last executing test programs:

11m46.263223929s ago: executing program 32 (id=30):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$eJzs3TFoM2UcBvDnLomf/b4gVRdBUEFEtFDqJrjURaEgpYgIKlREXJRWqC1urZOLg84qnVyKuFkdpUtxUQSnqh3qImhxsDjoELlcK9VGFFNz8t3vB5fcJe97//e4e95kOS5Aa00nmU/SSTKTpJekON/grnqZPt3cntpfTgaDx38shu3q7dpZv2tJtpI8mGSvLPJiN9nYffro54NH731jvXfPe7tPTU30IE8dHx0+dvLu4usfLjyw8fmX3y8WmU//D8d1+YoRn3WL5Jb/otj/RNFtegT8E0uvfvBVlftbk9w9zH8vZeqT9+baDXu93P/OX/V964cvbp/kWIHLNxj0qt/ArQHQOmWSfopyNkm9Xpazs/V/+K87V8uXVtdemXlhdX3l+aZnKuCy9JPDRz6+8tG1P+X/u06df+D6VeX/iaWdb6r1k07TowEmqcr/zLOb90X+oXXkH9pL/qG95B/aS/6hveQf2kv+ob3kH9pL/qG95B/a63z+AYB2GVxp+g5koClNzz8AAAAAAAAAAAAAAAAAAMBF21P7y2fLpGp++nZy/HCS7qj6neHziJMbh69XfyqqZr8r6m5jeebOMXcwpvcbvvv6pm+brf/ZHc3W31xJtl5LMtftXrz+itPr79+7+W++7z03ZoExPfRks/V/3Wm2/sJB8kk1/8yNmn/K3DZ8Hz3/9KvzN2b9l38ZcwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABMzG8BAAD//8n0bSk=")
unshare(0x28000600)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mount$overlay(0x0, &(0x7f0000000340)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f00000002c0)='./bus\x00', 0x322020, &(0x7f0000000440)=ANY=[], 0x1, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x0)
pwritev2(r0, &(0x7f0000001140)=[{&(0x7f0000000fc0)="ea", 0x1}], 0x1, 0x6, 0xde, 0x10)
ioctl$FIDEDUPERANGE(r0, 0xc0189436, &(0x7f00000003c0)={0x3, 0x4, 0x800000000000065, 0x0, 0x0, [{{}, 0xe9}]})

11m37.53067202s ago: executing program 0 (id=73):
socket$pppl2tp(0x18, 0x1, 0x1)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e21, 0x401, @empty}, 0x1c)
write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, &(0x7f0000000200)={0xfffffffffffffd29, 0x5, 0x0, {0x0, 0x2, 0x2}}, 0x30)
r1 = syz_io_uring_setup(0xd2, &(0x7f00000002c0)={0x0, 0xbd84, 0x0, 0x1, 0x30a}, &(0x7f0000000340)=<r2=>0x0, &(0x7f0000000640)=<r3=>0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2f, 0x8, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc})
sendmmsg$sock(r0, &(0x7f00000010c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8000)
io_uring_enter(r1, 0x22d2, 0x20, 0x0, 0x0, 0x0)

11m36.874060761s ago: executing program 0 (id=75):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_ASSOCIATE(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)={0x3c, r4, 0x1, 0x70bd2c, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x96c}], @NL80211_ATTR_MAC={0xa}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000815}, 0x850)

11m36.343539189s ago: executing program 0 (id=77):
r0 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000280)={0x41}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000900)={0x41, 0x4}, 0x10)
r2 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000040)={0x41}, 0x10)
r3 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000280)={0x41, 0x0, 0x2}, 0x10)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000100)={0x41, 0x0, 0x2}, 0x1be)
sendmsg$tipc(r4, &(0x7f0000000180)={&(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10, 0x0}, 0x0)

11m35.683466549s ago: executing program 0 (id=78):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f00000001c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
creat(&(0x7f0000000440)='./file0/file0\x00', 0x188)
lsetxattr$security_capability(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000100), &(0x7f0000000600)=@v3={0x3000000, [{0x4, 0x3}, {0xffff, 0xc4}]}, 0x18, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
chdir(&(0x7f0000000480)='./bus\x00')
creat(&(0x7f0000000140)='./file0\x00', 0x0)

11m35.132677578s ago: executing program 0 (id=79):
mkdir(&(0x7f0000000040)='./file1\x00', 0x160)
mount$fuse(0x0, 0x0, 0x0, 0x1a3089, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
symlink(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
setpgid(r0, 0x0)
setpgid(0x0, r0)
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))

11m34.487212779s ago: executing program 0 (id=83):
r0 = gettid()
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$int_in(r1, 0x5452, &(0x7f0000000180)=0xffffffffffffffff)
fcntl$setsig(r1, 0xa, 0x12)
ppoll(&(0x7f0000000140)=[{r2, 0x8002}], 0x1, &(0x7f00000001c0)={0x77359400}, &(0x7f0000000200)={[0x87a]}, 0x8)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1, 0x31, 0xffffffffffffffff, 0x0)
dup2(r1, r2)
r3 = getpgid(0x0)
fcntl$setown(r1, 0x8, r3)
tkill(r0, 0x13)

11m19.150405386s ago: executing program 33 (id=83):
r0 = gettid()
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$int_in(r1, 0x5452, &(0x7f0000000180)=0xffffffffffffffff)
fcntl$setsig(r1, 0xa, 0x12)
ppoll(&(0x7f0000000140)=[{r2, 0x8002}], 0x1, &(0x7f00000001c0)={0x77359400}, &(0x7f0000000200)={[0x87a]}, 0x8)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1, 0x31, 0xffffffffffffffff, 0x0)
dup2(r1, r2)
r3 = getpgid(0x0)
fcntl$setown(r1, 0x8, r3)
tkill(r0, 0x13)

6m31.347749901s ago: executing program 6 (id=1308):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x82, &(0x7f0000005f80)={[{@shortname_mixed}, {@uni_xlateno}, {@uni_xlateno}, {@uni_xlate}, {@uni_xlateno}, {@shortname_lower}, {@shortname_lower}, {@iocharset={'iocharset', 0x3d, 'maccyrillic'}}, {@iocharset={'iocharset', 0x3d, 'euc-jp'}}, {@shortname_winnt}, {@rodir}, {@uni_xlate}, {@uni_xlate}, {@shortname_lower}, {@uni_xlateno}, {@shortname_lower}, {@utf8no}, {@numtail}, {@shortname_lower}]}, 0x29, 0x365, &(0x7f0000000640)="$eJzs3U9oHNUfAPDvdpJsGtpfcvhB0dPqTRBpKoJ6SigVijloZfHfxcWmWrNrIYsL6SGbvSjFk+JF0JO3HvTYs3gQ8ebBqxakKl7sRQoNjuzu7OxsdqPJYWOLn88hfPN97zvvzcwjMwnJy2vt2Lg4G5du374V8/OlmFk5uxJ3SrEUxyKJvp2Y6P25yXkA4B53J03j97Tvn3t/uDCIPPsB4P7Ve/6/cXKYKB+i+NqJaUwJAJiyA37//9zE7JWpTQsAmKKx5//DI817fsw/k/9OAABw/3rh5VeeXV2LuFCpzEc03mtVW9V4eti+eikuRz3W43Qsxm5E/0Wh/7bQ/fjM+bVzpytdPy9FtVvRqkY02q1q/01hNYnLaT3KsRyLsZTVp3l90q1f7tVXImKn3Rs/GqVWdTYWsvF/WIj1OBOL8f+x+ojza+fOVLIDVBuD+nZEJ+YHJ9GdfxKL8d3rcSXqcTG6tcP5by9XKmfTtZH61vVyrx8AAAAAAAAAAAAAAAAAAAAAAEzDY5XcUr7/Tdpot969MNLhZtY/3x+n2v882x+o098fKC0Pdue5luzdH2h0f55WdSaO/WtnDQAAAAAAAAAAAAAAAAAAAPeW5tZc1Or19c3m1tWNYtAuZN7+5vOvjsegaSYrfSsZVkWWXN9szuZHHnQsHDmJfIg0L0+TkT5ZkEQMOu/Urt/IZ1zsU87HGivvBuWxplI2p1q9fvKhnz6ZVPVnN9jpZZIYuyyjQSkbv9DU+F83MR8Ru/tV7R+UJ9+LPPgjTdP9yrc/Hq+KUsRMHHoaBwi+vvXmA483Tz3Ry3yZbfrwyKOLL/740We/btTq0elfmXp9brO5m04+zoni3enOdbxPUlg/pew6lyashMlBZ5jpbDa3asn3v7304Aff7umcTF4/aTHzzv5jfbE3M9cPShFLg4vwd1OdnbD4u8GTo7fy6kbt1bv56j38jTv16UrtxvbNXw5aVfgiYaMOAAAAAAAAAAAAAAAAAAA4EoU/MD6Ep56f3owAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4OgN//9/IeiMZQ4S3G3HeFN5fbO57+DHj/RUAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4D/srAAD//xu8baw=")
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, 0x0, &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000100), 0x10}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)

6m28.806592563s ago: executing program 6 (id=1314):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x894)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000180)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000100), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102400, 0x19000)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000002540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_LISTEN(r1, &(0x7f00000000c0)={0x7, 0x8}, 0x10)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r2=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, 0x0, 0x0)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000080)={0xe, 0x18, 0xfa00, @id_resuseaddr={0x0, r2}}, 0x20)

6m26.043182459s ago: executing program 6 (id=1321):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000000000)=0x800, 0x4)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, 0x0)
mmap(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x6, 0x8012, r0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000040000000000000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000005000000850000008600000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000940)='tlb_flush\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)
pipe2$9p(&(0x7f0000002480), 0x80000)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

6m24.333487778s ago: executing program 6 (id=1327):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000400)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
vmsplice(r2, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1)
close(r2)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, &(0x7f0000000800)=0x16c, 0x4)
bind$inet(r3, &(0x7f0000deb000)={0x2, 0x4e23, @multicast2}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x240087f9, &(0x7f0000000100)={0x2, 0x4e23, @loopback}, 0x10)
splice(r1, 0x0, r2, 0x0, 0xfffd, 0x0)

6m24.325372118s ago: executing program 1 (id=1328):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0xb40684cf628e5c91)
openat$vicodec0(0xffffffffffffff9c, 0x0, 0x2, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
clock_nanosleep(0x2, 0x0, 0x0, 0x0)
syz_clone(0x102311, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x0)
remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x0, 0x0)
remap_file_pages(&(0x7f0000031000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)

6m23.912014295s ago: executing program 1 (id=1330):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r1 = fanotify_init(0x200, 0x0)
fanotify_mark(r1, 0x1, 0x4800003e, r0, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x87)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0xfffd, 0x6, @loopback, 0x9}, 0x1c)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000140)={'#! ', '', [], 0xa, "29f2"}, 0x6)
sendfile(r2, r3, &(0x7f0000000000)=0x2, 0x20920c58)
r4 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, 0x0)
bind$can_raw(r4, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)

6m23.794580217s ago: executing program 1 (id=1333):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r3, 0x0, 0x13, &(0x7f0000000040), 0x4)

6m22.9813355s ago: executing program 6 (id=1335):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0xc0049364, &(0x7f0000000180))
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000d40)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000017c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
ioctl$AUTOFS_IOC_PROTOSUBVER(r1, 0x40049366, 0x0)

6m22.812183263s ago: executing program 1 (id=1336):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b5181100", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
write$P9_RREAD(0xffffffffffffffff, 0x0, 0xf)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd, 0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x800, 0x6)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000180)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f000000ca40)=[{{0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f0000000840)="8294cd8cd973d2ece2c59ba4ae76021060b7b3ae7198b9bbacabe394fc4c851a57410f3aa1fae44bbfdb48c08cf2842373215c48ad8e8637ed66256c6327a3ac197bedb76482f729d550b4", 0x4b}], 0x1, 0x0, 0x0, 0x4004}}, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x18, 0x44000}}], 0x2, 0x8000)
r1 = open(&(0x7f0000000400)='./bus\x00', 0x8801, 0x0)
write$binfmt_script(r1, &(0x7f0000000080), 0x208e24b)
pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

6m22.619962596s ago: executing program 6 (id=1339):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x200}, 0x1c)
listen(r1, 0x0)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r3 = accept(r1, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8080}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)=ANY=[], 0xfffffdef}, 0x1, 0x0, 0x0, 0x2400c840}, 0x0)
connect$unix(r3, &(0x7f0000000140)=@file={0x0, './file0\x00'}, 0x6e)

6m22.561594387s ago: executing program 4 (id=1341):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0xb40684cf628e5c91)
openat$vicodec0(0xffffffffffffff9c, 0x0, 0x2, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
clock_nanosleep(0x2, 0x0, 0x0, 0x0)
syz_clone(0x102311, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x0)
remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x0, 0x0)
remap_file_pages(&(0x7f0000031000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)

6m22.202437653s ago: executing program 1 (id=1342):
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file0\x00', 0x800, &(0x7f0000000340)=ANY=[@ANYRES32=0x0, @ANYRESOCT, @ANYRES64, @ANYRES16], 0x1, 0x36e, &(0x7f0000000c00)="$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")
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
r1 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
syz_open_dev$usbmon(0x0, 0x80000000000000, 0x0)
r2 = syz_io_uring_setup(0x49a, &(0x7f00000000c0)={0x0, 0x79af, 0x8, 0x8000, 0x40024e}, 0x0, &(0x7f0000000040))
io_uring_enter(r2, 0x627, 0x4c1, 0x43, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
syz_io_uring_setup(0x6b88, 0x0, 0x0, &(0x7f00000001c0))
fallocate(r0, 0x0, 0x0, 0x1000f4)
io_setup(0x7d, &(0x7f0000000600)=<r3=>0x0)
io_submit(r3, 0x2, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000000000)="96", 0xfffffe10, 0x0, 0x0, 0x0, r1}, &(0x7f0000000740)={0x0, 0x0, 0x41, 0x3, 0x0, r0, 0x0, 0x0, 0xffffffffffffffff}])

6m21.929525938s ago: executing program 1 (id=1345):
getpid()
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xc)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000c40))
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000002c0)={0x1, r1})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
unshare(0x64000600)

6m21.81809786s ago: executing program 4 (id=1346):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
rseq(&(0x7f00000004c0)={0x0, 0x0, 0x0, 0x5}, 0x20, 0x0, 0x0)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x0)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x0)

6m20.762618247s ago: executing program 34 (id=1345):
getpid()
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xc)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000c40))
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000002c0)={0x1, r1})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
unshare(0x64000600)

6m20.735893907s ago: executing program 4 (id=1350):
socket$xdp(0x2c, 0x3, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, 0x0, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_BINDTODEVICE_wg(r2, 0x1, 0x19, &(0x7f0000000140)='wg0\x00', 0x4)
connect$inet(r2, &(0x7f00000001c0)={0x2, 0x2, @remote}, 0x10)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x191c)

6m18.551988284s ago: executing program 4 (id=1354):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b5181100", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
write$P9_RREAD(0xffffffffffffffff, 0x0, 0xf)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd, 0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x800, 0x6)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000180)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f000000ca40)=[{{0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f0000000840)="8294cd8cd973d2ece2c59ba4ae76021060b7b3ae7198b9bbacabe394fc4c851a57410f3aa1fae44bbfdb48c08cf2842373215c48ad8e8637ed66256c6327a3ac197bedb76482f729d550b4", 0x4b}], 0x1, 0x0, 0x0, 0x4004}}, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x18, 0x44000}}], 0x2, 0x8000)
r1 = open(&(0x7f0000000400)='./bus\x00', 0x8801, 0x0)
write$binfmt_script(r1, &(0x7f0000000080), 0x208e24b)
pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

6m17.888583616s ago: executing program 4 (id=1359):
r0 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r0, &(0x7f0000000280)={0x2, 0xe28, @dev={0xac, 0x14, 0x14, 0x14}}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005240), 0x4000095, 0x0)
getpeername$packet(r0, 0x0, &(0x7f00000001c0))
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x6, 0x0, 0x0, 0x0, 0x73, 0x11, 0x3b}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0xb7}, @exit={0x95, 0x0, 0xc2}], {0x95, 0x0, 0x1200}}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb}, 0x70)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, 0x0)
unshare(0x400)
fchmod(0xffffffffffffffff, 0x0)
ioctl$PIO_UNIMAP(r1, 0x4b67, &(0x7f0000000180)={0x1, &(0x7f0000000200)=[{0x4, 0x2}]})
r2 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x8)
ioctl$TCSETSF(r2, 0x5404, &(0x7f0000000000)={0x0, 0x8001, 0x2, 0x4, 0xa, "e457433cf29cec892b6ab3265d6c62f299a6fa"})

6m13.013829177s ago: executing program 4 (id=1367):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000002600)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000100))
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x13}, &(0x7f0000000240)=<r4=>0x0)
timer_settime(r4, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@ipv6_newaddrlabel={0x38, 0x48, 0x3, 0x0, 0x0, {0xa, 0x0, 0x80}, [@IFAL_LABEL={0x8}, @IFAL_ADDRESS={0x14, 0x1, @loopback}]}, 0x38}}, 0x0)

6m12.498883435s ago: executing program 35 (id=1367):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000002600)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000100))
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x13}, &(0x7f0000000240)=<r4=>0x0)
timer_settime(r4, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@ipv6_newaddrlabel={0x38, 0x48, 0x3, 0x0, 0x0, {0xa, 0x0, 0x80}, [@IFAL_LABEL={0x8}, @IFAL_ADDRESS={0x14, 0x1, @loopback}]}, 0x38}}, 0x0)

6m7.301607292s ago: executing program 36 (id=1339):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x200}, 0x1c)
listen(r1, 0x0)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r3 = accept(r1, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8080}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)=ANY=[], 0xfffffdef}, 0x1, 0x0, 0x0, 0x2400c840}, 0x0)
connect$unix(r3, &(0x7f0000000140)=@file={0x0, './file0\x00'}, 0x6e)

2m52.61887379s ago: executing program 7 (id=1890):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r3, 0x6, 0x21, 0x0, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x1, &(0x7f0000000100)=0xffffffff, 0x4)

2m51.498541569s ago: executing program 7 (id=1893):
rename(&(0x7f00000000c0)='./bus\x00', &(0x7f0000000100)='./bus/file0\x00')
mkdir(&(0x7f0000000300)='./bus\x00', 0x5c)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
listen(r1, 0x5)
syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0200", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2, 0x0, 0x0, 0xfffc}}}}}}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0200", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2, 0x0, 0x0, 0xfffc}}}}}}}, 0x0)
r2 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f00000001c0)=0x20000008)
add_key$fscrypt_v1(&(0x7f0000000840), &(0x7f0000000880)={'fscrypt:', @desc2}, &(0x7f00000008c0)={0x0, "ed426d436179868323920a5adc54a31b3a64a11b7374298d6245e8c488f527db189552c04e929ebde52f12a666c99a8d8493c5dca674a46be2fb61d699aee7af", 0x20039}, 0x48, 0x0)

