, 0x0, 'vlan1\x00', 'geneve1\x00'}, 0x3f5, 0x70, 0xb8}, @unspec=@DNAT1={0x48, 'DNAT\x00', 0x1, {0x0, @ipv4, @ipv6=@local, @icmp_id, @icmp_id}}}, {{@uncond, 0x0, 0x70, 0xa8}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x0, @multicast1, @multicast1, @icmp_id}}}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0x0, 0x0, 'syzkaller0\x00', 'gretap0\x00'}, 0x0, 0x70, 0xb8}, @unspec=@DNAT1={0x48, 'DNAT\x00', 0x1, {0x0, @ipv4=@loopback, @ipv6=@loopback, @gre_key, @gre_key}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x3e0)
sendto$inet(r3, 0x0, 0x0, 0x805, 0x0, 0x0)

6.422881426s ago: executing program 2 (id=2568):
bind$nfc_llcp(0xffffffffffffffff, &(0x7f0000000000)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "0f03c8c7e8da000000000000ffffff017f000000cce67e1d0000e565aa9a9d32c7627ffe7a54cdbd77b3000000000000000000060000000000000000deff00", 0x1b}, 0x60)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
syz_io_uring_setup(0x3b, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000600)=@IORING_OP_OPENAT={0x12, 0x44, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f00000001c0)='./file0\x00'})
syz_io_uring_setup(0x5ddb, &(0x7f0000000440)={0x0, 0x4, 0x2, 0x2, 0x2c5}, 0x0, &(0x7f0000000300)=<r1=>0x0)
io_uring_enter(0xffffffffffffffff, 0x184c, 0x0, 0x0, 0x0, 0x0)
r2 = io_uring_setup(0x7058, &(0x7f0000000040)={0x0, 0x0, 0x80})
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000640)=@IORING_OP_SENDMSG={0x9, 0x11, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000c030, 0x1, {0x0, r3}})
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGPROP(r4, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$PPPIOCSMRU1(r4, 0x4020744f, &(0x7f0000000000)=0x10010000)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x4000001)
ioctl$EVIOCGPROP(r5, 0x40047438, &(0x7f0000000180)=""/236)
write$binfmt_aout(r5, &(0x7f0000000100)=ANY=[], 0xfce1)

4.843113066s ago: executing program 0 (id=2569):
syz_mount_image$hfs(&(0x7f0000002c80), &(0x7f0000000080)='./file1\x00', 0x4490, &(0x7f0000002cc0)=ANY=[], 0xfd, 0x278, &(0x7f0000000200)="$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")
open(&(0x7f00000000c0)='./bus\x00', 0x1a18fd, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cgroup.kill\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c41, 0x0)
open(&(0x7f00000000c0)='./bus\x00', 0x64842, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='freezer.state\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
open(&(0x7f0000000000)='./file1\x00', 0x109042, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_INPUT(r0, &(0x7f0000000940)={0x8, {"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", 0x1000}}, 0xfec)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000480)='cpuacct.stat\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)
open(&(0x7f0000000000)='./file1\x00', 0x14117e, 0x0)
creat(&(0x7f00000001c0)='./file0\x00', 0x10)

4.731374142s ago: executing program 9 (id=2570):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000004580)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
creat(&(0x7f0000000100)='./bus\x00', 0x0)
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14103e, 0x0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x143042, 0x83)
ftruncate(r1, 0x2008002)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x1425}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendfile(r0, r1, 0x0, 0x80000001)

4.581032807s ago: executing program 0 (id=2571):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f00000003c0)=0x1000, 0x41)
r4 = openat$cgroup_procs(r3, &(0x7f0000000440)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r4, &(0x7f0000000400), 0x11)

4.554856926s ago: executing program 2 (id=2572):
r0 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_opts(r0, 0x29, 0x3b, &(0x7f0000000000), 0x8)
setsockopt$inet6_buf(r0, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af00000000", 0x17)

3.713994219s ago: executing program 2 (id=2573):
add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, &(0x7f0000000080)='\x00', 0x1, 0xfffffffffffffffe)
openat$binderfs(0xffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x400, 0x0)
mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, 0xffffffffffffffff, 0x9)
r0 = io_uring_setup(0x253f, &(0x7f0000000180)={0x0, 0x0, 0x0, 0xffffffff})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xca}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r1, &(0x7f0000003c40)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="03", 0x1}], 0x1}}], 0x1, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
writev(r2, &(0x7f0000000180)=[{&(0x7f0000000080)="390000001300034700bb65e1c3c6ffff01000000010000005600000025000000190004000400000047fd17e5ffff0800040000000000000000", 0x39}], 0x1)
setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r1, 0x84, 0x79, &(0x7f00000001c0)={0x0, 0xc2, 0x7}, 0x8)
close_range(r0, 0xffffffffffffffff, 0x0)

3.601024055s ago: executing program 5 (id=2574):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, 0x0, 0x0)
sendmsg$rds(r0, &(0x7f0000001f40)={&(0x7f0000000080)={0x2, 0x0, @rand_addr=0x5}, 0x10, 0x0, 0x0, &(0x7f00000000c0)=[@rdma_args], 0x58}, 0x0)

3.590359365s ago: executing program 9 (id=2575):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
setsockopt$llc_int(r0, 0x10c, 0x7, 0x0, 0x0)
sendmmsg$inet(r0, &(0x7f0000000c40)=[{{&(0x7f0000000040)={0x2, 0x0, @multicast2}, 0x23, 0x0}}], 0x1, 0x8014)

3.546028814s ago: executing program 8 (id=2576):
r0 = socket(0x10, 0x80003, 0x0)
sendmsg$nl_generic(r0, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000001140)=[{{0x0, 0x0, 0x0}, 0x8}, {{0x0, 0x0, 0x0}, 0x3}, {{&(0x7f0000000700)=@ieee802154={0x24, @long}, 0x80, 0x0}}], 0x3, 0x0, 0x0)

3.268212065s ago: executing program 2 (id=2577):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
open(0x0, 0x245140, 0xcd)
write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
socket(0x10, 0x803, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x1e, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x1b}]}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

3.209357932s ago: executing program 9 (id=2578):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r3, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r3, 0xc01064b5, 0x0)
ioctl$DRM_IOCTL_MODE_GET_LEASE(r3, 0xc01064c8, &(0x7f00000001c0)={0x0, 0x0, 0x0})
r4 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r3, 0xc02064b9, &(0x7f0000000dc0)={&(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000200), 0x4})
ioctl$DRM_IOCTL_MODE_ATOMIC(r3, 0xc03864bc, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

3.208954783s ago: executing program 5 (id=2579):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r0, 0xffffffffffffffff, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/time_for_children\x00')
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/time\x00')
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_MSRS(r4, 0x4048aecb, &(0x7f00000000c0)=ANY=[@ANYRES64=r1, @ANYRES64])
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r6, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r6, &(0x7f0000000080), 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r6, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r6, 0x6, 0x1d, &(0x7f0000000280), 0x14)
write$binfmt_script(r6, &(0x7f00000000c0)={'#! ', './file0'}, 0xb)
setsockopt$inet6_tcp_TLS_TX(r6, 0x11a, 0x2, &(0x7f0000000500)=@gcm_256={{0x303}, "2a4001011f891d5b", "11682d84dd05bb63ae661f051e1e79ceafeaa60a5bd1dc83db142ade2bd907fd", "fd6ed24e", "d4e9e1c90d89691c"}, 0x38)
close_range(r5, 0xffffffffffffffff, 0x0)

3.097738239s ago: executing program 0 (id=2580):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x180000c, &(0x7f0000000540)=ANY=[@ANYBLOB='nls=ascii,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c706172743d3078303030303030303030303030303062622c6e6f626172726965722c6e6f626172726965722c63726561746f723d7fcfb5b72c706172743d3078303030303030303030303030303130312c6769643d", @ANYRESHEX=0x0, @ANYBLOB="2c756d61736b3d30303030303030303030303030303030303030303030302c6465636f6d706f73652c666f7263652c6e6f6465636f6d706f73652c626172726965722c6e6f6465636f6d706f73652c747970653db029e1c02c7569643d", @ANYRES16, @ANYBLOB="2c747970653dd2100d1b2c7529643dd4f81c66210bbcbf82440a104ab956f2ba5e36e41ccb1b040fa8b829b0b87078de654c66ac22aebaa2c653ef127e38e0aa2229f9cf6a8503", @ANYRESDEC=0x0, @ANYBLOB="060000bd00", @ANYRES32=0x0, @ANYRES8=0x0], 0x1, 0x6ed, &(0x7f0000000dc0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000440)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000003680)='sched_switch\x00'}, 0x10)
sendmmsg(0xffffffffffffffff, &(0x7f0000000180), 0x400008a, 0x0)
write$binfmt_script(r0, &(0x7f0000000280), 0xfea7)

1.533039849s ago: executing program 9 (id=2581):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_BINDTODEVICE_wg(r0, 0x1, 0x19, &(0x7f00000000c0)='wg0\x00', 0x4)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)

1.370920644s ago: executing program 8 (id=2582):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000400)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r3, 0x800448d2, 0x0)
r4 = socket(0x2, 0x2, 0x0)
getsockopt$bt_BT_SECURITY(r4, 0x88, 0x65, 0x0, 0x20000000)
socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = syz_open_dev$video(&(0x7f0000000000), 0x2fed, 0x0)
setsockopt$inet_sctp6_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, 0x0, 0x0)
ioctl$VIDIOC_ENUMINPUT(r5, 0xc050561a, &(0x7f0000000040)={0x40000004, "c6efcee171eae86de7fdd393d6822c0100000000000000533d9774000100005f", 0x0, 0x398, 0x0, 0x10003})

1.309915131s ago: executing program 5 (id=2583):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x298})
syz_open_dev$hiddev(&(0x7f0000000000), 0x3, 0x400001)
syz_usb_connect(0x0, 0x24, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000201b4510fc0428155d6d010203010902120001000000000904"], 0x0)
r1 = openat$vsock(0xffffff9c, &(0x7f00000001c0), 0x40101, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc)
setsockopt$RXRPC_UPGRADEABLE_SERVICE(r1, 0x110, 0x5, &(0x7f0000000200)=[0x0, 0x3], 0x2)
ioctl$DRM_IOCTL_RES_CTX(r1, 0xc0106426, &(0x7f0000000140)={0x0, &(0x7f0000000080)})
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000880}, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x2004c8, 0x8000000, 0x0, 0x10000000, 0xfffffffffffffffe, 0x1, 0x0, 0x0, 0x5]})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f00000002c0)={[0x400000000000002, 0x5, 0xfffffffffffffffe, 0x4, 0x2, 0x0, 0xefffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3], 0x0, 0x41901})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

300.302639ms ago: executing program 0 (id=2584):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_mreqsrc(r1, 0x0, 0x28, &(0x7f0000000140)={@multicast2, @multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0xc)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
fchdir(r2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x8000, &(0x7f0000000200)={0x7}, 0x20)
sendmsg$NFNL_MSG_ACCT_NEW(r0, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x4004080)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
clock_settime(0x0, &(0x7f0000003c80)={0x77359400})

240.374567ms ago: executing program 8 (id=2585):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x180000c, &(0x7f0000000540)=ANY=[@ANYBLOB='nls=ascii,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c706172743d3078303030303030303030303030303062622c6e6f626172726965722c6e6f626172726965722c63726561746f723d7fcfb5b72c706172743d3078303030303030303030303030303130312c6769643d", @ANYRESHEX=0x0, @ANYBLOB="2c756d61736b3d30303030303030303030303030303030303030303030302c6465636f6d706f73652c666f7263652c6e6f6465636f6d706f73652c626172726965722c6e6f6465636f6d706f73652c747970653db029e1c02c7569643d", @ANYRES16, @ANYBLOB="2c747970653dd2100d1b2c7529643dd4f81c66210bbcbf82440a104ab956f2ba5e36e41ccb1b040fa8b829b0b87078de654c66ac22aebaa2c653ef127e38e0aa2229f9cf6a8503", @ANYRESDEC=0x0, @ANYBLOB="060000bd00", @ANYRES32=0x0, @ANYRES8=0x0], 0x1, 0x6ed, &(0x7f0000000dc0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000440)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000003680)='sched_switch\x00', r4}, 0x10)
sendmmsg(0xffffffffffffffff, &(0x7f0000000180), 0x400008a, 0x0)
write$binfmt_script(r0, &(0x7f0000000280), 0xfea7)

0s ago: executing program 9 (id=2586):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
setsockopt$X25_QBITINCL(r1, 0x106, 0x1, 0x0, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000580)=@ringbuf={{}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendto$inet6(r0, &(0x7f0000000180)="1a", 0x34000, 0x0, &(0x7f0000000480)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$sock(r0, &(0x7f0000000380)=[{{0x0, 0x0, &(0x7f0000000200)}}], 0x1, 0x40000)
shutdown(r0, 0x1)

kernel console output (not intermixed with test programs):

