last executing test programs:

10m6.839608872s ago: executing program 32 (id=86):
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc01064b5, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002000)=""/102400, 0x19000)
ioctl$DRM_IOCTL_MODE_ATOMIC(0xffffffffffffffff, 0xc03864bc, 0x0)
r1 = socket(0x15, 0x5, 0x0)
getsockopt(r1, 0x200000000114, 0x271b, 0x0, &(0x7f0000000040))

9m30.37041804s ago: executing program 5 (id=213):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a, 0x4})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000580)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000440)={@flat=@weak_binder={0x77622a85, 0x1000, 0x2}, @flat=@binder={0x73622a85, 0xa, 0x1}, @flat=@binder={0x73622a85, 0x1000}}, &(0x7f0000000240)={0x0, 0x18, 0x30}}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_GET_NODE_INFO_FOR_REF(r3, 0xc018620c, &(0x7f0000000100)={0x1})

9m30.019313505s ago: executing program 5 (id=216):
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffdc5, &(0x7f00000002c0)=0x800002)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r1, &(0x7f0000000240)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
sendmmsg$inet6(r1, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171, 0x0, 0x0, 0x4000000}}], 0x400000000000172, 0x0)

9m26.539322136s ago: executing program 5 (id=240):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000400)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x1, r3, 0x0, 0x60000007, 0x0)

9m25.487693122s ago: executing program 5 (id=244):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x9, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x118)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)={0x14, 0x20, 0x301, 0x0, 0x0, {0x1}}, 0x14}}, 0x0)

9m24.335519309s ago: executing program 5 (id=247):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYRES32=r0], 0x0, 0x8, 0x28, 0x0, 0x0, 0x50, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, &(0x7f0000000180))

9m23.193619686s ago: executing program 5 (id=251):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000ac0)=@base={0x6, 0x4, 0x1010, 0x89, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000840)={0x0, &(0x7f0000000780)=""/106, &(0x7f0000000380), &(0x7f0000000000), 0x80, r1, 0x0, 0x7}, 0x38)

9m7.648487925s ago: executing program 33 (id=251):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000ac0)=@base={0x6, 0x4, 0x1010, 0x89, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000840)={0x0, &(0x7f0000000780)=""/106, &(0x7f0000000380), &(0x7f0000000000), 0x80, r1, 0x0, 0x7}, 0x38)

6m34.291294769s ago: executing program 3 (id=858):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x4)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x4, 0x2ffffffff}, 0x2e)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000280)={0xa, 0x2, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
listen(r1, 0x2)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r2, &(0x7f0000000040)={0x2, 0x2, @local}, 0x10)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r3, &(0x7f0000000040)={0x2, 0x2, @local}, 0x10)
close_range(r1, 0xffffffffffffffff, 0x0)

6m33.032673138s ago: executing program 3 (id=862):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x4, 0x6, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x3, 0x3, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0xda, 0x0, 0x0, 0x0, 0xce4e}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8000000, @void, @value}, 0x94)
close(0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r1, &(0x7f0000000140), &(0x7f0000000000)=""/6, 0x2}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000500)='workqueue_queue_work\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000007c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_DELFLOWTABLE={0x2c, 0x18, 0xa, 0x5, 0x0, 0x0, {0x2, 0x0, 0x100}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x2}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x6}}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x68}, 0x1, 0x0, 0x0, 0x4048000}, 0x880)

6m32.2441312s ago: executing program 3 (id=863):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000340)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="08030000000000001c0012000c000100626f6e64"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=@newlink={0x48, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x200}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_LINK={0x8, 0x1, r3}]}}}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0x48}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r5)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r6, @ANYBLOB="010000"], 0x3c}}, 0x0)