2m50.79503435s ago: executing program 7 (id=1895):
socket(0x840000000002, 0x3, 0x100)
openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
socket(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
socket(0x10, 0x803, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000012c0))
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x1f, 0x10, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000005000000000000008000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000018010000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000050000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000a600000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x11}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

2m50.443795836s ago: executing program 7 (id=1900):
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000000)={[{@errors_continue}]}, 0x1, 0x4c5, &(0x7f0000000ec0)="$eJzs3c9vE1ceAPCvbRKSkF1+7B4WDgtakNhdRAyJSKIVF04rVaKt4NAjShMT0ThxFDuURDkEqYf2XrVIPVU98AdU7bWceuTacmrPlVCbhkaViuTKY5v8NHXbEKPM5yMNfjNv8Pe9WN+nmTceTwCpdar2TyaiPyIeRsTh+urmHU7VX9ZWlsZrSyaq1evfR66+w9J4c9fm/zsUEcsR0RMR1/4f8WZme9zywuLUWLFYmGus5yvTs/nywuL5W9Njk4XJwszQyODI6PDwyOilXevrO3euvPbBT1fe/eSr+9+8lfnsTK1Z/Y261ZX1fuymete74uiGbQci4vKLCNYBuUZ/ejvdEP6Q2uf3t4g4neT/4cglnyaQBtVqtfq0erBV9XIV2LeyyTFwJjsQEfVyNjswUD+G/3v0ZYulcuXczdL8zET9WPlIdGVv3ioWLjTOFY5EV6a2fjEpr68PblkfikiOgd/P9SbrA+Ol4sTeDnXAFoe25P+TXD3/gZRwyg/pJf8hveQ/pJf8h/SS/5Be8h/SS/5Desl/SC/5D+kl/yG95D+k0utXr9aW6lrj/veJ2wvzU6Xb5ycK5amB6fnxgfHS3OzAZKk0mdyzM/1b71cslWaHYmb+Tr5SKFfy5YXFG9Ol+ZnKjeS+/huFrj3pFdCOoycfPMpExPL/epOlprtRJ1dhf6tWM9Hpe5CBzsh1egACOsbUH6SXc3xgh5/o3aSnVcXs7rcF2BvZ9WLLFAf2p7PHXf+DtDL/D+ll/h/SyzE+YP4f0ifb6QYAHdPf4vlff9nw7K4LEfHXiPg613Ww+awvYD/IfpdpNQ94JqI783NyiaA7It7+6PqHd8YqlbmLte0/PNteudfYPth+1O5daz/QrmaeNvMYAEiv1ZWl8eayl3EfX6mffNTirjWWes2BxtxkT3KNsm81s+kcpeU5y++0fDci/hHxZGVpvLk0I9Sfd16/8tG3mtsW/1jjNVN/i6S9B5LnpkfbX6f+M/GPb4j/zw3xT+zC3wXS4EFt/Lmwffw72MjpeJZ/m8ef/l367kRz/FvbNv5ln41/uRbj38k2Y1zOv7HaMv7diBM7xm/G60libY1fa9vZNuN/+d6PD1vVVT+uv89O8ZtqpXxlejZfXlg8n/yO3GRhZmhkcGR0eHhk9FI+maPON2eqt3v0r6dfPK//fS3i79T/7g1t+k+b/f/l3ufnTj0n/r9P7/z5H9shflNvRPy3zfivfPrttVZ1tfgTLfqfbRE/E7Fc2zbUZvzr9x+/2uauAMAeKC8sTo0Vi4U5BYU0FTLxUjTj5S10emQCXrT1pO90SwAAAAAAAAAAAIB27cXXiTvdRwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/eDXAAAA//9p8tW2")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
waitid$P_PIDFD(0x2, r1, 0x0, 0x8, 0x0)
fremovexattr(r0, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000300)='./file2\x00', 0xa00008, &(0x7f0000000100), 0x1, 0x7c8, &(0x7f0000001280)="$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")
creat(&(0x7f0000000340)='./bus\x00', 0x11a)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f00000003c0)='./bus\x00', 0x0, 0x41800, 0x0)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x84)
syz_emit_ethernet(0x72, &(0x7f00000002c0)={@broadcast, @empty, @val={@void}, {@ipv6={0x86dd, @icmpv6={0x3, 0x6, "269fe0", 0x38, 0x3a, 0x1, @empty, @local, {[], @time_exceed={0x3, 0x1, 0x0, 0x2, '\x00', {0x3, 0x6, "39afb8", 0xf648, 0x0, 0x0, @rand_addr=' \x01\x00', @private1={0xfc, 0x1, '\x00', 0x1}, [@srh={0x29, 0x0, 0x4, 0x0, 0xb9, 0x40, 0x5}]}}}}}}}, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2000003, 0x28011, r2, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000440)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x2800053, 0x0, 0xfc, 0x0, &(0x7f00000000c0))
unlinkat(0xffffffffffffff9c, &(0x7f0000000c40)='./file1\x00', 0x0)

2m48.031739406s ago: executing program 7 (id=1909):
socket(0x10, 0x3, 0x0)
inotify_init1(0x0)
pipe2$9p(&(0x7f0000001900), 0x84000)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000001900)=ANY=[@ANYBLOB="1201000000000040c41090ea00000000000109022400010000000009040000010300000009210000000122070009058103"], 0x0)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000100)={0x1, &(0x7f0000000180)=[{0x6, 0x8, 0x0, 0xf77}]}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000001700"/28], 0x48)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000000c0)={0x2c, &(0x7f0000000100)={0x0, 0x0, 0x8, {0x8, 0x0, "392cdaab4a73"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000500)={0x2c, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x20, 0x1, 0x3, "c282fe"}, 0x0})
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000540)={0x2c, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x20, 0x1, 0xe, "ea6aafaabfc5926708627c6c0963"}, 0x0})
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x24}}, 0x0)

2m46.570895131s ago: executing program 7 (id=1913):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
open(&(0x7f0000000080)='./bus\x00', 0x143142, 0x0)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x2008440, 0x0)

2m45.141549345s ago: executing program 37 (id=1913):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
open(&(0x7f0000000080)='./bus\x00', 0x143142, 0x0)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x2008440, 0x0)

20.551048947s ago: executing program 9 (id=2290):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100), 0x20440, 0x0)
unshare(0x22020600)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
close(r1)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000340)=ANY=[@ANYRES32=r1, @ANYRES32=r1, @ANYRES32, @ANYBLOB], 0x20)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000500)={0xffffffffffffffff, 0xe0, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, &(0x7f00000001c0)=[0x0, 0x0, 0x0], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6d, 0x8, 0x8, &(0x7f0000000480)}}, 0x10)
ioctl$RTC_PIE_ON(r0, 0x7005)
ioctl$RTC_WKALM_RD(0xffffffffffffffff, 0x80287010, 0x0)
add_key$user(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x0}, &(0x7f00000002c0), 0x0, 0xfffffffffffffffe)
request_key(&(0x7f00000003c0)='cifs.idmap\x00', &(0x7f0000000400)={'syz', 0x0}, 0x0, 0xfffffffffffffffb)
read$hiddev(r0, &(0x7f0000000180)=""/74, 0x4a)

17.37261103s ago: executing program 9 (id=2294):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000900000000000000213f0000c50000000e800000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r0}, 0x10)
bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreq(r2, 0x0, 0x23, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32], 0x0}, 0x94)
pipe2(&(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x80000)
fcntl$setpipe(r3, 0x407, 0x0)
write$FUSE_INIT(r3, &(0x7f0000000340)={0x50, 0x0, 0x0, {0x7, 0x28, 0x0, 0x0, 0x0, 0x0, 0x4}}, 0x50)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={0xffffffffffffffff, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
vmsplice(r3, &(0x7f0000000140)=[{&(0x7f0000000100)="eb", 0x20000101}], 0x1, 0x0)
fcntl$setpipe(r3, 0x407, 0x2000000)
prctl$PR_SET_THP_DISABLE(0x29, 0x0)

15.245599195s ago: executing program 9 (id=2300):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c00000002000000000000000100000d0000000000000000030000000000000000000001ff000000400000000000000000000003000000000200000002"], 0x0, 0x56}, 0x20)

12.400482063s ago: executing program 8 (id=2308):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$key(0xf, 0x3, 0x2)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x38, r1, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x24, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1=0xac1414aa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}]}]}, 0x38}}, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r3, 0x0)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01000000000000000000010000001c000180060001000200000008000300ac1414aa0800060001"], 0x30}}, 0x0)

12.151169797s ago: executing program 3 (id=2312):
memfd_create(0x0, 0x5)
move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, 0x0, 0x100)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000003c0)={0x26, 'hash\x00', 0x0, 0x0, 'crct10dif\x00'}, 0x58)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='blkio.throttle.io_serviced_recursive\x00', 0x275a, 0x0)
ftruncate(r2, 0x8979)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_rx_ring(r3, 0x107, 0x5, 0x0, 0x0)
inotify_add_watch(r2, 0x0, 0x400)
sendfile(r1, r2, 0x0, 0x103e)

11.827062382s ago: executing program 3 (id=2313):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000bc0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r1}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="6c00000010001fff010000000000000000060000", @ANYRES32=0x0, @ANYBLOB="81ffffff00000000440012800b00010067656e6576650000340002800500090000000000050009000100000005000a000000000005000300f90000000500040040000000050004000800000008000a00", @ANYBLOB="b5"], 0x6c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000c80)={'lo\x00', <r4=>0x0})
ioctl$sock_inet6_SIOCADDRT(r2, 0x890b, &(0x7f00000002c0)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @empty, @private0, 0x2, 0x6, 0x0, 0x0, 0x100000000000006, 0x150046, r4})
r5 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_ABS_SETUP(r5, 0x401c5504, &(0x7f0000000340)={0x400000100002f})
ioctl$UI_SET_EVBIT(r5, 0x40045564, 0x3)
ioctl$UI_DEV_SETUP(r5, 0x405c5503, &(0x7f0000000080)={{0x9, 0xf81, 0xfff, 0x80}, 'syz0\x00', 0x32})
ioctl$UI_DEV_CREATE(r5, 0x5501)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x22004006, &(0x7f00000010c0)={[{@jqfmt_vfsold}, {@nouid32}, {@nobh}, {@noblock_validity}, {@block_validity}, {@grpjquota, 0x22}], [], 0x2}, 0xc4, 0x495, &(0x7f0000019080)="$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")

11.104022485s ago: executing program 8 (id=2315):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r0, &(0x7f0000000100)="07000000010000", 0x7)
close(r0)
pwrite64(r0, &(0x7f0000000080)="0c2ef7f431f44ae9561cf6340676de922f88872a3e132758a4b38405347469fed2aa4c93238ebeb669ddd7c093d71388895ad7557e0d6a556dd6edd039810941307d30946fcb5bc221233002bc2dce2fc50b83dc4a881e3dcd1bb0cc96d24ed5e8ceffc714e6ff6324f034ce495add3ef9c8", 0x72, 0x8000000000000001)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x60840, 0x8)
io_setup(0x5, &(0x7f0000000200)=<r2=>0x0)
r3 = inotify_init()
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000040)={0xa, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB="020300022b000000fdffffffffdbdf25030006000020000002000000ac1414bb0000000000000000030017003200000002004e24ffffffff000000000000000003000500000000000200000000000000000000000000000002000100080000002c000000000000001e00080028"], 0x158}, 0x1, 0x7}, 0x0)
inotify_add_watch(r3, &(0x7f0000000340)='.\x00', 0x300)
io_submit(r2, 0x1, &(0x7f0000000440)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, r1}])

9.902148334s ago: executing program 2 (id=2318):
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
munlockall()
socket$inet_sctp(0x2, 0x1, 0x84)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
ioctl$SNDRV_TIMER_IOCTL_START(0xffffffffffffffff, 0x54a0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00003, 0x8)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

9.899122895s ago: executing program 8 (id=2319):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x6, &(0x7f0000000740)=ANY=[@ANYBLOB="050000000000000069116f00000000008510000002000000850000000500000095000000000000009500a5050000000003f58280c3a95dfe80a97ad440e24460f4f8518cab21481bc5b54dafd934e44db5e2f88fe728e8de1587c94719bd4f5a535cbb41ad25a0b1c19ce0770ce776497e7ca4e7eb89bbf1d36900eade8e938e5a5b9d2cd9f39fa1a424428415b2891e8b"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x2e, 0xffffffffffffffff, 0x6}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000003000003000000000000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x18)
utimensat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x0, 0x100)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000300)='./file1\x00', 0x101008b, &(0x7f0000000140)=ANY=[], 0x2, 0x230, &(0x7f0000000400)="$eJzsmM9rE0EUx7+z2fwwqOhBD17ioWAFu9ndqPQiqFcRhFbUY7BrqW4bSXJoCqX6B/jnqJCDePDmRTx48lALggd71IOCIzPzdjPdTUKizanvc5h8582bNz/zBhYMwxxZ9r782H1xc3H5EoDjmEOZ7N8KAx/H8v8MFEm+2zi53c/GEwCkHNRd+q3q+HlKAN7eKADPTFgpf0m7fY5iLsPRWnEXDi6SvgcBL5mrVBgZQeABmR9bunWMRByJh6145dFaHPmqCFQRqqIByAPz338usAKgQkMIa36d3taTZgy0jYijRBRlMk6uaVoxZNus+e3tqhO6Zm2BOq/7tCce2X1r/wI4CEg3ILBEehFleJ5Xo2oUWOs/5w7iF8yxWeufdCWVIU0/35hI/7dHQ8XphbE+ySIOd9C8+CMncpZS7kwTufRPRzAbkf77pNyZvJdTA/KHklpOINOrNWQTjMA0Ryk6PZwy/sYi7Ot3dr//Pt/r62HvWN+2bM/0dHTiApBr+liN49u25cMtEmcOxDk/4u+Z3MCRV8LkD+ECF8hVQEo3fRWAenf9ab3T21pYW2+uRqvRRhg2rvqXff9KWNe52ZRj8l9F56eqlf+K5snI+KnBS9hsdrvtYBPotoNSUg9f6tLKuEuvWt91P0fnPwfzv+l605uVPpQZ9PtXNv2Ers0XRk6eYRiGYRiGYRiGYRiGYRhmDLVP5vd6JbXgdfIpXgy+ymdxwzva+28AAAD//w2PXNg=")
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r3, 0x0, 0x0)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$KDSETKEYCODE(r4, 0x4b4d, &(0x7f0000000000)={0x6, 0x6})
syz_usb_connect$cdc_ecm(0x2, 0x56, &(0x7f0000000300)=ANY=[@ANYBLOB="12010000020000082505a5a4400000000101090244000101000000090400000302060000052406000005240000000d240f0100000000000000000009058103200000000009058202080000000009050302"], 0x0)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000a00)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000012000000080007000000ffff08000800ffffff70180001801400020076657468305f746f5f62617461647600080009"], 0x44}}, 0x0)

9.60315991s ago: executing program 9 (id=2321):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_clone(0x100411, 0x0, 0x0, 0x0, 0x0, 0x0)
tkill(r3, 0x13)
tkill(r3, 0x12)
waitid(0x1, r3, 0x0, 0x8, &(0x7f0000000340))

9.490926661s ago: executing program 3 (id=2322):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
unshare(0x8000000)
semget$private(0x0, 0x4000, 0x0)
semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000740))

8.005985046s ago: executing program 5 (id=2323):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)
open$dir(0x0, 0x2, 0x4)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000600)=@raw={'raw\x00', 0x8, 0x3, 0x4c0, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f0, 0xffffffff, 0xffffffff, 0x3f0, 0xffffffff, 0xb, 0x0, {[{{@uncond, 0x0, 0x1a0, 0x1c0, 0x60030000, {0x0, 0xff000000}, [@common=@inet=@recent0={{0xf8}, {0x81, 0x0, 0x24, 0x0, 'syz1\x00'}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x1c8, 0x230, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x1, 0x0, 'syz0\x00'}}, @common=@inet=@set2={{0x28}, {{0x0, 0x40}}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x520)

7.73410192s ago: executing program 9 (id=2324):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffc}}, &(0x7f0000000300)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000900000000000000213f0000c50000000e800000850000000e00000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r1}, 0x10)
r2 = openat$uinput(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$UI_SET_EVBIT(r2, 0x40045564, 0x12)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
pipe2(&(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x80000)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x10, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fcntl$setpipe(r3, 0x407, 0x0)
write$FUSE_INIT(r3, &(0x7f0000000340)={0x50, 0x0, 0x0, {0x7, 0x28, 0x0, 0x0, 0x0, 0x0, 0x4}}, 0x50)
vmsplice(r3, &(0x7f0000000140)=[{&(0x7f0000000100)="eb", 0x20000101}], 0x1, 0x0)
fcntl$setpipe(r3, 0x407, 0x2000000)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed4040, &(0x7f0000000000)={[{@nodiscard}, {@stripe={'stripe', 0x3d, 0x1}}, {@journal_dev={'journal_dev', 0x3d, 0x400}}, {@grpid}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x3}}, {@nolazytime}, {@init_itable_val={'init_itable', 0x3d, 0x5}}, {@nobh}]}, 0xf5, 0x47a, &(0x7f0000000ac0)="$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")

6.691143118s ago: executing program 3 (id=2326):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket(0x15, 0x5, 0x0)
getsockopt(r3, 0x200000000114, 0x2718, 0x0, &(0x7f0000000040))
bind$inet(0xffffffffffffffff, 0x0, 0x0)
syz_80211_inject_frame(&(0x7f00000000c0), 0x0, 0x0)

6.681375938s ago: executing program 2 (id=2327):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x11, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000ffffffff000000000000000085000000a8000000b7080000000000007b"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0x109140, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000580)={&(0x7f00000006c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0xb0, 0x9, 0xa, 0x5, 0x0, 0x0, {0x5, 0x0, 0x9}, [@NFTA_SET_EXPR={0x38, 0x11, 0x0, 0x1, @objref={{0xb}, @val={0x28, 0x2, 0x0, 0x1, [@NFTA_OBJREF_IMM_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_OBJREF_SET_SREG={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_OBJREF_IMM_TYPE={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_OBJREF_SET_SREG={0x8, 0x3, 0x1, 0x0, 0x12}]}}}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_HANDLE={0xc, 0x10, 0x1, 0x0, 0x4}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2d}, @NFTA_SET_DATA_TYPE={0x8}, @NFTA_SET_DESC={0x30, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_CONCAT={0x24, 0x2, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}]}]}, @NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x7}]}]}, @NFT_MSG_NEWOBJ={0x1c, 0x12, 0xa, 0x101, 0x0, 0x0, {0x5, 0x0, 0x5}, @NFT_OBJECT_CT_EXPECT=@NFTA_OBJ_TYPE={0x8}}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xa}}}, 0xf4}, 0x1, 0x0, 0x0, 0x20014840}, 0xc010)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