lave bond_slave_1): Releasing backup interface
[  358.946485][ T4336] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  359.084596][ T4336] bond0 (unregistering): Released all slaves
[  359.111298][ T9000] netlink: 28 bytes leftover after parsing attributes in process `syz.9.853'.
[  359.120610][ T9000] netlink: 8 bytes leftover after parsing attributes in process `syz.9.853'.
[  359.140811][ T9005] netlink: 'syz.9.853': attribute type 10 has an invalid length.
[  359.148863][ T9005] bridge0: port 2(bridge_slave_1) entered disabled state
[  359.156124][ T9005] bridge0: port 1(bridge_slave_0) entered disabled state
[  359.190549][ T9005] bridge0: port 2(bridge_slave_1) entered blocking state
[  359.197642][ T9005] bridge0: port 2(bridge_slave_1) entered forwarding state
[  359.206439][ T9005] bridge0: port 1(bridge_slave_0) entered blocking state
[  359.213541][ T9005] bridge0: port 1(bridge_slave_0) entered forwarding state
[  359.226976][ T9005] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  359.240811][ T9026] sch_tbf: burst 676 is lower than device lo mtu (65550) !
[  359.312511][ T4287] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  359.330524][ T4287] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  359.437601][ T8688] 8021q: adding VLAN 0 to HW filter on device batadv0
[  359.464327][ T9035] loop5: detected capacity change from 0 to 256
[  359.510050][ T8688] device veth0_vlan entered promiscuous mode
[  359.522114][ T4423] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  359.555640][ T4423] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  359.569705][ T4423] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  359.953478][ T4423] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  360.333149][ T8688] device veth1_vlan entered promiscuous mode
[  360.388294][ T4423] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  360.426163][ T4423] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  360.454056][ T4423] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  360.530519][ T9050] netlink: 'syz.6.867': attribute type 10 has an invalid length.
[  360.555278][ T9049] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  360.588428][ T8688] device veth0_macvtap entered promiscuous mode
[  360.625661][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  360.660166][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  360.690677][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  360.714802][ T8688] device veth1_macvtap entered promiscuous mode
[  360.747015][ T8688] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  360.760412][ T8688] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  360.770892][ T8688] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  360.782524][ T8688] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  360.793252][ T8688] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  360.807740][ T8688] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  360.822568][ T8688] batman_adv: batadv0: Interface activated: batadv_slave_0
[  360.833204][ T8688] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  360.849648][ T8688] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  360.866368][ T8688] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  360.902768][ T8688] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  360.913130][ T8688] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  360.925159][ T8688] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  360.949952][ T8688] batman_adv: batadv0: Interface activated: batadv_slave_1
[  361.169786][ T4450] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  361.178242][ T4450] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  361.196994][ T4450] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  361.210060][ T4450] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  361.229527][ T4450] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  361.666156][ T8688] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  362.270902][ T8688] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  362.282224][ T8688] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  362.291706][ T8688] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  362.560069][ T4450] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  362.593204][ T4450] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  362.629036][ T4477] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  362.654284][ T4423] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  362.700698][ T4477] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  362.820633][ T4423] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  366.073963][ T9142] loop1: detected capacity change from 0 to 2048
[  366.499152][ T9142] EXT4-fs (loop1): Ignoring removed mblk_io_submit option
[  368.001189][ T9163] ptrace attach of "./syz-executor exec"[9167] was attempted by "./syz-executor exec"[9163]
[  368.266977][ T9142] EXT4-fs (loop1): mounted filesystem without journal. Opts: lazytime,usrjquota=,errors=remount-ro,norecovery,auto_da_alloc,mblk_io_submit,nouid32,barrier=0x0000000000000000,grpjquota=,bsddf,. Quota mode: none.
[  369.011009][   T26] audit: type=1326 audit(1733934971.947:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.9.907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb12a63f19 code=0x7ffc0000
[  369.962255][   T26] audit: type=1326 audit(1733934971.967:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.9.907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb12a63f19 code=0x7ffc0000
[  370.191459][ T9216] netlink: 'syz.9.899': attribute type 4 has an invalid length.
[  370.191560][ T9216] netlink: 'syz.9.899': attribute type 1 has an invalid length.
[  370.191594][ T9216] netlink: 181400 bytes leftover after parsing attributes in process `syz.9.899'.
[  370.834941][   T26] audit: type=1326 audit(1733934971.967:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.9.907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=201 compat=0 ip=0x7ffb12a63f19 code=0x7ffc0000
[  370.834975][   T26] audit: type=1326 audit(1733934971.967:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.9.907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb12a63f19 code=0x7ffc0000
[  370.834998][   T26] audit: type=1326 audit(1733934971.967:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.9.907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb12a63f19 code=0x7ffc0000
[  370.835021][   T26] audit: type=1326 audit(1733934971.967:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.9.907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ffb12a63f19 code=0x7ffc0000
[  370.835045][   T26] audit: type=1326 audit(1733934971.967:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.9.907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb12a63f19 code=0x7ffc0000
[  370.835068][   T26] audit: type=1326 audit(1733934971.967:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.9.907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb12a63f19 code=0x7ffc0000
[  370.835091][   T26] audit: type=1326 audit(1733934971.977:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.9.907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ffb12a63f19 code=0x7ffc0000
[  370.835115][   T26] audit: type=1326 audit(1733934971.977:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9196 comm="syz.9.907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb12a63f19 code=0x7ffc0000
[  370.993003][ T9219] device geneve2 entered promiscuous mode
[  371.099003][ T9221] netlink: 16 bytes leftover after parsing attributes in process `syz.5.904'.
[  371.139493][ T9227] IPVS: sync thread started: state = BACKUP, mcast_ifn = batadv0, syncid = 0, id = 0
[  374.126130][ T9258] loop1: detected capacity change from 0 to 256
[  374.146659][ T9255] loop6: detected capacity change from 0 to 2048
[  374.265451][ T9255] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  374.353491][ T9258] FAT-fs (loop1): Directory bread(block 64) failed
[  374.430526][ T9258] FAT-fs (loop1): Directory bread(block 65) failed
[  374.457671][ T9258] FAT-fs (loop1): Directory bread(block 66) failed
[  374.550435][ T5199] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  374.645475][ T9258] FAT-fs (loop1): Directory bread(block 67) failed
[  374.790679][ T5199] usb 6-1: Using ep0 maxpacket: 32
[  375.210640][ T5199] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  375.263648][ T5199] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  375.284062][ T9258] FAT-fs (loop1): Directory bread(block 68) failed
[  375.291919][ T9258] FAT-fs (loop1): Directory bread(block 69) failed
[  375.298545][ T9258] FAT-fs (loop1): Directory bread(block 70) failed
[  375.305566][ T9258] FAT-fs (loop1): Directory bread(block 71) failed
[  375.312917][ T9258] FAT-fs (loop1): Directory bread(block 72) failed
[  375.320070][ T9258] FAT-fs (loop1): Directory bread(block 73) failed
[  375.328876][ T5199] usb 6-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  375.355472][ T5199] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  375.426236][ T5199] usb 6-1: config 0 descriptor??
[  375.459457][ T9273] loop2: detected capacity change from 0 to 128
[  375.492335][ T5199] hub 6-1:0.0: USB hub found
[  375.520737][ T9275] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3
[  375.553784][ T9275] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  375.628281][ T9273] FAT-fs (loop2): bogus logical sector size 0
[  375.680631][ T9273] FAT-fs (loop2): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  376.143628][ T9281] loop6: detected capacity change from 0 to 256
[  376.166824][ T9273] FAT-fs (loop2): Can't find a valid FAT filesystem
[  376.253533][ T5199] hub 6-1:0.0: 1 port detected
[  376.333868][ T4477] attempt to access beyond end of device
[  376.333868][ T4477] loop1: rw=1, want=1832, limit=256
[  376.374279][ T4477] attempt to access beyond end of device
[  376.374279][ T4477] loop1: rw=1, want=3308, limit=256
[  376.440416][   T26] kauditd_printk_skb: 7 callbacks suppressed
[  376.440434][   T26] audit: type=1804 audit(1733934979.357:82): pid=9281 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.919" name=2F6E6577726F6F742F3136302FE91F7189591E9233614B2F6275732F627573 dev="loop6" ino=1048658 res=1 errno=0
[  376.568668][   T26] audit: type=1804 audit(1733934979.417:83): pid=9281 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.919" name=2F6E6577726F6F742F3136302FE91F7189591E9233614B2F6275732F627573 dev="loop6" ino=1048658 res=1 errno=0
[  376.736737][ T9291] loop1: detected capacity change from 0 to 16
[  376.826549][ T9291] erofs: (device loop1): erofs_read_inode: unsupported datalayout 5 of nid 36
[  377.091027][ T5199] hub 6-1:0.0: activate --> -90
[  377.376745][   T23] usb 6-1: USB disconnect, device number 2
[  377.940943][ T9310] netlink: 1788 bytes leftover after parsing attributes in process `syz.6.926'.
[  378.476081][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[  378.485457][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[  379.378287][ T9319] loop5: detected capacity change from 0 to 256
[  379.411896][ T4213] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  379.680417][ T4213] usb 3-1: Using ep0 maxpacket: 8
[  379.800449][ T4213] usb 3-1: config 0 has an invalid interface number: 194 but max is 0
[  379.814229][ T4213] usb 3-1: config 0 has no interface number 0
[  379.831346][ T4213] usb 3-1: config 0 interface 194 altsetting 132 has an invalid endpoint with address 0xC7, skipping
[  379.860604][ T4213] usb 3-1: config 0 interface 194 has no altsetting 0
[  380.803729][ T4213] usb 3-1: New USB device found, idVendor=1d50, idProduct=60c6, bcdDevice=26.d9
[  380.815139][ T4213] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  380.824186][ T4213] usb 3-1: Product: syz
[  380.828492][ T4213] usb 3-1: Manufacturer: syz
[  380.833667][ T4213] usb 3-1: SerialNumber: syz
[  380.840133][ T4213] usb 3-1: config 0 descriptor??
[  380.870724][ T9330] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  382.033384][ T4213] usb 3-1: USB disconnect, device number 4
[  386.377148][ T9412] loop5: detected capacity change from 0 to 64
[  386.451615][ T9421] tipc: Started in network mode
[  386.456843][ T9421] tipc: Node identity 10000, cluster identity 4711
[  386.479877][ T9421] tipc: Node number set to 65536
[  388.392705][ T9412] hfs: get root inode failed
[  388.643853][ T9432] loop5: detected capacity change from 0 to 512
[  389.658777][ T9442] loop6: detected capacity change from 0 to 1024
[  389.756569][ T9442] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  389.787698][ T9442] EXT4-fs (loop6): orphan cleanup on readonly fs
[  389.865323][ T9442] EXT4-fs error (device loop6): ext4_free_blocks:6223: comm syz.6.953: Freeing blocks not in datazone - block = 0, count = 4096
[  389.900908][ T9450] netlink: 32 bytes leftover after parsing attributes in process `syz.1.954'.
[  389.959750][ T9442] EXT4-fs (loop6): Remounting filesystem read-only
[  389.974756][ T9442] EXT4-fs (loop6): 1 truncate cleaned up
[  390.010991][ T9442] EXT4-fs (loop6): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000015,stripe=0x0000000000000000,grpid,errors=remount-ro,data_err=ignore,noblock_validity,minixdf,min_batch_time=0x0000000000000013,. Quota mode: writeback.
[  390.181249][ T9464] loop2: detected capacity change from 0 to 512
[  390.183059][ T9463] loop5: detected capacity change from 0 to 512
[  390.213647][ T9466] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  390.276876][ T9463] EXT4-fs (loop5): Ignoring removed nobh option
[  390.286903][ T9463] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  390.338277][ T9463] EXT4-fs (loop5): can't mount with commit=14, fs mounted w/o journal
[  390.365244][ T9464] EXT4-fs (loop2): 1 orphan inode deleted
[  390.397444][ T9464] EXT4-fs (loop2): mounted filesystem without journal. Opts: sb=0x0000000000000001,barrier,,errors=continue. Quota mode: writeback.
[  390.419136][ T9464] ext4 filesystem being mounted at /12/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  390.699657][ T9488] binder: 9487:9488 ioctl c0306201 0 returned -14
[  390.826775][ T9489] binder: 9487:9489 ioctl c0306201 0 returned -14
[  392.769806][ T9514] loop1: detected capacity change from 0 to 512
[  392.797277][ T9517] syz.9.968[9517] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  392.797372][ T9517] syz.9.968[9517] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  393.520602][ T9488] binder: 9487:9488 ioctl c0306201 0 returned -14
[  395.882532][ T9558] netlink: 'syz.5.975': attribute type 4 has an invalid length.
[  395.912448][ T9558] netlink: 17 bytes leftover after parsing attributes in process `syz.5.975'.
[  397.027697][ T9557] loop1: detected capacity change from 0 to 8192
[  397.176457][   T26] audit: type=1800 audit(1733935000.107:84): pid=9557 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.977" name="file2" dev="loop1" ino=1048661 res=0 errno=0
[  397.366295][ T9576] loop5: detected capacity change from 0 to 512
[  397.457213][ T9576] EXT4-fs (loop5): Ignoring removed orlov option
[  397.538462][ T9576] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  397.973674][ T9576] EXT4-fs (loop5): 1 truncate cleaned up
[  398.064208][ T9576] EXT4-fs (loop5): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000002,resuid=0x000000000000ee01,orlov,lazytime,block_validity,quota,,errors=continue. Quota mode: writeback.
[  398.174938][ T9580] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  400.903007][ T9637] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  401.007462][ T9644] netlink: 'syz.5.992': attribute type 10 has an invalid length.
[  401.040085][ T9644] bond0: (slave wlan1): Opening slave failed
[  401.314504][ T9655] loop5: detected capacity change from 0 to 256
[  402.858192][ T9691] loop5: detected capacity change from 0 to 512
[  402.899502][ T9696] loop1: detected capacity change from 0 to 64
[  402.959301][ T9691] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  403.405315][ T9705] overlayfs: failed to clone upperpath
[  403.434304][ T9691] EXT4-fs (loop5): 1 truncate cleaned up
[  403.480421][ T9691] EXT4-fs (loop5): mounted filesystem without journal. Opts: block_validity,,errors=continue. Quota mode: none.
[  403.509410][ T9708] minix_free_block (loop1:2): bit already cleared
[  403.516486][ T9708] minix_free_block (loop1:3): bit already cleared
[  403.522998][ T9708] minix_free_block (loop1:4): bit already cleared
[  403.988411][ T9715] tipc: Trying to set illegal importance in message
[  404.710750][ T9744] netlink: 'syz.1.1011': attribute type 1 has an invalid length.
[  404.780194][ T9744] 8021q: adding VLAN 0 to HW filter on device bond1
[  404.902419][ T9747] bond1: (slave gretap1): making interface the new active one
[  404.943422][ T9747] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  404.959562][ T9732] loop2: detected capacity change from 0 to 32768
[  404.970586][ T6494] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready
[  404.989095][ T9752] tipc: Started in network mode
[  404.994784][ T9752] tipc: Node identity 4, cluster identity 4711
[  405.012297][ T9752] tipc: Node number set to 4
[  405.349574][ T9732] jfs: Unrecognized mount option "ÿÿ01777777777777777777777¤	Z*¬ð¿Ë m˜.Dc�8�'ñ@Ø×C9Gö9œùõ?À9†Så¦{»1Ÿ¿JÆöÌÕ¬¿á5æÒÔŒöÀ‰Ýöqqÿ³±Yˆç³”ÅÚóá" or missing value
[  406.026038][ T9776] loop5: detected capacity change from 0 to 4096
[  406.118070][ T9776] ntfs3: loop5: Different NTFS' sector size (4096) and media sector size (512)
[  406.191638][ T9790] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  406.221486][ T9787] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(3)
[  406.228628][ T9787] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  406.246506][ T9776] ntfs3: loop5: Mark volume as dirty due to NTFS errors
[  406.264388][ T9794] PKCS7: Unknown OID: [4] 2.19.13055.170809666(bad)
[  406.271592][ T9794] PKCS7: Only support pkcs7_signedData type
[  406.340639][ T9787] vhci_hcd vhci_hcd.0: Device attached
[  406.405381][ T9787] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  406.484294][ T9797] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  406.526060][ T9787] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  406.612412][ T9776] ntfs3: loop5: Failed to load $Extend.