6m31.893528485s ago: executing program 3 (id=866):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000046, &(0x7f0000000400), 0x1, 0x55f, &(0x7f0000001000)="$eJzs3c9rHFUcAPDvbJL+1qZQiopIoAcrtZsm8UcFD/UoWizovS7JNJRsuiW7KU0s2B7sxYNSBBEL4l3vHov/gH9FQQtFStCDl5XZzKbbZDfZppsf7X4+MOG9ndm8+e7M9+2bfbNsAH1rJPtTiHg5Ir5NIg5HRJKvG4x85cjydksPr09mSxL1+qd/J43tsnrzfzWfdzCvvBQRv38VcbKwtt3qwuJMqVxO5/L6aG32ymh1YfHUpdnSdDqdXh6fmDjz9sT4e+++07NY3zj/7w+f3P3wzNfHl77/9f6R20mcjUP5utY4nsKN1spIjOSvyVCcXbXhWA8a202Snd4BNmUgz/OhyPqAwzGQZz3w/PsyIupAn0rkP/Sp5jigeW3fo+vgZ8aDD5YvgNbGP7j82Ujsa1wbHVhKHrsyyq53h3vQftbGb3/duZ0t0bvPIQA2dONmRJweHFzb/yV5/7d5p7vYZnUb+j/YPnez8c+b7cY/hZXxT7QZ/xxsk7ubsXH+F+73oJmOsvHf+23HvyuTVsMDee2FxphvKLl4qZxmfduLEXEihvZm9fXmc84s3at3Wtc6/suWrP3mWDDfj/uDex9/zlSpVnqamFs9uBnxStvxb7Jy/JM2xz97Pc532cax9M5rndZtHP/Wqv8c8Xrb4/9oRitZf35ytHE+jDbPirX+uXXsj07t73T82fE/sH78w0nrfG31ydv4ad9/aad1j8Uf3Z//e5LPGuU9+WPXSrXa3FjEnuTjtY+PP3pus97cPov/xPH1+7925//+iPi8y/hvHf3l1a7i36HjP/VEx//JC/c++uLHTu131/+91SidyB/ppv/rdgef5rUDAAAAAACA3aYQEYciKRRXyoVCsbh8f8fROFAoV6q1kxcr85enovFd2eEYKjRnug+33A8xlt8P26yPr6pPRMSRiPhuYH+jXpyslKd2OngAAAAAAAAAAAAAAAAAAADYJQ52+P5/5s+Bnd47YMv5yW/oXxvm/6pfabrxzRbuDLCtvP9D/5L/0L/kP/SvzeW/2QF4Hnj/h/4l/6F/yX/oX/IfAAAAAAAAAAAAAAAAAAAAAAAAAAAAeur8uXPZUl96eH0yq09dXZifqVw9NZVWZ4qz85PFycrcleJ0pTJdTouTldmN/l+5UrkyNh7z10ZrabU2Wl1YvDBbmb9cu3BptjSdXkiHtiUqAAAAAAAAAAAAAAAAAAAAeLZUFxZnSuVyOqegsKnC4O7YDYUeFzp0GEm+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMA2+j8AAP//3vk4xQ==")
r0 = open(&(0x7f0000000180)='./file1\x00', 0x80242, 0x0)
ftruncate(r0, 0x2007ffc)
lremovexattr(0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x141842, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r2 = open(&(0x7f0000000240)='./bus\x00', 0x1c7102, 0x1)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r2, 0x0)
sendmsg$inet(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000280)="43fad8dad9621038c3ac06e344a3ad08a522955056fddbba34662527d1040e21a17dc6920be56ee7753e6fb4087b05f447bb543787e6909aa96d3a575161f3b6a4f56cfefe75d28269bb83b57a028909c71a7cafb7487458e9cca2f885c2e2240c078b18038110b301e77da1ae0c67fd278918a300069522c7009d3c15bd114cd53afdc439012b8ed340eae58ca9504b1c54185098432490b704a9f0d0d32be738", 0xa1}, {&(0x7f0000000480)="b3063ee8c2300bd91c93d29a1d86eede65cba01066ae42f14a4d4a6b0df0887348599f7d4d68172f54842e5e52b008c8b2890e693f7d9fd0f492385a8bdab76f28d0b7454345a475239d357aadc301790a1645e406d4842bb254fa5cd27615e1b6fcc920e5a1a5e6023d84170cdef6b2c4df66f47ccf0842f11439d1c14584a0975b8b36b66d8076069441f43dc3ef274ea0adf7da1a866332838df5675a4ef724133fac7ae75714d8f360ab1e404dddb8f6f23cc177a5a43be3948164eff441fd5790a52f57a1679a308e9db5220058136c43593920c0f4167a046696948eea4e5e33723759f4", 0xe7}], 0x2, &(0x7f00000000c0)=[@ip_retopts={{0x10}}], 0x10}, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000700)={0xb, {'syz0\x00', 'syz1\x00', 'syz1\x00', 0x0, 0x0, 0xbbfa, 0x8001, 0x81, 0xfffffff9}}, 0x118)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
lseek(r0, 0x3c, 0x4)

6m30.687971462s ago: executing program 3 (id=871):
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x24}}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x2a, 0x2, 0x0)
socket$key(0xf, 0x3, 0x2)
ioctl$SIOCX25SFACILITIES(0xffffffffffffffff, 0x89e3, 0x0)
getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newtfilter={0x6c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0xfffa}, {}, {0x1c, 0xfff9}}, [@filter_kind_options=@f_flower={{0xb}, {0x3c, 0x2, [@TCA_FLOWER_ACT={0x38, 0x3, [@m_connmark={0x34, 0x1, 0x0, 0x0, {{0xd}, {0x4}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}]}}]}, 0x6c}}, 0x24000000)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_RATE_SET(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