5.753979034s ago: executing program 5 (id=2328):
syz_mount_image$hfsplus(&(0x7f0000000080), &(0x7f0000000100)='./file1\x00', 0x0, &(0x7f0000000340)=ANY=[], 0x2, 0x634, &(0x7f0000000480)="$eJzs3c1rXNfdB/DvHcmyxgZHeWI7fkogIoa0VNTWC0qrbuqWUlQIJaSLroUtY+Gxk0pKUUJp1De67SJ/QLrQrqtCN4WCIV23u2y1DBS6yUpdTbl37oxGtjwdxZJGTj8fc+ecM+fec3/nN/dlZoyYAP+zlmcy/ihFlmfe3CrbuzsLrd2dhQfdepLzSRrJeKdI8TApPklupbPk/8sn6+GKp+3no7Wltz/9fPezTmu8Xqr1G4O2G852vWQ6yVhdHtd4t595vKI3wzJh17uJg1E7l6R9wE+v7vcMduGZz1vgLCg6982edn1mT1WneSbr9wGdu2Lnnv1c2x51AAAAAHAKXtjLXrZyadRxAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwPOk/v3/6lf/J3tPpZhO0f39/4luf5KLIwx1sInhVnvUOOlAAAAAAAAAAODkvbqXvWzlUrfdLtJI8lrVuFw9Xsx72chq1nMjW1nJZjaznrkkU30DTWytbG6uzw2x5fyhW84PGXDz2ecMAAAAAAAAAF9Cv8ry/v//AwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAWVAkY52iWi5361NpjCeZTDJRrred/KNbf549GnUAAAAAcApe2MtetnKp224X1Wf+q9Xn/sm8l4fZzFo208pq7lTfBXQ+9Td2dxZauzsLD8rlyXG/+68jhVGNmM53D4fv+Vq1RjN3s1Y9cyO3805auZNGtWXpWjeew+P6ZRlT8Z3akJHdqcty5r+vy5M3NsQ6U1VGzvUyMlvHVmbjxcGZOPjqbB91T3Np9L75uXwCOb9Ql0Vy8YenlvNh1Jl4NXUm5vuOvquDM5F89c9//Mm91sP79+5uzJydKR3B+Xa73a0/fkws9GXi5S99JvrNVpm40msv5wf5cWYynbeynrX8LCvZzGqm8/2qtlIfz+Xj1OBM3TrQeqt6bD49kon6delcPY4W02vVtpeylh/lndzJat6o/s1nLt/MYhaz1PcKXxnirG8c7ay//rW6Uk7wd4MnesrKvL5Y5/XD5MA1d6rq639mP0spctzXxvGv1JVyH7+uy7Ph8UzM9WXipcHHyx+qy8pG6+H99Xsr7w65v9frsjyPfnum7hLl8fJ/5YtVtQ4eHWXfS4f2zVV9l3t9jSf6rvT6/tuZOlG/h3typPmq7+VD+xaqvmt9fYe93wLgzLvw9QsTzX82/978uPmb5r3mm5PfO/+t869M5Nzfzn17fHbs9cYrxZ/ycX6x//kfAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD44jbe/+D+Squ1uv5Ypd1uf/iUri9aGctRtvrrX45z793fIzrG6RxvZfIoK7fPRsxHqfy73W4fy4DbAw7aY6u0a2cidSOqjPjCBJy4m5sP3r258f4H31jr3iIXF5dmlxbfWLh5d621Ott5HHGQwInYv+mPOhIAAAAAAAAAAABgWKfx5wSjniMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwfFueyfijFJmbvTFbtnd3Flrl0q3vrzmepJGk+HlSfJLcSmfJVN9wxdP289Ha0tuffr772f5Y4931G4O2G852vWQ6yVhdHtd4t595vKI3wzJh17uJg1H7TwAAAP//UOQPsQ==")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x2000044, &(0x7f0000000000)={[{@data_err_ignore}, {@journal_dev={'journal_dev', 0x3d, 0x4128}}, {@lazytime}, {@norecovery}, {@auto_da_alloc}]}, 0x2, 0x516, &(0x7f0000000500)="$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")
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r3, 0x400448e6, 0x0)

5.719862164s ago: executing program 8 (id=2329):
socket$nl_netfilter(0x10, 0x3, 0xc)
mkdir(&(0x7f0000000080)='./file1\x00', 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
rt_tgsigqueueinfo(0x0, 0x0, 0x7, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000580), 0xa, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_generic(0x10, 0x3, 0x10)
setxattr$trusted_overlay_opaque(&(0x7f0000000180)='./bus\x00', &(0x7f00000001c0), 0x0, 0x0, 0x1)
capset(&(0x7f0000000000)={0x20080522}, 0x0)

5.558747507s ago: executing program 2 (id=2330):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000001a300)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000440)={<r3=>0xffffffffffffffff})
socket$inet_udplite(0x2, 0x2, 0x88)
sendto(r3, &(0x7f0000001680)="9b", 0x1, 0x1c015, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x46f6, 0x0, 0x0, 0x0, 0x0)

4.636570472s ago: executing program 5 (id=2331):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0x1c, &(0x7f0000000300)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x1000}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x8}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x6, 0x1, 0xb, 0x8, 0x9}, {0x4, 0x0, 0x0, 0x8}, {}, {}, {}, {0x18, 0x8, 0x2, 0x0, r3}, {}, {0x46, 0x0, 0x0, 0x76}}], {{}, {0x6, 0x0, 0x7, 0x8}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

3.182426077s ago: executing program 5 (id=2332):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
setpriority(0x2, 0x0, 0xffffffffffffffcd)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x2e0, 0x120, 0x130, 0x26010000, 0x0, 0x130, 0x210, 0x220, 0x220, 0x210, 0x220, 0x3, 0x0, {[{{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @loopback, [0x0, 0xff, 0xff, 0xffffff00], [0xffffffff, 0xffffffff, 0xff000000], 'ip6_vti0\x00', 'vxcan1\x00', {}, {0x589b843e1c2c028}, 0x2e, 0xd4, 0x6, 0xa}, 0x0, 0xf8, 0x120, 0x0, {0x0, 0x25e}, [@inet=@rpfilter={{0x28}, {0xa}}, @common=@unspec=@state={{0x28}}]}, @common=@unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x0, 0x4, 0x2}}}, {{@ipv6={@dev, @mcast1, [], [], 'bridge_slave_0\x00', 'dummy0\x00'}, 0x0, 0xa8, 0xf0}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x340)

3.176680377s ago: executing program 3 (id=2342):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='contention_end\x00', r0}, 0x18)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0xc7)
close(r1)
r2 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000), 0x101000, 0x800, 0x3, 0x1}, 0x20)
setsockopt$XDP_TX_RING(r2, 0x11b, 0x3, &(0x7f00000003c0)=0x800, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'veth1_to_batadv\x00', <r4=>0x0})
setsockopt$XDP_UMEM_COMPLETION_RING(r2, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r2, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
bind$xdp(r2, &(0x7f00000001c0)={0x2c, 0x8, r4}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})
write$binfmt_aout(r1, 0x0, 0x0)

3.159970557s ago: executing program 2 (id=2333):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './cgroup\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
io_uring_register$IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, 0x0, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-3way\x00'}, 0x6e)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000340)="71e67a15cdf0311cfcf33a52a7d86bd1", 0x20)

2.655295075s ago: executing program 9 (id=2334):
rseq(0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008031, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x88306, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000240)={0xf0003, 0x0, [0x680, 0x3, 0x7, 0x0, 0x0, 0x0, 0x2b, 0x40000000]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x9)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x3)
munmap(&(0x7f0000001000/0x4000)=nil, 0x4000)
syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@private0, 0x8000000, 0x0, 0xff, 0x1}, 0x20)

1.839111749s ago: executing program 2 (id=2335):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bridge_slave_1\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c0000005e000100"/20, @ANYRES32=r4, @ANYRES16], 0x1c}}, 0x0)

1.611700493s ago: executing program 8 (id=2336):
openat$incfs(0xffffffffffffffff, 0x0, 0x1c780, 0x44)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x4eb)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x40010101, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000d40)={0x44, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x44}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast1=0xe0004001}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x0)

1.512213895s ago: executing program 3 (id=2337):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0400"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
close(r2)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x1a1)
fcntl$setlease(r4, 0x400, 0x1)
execve(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)

679.097519ms ago: executing program 5 (id=2338):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000280)={0x41}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000900)={0x41, 0x4}, 0x10)
r2 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000040)={0x41}, 0x10)
r3 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000280)={0x41, 0x0, 0x2}, 0x10)
sendmsg$tipc(r3, &(0x7f0000000240)={&(0x7f0000000080), 0x10, 0x0}, 0x0)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000100)={0x41, 0x0, 0x2}, 0x1be)
sendmsg$tipc(r4, &(0x7f0000000180)={&(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10, 0x0}, 0x0)
sendmsg$tipc(r3, &(0x7f0000000240)={&(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x44010}, 0x0)

43.263619ms ago: executing program 5 (id=2339):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
ptrace(0x8, r3)
r4 = syz_pidfd_open(r3, 0x0)
process_mrelease(r4, 0x700000000000000)

42.366129ms ago: executing program 2 (id=2350):
syz_usbip_server_init(0x3)
syz_io_uring_submit(0x0, 0x0, 0x0)
r0 = getpgid(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x50)
ioctl$NS_GET_PARENT(r1, 0xb702, 0x0)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r2 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000440)=@newqdisc={0x44, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r4, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0x10, 0x3, {0x1, 0x81, 0xc}}}}]}, 0x44}}, 0x44080)
sendmsg$nl_route_sched(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000180)=@newqdisc={0x30, 0x24, 0xd0f, 0x60bd25, 0x0, {0x60, 0x0, 0x0, r4, {0x0, 0x8}, {0x0, 0xa}, {0x0, 0x5}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x45}, 0x4000)

0s ago: executing program 8 (id=2340):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
io_uring_setup(0x4fc4, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x38, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0xc, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}]}]}, @NFT_MSG_DELFLOWTABLE={0x14, 0x18, 0xa, 0x101, 0xb00, 0x0, {0xa}}], {0x14, 0x10}}, 0x94}}, 0x0)

kernel console output (not intermixed with test programs):