[  407.690835][   T23] vhci_hcd: vhci_device speed not set
[  407.719469][ T9787] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  407.810449][   T23] usb 45-1: new full-speed USB device number 2 using vhci_hcd
[  407.820782][ T9787] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  407.851099][ T9787] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  407.878747][ T9813] device sit1 entered promiscuous mode
[  407.909109][ T9787] vhci_hcd vhci_hcd.0: port 0 already used
[  408.200617][ T4208] usb 3-1: new low-speed USB device number 5 using dummy_hcd
[  408.441209][ T4208] usb 3-1: device descriptor read/64, error -71
[  408.780662][ T4208] usb 3-1: new low-speed USB device number 6 using dummy_hcd
[  408.891781][ T9789] vhci_hcd: connection reset by peer
[  408.945167][ T4336] vhci_hcd: stop threads
[  408.979062][ T4336] vhci_hcd: release socket
[  409.001627][ T4208] usb 3-1: device descriptor read/64, error -71
[  409.007962][ T9848] loop1: detected capacity change from 0 to 1024
[  409.018142][ T4336] vhci_hcd: disconnect device
[  409.057615][ T9848] UDF-fs: warning (device loop1): udf_fill_super: No partition found (2)
[  409.181816][ T4208] usb usb3-port1: attempt power cycle
[  409.251769][ T9857] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  409.266726][ T4213] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  409.620558][ T4208] usb 3-1: new low-speed USB device number 7 using dummy_hcd
[  409.770668][ T4208] usb 3-1: device descriptor read/8, error -71
[  410.033540][ T9860] 9pnet: p9_fd_create_tcp (9860): problem connecting socket to 127.0.0.1
[  410.213687][ T4208] usb 3-1: new low-speed USB device number 8 using dummy_hcd
[  410.503697][ T9877] loop5: detected capacity change from 0 to 1764
[  410.571046][ T4208] usb 3-1: device descriptor read/8, error -71
[  410.701658][ T4208] usb usb3-port1: unable to enumerate USB device
[  411.144444][ T9876] iso9660: Corrupted directory entry in block 2 of inode 1920
[  411.450709][ T4213] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  411.466438][ T4213] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  411.515032][ T4213] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  411.574442][ T4213] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  411.610833][ T9845] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  413.400523][   T23] vhci_hcd: vhci_device speed not set
[  413.463356][ T4213] usb 7-1: USB disconnect, device number 6
[  414.423291][ T4162] udevd[4162]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  414.452649][ T9927] loop2: detected capacity change from 0 to 512
[  415.407796][ T9927] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000000,minixdf,,errors=continue. Quota mode: writeback.
[  415.490630][ T9927] ext4 filesystem being mounted at /27/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  415.529058][ T4162] udevd[4162]: inotify_add_watch(7, /dev/loop2, 10) failed: No such file or directory
[  415.547060][ T9946] device vlan0 entered promiscuous mode
[  415.607298][ T9946] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1053'.
[  415.638272][ T4162] udevd[4162]: inotify_add_watch(7, /dev/loop2, 10) failed: No such file or directory
[  415.679493][ T4162] udevd[4162]: inotify_add_watch(7, /dev/loop2, 10) failed: No such file or directory
[  415.782796][ T9946] device hsr_slave_1 left promiscuous mode
[  415.895817][ T9972] loop5: detected capacity change from 0 to 256
[  416.083036][ T9972] FAT-fs (loop5): bogus number of directory entries (4)
[  416.121267][ T9972] FAT-fs (loop5): Can't find a valid FAT filesystem
[  416.399064][ T9999] netlink: 104 bytes leftover after parsing attributes in process `syz.5.1062'.
[  416.521470][T10010] netlink: 76 bytes leftover after parsing attributes in process `syz.5.1064'.
[  416.600517][ T5198] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  416.850550][ T5198] usb 7-1: Using ep0 maxpacket: 16
[  416.973372][ T5198] usb 7-1: config 0 has an invalid interface number: 41 but max is 0
[  417.033854][ T5198] usb 7-1: config 0 has no interface number 0
[  417.152598][ T5198] usb 7-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[  417.326017][ T5198] usb 7-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  417.376332][ T5198] usb 7-1: config 0 interface 41 has no altsetting 0
[  419.170546][ T5198] usb 7-1: New USB device found, idVendor=0fe6, idProduct=9700, bcdDevice=d1.9a
[  419.210190][ T5198] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  419.235720][ T5198] usb 7-1: Product: syz
[  419.239921][ T5198] usb 7-1: Manufacturer: syz
[  419.263294][ T5198] usb 7-1: SerialNumber: syz
[  419.290587][ T5198] usb 7-1: config 0 descriptor??
[  419.334121][ T5198] usb 7-1: can't set config #0, error -71
[  419.367238][ T5198] usb 7-1: USB disconnect, device number 7
[  419.431528][    C0] Dead loop on virtual device ipvlan1, fix it urgently!
[  419.444751][T10054] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  421.373727][T10082] loop1: detected capacity change from 0 to 256
[  422.318802][T10082] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x7d19d30b, utbl_chksum : 0xe619d30d)
[  422.886154][T10108] print_req_error: 25 callbacks suppressed
[  422.886187][T10108] blk_update_request: I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  422.903941][T10108] F2FS-fs (loop5): Unable to read 1th superblock
[  422.910573][T10108] blk_update_request: I/O error, dev loop5, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  422.921654][T10108] F2FS-fs (loop5): Unable to read 2th superblock
[  423.928818][T10121] loop5: detected capacity change from 0 to 512
[  424.056293][T10121] EXT4-fs (loop5): mounted filesystem without journal. Opts: nodelalloc,grpid,auto_da_alloc,,errors=continue. Quota mode: writeback.
[  424.074152][T10132] device syzkaller0 entered promiscuous mode
[  424.103932][T10121] ext4 filesystem being mounted at /46/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  424.375021][T10146] netlink: 48 bytes leftover after parsing attributes in process `syz.6.1094'.
[  424.514241][T10148] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  424.526400][T10148] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  424.565211][T10146] dns_resolver: Unsupported server list version (0)
[  424.949087][T10163] loop6: detected capacity change from 0 to 2048
[  425.096476][T10163]  loop6: p3 < > p4 < >
[  425.101144][T10163] loop6: partition table partially beyond EOD, truncated
[  425.146782][T10163] loop6: p3 start 4284289 is beyond EOD, truncated
[  425.589648][ T4162] udevd[4162]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[  426.090386][ T5198] usb 7-1: new full-speed USB device number 8 using dummy_hcd
[  427.015565][   T26] audit: type=1804 audit(1733935029.947:85): pid=10222 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1111" name="/newroot/40/bus/bus" dev="overlay" ino=243 res=1 errno=0
[  427.066887][T10222] Invalid ELF header magic: != ELF
[  427.299508][T10237] loop1: detected capacity change from 0 to 1024
[  427.385758][T10237] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  427.493894][T10237] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_lock,dioread_nolock,,errors=continue. Quota mode: none.
[  427.668122][T10256] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5806: Corrupt filesystem
[  427.698155][T10256] EXT4-fs error (device loop1): ext4_dirty_inode:6010: inode #15: comm syz.1.1114: mark_inode_dirty error
[  427.715383][T10231] loop5: detected capacity change from 0 to 32768
[  427.752677][T10256] EXT4-fs error (device loop1): ext4_map_blocks:738: inode #15: block 1803188595: comm syz.1.1114: lblock 0 mapped to illegal pblock 1803188595 (length 1)
[  427.812262][T10256] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[  427.830713][T10256] EXT4-fs (loop1): This should not happen!! Data will be lost
[  427.830713][T10256] 
[  427.958714][T10231] jfs: Unrecognized mount option "ÿÿ01777777777777777777777¤	Z*¬ð¿Ë m˜.Dc�8�'ñ@Ø×C9Gö9œùõ?À9†Så¦{»1Ÿ¿JÆöÌÕ¬¿á5æÒÔŒöÀ‰Ýöqqÿ³±Yˆç³”ÅÚóá" or missing value
[  428.070487][ T4247] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  428.481004][ T4247] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  428.517567][ T4247] usb 2-1: New USB device found, idVendor=0499, idProduct=1058, bcdDevice=31.95
[  428.637128][ T4247] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  428.711882][ T4247] usb 2-1: config 0 descriptor??
[  428.802029][ T4247] snd-usb-audio: probe of 2-1:0.0 failed with error -2
[  428.871899][ T6494] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:476: comm kworker/u4:21: Invalid block bitmap block 0 in block_group 0
[  428.907820][ T4162] udevd[4162]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  428.928130][ T6494] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 131075 with max blocks 1 with error 117
[  429.057659][ T4213] usb 2-1: USB disconnect, device number 6
[  429.163404][T10301] loop6: detected capacity change from 0 to 512
[  429.170222][ T6494] EXT4-fs (loop1): This should not happen!! Data will be lost
[  429.170222][ T6494] 
[  429.309561][T10301] EXT4-fs (loop6): DAX enabled. Warning: EXPERIMENTAL, use at your own risk
[  429.324810][T10306] device wlan0 entered promiscuous mode
[  429.510967][T10306] device macvtap1 entered promiscuous mode
[  429.541588][T10301] EXT4-fs (loop6): DAX unsupported by block device.
[  429.851697][ T4172] EXT4-fs error (device loop1): ext4_map_blocks:628: inode #2: block 16: comm syz-executor: lblock 0 mapped to illegal pblock 16 (length 1)
[  429.879791][ T4172] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5806: Corrupt filesystem
[  429.935357][ T4172] EXT4-fs error (device loop1): ext4_dirty_inode:6010: inode #2: comm syz-executor: mark_inode_dirty error
[  430.059855][T10302] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  430.718341][T10329] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  430.765664][T10329] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  431.077005][ T4172] EXT4-fs (loop1): Inode 15 (ffff888073593bd0): i_reserved_data_blocks (1) not cleared!
[  431.183752][T10335] fuse: Bad value for 'fd'
[  431.396133][ T4172] bond0: (slave syz_tun): Releasing backup interface
[  431.627141][ T6494] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  431.820128][ T6494] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  432.061164][ T6494] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  433.312038][ T6494] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  433.541338][T10375] netlink: 72 bytes leftover after parsing attributes in process `syz.9.1140'.
[  433.795430][ T5199] Bluetooth: hci2: command 0x0411 tx timeout
[  434.397258][T10392] netlink: 40 bytes leftover after parsing attributes in process `syz.9.1144'.
[  436.944467][ T1111] Bluetooth: hci1: command 0x0409 tx timeout
[  437.072965][T10411] futex_wake_op: syz.2.1148 tries to shift op by 144; fix this program
[  437.178193][ T6494] tipc: Left network mode
[  438.588093][T10430] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  439.030768][ T4247] Bluetooth: hci1: command 0x041b tx timeout
[  439.353343][T10382] chnl_net:caif_netlink_parms(): no params data found
[  439.505898][T10443] loop5: detected capacity change from 0 to 256
[  439.914385][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[  439.922853][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[  441.120793][ T4208] Bluetooth: hci1: command 0x040f tx timeout
[  442.042973][T10382] bridge0: port 1(bridge_slave_0) entered blocking state
[  442.050127][T10382] bridge0: port 1(bridge_slave_0) entered disabled state
[  442.062429][T10382] device bridge_slave_0 entered promiscuous mode
[  442.093378][T10485] blk_update_request: I/O error, dev loop11, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  442.104461][T10485] F2FS-fs (loop11): Unable to read 1th superblock
[  442.111467][T10485] blk_update_request: I/O error, dev loop11, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  442.122504][T10485] F2FS-fs (loop11): Unable to read 2th superblock
[  442.319450][T10382] bridge0: port 2(bridge_slave_1) entered blocking state
[  442.327074][T10382] bridge0: port 2(bridge_slave_1) entered disabled state
[  442.350100][T10382] device bridge_slave_1 entered promiscuous mode
[  443.070831][T10382] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  443.128449][T10493] loop6: detected capacity change from 0 to 512
[  443.132873][T10382] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  443.150974][T10492] loop5: detected capacity change from 0 to 256
[  443.190695][ T4208] Bluetooth: hci1: command 0x0419 tx timeout
[  443.239568][T10382] team0: Port device team_slave_0 added
[  443.296077][T10382] team0: Port device team_slave_1 added
[  443.296102][T10493] EXT4-fs (loop6): mounted filesystem without journal. Opts: nodelalloc,grpid,auto_da_alloc,,errors=continue. Quota mode: writeback.
[  443.397874][T10493] ext4 filesystem being mounted at /204/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  443.474886][   T26] audit: type=1326 audit(1733935046.407:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10504 comm="syz.9.1178" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ffb12a63f19 code=0x0
[  444.266617][T10512] xt_CT: No such helper "snmp"
[  444.579204][T10382] batman_adv: batadv0: Adding interface: batadv_slave_0
[  444.611399][T10382] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  445.377554][T10382] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  445.419760][ T6494] bond1: (slave gretap1): Releasing active interface
[  445.441338][T10382] batman_adv: batadv0: Adding interface: batadv_slave_1
[  445.454143][T10382] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  445.486515][T10536] dns_resolver: Unsupported server list version (0)
[  445.528841][T10382] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  445.565939][T10533] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1171'.
[  445.708507][T10382] device hsr_slave_0 entered promiscuous mode
[  445.737554][T10382] device hsr_slave_1 entered promiscuous mode
[  445.767124][T10382] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  445.788459][T10382] Cannot create hsr debugfs directory
[  445.864051][ T6494] bond0: (slave wlan1): Releasing backup interface
[  446.840390][ T6494] device hsr_slave_0 left promiscuous mode
[  446.859260][ T6494] device hsr_slave_1 left promiscuous mode
[  446.903342][ T6494] device bridge_slave_1 left promiscuous mode
[  446.917027][ T6494] bridge0: port 2(bridge_slave_1) entered disabled state
[  446.970256][ T6494] device bridge_slave_0 left promiscuous mode
[  446.976759][ T6494] bridge0: port 1(bridge_slave_0) entered disabled state
[  446.997255][ T6494] device veth1_macvtap left promiscuous mode
[  447.009068][ T6494] device veth0_macvtap left promiscuous mode
[  447.016793][ T6494] device veth1_vlan left promiscuous mode
[  447.040427][ T6494] device veth0_vlan left promiscuous mode
[  448.183271][ T6494] bond1 (unregistering): Released all slaves
[  448.960139][ T6494] team0 (unregistering): Port device team_slave_1 removed
[  449.008029][ T6494] team0 (unregistering): Port device team_slave_0 removed
[  449.043925][ T6494] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  449.097746][ T6494] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  449.163686][T10596] netlink: 180 bytes leftover after parsing attributes in process `syz.9.1182'.
[  449.277416][ T6494] bond0 (unregistering): Released all slaves
[  449.503312][T10596] netdevsim netdevsim9 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  449.546125][T10596] netdevsim netdevsim9 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  449.564124][T10596] netdevsim netdevsim9 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  449.573979][T10596] netdevsim netdevsim9 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  449.588241][T10596] device geneve2 entered promiscuous mode
[  452.546374][T10628] netlink: 'syz.2.1191': attribute type 21 has an invalid length.
[  452.555166][T10628] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1191'.
[  452.775322][T10628] netlink: 'syz.2.1191': attribute type 4 has an invalid length.
[  452.870751][T10628] netlink: 'syz.2.1191': attribute type 5 has an invalid length.
[  453.181444][T10628] netlink: 3 bytes leftover after parsing attributes in process `syz.2.1191'.
[  453.424789][T10382] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  453.436798][T10382] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  453.447948][ T4210] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  453.492534][T10382] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  453.499825][   T13] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  453.560218][T10382] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  453.718035][T10382] 8021q: adding VLAN 0 to HW filter on device bond0
[  453.741369][ T4423] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  453.749850][ T4423] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  453.760563][   T13] usb 6-1: Using ep0 maxpacket: 16
[  453.775114][T10382] 8021q: adding VLAN 0 to HW filter on device team0
[  453.794567][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  453.809722][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  453.828362][ T4210] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  453.846576][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[  453.853744][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[  453.862554][ T4210] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  453.878636][ T4210] usb 7-1: New USB device found, idVendor=06a3, idProduct=0621, bcdDevice= 0.00
[  453.888240][   T13] usb 6-1: config 0 has an invalid interface number: 41 but max is 0
[  453.914982][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  453.926018][   T13] usb 6-1: config 0 has no interface number 0
[  453.936604][ T4210] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  453.948970][   T13] usb 6-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[  453.961087][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  453.985243][ T4210] usb 7-1: config 0 descriptor??
