last executing test programs:

10m31.94550384s ago: executing program 3 (id=1330):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x3, &(0x7f00000002c0)=@framed, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r0, 0x0, 0xfffffffffdfffffd}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x14, r2, 0x7, 0x2, 0x25dfdbfd}, 0x14}}, 0x0)

10m31.118744881s ago: executing program 3 (id=1332):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000c80)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = dup(r1)
io_uring_register$IORING_REGISTER_FILES(r3, 0x2, &(0x7f0000000bc0)=[r2], 0x1)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r5, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002ec0)={0x38, r4, 0x10ada85e65c25359, 0xfffffffd, 0x25dfdbfd, {{0x6b}, {@val={0x8}, @val={0xc, 0x99, {0x2, 0x72}}}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8, 0xd, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x4}]}]}]}]}, 0x38}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000009c0)={'wlan0\x00', <r6=>0x0})
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb702000008000000182300", @ANYRES32=r7, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r8}, 0x10)
socket$inet_smc(0x2b, 0x1, 0x0)
sendmsg$NL80211_CMD_STOP_NAN(r3, &(0x7f0000000c40)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000c00)={&(0x7f0000000a00)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="00022cbddf25740000000800030000000000", @ANYRES32=r6, @ANYBLOB="0c0099000200000068000000"], 0x28}}, 0x40)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000002001e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
unshare(0x64000600)

10m26.368737684s ago: executing program 3 (id=1347):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x4c, 0x0, 0x1, 0x0, 0x0, {0x3d}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd, 0x82}, {0x5, 0x87}}]}, 0x4c}}, 0x0)

10m25.924587599s ago: executing program 3 (id=1350):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xffffffffffffff31)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\n\x00\x00'], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000300)=@o_path={&(0x7f00000001c0)='./bus\x00', r3, 0x4000, r0}, 0x18)

10m25.288315829s ago: executing program 3 (id=1352):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, &(0x7f0000000080)=0x654a, 0x4)
bind$inet(r2, &(0x7f0000000200)={0x2, 0x400, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000001c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0xa6, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r4}, 0x10)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0)
socket$unix(0x1, 0x1, 0x0)
r5 = socket(0x10, 0x803, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0x7}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bd26, 0x8000002, {0x0, 0x0, 0x0, r7, {0x0, 0x6}, {}, {0x7, 0xa}}, [@filter_kind_options=@f_basic={{0xa}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x24008004}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000740)=@newtfilter={0x8c, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xb, 0x6}, {}, {0x7}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x655c, 0xffffffff, 0x20000000, 0x9, 0x800}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}, @TCA_CHAIN={0x8, 0xb, 0x4}]}, 0x8c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]})
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, 0x0, 0x0)
close_range(r8, 0xffffffffffffffff, 0x0)

10m17.496693765s ago: executing program 3 (id=1382):
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)
socket$inet6(0xa, 0x80001, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0e00000004000000080000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='contention_end\x00', r1, 0xe4}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r2, 0xc004743e, 0x110e22fff6)
ioctl$TUNGETVNETLE(0xffffffffffffffff, 0x4010744d, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f00000004c0)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)

10m2.200069463s ago: executing program 32 (id=1382):
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)
socket$inet6(0xa, 0x80001, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0e00000004000000080000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='contention_end\x00', r1, 0xe4}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r2, 0xc004743e, 0x110e22fff6)
ioctl$TUNGETVNETLE(0xffffffffffffffff, 0x4010744d, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f00000004c0)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)

8m32.000594001s ago: executing program 1 (id=1843):
r0 = syz_io_uring_setup(0x10a, &(0x7f0000000340)={0x0, 0xfd69, 0x80, 0x7ffff, 0x2000088}, &(0x7f00000004c0)=<r1=>0x0, &(0x7f0000000200))
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000500)='io_uring_complete\x00', r2}, 0x18)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r0, 0x3516, 0xaddf, 0x2, 0x0, 0x1517f)

8m31.398339093s ago: executing program 1 (id=1846):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000500)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = creat(&(0x7f0000000600)='./file0\x00', 0xe5)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff108500000007000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, @void, @value}, 0x94)
write$qrtrtun(r1, &(0x7f0000001880)="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", 0x45c)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r2, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000003c0)=[0x45c], 0x0, 0x0, 0x1, 0x1}}, 0x40)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r3, 0xffffffffffffffff, 0x0)

8m30.898913471s ago: executing program 1 (id=1849):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_emit_ethernet(0x76, &(0x7f0000000100)={@broadcast, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "e400ff", 0x40, 0x3a, 0x0, @dev={0xfe, 0x80, '\x00', 0x37}, @local, {[], @dest_unreach={0x1, 0x5, 0x0, 0x2, '\x00', {0xf, 0x6, "c897df", 0x101, 0x33, 0x1, @loopback, @dev={0xfe, 0x80, '\x00', 0x37}, [@dstopts={0x4}], "f1a96e3d0e3a608a"}}}}}}}, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='netlink_extack\x00', r1}, 0x10)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x20000}, 0xc)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000000), 0x4)
getpid()
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x2d, '\x00', 0x0, @fallback=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f0000000380)=ANY=[@ANYRESDEC=r2, @ANYRESDEC, @ANYRESOCT], 0x0, 0x26, 0x0, 0x0, 0x2000, 0x0, @void, @value}, 0x28)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r6, 0x20, &(0x7f0000000100)={0x0, 0x0, <r7=>0x0, 0x0}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000000)=r7, 0x4)
r8 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x34)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0xc, &(0x7f0000000040)=@framed={{0x18, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r8}}, @func={0x85, 0x0, 0x1, 0x0, 0x3}, @initr0={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, @exit], {0x95, 0x0, 0xff85}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

8m27.661061889s ago: executing program 2 (id=1862):
r0 = syz_open_procfs(0x0, 0x0)
r1 = socket(0x18, 0x4, 0x0)
connect$pppoe(r1, &(0x7f0000000100)={0x18, 0x0, {0x2, @broadcast, 'vxcan1\x00'}}, 0x1e)
r2 = socket$kcm(0x11, 0x2, 0x0)
sendmsg$sock(r2, 0x0, 0x8800)
sendfile(r1, r0, 0x0, 0x8)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r3}, 0x18)
r4 = openat(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
write$binfmt_elf64(r4, 0x0, 0x5b0)
close(r4)
execveat(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000540)={0x1c, r6, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x33}, @void}}}, 0x1c}}, 0x4000054)

8m26.456828012s ago: executing program 2 (id=1867):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x20081e, &(0x7f00000020c0), 0x1, 0x4fb, &(0x7f0000000500)="$eJzs3U1vW1kZAODXzpeTyUwywywAIaYMAwVVdRJ3JhrNAoYVQqgSokuQ2pC4URQ7jmKnNKGL9j8gUYkVLPkBrLviJyDYsYEFEh8RqKnE4qJ7bbduajduk9hp/DzS1b3nnmu/5yS559hvEp8ARtaliLgfEZMRcSsi5lrnc60tPm9u6XWPD+6tHh7cW81Fktz4Vy6rT89Fx2NSb7WesxARP/5+xM9yL8at7+1vrlQq5Z1mcXqhUd1eqO/tX92orqyX18tbpdLy0vLip9c+KZ1aXz+oTjYPxtIGfvsXabNmW3Wd/ThNza5PPI2TGo+IH55FsCEYa/VnctgN4bXkI+K9iPgwu//nYiz7bgIAF1mSzEUy11kGAC66fJYDy+WLrVzAbOTzxWIzh/d+zOQrtXrjyu3a7tZaM1c2HxP52xuV8mIrVzgfE7m0vJQdPyuXjpSvRcS7EfHLqemsXFytVdaG+cIHAEbYW0fm//9ONed/AOCCKwy7AQDAwJn/AWD0mP8BYPSY/wFg9Jj/AWD0mP8BYPSY/wFgpPzo+vV0Sw5bn3+9dmdvd7N25+paub5ZrO6uFldrO9vF9VptPfvMnupxz1ep1baXPo7du/Pf2a43Fup7+zertd2txs3sc71vlicG0isA4GXe/eDRn3MRcf+z6WyLjrUczNVwseWH3QBgaMaG3QBgaKz2BaPrBO/xpQfgguiyRO9zChExffTqJEmSs20WcIYuf0n+H0ZVR/7fXwHDiJH/h9HVb/7/uPwA8OZJkly/a/5HvxcCAOebHD/Q4/39e63971q/HPjp2tErHp5lqwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOB8a6//W2ytBT4b+XyxGPF2RMzHRO72RqW8GBHvRMSfpiam0vLSkNsMAJxU/u+51vpfl+c+mj1aO5l7MpXtI+Lnv77xq7srjcbOH9Pz/356vvGwdb40jPYDAMdpz9PZvuON/OODe6vtbZDt+cf3IqLQjH94MBmHT+OPx3i2L8RERMz8J9cqN+U6chcncf9BRHyxW/9zMZvlQJornx6Nn8Z+e6Dx88/Fz2d1zX36tfjCK0dO5k6h+fBGe5SOP593u//ycSnbd7//C9kIdXKt8S99qtXDbAx8Fr89/o31GP8u9Rvj4z/8oHk0/WLdg4gvj0e0Yx92jD/t+Lke8T/qM/5fvvLVD3vVJb+JuBzd43fGWmhUtxfqe/tXN6or6+X18laptLy0vPjptU9KC1mOeqH3bPDPz66806su7f9Mj/iFY/r/jT77/9v/3frJ114S/1tf7xY/H++/JH46J36zz/grM78v9KpL46917X9b7/5f6TP+X/+2/8Ky4QDA8NT39jdXKpXyziAP2i8kBhrUwQU4SH9qzkEzuh58d1CxJuOVHpUkrxWr14hxGlk34Dxo3utJeScingy7MQAAAAAAAAAAAAAAQFeD+I+lYfcRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAi+v/AQAA//+XC86k")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143441, 0x98)
pwritev2(r0, &(0x7f00000001c0), 0x0, 0xe7b, 0x0, 0x0)

8m25.66424276s ago: executing program 2 (id=1872):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000005"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000140)=@newtaction={0xa0, 0x30, 0x9, 0x0, 0x25dfdbfd, {}, [{0x8c, 0x1, [@m_bpf={0x88, 0x1, 0x0, 0x0, {{0x8}, {0x60, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_OPS={0x3c, 0x4, [{}, {0x0, 0x0, 0x0, 0xffffffff}, {0x3, 0x4, 0x20, 0x1000000}, {0x0, 0x2}, {0x0, 0x0, 0x0, 0x2}, {}, {0x6}]}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x0, 0x7, 0x4}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa0}}, 0x0)

8m24.917050472s ago: executing program 2 (id=1876):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040))
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1, 0x0, 0x7}, 0x18)
socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xa00008, &(0x7f0000000140)={[{@min_batch_time={'min_batch_time', 0x3d, 0xd}}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@noblock_validity}]}, 0x1, 0x7ad, &(0x7f00000007c0)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x143042, 0x8d)
creat(&(0x7f0000000000)='./bus\x00', 0x0)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
r3 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r3, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x5, 0x0, "ef359f413bb901527f00d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a01000000000000004faa2ad9c084a003ea0000000000000000000800002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x8]})
sendfile(r2, r2, 0x0, 0x7a680000)

8m23.334333461s ago: executing program 2 (id=1880):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00'})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x4000)

8m22.540998063s ago: executing program 2 (id=1884):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000100), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x4c, r1, 0x1, 0x0, 0x0, {0x3d}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd, 0x82}, {0x5, 0x87}}]}, 0x4c}}, 0x0)

8m20.436138323s ago: executing program 33 (id=1884):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000100), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x4c, r1, 0x1, 0x0, 0x0, {0x3d}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd, 0x82}, {0x5, 0x87}}]}, 0x4c}}, 0x0)

8m20.358552406s ago: executing program 1 (id=1890):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040))
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1, 0x0, 0x7}, 0x18)
socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xa00008, &(0x7f0000000140)={[{@min_batch_time={'min_batch_time', 0x3d, 0xd}}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@noblock_validity}]}, 0x1, 0x7ad, &(0x7f00000007c0)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x143042, 0x8d)
creat(&(0x7f0000000000)='./bus\x00', 0x0)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
r3 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r3, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x5, 0x0, "ef359f413bb901527f00d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a01000000000000004faa2ad9c084a003ea0000000000000000000800002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x8]})
sendfile(r2, r2, 0x0, 0x7a680000)

8m16.747557178s ago: executing program 1 (id=1899):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000500)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = creat(&(0x7f0000000600)='./file0\x00', 0xe5)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, @void, @value}, 0x94)
write$qrtrtun(r1, 0x0, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r2, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000003c0)=[0x45c], 0x0, 0x0, 0x1, 0x1}}, 0x40)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r3, 0xffffffffffffffff, 0x0)

8m15.564907517s ago: executing program 1 (id=1903):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={0x0, r1}, 0x18)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000200)=ANY=[@ANYBLOB="50000000100003040000000000000000f2000000", @ANYRES32=0x0, @ANYBLOB="7fff0000000000002800128009000100766c616e000000001800028006000100", @ANYRES32], 0x50}, 0x1, 0xba01}, 0x0)

8m13.494236537s ago: executing program 34 (id=1903):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={0x0, r1}, 0x18)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000200)=ANY=[@ANYBLOB="50000000100003040000000000000000f2000000", @ANYRES32=0x0, @ANYBLOB="7fff0000000000002800128009000100766c616e000000001800028006000100", @ANYRES32], 0x50}, 0x1, 0xba01}, 0x0)

3m2.297282192s ago: executing program 7 (id=3645):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x35, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000080), &(0x7f0000000380)=r0}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000300)={r2, &(0x7f00000001c0), 0x0}, 0x20)

3m1.7648633s ago: executing program 7 (id=3650):
bpf$TOKEN_CREATE(0x24, &(0x7f0000000180), 0x8)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
mremap(&(0x7f0000532000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f000034b000/0x1000)=nil)
mlock(&(0x7f0000626000/0x5000)=nil, 0x5000)
creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dd70)
setxattr$trusted_overlay_upper(0x0, &(0x7f00000000c0), 0x0, 0x1015, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
fcntl$lock(r0, 0x7, &(0x7f0000000200))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000000702000055ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1, 0x0, 0x178}, 0x18)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x4000, 0x0)

3m1.320979784s ago: executing program 7 (id=3654):
r0 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r0, 0x0, 0x0)
listen(r0, 0x3)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)
r2 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f0000000b40)=[{{0x0, 0x0, &(0x7f0000000640)=[{0x0}], 0x1}, 0x1}], 0x1, 0x30, 0x0)
sendmmsg(r2, &(0x7f0000001500), 0x588, 0x0)

3m0.789207047s ago: executing program 7 (id=3659):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000004c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ff8}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000850000002a00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

2m59.988976583s ago: executing program 7 (id=3662):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCSWINSZ(r0, 0x5414, &(0x7f0000000180)={0xb, 0x0, 0x3, 0x7fff})

2m59.20357336s ago: executing program 7 (id=3666):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x60000, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800010009000000000000000a00000000000000080001000200000004000b"], 0x24}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
io_setup(0x8, &(0x7f0000000600)=<r3=>0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
io_submit(r3, 0x1, &(0x7f0000000080)=[&(0x7f0000000140)={0x0, 0x4, 0x0, 0x1, 0x0, 0xffffffffffffffff, &(0x7f00000000c0)="01", 0x400000}])

2m44.641584176s ago: executing program 35 (id=3666):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x60000, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800010009000000000000000a00000000000000080001000200000004000b"], 0x24}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
io_setup(0x8, &(0x7f0000000600)=<r3=>0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
io_submit(r3, 0x1, &(0x7f0000000080)=[&(0x7f0000000140)={0x0, 0x4, 0x0, 0x1, 0x0, 0xffffffffffffffff, &(0x7f00000000c0)="01", 0x400000}])

2m8.010952301s ago: executing program 6 (id=3858):
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='limits\x00')
lseek(r0, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001900)={0x11, 0x4, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r3, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xca}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r3, &(0x7f0000003c40)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="03", 0x1}], 0x1}}], 0x1, 0x0)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r3, 0x84, 0x77, &(0x7f00000002c0)={0x0, 0x3}, 0x8)

2m7.200220004s ago: executing program 6 (id=3865):
r0 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c)
listen(r0, 0x3)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)
r2 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f0000000b40)=[{{0x0, 0x0, 0x0}, 0x1}], 0x1, 0x30, 0x0)
sendmmsg(r2, 0x0, 0x0, 0x0)

2m5.956418117s ago: executing program 6 (id=3872):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)=@newlink={0x4c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x215}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}]}}}, @IFLA_LINK={0x8}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x4c}, 0x1, 0xba01}, 0x0)