k speed/duplex
[  370.682244][ T5274] bond1: (slave macvlan2): failed to get link speed/duplex
[  370.828747][ T4423] bond1: (slave macvlan2): failed to get link speed/duplex
[  370.938652][ T5274] bond1: (slave macvlan2): failed to get link speed/duplex
[  371.048786][ T5261] bond1: (slave macvlan2): failed to get link speed/duplex
[  371.158709][ T5274] bond1: (slave macvlan2): failed to get link speed/duplex
[  371.392961][ T5274] bond1: (slave macvlan2): failed to get link speed/duplex
[  371.815193][ T5261] bond1: (slave macvlan2): failed to get link speed/duplex
[  372.660020][ T8757] overlayfs: failed to clone upperpath
[  373.001627][ T8771] ip6t_srh: unknown srh match flags  4000
[  374.351373][   T62] net_ratelimit: 16 callbacks suppressed
[  374.351393][   T62] bond1: (slave macvlan2): failed to get link speed/duplex
[  375.309324][ T4314] bond1: (slave macvlan2): failed to get link speed/duplex
[  375.431356][   T62] bond1: (slave macvlan2): failed to get link speed/duplex
[  375.679742][ T4314] bond1: (slave macvlan2): failed to get link speed/duplex
[  375.798628][ T4314] bond1: (slave macvlan2): failed to get link speed/duplex
[  375.918763][ T4314] bond1: (slave macvlan2): failed to get link speed/duplex
[  376.038682][ T5274] bond1: (slave macvlan2): failed to get link speed/duplex
[  376.269319][ T5231] bond1: (slave macvlan2): failed to get link speed/duplex
[  376.451119][   T62] bond1: (slave macvlan2): failed to get link speed/duplex
[  376.561716][ T5231] bond1: (slave macvlan2): failed to get link speed/duplex
[  378.791077][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  378.815910][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  378.868343][   T27] audit: type=1326 audit(1752667842.609:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8830 comm="syz.5.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9359b8e929 code=0x7fc00000
[  379.363990][   T27] audit: type=1326 audit(1752667842.959:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8830 comm="syz.5.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f9359b8e929 code=0x7fc00000
[  379.410664][   T62] net_ratelimit: 6 callbacks suppressed
[  379.410685][   T62] bond1: (slave macvlan2): failed to get link speed/duplex
[  379.541490][   T27] audit: type=1326 audit(1752667842.959:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8830 comm="syz.5.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9359b8e929 code=0x7fc00000
[  380.340459][   T27] audit: type=1326 audit(1752667842.959:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8830 comm="syz.5.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9359b8e929 code=0x7fc00000
[  380.419284][ T4423] bond1: (slave macvlan2): failed to get link speed/duplex
[  380.482670][   T27] audit: type=1326 audit(1752667842.959:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8830 comm="syz.5.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9359b8e929 code=0x7fc00000
[  380.529651][    T9] bond1: (slave macvlan2): failed to get link speed/duplex
[  380.557203][   T27] audit: type=1326 audit(1752667842.959:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8830 comm="syz.5.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9359b8e929 code=0x7fc00000
[  380.680563][    T9] bond1: (slave macvlan2): failed to get link speed/duplex
[  381.480064][ T8870] bond0: (slave dummy0): Releasing backup interface
[  381.556363][   T27] audit: type=1326 audit(1752667842.959:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8830 comm="syz.5.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9359b8e929 code=0x7fc00000
[  381.590868][   T62] bond1: (slave macvlan2): failed to get link speed/duplex
[  381.642111][   T27] audit: type=1326 audit(1752667842.959:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8830 comm="syz.5.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9359b8e929 code=0x7fc00000
[  381.698659][   T62] bond1: (slave macvlan2): failed to get link speed/duplex
[  381.721875][   T27] audit: type=1326 audit(1752667842.959:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8830 comm="syz.5.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9359b8e929 code=0x7fc00000
[  381.810192][ T4314] bond1: (slave macvlan2): failed to get link speed/duplex
[  381.930796][ T5259] bond1: (slave macvlan2): failed to get link speed/duplex
[  381.988812][   T27] audit: type=1326 audit(1752667842.959:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8830 comm="syz.5.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9359b8e929 code=0x7fc00000
[  382.054744][ T5259] bond1: (slave macvlan2): failed to get link speed/duplex
[  382.228762][ T4314] bond1: (slave macvlan2): failed to get link speed/duplex
[  383.141537][ T8899] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1223'.
[  383.291615][ T8903] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1225'.
[  383.465364][ T8911] syz.5.1229 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  384.471346][    T9] net_ratelimit: 19 callbacks suppressed
[  384.471368][    T9] bond1: (slave macvlan2): failed to get link speed/duplex
[  385.463126][ T4423] bond1: (slave macvlan2): failed to get link speed/duplex
[  386.020380][    T9] bond1: (slave macvlan2): failed to get link speed/duplex
[  386.114322][ T8937] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1237'.
[  386.508799][ T4314] bond1: (slave macvlan2): failed to get link speed/duplex
[  386.559206][ T8937] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1237'.
[  386.671892][ T5226] bond1: (slave macvlan2): failed to get link speed/duplex
[  386.800409][ T4314] bond1: (slave macvlan2): failed to get link speed/duplex
[  386.909735][ T4314] bond1: (slave macvlan2): failed to get link speed/duplex
[  387.013127][ T8952] random: crng reseeded on system resumption
[  387.050361][ T5231] bond1: (slave macvlan2): failed to get link speed/duplex
[  387.179977][ T4424] bond1: (slave macvlan2): failed to get link speed/duplex
[  387.309719][ T5231] bond1: (slave macvlan2): failed to get link speed/duplex
[  389.052219][ T8993] delete_channel: no stack
[  389.625418][ T4423] net_ratelimit: 15 callbacks suppressed
[  389.625440][ T4423] bond1: (slave macvlan2): failed to get link speed/duplex
[  390.026727][   T62] bond1: (slave macvlan2): failed to get link speed/duplex
[  390.117745][ T8999] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  390.144305][ T8999] CIFS mount error: No usable UNC path provided in device string!
[  390.144305][ T8999] 
[  390.154748][ T8999] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  390.169278][    T9] bond1: (slave macvlan2): failed to get link speed/duplex
[  390.318930][    T9] bond1: (slave macvlan2): failed to get link speed/duplex
[  390.448720][    T9] bond1: (slave macvlan2): failed to get link speed/duplex
[  390.968827][ T5261] bond1: (slave macvlan2): failed to get link speed/duplex
[  390.993848][ T9007] loop1: detected capacity change from 0 to 8
[  391.102182][ T4423] bond1: (slave macvlan2): failed to get link speed/duplex
[  391.163816][ T9009] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma?
[  391.205047][ T9007] SQUASHFS error: lzo decompression failed, data probably corrupt
[  391.288744][ T4365] bond1: (slave macvlan2): failed to get link speed/duplex
[  391.340480][ T9007] SQUASHFS error: Failed to read block 0x91: -5
[  391.394159][ T9007] SQUASHFS error: Unable to read metadata cache entry [8f]
[  391.420413][   T11] bond1: (slave macvlan2): failed to get link speed/duplex
[  391.728900][ T9007] SQUASHFS error: Unable to read inode 0x11f
[  391.799921][    T9] bond1: (slave macvlan2): failed to get link speed/duplex
[  392.262370][ T9047] loop1: detected capacity change from 0 to 128
[  392.392217][ T9047] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  393.484297][ T9051] netlink: 'syz.4.1263': attribute type 1 has an invalid length.
[  393.529672][ T9051] device bond6 entered promiscuous mode
[  393.679217][ T9056] bond6: (slave ip6gretap2): making interface the new active one
[  393.719307][ T9056] device ip6gretap2 entered promiscuous mode
[  393.740639][ T9056] bond6: (slave ip6gretap2): Enslaving as an active interface with an up link
[  393.784208][ T9061] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1263'.
[  393.799708][ T9061] device bond6 left promiscuous mode
[  393.818725][ T9061] device ip6gretap2 left promiscuous mode
[  393.839939][ T9061] 8021q: adding VLAN 0 to HW filter on device bond6
[  394.106142][ T9070] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[  394.113153][ T9070] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  394.164125][ T9070] vhci_hcd vhci_hcd.0: Device attached
[  394.947149][ T9071] vhci_hcd: connection closed
[  395.161276][ T5264] vhci_hcd: stop threads
[  395.549177][ T5264] vhci_hcd: release socket
[  395.559521][ T5274] net_ratelimit: 5 callbacks suppressed
[  395.559535][ T5274] bond1: (slave macvlan2): failed to get link speed/duplex
[  395.608671][ T4335] usb 41-1: new high-speed USB device number 2 using vhci_hcd
[  395.651305][ T5264] vhci_hcd: disconnect device
[  395.769696][ T5264] bond1: (slave macvlan2): failed to get link speed/duplex
[  395.878685][ T5274] bond1: (slave macvlan2): failed to get link speed/duplex
[  396.028672][ T5274] bond1: (slave macvlan2): failed to get link speed/duplex
[  396.149015][ T5274] bond1: (slave macvlan2): failed to get link speed/duplex
[  396.789718][   T47] bond1: (slave macvlan2): failed to get link speed/duplex
[  397.389864][ T5264] bond1: (slave macvlan2): failed to get link speed/duplex
[  397.518761][ T5274] bond1: (slave macvlan2): failed to get link speed/duplex
[  397.929425][ T5231] bond1: (slave macvlan2): failed to get link speed/duplex
[  398.060902][ T5274] bond1: (slave macvlan2): failed to get link speed/duplex
[  398.645118][   T27] kauditd_printk_skb: 18 callbacks suppressed
[  398.645135][   T27] audit: type=1326 audit(1752667862.389:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9126 comm="syz.6.1284" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f58caf8e929 code=0x0
[  399.627633][ T9143] loop4: detected capacity change from 0 to 128
[  399.667003][ T9141] x_tables: arp_tables: CLASSIFY target: used from hooks INPUT, but only usable from FORWARD/OUTPUT
[  399.765753][   T27] audit: type=1800 audit(1752667863.509:394): pid=9149 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1290" name="bus" dev="loop4" ino=1048603 res=0 errno=0
[  399.795723][ T9150] loop1: detected capacity change from 0 to 256
[  399.875353][ T9150] FAT-fs (loop1): bogus number of FAT sectors
[  399.896511][ T9140] mmap: syz.6.1288 (9140) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  399.926313][ T9150] FAT-fs (loop1): Can't find a valid FAT filesystem
[  400.730773][ T4375] net_ratelimit: 12 callbacks suppressed
[  401.028725][ T4335] vhci_hcd: vhci_device speed not set
[  401.055471][ T9149] syz.4.1290: attempt to access beyond end of device
[  401.055471][ T9149] loop4: rw=2049, sector=281, nr_sectors = 760 limit=128
[  401.080736][ T4375] bond1: (slave macvlan2): failed to get link speed/duplex
[  401.191254][ T4375] bond1: (slave macvlan2): failed to get link speed/duplex
[  401.309806][ T5274] bond1: (slave macvlan2): failed to get link speed/duplex
[  401.429851][ T5274] bond1: (slave macvlan2): failed to get link speed/duplex
[  401.458462][ T9171] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  401.483435][ T9171] bridge0: port 2(bridge_slave_1) entered disabled state
[  401.491129][ T9171] bridge0: port 1(bridge_slave_0) entered disabled state
[  402.382298][ T4375] bond1: (slave macvlan2): failed to get link speed/duplex
[  402.549043][ T4423] bond1: (slave macvlan2): failed to get link speed/duplex
[  402.642141][ T9193] random: crng reseeded on system resumption
[  402.659871][ T4314] bond1: (slave macvlan2): failed to get link speed/duplex
[  402.789001][ T5274] bond1: (slave macvlan2): failed to get link speed/duplex
[  402.899644][ T5274] bond1: (slave macvlan2): failed to get link speed/duplex
[  403.038792][ T4423] bond1: (slave macvlan2): failed to get link speed/duplex
[  403.103991][ T9204] loop6: detected capacity change from 0 to 256
[  403.152251][ T9204] FAT-fs (loop6): Directory bread(block 64) failed
[  403.170462][ T9204] FAT-fs (loop6): Directory bread(block 65) failed
[  403.196131][ T9204] FAT-fs (loop6): Directory bread(block 66) failed
[  403.392444][ T9204] FAT-fs (loop6): Directory bread(block 67) failed
[  403.415640][ T9204] FAT-fs (loop6): Directory bread(block 68) failed
[  403.443091][ T9204] FAT-fs (loop6): Directory bread(block 69) failed
[  403.468730][ T9204] FAT-fs (loop6): Directory bread(block 70) failed
[  403.719693][ T9204] FAT-fs (loop6): Directory bread(block 71) failed
[  403.728061][ T9204] FAT-fs (loop6): Directory bread(block 72) failed
[  403.756618][ T9204] FAT-fs (loop6): Directory bread(block 73) failed
[  405.761682][ T4423] net_ratelimit: 10 callbacks suppressed
[  405.771270][ T4423] bond1: (slave macvlan2): failed to get link speed/duplex
[  405.891654][   T47] bond1: (slave macvlan2): failed to get link speed/duplex
[  406.059264][   T47] bond1: (slave macvlan2): failed to get link speed/duplex
[  406.327269][ T5274] bond1: (slave macvlan2): failed to get link speed/duplex
[  406.487806][ T5226] bond1: (slave macvlan2): failed to get link speed/duplex
[  406.609417][ T5274] bond1: (slave macvlan2): failed to get link speed/duplex
[  406.749766][   T47] bond1: (slave macvlan2): failed to get link speed/duplex
[  406.888710][   T47] bond1: (slave macvlan2): failed to get link speed/duplex
[  407.038832][ T5226] bond1: (slave macvlan2): failed to get link speed/duplex
[  407.169705][ T5264] bond1: (slave macvlan2): failed to get link speed/duplex
[  410.813938][ T5264] net_ratelimit: 15 callbacks suppressed
[  410.813959][ T5264] bond1: (slave macvlan2): failed to get link speed/duplex
[  411.264943][ T5226] bond1: (slave macvlan2): failed to get link speed/duplex
[  411.319355][ T9285] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1334'.
[  411.388058][ T9285] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1334'.
[  411.412680][ T9277] syz.2.1332 (9277) used greatest stack depth: 18176 bytes left
[  411.590745][   T41] bond1: (slave macvlan2): failed to get link speed/duplex
[  411.632355][ T9292] loop1: detected capacity change from 0 to 512
[  411.708803][ T5226] bond1: (slave macvlan2): failed to get link speed/duplex
[  411.726816][ T9292] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  411.791205][ T9292] EXT4-fs (loop1): 1 truncate cleaned up
[  411.796933][ T9292] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  411.853056][ T5226] bond1: (slave macvlan2): failed to get link speed/duplex
[  411.876878][ T9292] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5915: Out of memory
[  411.906248][ T9292] EXT4-fs (loop1): Remounting filesystem read-only
[  411.938707][ T9292] EXT4-fs error (device loop1): ext4_dirty_inode:6119: inode #15: comm syz.1.1336: mark_inode_dirty error
[  411.978838][ T5231] bond1: (slave macvlan2): failed to get link speed/duplex
[  411.993845][ T9292] EXT4-fs (loop1): Remounting filesystem read-only
[  412.018699][ T9292] EXT4-fs error (device loop1): ext4_get_max_inline_size:116: inode #15: comm syz.1.1336: can't get inode location 15
[  412.047866][ T9292] EXT4-fs (loop1): Remounting filesystem read-only
[  412.098687][ T5226] bond1: (slave macvlan2): failed to get link speed/duplex
[  412.138402][ T4276] EXT4-fs error (device loop1): ext4_readdir:263: inode #2: block 13: comm syz-executor: path /262/file2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  412.166507][ T4276] EXT4-fs (loop1): Remounting filesystem read-only
[  412.208711][ T5264] bond1: (slave macvlan2): failed to get link speed/duplex
[  412.243885][ T4276] EXT4-fs (loop1): unmounting filesystem.
[  412.389242][ T5264] bond1: (slave macvlan2): failed to get link speed/duplex
[  412.506676][ T9307] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  412.551883][ T9307] bridge0: port 2(bridge_slave_1) entered disabled state
[  412.559542][ T9307] bridge0: port 1(bridge_slave_0) entered disabled state
[  413.529745][ T5273] bond1: (slave macvlan2): failed to get link speed/duplex
[  413.638284][ T9316] netlink: 'syz.2.1348': attribute type 1 has an invalid length.
[  413.661029][ T9316] device bond4 entered promiscuous mode
[  413.711454][ T9316] bond4: (slave ip6gretap1): making interface the new active one
[  413.719489][ T9316] device ip6gretap1 entered promiscuous mode
[  413.727188][ T9316] bond4: (slave ip6gretap1): Enslaving as an active interface with an up link
[  413.800282][ T9316] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1348'.
[  413.812042][ T9316] device bond4 left promiscuous mode
[  413.817388][ T9316] device ip6gretap1 left promiscuous mode
[  413.830164][ T9316] 8021q: adding VLAN 0 to HW filter on device bond4
[  414.099465][   T41] tipc: Left network mode
[  414.421323][   T41] bond2: (slave ip6gre1): Releasing backup interface
[  414.428097][   T41] device ip6gre1 left promiscuous mode
[  414.481418][   T41] bond2: Destroying bond
[  414.550205][ T4280] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  414.560999][ T4280] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  414.570222][ T4280] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  414.581089][ T4280] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  414.589319][ T4280] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  414.597031][ T4280] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  415.128375][   T41] bond2 (unregistering): Released all slaves
[  415.826233][ T9331] chnl_net:caif_netlink_parms(): no params data found
[  415.918798][ T5234] net_ratelimit: 8 callbacks suppressed
[  415.918816][ T5234] bond1: (slave macvlan2): failed to get link speed/duplex
[  415.939916][ T9351] loop4: detected capacity change from 0 to 512
[  415.978409][ T9351] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  416.055033][ T9351] EXT4-fs (loop4): 1 truncate cleaned up
[  416.075264][ T9351] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  416.167185][ T9351] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5915: Out of memory
[  416.192006][ T9351] EXT4-fs (loop4): Remounting filesystem read-only
[  416.206342][ T9351] EXT4-fs error (device loop4): ext4_dirty_inode:6119: inode #15: comm syz.4.1354: mark_inode_dirty error
[  416.267035][ T9351] EXT4-fs (loop4): Remounting filesystem read-only
[  416.306271][ T9351] EXT4-fs error (device loop4): ext4_get_max_inline_size:116: inode #15: comm syz.4.1354: can't get inode location 15
[  416.320297][ T5234] bond1: (slave macvlan2): failed to get link speed/duplex
[  416.339875][ T9351] EXT4-fs (loop4): Remounting filesystem read-only
[  416.346626][ T9331] bridge0: port 1(bridge_slave_0) entered blocking state
[  416.356542][ T9331] bridge0: port 1(bridge_slave_0) entered disabled state
[  416.365484][ T9331] device bridge_slave_0 entered promiscuous mode
[  416.447454][ T4265] EXT4-fs error (device loop4): ext4_readdir:263: inode #2: block 13: comm syz-executor: path /263/file2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  416.470998][ T9331] bridge0: port 2(bridge_slave_1) entered blocking state
[  416.480971][ T9331] bridge0: port 2(bridge_slave_1) entered disabled state
[  416.488872][ T4265] EXT4-fs (loop4): Remounting filesystem read-only
[  416.497578][ T9331] device bridge_slave_1 entered promiscuous mode
[  416.539755][ T5264] bond1: (slave macvlan2): failed to get link speed/duplex
[  416.579974][   T41] device hsr_slave_0 left promiscuous mode
[  416.587663][   T41] device hsr_slave_1 left promiscuous mode
[  416.592267][ T4265] EXT4-fs (loop4): unmounting filesystem.
[  416.599877][   T41] device bridge_slave_1 left promiscuous mode
[  416.606281][   T41] bridge0: port 2(bridge_slave_1) entered disabled state
[  416.620190][   T41] device bridge_slave_0 left promiscuous mode
[  416.626605][   T41] bridge0: port 1(bridge_slave_0) entered disabled state
[  416.646272][ T4277] Bluetooth: hci4: command 0x0409 tx timeout
[  416.717457][   T41] bond1 (unregistering): (slave macvlan2): Removing an active aggregator
[  416.727297][   T41] bond1 (unregistering): (slave macvlan2): Releasing backup interface
[  416.886138][   T41] bond1 (unregistering): Released all slaves
[  417.432711][   T41] team0 (unregistering): Port device team_slave_1 removed
[  417.505648][   T41] team0 (unregistering): Port device team_slave_0 removed
[  417.564549][   T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  417.655646][ T9374] autofs4:pid:9374:autofs_fill_super: called with bogus options
[  417.924350][   T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  418.688045][   T41] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  418.729725][ T4277] Bluetooth: hci4: command 0x041b tx timeout
[  419.863204][   T41] bond0 (unregistering): Released all slaves
[  419.957734][ T9331] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  419.970049][ T9331] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  420.769771][ T9331] team0: Port device team_slave_0 added
[  420.783713][ T9331] team0: Port device team_slave_1 added
[  420.816749][ T9331] batman_adv: batadv0: Adding interface: batadv_slave_0
[  420.827087][ T9331] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  420.862464][ T9331] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  420.881749][ T9331] batman_adv: batadv0: Adding interface: batadv_slave_1
[  420.891100][ T9331] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  420.915357][ T4277] Bluetooth: hci4: command 0x040f tx timeout
[  420.950620][ T9331] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  421.148174][ T9331] device hsr_slave_0 entered promiscuous mode
[  421.171402][ T9331] device hsr_slave_1 entered promiscuous mode
[  421.188713][ T9331] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  421.196350][ T9331] Cannot create hsr debugfs directory
[  421.649832][ T9331] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  421.671408][ T9331] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  421.704438][ T9331] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  421.874172][   T41] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  421.904410][ T9331] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  422.036230][   T41] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  422.193134][   T41] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  422.296590][   T41] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  422.455034][ T4280] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  422.466294][ T4280] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  422.480059][ T4280] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  422.488289][ T4280] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  422.496426][ T4280] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  422.498821][ T9331] 8021q: adding VLAN 0 to HW filter on device bond0
[  422.510512][ T4275] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  422.625680][ T5240] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  422.637255][ T5240] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  422.662880][ T9331] 8021q: adding VLAN 0 to HW filter on device team0
[  422.700367][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  422.830798][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  422.840416][   T47] bridge0: port 1(bridge_slave_0) entered blocking state
[  422.847621][   T47] bridge0: port 1(bridge_slave_0) entered forwarding state
[  422.855665][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  422.865482][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  422.874250][   T47] bridge0: port 2(bridge_slave_1) entered blocking state
[  422.881428][   T47] bridge0: port 2(bridge_slave_1) entered forwarding state
[  422.890141][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  422.976885][ T4275] Bluetooth: hci4: command 0x0419 tx timeout
[  423.182200][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  423.957499][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  423.971275][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  423.994613][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  424.560116][ T4275] Bluetooth: hci0: command 0x0409 tx timeout