[  453.992510][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  454.001068][   T13] usb 6-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  454.012210][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  454.019320][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  454.027174][   T13] usb 6-1: config 0 interface 41 has no altsetting 0
[  454.046648][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  454.077050][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  454.112630][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  454.147220][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  454.167179][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  454.190525][   T13] usb 6-1: New USB device found, idVendor=0fe6, idProduct=9700, bcdDevice=d1.9a
[  454.191240][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  454.200041][   T13] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  454.216563][   T13] usb 6-1: Product: syz
[  454.221343][   T13] usb 6-1: Manufacturer: syz
[  454.226028][   T13] usb 6-1: SerialNumber: syz
[  454.234685][   T13] usb 6-1: config 0 descriptor??
[  454.244775][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  454.250749][T10638] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  454.265886][T10638] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  454.280384][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  454.301225][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  454.313422][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  454.341591][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  454.366048][T10382] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  454.407646][T10675] ieee802154 phy0 wpan0: encryption failed: -22
[  454.432912][T10675] tipc: Started in network mode
[  454.445540][T10675] tipc: Node identity 7f000001, cluster identity 4711
[  454.461533][T10675] tipc: Enabled bearer <udp:syz1>, priority 10
[  455.240224][   T13] dm9601: probe of 6-1:0.41 failed with error -71
[  455.279549][ T4210] saitek 0003:06A3:0621.0006: unbalanced collection at end of report description
[  455.330924][   T13] sr9700: probe of 6-1:0.41 failed with error -71
[  455.352399][T10382] 8021q: adding VLAN 0 to HW filter on device batadv0
[  455.359479][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  455.381959][ T4210] saitek 0003:06A3:0621.0006: parse failed
[  455.387816][ T4210] saitek: probe of 0003:06A3:0621.0006 failed with error -22
[  455.410586][   T13] usb 6-1: USB disconnect, device number 3
[  455.425276][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  455.479381][ T4210] usb 7-1: USB disconnect, device number 9
[  455.721661][ T4213] tipc: Node number set to 2130706433
[  455.808029][T10702] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1211'.
[  457.415947][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  457.459400][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  457.508836][T10382] device veth0_vlan entered promiscuous mode
[  457.551397][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  457.596904][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  457.658590][T10382] device veth1_vlan entered promiscuous mode
[  457.721420][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  457.824387][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  457.848274][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  457.912725][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  457.933520][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  457.954848][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  457.992562][T10382] device veth0_macvtap entered promiscuous mode
[  458.020812][T10382] device veth1_macvtap entered promiscuous mode
[  458.078692][T10382] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  458.119713][T10382] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.150228][T10382] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  458.173635][T10382] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.200420][T10382] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  458.239255][T10382] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.271202][T10382] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  458.293295][T10382] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.321675][T10382] batman_adv: batadv0: Interface activated: batadv_slave_0
[  458.346183][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  458.391844][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  458.421237][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  458.466458][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  458.512824][T10382] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.559547][T10382] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.569831][T10382] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.862619][T10382] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  459.892266][T10382] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  459.970325][T10382] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  460.030983][T10382] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  460.076715][T10382] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  460.118901][T10382] batman_adv: batadv0: Interface activated: batadv_slave_1
[  460.144646][T10382] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  460.164713][T10382] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  460.185684][T10382] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  460.204569][T10382] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  460.270172][T10749] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1212'.
[  460.280177][T10749] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1212'.
[  460.290915][T10754] netlink: 'syz.2.1212': attribute type 10 has an invalid length.
[  460.299070][T10754] bridge0: port 2(bridge_slave_1) entered disabled state
[  460.306306][T10754] bridge0: port 1(bridge_slave_0) entered disabled state
[  460.327321][T10754] bridge0: port 2(bridge_slave_1) entered blocking state
[  460.334451][T10754] bridge0: port 2(bridge_slave_1) entered forwarding state
[  460.341843][T10754] bridge0: port 1(bridge_slave_0) entered blocking state
[  460.348917][T10754] bridge0: port 1(bridge_slave_0) entered forwarding state
[  460.404471][T10764] Dead loop on virtual device ipvlan1, fix it urgently!
[  461.229654][T10754] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  461.254778][T10764] syz.5.1210 (10764) used greatest stack depth: 10104 bytes left
[  461.726663][ T4450] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  461.737576][ T4450] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  462.194580][ T4336] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  462.261267][ T4336] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  462.844840][ T4209] Bluetooth: hci3: command 0x0406 tx timeout
[  462.897942][ T4450] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  462.963563][T10769] netlink: 'syz.5.1215': attribute type 10 has an invalid length.
[  464.141144][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  464.220073][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  464.525408][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  466.254183][T10829] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1229'.
[  466.715449][T10829] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1229'.
[  467.098257][T10829] netlink: 'syz.5.1229': attribute type 10 has an invalid length.
[  467.118523][T10829] bridge0: port 2(bridge_slave_1) entered disabled state
[  467.125766][T10829] bridge0: port 1(bridge_slave_0) entered disabled state
[  467.145717][T10829] bridge0: port 2(bridge_slave_1) entered blocking state
[  467.152857][T10829] bridge0: port 2(bridge_slave_1) entered forwarding state
[  467.160257][T10829] bridge0: port 1(bridge_slave_0) entered blocking state
[  467.167382][T10829] bridge0: port 1(bridge_slave_0) entered forwarding state
[  467.211397][T10829] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  468.505346][T10881] loop5: detected capacity change from 0 to 256
[  469.349848][T10887] loop6: detected capacity change from 0 to 1024
[  469.380219][T10888] loop0: detected capacity change from 0 to 2048
[  469.839745][T10888] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  472.989197][T10881] attempt to access beyond end of device
[  472.989197][T10881] loop5: rw=2049, want=356, limit=256
[  473.306362][ T4964] hfsplus: walked past end of dir
[  473.423029][ T4964] hfsplus: xattr search failed
[  475.442622][T10939] netlink: 'syz.5.1254': attribute type 21 has an invalid length.
[  475.452544][T10939] netlink: 128 bytes leftover after parsing attributes in process `syz.5.1254'.
[  475.462680][T10939] netlink: 'syz.5.1254': attribute type 4 has an invalid length.
[  475.471020][T10939] netlink: 'syz.5.1254': attribute type 5 has an invalid length.
[  475.478895][T10939] netlink: 3 bytes leftover after parsing attributes in process `syz.5.1254'.
[  479.503198][T11019] overlayfs: failed to clone upperpath
[  481.738680][T11091] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability
[  481.758740][T11082] loop0: detected capacity change from 0 to 256
[  481.841328][T11082] exfat: Unknown parameter '²áSÌh_‚&†aÐúÊ^©Ë@RY»ÊécayrÍïFzQ>Pß�†º*Ù¹àV£µ8‡‰d|ëCüŸpÅIýÑ7°7ò"€T©U®ûT¹ªCH{W¶Ž.H K; ^­j¡_—]Ñ7ò5³q•Yçb¯Yþ•ÉF'
[  482.703259][T11082] loop0: detected capacity change from 0 to 512
[  483.140458][   T26] audit: type=1326 audit(1733935086.047:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11111 comm="syz.2.1305" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f57406fdf19 code=0x0
[  483.860428][ T4247] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  483.952288][T11136] overlayfs: failed to clone upperpath
[  484.032302][T11141] netlink: 120 bytes leftover after parsing attributes in process `syz.0.1301'.
[  484.057665][T11141] Invalid option length (1047411) for dns_resolver key
[  484.130460][ T4247] usb 6-1: Using ep0 maxpacket: 8
[  484.320658][ T4247] usb 6-1: config 0 has an invalid interface number: 194 but max is 0
[  484.376726][ T4247] usb 6-1: config 0 has no interface number 0
[  484.532320][ T4247] usb 6-1: config 0 interface 194 altsetting 132 has an invalid endpoint with address 0xC7, skipping
[  484.745488][ T4247] usb 6-1: config 0 interface 194 has no altsetting 0
[  484.797423][T11152] loop0: detected capacity change from 0 to 1024
[  484.870794][T11152] UDF-fs: warning (device loop0): udf_fill_super: No partition found (2)
[  485.095354][ T4247] usb 6-1: New USB device found, idVendor=1d50, idProduct=60c6, bcdDevice=26.d9
[  485.104870][ T4247] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  485.113726][ T4247] usb 6-1: Product: syz
[  485.117929][ T4247] usb 6-1: Manufacturer: syz
[  485.123005][ T4247] usb 6-1: SerialNumber: syz
[  485.130770][ T4247] usb 6-1: config 0 descriptor??
[  485.151537][T11114] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  486.292178][ T4247] usb 6-1: can't set config #0, error -71
[  486.306213][ T4247] usb 6-1: USB disconnect, device number 4
[  489.960879][ T4181] Bluetooth: hci1: link tx timeout
[  489.976419][ T4181] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[  491.112017][    C0] Dead loop on virtual device ipvlan1, fix it urgently!
[  492.612081][T11230] loop0: detected capacity change from 0 to 512
[  493.001274][T11230] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  493.710875][T11230] EXT4-fs (loop0): 1 truncate cleaned up
[  493.845349][T11230] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  494.444473][T11247] loop5: detected capacity change from 0 to 1764
[  495.241200][ T1111] Bluetooth: hci1: command 0x0406 tx timeout
[  495.489592][T11265] netlink: 'syz.9.1327': attribute type 9 has an invalid length.
[  496.919038][T11285] tipc: Started in network mode
[  496.930439][T11285] tipc: Node identity f0, cluster identity 4711
[  496.959547][T11285] tipc: Node number set to 240
[  497.104266][T11291] ubi1: attaching mtd0
[  497.351487][T11295] loop0: detected capacity change from 0 to 256
[  498.189136][T11295] FAT-fs (loop0): Directory bread(block 64) failed
[  498.237459][T11295] FAT-fs (loop0): Directory bread(block 65) failed
[  498.244495][T11295] FAT-fs (loop0): Directory bread(block 66) failed
[  498.251188][T11295] FAT-fs (loop0): Directory bread(block 67) failed
[  498.257808][T11295] FAT-fs (loop0): Directory bread(block 68) failed
[  498.264481][T11295] FAT-fs (loop0): Directory bread(block 69) failed
[  498.271128][T11295] FAT-fs (loop0): Directory bread(block 70) failed
[  498.277769][T11295] FAT-fs (loop0): Directory bread(block 71) failed
[  498.284521][T11295] FAT-fs (loop0): Directory bread(block 72) failed
[  498.331145][T11295] FAT-fs (loop0): Directory bread(block 73) failed
[  498.705481][T11309] loop6: detected capacity change from 0 to 64
[  499.596029][T11309] hfs: get root inode failed
[  499.644591][ T4336] attempt to access beyond end of device
[  499.644591][ T4336] loop0: rw=1, want=1832, limit=256
[  499.683068][ T4336] attempt to access beyond end of device
[  499.683068][ T4336] loop0: rw=1, want=3308, limit=256
[  502.477699][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[  502.484059][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[  502.913521][T11364] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  505.220871][T11387] loop0: detected capacity change from 0 to 2048
[  509.352611][T11429] netlink: 'syz.9.1360': attribute type 1 has an invalid length.
[  509.519569][T11429] 8021q: adding VLAN 0 to HW filter on device bond1
[  509.601953][T11432] bond1: (slave gretap1): making interface the new active one
[  509.611804][T11432] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  509.647785][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready
[  509.718756][T11436] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  510.613814][T11463] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1371'.
[  510.683370][T11466] loop6: detected capacity change from 0 to 1024
[  510.990650][ T4247] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  511.021685][ T4964] hfsplus: walked past end of dir
[  511.772371][ T4964] hfsplus: xattr search failed
[  511.790427][ T4247] usb 6-1: Using ep0 maxpacket: 16
[  512.320801][ T4247] usb 6-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice= 7.79
[  512.442674][ T4247] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  512.613874][ T4247] usb 6-1: Product: syz
[  512.699337][ T4247] usb 6-1: Manufacturer: syz
[  512.772100][T11493] IPVS: set_ctl: invalid protocol: 0 224.0.0.2:20002
[  512.889352][ T4247] usb 6-1: SerialNumber: syz
[  512.896059][ T4247] usb 6-1: config 0 descriptor??
[  513.095938][T11506] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1379'.
[  513.359871][T11517] overlayfs: failed to clone lowerpath
[  513.513216][ T4247] usb 6-1: Cannot retrieve CPort count: -110
[  513.519265][ T4247] usb 6-1: Cannot retrieve CPort count: -110
[  513.525965][ T4247] es2_ap_driver: probe of 6-1:0.0 failed with error -110
[  513.754203][T11506] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[  514.265485][T11509] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[  514.484513][T11527] loop0: detected capacity change from 0 to 512
[  514.682215][T11527] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  515.053095][T11527] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2219: inode #15: comm syz.0.1383: corrupted in-inode xattr
[  515.111394][T11527] EXT4-fs (loop0): 1 truncate cleaned up
[  515.132776][T11527] EXT4-fs (loop0): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[  515.154469][    C1] vkms_vblank_simulate: vblank timer overrun
[  515.399875][   T13] usb 6-1: USB disconnect, device number 5
[  517.447796][T11561] loop6: detected capacity change from 0 to 47
[  519.955142][T11597] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(3)
[  519.961696][T11597] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  519.972182][T11597] vhci_hcd vhci_hcd.0: Device attached
[  521.149988][T11597] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  521.162668][  T154] attempt to access beyond end of device
[  521.162668][  T154] loop6: rw=1, want=50, limit=47
[  521.165528][T11597] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  521.184015][  T154] buffer_io_error: 25 callbacks suppressed
[  521.184030][  T154] Buffer I/O error on dev loop6, logical block 24, lost async page write
[  521.208315][T11597] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  521.233143][T11597] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  521.243326][T11597] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  521.253829][T11597] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  521.310939][T11605] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  521.353462][ T1111] vhci_hcd: vhci_device speed not set
[  521.372407][T11597] vhci_hcd vhci_hcd.0: port 0 already used
[  521.450447][ T1111] usb 43-1: new full-speed USB device number 2 using vhci_hcd
[  521.535874][   T26] audit: type=1804 audit(1733935124.467:88): pid=11621 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1403" name="/newroot/101/file0/bus" dev="overlay" ino=580 res=1 errno=0
[  521.661667][   T26] audit: type=1804 audit(1733935124.467:89): pid=11621 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.1403" name="/newroot/101/file0/bus" dev="overlay" ino=580 res=1 errno=0
[  522.240679][T11598] vhci_hcd: connection reset by peer
[  522.254499][    T9] vhci_hcd: stop threads
[  522.272420][    T9] vhci_hcd: release socket
[  522.410920][    T9] vhci_hcd: disconnect device
[  522.702800][T11646] misc userio: No port type given on /dev/userio
[  524.110587][T11664] loop6: detected capacity change from 0 to 128
[  525.682867][T11664] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  525.720943][T11664] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  526.775951][ T4287] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  526.990454][ T1111] vhci_hcd: vhci_device speed not set
[  527.799434][T11687] loop6: detected capacity change from 0 to 1024
[  529.393368][T11687] EXT4-fs (loop6): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000088,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,resgid=0x0000000000000000,usrquota,data_err=abort,data_err=abort,,errors=continue. Quota mode: writeback.