2m5.542066833s ago: executing program 6 (id=3874):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000080)='./bus\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x1, 0x368, &(0x7f0000000180)="$eJzs3U9oI9UfAPBvOmnSXfj9tjdREKI3Qct2b3qxRbqw2ItK8M9BDG5XJa1Ci8X2sG09KB4Fj3rypqAHD+JRBEW8efDqCrIqHrS3BRefTCaTTJu02y5WKX4+0PTlvfed73cmQzINyetzc9G9PBlXdnevx9RULepzj8zFjVpMRxal7RjVGNMHAJwON1KK31PhiCG1Ey4JADhhvdf/FyKiFdNFz+tfHjY/efUHgFOv//f/mcPmTB008MqJlAQAnLCR9//v3TPc6P3Uy7v1yqcCAIDT6omnn3l0fjHi8VZrKmLlzfX2ejseGo7PX4mXYjmW4nyci5sRxYVCflPr3V68tLhwvtVqbcVP09GOiIl+YLu4UpjPevHNmB2MDK42UkrZxU8WF2ZbPRGxvdXLHyu19fZknO3n//5sLA0vPKbLIqJ3c2lx4UKrv4H2Shm/FbEzfN8ir38mzsW3zw82k1L5CcbFhauzE/07w/j1djMuD47Cge+AAAAAAAAAAAAAAAAAAAAAAADAbZlpDUwP1s9J+e9ipZyZmTHjvfVxivj++kA7xfpAqZkipd9ee6D9VhZ71gfavz7PuoUEAQAAAAAAAAAAAAAAAAAAYGBtoxGd5eWl1bWNzW61sbW6tjEREXnPy19/9MWZGJ1zi0a9SNGMGKRo9dNudjspKyenLGI0PMuTlz0ffDqouDqnOdiLsWU0xw/tRt743z0/vjscujsrt/zncHIW43cwq5Tx8L6kK/8vSjrOgRo0LlR7mqPZr6WUKj1vVMOvPju6wahF1I//wG12J+LgOSlvfHX9xTvLo9/5PBXuu//ck9feef+Xbmc5zxy9R7CxunYzdTu1cvLxDkt+qMueWhSNWvVMqB8WvrO3p5N99+tTd739zdGyp2rPq/n5vG9OVuzOx/vDG0UjLzNvNIZny5lh+GR/J5aXJsec/Ldq3MZjesd7n32Y0g8/HzlFIa9+YuRpo/b3PQMBAAAAAAAAAAAAAAAAAAClynfF+/pf9p08LOrBx06+MgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD45wz//3+lsbMd+3qO0vhja0xUc2l1LaLxb+8mAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/cX8FAAD//zbhVeI=")
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x21000000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x640c7400, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
r1 = io_uring_setup(0x797f, &(0x7f00000000c0)={0x0, 0x2cbe, 0x4, 0x0, 0x56})
r2 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
close_range(r1, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
getdents(r0, &(0x7f0000000500)=""/173, 0xad)

2m3.180555035s ago: executing program 6 (id=3884):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)=@newlink={0x4c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x215}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}]}}}, @IFLA_LINK={0x8}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x4c}, 0x1, 0xba01}, 0x0)

2m1.920726122s ago: executing program 6 (id=3890):
socket$kcm(0x29, 0x2, 0x0)
pipe(&(0x7f00000005c0))
syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000540)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0x8, 0x56a, 0xd7, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0xff, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x1c, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0xff}}}}}]}}]}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_GETKMSGREDIRECT(r1, 0x541c, &(0x7f0000000000))

2m0.347469211s ago: executing program 36 (id=3890):
socket$kcm(0x29, 0x2, 0x0)
pipe(&(0x7f00000005c0))
syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000540)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0x8, 0x56a, 0xd7, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0xff, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x1c, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0xff}}}}}]}}]}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_GETKMSGREDIRECT(r1, 0x541c, &(0x7f0000000000))

7.808328285s ago: executing program 8 (id=4382):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="9feb01001800000000000000240000002400000004000000000000000200"], &(0x7f0000000240)=""/220, 0x40, 0xdc, 0xa, 0x0, 0x0, @void, @value}, 0x28)

7.490223975s ago: executing program 0 (id=4383):
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
setsockopt$sock_int(r0, 0x1, 0x2e, 0x0, 0x0)
r1 = dup(r0)
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000240), 0x8080, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})

7.244643752s ago: executing program 8 (id=4386):
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc)
openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sched_setscheduler(0x0, 0x2, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
pipe2(0x0, 0x80000)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r3, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000001c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010026bd0b736cf6fa4e1b0d0000180001801400020064756d6d7930"], 0x2c}, 0x1, 0x0, 0x0, 0x2008040}, 0x880)
splice(r2, 0x0, 0xffffffffffffffff, 0x0, 0x6c, 0xd)

6.330232876s ago: executing program 8 (id=4390):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bond0\x00', <r1=>0x0})
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)=@newlink={0x44, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x215}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0x44}, 0x1, 0xba01}, 0x0)

6.186346084s ago: executing program 0 (id=4391):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x1b, &(0x7f00000000c0)={@remote={0xfe, 0x80, '\x00', 0xffffffffffffffff}}, 0x20)
socket$netlink(0x10, 0x3, 0x4)
r1 = getpid()
syz_pidfd_open(r1, 0x0)
syz_clone(0x49000, &(0x7f0000002b40)="38ec65c87c8501a7b1885f4fffc92f72f35d26c7315472c5e512e53d449f94576105c787897491d46ff51e7defd2753895d5c8e9237dc7dd74affdf99284217f22b39b19b32e6e4f7d855375fcd9d27c64716315e5968236b9cbd52e31bf541a763722c8c046172c0788d704c703c0dcc41758bfcdc3cc39e6e2fe6f61f0cd14dac93a44d55c20cf1e96436ee7c3cf5517226a08bd1de088408e7269648aae", 0x9f, 0x0, &(0x7f0000002c40), &(0x7f0000002c80)="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")
syz_emit_ethernet(0x4e, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd6000000000180600fe8000000000000000000000000000bbfe80002000"], 0x0)

5.609439012s ago: executing program 8 (id=4393):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

5.448239324s ago: executing program 9 (id=4394):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000040)={0xb, {'syz1\x00', 'syz1\x00', 'syz0\x00', 0x60, 0x3, 0x1, 0x4, 0x8001, 0x2, "75aaf25f710405f3b19c396adaec8563fc4ebdc685e67a9e5a9fec79caa92e2aa106c3333dfcc1c106d7cedc67235d0540866dc29ee6e78c21b8e25dedb6b4f7267dd39ba9370f09231c97eacc3bb01a579648c2030361d028494a64a5cb1a75"}}, 0x178)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000900)={'bridge0\x00', @remote})
r2 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000580)=@newqdisc={0x68, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x19, 0x2, {{0xd, 0x3, 0x0, 0x6, 0xfffffffa, 0x22}, [@TCA_NETEM_RATE={0x14, 0x6, {0xe1, 0x79d, 0x0, 0x3}}, @TCA_NETEM_ECN={0x8, 0x7, 0x1}]}}}]}, 0x68}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000300)={'batadv_slave_0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000600)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000340)={&(0x7f0000000cc0)=@newqdisc={0x24, 0x24, 0x100, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0xfff2, 0x4}, {0xe, 0x3}, {0xc, 0xd}}}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x800)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x48)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000c80)='kfree\x00'}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r6}, &(0x7f0000000380), &(0x7f00000003c0)}, 0x20)
io_uring_register$IORING_UNREGISTER_PBUF_RING(0xffffffffffffffff, 0x17, &(0x7f00000075c0)={0x0, 0x0, 0x1}, 0x1)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r8}, 0x18)
socket$inet(0x2, 0x4000000000000001, 0x0)
r9 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b000068dfb2eaaca0363500000004000000000013c76886f0d2e71f89d5560152b3e170b0a510e689b238723dc1d1915a345eb43700498b117e46c2ada5ab6253f84b9ef0ead9ee9f007905256868643ddcb80527350a2471", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000bc0)={0x11, 0xf, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000ff010000000000000000000018110000a1b4ae5141e58fec2af328639b3161271599d57a15964f87b394542dff4c5e238d499ecf47ece3ace7dc564d48e4f720a9f805808e2f9ec8844b844e11e5f9629904c563a63dd5e3de3320b7eb30f86a92c7c94c2e2ed1d28eb57a20982165e548a4008d30816701337e2081c44efaea028479cbaed728d06dc50a00689eae36e33ce11d45855b7dfe2ee8f3ab3bb176ef6fca3501257f2ec441cbf26eb292987043bfecfe1d5c70b466a397f61ce766991594", @ANYRES32=r9, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000085000000b7000000000000009500000000000000"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='kfree\x00', r10}, 0x18)
r11 = socket$nl_route(0x10, 0x3, 0x0)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r12, 0x8933, &(0x7f00000002c0)={'team0\x00', <r13=>0x0})
sendmsg$nl_route_sched(r11, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000740)=@newtfilter={0x24, 0x11, 0xd27, 0x70bd29, 0x25dfdbff, {0x0, 0x0, 0x74, r13, {0xd, 0xfff2}, {}, {0xe, 0x8}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x8881}, 0x0)

5.02015999s ago: executing program 5 (id=4395):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e850000000700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x61, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSARP(r0, 0x8953, &(0x7f0000000180)={{0x2, 0x0, @remote}, {0x0, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}}, 0x0, {0x2, 0x0, @multicast2}, 'rose0\x00'})
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = mq_open(&(0x7f00000005c0)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1aD\x05!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|\x00\x17\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbb\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x1b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\x00\x80\x00\x00w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86t\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99M\'j\x03\xb8\xbf\xe6\xb2M\b/\rp\xa5\x00\x00\x00\x00I\xd2\xae\x7f\xaf\xf4\xd1LEz\xd5\v\xcf\x8e\xbbT\xae\xe7H\xb0\x10\xd6\x86\xbfz\x98a\xc7\x1dN\xefMM{\x82j\x02\xa8\xfd\xb3\xf72\x0e\x19\xcc\xf9\xce\\T\xa6\x911\xfb\x8b\xcfk\xc2\xd2\xf4\n\xa0\x89\x9dt5\x0f0\f\xd4\x05P\x1c\xa8\xd7b\xb8\t\xa4^\"\x95\xf4\xfe:\x91,\xc7\xfbP\x97w\xc7\x1a|\xe3\x911\xdd\v\xa1-\xc1\x1d\xba0:\x89\xcd\x11\xa8\x93L\x9c))\xfa\x16\xa3\xdeE;j\f\xd8Q\xf4\xf8Nt\x96\xdaphV\x84\xd1\x9b%\xf8\xb2\x01\xf3\xce4Z\xa4\x91\x87?\x0e\xfe\x9e\xe6\xc4G\xe8)\xf4\xb9\x8e\x99j\xcc\x10b\xe4\xf8\xec\x9b\x12\xb1M\xdf\t fI\x95\xbdu`(\x1b\xca\x00\x00\x00dd@\xfc\xe5w=H\xbdiV\xd6\x9c\x81\x05\xb1\xbc\x93\x9fu\x1cx4\xb3\xd8\xa9ZK?\xf1\'\xdf\xbb\xbfy\xcc\x81y\x01\xbe+\x86\xc7\xbd\xefF.\x8d\x97[C\xc4\xc2\xf63W\a\xb2\x89\x15}kw\xdepe)uY\xde\xb8\x16\xc0\x95\x91.\xe7-\xb4\x8aP', 0x40, 0x9, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kmem_cache_free\x00', r4, 0x0, 0x9}, 0x18)
munlockall()
fcntl$setlease(r3, 0x400, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="1e000049c40cc488b3cf6da8fe7d566ec1946deaa94adf96fb0066e88600000000ff9f57f10f1e9b16490add258ed1e53340edb979bd31a237a7cf0f24e873b75bcb3e1584bb2f54d5623278", @ANYBLOB="5f151e5be836e0175402dbc506fbf2fb9262408aaa28f936389aed3dfb119ead0320053109ab9f9cae95ad9c0faf750b681b236192d8d34c76ba05cab8e31f9513c0a1acf5046792337ca4d48ecb6b2ba2c9ea0e8f5c226c709299936a9b8d436c84f0c650fb62a5dbbae66be02402ad2fe05e81bdb02d952c4055a492767e5e06d3196fcbf81f3f4504", @ANYRESOCT=r2, @ANYRES16, @ANYRESDEC=r2], 0x48)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)

4.869427785s ago: executing program 4 (id=4396):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="9feb01001800000000000000240000002400000004000000000000000200"], &(0x7f0000000240)=""/220, 0x40, 0xdc, 0xa, 0x0, 0x0, @void, @value}, 0x28)

4.74517952s ago: executing program 8 (id=4397):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = syz_io_uring_setup(0x33c2, 0x0, 0x0, 0x0)
r2 = syz_io_uring_setup(0xd3c, &(0x7f00000003c0)={0x0, 0x576, 0x0, 0x0, 0x221, 0x0, r1}, &(0x7f0000000700)=<r3=>0x0, &(0x7f00000002c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_OPENAT2={0x1c, 0x1e, 0x0, 0xffffffffffffffff, 0x0, 0x0})
dup(0xffffffffffffffff)
io_uring_enter(r2, 0xce3, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r2, 0x4ac9, 0x3900, 0x1800000000000000, 0x0, 0x0)

4.741877303s ago: executing program 0 (id=4398):
syz_io_uring_setup(0x5c2, &(0x7f0000000140), &(0x7f00000001c0)=<r0=>0x0, &(0x7f0000000580))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x4, 0x0, 0x0, 0x4)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f00000010c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x460, 0x280, 0x268, 0x300, 0x280, 0x268, 0x390, 0x460, 0x460, 0x390, 0x460, 0x9, 0x0, {[{{@uncond, 0x0, 0x240, 0x280, 0x0, {0x9401}, [@common=@inet=@hashlimit2={{0x150}, {'hsr0\x00', {0x0, 0xb, 0x0, 0x3, 0x0, 0x5, 0x9}}}, @common=@unspec=@limit={{0x48}, {0xfff, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x2}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x8, 0x21, "6bb6778f9bdec125b0fb4f26be757b1e6f2fb8e9079627dc6726c4bc85e9"}}}, {{@ipv6={@private2, @remote, [], [], 'ip6gretap0\x00', 'ip6_vti0\x00'}, 0x0, 0xa8, 0x110}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x511)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240))
fsync(0xffffffffffffffff)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
readv(r2, 0x0, 0x0)
write$UHID_INPUT(0xffffffffffffffff, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x21, 0x0, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x4)
recvmsg(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0}, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0xc1842, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x0)
rt_sigsuspend(&(0x7f00000002c0)={[0x225c17d03]}, 0x8)

4.14371321s ago: executing program 4 (id=4399):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r2, 0x0, 0x178}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

4.068349185s ago: executing program 9 (id=4400):
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc)
openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sched_setscheduler(0x0, 0x2, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
pipe2(0x0, 0x80000)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r3, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000001c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010026bd0b736cf6fa4e1b0d0000180001801400020064756d6d7930"], 0x2c}, 0x1, 0x0, 0x0, 0x2008040}, 0x880)
splice(r2, 0x0, 0xffffffffffffffff, 0x0, 0x6c, 0xd)

3.584101872s ago: executing program 9 (id=4401):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000020c0)=[@in6={0xa, 0x0, 0x0, @remote, 0x34}]}, &(0x7f0000002100)=0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x0, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x18)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/\x00et/\x00\x00v4\x00\x00s/\x92ync_\x00le\x86\xa7\x8cm\xa0\x8dN\xd4\xa2\x88\x00\xd1l,'}, 0x30)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r2)
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x100)
getdents(r3, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x127081)

3.543938027s ago: executing program 4 (id=4402):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001600000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r0}, 0x10)
timer_create(0x2, 0x0, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f0000000380)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
unshare(0x64000600)

3.267448136s ago: executing program 5 (id=4403):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bond0\x00', <r1=>0x0})
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)=@newlink={0x44, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x215}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0x44}, 0x1, 0xba01}, 0x0)

3.168334083s ago: executing program 0 (id=4404):
bpf$TOKEN_CREATE(0x24, &(0x7f0000000180), 0x8)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
mremap(&(0x7f0000532000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f000034b000/0x1000)=nil)
mlock(&(0x7f0000626000/0x5000)=nil, 0x5000)
creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dd70)
setxattr$trusted_overlay_upper(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
fcntl$lock(r0, 0x7, &(0x7f0000000200))
syz_open_procfs(0xffffffffffffffff, &(0x7f0000001100)='fdinfo/4\x00')
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000000702000055ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1, 0x0, 0x178}, 0x18)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x4000, 0x0)

2.500982181s ago: executing program 5 (id=4405):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000000480)={0xa, 0x4e20, 0x0, @mcast1={0xff, 0x5}}, 0x1c)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="900000001000370400"/20, @ANYRES32=0x0, @ANYBLOB="8b04040000000000700012800b00010067656e65766500006000028005000400010000001400070000000000000000"], 0x90}}, 0x4048084)

2.224218892s ago: executing program 0 (id=4406):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000500)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r2, &(0x7f0000000000), 0x10)
close(r1)
socket$netlink(0x10, 0x3, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='sys_enter\x00', r3}, 0x10)
r4 = syz_open_procfs(0x0, &(0x7f0000000200)='ns\x00')
getdents(r4, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', 0xffffffffffffffff, 0x0, 0x4000000000002ab}, 0x18)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0xb, 0xd}, {}, {0x8, 0xfff1}}}, 0x24}}, 0x40004)
recvmmsg(r7, &(0x7f0000005140)=[{{0x0, 0x0, &(0x7f0000001a80)=[{&(0x7f0000000640)=""/216, 0xd8}, {&(0x7f00000052c0)=""/235, 0xeb}, {&(0x7f0000003080)=""/4096, 0x1000}], 0x3}, 0x3}], 0x1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)