[  424.628918][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  424.663135][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  424.679601][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  424.695919][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  424.771783][ T9331] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  424.870387][ T9331] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  424.889710][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  424.906268][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  424.925072][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  425.005222][ T9412] chnl_net:caif_netlink_parms(): no params data found
[  425.250606][ T9412] bridge0: port 1(bridge_slave_0) entered blocking state
[  425.257982][ T9412] bridge0: port 1(bridge_slave_0) entered disabled state
[  425.909648][ T9412] device bridge_slave_0 entered promiscuous mode
[  425.966682][ T9412] bridge0: port 2(bridge_slave_1) entered blocking state
[  425.994616][ T9412] bridge0: port 2(bridge_slave_1) entered disabled state
[  426.061036][ T9412] device bridge_slave_1 entered promiscuous mode
[  426.153303][ T9412] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  426.198984][ T9412] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  426.343588][ T9412] team0: Port device team_slave_0 added
[  426.374226][ T9412] team0: Port device team_slave_1 added
[  426.442375][ T9412] batman_adv: batadv0: Adding interface: batadv_slave_0
[  426.454896][ T9412] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  426.498707][ T9412] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  426.513179][ T9412] batman_adv: batadv0: Adding interface: batadv_slave_1
[  426.520757][ T9412] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  426.584101][ T9412] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  426.629156][ T4277] Bluetooth: hci0: command 0x041b tx timeout
[  426.797680][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  426.814104][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  426.852683][ T9331] 8021q: adding VLAN 0 to HW filter on device batadv0
[  426.889385][ T9412] device hsr_slave_0 entered promiscuous mode
[  426.897710][ T9412] device hsr_slave_1 entered promiscuous mode
[  426.934557][ T9412] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  426.945432][ T9412] Cannot create hsr debugfs directory
[  427.304983][ T9472] IPv6: sit1: Disabled Multicast RS
[  427.332517][   T41] tipc: Left network mode
[  428.574580][ T4275] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  428.584856][ T4275] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  428.763446][ T4280] Bluetooth: hci0: command 0x040f tx timeout
[  428.821088][ T4275] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  428.829585][ T4275] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  428.837494][ T4275] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  428.844932][ T4275] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  429.289342][   T41] bond3: (slave ip6gretap1): Removing an active aggregator
[  429.310222][   T41] bond3: (slave ip6gretap1): Releasing backup interface
[  429.346941][   T41] device ip6gretap1 left promiscuous mode
[  429.366741][   T41] bond4: (slave ip6gre2): Releasing backup interface
[  429.385396][   T41] device ip6gre2 left promiscuous mode
[  429.500596][   T41] bond4: Destroying bond
[  429.667171][   T41] bond4 (unregistering): Released all slaves
[  429.693959][   T41] bond6: (slave ip6gretap2): Releasing active interface
[  429.723607][ T9492] netlink: 56 bytes leftover after parsing attributes in process `syz.5.1382'.
[  429.733728][ T9492] tc_dump_action: action bad kind
[  429.858012][ T9412] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  429.923435][ T9412] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  430.007416][ T9412] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  430.041056][ T9412] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  430.994256][ T4275] Bluetooth: hci0: command 0x0419 tx timeout
[  431.146579][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  431.163856][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  431.263933][ T5274] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  431.275270][ T5274] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  431.346992][ T9331] device veth0_vlan entered promiscuous mode
[  431.363542][ T4277] Bluetooth: hci5: command 0x0409 tx timeout
[  431.368659][ T5274] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  431.383000][ T5274] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  431.520576][   T41] bond1: (slave gretap1): Releasing backup interface
[  431.571816][   T41] bond5: (slave gretap2): Releasing active interface
[  431.609329][ T9331] device veth1_vlan entered promiscuous mode
[  432.056692][   T62] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  432.065598][   T62] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  432.082559][   T62] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  432.093905][   T62] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  432.107635][ T9331] device veth0_macvtap entered promiscuous mode
[  432.150428][   T62] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  432.182866][ T9412] 8021q: adding VLAN 0 to HW filter on device bond0
[  432.191360][ T9480] chnl_net:caif_netlink_parms(): no params data found
[  432.237898][   T41] device hsr_slave_0 left promiscuous mode
[  432.246485][   T41] device hsr_slave_1 left promiscuous mode
[  432.262443][   T41] device bridge_slave_1 left promiscuous mode
[  432.269330][   T41] bridge0: port 2(bridge_slave_1) entered disabled state
[  432.304345][   T41] device bridge_slave_0 left promiscuous mode
[  432.324036][   T41] bridge0: port 1(bridge_slave_0) entered disabled state
[  432.401465][   T41] device veth1_macvtap left promiscuous mode
[  432.407758][   T41] device veth0_macvtap left promiscuous mode
[  432.414332][   T41] device veth1_vlan left promiscuous mode
[  432.421232][   T41] device veth0_vlan left promiscuous mode
[  433.029400][   T41] bond6 (unregistering): Released all slaves
[  433.067878][   T41] bond5 (unregistering): Released all slaves
[  433.424069][   T41] bond3 (unregistering): Released all slaves
[  433.447736][ T4275] Bluetooth: hci5: command 0x041b tx timeout
[  433.649389][   T41] bond1 (unregistering): (slave bond2): Releasing backup interface
[  433.660268][   T41] bond2 (unregistering): Released all slaves
[  433.672103][   T41] bond1 (unregistering): Released all slaves
[  433.758009][   T41] team0 (unregistering): Port device geneve0 removed
[  434.183001][   T41] team0 (unregistering): Port device team_slave_1 removed
[  434.239655][   T41] team0 (unregistering): Port device team_slave_0 removed
[  434.288676][   T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  434.341257][   T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  434.865666][   T41] bond0 (unregistering): Released all slaves
[  434.955221][ T9331] device veth1_macvtap entered promiscuous mode
[  434.986204][ T9559] netlink: 'syz.5.1391': attribute type 1 has an invalid length.
[  435.049781][ T9560] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  435.123580][ T9561] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1391'.
[  435.141018][ T9412] 8021q: adding VLAN 0 to HW filter on device team0
[  435.156382][ T5274] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  435.170594][ T5274] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  435.192835][ T9331] batman_adv: batadv0: Interface activated: batadv_slave_0
[  435.230714][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  435.263361][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  435.272603][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  435.281815][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  435.291666][ T4314] bridge0: port 1(bridge_slave_0) entered blocking state
[  435.298848][ T4314] bridge0: port 1(bridge_slave_0) entered forwarding state
[  435.307118][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  435.316509][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  435.325305][ T4314] bridge0: port 2(bridge_slave_1) entered blocking state
[  435.332453][ T4314] bridge0: port 2(bridge_slave_1) entered forwarding state
[  435.343815][ T9331] batman_adv: batadv0: Interface activated: batadv_slave_1
[  435.362300][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  435.371301][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  435.380567][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  435.403377][ T9331] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  435.412768][ T9331] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  435.422242][ T9331] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  435.431493][ T9331] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  435.467728][ T4423] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  435.490459][ T9480] bridge0: port 1(bridge_slave_0) entered blocking state
[  435.500449][ T9480] bridge0: port 1(bridge_slave_0) entered disabled state
[  435.511443][ T4277] Bluetooth: hci5: command 0x040f tx timeout
[  435.518157][ T9480] device bridge_slave_0 entered promiscuous mode
[  435.553360][ T5274] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  435.574118][ T5274] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  435.599392][ T5274] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  435.608042][ T5274] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  435.616985][ T5274] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  435.626740][ T5274] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  435.635874][ T5274] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  435.644428][ T5274] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  435.666127][ T9480] bridge0: port 2(bridge_slave_1) entered blocking state
[  435.673730][ T9480] bridge0: port 2(bridge_slave_1) entered disabled state
[  435.682143][ T9480] device bridge_slave_1 entered promiscuous mode
[  435.705513][ T9412] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  435.720378][ T9412] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  435.730940][ T5274] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  435.742994][ T5274] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  435.771420][ T9480] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  435.811113][ T9480] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  435.924886][   T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  435.938054][   T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  435.956470][ T9480] team0: Port device team_slave_0 added
[  435.998613][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  436.023091][ T9480] team0: Port device team_slave_1 added
[  436.082067][ T9480] batman_adv: batadv0: Adding interface: batadv_slave_0
[  436.098758][ T9480] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  436.148314][ T9480] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  436.176199][ T9480] batman_adv: batadv0: Adding interface: batadv_slave_1
[  436.189220][ T9480] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  436.248811][ T9480] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  436.271340][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  436.293807][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  436.329931][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  436.373828][ T9480] device hsr_slave_0 entered promiscuous mode
[  436.397241][ T9480] device hsr_slave_1 entered promiscuous mode
[  436.414757][ T9480] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  436.423516][ T9480] Cannot create hsr debugfs directory
[  436.438123][ T4423] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  436.451487][ T4423] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  436.539447][ T9412] 8021q: adding VLAN 0 to HW filter on device batadv0
[  437.588753][ T4277] Bluetooth: hci5: command 0x0419 tx timeout
[  437.897114][ T9480] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  438.167720][ T9480] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  438.743668][ T9480] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  438.779168][ T9480] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  439.990725][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  439.997103][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  440.075480][ T9480] 8021q: adding VLAN 0 to HW filter on device bond0
[  440.288229][ T5234] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  440.301860][ T5234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  440.714588][ T9480] 8021q: adding VLAN 0 to HW filter on device team0
[  441.143732][ T9480] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  441.164415][ T9480] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  441.436531][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  441.489110][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  441.523310][ T4375] bridge0: port 1(bridge_slave_0) entered blocking state
[  441.530523][ T4375] bridge0: port 1(bridge_slave_0) entered forwarding state
[  441.582486][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  441.619151][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  441.639033][ T4375] bridge0: port 2(bridge_slave_1) entered blocking state
[  441.646310][ T4375] bridge0: port 2(bridge_slave_1) entered forwarding state
[  441.710189][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  441.736161][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  441.787978][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  441.800038][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  441.809435][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  441.818386][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  441.828122][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  441.837467][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  441.847010][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  441.869582][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  442.285211][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  442.487114][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  442.558267][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  442.675178][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  442.687203][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  442.742708][   T62] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  442.767180][   T62] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  442.865431][ T9412] device veth0_vlan entered promiscuous mode
[  442.889504][   T62] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  442.912056][   T62] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  443.021654][ T9412] device veth1_vlan entered promiscuous mode
[  444.604230][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  444.819520][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  444.939777][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  444.982871][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  445.037006][ T9412] device veth0_macvtap entered promiscuous mode
[  445.120959][ T9669] netlink: 15743 bytes leftover after parsing attributes in process `syz.5.1409'.
[  445.139341][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  445.185426][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  445.204905][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  445.324305][ T9480] 8021q: adding VLAN 0 to HW filter on device batadv0
[  445.366317][ T9412] device veth1_macvtap entered promiscuous mode
[  445.462607][ T9412] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  445.683735][ T9412] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  445.950219][ T9412] batman_adv: batadv0: Interface activated: batadv_slave_0
[  446.264883][ T5240] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  446.279623][ T5240] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  446.299434][ T5240] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  446.329991][ T9412] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  446.383529][ T9412] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  446.422737][ T9692] IPv4: Oversized IP packet from 127.202.26.0
[  446.441899][ T9412] batman_adv: batadv0: Interface activated: batadv_slave_1
[  446.451158][ T9688] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1414'.
[  446.527582][ T5240] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  446.578449][ T5240] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  447.253234][ T9412] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  447.262361][ T9412] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  447.271891][ T9412] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  447.280888][ T9412] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  447.522613][ T5240] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  447.555399][ T5240] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  447.653022][ T5240] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  448.305578][ T5240] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  448.387795][ T5240] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  448.559689][ T5240] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  448.844352][ T5240] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  448.859085][ T5240] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  449.055669][ T5234] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  449.077323][ T5234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  449.101314][ T5234] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  449.123494][ T5234] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  449.160798][ T9480] device veth0_vlan entered promiscuous mode
[  449.283933][ T9480] device veth1_vlan entered promiscuous mode
[  449.347328][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  449.356760][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  449.392546][   T41] device hsr_slave_1 left promiscuous mode
[  451.147247][   T41] bond1 (unregistering): Released all slaves
[  452.728811][ T9752] loop7: detected capacity change from 0 to 2048
[  453.037540][ T9752] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  454.555899][ T9331] EXT4-fs (loop7): unmounting filesystem.
[  456.490828][   T41] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  456.840351][   T41] bond0 (unregistering): Released all slaves
[  456.916670][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  456.928788][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  456.970510][ T9779] bridge0: port 2(bridge_slave_1) entered disabled state
[  456.978030][ T9779] bridge0: port 1(bridge_slave_0) entered disabled state
[  457.022344][ T9781] device bridge_slave_1 left promiscuous mode
[  457.042371][ T9781] bridge0: port 2(bridge_slave_1) entered disabled state
[  457.073991][ T9781] device bridge_slave_0 left promiscuous mode
[  457.080327][ T9781] bridge0: port 1(bridge_slave_0) entered disabled state
[  457.165937][ T9784] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1430'.
[  457.190445][ T9786] sch_tbf: burst 88 is lower than device veth7 mtu (1514) !
[  457.201432][ T9480] device veth0_macvtap entered promiscuous mode
[  457.235000][ T9480] device veth1_macvtap entered promiscuous mode
[  457.323775][ T9480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  457.334939][ T9480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  457.351457][ T9480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  457.363323][ T9480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  457.383556][ T9480] batman_adv: batadv0: Interface activated: batadv_slave_0
[  457.394686][ T5231] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  457.405968][ T5231] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  457.420249][ T5231] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  457.435003][ T9480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  457.447800][ T9480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  457.464120][ T9480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  457.474987][ T9480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  457.494408][ T9480] batman_adv: batadv0: Interface activated: batadv_slave_1
[  457.512957][ T5231] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  457.526075][ T5231] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  457.543930][ T9480] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  457.554107][ T9480] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  457.565327][ T9480] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  457.576594][ T9480] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  457.771532][ T5231] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  457.792667][ T5231] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  457.811478][ T4423] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  457.835794][ T5264] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  457.848605][ T4423] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  457.862958][ T5264] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  458.144988][ T9814] netlink: 44 bytes leftover after parsing attributes in process `syz.8.1445'.
[  458.220818][ T9814] bridge0: port 2(bridge_slave_1) entered disabled state
[  458.228234][ T9814] bridge0: port 1(bridge_slave_0) entered disabled state
[  463.058743][   T27] audit: type=1326 audit(2000000013.290:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9919 comm="syz.7.1451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96d118e929 code=0x7ffc0000
[  463.138789][   T27] audit: type=1326 audit(2000000013.290:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9919 comm="syz.7.1451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f96d118e929 code=0x7ffc0000
[  463.332209][   T27] audit: type=1326 audit(2000000013.290:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9919 comm="syz.7.1451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96d118e929 code=0x7ffc0000
[  463.456154][   T27] audit: type=1326 audit(2000000013.290:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9919 comm="syz.7.1451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96d118e929 code=0x7ffc0000
[  463.533865][   T27] audit: type=1326 audit(2000000013.300:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9919 comm="syz.7.1451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f96d118e929 code=0x7ffc0000
[  463.692829][   T27] audit: type=1326 audit(2000000013.300:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9919 comm="syz.7.1451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96d118e929 code=0x7ffc0000
[  463.840885][   T27] audit: type=1326 audit(2000000013.300:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9919 comm="syz.7.1451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96d118e929 code=0x7ffc0000
[  464.986464][   T27] audit: type=1326 audit(2000000013.300:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9919 comm="syz.7.1451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f96d118e929 code=0x7ffc0000
[  465.198730][   T27] audit: type=1326 audit(2000000013.300:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9919 comm="syz.7.1451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96d118e929 code=0x7ffc0000
[  465.221604][   T27] audit: type=1326 audit(2000000013.300:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9919 comm="syz.7.1451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96d118e929 code=0x7ffc0000
[  466.658590][ T5100] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  467.600363][ T5100] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  467.682697][ T5100] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  467.736182][ T5100] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  467.788695][ T5100] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  467.803224][ T9994] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[  468.081776][   T27] kauditd_printk_skb: 22 callbacks suppressed
[  468.081794][   T27] audit: type=1326 audit(2000000018.320:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10009 comm="syz.5.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f9359b8e929 code=0x7ffc0000
[  468.169274][T10011] capability: warning: `syz.2.1466' uses 32-bit capabilities (legacy support in use)