[  529.526492][T11704] loop0: detected capacity change from 0 to 1024
[  529.659528][T11704] EXT4-fs (loop0): Ignoring removed orlov option
[  529.704661][T11704] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option
[  530.691813][T11704] EXT4-fs (loop0): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none.
[  532.141236][T11728] fuse: Unknown parameter '00000000000000000000'
[  532.525010][T11754] loop0: detected capacity change from 0 to 512
[  533.339778][  T154] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  533.437481][  T154] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  533.589729][T11767] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1435'.
[  533.760809][  T154] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  533.797663][  T154] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  533.881924][  T154] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  533.927020][  T154] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  534.562440][  T154] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  534.592842][  T154] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  535.471567][  T154] tipc: Left network mode
[  536.731185][ T4247] Bluetooth: hci4: command 0x0409 tx timeout
[  536.974026][T11779] chnl_net:caif_netlink_parms(): no params data found
[  538.657316][T11779] bridge0: port 1(bridge_slave_0) entered blocking state
[  538.728236][T11779] bridge0: port 1(bridge_slave_0) entered disabled state
[  538.850570][ T1111] Bluetooth: hci4: command 0x041b tx timeout
[  538.858182][T11779] device bridge_slave_0 entered promiscuous mode
[  538.884135][T11779] bridge0: port 2(bridge_slave_1) entered blocking state
[  538.945681][T11779] bridge0: port 2(bridge_slave_1) entered disabled state
[  540.416394][T11779] device bridge_slave_1 entered promiscuous mode
[  540.744254][T11779] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  540.770008][T11779] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  541.662898][ T1111] Bluetooth: hci4: command 0x040f tx timeout
[  542.356668][T11890] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1458'.
[  543.364375][T11885] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  543.580830][T11779] team0: Port device team_slave_0 added
[  543.766301][ T4209] Bluetooth: hci4: command 0x0419 tx timeout
[  544.607476][T11779] team0: Port device team_slave_1 added
[  544.724074][T11779] batman_adv: batadv0: Adding interface: batadv_slave_0
[  544.744339][T11779] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  544.813885][T11779] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  544.828009][T11913] loop0: detected capacity change from 0 to 1024
[  544.855332][T11779] batman_adv: batadv0: Adding interface: batadv_slave_1
[  544.863152][T11779] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  544.902086][T11779] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  544.933877][T11913] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  545.048492][T11779] device hsr_slave_0 entered promiscuous mode
[  545.142074][T11779] device hsr_slave_1 entered promiscuous mode
[  545.176973][T11779] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  545.198353][T11779] Cannot create hsr debugfs directory
[  545.627990][  T154] bond0: (slave wlan1): Releasing backup interface
[  545.826725][T11937] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1467'.
[  546.821714][T11932] netlink: 'syz.5.1467': attribute type 10 has an invalid length.
[  546.842152][T11932] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  548.521617][T11964] blk_update_request: I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  548.532613][T11964] F2FS-fs (loop5): Unable to read 1th superblock
[  548.539098][T11964] blk_update_request: I/O error, dev loop5, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  548.550075][T11964] F2FS-fs (loop5): Unable to read 2th superblock
[  549.904571][  T154] device hsr_slave_0 left promiscuous mode
[  549.928470][  T154] device hsr_slave_1 left promiscuous mode
[  549.935005][  T154] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  549.942652][  T154] batman_adv: batadv0: Removing interface: batadv_slave_0
[  549.977567][  T154] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  549.997935][  T154] batman_adv: batadv0: Removing interface: batadv_slave_1
[  550.037615][  T154] device veth1_macvtap left promiscuous mode
[  550.057009][  T154] device veth0_macvtap left promiscuous mode
[  550.129728][  T154] device veth1_vlan left promiscuous mode
[  550.135623][  T154] device veth0_vlan left promiscuous mode
[  551.837897][  T154] bond1 (unregistering): (slave veth5): Releasing backup interface
[  551.858520][  T154] bond1 (unregistering): (slave veth3): Releasing backup interface
[  551.873976][  T154] bond1 (unregistering): Released all slaves
[  552.867765][  T154] team0 (unregistering): Port device team_slave_1 removed
[  552.891702][  T154] team0 (unregistering): Port device team_slave_0 removed
[  552.905155][  T154] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  552.931172][  T154] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  554.080625][  T154] bond0 (unregistering): Released all slaves
[  555.389098][   T23] Bluetooth: hci2: command 0x0406 tx timeout
[  556.945547][T11779] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  556.997546][T11779] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  557.035803][T11779] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  557.046012][T12064] loop5: detected capacity change from 0 to 256
[  557.082920][T12064] exfat: Deprecated parameter 'namecase'
[  557.114228][T11779] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  557.152186][T12064] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d)
[  557.566550][T11779] 8021q: adding VLAN 0 to HW filter on device bond0
[  557.657251][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  557.670245][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  557.703962][T11779] 8021q: adding VLAN 0 to HW filter on device team0
[  557.732793][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  557.749585][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  557.776102][ T4477] bridge0: port 1(bridge_slave_0) entered blocking state
[  557.783302][ T4477] bridge0: port 1(bridge_slave_0) entered forwarding state
[  557.835572][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  557.862962][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  557.888504][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  557.917546][ T4477] bridge0: port 2(bridge_slave_1) entered blocking state
[  557.924721][ T4477] bridge0: port 2(bridge_slave_1) entered forwarding state
[  558.043342][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  558.068736][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  558.139579][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  558.184959][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  558.231651][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  558.257535][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  558.275387][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  558.367767][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  558.376968][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  558.400465][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  558.821152][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  558.898663][T11779] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  559.515550][T12115] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1505'.
[  559.924222][ T4450] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  559.954004][ T4450] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  560.168370][T11779] 8021q: adding VLAN 0 to HW filter on device batadv0
[  561.624709][T12133] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  561.633784][T12133] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  561.666207][T12133] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  562.016081][T12145] netlink: 152 bytes leftover after parsing attributes in process `syz.2.1512'.
[  562.460832][T12148] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1511'.
[  562.470178][T12148] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  562.504997][T12148] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  562.522396][T12148] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  562.531277][T12148] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  562.637673][T12147] netlink: 152 bytes leftover after parsing attributes in process `syz.2.1512'.
[  562.800111][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[  562.806500][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[  563.042996][ T4450] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  563.556737][ T4450] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  565.233023][ T4450] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  565.252699][ T4450] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  565.305357][T11779] device veth0_vlan entered promiscuous mode
[  565.320028][ T4450] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  565.364295][ T4450] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  565.456032][T11779] device veth1_vlan entered promiscuous mode
[  565.577110][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  565.612140][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  565.683443][T11779] device veth0_macvtap entered promiscuous mode
[  565.752866][T11779] device veth1_macvtap entered promiscuous mode
[  565.797530][T12179] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  566.676461][T11779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  567.546597][T11779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  567.588496][T11779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  570.961768][T11779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  571.000606][T11779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  571.038059][T11779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  571.048125][T11779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  571.059700][T11779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  571.076097][T11779] batman_adv: batadv0: Interface activated: batadv_slave_0
[  571.651272][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  571.740022][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  571.801235][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  571.826598][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  571.915340][T11779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  571.928400][T11779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  571.939080][T11779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  571.949641][T11779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  571.959580][T11779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  571.970123][T11779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  571.980337][T11779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  571.991032][T11779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  572.143603][T11779] batman_adv: batadv0: Interface activated: batadv_slave_1
[  572.472355][T11779] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  572.653942][T11779] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  572.703763][T11779] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  572.721589][T11779] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  572.736423][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  572.769572][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  572.934512][ T6494] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  572.960402][ T6494] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  573.157926][ T4450] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  573.188526][ T4450] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  573.257921][T12235] syz.5.1534 sent an empty control message without MSG_MORE.
[  573.326699][ T4450] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  573.788237][ T4450] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  574.046121][T12241] loop5: detected capacity change from 0 to 16
[  574.373514][T12241] erofs: (device loop5): mounted with root inode @ nid 36.
[  575.251230][ T4169] erofs: (device loop5): z_erofs_lz4_decompress: failed to decompress -26 in[46, 4050] out[9000]
[  575.283018][T12241] erofs: (device loop5): z_erofs_lz4_decompress: failed to decompress -26 in[46, 4050] out[8192]
[  575.310361][   T26] audit: type=1800 audit(1733936394.230:90): pid=12241 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1536" name="file3" dev="loop5" ino=89 res=0 errno=0
[  577.529688][T12282] overlayfs: failed to clone upperpath
[  586.555836][T12355] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1562'.
[  586.607035][T12355] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  586.744307][T12361] loop0: detected capacity change from 0 to 8192
[  587.048729][T12361] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[  588.143369][T12361] REISERFS (device loop0): using ordered data mode
[  588.181573][T12361] reiserfs: using flush barriers
[  588.267485][ T4208] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  588.373054][T12361] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  588.521830][T12361] REISERFS (device loop0): checking transaction log (loop0)
[  588.540410][ T4208] usb 6-1: Using ep0 maxpacket: 16
[  588.680847][ T4208] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  588.751057][ T4208] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  588.880758][ T4208] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  589.036102][ T4208] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  589.134399][ T4208] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  589.269073][ T4208] usb 6-1: config 0 descriptor??
[  589.329755][T12361] REISERFS (device loop0): Using tea hash to sort names
[  589.363962][T12361] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[  589.700520][ T4208] usbhid 6-1:0.0: can't add hid device: -71
[  589.709801][ T4208] usbhid: probe of 6-1:0.0 failed with error -71
[  589.759731][ T4208] usb 6-1: USB disconnect, device number 6
[  589.794479][T12423] loop5: detected capacity change from 0 to 4096
[  589.863403][T12423] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  589.968823][T12434] netlink: 'syz.0.1575': attribute type 4 has an invalid length.
[  590.034646][T12420] kvm [12419]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc2 data 0x7ea00000000
[  592.328050][T12476] loop5: detected capacity change from 0 to 1024
[  593.268454][T12476] hfsplus: extend alloc file! (8192,65536,366)
[  594.610260][T12502] syz.8.1591 (12502): drop_caches: 2
[  599.120895][T12550] netlink: 1 bytes leftover after parsing attributes in process `syz.5.1603'.
[  599.310105][T12550] loop5: detected capacity change from 0 to 512
[  600.559336][T12550] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  600.792959][T12550] ext4 filesystem being mounted at /131/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  603.271707][T12588] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  603.432796][T12603] loop8: detected capacity change from 0 to 128
[  603.580237][T12608] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1615'.
[  604.815041][T12629] netlink: 'syz.5.1619': attribute type 10 has an invalid length.
[  604.856986][T12629] device syz_tun entered promiscuous mode
[  604.888723][T12636] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  605.019292][T12629] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  605.887510][T12644] bridge0: port 1(bridge_slave_0) entered disabled state
[  605.986434][T12646] bridge0: port 1(bridge_slave_0) entered blocking state
[  605.993558][T12646] bridge0: port 1(bridge_slave_0) entered forwarding state
[  606.034969][T12653] loop5: detected capacity change from 0 to 256
[  606.105424][T12653] exfat: Deprecated parameter 'namecase'
[  606.195881][T12653] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  610.243917][   T26] audit: type=1326 audit(1733936429.170:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.9.1635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb12a63f19 code=0x7ffc0000
[  610.320499][   T26] audit: type=1326 audit(1733936429.180:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.9.1635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7ffb12a63f19 code=0x7ffc0000
[  610.434100][   T26] audit: type=1326 audit(1733936429.180:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.9.1635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb12a63f19 code=0x7ffc0000
[  610.606729][   T26] audit: type=1326 audit(1733936429.180:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.9.1635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=5 compat=0 ip=0x7ffb12a63f19 code=0x7ffc0000
[  610.675404][   T26] audit: type=1326 audit(1733936429.180:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.9.1635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb12a63f19 code=0x7ffc0000
[  611.099734][   T26] audit: type=1326 audit(1733936429.180:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.9.1635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ffb12a63f19 code=0x7ffc0000
[  611.550371][   T26] audit: type=1326 audit(1733936429.180:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.9.1635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb12a63f19 code=0x7ffc0000
[  611.617085][   T26] audit: type=1326 audit(1733936429.180:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.9.1635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ffb12a62880 code=0x7ffc0000
[  612.980024][T12742] netlink: 452 bytes leftover after parsing attributes in process `syz.9.1646'.
[  613.013905][   T26] audit: type=1326 audit(1733936429.180:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.9.1635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb12a63f19 code=0x7ffc0000
[  613.171722][   T26] audit: type=1326 audit(1733936429.180:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.9.1635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ffb12a63f19 code=0x7ffc0000