2.165638357s ago: executing program 9 (id=4407):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

2.14169783s ago: executing program 4 (id=4408):
mkdir(&(0x7f0000000000)='./control\x00', 0x20)
r0 = open(&(0x7f0000022ff6)='./control\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000100)='./control\x00', 0x0)
unlinkat(r0, &(0x7f0000000140)='./control\x00', 0x200)

1.981448542s ago: executing program 5 (id=4409):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="9feb010018000000000000002400000024000000040000000000000002000013020000"], &(0x7f0000000240)=""/220, 0x40, 0xdc, 0xa, 0x0, 0x0, @void, @value}, 0x28)

1.055413589s ago: executing program 8 (id=4410):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000040)={0xb, {'syz1\x00', 'syz1\x00', 'syz0\x00', 0x60, 0x3, 0x1, 0x4, 0x8001, 0x2, "75aaf25f710405f3b19c396adaec8563fc4ebdc685e67a9e5a9fec79caa92e2aa106c3333dfcc1c106d7cedc67235d0540866dc29ee6e78c21b8e25dedb6b4f7267dd39ba9370f09231c97eacc3bb01a579648c2030361d028494a64a5cb1a75"}}, 0x178)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000900)={'bridge0\x00', @remote})
r2 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000580)=@newqdisc={0x68, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x19, 0x2, {{0xd, 0x3, 0x0, 0x6, 0xfffffffa, 0x22}, [@TCA_NETEM_RATE={0x14, 0x6, {0xe1, 0x79d, 0x0, 0x3}}, @TCA_NETEM_ECN={0x8, 0x7, 0x1}]}}}]}, 0x68}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000300)={'batadv_slave_0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000600)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000340)={&(0x7f0000000cc0)=@newqdisc={0x24, 0x24, 0x100, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0xfff2, 0x4}, {0xe, 0x3}, {0xc, 0xd}}}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x800)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x48)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000c80)='kfree\x00'}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r6}, &(0x7f0000000380), &(0x7f00000003c0)}, 0x20)
io_uring_register$IORING_UNREGISTER_PBUF_RING(0xffffffffffffffff, 0x17, &(0x7f00000075c0)={0x0, 0x0, 0x1}, 0x1)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r8}, 0x18)
socket$inet(0x2, 0x4000000000000001, 0x0)
r9 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b000068dfb2eaaca0363500000004000000000013c76886f0d2e71f89d5560152b3e170b0a510e689b238723dc1d1915a345eb43700498b117e46c2ada5ab6253f84b9ef0ead9ee9f007905256868643ddcb80527350a2471", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000bc0)={0x11, 0xf, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000ff010000000000000000000018110000a1b4ae5141e58fec2af328639b3161271599d57a15964f87b394542dff4c5e238d499ecf47ece3ace7dc564d48e4f720a9f805808e2f9ec8844b844e11e5f9629904c563a63dd5e3de3320b7eb30f86a92c7c94c2e2ed1d28eb57a20982165e548a4008d30816701337e2081c44efaea028479cbaed728d06dc50a00689eae36e33ce11d45855b7dfe2ee8f3ab3bb176ef6fca3501257f2ec441cbf26eb292987043bfecfe1d5c70b466a397f61ce766991594", @ANYRES32=r9, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000085000000b7000000000000009500000000000000"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='kfree\x00', r10}, 0x18)
r11 = socket$nl_route(0x10, 0x3, 0x0)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r12, 0x8933, &(0x7f00000002c0)={'team0\x00', <r13=>0x0})
sendmsg$nl_route_sched(r11, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000740)=@newtfilter={0x24, 0x11, 0xd27, 0x70bd29, 0x25dfdbff, {0x0, 0x0, 0x74, r13, {0xd, 0xfff2}, {}, {0xe, 0x8}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x8881}, 0x0)

948.612496ms ago: executing program 9 (id=4411):
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc)
openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
pipe2(0x0, 0x80000)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r3, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000001c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010026bd0b736cf6fa4e1b0d0000180001801400020064756d6d7930"], 0x2c}, 0x1, 0x0, 0x0, 0x2008040}, 0x880)
splice(r2, 0x0, 0xffffffffffffffff, 0x0, 0x6c, 0xd)

795.746413ms ago: executing program 4 (id=4412):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r2, 0x0, 0x178}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

725.283862ms ago: executing program 5 (id=4413):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e850000000700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x61, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSARP(r0, 0x8953, &(0x7f0000000180)={{0x2, 0x0, @remote}, {0x0, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}}, 0x0, {0x2, 0x0, @multicast2}, 'rose0\x00'})
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = mq_open(&(0x7f00000005c0)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1aD\x05!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|\x00\x17\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbb\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x1b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\x00\x80\x00\x00w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86t\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99M\'j\x03\xb8\xbf\xe6\xb2M\b/\rp\xa5\x00\x00\x00\x00I\xd2\xae\x7f\xaf\xf4\xd1LEz\xd5\v\xcf\x8e\xbbT\xae\xe7H\xb0\x10\xd6\x86\xbfz\x98a\xc7\x1dN\xefMM{\x82j\x02\xa8\xfd\xb3\xf72\x0e\x19\xcc\xf9\xce\\T\xa6\x911\xfb\x8b\xcfk\xc2\xd2\xf4\n\xa0\x89\x9dt5\x0f0\f\xd4\x05P\x1c\xa8\xd7b\xb8\t\xa4^\"\x95\xf4\xfe:\x91,\xc7\xfbP\x97w\xc7\x1a|\xe3\x911\xdd\v\xa1-\xc1\x1d\xba0:\x89\xcd\x11\xa8\x93L\x9c))\xfa\x16\xa3\xdeE;j\f\xd8Q\xf4\xf8Nt\x96\xdaphV\x84\xd1\x9b%\xf8\xb2\x01\xf3\xce4Z\xa4\x91\x87?\x0e\xfe\x9e\xe6\xc4G\xe8)\xf4\xb9\x8e\x99j\xcc\x10b\xe4\xf8\xec\x9b\x12\xb1M\xdf\t fI\x95\xbdu`(\x1b\xca\x00\x00\x00dd@\xfc\xe5w=H\xbdiV\xd6\x9c\x81\x05\xb1\xbc\x93\x9fu\x1cx4\xb3\xd8\xa9ZK?\xf1\'\xdf\xbb\xbfy\xcc\x81y\x01\xbe+\x86\xc7\xbd\xefF.\x8d\x97[C\xc4\xc2\xf63W\a\xb2\x89\x15}kw\xdepe)uY\xde\xb8\x16\xc0\x95\x91.\xe7-\xb4\x8aP', 0x40, 0x9, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kmem_cache_free\x00', r3, 0x0, 0x9}, 0x18)
munlockall()
fcntl$setlease(r2, 0x400, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)

180.53707ms ago: executing program 9 (id=4414):
r0 = socket(0x10, 0x3, 0x0)
connect$netlink(r0, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000001500)=@newtaction={0x18, 0x32, 0x829, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)

97.214198ms ago: executing program 0 (id=4415):
r0 = io_uring_setup(0x7884, &(0x7f0000000a40)={0x0, 0x0, 0x2, 0xfffffffe, 0x3bd})
socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x1, 0x3fa, 0x0, 0x32, 0x2}, 0x9c)
bind$inet6(r1, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x200000, @loopback}, 0x1c)
sendto$inet6(r1, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg(r1, &(0x7f0000003980)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000e00)="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", 0x3b4}], 0x1}}], 0x1, 0x84004)
close_range(r0, 0xffffffffffffffff, 0x0)

14.33784ms ago: executing program 4 (id=4416):
bpf$TOKEN_CREATE(0x24, &(0x7f0000000180), 0x8)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
mremap(&(0x7f0000532000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f000034b000/0x1000)=nil)
mlock(&(0x7f0000626000/0x5000)=nil, 0x5000)
creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dd70)
setxattr$trusted_overlay_upper(0x0, &(0x7f00000000c0), 0x0, 0x1015, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
fcntl$lock(r0, 0x7, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000001100)='fdinfo/4\x00')
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000000702000055ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1, 0x0, 0x178}, 0x18)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x4000, 0x0)

0s ago: executing program 5 (id=4417):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000020c0)=[@in6={0xa, 0x0, 0x0, @remote, 0x34}]}, &(0x7f0000002100)=0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x0, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x18)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/\x00et/\x00\x00v4\x00\x00s/\x92ync_\x00le\x86\xa7\x8cm\xa0\x8dN\xd4\xa2\x88\x00\xd1l,'}, 0x30)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r2)
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x100)
getdents(r3, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x127081)

kernel console output (not intermixed with test programs):