6m29.429478251s ago: executing program 3 (id=875):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0026}]})
r1 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0)
flock(r1, 0x2)
r2 = open(&(0x7f0000000180)='.\x00', 0x10000, 0x0)
r3 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0)
flock(r3, 0x2)
r4 = open(&(0x7f0000000180)='.\x00', 0x10000, 0x0)
dup2(r4, r2)
flock(r4, 0x1)
flock(r4, 0x2)
flock(r2, 0x2)
close_range(r0, 0xffffffffffffffff, 0x0)

6m28.970263918s ago: executing program 34 (id=875):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0026}]})
r1 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0)
flock(r1, 0x2)
r2 = open(&(0x7f0000000180)='.\x00', 0x10000, 0x0)
r3 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0)
flock(r3, 0x2)
r4 = open(&(0x7f0000000180)='.\x00', 0x10000, 0x0)
dup2(r4, r2)
flock(r4, 0x1)
flock(r4, 0x2)
flock(r2, 0x2)
close_range(r0, 0xffffffffffffffff, 0x0)

5m34.62483106s ago: executing program 0 (id=1023):
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x4000, &(0x7f00000013c0)=ANY=[@ANYBLOB='mode=00000000000000000000177,mode=00000000000000000000005,shortad,utf8,shortad,shortad,session=00000000000016777223,umask=00000000000000000000250,uid=ignore,shortad,dmode=00000000000000000170430,gid=ignore,adinicb,gid=forget,mode=00000000000000000002000,lastblock=00000000000000001024,shortad,euid>', @ANYRESDEC=0x0, @ANYBLOB=',fsmagic=0x0000000000000002,smackfsfloor=smackfstransmute,fowner>', @ANYRES32=r0, @ANYBLOB="2c736d61636b6673747261736d7574653d001c0b235ffdce27803854a81c498e5bc58fdfc2e25738bee597df2c00"/55], 0x2, 0xc2d, &(0x7f00000001c0)="$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")
setrlimit(0x1, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff})
truncate(&(0x7f0000000080)='./file1\x00', 0x400000f000)
openat(0xffffffffffffff9c, 0x0, 0x1e3442, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x641, 0x1c3)
fallocate(r1, 0x10, 0x3, 0x2000003e)
truncate(&(0x7f0000000080)='./file1\x00', 0x400000f030)
ftruncate(r0, 0xd831)

5m33.551395316s ago: executing program 0 (id=1027):
syz_open_dev$usbfs(0x0, 0x78, 0x101301)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x9a974000)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x0, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000500000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x7, 0x8, 0x22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
openat(0xffffffffffffff9c, 0x0, 0x187842, 0x147)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000480)=ANY=[@ANYRES32=r1, @ANYRES32=r0, @ANYBLOB="05"], 0x10)
r2 = socket(0x1, 0x3, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000000c0)={r1, &(0x7f0000000680), &(0x7f0000000080)=@udp6=r2}, 0x20)
bind$unix(r2, &(0x7f0000000300)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000c80)=[{{&(0x7f0000000280)=@file={0x1, './file0\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x1000000}}], 0x1, 0x0)

5m31.325587929s ago: executing program 0 (id=1035):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = openat$bsg(0xffffffffffffff9c, 0x0, 0x40, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b70800000000"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x2f, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
timer_settime(0x0, 0x1, &(0x7f0000000200)={{0x77359400}}, 0x0)
sendto$inet6(r0, &(0x7f00000002c0)="9e", 0x1, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback, 0xe}, 0x1c)
r2 = socket$kcm(0x10, 0x2, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$kcm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000000)="d80000001000810468f70082db44b904021d080b01000000e8fe55a11800150006001400000000120800040043000000a80016000a00014006000d00036010fab94dcf5c0461c1d67f6f94000534cf6ee08000a0e408e8d8ef52a9d7c7c0b7a196e6f66112c88ac417898516277ce06bbace80177ccbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d0080000000000000b57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb14feb9f5588a63644caf1ce1bd6c769ad809d52a9ecbee", 0xd8}], 0x1}, 0x20000004)
sendmsg$inet6(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)='h', 0x1}], 0x1}, 0x20044800)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000340)=',', 0x34000}], 0x1)
fcntl$setpipe(r0, 0x407, 0xe)