[  613.926324][T12758] loop8: detected capacity change from 0 to 256
[  616.481088][ T4208] Bluetooth: hci1: command 0x0406 tx timeout
[  616.947502][T12787] loop5: detected capacity change from 0 to 4096
[  616.977405][T12796] xt_nat: multiple ranges no longer supported
[  617.199140][T12787] __ntfs_error: 7 callbacks suppressed
[  617.199237][T12787] ntfs: (device loop5): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  617.443036][T12787] ntfs: (device loop5): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  617.501824][T12787] ntfs: (device loop5): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[  617.522449][T12787] ntfs: (device loop5): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  617.626858][T12787] ntfs: (device loop5): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  617.693031][T12787] ntfs: volume version 3.1.
[  617.728547][T12802] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1660'.
[  617.836963][T12787] ntfs: (device loop5): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty.
[  617.853947][T12787] ntfs: (device loop5): load_system_files(): Failed to load $LogFile.  Will not be able to remount read-write.  Mount in Windows.
[  617.870938][T12787] ntfs: (device loop5): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5.
[  617.892420][T12787] ntfs: (device loop5): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[  617.904035][T12787] ntfs: (device loop5): load_system_files(): Failed to determine if Windows is hibernated.  Will not be able to remount read-write.  Run chkdsk.
[  622.393351][T12850] loop5: detected capacity change from 0 to 2048
[  622.847129][T12859] netlink: 104 bytes leftover after parsing attributes in process `syz.9.1673'.
[  623.453739][T12850] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  624.404084][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[  624.410522][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[  624.619269][T12880] loop8: detected capacity change from 0 to 1024
[  624.796348][T12880] hfsplus: request for non-existent node 33423360 in B*Tree
[  624.830712][T12880] hfsplus: request for non-existent node 33423360 in B*Tree
[  624.873639][T12893] hfsplus: request for non-existent node 33423360 in B*Tree
[  624.902266][T12893] hfsplus: request for non-existent node 33423360 in B*Tree
[  624.915698][T12897] netlink: 'syz.9.1684': attribute type 3 has an invalid length.
[  624.966692][T12897] netlink: 36 bytes leftover after parsing attributes in process `syz.9.1684'.
[  624.986935][T12898] hfsplus: request for non-existent node 33423360 in B*Tree
[  625.068409][T12898] hfsplus: request for non-existent node 33423360 in B*Tree
[  625.157232][T12880] hfsplus: request for non-existent node 33423360 in B*Tree
[  627.416992][T12880] hfsplus: request for non-existent node 33423360 in B*Tree
[  627.603565][T12893] hfsplus: request for non-existent node 33423360 in B*Tree
[  627.976331][T12893] hfsplus: request for non-existent node 33423360 in B*Tree
[  628.254130][T12929] loop0: detected capacity change from 0 to 4096
[  628.277093][T12898] hfsplus: request for non-existent node 33423360 in B*Tree
[  628.287880][T12934] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1692'.
[  628.367927][T12934] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[  628.383954][T12898] hfsplus: request for non-existent node 33423360 in B*Tree
[  628.404579][T12929] NILFS (loop0): invalid segment: Checksum error in segment payload
[  628.480947][T12929] NILFS (loop0): trying rollback from an earlier position
[  628.499562][T12934] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[  629.503074][T12958] blk_update_request: I/O error, dev loop19, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  629.515042][T12958] F2FS-fs (loop19): Unable to read 1th superblock
[  629.524687][T12958] blk_update_request: I/O error, dev loop19, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  629.536438][T12958] F2FS-fs (loop19): Unable to read 2th superblock
[  630.746890][T12929] NILFS (loop0): recovery complete
[  630.956949][T12929] NILFS (loop0): error -4 creating segctord thread
[  631.790642][T12970] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1697'.
[  631.842916][T12970] device bond_slave_0 entered promiscuous mode
[  631.849177][T12970] device bond_slave_1 entered promiscuous mode
[  632.833100][T12970] device macvtap1 entered promiscuous mode
[  632.838978][T12970] device bond0 entered promiscuous mode
[  632.891445][T12993] loop0: detected capacity change from 0 to 512
[  632.917712][T12970] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  633.028172][T12993] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  633.081344][T12973] device bond0 left promiscuous mode
[  633.087219][T12973] device bond_slave_0 left promiscuous mode
[  633.093251][T12973] device bond_slave_1 left promiscuous mode
[  633.360725][T12993] EXT4-fs (loop0): 1 truncate cleaned up
[  633.372222][T12993] EXT4-fs (loop0): mounted filesystem without journal. Opts: noinit_itable,dioread_lock,noauto_da_alloc,lazytime,nombcache,max_batch_time=0x000000000000000a,,errors=continue. Quota mode: none.
[  634.481025][    C0] Dead loop on virtual device ipvlan1, fix it urgently!
[  636.931207][T13019] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1708'.
[  637.304480][T13028] blk_update_request: I/O error, dev loop17, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  637.315834][T13028] F2FS-fs (loop17): Unable to read 1th superblock
[  637.323448][T13028] blk_update_request: I/O error, dev loop17, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  637.334787][T13028] F2FS-fs (loop17): Unable to read 2th superblock
[  641.436065][T13065] loop0: detected capacity change from 0 to 512
[  642.078884][T13065] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  642.123779][T13076] loop5: detected capacity change from 0 to 128
[  642.372114][T13065] EXT4-fs (loop0): 1 truncate cleaned up
[  643.081708][T13065] EXT4-fs (loop0): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[  643.435120][T13076] EXT4-fs (loop5): Test dummy encryption mode enabled
[  644.979729][T13067] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  645.355786][T13076] EXT4-fs: failed to create workqueue
[  645.418159][T13076] EXT4-fs (loop5): mount failed
[  645.520733][T13103] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1728'.
[  646.740264][T13132] loop5: detected capacity change from 0 to 1024
[  646.778009][   T26] kauditd_printk_skb: 4 callbacks suppressed
[  646.778024][   T26] audit: type=1804 audit(1733936465.700:108): pid=13131 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.8.1735" name="/newroot/32/file0/bus" dev="overlay" ino=192 res=1 errno=0
[  646.870851][T13133] loop0: detected capacity change from 0 to 2048
[  646.911988][   T26] audit: type=1804 audit(1733936465.840:109): pid=13131 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.8.1735" name="/newroot/32/file0/bus" dev="overlay" ino=192 res=1 errno=0
[  647.025767][T13133] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[  647.027010][T13132] hfsplus: inconsistency in B*Tree (-1,0,1,1,0)
[  647.077982][T13132] hfsplus: failed to load root directory
[  647.079918][T13133] UDF-fs: Scanning with blocksize 512 failed
[  647.136493][T13133] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  647.217300][T13149] loop8: detected capacity change from 0 to 512
[  647.305803][T13149] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  647.359821][T13149] EXT4-fs (loop8): 1 truncate cleaned up
[  647.389203][T13149] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  650.876477][T13185] blk_update_request: I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  650.877149][T13185] F2FS-fs (loop1): Unable to read 1th superblock
[  650.879326][T13185] blk_update_request: I/O error, dev loop1, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  650.879902][T13185] F2FS-fs (loop1): Unable to read 2th superblock
[  652.834900][T13190] loop8: detected capacity change from 0 to 512
[  653.244111][T13190] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  653.949867][T13209] xt_addrtype: both incoming and outgoing interface limitation cannot be selected
[  655.814313][T13212] input: syz0 as /devices/virtual/input/input12
[  655.837298][T13190] EXT4-fs: error -4 creating inode table initialization thread
[  655.906682][T13190] EXT4-fs (loop8): mount failed
[  655.973634][T13216] loop0: detected capacity change from 0 to 128
[  656.097928][T13216] EXT4-fs (loop0): Test dummy encryption mode enabled
[  656.158492][T13222] loop5: detected capacity change from 0 to 512
[  656.177537][T13216] EXT4-fs (loop0): mounted filesystem without journal. Opts: minixdf,test_dummy_encryption=v1,,errors=continue. Quota mode: none.
[  656.193320][T13216] ext4 filesystem being mounted at /103/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  656.328939][T13222] UDF-fs: warning (device loop5): udf_load_vrs: No VRS found
[  656.360567][T13222] UDF-fs: Scanning with blocksize 512 failed
[  656.400670][T13222] UDF-fs: warning (device loop5): udf_load_vrs: No VRS found
[  656.456181][T13222] UDF-fs: Scanning with blocksize 1024 failed
[  656.500996][T13222] UDF-fs: warning (device loop5): udf_load_vrs: No VRS found
[  656.574887][T13222] UDF-fs: Scanning with blocksize 2048 failed
[  657.911021][T13222] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  657.936922][ T5199] Bluetooth: hci4: command 0x0406 tx timeout
[  658.034686][T13222] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  660.616551][ T5199] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  660.674227][T13289] loop5: detected capacity change from 0 to 128
[  660.772922][T13289] FAT-fs (loop5): bogus number of reserved sectors
[  660.790482][T13289] FAT-fs (loop5): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  660.820181][T13289] FAT-fs (loop5): Can't find a valid FAT filesystem
[  661.158871][ T5199] usb 9-1: unable to get BOS descriptor or descriptor too short
[  662.340331][ T5199] usb 9-1: unable to read config index 0 descriptor/start: -71
[  663.059307][ T5199] usb 9-1: can't read configurations, error -71
[  664.274621][   T26] audit: type=1326 audit(1733936483.200:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13351 comm="syz.2.1777" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f57406fdf19 code=0x0
[  664.296401][T13356] loop5: detected capacity change from 0 to 1024
[  664.578325][   T26] audit: type=1326 audit(1733936483.340:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13351 comm="syz.2.1777" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f57406fdf19 code=0x0
[  664.684276][T13356] EXT4-fs (loop5): Ignoring removed orlov option
[  664.812627][T13356] EXT4-fs (loop5): Ignoring removed nomblk_io_submit option
[  665.039565][T13356] EXT4-fs (loop5): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none.
[  667.975880][T13408] loop0: detected capacity change from 0 to 256
[  668.003024][T13410] overlayfs: failed to clone upperpath
[  668.021216][T13408] exfat: Deprecated parameter 'namecase'
[  668.119990][T13408] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d)
[  671.131572][T13438] loop0: detected capacity change from 0 to 4096
[  671.356906][T13438] ntfs3: loop0: Different NTFS' sector size (2048) and media sector size (512)
[  671.428131][T13438] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  672.356219][T13467] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  672.928796][T10382] ntfs3: loop0: ntfs_evict_inode r=5 failed, -22.
[  672.982040][T13477] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  672.994834][T13477] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  673.007326][T13477] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  673.784183][T13490] loop8: detected capacity change from 0 to 512
[  674.653991][T13490] EXT4-fs (loop8): orphan cleanup on readonly fs
[  674.681288][T13490] EXT4-fs (loop8): 1 orphan inode deleted
[  674.688568][T13490] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  674.776708][T13499] loop0: detected capacity change from 0 to 256
[  674.923101][T13499] FAT-fs (loop0): Unrecognized mount option "sho" or missing value
[  674.953859][T13507] overlayfs: failed to clone upperpath
[  675.547147][T13510] loop0: detected capacity change from 0 to 1024
[  676.592234][T13510] EXT4-fs (loop0): Can't support bigalloc feature without extents feature
[  676.592234][T13510] 
[  676.635004][T13510] EXT4-fs (loop0): couldn't mount as ext2 due to feature incompatibilities
[  677.652874][T13551] loop0: detected capacity change from 0 to 16
[  677.689833][T13551] erofs: (device loop0): mounted with root inode @ nid 36.
[  678.063364][T13562] attempt to access beyond end of device
[  678.063364][T13562] loop0: rw=0, want=24, limit=16
[  678.297041][T13560] loop8: detected capacity change from 0 to 512
[  679.347598][T13560] EXT4-fs (loop8): 1 truncate cleaned up
[  679.356023][T13560] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  682.015208][T13611] loop8: detected capacity change from 0 to 1024
[  682.171685][T13620] loop0: detected capacity change from 0 to 8
[  682.411800][T13620] squashfs image failed sanity check
[  682.521686][T13622] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  682.532632][T13622] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  682.734452][T13620] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1835'.
[  682.783941][T13622] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  682.794852][T13622] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  682.913317][T13622] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  682.924834][T13622] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  683.857383][T13636] loop8: detected capacity change from 0 to 64
[  684.748932][T13622] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  684.771437][T13622] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  685.711415][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[  685.717868][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[  686.056351][T13622] netdevsim netdevsim9 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  686.065305][T13622] netdevsim netdevsim9 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  686.081426][T13622] netdevsim netdevsim9 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  686.089725][T13622] netdevsim netdevsim9 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  686.104577][T13622] netdevsim netdevsim9 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  686.112931][T13622] netdevsim netdevsim9 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  686.127827][T13622] netdevsim netdevsim9 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  686.136175][T13622] netdevsim netdevsim9 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  688.311185][T13667] 
: renamed from ipvlan1
[  692.538000][T13718] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  692.548120][T13718] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  692.558136][T13718] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  695.582223][T13763] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1866'.
[  695.620158][T13763] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  695.653096][T13763] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  696.588051][T13776] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1867'.
[  696.692770][T13776] netlink: 48 bytes leftover after parsing attributes in process `syz.9.1867'.
[  697.019791][T13796] loop8: detected capacity change from 0 to 1024
[  697.790772][T13796] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  697.961648][T13796] EXT4-fs (loop8): mounted filesystem without journal. Opts: nombcache,nobarrier,norecovery,errors=remount-ro,nodiscard,. Quota mode: writeback.
[  699.362014][T13791] EXT4-fs error (device loop8): htree_dirblock_to_tree:1112: inode #2: block 48: comm syz.8.1870: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=16, rec_len=5, size=1024 fake=0
[  700.140107][T13831] device bond_slave_0 entered promiscuous mode
[  700.147321][T13831] device bond_slave_1 entered promiscuous mode
[  700.153576][T13831] device bridge0 entered promiscuous mode
[  701.120912][T13831] device macsec1 entered promiscuous mode
[  701.147681][T13831] device bond0 entered promiscuous mode
[  701.177104][T13831] device bond0 left promiscuous mode
[  701.182253][T13859] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  701.218752][T13831] device bond_slave_0 left promiscuous mode
[  701.224790][T13831] device bond_slave_1 left promiscuous mode
[  701.230947][T13831] device bridge0 left promiscuous mode
[  703.791948][T13889] loop5: detected capacity change from 0 to 64
[  707.104068][T13912] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  707.220758][T13912] loop5: detected capacity change from 0 to 2048
[  707.362519][T13912] EXT4-fs (loop5): Ignoring removed mblk_io_submit option
[  709.019753][T13912] EXT4-fs (loop5): mounted filesystem without journal. Opts: nouid32,mblk_io_submit,i_version,,errors=continue. Quota mode: none.
[  709.357043][T13949] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  709.383418][T13949] CIFS mount error: No usable UNC path provided in device string!
[  709.383418][T13949] 
[  710.324563][T13949] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  710.465817][T13957] loop8: detected capacity change from 0 to 512
[  710.698712][T13957] EXT4-fs (loop8): Cannot turn on journaled quota: type 0: error -2
[  710.708666][T13957] EXT4-fs (loop8): 1 truncate cleaned up
[  710.759911][T13957] EXT4-fs (loop8): mounted filesystem without journal. Opts: jqfmt=vfsold,usrjquota=,min_batch_time=0x0000000000000001,noload,data_err=ignore,usrjquota="init_itable=0x0000000000000601,init_itable=0x0000000000000101,max_dir_size_kb=0x0000000000000003,,errors=continue. Quota mode: writeback.
[  710.787375][    C0] vkms_vblank_simulate: vblank timer overrun
[  710.832727][T13972] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1907'.
[  713.107094][T13992] loop8: detected capacity change from 0 to 1024
[  715.615929][T13992] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  717.477579][T14038] netlink: 'syz.8.1920': attribute type 4 has an invalid length.