esystem 00000000-0000-0000-0000-000000000000.
[  977.032160][T11005] hid-generic 0003:0001:0004.003C: item fetching failed at offset 2/96
[  977.087778][T11005] hid-generic 0003:0001:0004.003C: probe with driver hid-generic failed with error -22
[  977.183439][T15732] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3702'.
[  978.367638][T15742] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  978.405370][T15742] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  978.424346][T15742] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  978.445080][T15742] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  978.466156][T15742] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  978.664176][T15740] lo speed is unknown, defaulting to 1000
[  979.531249][T15754] vlan2: entered allmulticast mode
[  979.539631][T15754] bond0: entered allmulticast mode
[  979.546169][T15754] bond_slave_0: entered allmulticast mode
[  979.552258][T15754] bond_slave_1: entered allmulticast mode
[  979.565410][T15754] bridge0: port 1(vlan2) entered blocking state
[  979.572358][T15754] bridge0: port 1(vlan2) entered disabled state
[  979.586159][T15754] bond_slave_0: entered promiscuous mode
[  979.592261][T15754] bond_slave_1: entered promiscuous mode
[  979.918912][T15756] loop4: detected capacity change from 0 to 128
[  980.024946][T15756] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3711'.
[  980.049384][T15740] chnl_net:caif_netlink_parms(): no params data found
[  980.457277][ T5089] Bluetooth: hci3: command tx timeout
[  981.339251][T15740] bridge0: port 1(bridge_slave_0) entered blocking state
[  981.347162][T15740] bridge0: port 1(bridge_slave_0) entered disabled state
[  981.354985][T15740] bridge_slave_0: entered allmulticast mode
[  981.364258][T15740] bridge_slave_0: entered promiscuous mode
[  981.404090][T15740] bridge0: port 2(bridge_slave_1) entered blocking state
[  981.413969][T15740] bridge0: port 2(bridge_slave_1) entered disabled state
[  981.421784][T15740] bridge_slave_1: entered allmulticast mode
[  981.431382][T15740] bridge_slave_1: entered promiscuous mode
[  981.612124][T11101] hid-generic 0003:0001:0004.003D: item fetching failed at offset 2/96
[  981.649470][T11101] hid-generic 0003:0001:0004.003D: probe with driver hid-generic failed with error -22
[  981.779803][T15776] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3717'.
[  982.109933][T15740] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  982.196452][T15740] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  982.444459][ T5089] Bluetooth: hci3: command tx timeout
[  982.512443][T15740] team0: Port device team_slave_0 added
[  982.555977][T15740] team0: Port device team_slave_1 added
[  982.845564][T15740] batman_adv: batadv0: Adding interface: batadv_slave_0
[  982.859537][T15740] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  982.886850][T15740] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  982.976320][T15740] batman_adv: batadv0: Adding interface: batadv_slave_1
[  982.984305][T15740] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  983.011019][T15740] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  983.421174][T15790] loop6: detected capacity change from 0 to 164
[  983.549158][T15740] hsr_slave_0: entered promiscuous mode
[  983.559161][T15740] hsr_slave_1: entered promiscuous mode
[  983.567911][T15740] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  983.575798][T15740] Cannot create hsr debugfs directory
[  983.679052][T15790] ISOFS: unable to read i-node block
[  983.684685][T15790] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  983.713354][T15790] isofs_fill_super: get root inode failed
[  984.420077][ T5089] Bluetooth: hci3: command tx timeout
[  984.748962][T15796] loop6: detected capacity change from 0 to 1024
[  985.051732][T15796] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  985.115166][T15740] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  985.201551][T15740] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  985.263711][T15740] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  985.272916][T15796] EXT4-fs error (device loop6): ext4_iget_extra_inode:4693: inode #15: comm syz.6.3725: corrupted in-inode xattr: overlapping e_value 
[  985.365276][T15740] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  985.652813][T11039] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  986.412818][ T5089] Bluetooth: hci3: command tx timeout
[  986.767979][T15740] 8021q: adding VLAN 0 to HW filter on device bond0
[  986.857721][T15815] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3730'.
[  987.014657][T15740] 8021q: adding VLAN 0 to HW filter on device team0
[  987.103246][ T9754] bridge0: port 1(bridge_slave_0) entered blocking state
[  987.110932][ T9754] bridge0: port 1(bridge_slave_0) entered forwarding state
[  987.219198][ T9754] bridge0: port 2(bridge_slave_1) entered blocking state
[  987.226838][ T9754] bridge0: port 2(bridge_slave_1) entered forwarding state
[  987.668691][T15740] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  987.679503][T15740] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  988.963518][T15833] loop4: detected capacity change from 0 to 1024
[  989.167254][T15833] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  989.344937][T15833] EXT4-fs error (device loop4): ext4_iget_extra_inode:4693: inode #15: comm syz.4.3738: corrupted in-inode xattr: overlapping e_value 
[  989.440924][T15740] 8021q: adding VLAN 0 to HW filter on device batadv0
[  989.738908][T14392] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  990.223530][T15847] netlink: 56 bytes leftover after parsing attributes in process `syz.6.3742'.
[  990.322227][    T9] hid-generic 0003:0001:0004.003E: item fetching failed at offset 2/96
[  990.355782][    T9] hid-generic 0003:0001:0004.003E: probe with driver hid-generic failed with error -22
[  990.541484][T15854] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3744'.
[  991.539530][ T9733] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  991.694857][ T9733] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  991.870477][ T9733] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  992.030480][ T9733] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  992.239193][T15740] veth0_vlan: entered promiscuous mode
[  992.391756][T15740] veth1_vlan: entered promiscuous mode
[  992.542206][ T9733] bridge_slave_1: left allmulticast mode
[  992.548346][ T9733] bridge_slave_1: left promiscuous mode
[  992.555473][ T9733] bridge0: port 2(bridge_slave_1) entered disabled state
[  992.632428][ T9733] bridge_slave_0: left allmulticast mode
[  992.638626][ T9733] bridge_slave_0: left promiscuous mode
[  992.645594][ T9733] bridge0: port 1(bridge_slave_0) entered disabled state
[  993.270561][T15638] hid-generic 0003:0001:0004.003F: item fetching failed at offset 2/96
[  993.314855][T15638] hid-generic 0003:0001:0004.003F: probe with driver hid-generic failed with error -22
[  993.545076][T15892] netlink: 26 bytes leftover after parsing attributes in process `syz.6.3758'.
[  993.632620][ T9733] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  993.651059][T15895] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3757'.
[  993.707987][ T9733] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  993.740703][ T9733] bond0 (unregistering): Released all slaves
[  993.764600][ T9733] bond1 (unregistering): Released all slaves
[  993.789911][ T9733] bond2 (unregistering): Released all slaves
[  993.812270][ T9733] bond3 (unregistering): Released all slaves
[  993.893643][T15898] netlink: 96 bytes leftover after parsing attributes in process `syz.4.3759'.
[  993.907251][T15898] netlink: 'syz.4.3759': attribute type 5 has an invalid length.
[  993.915223][T15898] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3759'.
[  994.012529][T15889] bridge0: entered allmulticast mode
[  994.287177][T15740] veth0_macvtap: entered promiscuous mode
[  994.330602][T15740] veth1_macvtap: entered promiscuous mode
[  994.721835][T15740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  994.732889][T15740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  994.743258][T15740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  994.757906][T15740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  994.769149][T15740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  994.780073][T15740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  994.790345][T15740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  994.801134][T15740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  994.816298][T15740] batman_adv: batadv0: Interface activated: batadv_slave_0
[  994.878021][T15904] loop4: detected capacity change from 0 to 1024
[  994.919958][T15740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  994.930982][T15740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  994.941309][T15740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  994.955994][T15740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  994.967745][T15740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  994.978506][T15740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  994.988697][T15740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  994.999537][T15740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  995.014498][T15740] batman_adv: batadv0: Interface activated: batadv_slave_1
[  995.205458][T15742] Bluetooth: hci2: command 0x0406 tx timeout
[  995.348140][T15904] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  995.393569][ T9733] hsr_slave_0: left promiscuous mode
[  995.424415][ T9733] hsr_slave_1: left promiscuous mode
[  995.438255][ T9733] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  995.446170][ T9733] batman_adv: batadv0: Removing interface: batadv_slave_0
[  995.488508][ T9733] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  995.496337][ T9733] batman_adv: batadv0: Removing interface: batadv_slave_1
[  995.504236][T15904] EXT4-fs error (device loop4): ext4_iget_extra_inode:4693: inode #15: comm syz.4.3762: corrupted in-inode xattr: overlapping e_value 
[  995.538738][ T9733] veth1_macvtap: left promiscuous mode
[  995.544606][ T9733] veth0_macvtap: left promiscuous mode
[  995.550901][ T9733] veth1_vlan: left promiscuous mode
[  995.556997][ T9733] veth0_vlan: left promiscuous mode
[  995.689002][T15914] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3765'.
[  995.777452][T14392] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  996.536505][T15923] loop6: detected capacity change from 0 to 128
[  997.140271][T15914] smc: net device bond0 applied user defined pnetid S
[  997.156553][T15915] smc: net device bond0 erased user defined pnetid S
[  997.209258][T15918] IPv6: NLM_F_CREATE should be specified when creating new route
[  997.304699][ T5841] lo speed is unknown, defaulting to 1000
[  997.310961][ T5841] infiniband syz2: ib_query_port failed (-19)
[  997.366830][T15928] vlan3: entered allmulticast mode
[  997.372203][T15928] bond0: entered allmulticast mode
[  997.381490][T15928] bond_slave_0: entered allmulticast mode
[  997.393785][T15928] bond_slave_1: entered allmulticast mode
[  997.406740][T15928] bridge0: port 3(vlan3) entered blocking state
[  997.413861][T15928] bridge0: port 3(vlan3) entered disabled state
[  997.426534][T15928] vlan3: entered promiscuous mode
[  997.432171][T15928] bond0: entered promiscuous mode
[  997.437401][T15928] bond_slave_0: entered promiscuous mode
[  997.444414][T15928] bond_slave_1: entered promiscuous mode
[  997.459189][T15740] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  997.469228][T15740] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  997.478206][T15740] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  997.489513][T15740] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  997.814120][T11101] hid-generic 0003:0001:0004.0040: item fetching failed at offset 2/96
[  997.873628][T15933] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3772'.
[  997.905937][T11101] hid-generic 0003:0001:0004.0040: probe with driver hid-generic failed with error -22
[  999.015654][T15951] loop4: detected capacity change from 0 to 1024
[  999.131338][T15951] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  999.249303][T15951] EXT4-fs error (device loop4): ext4_iget_extra_inode:4693: inode #15: comm syz.4.3777: corrupted in-inode xattr: overlapping e_value 
[  999.596836][T14392] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1001.012929][T11101] hid-generic 0003:0001:0004.0041: item fetching failed at offset 2/96
[ 1001.070600][T11101] hid-generic 0003:0001:0004.0041: probe with driver hid-generic failed with error -22
[ 1001.159154][T15988] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3788'.
[ 1002.563913][T10486] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1002.573460][T10486] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1002.686952][T16005] loop4: detected capacity change from 0 to 1024
[ 1002.831782][ T9731] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1002.840581][ T9731] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1002.910770][T16005] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1003.083605][T16005] EXT4-fs error (device loop4): ext4_iget_extra_inode:4693: inode #15: comm syz.4.3792: corrupted in-inode xattr: overlapping e_value 
[ 1003.368793][T14392] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1004.081531][T11101] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[ 1004.135907][    T9] hid-generic 0003:0001:0004.0042: item fetching failed at offset 2/96
[ 1004.170189][    T9] hid-generic 0003:0001:0004.0042: probe with driver hid-generic failed with error -22
[ 1004.222357][T16031] netem: invalid attributes len -3
[ 1004.253048][T11101] usb 9-1: Using ep0 maxpacket: 8
[ 1004.266721][T11101] usb 9-1: config 0 interface 0 altsetting 255 endpoint 0x81 has an invalid bInterval 255, changing to 11
[ 1004.279295][T11101] usb 9-1: config 0 interface 0 altsetting 255 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1004.289604][T11101] usb 9-1: config 0 interface 0 has no altsetting 0
[ 1004.296525][T11101] usb 9-1: New USB device found, idVendor=056a, idProduct=00d7, bcdDevice= 0.00
[ 1004.306026][T11101] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1004.323420][T16036] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3803'.
[ 1004.328640][T11101] usb 9-1: config 0 descriptor??
[ 1004.582332][T11101] usbhid 9-1:0.0: can't add hid device: -71
[ 1004.591371][T11101] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[ 1004.677060][T11101] usb 9-1: USB disconnect, device number 2
[ 1005.205820][T16045] loop4: detected capacity change from 0 to 1024
[ 1005.348771][T16045] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1005.417675][T16045] EXT4-fs error (device loop4): ext4_iget_extra_inode:4693: inode #15: comm syz.4.3808: corrupted in-inode xattr: overlapping e_value 
[ 1005.490605][T16050] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3809'.
[ 1005.598792][T14392] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1005.791475][T16055] vlan2: entered allmulticast mode
[ 1005.797753][T16055] bond0: entered allmulticast mode
[ 1005.803083][T16055] bond_slave_0: entered allmulticast mode
[ 1005.809158][T16055] bond_slave_1: entered allmulticast mode
[ 1006.129675][T16060] loop6: detected capacity change from 0 to 512
[ 1006.220688][T16060] EXT4-fs (loop6): orphan cleanup on readonly fs
[ 1006.231088][T16060] EXT4-fs error (device loop6): ext4_orphan_get:1416: comm syz.6.3815: bad orphan inode 13
[ 1006.247706][T16060] ext4_test_bit(bit=12, block=18) = 1
[ 1006.253558][T16060] is_bad_inode(inode)=0
[ 1006.257934][T16060] NEXT_ORPHAN(inode)=2130706432
[ 1006.268004][T16060] max_ino=32
[ 1006.273026][T16060] i_nlink=1
[ 1006.278887][T16060] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1006.460823][T16067] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[ 1006.460823][T16067]    program syz.5.3817 not setting count and/or reply_len properly
[ 1006.781801][    T9] hid-generic 0003:0001:0004.0043: item fetching failed at offset 2/96
[ 1006.807919][T16073] netem: invalid attributes len -3
[ 1006.827145][    T9] hid-generic 0003:0001:0004.0043: probe with driver hid-generic failed with error -22
[ 1006.948094][T16074] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3819'.
[ 1007.401095][T16075] EXT4-fs error (device loop6): ext4_lookup:1793: inode #2: comm syz.6.3815: deleted inode referenced: 12
[ 1007.426493][    T9] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[ 1007.446799][T16060] EXT4-fs error (device loop6): ext4_lookup:1793: inode #2: comm syz.6.3815: deleted inode referenced: 12
[ 1007.533189][T16060] EXT4-fs (loop6): warning: mounting fs with errors, running e2fsck is recommended
[ 1007.593660][T16060] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.3815: bg 0: block 248: padding at end of block bitmap is not set
[ 1007.633575][    T9] usb 6-1: Using ep0 maxpacket: 8
[ 1007.657331][    T9] usb 6-1: config 0 interface 0 altsetting 255 endpoint 0x81 has an invalid bInterval 255, changing to 11
[ 1007.669434][    T9] usb 6-1: config 0 interface 0 altsetting 255 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1007.679822][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1007.686859][    T9] usb 6-1: New USB device found, idVendor=056a, idProduct=00d7, bcdDevice= 0.00
[ 1007.696364][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1007.712132][T16060] Quota error (device loop6): write_blk: dquota write failed
[ 1007.715732][    T9] usb 6-1: config 0 descriptor??
[ 1007.721209][T16060] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[ 1007.739957][T16060] EXT4-fs error (device loop6): ext4_acquire_dquot:6935: comm syz.6.3815: Failed to acquire dquot type 1
[ 1007.787096][T16060] EXT4-fs warning (device loop6): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[ 1007.840537][ T1282] ieee802154 phy0 wpan0: encryption failed: -22
[ 1007.901924][T16088] loop8: detected capacity change from 0 to 1024
[ 1007.948603][    T9] usbhid 6-1:0.0: can't add hid device: -71
[ 1007.955316][    T9] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[ 1007.969827][    T9] usb 6-1: USB disconnect, device number 2
[ 1008.050410][T16088] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1008.067963][T11039] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1008.217490][T16088] EXT4-fs error (device loop8): ext4_iget_extra_inode:4693: inode #15: comm syz.8.3823: corrupted in-inode xattr: overlapping e_value 
[ 1008.312221][T16097] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3825'.
[ 1008.460142][T15740] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1009.494996][T11101] hid-generic 0003:0001:0004.0044: item fetching failed at offset 2/96
[ 1009.510306][T16114] netem: invalid attributes len -3
[ 1009.533114][T11101] hid-generic 0003:0001:0004.0044: probe with driver hid-generic failed with error -22
[ 1009.622794][T16123] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3834'.
[ 1010.343043][T16131] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3840'.
[ 1010.721066][    T9] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[ 1010.819142][T16138] vlan3: entered allmulticast mode
[ 1010.905866][    T9] usb 5-1: Using ep0 maxpacket: 8
[ 1010.937659][    T9] usb 5-1: config 0 interface 0 altsetting 255 endpoint 0x81 has an invalid bInterval 255, changing to 11
[ 1010.954038][    T9] usb 5-1: config 0 interface 0 altsetting 255 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1010.965627][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[ 1010.972741][    T9] usb 5-1: New USB device found, idVendor=056a, idProduct=00d7, bcdDevice= 0.00
[ 1010.982274][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1010.992686][T16140] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1011.004222][    T9] usb 5-1: config 0 descriptor??
[ 1011.329152][T16140] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1011.445372][T16140] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1011.779419][T16140] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1011.915474][    T9] usbhid 5-1:0.0: can't add hid device: -71
[ 1011.927917][    T9] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[ 1011.941867][    T9] usb 5-1: USB disconnect, device number 6
[ 1012.196260][T16140] netdevsim netdevsim8 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1012.230418][T16140] netdevsim netdevsim8 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1012.267221][T16140] netdevsim netdevsim8 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1012.297440][T16140] netdevsim netdevsim8 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1012.791668][T15638] hid-generic 0003:0001:0004.0045: item fetching failed at offset 2/96
[ 1012.834064][T16159] netem: invalid attributes len -3
[ 1012.842281][T15638] hid-generic 0003:0001:0004.0045: probe with driver hid-generic failed with error -22
[ 1012.935947][T16164] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3852'.
[ 1012.936996][T16162] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3853'.
[ 1013.448406][T16168] loop5: detected capacity change from 0 to 1024
[ 1013.611453][T16168] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1013.688277][T16168] EXT4-fs error (device loop5): ext4_iget_extra_inode:4693: inode #15: comm syz.5.3855: corrupted in-inode xattr: overlapping e_value 
[ 1013.828434][ T9653] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1014.570757][T16190] loop5: detected capacity change from 0 to 512
[ 1014.593648][T16190] journal_path: Lookup failure for './file0'
[ 1014.600238][T16190] EXT4-fs: error: could not find journal device path
[ 1015.063681][T16200] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3867'.
[ 1015.086607][T16202] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1015.096325][T16202] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1015.106746][T16202] bridge0: entered allmulticast mode
[ 1015.120308][    T9] hid-generic 0003:0001:0004.0046: item fetching failed at offset 2/96
[ 1015.154621][    T9] hid-generic 0003:0001:0004.0046: probe with driver hid-generic failed with error -22
[ 1015.209849][T16204] netem: invalid attributes len -3
[ 1015.215578][T16204] netem: change failed
[ 1015.298268][T16202] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3868'.
[ 1015.313147][    C0] dccp_check_seqno: Step 6 failed for CLOSEREQ packet, (LSWL(171563250864993) <= P.seqno(171563250864992) <= S.SWH(171563250865067)) and (P.ackno exists or LAWL(76642844699134) <= P.ackno(76642844699134) <= S.AWH(76642844699134), sending SYNC...
[ 1015.478021][T16202] team0 (unregistering): Port device team_slave_0 removed
[ 1015.551530][T16202] team0 (unregistering): Port device team_slave_1 removed
[ 1015.773391][T16208] loop4: detected capacity change from 0 to 1024
[ 1015.834204][T16208] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1015.954933][T16208] EXT4-fs error (device loop4): ext4_iget_extra_inode:4693: inode #15: comm syz.4.3871: corrupted in-inode xattr: overlapping e_value 
[ 1016.161164][T14392] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1016.262047][T16217] loop6: detected capacity change from 0 to 256
[ 1016.467890][T16217] FAT-fs (loop6): Directory bread(block 64) failed
[ 1016.475052][T16217] FAT-fs (loop6): Directory bread(block 65) failed
[ 1016.481982][T16217] FAT-fs (loop6): Directory bread(block 66) failed
[ 1016.488930][T16217] FAT-fs (loop6): Directory bread(block 67) failed
[ 1016.495969][T16217] FAT-fs (loop6): Directory bread(block 68) failed
[ 1016.505967][T16217] FAT-fs (loop6): Directory bread(block 69) failed
[ 1016.513917][T16217] FAT-fs (loop6): Directory bread(block 70) failed
[ 1016.521380][T16217] FAT-fs (loop6): Directory bread(block 71) failed