[  468.244406][   T27] audit: type=1326 audit(2000000018.320:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10009 comm="syz.5.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9359b8e929 code=0x7ffc0000
[  468.431541][   T27] audit: type=1326 audit(2000000018.320:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10009 comm="syz.5.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f9359b8e929 code=0x7ffc0000
[  468.458853][ T9567] usb 10-1: USB disconnect, device number 2
[  468.592472][   T27] audit: type=1326 audit(2000000018.320:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10009 comm="syz.5.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9359b8e929 code=0x7ffc0000
[  468.655943][   T27] audit: type=1326 audit(2000000018.320:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10009 comm="syz.5.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9359b8e929 code=0x7ffc0000
[  468.684363][   T27] audit: type=1326 audit(2000000018.320:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10009 comm="syz.5.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f9359b8e929 code=0x7ffc0000
[  468.846511][   T27] audit: type=1326 audit(2000000018.320:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10009 comm="syz.5.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9359b8e929 code=0x7ffc0000
[  468.920221][   T27] audit: type=1326 audit(2000000018.320:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10009 comm="syz.5.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9359b8e929 code=0x7ffc0000
[  468.943539][T10022] netlink: 'syz.5.1468': attribute type 4 has an invalid length.
[  469.759343][   T27] audit: type=1326 audit(2000000018.320:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10009 comm="syz.5.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f9359b8e929 code=0x7ffc0000
[  469.959790][   T27] audit: type=1326 audit(2000000018.320:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10009 comm="syz.5.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9359b8e929 code=0x7ffc0000
[  472.975770][T10063] overlayfs: failed to clone upperpath
[  474.048551][   T27] kauditd_printk_skb: 14 callbacks suppressed
[  474.048569][   T27] audit: type=1326 audit(2000000024.260:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10065 comm="syz.8.1480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe48638e929 code=0x7ffc0000
[  475.042458][   T27] audit: type=1326 audit(2000000024.270:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10065 comm="syz.8.1480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7fe48638e929 code=0x7ffc0000
[  475.129555][   T27] audit: type=1326 audit(2000000024.270:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10065 comm="syz.8.1480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe48638e929 code=0x7ffc0000
[  475.242809][   T27] audit: type=1326 audit(2000000024.270:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10065 comm="syz.8.1480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe48638e929 code=0x7ffc0000
[  475.915106][   T27] audit: type=1326 audit(2000000024.280:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10065 comm="syz.8.1480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fe48638e929 code=0x7ffc0000
[  476.227918][   T27] audit: type=1326 audit(2000000024.280:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10065 comm="syz.8.1480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe48638e929 code=0x7ffc0000
[  476.478996][   T27] audit: type=1326 audit(2000000024.280:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10065 comm="syz.8.1480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe48638e929 code=0x7ffc0000
[  476.548640][   T27] audit: type=1326 audit(2000000024.280:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10065 comm="syz.8.1480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fe48638e929 code=0x7ffc0000
[  476.692082][   T27] audit: type=1326 audit(2000000024.280:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10065 comm="syz.8.1480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe48638e929 code=0x7ffc0000
[  476.771950][   T27] audit: type=1326 audit(2000000024.280:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10065 comm="syz.8.1480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe48638e929 code=0x7ffc0000
[  476.890209][T10110] loop9: detected capacity change from 0 to 512
[  477.117878][T10114] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  477.134220][T10110] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  477.154828][T10110] ext4 filesystem being mounted at /11/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  480.192180][ T9480] EXT4-fs (loop9): unmounting filesystem.
[  481.598610][T10028] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  482.650310][T10028] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  482.679638][T10028] usb 10-1: config 0 has no interfaces?
[  482.685679][T10028] usb 10-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  482.698629][T10028] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  482.727264][T10028] usb 10-1: config 0 descriptor??
[  483.760730][   T27] kauditd_printk_skb: 20 callbacks suppressed
[  483.760747][   T27] audit: type=1326 audit(2000000034.000:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10200 comm="syz.2.1513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c7118e929 code=0x7ffc0000
[  483.986730][T10028] usb 10-1: USB disconnect, device number 3
[  484.091297][   T27] audit: type=1326 audit(2000000034.000:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10200 comm="syz.2.1513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c7118e929 code=0x7ffc0000
[  484.144138][   T27] audit: type=1326 audit(2000000034.000:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10200 comm="syz.2.1513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f7c7118e929 code=0x7ffc0000
[  484.198689][   T27] audit: type=1326 audit(2000000034.000:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10200 comm="syz.2.1513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c7118e929 code=0x7ffc0000
[  484.231452][   T27] audit: type=1326 audit(2000000034.000:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10200 comm="syz.2.1513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c7118e929 code=0x7ffc0000
[  484.274756][   T27] audit: type=1326 audit(2000000034.140:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10200 comm="syz.2.1513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f7c7118e929 code=0x7ffc0000
[  484.319001][   T27] audit: type=1326 audit(2000000034.140:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10200 comm="syz.2.1513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c7118e929 code=0x7ffc0000
[  484.358648][ T5100] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  484.399656][   T27] audit: type=1326 audit(2000000034.140:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10200 comm="syz.2.1513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c7118e929 code=0x7ffc0000
[  484.462878][   T27] audit: type=1326 audit(2000000034.140:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10200 comm="syz.2.1513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f7c7118e929 code=0x7ffc0000
[  484.522957][   T27] audit: type=1326 audit(2000000034.140:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10200 comm="syz.2.1513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f7c711858e7 code=0x7ffc0000
[  484.561422][ T5100] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  484.612115][ T5100] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  484.655901][ T5100] usb 9-1: New USB device found, idVendor=046d, idProduct=c534, bcdDevice= 0.00
[  484.686409][ T5100] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  484.717624][ T5100] usb 9-1: config 0 descriptor??
[  485.317898][ T5100] usbhid 9-1:0.0: can't add hid device: -71
[  485.343395][ T5100] usbhid: probe of 9-1:0.0 failed with error -71
[  485.665652][ T5100] usb 9-1: USB disconnect, device number 2
[  489.221086][T10295] loop7: detected capacity change from 0 to 128
[  490.297441][T10295] syz.7.1535: attempt to access beyond end of device
[  490.297441][T10295] loop7: rw=2049, sector=145, nr_sectors = 89 limit=128
[  490.468937][T10295] syz.7.1535: attempt to access beyond end of device
[  490.468937][T10295] loop7: rw=2049, sector=241, nr_sectors = 136 limit=128
[  490.897149][ T5264] kworker/u4:25: attempt to access beyond end of device
[  490.897149][ T5264] loop7: rw=1, sector=241, nr_sectors = 1 limit=128
[  491.701614][ T5264] Buffer I/O error on dev loop7, logical block 241, lost async page write
[  491.844660][   T27] kauditd_printk_skb: 42 callbacks suppressed
[  491.844676][   T27] audit: type=1326 audit(2000000042.080:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10328 comm="syz.9.1543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe7b98e929 code=0x7ffc0000
[  492.054878][   T27] audit: type=1326 audit(2000000042.120:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10328 comm="syz.9.1543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe7b98e929 code=0x7ffc0000
[  492.332695][   T27] audit: type=1326 audit(2000000042.120:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10328 comm="syz.9.1543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fbe7b98e929 code=0x7ffc0000
[  493.557943][   T27] audit: type=1326 audit(2000000042.120:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10328 comm="syz.9.1543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe7b98e929 code=0x7ffc0000
[  493.581977][   T27] audit: type=1326 audit(2000000042.120:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10328 comm="syz.9.1543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe7b98e929 code=0x7ffc0000
[  493.891947][   T27] audit: type=1326 audit(2000000042.120:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10328 comm="syz.9.1543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fbe7b98e929 code=0x7ffc0000
[  493.936199][   T27] audit: type=1326 audit(2000000042.120:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10328 comm="syz.9.1543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe7b98e929 code=0x7ffc0000
[  494.041044][   T27] audit: type=1326 audit(2000000042.120:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10328 comm="syz.9.1543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe7b98e929 code=0x7ffc0000
[  495.029143][   T27] audit: type=1326 audit(2000000042.120:541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10328 comm="syz.9.1543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7fbe7b98e929 code=0x7ffc0000
[  495.157986][   T27] audit: type=1326 audit(2000000042.120:542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10328 comm="syz.9.1543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbe7b9858e7 code=0x7ffc0000
[  497.222463][T10382] netlink: 'syz.2.1555': attribute type 4 has an invalid length.
[  498.052668][T10390] xt_nat: multiple ranges no longer supported
[  501.519655][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  501.526243][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  503.039143][T10436] netlink: 'syz.2.1570': attribute type 5 has an invalid length.
[  504.182384][T10451] overlayfs: failed to clone upperpath
[  507.208122][T10483] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  511.941447][T10525] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1602'.
[  512.038108][T10527] loop8: detected capacity change from 0 to 256
[  512.087384][T10527] exFAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  512.178645][T10527] exFAT-fs (loop8): Medium has reported failures. Some data may be lost.
[  512.286693][T10527] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  512.335089][T10531] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  526.409066][ T5098] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  526.759959][ T5098] usb 8-1: Using ep0 maxpacket: 32
[  527.365436][ T5098] usb 8-1: unable to get BOS descriptor or descriptor too short
[  527.464777][ T5098] usb 8-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  527.488978][ T5098] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  527.588157][ T5098] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[  527.634947][ T5098] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  527.839617][ T5098] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  527.848225][ T5098] usb 8-1: Product: syz
[  527.852862][ T5098] usb 8-1: Manufacturer: syz
[  527.857509][ T5098] usb 8-1: SerialNumber: syz
[  527.981429][T10680] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1630'.
[  528.760684][ T5098] usb 8-1: 0:2 : does not exist
[  528.805873][ T5098] usb 8-1: USB disconnect, device number 2
[  528.881651][T10687] loop9: detected capacity change from 0 to 8
[  528.965219][T10687] SQUASHFS error: xz decompression failed, data probably corrupt
[  529.002463][T10686] loop7: detected capacity change from 0 to 512
[  529.042386][T10687] SQUASHFS error: Failed to read block 0x108: -5
[  529.085000][T10687] SQUASHFS error: Unable to read metadata cache entry [106]
[  529.093562][T10686] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  529.154438][T10687] SQUASHFS error: Unable to read inode 0x11f
[  530.096551][T10594] udevd[10594]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  530.157672][T10686] EXT4-fs (loop7): 1 truncate cleaned up
[  530.173883][T10686] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  530.401408][T10703] netlink: 'syz.5.1634': attribute type 10 has an invalid length.
[  530.538745][ T4392] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  530.897555][ T4392] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  531.467337][ T4392] usb 8-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  531.480212][ T4392] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  531.492079][ T4392] usb 8-1: config 0 descriptor??
[  532.297203][T10725] tipc: Failed to remove unknown binding: 66,1,1/0:1719862267/1719862269
[  532.347063][T10725] tipc: Failed to remove unknown binding: 66,1,1/0:1719862267/1719862269
[  532.431625][ T4392] usbhid 8-1:0.0: can't add hid device: -71
[  532.444978][T10725] tipc: Failed to remove unknown binding: 66,1,1/0:1719862267/1719862269
[  532.505265][ T4392] usbhid: probe of 8-1:0.0 failed with error -71
[  532.528692][ T4392] usb 8-1: USB disconnect, device number 3
[  532.533295][ T9331] EXT4-fs (loop7): unmounting filesystem.
[  533.458257][T10738] loop7: detected capacity change from 0 to 1024
[  534.321537][ T4270] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  534.950915][ T4270] usb 10-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e
[  534.972618][ T4270] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  535.184555][ T4270] usb 10-1: config 0 descriptor??
[  535.741536][T10756] netlink: 'syz.9.1650': attribute type 10 has an invalid length.
[  536.163075][T10756] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  536.378602][ T4270] ath6kl: Failed to submit usb control message: -71
[  536.396682][ T4270] ath6kl: unable to send the bmi data to the device: -71
[  536.405621][ T4270] ath6kl: Unable to send get target info: -71
[  536.419276][ T4270] ath6kl: Failed to init ath6kl core: -71
[  536.421130][T10785] tipc: Failed to remove unknown binding: 66,1,1/0:2240418093/2240418095
[  536.466547][ T4270] ath6kl_usb: probe of 10-1:0.0 failed with error -71
[  536.531466][ T4270] usb 10-1: USB disconnect, device number 4
[  536.566322][T10785] tipc: Failed to remove unknown binding: 66,1,1/0:2240418093/2240418095
[  536.613146][T10785] tipc: Failed to remove unknown binding: 66,1,1/0:2240418093/2240418095
[  536.790544][T10791] netlink: 28 bytes leftover after parsing attributes in process `syz.8.1655'.
[  539.093584][T10817] netlink: 'syz.9.1663': attribute type 4 has an invalid length.
[  539.335134][T10828] syz.8.1668 sent an empty control message without MSG_MORE.
[  539.348730][ T4277] Bluetooth: hci4: command 0x0406 tx timeout
[  540.830054][ T4277] Bluetooth: hci2: Unknown advertising packet type: 0x4b00
[  540.830095][ T4277] Bluetooth: hci2: Unknown advertising packet type: 0xa00
[  540.837426][ T4277] Bluetooth: hci2: Malformed LE Event: 0x0d
[  540.852508][T10840] loop9: detected capacity change from 0 to 8192
[  540.860990][T10853] netlink: 'syz.5.1675': attribute type 12 has an invalid length.
[  542.619567][T10876] xt_nfacct: accounting object `syz1' does not exists
[  543.845153][T10878] loop9: detected capacity change from 0 to 4096
[  544.310524][T10892] netlink: 'syz.2.1683': attribute type 1 has an invalid length.
[  544.437096][T10892] 8021q: adding VLAN 0 to HW filter on device bond5
[  544.554849][T10894] device wlan1 entered promiscuous mode
[  544.738785][T10896] 8021q: adding VLAN 0 to HW filter on device bond5
[  544.745946][T10896] bond5: (slave vti0): The slave device specified does not support setting the MAC address
[  544.823950][T10896] bond5: (slave vti0): Error -95 calling set_mac_address
[  544.885840][T10907] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  544.893201][T10907] IPv6: NLM_F_CREATE should be set when creating new route
[  545.224367][T10912] loop9: detected capacity change from 0 to 64
[  549.109975][T10935] netlink: 'syz.9.1702': attribute type 21 has an invalid length.
[  549.230735][T10935] netlink: 156 bytes leftover after parsing attributes in process `syz.9.1702'.
[  550.788589][ T4275] Bluetooth: hci0: command 0x0406 tx timeout
[  550.907523][T10959] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1694'.
[  551.328401][T10958] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  551.491225][T10958] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  551.528780][T10958] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  551.562813][T10958] device bridge_slave_0 left promiscuous mode
[  551.608931][T10958] bridge0: port 1(bridge_slave_0) entered disabled state
[  551.636191][T10958] device bridge_slave_1 left promiscuous mode
[  551.713869][T10958] bridge0: port 2(bridge_slave_1) entered disabled state
[  551.858108][T10958] bond0: (slave bond_slave_0): Releasing backup interface
[  552.003890][T10958] bond0: (slave bond_slave_1): Releasing backup interface
[  552.273568][T10958] team0: Port device team_slave_0 removed
[  552.351435][T10958] team0: Port device team_slave_1 removed
[  552.371184][T10958] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  552.413573][T10958] batman_adv: batadv0: Removing interface: batadv_slave_0
[  552.457309][T10958] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  552.535197][T10958] batman_adv: batadv0: Removing interface: batadv_slave_1
[  552.636606][T10958] bond0: (slave wlan1): Releasing backup interface
[  552.704578][T10961] team0: Mode changed to "activebackup"
[  552.817338][T10968] device vlan0 entered promiscuous mode
[  553.174145][T10972] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1697'.
[  555.157756][ T4277] Bluetooth: hci5: command 0x0406 tx timeout
[  555.389565][T11000] loop8: detected capacity change from 0 to 64
[  555.470127][T11000] hfs: unable to parse mount options
[  556.715725][T11008] netlink: 28 bytes leftover after parsing attributes in process `syz.7.1710'.
[  558.512154][T11047] netlink: 'syz.2.1719': attribute type 1 has an invalid length.
[  558.585278][T11047] 8021q: adding VLAN 0 to HW filter on device bond6
[  558.747807][T11051] bond6: (slave veth9): Enslaving as an active interface with a down link
[  558.763629][T11047] bond6: (slave vlan2): Opening slave failed
[  559.223333][T11070] netlink: 'syz.9.1722': attribute type 1 has an invalid length.
[  559.301517][T11070] 8021q: adding VLAN 0 to HW filter on device bond1
[  559.432316][T11076] bond1: (slave bridge1): making interface the new active one
[  559.486835][T11076] bond1: (slave bridge1): Enslaving as an active interface with an up link
[  559.521090][T11070] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1722'.
[  559.648923][   T62] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready
[  559.675927][T11079] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1724'.
[  562.885769][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  562.893371][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  565.268622][ T9567] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  565.303772][T11134] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1737'.
[  566.267467][ T9567] usb 10-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  566.267515][ T9567] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  566.267544][ T9567] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  566.267568][ T9567] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  566.269003][ T9567] usb 10-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  566.269035][ T9567] usb 10-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  566.269059][ T9567] usb 10-1: Manufacturer: syz
[  566.271042][ T9567] usb 10-1: config 0 descriptor??
[  566.417691][T11143] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1739'.
[  566.456792][T11149] lo speed is unknown, defaulting to 1000
[  566.468670][T11149] lo speed is unknown, defaulting to 1000
[  566.472159][T11149] lo speed is unknown, defaulting to 1000
[  566.688929][ T9567] appleir 0003:05AC:8243.0001: unknown main item tag 0x0
[  566.704836][ T9567] appleir 0003:05AC:8243.0001: No inputs registered, leaving
[  566.802545][ T9567] appleir 0003:05AC:8243.0001: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.9-1/input0
[  566.936262][ T5097] lo speed is unknown, defaulting to 1000
[  566.970833][T11149] infiniband syz0: set active
[  566.970983][T11149] infiniband syz0: added lo
[  567.148803][T11149] RDS/IB: syz0: added
[  567.150048][T11149] smc: adding ib device syz0 with port count 1
[  567.150250][T11149] smc:    ib device syz0 port 1 has pnetid 
[  567.154325][   T26] lo speed is unknown, defaulting to 1000
[  567.190584][T11149] lo speed is unknown, defaulting to 1000
[  567.256416][ T5097] usb 10-1: USB disconnect, device number 5
[  567.481668][T11156] fido_id[11156]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.9/usb10/report_descriptor': No such file or directory
[  567.686871][T11149] lo speed is unknown, defaulting to 1000
[  567.720126][T11171] dccp_close: ABORT with 32 bytes unread
[  568.040245][T11149] lo speed is unknown, defaulting to 1000
[  569.092109][T11149] lo speed is unknown, defaulting to 1000
[  570.846747][T11176] lo speed is unknown, defaulting to 1000
[  571.012790][   T27] kauditd_printk_skb: 58 callbacks suppressed
[  571.012804][   T27] audit: type=1326 audit(2000000121.250:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11174 comm="syz.9.1746" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbe7b98e929 code=0x0
[  572.205914][T11149] lo speed is unknown, defaulting to 1000
[  572.414574][T11220] netlink: 132 bytes leftover after parsing attributes in process `syz.8.1756'.
[  580.816310][T11300] binder: 11298:11300 ioctl c0306201 0 returned -14
[  581.055258][T11304] binder: 11298:11304 ioctl c0306201 0 returned -14
[  581.565493][T11314] loop7: detected capacity change from 0 to 164
[  583.750699][T11324] loop7: detected capacity change from 0 to 64
[  584.095254][T11330] loop9: detected capacity change from 0 to 2048
[  584.122512][T11330] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  584.293399][T11324] hfs: hfs: Invalid key length: 94
[  587.431064][T11359] xt_HMARK: proto mask must be zero with L3 mode
[  587.609741][T11361] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1786'.
[  593.148541][ T4277] Bluetooth: min 6 > max 0
[  593.450654][   T26] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  594.234815][T11455] loop9: detected capacity change from 0 to 2048
[  594.397646][   T26] usb 9-1: Using ep0 maxpacket: 16
[  594.423756][   T26] usb 9-1: config 0 has an invalid interface number: 243 but max is 0
[  594.493249][   T26] usb 9-1: config 0 has no interface number 0
[  594.499491][   T26] usb 9-1: config 0 interface 243 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 1023
[  594.510496][T11455] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  595.687098][ T4277] Bluetooth: hci2: command 0x2021 tx timeout
[  596.870774][   T26] usb 9-1: New USB device found, idVendor=06cd, idProduct=010c, bcdDevice=d0.ce
[  596.880171][   T26] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  596.895793][   T26] usb 9-1: config 0 descriptor??