[  718.729503][T14052] loop5: detected capacity change from 0 to 1024
[  718.781703][T14054] bridge0: port 1(bridge_slave_0) entered disabled state
[  718.843932][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  718.878315][ T4477] bridge0: port 1(bridge_slave_0) entered blocking state
[  718.885531][ T4477] bridge0: port 1(bridge_slave_0) entered forwarding state
[  720.462260][ T4477] hfsplus: b-tree write err: -5, ino 4
[  721.228783][T14088] loop5: detected capacity change from 0 to 1024
[  721.663513][T14094] tipc: Failed to remove unknown binding: 66,1,1/0:1274429812/1274429814
[  721.672930][T14094] tipc: Failed to remove unknown binding: 66,1,1/0:1274429812/1274429814
[  722.733248][T14104] netlink: 'syz.8.1938': attribute type 4 has an invalid length.
[  722.923261][    T9] hfsplus: b-tree write err: -5, ino 4
[  723.114692][T14116] loop5: detected capacity change from 0 to 2048
[  723.256345][T14116] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  723.550215][T14141] loop8: detected capacity change from 0 to 128
[  723.673894][T14144] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  723.693863][T14144] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 13 with max blocks 1 with error 28
[  723.706465][T14144] EXT4-fs (loop5): This should not happen!! Data will be lost
[  723.706465][T14144] 
[  723.716421][T14144] EXT4-fs (loop5): Total free blocks count 0
[  723.722506][T14144] EXT4-fs (loop5): Free/Dirty block details
[  723.728452][T14144] EXT4-fs (loop5): free_blocks=66060288
[  723.734276][T14144] EXT4-fs (loop5): dirty_blocks=16
[  723.739448][T14144] EXT4-fs (loop5): Block reservation details
[  723.745744][T14144] EXT4-fs (loop5): i_reserved_data_blocks=1
[  724.170914][T14141] EXT4-fs (loop8): Test dummy encryption mode enabled
[  724.204457][  T154] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  724.219350][  T154] EXT4-fs (loop5): This should not happen!! Data will be lost
[  724.219350][  T154] 
[  724.287332][T14141] EXT4-fs (loop8): mounted filesystem without journal. Opts: minixdf,test_dummy_encryption=v1,,errors=continue. Quota mode: none.
[  724.452660][T14141] ext4 filesystem being mounted at /76/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  728.199616][T14185] netlink: 'syz.9.1954': attribute type 4 has an invalid length.
[  728.391728][T14191] capability: warning: `syz.5.1950' uses deprecated v2 capabilities in a way that may be insecure
[  729.201940][T14209] netlink: 'syz.9.1966': attribute type 4 has an invalid length.
[  731.922723][T14249] netlink: 'syz.9.1969': attribute type 28 has an invalid length.
[  734.683663][T14280] loop0: detected capacity change from 0 to 512
[  734.842328][T14280] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  735.217567][T14280] EXT4-fs (loop0): 1 orphan inode deleted
[  735.362980][T14280] EXT4-fs (loop0): 1 truncate cleaned up
[  735.521841][T14280] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,noinit_itable,debug_want_extra_isize=0x000000000000002a,errors=remount-ro,nodelalloc,grpjquota=,. Quota mode: none.
[  736.394615][T14299] netlink: 'syz.8.1980': attribute type 4 has an invalid length.
[  737.386021][T14313] device bridge_slave_1 left promiscuous mode
[  737.565955][T14313] bridge0: port 2(bridge_slave_1) entered disabled state
[  738.373235][T14331] netlink: 'syz.0.1989': attribute type 4 has an invalid length.
[  738.552416][T14342] netlink: 'syz.9.1990': attribute type 4 has an invalid length.
[  739.599885][T14341] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  741.373306][T14374] netlink: 'syz.2.2001': attribute type 4 has an invalid length.
[  742.340489][   T13] usb 6-1: new full-speed USB device number 7 using dummy_hcd
[  742.694092][T14385] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2002'.
[  742.729594][T14385] bridge0: port 1(bridge_slave_0) entered disabled state
[  742.760600][   T13] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  742.774474][   T13] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  743.105633][   T13] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  743.771008][   T13] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  743.779036][   T13] usb 6-1: Product: syz
[  743.784015][   T13] usb 6-1: Manufacturer: syz
[  743.788630][   T13] usb 6-1: SerialNumber: syz
[  743.881153][   T13] usb 6-1: can't set config #1, error -71
[  743.899264][   T13] usb 6-1: USB disconnect, device number 7
[  745.264136][T14422] loop5: detected capacity change from 0 to 16
[  745.648137][T14427] loop0: detected capacity change from 0 to 1024
[  746.804081][T14422] erofs: (device loop5): mounted with root inode @ nid 36.
[  747.141194][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[  747.147937][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[  749.541527][ T4477] hfsplus: b-tree write err: -5, ino 4
[  752.460237][T14493] loop0: detected capacity change from 0 to 256
[  753.935771][T14512] fuse: Unknown parameter '00000000000000000000'
[  753.958467][T14495] kvm [14494]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc1 data 0x800
[  758.909271][T14562] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2040'.
[  760.341721][T14601] netlink: 'syz.5.2047': attribute type 4 has an invalid length.
[  760.417205][T14602] fuse: Unknown parameter '00000000000000000000'
[  762.016226][T14614] loop5: detected capacity change from 0 to 512
[  762.222511][T14614] EXT4-fs (loop5): 1 truncate cleaned up
[  762.250467][T14614] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  765.257321][T14666] netlink: 'syz.0.2062': attribute type 4 has an invalid length.
[  767.336132][T14676] device bridge_slave_1 left promiscuous mode
[  767.391058][T14676] bridge0: port 2(bridge_slave_1) entered disabled state
[  767.445884][T14680] loop8: detected capacity change from 0 to 64
[  767.545270][T14689] netlink: 'syz.5.2067': attribute type 10 has an invalid length.
[  767.553250][T14689] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2067'.
[  767.564761][T14689] bridge0: port 2(macvlan1) entered blocking state
[  767.572151][T14689] bridge0: port 2(macvlan1) entered disabled state
[  767.595317][T14689] device macvlan1 entered promiscuous mode
[  767.629909][T14689] bridge0: port 2(macvlan1) entered blocking state
[  767.636513][T14689] bridge0: port 2(macvlan1) entered forwarding state
[  768.259470][T14697] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2068'.
[  768.278296][T14697] IPv6: ADDRCONF(NETDEV_CHANGE): syz_tun: link becomes ready
[  768.291629][T14697] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  768.307159][T14697] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  768.316079][T14697] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  771.276524][T14730] devpts: called with bogus options
[  773.892290][T14751] loop8: detected capacity change from 0 to 256
[  774.066166][T14751] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  775.266536][T14762] netlink: 12 bytes leftover after parsing attributes in process `syz.8.2083'.
[  777.225867][T14795] netlink: 'syz.0.2078': attribute type 4 has an invalid length.
[  780.120588][T14826] overlayfs: failed to clone upperpath
[  780.661802][T14838] fuse: Bad value for 'fd'
[  783.792139][T14874] Device name cannot be null; rc = [-22]
[  784.560159][ T4208] usb 9-1: new full-speed USB device number 4 using dummy_hcd
[  785.118801][T14880] loop5: detected capacity change from 0 to 16
[  785.267696][T14880] erofs: (device loop5): mounted with root inode @ nid 36.
[  785.490936][ T4208] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  785.505338][ T4208] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 3
[  785.867963][ T4208] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  785.877573][ T4208] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  785.886297][ T4208] usb 9-1: Product: syz
[  785.891000][ T4208] usb 9-1: Manufacturer: syz
[  785.895625][ T4208] usb 9-1: SerialNumber: syz
[  786.311704][ T4208] usb 9-1: 0:2 : does not exist
[  786.734681][ T4208] usb 9-1: USB disconnect, device number 4
[  788.529920][T12386] udevd[12386]: error opening ATTR{/sys/devices/platform/dummy_hcd.8/usb9/9-1/9-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  788.580938][T14956] loop5: detected capacity change from 0 to 47
[  788.603291][T14949] netlink: 'syz.9.2121': attribute type 4 has an invalid length.
[  792.159201][T14991] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  792.599774][T14999] loop5: detected capacity change from 0 to 1024
[  795.986072][T14713] hfsplus: b-tree write err: -5, ino 4
[  797.553693][T15055] loop8: detected capacity change from 0 to 8
[  797.819968][T15055] squashfs image failed sanity check
[  799.098296][T15055] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2143'.
[  800.303406][T15079] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2151'.
[  800.381161][T15079] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2151'.
[  800.516659][T15084] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2151'.
[  800.653627][T15084] bond0: (slave bond_slave_0): Releasing backup interface
[  800.720805][T15091] loop8: detected capacity change from 0 to 4096
[  802.058623][T15091] NILFS (loop8): invalid segment: Checksum error in segment payload
[  802.094614][T15091] NILFS (loop8): trying rollback from an earlier position
[  802.340629][T15091] NILFS (loop8): recovery complete
[  804.201267][T15091] NILFS (loop8): error -4 creating segctord thread
[  804.409273][T15134] device bond_slave_1 entered promiscuous mode
[  804.413702][T15138] overlayfs: missing 'lowerdir'
[  804.415597][T15134] device bridge0 entered promiscuous mode
[  804.454132][T15134] device macsec1 entered promiscuous mode
[  804.940541][T15134] device bond0 entered promiscuous mode
[  805.052513][T15134] device bond0 left promiscuous mode
[  805.076823][T15147] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2168'.
[  805.081001][T15134] device bond_slave_1 left promiscuous mode
[  805.091851][T15134] device bridge0 left promiscuous mode
[  805.124607][T15138] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2166'.
[  805.694751][T15164] loop8: detected capacity change from 0 to 16
[  805.939279][T15164] erofs: (device loop8): mounted with root inode @ nid 36.
[  807.375117][T15184] batman_adv: Cannot find parent device
[  807.392843][T15184] batman_adv: batadv0: Adding interface: ip6gretap1
[  807.399466][T15184] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  807.504452][T15184] batman_adv: batadv0: Interface activated: ip6gretap1
[  807.672540][T15186] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2175'.
[  807.792682][T15186] batman_adv: batadv0: Removing interface: batadv_slave_0
[  808.956302][T15186] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  808.956334][T15186] batman_adv: batadv0: Removing interface: batadv_slave_1
[  808.957864][T15186] batman_adv: batadv0: Interface deactivated: ip6gretap1
[  808.957889][T15186] batman_adv: batadv0: Removing interface: ip6gretap1
[  809.279097][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[  809.279211][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[  811.211258][T15262] netlink: 'syz.5.2192': attribute type 4 has an invalid length.
[  812.918467][T15293] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2201'.
[  813.225147][T15305] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2205'.
[  813.418391][T15319] netlink: 'syz.5.2207': attribute type 4 has an invalid length.
[  813.764053][T15329] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2221'.
[  813.806266][T15329] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2221'.
[  813.886342][T15332] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2221'.
[  814.722395][T15332] bond0: (slave bond_slave_0): Releasing backup interface
[  816.007022][T15359] MPTCP: kernel_bind error, err=-99
[  816.266654][T15370] loop5: detected capacity change from 0 to 512
[  816.286610][T15373] netlink: 'syz.8.2220': attribute type 4 has an invalid length.
[  816.419646][T15370] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  817.062444][T15370] EXT4-fs (loop5): 1 truncate cleaned up
[  817.104849][T15370] EXT4-fs (loop5): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[  818.512468][T15370] bridge0: port 2(macvlan1) entered disabled state
[  818.930599][T15370] device macvlan1 left promiscuous mode
[  819.005150][T15370] bridge0: port 2(macvlan1) entered disabled state
[  819.227697][T15408] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2227'.
[  819.286988][T15421] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2230'.
[  819.323804][T15421] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2230'.
[  819.341868][T15421] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2230'.
[  820.410860][T15421] bond0: (slave bond_slave_0): Releasing backup interface
[  821.004272][T15453] netlink: 'syz.0.2238': attribute type 5 has an invalid length.
[  822.858846][T15491] loop5: detected capacity change from 0 to 512
[  823.555657][T15491] EXT4-fs (loop5): orphan cleanup on readonly fs
[  823.607048][T15491] EXT4-fs (loop5): 1 orphan inode deleted
[  823.686466][T15491] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  823.834205][   T26] audit: type=1326 audit(1733936642.760:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15506 comm="syz.2.2245" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f57406fdf19 code=0x0
[  825.389969][T15546] loop5: detected capacity change from 0 to 47
[  825.665347][T15554] loop5: detected capacity change from 0 to 512
[  825.752013][T15554] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  826.045560][T15554] EXT4-fs (loop5): 1 orphan inode deleted
[  826.051574][T15554] EXT4-fs (loop5): 1 truncate cleaned up
[  826.057533][T15554] EXT4-fs (loop5): mounted filesystem without journal. Opts: errors=remount-ro,noinit_itable,debug_want_extra_isize=0x000000000000002a,errors=remount-ro,nodelalloc,grpjquota=,. Quota mode: none.
[  832.751874][T15612] loop5: detected capacity change from 0 to 47
[  832.807591][T15616] overlayfs: missing 'lowerdir'
[  832.912210][T15616] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2267'.
[  833.051838][T15620] loop5: detected capacity change from 0 to 16
[  833.081945][T15620] erofs: (device loop5): mounted with root inode @ nid 36.
[  837.499987][T15674] netlink: 'syz.9.2281': attribute type 4 has an invalid length.
[  838.496596][ T4210] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  840.780482][ T4210] usb 9-1: device descriptor read/all, error -71
[  843.551797][T15736] netlink: 'syz.9.2296': attribute type 4 has an invalid length.
[  844.259368][T15746] overlayfs: missing 'lowerdir'
[  844.372080][T15746] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2298'.
[  845.415797][T15770] gfs2: path_lookup on c::: returned error -2
[  846.522718][T15787] loop5: detected capacity change from 0 to 1024
[  846.702977][T15798] netlink: 'syz.2.2311': attribute type 4 has an invalid length.
[  846.858832][ T4477] hfsplus: b-tree write err: -5, ino 4
[  851.487956][T15846] loop8: detected capacity change from 0 to 1024
[  852.417845][T15859] autofs4:pid:15859:autofs_fill_super: called with bogus options
[  852.515846][ T6214] hfsplus: b-tree write err: -5, ino 4
[  852.602524][T15862] loop5: detected capacity change from 0 to 8
[  853.234733][T15868] netlink: 'syz.0.2339': attribute type 4 has an invalid length.
[  853.616261][T15888] loop8: detected capacity change from 0 to 2048
[  854.187648][T15896] netlink: 'syz.5.2335': attribute type 12 has an invalid length.
[  854.407950][T15888] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  854.586539][T15913] loop5: detected capacity change from 0 to 16
[  855.122095][T15913] erofs: (device loop5): mounted with root inode @ nid 36.
[  855.640740][T15924] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2341'.
[  858.418988][T15941] netlink: 'syz.5.2343': attribute type 4 has an invalid length.
[  858.497205][T15942] netlink: 'syz.2.2344': attribute type 4 has an invalid length.
[  861.774494][T16005] netlink: 'syz.2.2358': attribute type 4 has an invalid length.
[  862.071111][T16020] netlink: 'syz.5.2361': attribute type 4 has an invalid length.
[  862.373634][T16016] loop8: detected capacity change from 0 to 4096
[  863.794315][T16016] ntfs3: Bad value for 'uid'
[  863.910481][T16036] x_tables: ip6_tables: CLASSIFY target: used from hooks PREROUTING, but only usable from FORWARD/OUTPUT/POSTROUTING
[  864.677753][T16041] device vlan2 entered promiscuous mode
[  864.704557][T16041] device bond0 entered promiscuous mode
[  864.725280][T16041] device bond_slave_1 entered promiscuous mode
[  864.769924][T16041] device bridge0 entered promiscuous mode
[  864.817241][T16044] can: request_module (can-proto-0) failed.
[  864.824893][T16041] IPv6: ADDRCONF(NETDEV_CHANGE): vlan2: link becomes ready
[  864.832603][ T4450] IPv6: ADDRCONF(NETDEV_CHANGE): vlan2: link becomes ready
[  866.169446][T16066] netlink: 'syz.9.2373': attribute type 4 has an invalid length.
[  866.327937][T16076] netlink: 'syz.0.2374': attribute type 4 has an invalid length.
[  867.210821][T16088] No such timeout policy "syz0"
[  868.954618][T16110] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2383'.
[  868.978897][T16110] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2383'.
[  869.011729][T16112] loop5: detected capacity change from 0 to 128
[  869.993037][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[  870.061607][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[  871.812152][T16144] netlink: 'syz.5.2392': attribute type 4 has an invalid length.
[  872.485077][T16161] loop8: detected capacity change from 0 to 2048
[  872.600131][T16161] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  875.945893][T16204] ufs: You didn't specify the type of your ufs filesystem
[  875.945893][T16204] 
[  875.945893][T16204] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  875.945893][T16204] 
[  875.945893][T16204] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  875.980154][T16204] ufs: ufstype=old is supported read-only
[  876.001202][T16204] ufs: ufs_fill_super(): bad magic number
[  876.795059][T16227] netlink: 'syz.2.2409': attribute type 4 has an invalid length.