[ 1016.528247][T16217] FAT-fs (loop6): Directory bread(block 72) failed
[ 1016.535155][T16217] FAT-fs (loop6): Directory bread(block 73) failed
[ 1016.632606][   T30] audit: type=1326 audit(2000001271.929:2150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16220 comm="syz.5.3877" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1016.655741][   T30] audit: type=1326 audit(2000001271.929:2151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16220 comm="syz.5.3877" exe="/root/syz-executor" sig=0 arch=40000003 syscall=311 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1016.678576][   T30] audit: type=1326 audit(2000001271.929:2152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16220 comm="syz.5.3877" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1017.884273][T16236] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3880'.
[ 1018.367404][T11039] FAT-fs (loop6): error, corrupted directory (invalid entries)
[ 1018.376120][T11039] FAT-fs (loop6): Filesystem has been set read-only
[ 1018.625206][   T30] audit: type=1326 audit(2000001274.008:2153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16242 comm="syz.8.3883" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1018.770586][   T30] audit: type=1326 audit(2000001274.071:2154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16242 comm="syz.8.3883" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1018.794240][   T30] audit: type=1326 audit(2000001274.092:2155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16242 comm="syz.8.3883" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1018.816974][   T30] audit: type=1326 audit(2000001274.092:2156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16242 comm="syz.8.3883" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1018.839515][   T30] audit: type=1326 audit(2000001274.113:2157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16242 comm="syz.8.3883" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1018.865971][   T30] audit: type=1326 audit(2000001274.207:2158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16242 comm="syz.8.3883" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1018.889777][   T30] audit: type=1326 audit(2000001274.207:2159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16242 comm="syz.8.3883" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1019.338831][T10486] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1019.401707][T16249] loop5: detected capacity change from 0 to 1024
[ 1019.466004][T10486] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1019.552700][T16249] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1019.611592][T10486] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1019.704606][T16249] EXT4-fs error (device loop5): ext4_iget_extra_inode:4693: inode #15: comm syz.5.3886: corrupted in-inode xattr: overlapping e_value 
[ 1019.807812][T10486] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1019.889404][T16257] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3889'.
[ 1020.000318][ T9653] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1020.129618][T10486] vlan3: left promiscuous mode
[ 1020.134943][T10486] bond0: left promiscuous mode
[ 1020.140538][T10486] bond_slave_0: left promiscuous mode
[ 1020.147042][T10486] bond_slave_1: left promiscuous mode
[ 1020.154960][T10486] bridge0: port 3(vlan3) entered disabled state
[ 1020.186196][T10486] bridge_slave_1: left allmulticast mode
[ 1020.192380][T10486] bridge_slave_1: left promiscuous mode
[ 1020.199355][T10486] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1020.253478][T10486] bridge_slave_0: left allmulticast mode
[ 1020.261313][T10486] bridge_slave_0: left promiscuous mode
[ 1020.271656][T10486] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1020.819216][T10486] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1020.829194][T10486] bond_slave_0: left allmulticast mode
[ 1020.842630][T10486] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1020.871789][T10486] bond_slave_1: left allmulticast mode
[ 1020.882374][T10486] bond0 (unregistering): Released all slaves
[ 1020.910309][T10486] bond1 (unregistering): Released all slaves
[ 1021.434705][T16267] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3895'.
[ 1021.857194][T10486] hsr_slave_0: left promiscuous mode
[ 1021.899157][T10486] hsr_slave_1: left promiscuous mode
[ 1021.907317][T10486] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1021.916375][T10486] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1022.032505][T10486] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1022.043467][T10486] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1022.208693][T10486] veth1_macvtap: left promiscuous mode
[ 1022.214451][T10486] veth0_macvtap: left promiscuous mode
[ 1022.220635][T10486] veth1_vlan: left promiscuous mode
[ 1022.226476][T10486] veth0_vlan: left promiscuous mode
[ 1022.576244][T15742] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1022.606409][T15742] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1022.629453][T15742] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1022.643116][T15742] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1022.667486][T15742] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1023.243772][T16284] loop5: detected capacity change from 0 to 128
[ 1023.265131][T16286] loop8: detected capacity change from 0 to 128
[ 1023.849857][T16286] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3901'.
[ 1024.686877][T15742] Bluetooth: hci0: command tx timeout
[ 1024.854023][   T30] kauditd_printk_skb: 4 callbacks suppressed
[ 1024.854100][   T30] audit: type=1326 audit(2000001280.559:2164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16296 comm="syz.8.3904" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1024.958524][   T30] audit: type=1326 audit(2000001280.611:2165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16296 comm="syz.8.3904" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1024.981902][   T30] audit: type=1326 audit(2000001280.611:2166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16296 comm="syz.8.3904" exe="/root/syz-executor" sig=0 arch=40000003 syscall=442 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1025.007431][   T30] audit: type=1326 audit(2000001280.611:2167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16296 comm="syz.8.3904" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1025.418692][T16304] loop5: detected capacity change from 0 to 2048
[ 1025.489021][T16304] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1025.525247][T16277] chnl_net:caif_netlink_parms(): no params data found
[ 1025.907349][ T9653] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1026.132180][   T30] audit: type=1326 audit(2000001281.902:2168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16321 comm="syz.4.3912" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be539 code=0x7ffc0000
[ 1026.155150][   T30] audit: type=1326 audit(2000001281.902:2169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16321 comm="syz.4.3912" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70be539 code=0x7ffc0000
[ 1026.181547][   T30] audit: type=1326 audit(2000001281.902:2170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16321 comm="syz.4.3912" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be539 code=0x7ffc0000
[ 1026.338318][   T30] audit: type=1326 audit(2000001281.997:2171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16321 comm="syz.4.3912" exe="/root/syz-executor" sig=0 arch=40000003 syscall=19 compat=1 ip=0xf70be539 code=0x7ffc0000
[ 1026.363471][   T30] audit: type=1326 audit(2000001281.997:2172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16321 comm="syz.4.3912" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be539 code=0x7ffc0000
[ 1026.386633][   T30] audit: type=1326 audit(2000001281.997:2173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16321 comm="syz.4.3912" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be539 code=0x7ffc0000
[ 1026.647733][T15742] Bluetooth: hci0: command tx timeout
[ 1026.850928][T16277] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1026.858764][T16277] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1026.866640][T16277] bridge_slave_0: entered allmulticast mode
[ 1026.876111][T16277] bridge_slave_0: entered promiscuous mode
[ 1026.895469][T16331] loop5: detected capacity change from 0 to 128
[ 1026.954932][T16277] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1026.962804][T16277] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1026.970777][T16277] bridge_slave_1: entered allmulticast mode
[ 1026.980461][T16277] bridge_slave_1: entered promiscuous mode
[ 1027.010317][T16331] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3913'.
[ 1027.355464][T16277] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1027.393708][T16277] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1027.405455][T16336] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3916'.
[ 1027.637670][T16277] team0: Port device team_slave_0 added
[ 1027.714620][T16277] team0: Port device team_slave_1 added
[ 1027.941131][T16277] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1027.948618][T16277] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1027.975232][T16277] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1028.004624][T16277] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1028.017561][T16277] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1028.045340][T16277] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1028.303579][T16277] hsr_slave_0: entered promiscuous mode
[ 1028.318881][T16277] hsr_slave_1: entered promiscuous mode
[ 1028.629760][T15742] Bluetooth: hci0: command tx timeout
[ 1029.514498][ T5841] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[ 1029.521940][T16277] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1029.545556][T16277] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1029.598662][T16277] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1029.645277][T16363] loop5: detected capacity change from 0 to 128
[ 1029.696625][T16277] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1029.717770][ T5841] usb 5-1: no configurations
[ 1029.722601][ T5841] usb 5-1: can't read configurations, error -22
[ 1029.785263][T16363] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3926'.
[ 1029.885763][ T5841] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[ 1029.891445][   T30] audit: type=1326 audit(2000001285.850:2174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16367 comm="syz.0.3929" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000
[ 1029.916366][   T30] audit: type=1326 audit(2000001285.871:2175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16367 comm="syz.0.3929" exe="/root/syz-executor" sig=0 arch=40000003 syscall=262 compat=1 ip=0xf710e539 code=0x7ffc0000
[ 1029.938974][   T30] audit: type=1326 audit(2000001285.871:2176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16367 comm="syz.0.3929" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000
[ 1029.963687][   T30] audit: type=1326 audit(2000001285.871:2177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16367 comm="syz.0.3929" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000
[ 1030.113861][ T5841] usb 5-1: no configurations
[ 1030.118697][ T5841] usb 5-1: can't read configurations, error -22
[ 1030.169731][ T5841] usb usb5-port1: attempt power cycle
[ 1030.524291][ T5841] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[ 1030.689960][T15742] Bluetooth: hci0: command tx timeout
[ 1030.697615][ T5841] usb 5-1: no configurations
[ 1030.702562][ T5841] usb 5-1: can't read configurations, error -22
[ 1030.745168][   T30] audit: type=1326 audit(2000001286.732:2178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16372 comm="syz.5.3931" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1030.768390][   T30] audit: type=1326 audit(2000001286.732:2179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16372 comm="syz.5.3931" exe="/root/syz-executor" sig=0 arch=40000003 syscall=437 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1030.789414][T16277] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1030.790958][   T30] audit: type=1326 audit(2000001286.732:2180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16372 comm="syz.5.3931" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1030.820446][   T30] audit: type=1326 audit(2000001286.742:2181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16372 comm="syz.5.3931" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1030.829021][ T5841] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[ 1030.844352][   T30] audit: type=1326 audit(2000001286.742:2182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16372 comm="syz.5.3931" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1030.970483][T16277] 8021q: adding VLAN 0 to HW filter on device team0
[ 1031.009142][T16375] loop5: detected capacity change from 0 to 1024
[ 1031.067550][   T30] audit: type=1326 audit(2000001287.078:2183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16372 comm="syz.5.3931" exe="/root/syz-executor" sig=0 arch=40000003 syscall=448 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1031.068644][ T9738] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1031.097881][ T9738] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1031.126556][T16375] EXT4-fs: Ignoring removed oldalloc option
[ 1031.134722][T16375] EXT4-fs: Ignoring removed i_version option
[ 1031.193875][ T5841] usb 5-1: no configurations
[ 1031.199740][ T5841] usb 5-1: can't read configurations, error -22
[ 1031.211068][ T5841] usb usb5-port1: unable to enumerate USB device
[ 1031.268739][T16375] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1031.292732][ T9738] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1031.300396][ T9738] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1031.618318][ T9653] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1031.937708][T16385] netlink: 'syz.0.3934': attribute type 2 has an invalid length.
[ 1032.941844][T16277] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1033.297071][T16407] loop8: detected capacity change from 0 to 128
[ 1035.120804][T16277] veth0_vlan: entered promiscuous mode
[ 1035.257392][T16277] veth1_vlan: entered promiscuous mode
[ 1035.462864][T16429] 9pnet_fd: Insufficient options for proto=fd
[ 1035.532612][T16277] veth0_macvtap: entered promiscuous mode
[ 1035.570982][T16431] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3949'.
[ 1035.634765][T16277] veth1_macvtap: entered promiscuous mode
[ 1035.685440][   T30] kauditd_printk_skb: 17 callbacks suppressed
[ 1035.685510][   T30] audit: type=1326 audit(2000001291.928:2201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16428 comm="syz.4.3950" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70be539 code=0x0
[ 1035.823390][T16277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1035.823481][T16277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1035.823570][T16277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1035.823654][T16277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1035.823733][T16277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1035.823810][T16277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1035.829119][T16277] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1035.870632][T16433] loop4: detected capacity change from 0 to 512
[ 1035.873203][T16433] journal_path: Non-blockdev passed as './bus'
[ 1035.873371][T16433] EXT4-fs: error: could not find journal device path
[ 1035.894208][T16277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1035.894330][T16277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1035.894401][T16277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1035.894486][T16277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1035.894572][T16277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1035.894657][T16277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1035.899394][T16277] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1035.966337][T16277] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1035.966511][T16277] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1035.966670][T16277] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1035.966858][T16277] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1037.708534][T16452] loop8: detected capacity change from 0 to 128
[ 1037.757858][   T30] audit: type=1326 audit(2000001294.112:2202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16449 comm="syz.8.3957" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1037.759739][   T30] audit: type=1326 audit(2000001294.112:2203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16449 comm="syz.8.3957" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1037.760921][   T30] audit: type=1326 audit(2000001294.112:2204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16449 comm="syz.8.3957" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1037.762243][   T30] audit: type=1326 audit(2000001294.112:2205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16449 comm="syz.8.3957" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1037.777193][   T30] audit: type=1326 audit(2000001294.133:2206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16449 comm="syz.8.3957" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1037.810582][   T30] audit: type=1326 audit(2000001294.164:2207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16449 comm="syz.8.3957" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1037.824137][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1037.973340][T16455] syz.8.3957: attempt to access beyond end of device
[ 1037.973340][T16455] loop8: rw=2049, sector=145, nr_sectors = 8 limit=128
[ 1037.973701][T16455] syz.8.3957: attempt to access beyond end of device
[ 1037.973701][T16455] loop8: rw=2049, sector=161, nr_sectors = 8 limit=128
[ 1037.974005][T16455] syz.8.3957: attempt to access beyond end of device
[ 1037.974005][T16455] loop8: rw=2049, sector=177, nr_sectors = 8 limit=128
[ 1037.974350][T16455] syz.8.3957: attempt to access beyond end of device
[ 1037.974350][T16455] loop8: rw=2049, sector=193, nr_sectors = 8 limit=128
[ 1037.974674][T16455] syz.8.3957: attempt to access beyond end of device
[ 1037.974674][T16455] loop8: rw=2049, sector=209, nr_sectors = 8 limit=128
[ 1037.975019][T16455] syz.8.3957: attempt to access beyond end of device
[ 1037.975019][T16455] loop8: rw=2049, sector=225, nr_sectors = 8 limit=128
[ 1037.975337][T16455] syz.8.3957: attempt to access beyond end of device
[ 1037.975337][T16455] loop8: rw=2049, sector=241, nr_sectors = 8 limit=128
[ 1037.975635][T16455] syz.8.3957: attempt to access beyond end of device
[ 1037.975635][T16455] loop8: rw=2049, sector=257, nr_sectors = 8 limit=128
[ 1037.975934][T16455] syz.8.3957: attempt to access beyond end of device
[ 1037.975934][T16455] loop8: rw=2049, sector=273, nr_sectors = 8 limit=128
[ 1038.311256][   T30] audit: type=1326 audit(2000001294.689:2208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16456 comm="syz.5.3958" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1038.311463][   T30] audit: type=1326 audit(2000001294.689:2209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16456 comm="syz.5.3958" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1038.362035][   T30] audit: type=1326 audit(2000001294.731:2210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16456 comm="syz.5.3958" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1038.692336][T15899] kworker/u8:1: attempt to access beyond end of device
[ 1038.692336][T15899] loop8: rw=1, sector=289, nr_sectors = 8 limit=128
[ 1038.907342][T16464] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3960'.
[ 1041.096989][ T9754] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1041.105100][ T9754] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1041.270299][T10482] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1041.282514][T10482] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1041.500748][T16500] loop4: detected capacity change from 0 to 1024
[ 1041.550146][T16505] 9pnet_fd: Insufficient options for proto=fd
[ 1041.603361][T16500] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1041.603785][T16500] ext4 filesystem being mounted at /152/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1041.672551][T16504] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3972'.
[ 1041.726740][   T30] kauditd_printk_skb: 16 callbacks suppressed
[ 1041.726818][   T30] audit: type=1326 audit(2000001298.269:2227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16502 comm="syz.8.3974" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x0
[ 1041.830298][T16508] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1041.848725][T16508] EXT4-fs (loop4): Remounting filesystem read-only
[ 1041.920876][T14392] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1041.931628][T16510] loop8: detected capacity change from 0 to 512
[ 1041.949991][T16510] journal_path: Non-blockdev passed as './bus'
[ 1041.950177][T16510] EXT4-fs: error: could not find journal device path
[ 1042.389987][T16514] vlan2: entered allmulticast mode
[ 1042.390091][T16514] bond0: entered allmulticast mode
[ 1042.390186][T16514] bond_slave_0: entered allmulticast mode
[ 1042.390284][T16514] bond_slave_1: entered allmulticast mode
[ 1042.674888][T16519] capability: warning: `syz.4.3977' uses deprecated v2 capabilities in a way that may be insecure
[ 1044.433770][T16538] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3985'.
[ 1045.628346][T16553] 9pnet_fd: Insufficient options for proto=fd
[ 1045.839279][   T30] audit: type=1326 audit(2000001302.594:2228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16552 comm="syz.0.3992" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x0
[ 1045.924179][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1046.394690][T16561] loop4: detected capacity change from 0 to 1024
[ 1046.420900][T16561] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[ 1046.471732][T16561] EXT4-fs (loop4): revision level too high, forcing read-only mode
[ 1046.473430][T16561] EXT4-fs (loop4): orphan cleanup on readonly fs
[ 1046.479099][T16561] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5899: Corrupt filesystem
[ 1046.489713][T16561] EXT4-fs (loop4): Remounting filesystem read-only
[ 1046.490944][T16561] Quota error (device loop4): write_blk: dquota write failed
[ 1046.491294][T16561] Quota error (device loop4): write_blk: dquota write failed
[ 1046.491700][T16561] Quota error (device loop4): qtree_write_dquot: Error -28 occurred while creating quota
[ 1046.491938][T16561] Quota error (device loop4): v2_write_file_info: Can't write info structure
[ 1046.492142][T16561] EXT4-fs (loop4): 1 orphan inode deleted
[ 1046.502774][T16561] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1046.587684][T14392] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1048.036362][T16587] loop4: detected capacity change from 0 to 512
[ 1048.119273][T16587] EXT4-fs (loop4): orphan cleanup on readonly fs
[ 1048.251904][T16587] EXT4-fs error (device loop4): ext4_orphan_get:1416: comm syz.4.4007: bad orphan inode 13
[ 1048.282082][   T30] audit: type=1326 audit(2000001305.166:2229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16593 comm="syz.8.4009" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1048.304366][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1048.377222][   T30] audit: type=1326 audit(2000001305.229:2230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16593 comm="syz.8.4009" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1048.399467][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1048.409361][   T30] audit: type=1326 audit(2000001305.240:2231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16593 comm="syz.8.4009" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fe2567 code=0x7ffc0000