[  596.905825][T11483] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1818'.
[  596.908933][   T26] usb 9-1: can't set config #0, error -71
[  596.922678][   T26] usb 9-1: USB disconnect, device number 3
[  596.992823][ T9480] EXT4-fs (loop9): unmounting filesystem.
[  597.052184][T11485] netlink: 'syz.5.1817': attribute type 1 has an invalid length.
[  598.209985][T11486] bond3: (slave ip6gretap1): Enslaving as a backup interface with an up link
[  598.233540][T11491] bond3 (unregistering): (slave ip6gretap1): Releasing backup interface
[  598.422615][T11491] bond3 (unregistering): Released all slaves
[  603.128663][T11543] batman_adv: batadv0: Adding interface: ip6gretap1
[  603.213979][T11543] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  603.327787][T11543] batman_adv: batadv0: Not using interface ip6gretap1 (retrying later): interface not active
[  603.356871][T11550] binder: 11547:11550 ioctl c0306201 0 returned -14
[  603.461310][T11549] netlink: 'syz.2.1830': attribute type 8 has an invalid length.
[  603.476118][T11545] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  603.537527][T11545] batman_adv: batadv0: Removing interface: batadv_slave_0
[  603.687287][T11545] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  603.776204][T11545] batman_adv: batadv0: Removing interface: batadv_slave_1
[  603.787126][T11554] binder: 11547:11554 ioctl c0306201 0 returned -14
[  603.799400][T11545] batman_adv: batadv0: Removing interface: ip6gretap1
[  607.919885][T11617] loop7: detected capacity change from 0 to 128
[  608.013819][T11617] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  608.051929][T11617] ext4 filesystem being mounted at /87/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  608.055750][T11629] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1847'.
[  608.272680][T11629] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1847'.
[  609.239951][ T9331] EXT4-fs (loop7): unmounting filesystem.
[  609.779509][T11650] loop9: detected capacity change from 0 to 1024
[  613.653531][T11698] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1865'.
[  614.794009][T11704] loop8: detected capacity change from 0 to 2048
[  615.016852][T11704]  loop8: p1 < > p3
[  615.077346][T11726] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1870'.
[  615.107929][T11704] loop8: p3 size 134217728 extends beyond EOD, truncated
[  615.122114][T11716] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1869'.
[  615.253591][T11721] lo speed is unknown, defaulting to 1000
[  615.263672][ T3637]  loop8: p1 < > p3
[  615.268972][ T3637] loop8: p3 size 134217728 extends beyond EOD, truncated
[  618.838707][T11752] lo speed is unknown, defaulting to 1000
[  619.095861][T10704] udevd[10704]: inotify_add_watch(7, /dev/loop8p3, 10) failed: No such file or directory
[  619.153765][T10691] udevd[10691]: inotify_add_watch(7, /dev/loop8p1, 10) failed: No such file or directory
[  619.280282][T10691] udevd[10691]: inotify_add_watch(7, /dev/loop8p1, 10) failed: No such file or directory
[  619.302314][T10704] udevd[10704]: inotify_add_watch(7, /dev/loop8p3, 10) failed: No such file or directory
[  619.365194][T10704] udevd[10704]: inotify_add_watch(7, /dev/loop8p3, 10) failed: No such file or directory
[  619.396335][T10691] udevd[10691]: inotify_add_watch(7, /dev/loop8p1, 10) failed: No such file or directory
[  621.153065][T11781] device batadv_slave_0 left promiscuous mode
[  621.734309][T11781] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  621.758659][T11781] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  621.767095][T11781] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  621.880084][T11781] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  624.342945][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  624.352166][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  624.777810][T11838] loop7: detected capacity change from 0 to 512
[  624.914313][T11838] EXT4-fs (loop7): warning: mounting unchecked fs, running e2fsck is recommended
[  624.942414][T11838] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  624.992517][T11838] ext4 filesystem being mounted at /99/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  626.044141][T11854] EXT4-fs error (device loop7): ext4_validate_block_bitmap:420: comm syz.7.1900: bg 0: bad block bitmap checksum
[  626.099904][T10691] udevd[10691]: incorrect jbd checksum on /dev/loop7
[  626.121219][T11838] EXT4-fs warning (device loop7): ext4_dirblock_csum_set:427: inode #2: comm syz.7.1900: No space for directory leaf checksum. Please run e2fsck -D.
[  626.169684][T11838] EXT4-fs error (device loop7): ext4_xattr_delete_inode:2934: inode #15: comm syz.7.1900: corrupted xattr block 32
[  626.218202][T11838] EXT4-fs warning (device loop7): ext4_evict_inode:299: xattr delete (err -117)
[  626.289993][ T9331] EXT4-fs error (device loop7): ext4_lookup:1862: inode #2: comm syz-executor: deleted inode referenced: 11
[  626.418582][ T9331] EXT4-fs error (device loop7): ext4_lookup:1862: inode #2: comm syz-executor: deleted inode referenced: 11
[  627.654897][ T9331] EXT4-fs (loop7): unmounting filesystem.
[  630.537390][ T5259] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  630.730812][ T4277] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  630.743649][ T4277] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  630.753911][ T4277] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  630.766741][ T4277] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  630.775150][ T4277] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  630.789544][ T4277] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  630.949667][ T5259] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  631.166218][ T5259] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  631.311187][T11916] lo speed is unknown, defaulting to 1000
[  632.090943][ T5259] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  632.871059][ T4277] Bluetooth: hci3: command 0x0409 tx timeout
[  634.076787][T11951] loop9: detected capacity change from 0 to 1764
[  634.155090][T10691] blk_print_req_error: 2 callbacks suppressed
[  634.155118][T10691] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  634.551815][T11916] chnl_net:caif_netlink_parms(): no params data found
[  634.581916][T11963] netlink: 28 bytes leftover after parsing attributes in process `syz.9.1932'.
[  634.968548][ T4277] Bluetooth: hci3: command 0x041b tx timeout
[  635.326304][T11970] netlink: 20 bytes leftover after parsing attributes in process `syz.8.1934'.
[  635.784125][T11916] bridge0: port 1(bridge_slave_0) entered blocking state
[  635.791511][T11916] bridge0: port 1(bridge_slave_0) entered disabled state
[  635.980844][T11987] xt_CT: You must specify a L4 protocol and not use inversions on it
[  636.397391][T11916] device bridge_slave_0 entered promiscuous mode
[  636.497168][T11916] bridge0: port 2(bridge_slave_1) entered blocking state
[  636.511397][T11916] bridge0: port 2(bridge_slave_1) entered disabled state
[  636.532087][T11916] device bridge_slave_1 entered promiscuous mode
[  636.904893][T11916] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  637.736915][T12001] xt_recent: hitcount (692) is larger than allowed maximum (255)
[  638.015584][ T4275] Bluetooth: hci3: command 0x040f tx timeout
[  638.431241][T11916] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  639.669371][T12024] xt_TCPMSS: Only works on TCP SYN packets
[  642.117684][ T4275] Bluetooth: hci3: command 0x0419 tx timeout
[  642.410204][T12010] netlink: 'syz.9.1942': attribute type 10 has an invalid length.
[  642.418111][T12010] device lo entered promiscuous mode
[  642.428884][T12010] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  642.504292][T12010] 8021q: adding VLAN 0 to HW filter on device bond0
[  642.532135][T12010] bond0: (slave lo): Enslaving as an active interface with an up link
[  642.546221][T12012] netlink: 'syz.9.1942': attribute type 10 has an invalid length.
[  642.629998][T12031] netlink: 'syz.5.1946': attribute type 11 has an invalid length.
[  642.654070][T12034] overlayfs: failed to clone upperpath
[  643.006154][T12042] loop8: detected capacity change from 0 to 512
[  643.013267][T12042] EXT4-fs: Ignoring removed i_version option
[  645.269467][T12042] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  646.062645][T12042] EXT4-fs (loop8): unmounting filesystem.
[  647.236629][T11916] team0: Port device team_slave_0 added
[  647.346298][T11916] team0: Port device team_slave_1 added
[  648.282753][T11916] batman_adv: batadv0: Adding interface: batadv_slave_0
[  648.547017][T11916] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  648.614152][T11916] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  648.718320][T11916] batman_adv: batadv0: Adding interface: batadv_slave_1
[  648.738551][T11916] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  648.817337][T11916] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  648.985463][ T5259] device hsr_slave_0 left promiscuous mode
[  649.040969][ T5259] device hsr_slave_1 left promiscuous mode
[  649.048903][ T5259] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  649.058186][ T5259] batman_adv: batadv0: Removing interface: batadv_slave_0
[  649.071693][ T5259] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  649.104727][ T5259] batman_adv: batadv0: Removing interface: batadv_slave_1
[  649.796541][ T5259] device veth1_macvtap left promiscuous mode
[  649.810967][ T5259] device veth0_macvtap left promiscuous mode
[  649.817150][ T5259] device veth1_vlan left promiscuous mode
[  649.824732][ T5259] device veth0_vlan left promiscuous mode
[  650.132783][ T5259] infiniband syz0: set down
[  651.625830][T12123] loop8: detected capacity change from 0 to 40427
[  651.667929][T12123] F2FS-fs (loop8): invalid crc value
[  651.696389][T12123] F2FS-fs (loop8): Found nat_bits in checkpoint
[  651.775290][T12123] F2FS-fs (loop8): Start checkpoint disabled!
[  651.862359][T12123] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e6
[  652.351789][ T5226] kworker/u4:12: attempt to access beyond end of device
[  652.351789][ T5226] loop8: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  652.462320][ T5259] team0 (unregistering): Port device team_slave_1 removed
[  652.571150][ T5259] team0 (unregistering): Port device team_slave_0 removed
[  652.646785][ T5259] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  652.719852][ T5259] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  653.983309][ T5259] bond0 (unregistering): Released all slaves
[  654.043851][ T5273] smc: removing ib device syz0
[  654.051626][T12118] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1970'.
[  654.052387][ T3736] lo speed is unknown, defaulting to 1000
[  654.064399][T12119] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1970'.
[  654.174755][ T4277] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  654.186503][T12128] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1971'.
[  654.186599][ T4277] Bluetooth: hci1: Injecting HCI hardware error event
[  654.220708][ T4277] Bluetooth: hci1: hardware error 0x00
[  654.253257][T12128] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[  654.306510][T12131] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1971'.
[  654.494975][T11916] device hsr_slave_0 entered promiscuous mode
[  654.535322][T11916] device hsr_slave_1 entered promiscuous mode
[  654.711194][T11916] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  654.754486][T11916] Cannot create hsr debugfs directory
[  655.017321][T12155] loop8: detected capacity change from 0 to 4096
[  655.098741][T12155] EXT4-fs error (device loop8): ext4_quota_enable:7022: inode #4: comm syz.8.1979: iget: special inode unallocated
[  655.283314][T12155] EXT4-fs error (device loop8): ext4_quota_enable:7025: comm syz.8.1979: Bad quota inode: 4, type: 1
[  655.496439][T12155] EXT4-fs warning (device loop8): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  655.750423][T12155] EXT4-fs (loop8): mount failed
[  656.165366][T12172] loop9: detected capacity change from 0 to 512
[  656.308650][ T4277] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  656.602210][T12172] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  656.656080][T12172] ext4 filesystem being mounted at /103/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  657.098026][ T9480] EXT4-fs (loop9): unmounting filesystem.
[  658.287512][T12200] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1986'.
[  659.924728][T12225] loop9: detected capacity change from 0 to 128
[  660.379974][T12228] syz.9.1991: attempt to access beyond end of device
[  660.379974][T12228] loop9: rw=2049, sector=145, nr_sectors = 152 limit=128
[  665.109245][T12271] loop9: detected capacity change from 0 to 512
[  665.123706][T11916] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  665.149097][T11916] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  665.175254][T11916] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  665.225054][T12271] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  665.259407][T11916] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  665.273472][T12271] ext4 filesystem being mounted at /108/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  667.155182][   T27] audit: type=1326 audit(2000000217.390:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12295 comm="syz.2.2004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c7118e929 code=0x7ffc0000
[  667.179127][   T27] audit: type=1326 audit(2000000217.390:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12295 comm="syz.2.2004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c7118e929 code=0x7ffc0000
[  667.182021][ T9480] EXT4-fs (loop9): unmounting filesystem.
[  667.208521][   T27] audit: type=1326 audit(2000000217.440:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12295 comm="syz.2.2004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f7c7118e929 code=0x7ffc0000
[  667.463966][   T27] audit: type=1326 audit(2000000217.440:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12295 comm="syz.2.2004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c7118e929 code=0x7ffc0000
[  667.486936][   T27] audit: type=1326 audit(2000000217.440:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12295 comm="syz.2.2004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c7118e929 code=0x7ffc0000
[  667.625324][   T27] audit: type=1326 audit(2000000217.440:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12295 comm="syz.2.2004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f7c7118e929 code=0x7ffc0000
[  667.712659][   T27] audit: type=1326 audit(2000000217.440:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12295 comm="syz.2.2004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c7118e929 code=0x7ffc0000
[  667.786805][T11916] 8021q: adding VLAN 0 to HW filter on device bond0
[  668.036425][   T27] audit: type=1326 audit(2000000217.440:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12295 comm="syz.2.2004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c7118e929 code=0x7ffc0000
[  668.193480][T11916] 8021q: adding VLAN 0 to HW filter on device team0
[  668.305722][ T5266] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  668.319353][ T5266] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  668.377486][   T27] audit: type=1326 audit(2000000217.440:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12295 comm="syz.2.2004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=297 compat=0 ip=0x7f7c7118e929 code=0x7ffc0000
[  668.424820][   T27] audit: type=1326 audit(2000000217.440:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12295 comm="syz.2.2004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c7118e929 code=0x7ffc0000
[  668.505680][ T5266] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  668.524640][ T5266] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  668.556908][T12316] netlink: 36 bytes leftover after parsing attributes in process `syz.9.2005'.
[  668.573317][ T5266] bridge0: port 1(bridge_slave_0) entered blocking state
[  668.580551][ T5266] bridge0: port 1(bridge_slave_0) entered forwarding state
[  668.795074][ T5266] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  668.810964][ T5266] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  668.827258][ T5266] bridge0: port 2(bridge_slave_1) entered blocking state
[  668.834645][ T5266] bridge0: port 2(bridge_slave_1) entered forwarding state
[  668.849112][ T5266] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  669.571586][T12327] ip6t_srh: unknown srh invflags 6BE9
[  670.184359][T11916] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  670.236706][T11916] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  670.260322][ T5266] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  670.269365][ T5266] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  670.280826][ T5266] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  670.294325][ T5266] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  670.424149][ T5266] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  670.490806][ T5266] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  670.499777][ T5266] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  670.508526][ T5266] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  670.517336][ T5266] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  670.526119][ T5266] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  670.535731][ T5266] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  670.544339][ T5266] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  671.221919][T12340] I/O error, dev loop19, sector 2 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 2
[  671.313825][T12340] EXT4-fs (loop19): unable to read superblock
[  675.433316][ T4277] Bluetooth: hci5: Controller not accepting commands anymore: ncmd = 0
[  675.442504][ T4277] Bluetooth: hci5: Injecting HCI hardware error event
[  675.452283][ T4277] Bluetooth: hci5: hardware error 0x00
[  675.734006][ T5259] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  675.746713][ T5259] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  675.785467][T11916] 8021q: adding VLAN 0 to HW filter on device batadv0
[  675.981300][ T9999] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  676.010359][ T9999] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  676.155801][ T9999] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  676.184080][ T9999] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  676.208204][T11916] device veth0_vlan entered promiscuous mode
[  676.217241][ T9999] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  676.229886][ T9999] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  676.266373][T11916] device veth1_vlan entered promiscuous mode
[  676.324522][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  676.334962][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  676.347345][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  676.363114][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  676.377808][T11916] device veth0_macvtap entered promiscuous mode
[  676.388806][ T9501] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[  676.425709][T11916] device veth1_macvtap entered promiscuous mode
[  676.514223][T11916] batman_adv: batadv0: Interface activated: batadv_slave_0
[  676.530498][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  676.544672][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  676.565658][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  676.578673][ T9501] usb 10-1: Using ep0 maxpacket: 16
[  676.585041][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  676.586966][ T9501] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  676.607192][ T9501] usb 10-1: New USB device found, idVendor=056a, idProduct=0100, bcdDevice= 0.00
[  676.618270][ T9501] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  676.641879][T11916] batman_adv: batadv0: Interface activated: batadv_slave_1
[  676.651222][ T9999] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  676.691210][ T9501] usb 10-1: config 0 descriptor??
[  676.697402][ T9999] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  676.716825][T11916] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  676.746945][T11916] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  676.756230][T11916] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  676.778708][T11916] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  677.117229][ T9999] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  677.144657][ T9999] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  677.145277][ T9501] wacom 0003:056A:0100.0002: ignoring exceeding usage max
[  677.233208][ T9501] wacom 0003:056A:0100.0002: hidraw0: USB HID v0.00 Device [HID 056a:0100] on usb-dummy_hcd.9-1/input0
[  677.669347][ T4277] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[  677.713911][   T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  677.746678][ T5089] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  677.781691][ T5259] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  677.787003][ T9501] usb 10-1: USB disconnect, device number 6
[  677.859585][ T9999] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  677.904426][ T9999] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  677.934620][ T5259] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  678.024085][T12416] fido_id[12416]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.9/usb10/report_descriptor': No such file or directory
[  678.760737][ T5240] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  679.229751][T12436] netlink: 'syz.5.2034': attribute type 4 has an invalid length.
[  679.237556][T12436] netlink: 199836 bytes leftover after parsing attributes in process `syz.5.2034'.
[  680.117385][   T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  681.094252][T12445] loop9: detected capacity change from 0 to 512
[  681.125479][T12451] netlink: 168 bytes leftover after parsing attributes in process `syz.5.2039'.
[  681.140612][ T9501] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  681.188880][   T22] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  681.212581][T12454] netlink: 'syz.2.2042': attribute type 1 has an invalid length.
[  681.250675][T12445] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  681.271803][ T5259] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  681.283687][T12445] ext4 filesystem being mounted at /114/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  681.300680][T12454] 8021q: adding VLAN 0 to HW filter on device bond7
[  681.906251][T12462] bond7: (slave ip6gretap2): making interface the new active one
[  681.944677][T12462] bond7: (slave ip6gretap2): Enslaving as an active interface with an up link
[  681.999600][T12465] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  682.007207][T12465] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  682.018681][T12465] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  682.026411][T12465] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  682.034285][T12465] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  682.042146][T12465] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  682.072076][ T4314] IPv6: ADDRCONF(NETDEV_CHANGE): bond7: link becomes ready
[  682.265790][   T26] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  682.355419][T10691] udevd[10691]: incorrect jbd checksum on /dev/loop9
[  682.377382][T12474] EXT4-fs warning (device loop9): dx_probe:893: inode #2: comm syz.9.2040: dx entry: limit 0 != root limit 252
[  682.401341][T12474] EXT4-fs warning (device loop9): dx_probe:966: inode #2: comm syz.9.2040: Corrupt directory, running e2fsck is recommended
[  683.124405][ T9480] EXT4-fs (loop9): unmounting filesystem.
[  683.136774][T10691] udevd[10691]: incorrect jbd checksum on /dev/loop9
[  683.432903][   T26] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  683.449473][T12489] netdevsim netdevsim8 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  683.459070][T12489] netdevsim netdevsim8 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  683.467907][T12489] netdevsim netdevsim8 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  683.476774][T12489] netdevsim netdevsim8 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  683.530367][T12489] bond0: (slave vxlan0): Enslaving as an active interface with an up link