[  878.817271][T16237] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2410'.
[  879.493995][T16247] loop8: detected capacity change from 0 to 2048
[  879.621169][T16247] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  884.616511][T16286] netlink: 'syz.2.2423': attribute type 12 has an invalid length.
[  884.753234][T16289] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2424'.
[  884.996714][   T26] audit: type=1326 audit(1733936703.920:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16301 comm="syz.0.2427" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5155bfaf19 code=0x0
[  887.049669][T16317] loop5: detected capacity change from 0 to 1024
[  890.829127][T16360] netlink: 'syz.2.2438': attribute type 4 has an invalid length.
[  891.060441][ T4336] hfsplus: b-tree write err: -5, ino 4
[  891.487989][T16387] netlink: 36 bytes leftover after parsing attributes in process `syz.8.2445'.
[  892.931226][T16389] netlink: 'syz.5.2444': attribute type 4 has an invalid length.
[  895.398903][T16405] loop5: detected capacity change from 0 to 1024
[  897.553158][T16433] netlink: 'syz.9.2456': attribute type 4 has an invalid length.
[  897.616903][  T154] hfsplus: b-tree write err: -5, ino 4
[  899.570099][T16453] netlink: 'syz.0.2460': attribute type 4 has an invalid length.
[  899.617594][T16454] loop5: detected capacity change from 0 to 1024
[  899.941457][T16473] loop8: detected capacity change from 0 to 128
[  900.671554][T16477] overlayfs: failed to clone upperpath
[  901.135858][T16484] loop8: detected capacity change from 0 to 1024
[  901.805337][ T4336] hfsplus: b-tree write err: -5, ino 4
[  903.899947][ T4450] hfsplus: b-tree write err: -5, ino 4
[  904.081928][T16517] loop5: detected capacity change from 0 to 16
[  904.140478][T16517] erofs: (device loop5): mounted with root inode @ nid 36.
[  905.166046][T16531] loop8: detected capacity change from 0 to 47
[  905.559979][T16544] loop5: detected capacity change from 0 to 2048
[  905.740737][T16544] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  907.802445][T16572] device vlan2 entered promiscuous mode
[  907.821333][T16572] device nlmon0 entered promiscuous mode
[  907.836676][T16572] bond0: (slave vlan2): Enslaving as an active interface with an up link
[  910.489296][T16593] netlink: 'syz.5.2493': attribute type 4 has an invalid length.
[  910.921726][T16600] netlink: 'syz.0.2498': attribute type 4 has an invalid length.
[  912.931820][T16609] input: syz1 as /devices/virtual/input/input13
[  915.824655][T16639] netlink: 'syz.0.2508': attribute type 4 has an invalid length.
[  919.228334][T16673] netlink: 'syz.0.2516': attribute type 4 has an invalid length.
[  920.723033][T16697] netlink: 'syz.8.2521': attribute type 4 has an invalid length.
[  923.944696][T16709] loop8: detected capacity change from 0 to 8
[  924.227492][T16709] SQUASHFS error: lzo decompression failed, data probably corrupt
[  924.235572][T16709] SQUASHFS error: Failed to read block 0x91: -5
[  924.242490][T16709] SQUASHFS error: Unable to read metadata cache entry [8f]
[  924.249787][T16709] SQUASHFS error: Unable to read inode 0x11f
[  926.663133][T16733] netlink: 'syz.0.2530': attribute type 1 has an invalid length.
[  927.029352][ T1326] Bluetooth: hci4: command 0x0405 tx timeout
[  927.114877][T16738] IPv6: ADDRCONF(NETDEV_CHANGE): syz_tun: link becomes ready
[  927.126787][T16738] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  927.148488][T16738] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  927.157701][T16738] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  927.221492][T16738] IPv6: ADDRCONF(NETDEV_CHANGE): vlan2: link becomes ready
[  928.310397][T16763] netlink: 'syz.0.2537': attribute type 10 has an invalid length.
[  928.319152][T16763] netlink: 212848 bytes leftover after parsing attributes in process `syz.0.2537'.
[  930.269885][T16778] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2543'.
[  931.520966][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[  931.529427][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[  935.333629][T16850] A link change request failed with some changes committed already. Interface macvlan0 may have been left with an inconsistent configuration, please check.
[  935.349417][T16854] netlink: 'syz.0.2557': attribute type 4 has an invalid length.
[  935.565237][T16863] netlink: 'syz.2.2558': attribute type 4 has an invalid length.
[  936.818487][T16886] loop5: detected capacity change from 0 to 1024
[  939.771234][ T4336] hfsplus: b-tree write err: -5, ino 4
[  939.803918][T16917] netlink: 'syz.2.2573': attribute type 4 has an invalid length.
[  943.301530][T16963] loop8: detected capacity change from 0 to 1024
[ 1048.490289][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1048.497308][    C1] rcu: 	0-...!: (1 GPs behind) idle=cff/1/0x4000000000000000 softirq=46776/46922 fqs=9 
[ 1048.509229][    C1] 	(detected by 1, t=10506 jiffies, g=52421, q=727)
[ 1048.515822][    C1] Sending NMI from CPU 1 to CPUs 0:
[ 1048.521043][    C0] NMI backtrace for cpu 0
[ 1048.521061][    C0] CPU: 0 PID: 16959 Comm: syz.0.2584 Not tainted 5.15.173-syzkaller #0
[ 1048.521076][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1048.521085][    C0] RIP: 0010:rcu_is_watching+0x63/0xa0
[ 1048.521109][    C0] Code: 89 f7 e8 90 22 5f 00 48 c7 c3 c8 b2 03 00 49 03 1e 48 89 d8 48 c1 e8 03 42 0f b6 04 38 84 c0 75 1a 8b 03 65 ff 0d 55 46 97 7e <74> 08 24 01 5b 41 5e 41 5f c3 e8 36 63 95 ff eb f1 89 d9 80 e1 07
[ 1048.521121][    C0] RSP: 0018:ffffc90000007b60 EFLAGS: 00000082
[ 1048.521134][    C0] RAX: 00000000000adcff RBX: ffff8880b8e3b2c8 RCX: ffffffff8162e378
[ 1048.521145][    C0] RDX: 0000000000000000 RSI: ffffffff8af9ece0 RDI: ffffffff8af9eca0
[ 1048.521155][    C0] RBP: ffffc90000007cb0 R08: dffffc0000000000 R09: fffffbfff1c14b16
[ 1048.521166][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff92000000f7c
[ 1048.521176][    C0] R13: ffffffff816f786c R14: ffffffff8c5c9810 R15: dffffc0000000000
[ 1048.521187][    C0] FS:  00007f5153a716c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[ 1048.521200][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1048.521211][    C0] CR2: 00007f5153a4ffb8 CR3: 000000006087a000 CR4: 00000000003506f0
[ 1048.521224][    C0] Call Trace:
[ 1048.521230][    C0]  <NMI>
[ 1048.521238][    C0]  ? nmi_cpu_backtrace+0x39f/0x4a0
[ 1048.521254][    C0]  ? read_lock_is_recursive+0x10/0x10
[ 1048.521276][    C0]  ? nmi_trigger_cpumask_backtrace+0x2a0/0x2a0
[ 1048.521291][    C0]  ? unknown_nmi_error+0xd0/0xd0
[ 1048.521313][    C0]  ? nmi_cpu_backtrace_handler+0x8/0x10
[ 1048.521328][    C0]  ? nmi_handle+0xf7/0x370
[ 1048.521344][    C0]  ? rcu_is_watching+0x63/0xa0
[ 1048.521357][    C0]  ? default_do_nmi+0x62/0x150
[ 1048.521373][    C0]  ? exc_nmi+0xa8/0x100
[ 1048.521386][    C0]  ? end_repeat_nmi+0x16/0x31
[ 1048.521403][    C0]  ? __hrtimer_run_queues+0x48c/0xcf0
[ 1048.521419][    C0]  ? lock_release+0xa8/0x9a0
[ 1048.521432][    C0]  ? rcu_is_watching+0x63/0xa0
[ 1048.521446][    C0]  ? rcu_is_watching+0x63/0xa0
[ 1048.521461][    C0]  ? rcu_is_watching+0x63/0xa0
[ 1048.521475][    C0]  </NMI>
[ 1048.521479][    C0]  <IRQ>
[ 1048.521484][    C0]  lock_release+0xb9/0x9a0
[ 1048.521499][    C0]  ? read_lock_is_recursive+0x10/0x10
[ 1048.521513][    C0]  ? do_raw_spin_lock+0x14a/0x370
[ 1048.521527][    C0]  ? __lock_acquire+0x1ff0/0x1ff0
[ 1048.521542][    C0]  ? __rwlock_init+0x140/0x140
[ 1048.521556][    C0]  ? do_raw_spin_unlock+0x137/0x8b0
[ 1048.521575][    C0]  _raw_spin_unlock_irqrestore+0x75/0x130
[ 1048.521591][    C0]  ? _raw_spin_unlock+0x40/0x40
[ 1048.521608][    C0]  ? timerqueue_del+0xa8/0xf0
[ 1048.521623][    C0]  ? taprio_free_sched_cb+0x1a0/0x1a0
[ 1048.521638][    C0]  __hrtimer_run_queues+0x48c/0xcf0
[ 1048.521661][    C0]  ? hrtimer_interrupt+0x980/0x980
[ 1048.521674][    C0]  ? ktime_get_update_offsets_now+0x407/0x420
[ 1048.521694][    C0]  hrtimer_interrupt+0x392/0x980
[ 1048.521718][    C0]  __sysvec_apic_timer_interrupt+0x13b/0x4b0
[ 1048.521738][    C0]  sysvec_apic_timer_interrupt+0x9b/0xc0
[ 1048.521754][    C0]  </IRQ>
[ 1048.521758][    C0]  <TASK>
[ 1048.521762][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 1048.521779][    C0] RIP: 0010:finish_lock_switch+0x91/0x100
[ 1048.521796][    C0] Code: 45 31 c9 68 f7 aa 59 81 e8 9c 11 09 00 48 83 c4 08 4c 89 ff e8 50 db fe ff 66 90 4c 89 ff e8 06 91 ee 08 e8 c1 46 2d 00 fb 5b <41> 5c 41 5d 41 5e 41 5f c3 44 89 f1 80 e1 07 80 c1 03 38 c1 7c 87
[ 1048.521808][    C0] RSP: 0018:ffffc9000300f298 EFLAGS: 00000286
[ 1048.521821][    C0] RAX: c4e26f23e948eb00 RBX: ffff888020491df4 RCX: ffffffff96a8ef03
[ 1048.521831][    C0] RDX: dffffc0000000000 RSI: ffffffff8aab2a80 RDI: ffffffff8af9ed00
[ 1048.521842][    C0] RBP: ffffc9000300f310 R08: ffffffff8186f220 R09: ffffed10171c7461
[ 1048.521853][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[ 1048.521863][    C0] R13: 1ffff110171c760b R14: ffff8880b8e3b058 R15: ffff8880b8e3a300
[ 1048.521876][    C0]  ? trace_hardirqs_on+0x30/0x80
[ 1048.521899][    C0]  finish_task_switch+0x134/0x630
[ 1048.521916][    C0]  ? __switch_to_asm+0x34/0x60
[ 1048.521933][    C0]  __schedule+0x12cc/0x45b0
[ 1048.521960][    C0]  ? release_firmware_map_entry+0x190/0x190
[ 1048.521973][    C0]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[ 1048.521994][    C0]  schedule+0x11b/0x1f0
[ 1048.522008][    C0]  schedule_timeout+0xac/0x300
[ 1048.522022][    C0]  ? console_conditional_schedule+0x40/0x40
[ 1048.522042][    C0]  ? do_raw_spin_unlock+0x137/0x8b0
[ 1048.522056][    C0]  ? prepare_to_wait_exclusive+0xc5/0x220
[ 1048.522077][    C0]  unix_wait_for_peer+0x24b/0x330
[ 1048.522096][    C0]  ? unix_find_other+0x860/0x860
[ 1048.522112][    C0]  ? init_wait_entry+0xd0/0xd0
[ 1048.522128][    C0]  ? __rwlock_init+0x140/0x140
[ 1048.522142][    C0]  ? unix_dgram_sendmsg+0xfc9/0x2090
[ 1048.522157][    C0]  ? bpf_lsm_unix_may_send+0x5/0x10
[ 1048.522172][    C0]  unix_dgram_sendmsg+0x1441/0x2090
[ 1048.522196][    C0]  ? unix_dgram_poll+0x640/0x640
[ 1048.522213][    C0]  ? __might_sleep+0xc0/0xc0
[ 1048.522227][    C0]  ? aa_sock_msg_perm+0x91/0x150
[ 1048.522242][    C0]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1048.522256][    C0]  ? security_socket_sendmsg+0x7d/0xa0
[ 1048.522277][    C0]  ? unix_dgram_poll+0x640/0x640
[ 1048.522294][    C0]  ____sys_sendmsg+0x59e/0x8f0
[ 1048.522309][    C0]  ? iovec_from_user+0x5d/0x390
[ 1048.522327][    C0]  ? __sys_sendmsg_sock+0x30/0x30
[ 1048.522349][    C0]  ___sys_sendmsg+0x252/0x2e0
[ 1048.522367][    C0]  ? __sys_sendmsg+0x260/0x260
[ 1048.522401][    C0]  ? __might_fault+0xb4/0x110
[ 1048.522419][    C0]  __sys_sendmmsg+0x2bf/0x560
[ 1048.522438][    C0]  ? __ia32_sys_sendmsg+0x80/0x80
[ 1048.522457][    C0]  ? __lock_acquire+0x1ff0/0x1ff0
[ 1048.522469][    C0]  ? __sys_connect+0x18a/0x410
[ 1048.522489][    C0]  ? print_irqtrace_events+0x210/0x210
[ 1048.522503][    C0]  ? vtime_user_exit+0x2d1/0x400
[ 1048.522520][    C0]  ? syscall_enter_from_user_mode+0x2e/0x240
[ 1048.522538][    C0]  __x64_sys_sendmmsg+0x9c/0xb0
[ 1048.522554][    C0]  do_syscall_64+0x3b/0xb0
[ 1048.522566][    C0]  ? clear_bhb_loop+0x15/0x70
[ 1048.522582][    C0]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1048.522598][    C0] RIP: 0033:0x7f5155bfaf19
[ 1048.522614][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1048.522626][    C0] RSP: 002b:00007f5153a71058 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1048.522640][    C0] RAX: ffffffffffffffda RBX: 00007f5155dc0fa0 RCX: 00007f5155bfaf19
[ 1048.522650][    C0] RDX: 0000000000000651 RSI: 0000000020000000 RDI: 0000000000000006
[ 1048.522659][    C0] RBP: 00007f5155c6ecc8 R08: 0000000000000000 R09: 0000000000000000
[ 1048.522668][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1048.522677][    C0] R13: 0000000000000000 R14: 00007f5155dc0fa0 R15: 00007ffe1e941bd8
[ 1048.522694][    C0]  </TASK>
[ 1048.523035][    C1] rcu: rcu_preempt kthread starved for 10460 jiffies! g52421 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[ 1049.183870][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 1049.193849][    C1] rcu: RCU grace-period kthread stack dump:
[ 1049.199737][    C1] task:rcu_preempt     state:R  running task     stack:27064 pid:   15 ppid:     2 flags:0x00004000
[ 1049.210517][    C1] Call Trace:
[ 1049.213787][    C1]  <TASK>
[ 1049.216714][    C1]  __schedule+0x12c4/0x45b0
[ 1049.221221][    C1]  ? _raw_spin_unlock_irqrestore+0x8b/0x130
[ 1049.227115][    C1]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[ 1049.233014][    C1]  ? __mod_timer+0xa8e/0xeb0
[ 1049.237612][    C1]  ? release_firmware_map_entry+0x190/0x190
[ 1049.243502][    C1]  ? mod_timer_pending+0x20/0x20
[ 1049.248438][    C1]  ? lockdep_softirqs_off+0x420/0x420
[ 1049.253814][    C1]  schedule+0x11b/0x1f0
[ 1049.257966][    C1]  schedule_timeout+0x1b9/0x300
[ 1049.262813][    C1]  ? console_conditional_schedule+0x40/0x40
[ 1049.268700][    C1]  ? update_process_times+0x200/0x200
[ 1049.274073][    C1]  ? prepare_to_swait_event+0x321/0x340
[ 1049.279621][    C1]  rcu_gp_fqs_loop+0x2bf/0x1080
[ 1049.284474][    C1]  ? dyntick_save_progress_counter+0x230/0x230
[ 1049.290626][    C1]  ? rcu_gp_init+0x1140/0x1140
[ 1049.295392][    C1]  ? finish_swait+0xc5/0x1d0
[ 1049.299979][    C1]  rcu_gp_kthread+0xa4/0x360
[ 1049.304564][    C1]  ? _raw_spin_unlock+0x40/0x40
[ 1049.309416][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[ 1049.314519][    C1]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[ 1049.320415][    C1]  ? __kthread_parkme+0x15c/0x1c0
[ 1049.325440][    C1]  kthread+0x3f6/0x4f0
[ 1049.329504][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[ 1049.334611][    C1]  ? kthread_blkcg+0xd0/0xd0
[ 1049.339197][    C1]  ret_from_fork+0x1f/0x30
[ 1049.343630][    C1]  </TASK>
[ 1049.346641][    C1] rcu: Stack dump where RCU GP kthread last ran:
[ 1049.352955][    C1] NMI backtrace for cpu 1
[ 1049.357277][    C1] CPU: 1 PID: 23 Comm: kworker/1:1 Not tainted 5.15.173-syzkaller #0
[ 1049.365338][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1049.375394][    C1] Workqueue: events bpf_prog_free_deferred
[ 1049.381203][    C1] Call Trace:
[ 1049.384477][    C1]  <IRQ>
[ 1049.387314][    C1]  dump_stack_lvl+0x1e3/0x2d0
[ 1049.391990][    C1]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[ 1049.397620][    C1]  ? panic+0x860/0x860
[ 1049.401695][    C1]  nmi_cpu_backtrace+0x46a/0x4a0
[ 1049.406637][    C1]  ? __wake_up_klogd+0xd5/0x100
[ 1049.411490][    C1]  ? nmi_trigger_cpumask_backtrace+0x2a0/0x2a0
[ 1049.417637][    C1]  ? _printk+0xd1/0x120
[ 1049.421789][    C1]  ? cpu_online+0x1f/0x40
[ 1049.426115][    C1]  ? panic+0x860/0x860
[ 1049.430190][    C1]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[ 1049.436261][    C1]  nmi_trigger_cpumask_backtrace+0x181/0x2a0
[ 1049.442242][    C1]  rcu_check_gp_kthread_starvation+0x1d2/0x240
[ 1049.448396][    C1]  print_other_cpu_stall+0x137a/0x14d0
[ 1049.454039][    C1]  ? print_cpu_stall+0x600/0x600
[ 1049.458973][    C1]  ? __lock_acquire+0x1ff0/0x1ff0
[ 1049.464160][    C1]  ? do_raw_spin_unlock+0x137/0x8b0
[ 1049.469361][    C1]  rcu_sched_clock_irq+0xa38/0x1150
[ 1049.474562][    C1]  ? rcutree_dead_cpu+0x20/0x20
[ 1049.479408][    C1]  ? hrtimer_run_queues+0x163/0x450
[ 1049.484600][    C1]  ? account_process_tick+0x232/0x3a0
[ 1049.489971][    C1]  update_process_times+0x196/0x200
[ 1049.495170][    C1]  tick_sched_timer+0x386/0x550
[ 1049.500019][    C1]  ? tick_setup_sched_timer+0x2d0/0x2d0
[ 1049.505561][    C1]  __hrtimer_run_queues+0x55b/0xcf0
[ 1049.510767][    C1]  ? hrtimer_interrupt+0x980/0x980
[ 1049.515874][    C1]  ? ktime_get_update_offsets_now+0x407/0x420
[ 1049.521941][    C1]  hrtimer_interrupt+0x392/0x980
[ 1049.526897][    C1]  __sysvec_apic_timer_interrupt+0x13b/0x4b0
[ 1049.532887][    C1]  sysvec_apic_timer_interrupt+0x9b/0xc0
[ 1049.538515][    C1]  </IRQ>
[ 1049.541435][    C1]  <TASK>
[ 1049.544359][    C1]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 1049.550335][    C1] RIP: 0010:smp_call_function_many_cond+0xa93/0xd90
[ 1049.556920][    C1] Code: 04 03 84 c0 0f 85 84 00 00 00 45 8b 7d 00 44 89 fe 83 e6 01 31 ff e8 4c d5 0b 00 41 83 e7 01 75 07 e8 e1 d1 0b 00 eb 41 f3 90 <48> b8 00 00 00 00 00 fc ff df 0f b6 04 03 84 c0 75 11 41 f7 45 00
[ 1049.576519][    C1] RSP: 0018:ffffc90000ddf8a0 EFLAGS: 00000293
[ 1049.582584][    C1] RAX: ffffffff8174a1e4 RBX: 1ffff110171c8541 RCX: ffff88813fe68000
[ 1049.590585][    C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 1049.598549][    C1] RBP: ffffc90000ddf9e0 R08: ffffffff8174a1b4 R09: fffffbfff2131022
[ 1049.606521][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
[ 1049.614485][    C1] R13: ffff8880b8e42a08 R14: ffff8880b8f3b380 R15: 0000000000000001
[ 1049.622458][    C1]  ? smp_call_function_many_cond+0xa84/0xd90
[ 1049.628433][    C1]  ? smp_call_function_many_cond+0xab4/0xd90
[ 1049.634417][    C1]  ? flush_tlb_all+0x20/0x20
[ 1049.639025][    C1]  ? smp_call_function_many+0x30/0x30
[ 1049.644387][    C1]  ? do_raw_spin_lock+0x14a/0x370
[ 1049.649423][    C1]  ? do_raw_spin_unlock+0x137/0x8b0
[ 1049.654613][    C1]  ? flush_tlb_all+0x20/0x20
[ 1049.659198][    C1]  on_each_cpu_cond_mask+0x3b/0x80
[ 1049.664307][    C1]  __purge_vmap_area_lazy+0x294/0x1740
[ 1049.669762][    C1]  ? cpumask_next+0xc3/0xf0
[ 1049.674259][    C1]  ? purge_fragmented_blocks_allcpus+0x855/0x950
[ 1049.680591][    C1]  ? purge_fragmented_blocks_allcpus+0x8da/0x950
[ 1049.686923][    C1]  ? purge_fragmented_blocks_allcpus+0x950/0x950
[ 1049.693258][    C1]  _vm_unmap_aliases+0x453/0x4e0
[ 1049.698197][    C1]  __vunmap+0x72e/0xa20
[ 1049.702359][    C1]  bpf_jit_free+0x92/0x180
[ 1049.706771][    C1]  process_one_work+0x8a1/0x10c0
[ 1049.711717][    C1]  ? worker_detach_from_pool+0x260/0x260
[ 1049.717360][    C1]  ? _raw_spin_lock_irqsave+0x120/0x120
[ 1049.722903][    C1]  ? kthread_data+0x4e/0xc0
[ 1049.727402][    C1]  ? wq_worker_running+0x97/0x170
[ 1049.732423][    C1]  worker_thread+0xaca/0x1280
[ 1049.737121][    C1]  kthread+0x3f6/0x4f0
[ 1049.741194][    C1]  ? rcu_lock_release+0x20/0x20
[ 1049.746036][    C1]  ? kthread_blkcg+0xd0/0xd0
[ 1049.750624][    C1]  ret_from_fork+0x1f/0x30
[ 1049.755050][    C1]  </TASK>