[ 1048.431687][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1048.438822][   T30] audit: type=1326 audit(2000001305.240:2232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16593 comm="syz.8.4009" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1048.461093][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1048.467714][   T30] audit: type=1326 audit(2000001305.240:2233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16593 comm="syz.8.4009" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1048.490405][   T30] audit: type=1326 audit(2000001305.240:2234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16593 comm="syz.8.4009" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1048.512665][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1048.522254][   T30] audit: type=1326 audit(2000001305.397:2235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16593 comm="syz.8.4009" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1048.544427][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1048.551078][   T30] audit: type=1326 audit(2000001305.418:2236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16593 comm="syz.8.4009" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fe2567 code=0x7ffc0000
[ 1048.573352][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1048.579902][   T30] audit: type=1326 audit(2000001305.418:2237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16593 comm="syz.8.4009" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1048.604652][   T30] audit: type=1326 audit(2000001305.418:2238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16593 comm="syz.8.4009" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fe2567 code=0x7ffc0000
[ 1048.641599][T16587] ext4_test_bit(bit=12, block=18) = 1
[ 1048.647202][T16587] is_bad_inode(inode)=0
[ 1048.651688][T16587] NEXT_ORPHAN(inode)=2130706432
[ 1048.656738][T16587] max_ino=32
[ 1048.663936][T16587] i_nlink=1
[ 1048.671761][T16587] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1048.877772][T16587] netlink: 'syz.4.4007': attribute type 4 has an invalid length.
[ 1048.889025][T16587] netlink: 3657 bytes leftover after parsing attributes in process `syz.4.4007'.
[ 1049.586246][T14392] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1050.580015][T16619] 9pnet_fd: Insufficient options for proto=fd
[ 1051.009608][T16626] loop9: detected capacity change from 0 to 512
[ 1051.012412][T16626] journal_path: Non-blockdev passed as './bus'
[ 1051.012814][T16626] EXT4-fs: error: could not find journal device path
[ 1052.156931][T16639] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4026'.
[ 1053.393141][T16656] loop5: detected capacity change from 0 to 1024
[ 1053.424213][T16658] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4032'.
[ 1053.630770][T16656] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1053.836418][T16656] EXT4-fs error (device loop5): ext4_iget_extra_inode:4693: inode #15: comm syz.5.4033: corrupted in-inode xattr: overlapping e_value 
[ 1054.123058][ T9653] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1054.343949][T16669] 9pnet_fd: Insufficient options for proto=fd
[ 1054.525999][   T30] kauditd_printk_skb: 167 callbacks suppressed
[ 1054.526070][   T30] audit: type=1326 audit(2000001311.717:2406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16668 comm="syz.9.4037" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fe7539 code=0x0
[ 1054.608924][T16674] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4039'.
[ 1054.871055][T16676] loop9: detected capacity change from 0 to 512
[ 1054.926551][T16676] journal_path: Non-blockdev passed as './bus'
[ 1054.926725][T16676] EXT4-fs: error: could not find journal device path
[ 1055.186950][T16678] infiniband srz1: RDMA CMA: cma_listen_on_dev, error -98
[ 1055.248557][T16684] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4041'.
[ 1055.954039][   T30] audit: type=1326 audit(2000001313.208:2407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16691 comm="syz.0.4046" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000
[ 1055.954248][   T30] audit: type=1326 audit(2000001313.208:2408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16691 comm="syz.0.4046" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000
[ 1055.957013][   T30] audit: type=1326 audit(2000001313.218:2409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16691 comm="syz.0.4046" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf710e539 code=0x7ffc0000
[ 1055.967407][   T30] audit: type=1326 audit(2000001313.229:2410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16691 comm="syz.0.4046" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf710e539 code=0x7ffc0000
[ 1055.967895][   T30] audit: type=1326 audit(2000001313.229:2411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16691 comm="syz.0.4046" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf710e567 code=0x7ffc0000
[ 1055.973972][   T30] audit: type=1326 audit(2000001313.229:2412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16691 comm="syz.0.4046" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000
[ 1055.983832][   T30] audit: type=1326 audit(2000001313.239:2413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16691 comm="syz.0.4046" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf710e539 code=0x7ffc0000
[ 1055.984033][   T30] audit: type=1326 audit(2000001313.239:2414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16691 comm="syz.0.4046" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf710e567 code=0x7ffc0000
[ 1055.984231][   T30] audit: type=1326 audit(2000001313.239:2415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16691 comm="syz.0.4046" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf710e539 code=0x7ffc0000
[ 1056.707799][T16699] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1056.711563][T16697] loop8: detected capacity change from 0 to 1024
[ 1056.737284][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1056.739310][T16699] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1056.808650][T16697] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1056.812080][T16699] bond0: (slave bond_slave_0): Releasing backup interface
[ 1056.862160][T16699] bond0: (slave veth1_to_bond): Releasing backup interface
[ 1056.878180][T16699] bond0: (slave bond_slave_1): Releasing backup interface
[ 1056.898786][T16699] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1056.906598][T16699] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1056.943987][T16697] EXT4-fs error (device loop8): ext4_iget_extra_inode:4693: inode #15: comm syz.8.4048: corrupted in-inode xattr: overlapping e_value 
[ 1057.245780][T15740] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1059.373327][   T30] kauditd_printk_skb: 100 callbacks suppressed
[ 1059.373406][   T30] audit: type=1326 audit(2000001316.798:2516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16729 comm="syz.5.4060" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1059.402037][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1059.408918][   T30] audit: type=1326 audit(2000001316.798:2517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16729 comm="syz.5.4060" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f32567 code=0x7ffc0000
[ 1059.431248][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1059.441097][   T30] audit: type=1326 audit(2000001316.798:2518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16729 comm="syz.5.4060" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1059.463430][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1059.469960][   T30] audit: type=1326 audit(2000001316.798:2520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16724 comm="syz.4.4059" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be539 code=0x7ffc0000
[ 1059.492972][   T30] audit: type=1326 audit(2000001316.798:2519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16729 comm="syz.5.4060" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1059.515219][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1059.526921][   T30] audit: type=1326 audit(2000001316.798:2521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16724 comm="syz.4.4059" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be539 code=0x7ffc0000
[ 1059.552839][   T30] audit: type=1326 audit(2000001316.830:2522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16729 comm="syz.5.4060" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1059.575074][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1059.582213][   T30] audit: type=1326 audit(2000001316.830:2523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16729 comm="syz.5.4060" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f32567 code=0x7ffc0000
[ 1059.605037][   T30] audit: type=1326 audit(2000001316.840:2524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16729 comm="syz.5.4060" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1059.630737][   T30] audit: type=1326 audit(2000001316.851:2525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16729 comm="syz.5.4060" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f32567 code=0x7ffc0000
[ 1059.653072][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1060.086899][T16734] loop9: detected capacity change from 0 to 1024
[ 1060.229807][T16734] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1060.383761][T16743] 9pnet_fd: Insufficient options for proto=fd
[ 1060.391354][T16734] EXT4-fs error (device loop9): ext4_iget_extra_inode:4693: inode #15: comm syz.9.4061: corrupted in-inode xattr: overlapping e_value 
[ 1060.710780][T16277] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1060.743287][T16749] loop8: detected capacity change from 0 to 512
[ 1060.745491][T16749] journal_path: Non-blockdev passed as './bus'
[ 1060.745643][T16749] EXT4-fs: error: could not find journal device path
[ 1060.751708][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.751872][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.752024][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.752216][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.752376][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.752552][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.752716][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.752881][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.753044][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.753207][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.753378][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.753545][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.753711][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.753888][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.754044][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.754186][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.754336][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.754479][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.754621][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.754761][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.754905][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.755048][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.755196][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.755348][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.755493][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.755640][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.755786][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.755930][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.756074][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.756227][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.756472][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.756616][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.756898][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.757051][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.757233][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.757386][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.757541][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.757694][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.757847][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.758003][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.758153][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.758316][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.758458][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.758601][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.758744][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.758886][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.759031][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.759175][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.759325][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.759471][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.759612][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.759781][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.759956][T16289] hid-generic 0000:007F:FFFFFFFE.0047: unknown main item tag 0x0
[ 1060.802559][T16289] hid-generic 0000:007F:FFFFFFFE.0047: hidraw0: <UNKNOWN> HID v0.08 Device [syz0] on syz0
[ 1062.136572][T16764] hub 2-0:1.0: USB hub found
[ 1062.137582][T16764] hub 2-0:1.0: 1 port detected
[ 1063.054707][T16775] loop5: detected capacity change from 0 to 1024
[ 1063.236023][T16775] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1063.330215][T16775] EXT4-fs error (device loop5): ext4_iget_extra_inode:4693: inode #15: comm syz.5.4078: corrupted in-inode xattr: overlapping e_value 
[ 1063.565658][ T9653] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1064.796120][T15746] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[ 1065.208198][T15746] usb 6-1: device descriptor read/64, error -71
[ 1065.434445][T15746] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[ 1065.575614][T15746] usb 6-1: device descriptor read/64, error -71
[ 1065.713054][T15746] usb usb6-port1: attempt power cycle
[ 1066.011596][T16809] veth0: entered promiscuous mode
[ 1066.023764][T16809] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4090'.
[ 1066.103236][T15746] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[ 1066.192464][T15746] usb 6-1: device descriptor read/8, error -71
[ 1066.282226][T16812] loop9: detected capacity change from 0 to 1024
[ 1066.403075][T16812] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1066.438808][T15746] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[ 1066.484605][T16817] 9pnet_fd: Insufficient options for proto=fd
[ 1066.536436][T15746] usb 6-1: device descriptor read/8, error -71
[ 1066.548693][T16812] EXT4-fs error (device loop9): ext4_iget_extra_inode:4693: inode #15: comm syz.9.4091: corrupted in-inode xattr: overlapping e_value 
[ 1066.660669][T15746] usb usb6-port1: unable to enumerate USB device
[ 1066.763924][   T30] kauditd_printk_skb: 190 callbacks suppressed
[ 1066.763995][   T30] audit: type=1326 audit(2000001324.567:2716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16816 comm="syz.0.4093" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x0
[ 1066.792846][T16277] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1066.854217][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1066.960668][T16823] bridge_slave_0: left allmulticast mode
[ 1066.960785][T16823] bridge_slave_0: left promiscuous mode
[ 1066.961861][T16823] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1067.142998][T16823] bridge_slave_1: left allmulticast mode
[ 1067.143108][T16823] bridge_slave_1: left promiscuous mode
[ 1067.144198][T16823] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1067.195163][T16823] bond0: (slave bond_slave_0): Releasing backup interface
[ 1067.199382][T16823] bond_slave_0: left allmulticast mode
[ 1067.220956][T16823] bond0: (slave bond_slave_1): Releasing backup interface
[ 1067.248358][T16823] bond_slave_1: left allmulticast mode
[ 1067.300729][T16823] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1067.300935][T16823] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1067.319110][T16823] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1067.319265][T16823] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1067.501894][ T5841] srz1: Port: 1 Link DOWN
[ 1068.483289][T16837] netlink: 'syz.5.4101': attribute type 4 has an invalid length.
[ 1068.563682][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.572009][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.580252][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.593722][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.603412][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.611625][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.619812][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.628014][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.636184][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.644218][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.652550][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.660827][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.669078][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.677190][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.685390][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.700417][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.708645][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.717043][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.725223][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.733387][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.741580][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.749786][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.757884][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.766079][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.774273][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.782391][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.795581][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.805343][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.813503][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.821690][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.830168][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.838366][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.846520][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.854939][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.863043][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.871187][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.879351][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.892969][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.901032][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.910944][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.919009][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.927148][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.935428][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.943533][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.951668][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.959833][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.968432][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.976490][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.989873][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1068.999528][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1069.007788][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1069.015965][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1069.023980][T15746] hid-generic 0000:007F:FFFFFFFE.0048: unknown main item tag 0x0
[ 1069.399068][T16845] loop9: detected capacity change from 0 to 164
[ 1069.443984][T15746] hid-generic 0000:007F:FFFFFFFE.0048: hidraw0: <UNKNOWN> HID v0.08 Device [syz0] on syz0
[ 1069.531927][T16845] iso9660: Corrupted directory entry in block 4 of inode 1792
[ 1069.588960][T16848] veth0: entered promiscuous mode
[ 1069.604834][T16848] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4104'.
[ 1071.333800][T16877] 9pnet_fd: Insufficient options for proto=fd
[ 1071.460425][   T30] audit: type=1326 audit(2000001329.490:2717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16874 comm="syz.5.4114" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f32539 code=0x0
[ 1071.604026][T16881] loop5: detected capacity change from 0 to 512
[ 1071.648737][T16881] journal_path: Non-blockdev passed as './bus'
[ 1071.656709][T16881] EXT4-fs: error: could not find journal device path
[ 1072.247712][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.256297][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.264460][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.272487][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.280713][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.288953][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.299813][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.308774][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.309743][T16889] loop4: detected capacity change from 0 to 512
[ 1072.317099][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.331311][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.339296][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.347608][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.355802][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.363964][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.366093][T16889] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1072.372005][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.372169][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.372318][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.372468][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.372624][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.428168][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.436266][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.444284][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.452405][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.460585][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.468709][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.476800][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.485136][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.497145][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.505423][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.513942][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.522210][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.530254][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.538357][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.546521][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.554645][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.562737][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.571213][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.579398][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.587444][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.599509][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.607669][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.615714][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.623788][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.631927][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.640172][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.648390][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.656816][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.671720][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.679892][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.691094][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.700225][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.708403][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.716708][T15638] hid-generic 0000:007F:FFFFFFFE.0049: unknown main item tag 0x0