[  683.834008][ T5273] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  684.244965][ T5100] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  684.484978][   T26] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  685.882116][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  685.888977][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  686.058928][T12536] device vlan2 entered promiscuous mode
[  686.121392][T12536] device bond0 entered promiscuous mode
[  686.745020][T12556] x_tables: ip_tables: osf match: used from hooks POSTROUTING, but only valid from PREROUTING/INPUT/FORWARD
[  687.288057][T12565] netlink: 'syz.9.2062': attribute type 4 has an invalid length.
[  689.180798][T12587] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2069'.
[  689.190485][T12587] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2069'.
[  689.805494][T12582] loop8: detected capacity change from 0 to 4096
[  689.989522][T12582] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  690.329902][T12597] xt_CT: You must specify a L4 protocol and not use inversions on it
[  690.933715][ T9412] EXT4-fs (loop8): unmounting filesystem.
[  691.248918][T12604] loop8: detected capacity change from 0 to 2048
[  691.342669][T12604]  loop8: p1 < > p3
[  691.362353][T12604] loop8: p3 size 134217728 extends beyond EOD, truncated
[  691.555269][T12604] kvm: emulating exchange as write
[  696.093742][T12661] ipt_REJECT: ECHOREPLY no longer supported.
[  697.955056][ T5231] bridge0: port 2(bridge_slave_1) entered disabled state
[  698.236268][T12680] Process accounting resumed
[  698.382550][T12689] Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  698.874984][T12701] loop3: detected capacity change from 0 to 64
[  699.972496][   T27] kauditd_printk_skb: 22 callbacks suppressed
[  699.972512][   T27] audit: type=1326 audit(2000000250.210:634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.2.2097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c7118e929 code=0x7ffc0000
[  700.085845][   T27] audit: type=1326 audit(2000000250.210:635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.2.2097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f7c7118e929 code=0x7ffc0000
[  700.157985][   T27] audit: type=1326 audit(2000000250.210:636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.2.2097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c7118e929 code=0x7ffc0000
[  700.244545][   T27] audit: type=1326 audit(2000000250.210:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.2.2097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f7c7118e929 code=0x7ffc0000
[  703.632229][T12748] fuse: Bad value for 'fd'
[  705.175768][T12779] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  705.189396][T12779] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  705.244845][T12779] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  705.257612][T12779] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  705.670053][T12783] loop8: detected capacity change from 0 to 128
[  705.771762][T12783] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  705.792852][T12783] ext4 filesystem being mounted at /143/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  705.992878][T12790] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2115'.
[  706.520274][T12794] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2115'.
[  706.948227][ T9412] EXT4-fs (loop8): unmounting filesystem.
[  707.880159][ T5089] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[  708.838472][ T5089] usb 10-1: Using ep0 maxpacket: 32
[  708.846334][ T5089] usb 10-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64
[  708.907624][ T5089] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  708.980563][ T5089] usb 10-1: config 0 descriptor??
[  709.055460][ T5089] as10x_usb: device has been detected
[  709.070383][ T5089] dvbdev: DVB: registering new adapter (nBox DVB-T Dongle)
[  709.212239][ T5089] usb 10-1: DVB: registering adapter 1 frontend 0 (nBox DVB-T Dongle)...
[  709.450753][ T5089] as10x_usb: error during firmware upload part1
[  709.457631][ T5089] Registered device nBox DVB-T Dongle
[  709.470003][ T5089] usb 10-1: USB disconnect, device number 7
[  709.577009][ T5089] Unregistered device nBox DVB-T Dongle
[  709.582893][ T5089] as10x_usb: device has been disconnected
[  710.180815][T12801] ÿÿÿÿÿÿ: renamed from vlan1
[  713.710899][T12863] loop8: detected capacity change from 0 to 128
[  713.768130][T12863] EXT4-fs (loop8): Test dummy encryption mode enabled
[  713.948439][T12871] loop3: detected capacity change from 0 to 8
[  714.263278][T12871] SQUASHFS error: zlib decompression failed, data probably corrupt
[  714.430453][T12871] SQUASHFS error: Failed to read block 0x9b: -5
[  714.468113][T12871] SQUASHFS error: Unable to read metadata cache entry [99]
[  714.536890][T12871] SQUASHFS error: Unable to read inode 0x127
[  714.577183][T12863] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  714.610754][T12863] ext4 filesystem being mounted at /147/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  714.682814][T12881] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2134'.
[  714.708447][T12881] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2134'.
[  714.776238][T12863] x_tables: ip6_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD
[  716.146219][T12898] input: syz0 as /devices/virtual/input/input8
[  716.164774][T12886] fscrypt (loop8): Missing crypto API support for AES-256-XTS (API name: "xts(aes)")
[  716.246891][T12863] fscrypt (loop8): Missing crypto API support for AES-256-XTS (API name: "xts(aes)")
[  716.297835][T12892] fscrypt (loop8): Missing crypto API support for AES-256-XTS (API name: "xts(aes)")
[  716.422995][T12922] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2138'.
[  716.587358][ T9412] EXT4-fs (loop8): unmounting filesystem.
[  717.387533][T12930] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2142'.
[  720.362883][T12948] netlink: 28 bytes leftover after parsing attributes in process `syz.8.2148'.
[  721.984122][T12977] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2156'.
[  722.884732][T12988] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2156'.
[  723.439812][T12987] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2157'.
[  725.075453][T13003] loop3: detected capacity change from 0 to 128
[  725.167418][T13003] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  725.251875][T13003] ext4 filesystem being mounted at /29/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  725.407631][T13013] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2161'.
[  725.548037][T11916] EXT4-fs (loop3): unmounting filesystem.
[  730.731913][T13050] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  730.739601][T13050] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  730.754278][T13050] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  730.762038][T13050] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  730.769697][T13050] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  730.777549][T13050] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  731.230111][T13053] overlayfs: failed to clone upperpath
[  732.720478][T13074] loop9: detected capacity change from 0 to 128
[  733.791259][T13086] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2177'.
[  734.224096][T13094] loop8: detected capacity change from 0 to 64
[  734.725363][T13102] hfs: hfs: Invalid key length: 94
[  737.958602][   T27] audit: type=1326 audit(2000000288.030:638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13109 comm="syz.3.2184" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f318e18e929 code=0x0
[  742.032605][T13173] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2197'.
[  742.433925][T13177] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2197'.
[  742.613414][T13170] loop8: detected capacity change from 0 to 512
[  742.722146][T13170] EXT4-fs error (device loop8): ext4_do_update_inode:5254: inode #3: comm syz.8.2201: corrupted inode contents
[  742.763477][T13170] EXT4-fs error (device loop8): ext4_dirty_inode:6119: inode #3: comm syz.8.2201: mark_inode_dirty error
[  742.819437][T13193] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2202'.
[  743.400835][T13170] EXT4-fs error (device loop8): ext4_do_update_inode:5254: inode #3: comm syz.8.2201: corrupted inode contents
[  743.529923][T13170] EXT4-fs error (device loop8): __ext4_ext_dirty:202: inode #3: comm syz.8.2201: mark_inode_dirty error
[  743.589091][T13170] Quota error (device loop8): write_blk: dquota write failed
[  743.607049][T13196] netlink: 71 bytes leftover after parsing attributes in process `syz.2.2204'.
[  743.627004][T13170] Quota error (device loop8): qtree_write_dquot: Error -117 occurred while creating quota
[  743.647372][T13170] EXT4-fs error (device loop8): ext4_acquire_dquot:6814: comm syz.8.2201: Failed to acquire dquot type 0
[  745.094027][T13170] EXT4-fs (loop8): 1 orphan inode deleted
[  745.116847][ T4365] Quota error (device loop8): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  745.148154][T13170] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  745.165382][ T4365] EXT4-fs error (device loop8): ext4_release_dquot:6850: comm kworker/u4:6: Failed to release dquot type 1
[  745.194216][T13170] ext4 filesystem being mounted at /163/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  745.233136][T13215] loop3: detected capacity change from 0 to 128
[  745.284796][ T9412] EXT4-fs (loop8): unmounting filesystem.
[  745.291397][T13215] EXT4-fs: Ignoring removed nobh option
[  745.915119][T13215] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  745.939370][T13215] ext4 filesystem being mounted at /37/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  746.293494][T11916] EXT4-fs (loop3): unmounting filesystem.
[  747.519022][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  747.525419][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  747.914800][T13263] loop8: detected capacity change from 0 to 512
[  748.192662][T13263] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  748.283430][T13263] ext4 filesystem being mounted at /165/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  750.185139][T13225] udevd[13225]: incorrect jbd checksum on /dev/loop8
[  750.228726][T13263] EXT4-fs warning (device loop8): dx_probe:833: inode #2: comm syz.8.2223: Unrecognised inode hash code 49
[  750.326302][T13263] EXT4-fs warning (device loop8): dx_probe:966: inode #2: comm syz.8.2223: Corrupt directory, running e2fsck is recommended
[  751.532913][ T9412] EXT4-fs (loop8): unmounting filesystem.
[  751.607330][T13313] loop9: detected capacity change from 0 to 1764
[  752.630981][T13328] loop8: detected capacity change from 0 to 2048
[  753.629008][T13328] NILFS (loop8): invalid segment: Inconsistency found
[  753.636761][T13328] NILFS (loop8): trying rollback from an earlier position
[  753.752974][T13328] NILFS (loop8): recovery complete
[  753.803599][T13344] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  754.525005][T13356] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2240'.
[  754.913137][ T4275] Bluetooth: hci3: command 0x0406 tx timeout
[  754.945292][T13356] device gtp0 entered promiscuous mode
[  755.318518][ T5100] usb 10-1: new high-speed USB device number 8 using dummy_hcd
[  755.538765][ T5100] usb 10-1: Using ep0 maxpacket: 8
[  755.557451][ T5100] usb 10-1: config 0 has no interfaces?
[  755.663512][ T5100] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  755.766527][ T5100] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  755.837129][ T5100] usb 10-1: Product: syz
[  755.872104][ T5100] usb 10-1: Manufacturer: syz
[  755.925934][ T5100] usb 10-1: SerialNumber: syz
[  756.097969][ T5100] usb 10-1: config 0 descriptor??
[  757.595173][ T4392] usb 10-1: USB disconnect, device number 8
[  758.526122][T13368] loop8: detected capacity change from 0 to 4096
[  758.554049][T13387] ptrace attach of "./syz-executor exec"[9480] was attempted by "./syz-executor exec"[13387]
[  758.888785][T13368] ntfs: (device loop8): check_mft_mirror(): $MFT and $MFTMirr (record 0) do not match.  Run ntfsfix or chkdsk.
[  758.956206][T13368] ntfs: (device loop8): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  759.002080][T13368] ntfs: (device loop8): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  759.159853][T13368] ntfs: volume version 3.1.
[  760.759391][T13406] netlink: 'syz.2.2254': attribute type 12 has an invalid length.
[  761.461429][T13410] xt_CT: You must specify a L4 protocol and not use inversions on it
[  764.355567][T13443] netlink: 'syz.5.2263': attribute type 10 has an invalid length.
[  764.369466][T13443] device lo entered promiscuous mode
[  764.460807][T13443] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  764.566627][T13445] netlink: 'syz.5.2263': attribute type 10 has an invalid length.
[  765.358748][T13445] 8021q: adding VLAN 0 to HW filter on device bond0
[  765.367558][T13445] team0: Port device bond0 added
[  766.340362][T13470] device veth1_macvtap left promiscuous mode
[  767.429242][T13473] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2270'.
[  767.506986][T13473] netlink: 80 bytes leftover after parsing attributes in process `syz.3.2270'.
[  767.868379][T13495] netlink: 104 bytes leftover after parsing attributes in process `syz.9.2275'.
[  770.805890][T13522] support for the xor transformation has been removed.
[  772.013967][T13532] netlink: 'syz.8.2283': attribute type 1 has an invalid length.
[  772.097905][T13536] bond1: (slave ip6gretap2): Enslaving as a backup interface with an up link
[  772.256515][T13532] device veth3 entered promiscuous mode
[  772.267864][T13532] bond1: (slave veth3): Enslaving as a backup interface with a down link
[  772.735104][T13545] loop3: detected capacity change from 0 to 40427
[  772.759717][T13545] F2FS-fs (loop3): invalid crc value
[  772.834756][T13550] loop8: detected capacity change from 0 to 1024
[  773.560838][T13545] F2FS-fs (loop3): Found nat_bits in checkpoint
[  773.614853][T13545] F2FS-fs (loop3): Start checkpoint disabled!
[  773.670726][T13545] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  776.993089][T13577] loop8: detected capacity change from 0 to 16
[  777.205265][T13577] erofs: (device loop8): mounted with root inode @ nid 36.
[  778.761646][T13601] netlink: 36 bytes leftover after parsing attributes in process `syz.5.2298'.
[  778.788693][   T11] kworker/u4:1: attempt to access beyond end of device
[  778.788693][   T11] loop3: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  778.884979][T13603] input: syz0 as /devices/virtual/input/input9
[  779.302011][ T9501] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  779.649477][ T9501] usb 9-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  779.974206][ T9501] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  780.059806][ T9501] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  780.067935][ T9501] usb 9-1: SerialNumber: syz
[  780.681717][ T9501] cdc_ether: probe of 9-1:1.0 failed with error -71
[  781.615212][ T9501] usb 9-1: USB disconnect, device number 4
[  781.720165][T13635] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2304'.
[  782.131175][T13648] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  782.533673][T13659] netlink: 'syz.2.2311': attribute type 4 has an invalid length.
[  782.541581][T13659] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.2311'.
[  783.267179][T13662] device geneve2 entered promiscuous mode
[  783.432930][T13670] input: syz0 as /devices/virtual/input/input10
[  783.630857][T13672] Bluetooth: MGMT ver 1.22
[  784.177800][T13675] loop3: detected capacity change from 0 to 512
[  784.269295][T13675] EXT4-fs: Ignoring removed nobh option
[  784.322449][T13675] fscrypt (loop3, inode 2): Error -61 getting encryption context
[  784.343549][T13675] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -61
[  784.369098][T13675] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #13: comm syz.3.2313: casefold flag without casefold feature
[  784.391136][T13682] netlink: 'syz.5.2317': attribute type 6 has an invalid length.
[  784.439777][T13675] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.2313: couldn't read orphan inode 13 (err -117)
[  784.549075][T13675] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  784.608034][T13690] loop8: detected capacity change from 0 to 16
[  784.677155][T13690] erofs: (device loop8): mounted with root inode @ nid 36.
[  784.730869][T13690] erofs: (device loop8): z_erofs_do_map_blocks: invalid logical cluster 0 at nid 36
[  784.799792][T11916] EXT4-fs (loop3): unmounting filesystem.
[  784.806440][T13690] syz.8.2319: attempt to access beyond end of device
[  784.806440][T13690] loop8: rw=0, sector=296, nr_sectors = 8 limit=16
[  784.873055][T13690] erofs: (device loop8): z_erofs_read_folio: failed to read, err [-117]
[  786.540515][ T4277] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  786.547376][ T4275] Bluetooth: hci0: command 0x0c1a tx timeout
[  786.783391][T13690] erofs: (device loop8): erofs_readdir: fail to readdir of logical block 0 of nid 36
[  787.048474][ T9501] usb 9-1: new full-speed USB device number 5 using dummy_hcd
[  787.580331][T13693] tty tty37: ldisc open failed (-12), clearing slot 36
[  787.939564][T13719] Cannot find set identified by id 0 to match
[  788.387364][T13720] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  788.447221][T13714] loop9: detected capacity change from 0 to 512
[  788.570915][ T9501] usb 9-1: device descriptor read/all, error -71
[  788.592830][T13714] EXT4-fs: Ignoring removed nobh option
[  788.711653][T13714] EXT4-fs (loop9): external journal device major/minor numbers have changed
[  791.019123][T13714] EXT4-fs (loop9): failed to open journal device unknown-block(4,0) -6
[  792.432590][T13751] xt_CT: You must specify a L4 protocol and not use inversions on it
[  794.344769][T13780] general protection fault, probably for non-canonical address 0xdffffc000000000b: 0000 [#1] PREEMPT SMP KASAN
[  794.356557][T13780] KASAN: null-ptr-deref in range [0x0000000000000058-0x000000000000005f]
[  794.365105][T13780] CPU: 1 PID: 13780 Comm: syz.2.2350 Not tainted 6.1.145-syzkaller #0
[  794.373305][T13780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  794.383395][T13780] RIP: 0010:__list_del_entry_valid+0x1f/0x120
[  794.389520][T13780] Code: de 4c 89 f1 e8 42 9d 00 06 0f 0b 41 57 41 56 41 54 53 48 89 fb 49 bc 00 00 00 00 00 fc ff df 48 83 c7 08 48 89 f8 48 c1 e8 03 <42> 80 3c 20 00 74 05 e8 b5 2a c6 fd 4c 8b 7b 08 48 89 d8 48 c1 e8
[  794.409172][T13780] RSP: 0018:ffffc90003ad6ea8 EFLAGS: 00010202
[  794.415286][T13780] RAX: 000000000000000b RBX: 0000000000000050 RCX: 0000000000080000
[  794.423300][T13780] RDX: ffffc9000db99000 RSI: 0000000000001519 RDI: 0000000000000058
[  794.431309][T13780] RBP: dffffc0000000000 R08: ffff888051f95940 R09: 0000000000000002
[  794.439322][T13780] R10: 00000000ffffffff R11: 0000000000000002 R12: dffffc0000000000
[  794.447334][T13780] R13: dffffc0000000000 R14: 0000000000000050 R15: ffff888051b16000
[  794.455349][T13780] FS:  00007f7c720d46c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  794.464319][T13780] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  794.470947][T13780] CR2: 0000001b2e819ff8 CR3: 000000007a270000 CR4: 00000000003526e0
[  794.478962][T13780] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  794.486971][T13780] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  794.494982][T13780] Call Trace:
[  794.498283][T13780]  <TASK>
[  794.501242][T13780]  drr_qlen_notify+0x28/0xf0
[  794.505871][T13780]  qdisc_tree_reduce_backlog+0x287/0x470
[  794.511552][T13780]  ? qdisc_tree_reduce_backlog+0x38/0x470
[  794.517317][T13780]  fq_change+0xa0a/0xdf0
[  794.521594][T13780]  ? _raw_spin_unlock+0x40/0x40
[  794.526474][T13780]  ? fq_destroy+0x50/0x50
[  794.530845][T13780]  ? qdisc_watchdog_init_clockid+0x2d/0x70
[  794.536689][T13780]  ? fq_init+0x3ae/0x5b0
[  794.540959][T13780]  ? qdisc_peek_dequeued+0x1f0/0x1f0
[  794.546276][T13780]  qdisc_create+0x7cb/0x1090
[  794.550923][T13780]  ? qdisc_notify+0x370/0x370
[  794.555642][T13780]  ? lockdep_rtnl_is_held+0x22/0x30
[  794.560892][T13780]  ? qdisc_lookup+0x366/0x6c0
[  794.565607][T13780]  tc_modify_qdisc+0xb0f/0x1be0
[  794.570499][T13780]  ? qdisc_offload_query_caps+0x140/0x140
[  794.576266][T13780]  ? qdisc_offload_query_caps+0x140/0x140
[  794.582027][T13780]  ? rtnetlink_rcv_msg+0x1d8/0xed0
[  794.587186][T13780]  rtnetlink_rcv_msg+0x79b/0xed0
[  794.592172][T13780]  ? rtnetlink_bind+0x80/0x80
[  794.597148][T13780]  ? mark_lock+0x94/0x320
[  794.601516][T13780]  ? __lock_acquire+0x12e5/0x7c50
[  794.606590][T13780]  ? netlink_sendmsg+0x645/0xbc0
[  794.611572][T13780]  ? verify_lock_unused+0x140/0x140
[  794.616828][T13780]  netlink_rcv_skb+0x1de/0x420
[  794.621629][T13780]  ? rtnetlink_bind+0x80/0x80
[  794.626343][T13780]  ? netlink_ack+0x1100/0x1100
[  794.631148][T13780]  ? netlink_deliver_tap+0x2e/0x1b0
[  794.636388][T13780]  netlink_unicast+0x74c/0x8c0
[  794.641194][T13780]  netlink_sendmsg+0x89e/0xbc0
[  794.645998][T13780]  ? netlink_getsockopt+0x540/0x540
[  794.651239][T13780]  ? aa_sock_msg_perm+0x94/0x150
[  794.656208][T13780]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  794.661525][T13780]  ? security_socket_sendmsg+0x7c/0xa0
[  794.667011][T13780]  ? netlink_getsockopt+0x540/0x540
[  794.672254][T13780]  ____sys_sendmsg+0x59b/0x970
[  794.677057][T13780]  ? __sys_sendmsg_sock+0x30/0x30
[  794.682130][T13780]  ? __import_iovec+0x315/0x500
[  794.687026][T13780]  ? import_iovec+0x6f/0xa0
[  794.691569][T13780]  ___sys_sendmsg+0x21c/0x290
[  794.696291][T13780]  ? __sys_sendmsg+0x270/0x270
[  794.701105][T13780]  ? put_user_ifreq+0x81/0xb0
[  794.705837][T13780]  ? __fdget+0x17c/0x200
[  794.710119][T13780]  __se_sys_sendmsg+0x19e/0x270
[  794.715008][T13780]  ? __se_sys_futex+0x14a/0x440
[  794.719907][T13780]  ? __x64_sys_sendmsg+0x80/0x80
[  794.724889][T13780]  ? lockdep_hardirqs_on+0x94/0x140
[  794.730129][T13780]  do_syscall_64+0x4c/0xa0
[  794.734580][T13780]  ? clear_bhb_loop+0x60/0xb0
[  794.739285][T13780]  ? clear_bhb_loop+0x60/0xb0
[  794.743994][T13780]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  794.749919][T13780] RIP: 0033:0x7f7c7118e929
[  794.754462][T13780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  794.774282][T13780] RSP: 002b:00007f7c720d4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  794.782918][T13780] RAX: ffffffffffffffda RBX: 00007f7c713b5fa0 RCX: 00007f7c7118e929
[  794.790930][T13780] RDX: 0000000000004000 RSI: 0000200000000100 RDI: 0000000000000005
[  794.798943][T13780] RBP: 00007f7c71210b39 R08: 0000000000000000 R09: 0000000000000000
[  794.806956][T13780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  794.814966][T13780] R13: 0000000000000000 R14: 00007f7c713b5fa0 R15: 00007ffe70a5b918
[  794.823511][T13780]  </TASK>
[  794.826571][T13780] Modules linked in:
[  794.830600][T13780] ---[ end trace 0000000000000000 ]---
[  794.836088][T13780] RIP: 0010:__list_del_entry_valid+0x1f/0x120
[  794.842235][T13780] Code: de 4c 89 f1 e8 42 9d 00 06 0f 0b 41 57 41 56 41 54 53 48 89 fb 49 bc 00 00 00 00 00 fc ff df 48 83 c7 08 48 89 f8 48 c1 e8 03 <42> 80 3c 20 00 74 05 e8 b5 2a c6 fd 4c 8b 7b 08 48 89 d8 48 c1 e8
[  794.861917][T13780] RSP: 0018:ffffc90003ad6ea8 EFLAGS: 00010202
[  794.868031][T13780] RAX: 000000000000000b RBX: 0000000000000050 RCX: 0000000000080000
[  794.876069][T13780] RDX: ffffc9000db99000 RSI: 0000000000001519 RDI: 0000000000000058
[  794.884107][T13780] RBP: dffffc0000000000 R08: ffff888051f95940 R09: 0000000000000002
[  794.892147][T13780] R10: 00000000ffffffff R11: 0000000000000002 R12: dffffc0000000000
[  794.900183][T13780] R13: dffffc0000000000 R14: 0000000000000050 R15: ffff888051b16000
[  794.908197][T13780] FS:  00007f7c720d46c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  794.917200][T13780] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  794.923856][T13780] CR2: 0000001b2e819ff8 CR3: 000000007a270000 CR4: 00000000003526e0
[  794.931903][T13780] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  794.939944][T13780] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  794.947956][T13780] Kernel panic - not syncing: Fatal exception in interrupt
[  794.955446][T13780] Kernel Offset: disabled
[  794.959788][T13780] Rebooting in 86400 seconds..