[ 1072.778902][T16889] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.4117: invalid indirect mapped block 4294967295 (level 0)
[ 1072.822132][T16889] EXT4-fs (loop4): Remounting filesystem read-only
[ 1072.842855][T16889] EXT4-fs (loop4): 1 orphan inode deleted
[ 1072.848990][T16889] EXT4-fs (loop4): 1 truncate cleaned up
[ 1072.857087][T16889] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1073.158827][T15638] hid-generic 0000:007F:FFFFFFFE.0049: hidraw0: <UNKNOWN> HID v0.08 Device [syz0] on syz0
[ 1073.282241][T14392] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1073.550941][T16903] loop8: detected capacity change from 0 to 1024
[ 1073.620964][T16903] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1073.893494][T16903] EXT4-fs error (device loop8): ext4_iget_extra_inode:4693: inode #15: comm syz.8.4121: corrupted in-inode xattr: overlapping e_value 
[ 1074.174839][T15740] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1074.271480][T16916] loop5: detected capacity change from 0 to 1024
[ 1074.392191][T16910] loop9: detected capacity change from 0 to 8192
[ 1074.436753][T16916] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1074.521367][T16916] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[ 1074.560991][T16916] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[ 1074.573795][T16916] EXT4-fs (loop5): This should not happen!! Data will be lost
[ 1074.573795][T16916] 
[ 1074.583868][T16916] EXT4-fs (loop5): Total free blocks count 0
[ 1074.590242][T16916] EXT4-fs (loop5): Free/Dirty block details
[ 1074.596535][T16916] EXT4-fs (loop5): free_blocks=68451041280
[ 1074.602725][T16916] EXT4-fs (loop5): dirty_blocks=80
[ 1074.608674][T16916] EXT4-fs (loop5): Block reservation details
[ 1074.614905][T16916] EXT4-fs (loop5): i_reserved_data_blocks=5
[ 1074.629776][T16923] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 64 with error 28
[ 1074.709889][   T30] audit: type=1326 audit(2000001332.871:2718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16913 comm="syz.5.4125" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1074.820959][   T30] audit: type=1326 audit(2000001332.944:2719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16913 comm="syz.5.4125" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1074.848000][   T30] audit: type=1326 audit(2000001332.944:2720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16913 comm="syz.5.4125" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1074.872162][   T30] audit: type=1326 audit(2000001332.955:2721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16913 comm="syz.5.4125" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1074.894983][   T30] audit: type=1326 audit(2000001332.955:2722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16913 comm="syz.5.4125" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1074.917634][   T30] audit: type=1326 audit(2000001332.955:2723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16913 comm="syz.5.4125" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1074.944406][   T30] audit: type=1326 audit(2000001332.955:2724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16913 comm="syz.5.4125" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1074.968547][   T30] audit: type=1326 audit(2000001332.955:2725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16913 comm="syz.5.4125" exe="/root/syz-executor" sig=0 arch=40000003 syscall=329 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1074.991224][   T30] audit: type=1326 audit(2000001332.955:2726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16913 comm="syz.5.4125" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1075.013796][   T30] audit: type=1326 audit(2000001332.955:2727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16913 comm="syz.5.4125" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32539 code=0x7ffc0000
[ 1076.663282][T16950] loop8: detected capacity change from 0 to 1024
[ 1076.859958][T16950] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1076.945883][T16950] EXT4-fs error (device loop8): ext4_iget_extra_inode:4693: inode #15: comm syz.8.4138: corrupted in-inode xattr: overlapping e_value 
[ 1077.345219][T15740] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1078.794899][T16974] loop8: detected capacity change from 0 to 128
[ 1078.890578][T16974] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1079.047785][T16974] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1079.812014][ T5089] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1079.829465][ T5089] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1079.831690][T16982] loop9: detected capacity change from 0 to 512
[ 1079.845093][ T5089] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1079.894034][ T5089] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1079.915652][ T5089] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1080.553891][T16982] EXT4-fs (loop9): 1 orphan inode deleted
[ 1080.562390][T16982] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1080.576876][T10486] Quota error (device loop9): do_check_range: Getting dqdh_entries 15 out of range 0-14
[ 1080.592692][T10486] EXT4-fs error (device loop9): ext4_release_dquot:6971: comm kworker/u8:24: Failed to release dquot type 1
[ 1080.642016][T16982] ext4 filesystem being mounted at /34/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1081.000359][T16996] netlink: 28 bytes leftover after parsing attributes in process `syz.9.4150'.
[ 1081.010227][T16996] netlink: 28 bytes leftover after parsing attributes in process `syz.9.4150'.
[ 1081.340633][T16998] loop8: detected capacity change from 0 to 1024
[ 1081.441997][T16998] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1081.585592][T16998] EXT4-fs error (device loop8): ext4_iget_extra_inode:4693: inode #15: comm syz.8.4153: corrupted in-inode xattr: overlapping e_value 
[ 1081.802158][T15740] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1081.881222][T16277] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1081.892092][ T5089] Bluetooth: hci1: command tx timeout
[ 1082.047994][T16983] chnl_net:caif_netlink_parms(): no params data found
[ 1083.803249][T16983] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1083.817146][T16983] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1083.825038][T16983] bridge_slave_0: entered allmulticast mode
[ 1083.834414][T16983] bridge_slave_0: entered promiscuous mode
[ 1083.891337][T16983] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1083.899141][T16983] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1083.913625][T16983] bridge_slave_1: entered allmulticast mode
[ 1083.938804][T16983] bridge_slave_1: entered promiscuous mode
[ 1083.967820][ T5089] Bluetooth: hci1: command tx timeout
[ 1084.066777][   T30] audit: type=1326 audit(2000001342.644:2728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17017 comm="syz.8.4159" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1084.091801][   T30] audit: type=1326 audit(2000001342.655:2729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17017 comm="syz.8.4159" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1084.116453][   T30] audit: type=1326 audit(2000001342.739:2730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17017 comm="syz.8.4159" exe="/root/syz-executor" sig=0 arch=40000003 syscall=378 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1084.143666][   T30] audit: type=1326 audit(2000001342.739:2731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17017 comm="syz.8.4159" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1084.170113][   T30] audit: type=1326 audit(2000001342.739:2732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17017 comm="syz.8.4159" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1084.688557][T16983] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1084.754285][T16983] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1085.316358][T10482] bond0 (unregistering): Released all slaves
[ 1085.337740][T10482] bond1 (unregistering): Released all slaves
[ 1085.393459][T10482] bond2 (unregistering): Released all slaves
[ 1085.680358][T16983] team0: Port device team_slave_0 added
[ 1085.695559][T10482] tipc: Left network mode
[ 1085.751882][T16983] team0: Port device team_slave_1 added
[ 1085.925325][ T5089] Bluetooth: hci1: command tx timeout
[ 1086.009849][T16983] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1086.017047][T16983] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1086.043652][T16983] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1086.324683][T16983] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1086.331889][T16983] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1086.362639][T16983] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1087.183914][T17031] loop8: detected capacity change from 0 to 1024
[ 1087.498931][T17031] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1087.545338][T17031] EXT4-fs error (device loop8): ext4_iget_extra_inode:4693: inode #15: comm syz.8.4164: corrupted in-inode xattr: overlapping e_value 
[ 1087.797671][T15740] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1087.911205][ T5089] Bluetooth: hci1: command tx timeout
[ 1088.364504][T16983] hsr_slave_0: entered promiscuous mode
[ 1088.374499][T16983] hsr_slave_1: entered promiscuous mode
[ 1088.383070][T16983] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1088.393697][T16983] Cannot create hsr debugfs directory
[ 1088.870934][T10482] IPVS: stop unused estimator thread 0...
[ 1089.795594][T17061] loop8: detected capacity change from 0 to 1024
[ 1089.910560][T17061] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1089.932757][T17061] EXT4-fs error (device loop8): ext4_iget_extra_inode:4693: inode #15: comm syz.8.4175: corrupted in-inode xattr: overlapping e_value 
[ 1090.351404][T15740] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1090.664293][   T30] audit: type=1326 audit(2000001349.636:2733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17067 comm="syz.4.4178" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be539 code=0x7ffc0000
[ 1090.687275][   T30] audit: type=1326 audit(2000001349.657:2734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17067 comm="syz.4.4178" exe="/root/syz-executor" sig=0 arch=40000003 syscall=294 compat=1 ip=0xf70be539 code=0x7ffc0000
[ 1090.710066][   T30] audit: type=1326 audit(2000001349.657:2735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17067 comm="syz.4.4178" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be539 code=0x7ffc0000
[ 1091.048946][   T30] audit: type=1326 audit(2000001349.877:2736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17069 comm="syz.8.4177" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1091.071936][   T30] audit: type=1326 audit(2000001349.877:2737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17069 comm="syz.8.4177" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1091.094468][   T30] audit: type=1326 audit(2000001349.888:2738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17069 comm="syz.8.4177" exe="/root/syz-executor" sig=0 arch=40000003 syscall=30 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1091.117088][   T30] audit: type=1326 audit(2000001349.888:2739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17069 comm="syz.8.4177" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1091.141960][   T30] audit: type=1326 audit(2000001349.898:2740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17069 comm="syz.8.4177" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1091.263461][T16983] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1091.355438][T16983] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1091.498517][T16983] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1091.689589][T16983] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1092.541004][T17091] loop8: detected capacity change from 0 to 1024
[ 1092.654204][T17091] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1092.707266][   T30] audit: type=1326 audit(2000001351.746:2741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17092 comm="syz.4.4187" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be539 code=0x7ffc0000
[ 1092.732807][   T30] audit: type=1326 audit(2000001351.746:2742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17092 comm="syz.4.4187" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be539 code=0x7ffc0000
[ 1092.766281][T17091] EXT4-fs error (device loop8): ext4_iget_extra_inode:4693: inode #15: comm syz.8.4186: corrupted in-inode xattr: overlapping e_value 
[ 1092.918350][T16983] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1092.968755][T16983] 8021q: adding VLAN 0 to HW filter on device team0
[ 1093.041216][T10486] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1093.048757][T10486] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1093.132022][T10486] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1093.139720][T10486] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1093.188730][T15740] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1093.666751][T17100] loop9: detected capacity change from 0 to 128
[ 1093.880943][T17100] bio_check_eod: 68 callbacks suppressed
[ 1093.881025][T17100] syz.9.4189: attempt to access beyond end of device
[ 1093.881025][T17100] loop9: rw=2049, sector=145, nr_sectors = 80 limit=128
[ 1094.052396][T17100] syz.9.4189: attempt to access beyond end of device
[ 1094.052396][T17100] loop9: rw=524288, sector=145, nr_sectors = 80 limit=128
[ 1094.070735][T17100] syz.9.4189: attempt to access beyond end of device
[ 1094.070735][T17100] loop9: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1094.101104][T17100] syz.9.4189: attempt to access beyond end of device
[ 1094.101104][T17100] loop9: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1094.121152][T17100] syz.9.4189: attempt to access beyond end of device
[ 1094.121152][T17100] loop9: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1094.136122][T17100] syz.9.4189: attempt to access beyond end of device
[ 1094.136122][T17100] loop9: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1094.314838][T17100] syz.9.4189: attempt to access beyond end of device
[ 1094.314838][T17100] loop9: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1094.517952][T17100] syz.9.4189: attempt to access beyond end of device
[ 1094.517952][T17100] loop9: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1094.659913][T17100] syz.9.4189: attempt to access beyond end of device
[ 1094.659913][T17100] loop9: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1094.673874][T17100] syz.9.4189: attempt to access beyond end of device
[ 1094.673874][T17100] loop9: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1096.319913][T16983] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1097.175685][T17135] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4200'.
[ 1097.600132][ T5089] Bluetooth: hci3: command 0x0406 tx timeout
[ 1098.788110][T16983] veth0_vlan: entered promiscuous mode
[ 1098.871081][T16983] veth1_vlan: entered promiscuous mode
[ 1099.170971][T16983] veth0_macvtap: entered promiscuous mode
[ 1099.241012][T16983] veth1_macvtap: entered promiscuous mode
[ 1099.323069][T16983] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1099.334848][T16983] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1099.346635][T16983] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1099.357924][T16983] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1099.374309][T16983] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1099.385160][T16983] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1099.400038][T16983] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1099.434124][T16983] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1099.446549][T16983] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1099.456685][T16983] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1099.467443][T16983] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1099.477596][T16983] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1099.488359][T16983] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1099.514395][T16983] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1099.620745][T16983] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1099.630239][T16983] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1099.639657][T16983] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1099.648897][T16983] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1100.357217][T17176] loop9: detected capacity change from 0 to 1024
[ 1100.467207][T17176] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1100.636248][T17176] EXT4-fs error (device loop9): ext4_iget_extra_inode:4693: inode #15: comm syz.9.4216: corrupted in-inode xattr: overlapping e_value 
[ 1100.921423][T16277] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1101.782109][T17197] loop4: detected capacity change from 0 to 1024
[ 1101.834362][T17197] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1101.921866][T17197] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1102.049673][   T30] kauditd_printk_skb: 14 callbacks suppressed
[ 1102.049784][   T30] audit: type=1326 audit(2000001361.593:2757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17203 comm="syz.0.4224" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000
[ 1102.117004][T14392] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1102.161571][   T30] audit: type=1326 audit(2000001361.646:2758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17203 comm="syz.0.4224" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000
[ 1102.185492][   T30] audit: type=1326 audit(2000001361.667:2759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17203 comm="syz.0.4224" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf710e539 code=0x7ffc0000
[ 1102.208798][   T30] audit: type=1326 audit(2000001361.667:2760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17203 comm="syz.0.4224" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000
[ 1102.232098][   T30] audit: type=1326 audit(2000001361.667:2761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17203 comm="syz.0.4224" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000
[ 1102.255857][   T30] audit: type=1326 audit(2000001361.667:2762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17203 comm="syz.0.4224" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf710e539 code=0x7ffc0000
[ 1102.283214][   T30] audit: type=1326 audit(2000001361.698:2763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17203 comm="syz.0.4224" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000
[ 1102.307800][   T30] audit: type=1326 audit(2000001361.719:2764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17203 comm="syz.0.4224" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf710e539 code=0x7ffc0000
[ 1102.330557][   T30] audit: type=1326 audit(2000001361.719:2765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17203 comm="syz.0.4224" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000
[ 1102.356896][   T30] audit: type=1326 audit(2000001361.719:2766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17203 comm="syz.0.4224" exe="/root/syz-executor" sig=0 arch=40000003 syscall=40 compat=1 ip=0xf710e539 code=0x7ffc0000
[ 1103.230005][T17218] 9pnet_fd: Insufficient options for proto=fd
[ 1103.307697][T17223] loop8: detected capacity change from 0 to 1024
[ 1103.415010][T17223] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1103.478330][T17223] EXT4-fs error (device loop8): ext4_iget_extra_inode:4693: inode #15: comm syz.8.4229: corrupted in-inode xattr: overlapping e_value 
[ 1103.586904][T15740] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1106.715870][T10482] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1106.724316][T10482] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1106.784395][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1106.792886][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1107.682855][T17278] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1110.131934][T17305] 9pnet_fd: Insufficient options for proto=fd
[ 1111.361664][T17319] loop8: detected capacity change from 0 to 1024
[ 1111.377365][T17319] EXT4-fs: Ignoring removed bh option
[ 1111.438730][T17319] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1111.817923][T17319] EXT4-fs error (device loop8): mb_free_blocks:1948: group 0, inode 15: block 273:freeing already freed block (bit 17); block bitmap corrupt.
[ 1112.509127][T15740] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1113.181093][   T30] kauditd_printk_skb: 1 callbacks suppressed
[ 1113.181162][   T30] audit: type=1326 audit(2000001373.278:2768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17336 comm="syz.8.4272" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1113.210244][   T30] audit: type=1326 audit(2000001373.309:2769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17336 comm="syz.8.4272" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1113.233039][   T30] audit: type=1326 audit(2000001373.309:2770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17336 comm="syz.8.4272" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fe2567 code=0x7ffc0000
[ 1113.255788][   T30] audit: type=1326 audit(2000001373.309:2771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17336 comm="syz.8.4272" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1113.327851][   T30] audit: type=1326 audit(2000001373.446:2772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17336 comm="syz.8.4272" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1113.350780][   T30] audit: type=1326 audit(2000001373.446:2773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17336 comm="syz.8.4272" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fe2567 code=0x7ffc0000
[ 1113.378490][   T30] audit: type=1326 audit(2000001373.446:2774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17336 comm="syz.8.4272" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1113.402830][   T30] audit: type=1326 audit(2000001373.446:2775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17336 comm="syz.8.4272" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fe2567 code=0x7ffc0000
[ 1113.425499][   T30] audit: type=1326 audit(2000001373.446:2776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17336 comm="syz.8.4272" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1113.448089][   T30] audit: type=1326 audit(2000001373.446:2777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17336 comm="syz.8.4272" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000
[ 1113.737190][T17348] 9pnet_fd: Insufficient options for proto=fd
[ 1114.120152][T15746] hid-generic 0003:0001:0004.004A: item fetching failed at offset 2/96
[ 1114.174290][T15746] hid-generic 0003:0001:0004.004A: probe with driver hid-generic failed with error -22
[ 1114.192631][T17353] netem: invalid attributes len -3
[ 1114.192704][T17353] netem: change failed
[ 1114.261788][T17357] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4280'.
[ 1114.267343][T17358] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4278'.
[ 1116.868483][T15746] hid-generic 0003:0001:0004.004B: item fetching failed at offset 2/96
[ 1116.942425][T15746] hid-generic 0003:0001:0004.004B: probe with driver hid-generic failed with error -22
[ 1116.960585][T17396] netem: invalid attributes len -3
[ 1117.111746][T17399] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4295'.
[ 1117.211774][T17400] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4296'.
[ 1117.279422][T17405] 9pnet_fd: Insufficient options for proto=fd
[ 1117.618786][T17409] loop5: detected capacity change from 0 to 512
[ 1117.621412][T17409] journal_path: Non-blockdev passed as './bus'
[ 1117.621582][T17409] EXT4-fs: error: could not find journal device path
[ 1118.731824][   T30] kauditd_printk_skb: 67 callbacks suppressed
[ 1118.731897][   T30] audit: type=1326 audit(2000001379.125:2845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17425 comm="syz.9.4304" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fe7539 code=0x7ffc0000
[ 1118.732943][   T30] audit: type=1326 audit(2000001379.125:2846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17425 comm="syz.9.4304" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fe7567 code=0x7ffc0000
[ 1118.733995][   T30] audit: type=1326 audit(2000001379.125:2847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17425 comm="syz.9.4304" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe7539 code=0x7ffc0000
[ 1118.735810][   T30] audit: type=1326 audit(2000001379.125:2848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17425 comm="syz.9.4304" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fe7539 code=0x7ffc0000
[ 1118.808711][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1119.012163][   T30] audit: type=1326 audit(2000001379.241:2849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17425 comm="syz.9.4304" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fe7539 code=0x7ffc0000
[ 1119.012397][   T30] audit: type=1326 audit(2000001379.241:2850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17425 comm="syz.9.4304" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fe7567 code=0x7ffc0000
[ 1119.012616][   T30] audit: type=1326 audit(2000001379.241:2851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17425 comm="syz.9.4304" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe7539 code=0x7ffc0000
[ 1119.012834][   T30] audit: type=1326 audit(2000001379.241:2852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17425 comm="syz.9.4304" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe7539 code=0x7ffc0000
[ 1119.013060][   T30] audit: type=1326 audit(2000001379.272:2853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17425 comm="syz.9.4304" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fe7539 code=0x7ffc0000
[ 1119.013285][   T30] audit: type=1326 audit(2000001379.272:2854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17425 comm="syz.9.4304" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fe7567 code=0x7ffc0000
[ 1119.331832][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1119.504851][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1120.143881][T17440] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4313'.
[ 1120.179473][T15746] hid-generic 0003:0001:0004.004C: item fetching failed at offset 2/96
[ 1120.210334][T17442] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1120.219871][T15746] hid-generic 0003:0001:0004.004C: probe with driver hid-generic failed with error -22
[ 1120.220085][T17442] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1120.240166][T17442] bridge0: entered allmulticast mode
[ 1120.317409][T17442] netem: invalid attributes len -3
[ 1120.324195][T17442] netem: change failed
[ 1120.367288][T17442] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4312'.
[ 1120.497932][T17442] team0 (unregistering): Port device team_slave_0 removed
[ 1120.569063][T17442] team0 (unregistering): Port device team_slave_1 removed
[ 1121.970179][T17469] 9pnet_fd: Insufficient options for proto=fd
[ 1122.279836][T17474] loop9: detected capacity change from 0 to 512
[ 1122.282967][T17474] journal_path: Non-blockdev passed as './bus'
[ 1122.283158][T17474] EXT4-fs: error: could not find journal device path
[ 1122.845913][T15746] hid-generic 0003:0001:0004.004D: item fetching failed at offset 2/96
[ 1122.856499][T15746] hid-generic 0003:0001:0004.004D: probe with driver hid-generic failed with error -22
[ 1122.871833][T17482] netem: invalid attributes len -3
[ 1122.940171][T17484] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4329'.
[ 1123.029203][T17486] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4328'.
[ 1124.575987][   T30] kauditd_printk_skb: 92 callbacks suppressed
[ 1124.576061][   T30] audit: type=1326 audit(2000001385.256:2947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17500 comm="syz.9.4333" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fe7539 code=0x7ffc0000
[ 1124.662899][   T30] audit: type=1326 audit(2000001385.298:2948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17500 comm="syz.9.4333" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fe7567 code=0x7ffc0000
[ 1124.691931][   T30] audit: type=1326 audit(2000001385.298:2949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17500 comm="syz.9.4333" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fe7539 code=0x7ffc0000
[ 1124.714251][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1124.723146][   T30] audit: type=1326 audit(2000001385.298:2950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17500 comm="syz.9.4333" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fe7567 code=0x7ffc0000
[ 1124.745416][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1124.752163][   T30] audit: type=1326 audit(2000001385.298:2951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17500 comm="syz.9.4333" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe7539 code=0x7ffc0000
[ 1124.774416][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1124.786441][   T30] audit: type=1326 audit(2000001385.298:2952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17500 comm="syz.9.4333" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe7539 code=0x7ffc0000
[ 1124.808804][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1124.817979][   T30] audit: type=1326 audit(2000001385.308:2953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17500 comm="syz.9.4333" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fe7539 code=0x7ffc0000
[ 1124.840271][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1124.847040][   T30] audit: type=1326 audit(2000001385.308:2954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17500 comm="syz.9.4333" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fe7567 code=0x7ffc0000
[ 1124.869308][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1124.909921][   T30] audit: type=1326 audit(2000001385.308:2955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17500 comm="syz.9.4333" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe7539 code=0x7ffc0000
[ 1124.932324][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1124.943494][   T30] audit: type=1326 audit(2000001385.308:2956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17500 comm="syz.9.4333" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fe7539 code=0x7ffc0000
[ 1124.965793][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1126.038680][T17519] 9pnet_fd: Insufficient options for proto=fd
[ 1126.133861][T15746] hid-generic 0003:0001:0004.004E: item fetching failed at offset 2/96
[ 1126.199341][T15746] hid-generic 0003:0001:0004.004E: probe with driver hid-generic failed with error -22
[ 1126.225008][T17521] netem: invalid attributes len -3
[ 1126.230620][T17521] netem: change failed
[ 1126.417541][T17522] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4342'.
[ 1126.581269][T17529] netlink: 84 bytes leftover after parsing attributes in process `syz.9.4345'.
[ 1127.632873][T17544] loop8: detected capacity change from 0 to 1024
[ 1128.055522][T17544] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1128.416140][T17544] EXT4-fs error (device loop8): mb_free_blocks:1948: group 0, inode 15: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[ 1128.707939][T17558] 9pnet_fd: Insufficient options for proto=fd
[ 1128.781984][T15740] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1129.426249][T17568] netlink: 84 bytes leftover after parsing attributes in process `syz.9.4360'.
[ 1129.484837][ T5841] hid-generic 0003:0001:0004.004F: item fetching failed at offset 2/96
[ 1129.517374][T17571] netem: invalid attributes len -3
[ 1129.534815][ T5841] hid-generic 0003:0001:0004.004F: probe with driver hid-generic failed with error -22
[ 1129.667169][T17576] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4361'.
[ 1129.999126][   T30] kauditd_printk_skb: 104 callbacks suppressed
[ 1129.999203][   T30] audit: type=1326 audit(2000001390.946:3061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17578 comm="syz.4.4363" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be539 code=0x7ffc0000
[ 1130.029267][   T30] audit: type=1326 audit(2000001390.956:3062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17578 comm="syz.4.4363" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70be539 code=0x7ffc0000
[ 1130.051966][   T30] audit: type=1326 audit(2000001390.956:3063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17578 comm="syz.4.4363" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70be567 code=0x7ffc0000
[ 1130.079585][   T30] audit: type=1326 audit(2000001390.956:3064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17578 comm="syz.4.4363" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70be539 code=0x7ffc0000
[ 1130.294160][   T30] audit: type=1326 audit(2000001391.082:3065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17578 comm="syz.4.4363" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70be539 code=0x7ffc0000
[ 1130.316964][   T30] audit: type=1326 audit(2000001391.082:3066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17578 comm="syz.4.4363" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70be567 code=0x7ffc0000
[ 1130.345125][   T30] audit: type=1326 audit(2000001391.114:3067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17578 comm="syz.4.4363" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70be539 code=0x7ffc0000
[ 1130.372417][   T30] audit: type=1326 audit(2000001391.124:3068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17578 comm="syz.4.4363" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70be567 code=0x7ffc0000
[ 1130.397015][   T30] audit: type=1326 audit(2000001391.124:3069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17578 comm="syz.4.4363" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be539 code=0x7ffc0000
[ 1130.420001][   T30] audit: type=1326 audit(2000001391.135:3070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17578 comm="syz.4.4363" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70be539 code=0x7ffc0000
[ 1132.508147][T17611] netlink: 84 bytes leftover after parsing attributes in process `syz.8.4375'.
[ 1133.083525][T17619] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1133.093279][T17619] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1133.104576][T17619] bridge0: entered allmulticast mode
[ 1133.182701][T17620] netem: invalid attributes len -3
[ 1133.188240][T17620] netem: change failed
[ 1133.432184][T17619] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4378'.
[ 1133.535982][T17619] team0 (unregistering): Port device team_slave_0 removed
[ 1133.594538][T17619] team0 (unregistering): Port device team_slave_1 removed
[ 1135.564541][T17646] netlink: 64 bytes leftover after parsing attributes in process `syz.9.4389'.
[ 1136.457193][T15638] hid-generic 0003:0001:0004.0050: item fetching failed at offset 2/96
[ 1136.476808][T17656] netem: invalid attributes len -3
[ 1136.489379][T17656] netem: change failed
[ 1136.546898][T15638] hid-generic 0003:0001:0004.0050: probe with driver hid-generic failed with error -22
[ 1136.643526][T17659] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4394'.
[ 1137.003054][   T30] kauditd_printk_skb: 37 callbacks suppressed
[ 1137.003131][   T30] audit: type=1326 audit(2000001404.307:3108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17661 comm="syz.5.4395" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f88539 code=0x7ffc0000
[ 1137.032486][   T30] audit: type=1326 audit(2000001404.307:3109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17661 comm="syz.5.4395" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f88567 code=0x7ffc0000
[ 1137.055112][   T30] audit: type=1326 audit(2000001404.307:3110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17661 comm="syz.5.4395" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f88539 code=0x7ffc0000
[ 1137.083381][   T30] audit: type=1326 audit(2000001404.307:3111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17661 comm="syz.5.4395" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f88567 code=0x7ffc0000
[ 1137.108003][   T30] audit: type=1326 audit(2000001404.307:3112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17661 comm="syz.5.4395" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88539 code=0x7ffc0000
[ 1137.130722][   T30] audit: type=1326 audit(2000001404.318:3113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17661 comm="syz.5.4395" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f88539 code=0x7ffc0000
[ 1137.153321][   T30] audit: type=1326 audit(2000001404.318:3114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17661 comm="syz.5.4395" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f88567 code=0x7ffc0000
[ 1137.181511][   T30] audit: type=1326 audit(2000001404.318:3115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17661 comm="syz.5.4395" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f88539 code=0x7ffc0000
[ 1137.205807][   T30] audit: type=1326 audit(2000001404.318:3116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17661 comm="syz.5.4395" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f88567 code=0x7ffc0000
[ 1137.228468][   T30] audit: type=1326 audit(2000001404.318:3117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17661 comm="syz.5.4395" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88539 code=0x7ffc0000
[ 1139.182869][T17689] netlink: 64 bytes leftover after parsing attributes in process `syz.5.4405'.
[ 1140.150018][T17691] syzkaller0: entered promiscuous mode
[ 1140.156175][T17691] syzkaller0: entered allmulticast mode
[ 1140.840802][T16851] hid-generic 0003:0001:0004.0051: item fetching failed at offset 2/96
[ 1140.879417][T16851] hid-generic 0003:0001:0004.0051: probe with driver hid-generic failed with error -22
[ 1140.972855][T17704] netem: invalid attributes len -3
[ 1140.978214][T17704] netem: change failed
[ 1141.125925][T17704] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4410'.
[ 1141.478143][T15742] Bluetooth: hci0: command 0x0406 tx timeout
[ 1141.737573][T17713] =====================================================
[ 1141.748827][T17713] BUG: KMSAN: uninit-value in sctp_inq_pop+0x14dc/0x19e0
[ 1141.757010][T17713]  sctp_inq_pop+0x14dc/0x19e0
[ 1141.761902][T17713]  sctp_assoc_bh_rcv+0x1a0/0xbc0
[ 1141.767201][T17713]  sctp_inq_push+0x2a3/0x350
[ 1141.772042][T17713]  sctp_backlog_rcv+0x3c7/0xda0
[ 1141.777091][T17713]  sk_backlog_rcv+0x13f/0x420
[ 1141.782108][T17713]  __release_sock+0x1d3/0x330
[ 1141.786995][T17713]  release_sock+0x6b/0x270
[ 1141.791744][T17713]  sctp_wait_for_connect+0x458/0x820
[ 1141.797210][T17713]  sctp_sendmsg_to_asoc+0x223a/0x2260
[ 1141.803609][T17713]  sctp_sendmsg+0x3910/0x49f0
[ 1141.808475][T17713]  inet_sendmsg+0x269/0x2a0
[ 1141.813256][T17713]  __sock_sendmsg+0x278/0x3d0
[ 1141.818205][T17713]  __sys_sendto+0x590/0x710
[ 1141.823257][T17713]  __ia32_sys_sendto+0x12f/0x200
[ 1141.828418][T17713]  ia32_sys_call+0x1397/0x42c0
[ 1141.833474][T17713]  __do_fast_syscall_32+0xb0/0x110
[ 1141.838934][T17713]  do_fast_syscall_32+0x38/0x80
[ 1141.847484][T17713]  do_SYSENTER_32+0x1f/0x30
[ 1141.854986][T17713]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1141.861980][T17713] 
[ 1141.864436][T17713] Uninit was stored to memory at:
[ 1141.869814][T17713]  sctp_inq_pop+0x144a/0x19e0
[ 1141.874709][T17713]  sctp_assoc_bh_rcv+0x1a0/0xbc0
[ 1141.880000][T17713]  sctp_inq_push+0x2a3/0x350
[ 1141.884812][T17713]  sctp_backlog_rcv+0x3c7/0xda0
[ 1141.890022][T17713]  sk_backlog_rcv+0x13f/0x420
[ 1141.894939][T17713]  __release_sock+0x1d3/0x330
[ 1141.899991][T17713]  release_sock+0x6b/0x270
[ 1141.904654][T17713]  sctp_wait_for_connect+0x458/0x820
[ 1141.910340][T17713]  sctp_sendmsg_to_asoc+0x223a/0x2260
[ 1141.916042][T17713]  sctp_sendmsg+0x3910/0x49f0
[ 1141.920916][T17713]  inet_sendmsg+0x269/0x2a0
[ 1141.925767][T17713]  __sock_sendmsg+0x278/0x3d0
[ 1141.930660][T17713]  __sys_sendto+0x590/0x710
[ 1141.935591][T17713]  __ia32_sys_sendto+0x12f/0x200
[ 1141.944101][T17713]  ia32_sys_call+0x1397/0x42c0
[ 1141.949054][T17713]  __do_fast_syscall_32+0xb0/0x110
[ 1141.955355][T17713]  do_fast_syscall_32+0x38/0x80
[ 1141.960454][T17713]  do_SYSENTER_32+0x1f/0x30
[ 1141.965349][T17713]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1141.971927][T17713] 
[ 1141.974464][T17713] Uninit was created at:
[ 1141.978979][T17713]  __kmalloc_node_track_caller_noprof+0x96d/0x12f0
[ 1141.986036][T17713]  kmalloc_reserve+0x22f/0x4b0
[ 1141.991161][T17713]  __alloc_skb+0x347/0x7d0
[ 1141.995794][T17713]  sctp_packet_transmit+0x189e/0x4560
[ 1142.001499][T17713]  sctp_outq_flush+0x1c7d/0x67c0
[ 1142.006658][T17713]  sctp_outq_uncork+0x9e/0xc0
[ 1142.011673][T17713]  sctp_do_sm+0x8c8e/0x9720
[ 1142.016404][T17713]  sctp_assoc_bh_rcv+0x88b/0xbc0
[ 1142.022528][T17713]  sctp_inq_push+0x2a3/0x350
[ 1142.027403][T17713]  sctp_backlog_rcv+0x3c7/0xda0
[ 1142.032565][T17713]  sk_backlog_rcv+0x13f/0x420
[ 1142.040596][T17713]  __release_sock+0x1d3/0x330
[ 1142.045473][T17713]  release_sock+0x6b/0x270
[ 1142.051466][T17713]  sctp_wait_for_connect+0x458/0x820
[ 1142.056956][T17713]  sctp_sendmsg_to_asoc+0x223a/0x2260
[ 1142.062621][T17713]  sctp_sendmsg+0x3910/0x49f0
[ 1142.067576][T17713]  inet_sendmsg+0x269/0x2a0
[ 1142.072332][T17713]  __sock_sendmsg+0x278/0x3d0
[ 1142.077561][T17713]  __sys_sendto+0x590/0x710
[ 1142.082266][T17713]  __ia32_sys_sendto+0x12f/0x200
[ 1142.087675][T17713]  ia32_sys_call+0x1397/0x42c0
[ 1142.092616][T17713]  __do_fast_syscall_32+0xb0/0x110
[ 1142.098037][T17713]  do_fast_syscall_32+0x38/0x80
[ 1142.103097][T17713]  do_SYSENTER_32+0x1f/0x30
[ 1142.107960][T17713]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1142.114524][T17713] 
[ 1142.117080][T17713] CPU: 1 UID: 0 PID: 17713 Comm: syz.0.4415 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) 
[ 1142.129821][T17713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1142.143444][T17713] =====================================================
[ 1142.150511][T17713] Disabling lock debugging due to kernel taint
[ 1142.157773][T17713] Kernel panic - not syncing: kmsan.panic set ...
[ 1142.164360][T17713] CPU: 1 UID: 0 PID: 17713 Comm: syz.0.4415 Tainted: G    B               6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) 
[ 1142.178311][T17713] Tainted: [B]=BAD_PAGE
[ 1142.182567][T17713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1142.192784][T17713] Call Trace:
[ 1142.196171][T17713]  <TASK>
[ 1142.199196][T17713]  __dump_stack+0x26/0x30
[ 1142.203717][T17713]  dump_stack_lvl+0x53/0x270
[ 1142.208507][T17713]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1142.214509][T17713]  dump_stack+0x1e/0x25
[ 1142.218853][T17713]  panic+0x4bd/0xd50
[ 1142.222999][T17713]  kmsan_report+0x29d/0x2a0
[ 1142.227673][T17713]  ? kmsan_internal_chain_origin+0xb6/0xd0
[ 1142.233649][T17713]  ? __msan_warning+0x96/0x120
[ 1142.238600][T17713]  ? sctp_inq_pop+0x14dc/0x19e0
[ 1142.243641][T17713]  ? sctp_assoc_bh_rcv+0x1a0/0xbc0
[ 1142.248959][T17713]  ? sctp_inq_push+0x2a3/0x350
[ 1142.253940][T17713]  ? sctp_backlog_rcv+0x3c7/0xda0
[ 1142.259132][T17713]  ? sk_backlog_rcv+0x13f/0x420
[ 1142.264157][T17713]  ? __release_sock+0x1d3/0x330
[ 1142.269169][T17713]  ? release_sock+0x6b/0x270
[ 1142.273937][T17713]  ? sctp_wait_for_connect+0x458/0x820
[ 1142.279570][T17713]  ? sctp_sendmsg_to_asoc+0x223a/0x2260
[ 1142.285287][T17713]  ? sctp_sendmsg+0x3910/0x49f0
[ 1142.290294][T17713]  ? inet_sendmsg+0x269/0x2a0
[ 1142.295173][T17713]  ? __sock_sendmsg+0x278/0x3d0
[ 1142.300199][T17713]  ? __sys_sendto+0x590/0x710
[ 1142.305073][T17713]  ? __ia32_sys_sendto+0x12f/0x200
[ 1142.310373][T17713]  ? ia32_sys_call+0x1397/0x42c0
[ 1142.315478][T17713]  ? __do_fast_syscall_32+0xb0/0x110
[ 1142.320977][T17713]  ? do_fast_syscall_32+0x38/0x80
[ 1142.326205][T17713]  ? do_SYSENTER_32+0x1f/0x30
[ 1142.331056][T17713]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1142.337804][T17713]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1142.344519][T17713]  ? sched_clock_cpu+0x59/0xa80
[ 1142.349573][T17713]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1142.355593][T17713]  ? kmsan_get_metadata+0x105/0x1b0
[ 1142.361010][T17713]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1142.367567][T17713]  ? kmsan_get_metadata+0x105/0x1b0
[ 1142.372941][T17713]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1142.378943][T17713]  ? __loadsegment_fs+0x21/0x30
[ 1142.384021][T17713]  ? kmsan_get_metadata+0x105/0x1b0
[ 1142.389386][T17713]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1142.395398][T17713]  ? kmsan_get_metadata+0x105/0x1b0
[ 1142.400801][T17713]  __msan_warning+0x96/0x120
[ 1142.405595][T17713]  sctp_inq_pop+0x14dc/0x19e0
[ 1142.410497][T17713]  sctp_assoc_bh_rcv+0x1a0/0xbc0
[ 1142.415728][T17713]  ? __schedule+0x26ef/0x7720
[ 1142.420561][T17713]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1142.426572][T17713]  ? __pfx_sctp_assoc_bh_rcv+0x10/0x10
[ 1142.432210][T17713]  sctp_inq_push+0x2a3/0x350
[ 1142.437097][T17713]  sctp_backlog_rcv+0x3c7/0xda0
[ 1142.442153][T17713]  ? kmsan_get_metadata+0x105/0x1b0
[ 1142.447576][T17713]  ? __pfx_sctp_backlog_rcv+0x10/0x10
[ 1142.453118][T17713]  sk_backlog_rcv+0x13f/0x420
[ 1142.457993][T17713]  __release_sock+0x1d3/0x330
[ 1142.462864][T17713]  release_sock+0x6b/0x270
[ 1142.467476][T17713]  sctp_wait_for_connect+0x458/0x820
[ 1142.472968][T17713]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 1142.479240][T17713]  sctp_sendmsg_to_asoc+0x223a/0x2260
[ 1142.484777][T17713]  ? kmsan_get_metadata+0x105/0x1b0
[ 1142.490176][T17713]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1142.496229][T17713]  sctp_sendmsg+0x3910/0x49f0
[ 1142.501071][T17713]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1142.507679][T17713]  ? __pfx_sctp_sendmsg+0x10/0x10
[ 1142.512868][T17713]  inet_sendmsg+0x269/0x2a0
[ 1142.517562][T17713]  __sock_sendmsg+0x278/0x3d0
[ 1142.522408][T17713]  __sys_sendto+0x590/0x710
[ 1142.527118][T17713]  ? kmsan_get_metadata+0x105/0x1b0
[ 1142.532511][T17713]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1142.538518][T17713]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1142.545024][T17713]  __ia32_sys_sendto+0x12f/0x200
[ 1142.550191][T17713]  ia32_sys_call+0x1397/0x42c0
[ 1142.555124][T17713]  __do_fast_syscall_32+0xb0/0x110
[ 1142.560441][T17713]  do_fast_syscall_32+0x38/0x80
[ 1142.565489][T17713]  do_SYSENTER_32+0x1f/0x30
[ 1142.570205][T17713]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1142.576841][T17713] RIP: 0023:0xf710e539
[ 1142.581065][T17713] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1142.600895][T17713] RSP: 002b:00000000f50fe55c EFLAGS: 00000206 ORIG_RAX: 0000000000000171
[ 1142.609566][T17713] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080847fff
[ 1142.617681][T17713] RDX: 000000000000fee4 RSI: 0000000000000000 RDI: 000000008005ffe4
[ 1142.625782][T17713] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[ 1142.633892][T17713] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1142.642003][T17713] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1142.650343][T17713]  </TASK>
[ 1142.653881][T17713] Kernel Offset: disabled
[ 1142.658280][T17713] Rebooting in 86400 seconds..