5m29.975483689s ago: executing program 0 (id=1040):
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
syz_usb_connect(0x0, 0x36, 0x0, 0x0)
ioctl$EVIOCRMFF(0xffffffffffffffff, 0x40044581, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00')
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000380))
mkdir(0x0, 0x0)
r2 = getpid()
r3 = syz_pidfd_open(r2, 0x0)
setns(r3, 0x24020000)
umount2(&(0x7f0000000000)='.\x00', 0x2)

5m29.022872963s ago: executing program 0 (id=1055):
r0 = socket$packet(0x11, 0x3, 0x300)
syz_usb_connect(0x5, 0xb6, &(0x7f0000000c40)=ANY=[@ANYBLOB="12010003cf7e8f4040201f7262f2010203010902a400018104004f0904870605ffff020102092403050703020496062404029cfe09050b00400080000007250181f7090009050d0000046404050725010300bfbb0905020200000000000000003847c1db1f204200a0e453181c85293b"], &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x5})
r1 = dup(r0)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, 0x0, &(0x7f0000000500))
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r2, 0x40000000af01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000340))
ioctl$VHOST_SET_FEATURES(r2, 0x4008af00, &(0x7f00000001c0)=0x304008000)
ioctl$VHOST_NET_SET_BACKEND(r2, 0x4008af30, &(0x7f00000002c0)={0x0, r1})
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = getpid()
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="580000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="a5fda98800000000280012800a000100767863616e000000fdfe02801400010000000000", @ANYRES32=0x0, @ANYBLOB="20d000000000050008001300", @ANYRES32=r4, @ANYBLOB="080004e5e1ff"], 0x58}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
ioctl$VHOST_RESET_OWNER(r2, 0xaf02, 0x0)

5m27.769501671s ago: executing program 0 (id=1047):
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000001040)={'lo\x00', {0x2, 0x4e21, @private=0xa010102}})
r1 = socket$inet6(0xa, 0x2, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$SMC_PNETID_GET(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r3, &(0x7f0000000280)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000900)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=@newlink={0x3c, 0x10, 0x437, 0x10, 0x25dfdbff, {0x0, 0x0, 0x0, r4, 0x54583, 0x1}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @geneve={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GENEVE_TTL_INHERIT={0x5, 0xc, 0x1}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmmsg$inet(r1, &(0x7f0000000640)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @dev={0xac, 0x14, 0x14, 0x3c}}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r4, @empty}}}], 0x20}}], 0x1, 0x80)

5m12.553922266s ago: executing program 35 (id=1047):
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000001040)={'lo\x00', {0x2, 0x4e21, @private=0xa010102}})
r1 = socket$inet6(0xa, 0x2, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$SMC_PNETID_GET(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r3, &(0x7f0000000280)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000900)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=@newlink={0x3c, 0x10, 0x437, 0x10, 0x25dfdbff, {0x0, 0x0, 0x0, r4, 0x54583, 0x1}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @geneve={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GENEVE_TTL_INHERIT={0x5, 0xc, 0x1}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmmsg$inet(r1, &(0x7f0000000640)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @dev={0xac, 0x14, 0x14, 0x3c}}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r4, @empty}}}], 0x20}}], 0x1, 0x80)

4m58.7353319s ago: executing program 7 (id=1110):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0x0, 0x0)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x5, 0x4, 0x4, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x3, 0x17, &(0x7f0000000880)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {0x85, 0x0, 0x0, 0x76}}, {{0x6, 0x0, 0x2, 0x9, 0x0, 0x6, 0xe7030000}, {0x4, 0x0, 0x0, 0x6}}, [@printk={@llu, {0x5, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x1, 0xa, 0x1, 0x9}, {0x7, 0x0, 0x3}, {}, {}, {0x14}}], {{0x4, 0x1, 0x5, 0x3}, {0x5, 0x0, 0xb, 0x3, 0x0, 0x2}}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

4m54.599257291s ago: executing program 7 (id=1125):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x420000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={0x48, 0x2, 0x6, 0x3, 0x0, 0x0, {0x5}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}]}, 0x48}}, 0x0)

4m52.361811714s ago: executing program 7 (id=1132):
r0 = socket$kcm(0x21, 0x2, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$inet_dccp(0x2, 0x6, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={&(0x7f0000000080)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x4e23, 0x6, @empty, 0x9}}, 0x80, &(0x7f0000000b80)=[{&(0x7f0000000140)="75d73a70024c05930c6126bccceca7d827c310a828c89783fa5ee343c32e5479df67a9660fc280c5647a322841b767f41cfe48d962e23e1d485b60760f04ca00305922726629a117", 0x48}, {&(0x7f0000000400)="ac7e2d157468ebb6eaee30da06ee7d7d69fa58c6c61f4198b5a2c59cb0d8526713481ee6e79836107ad52035fa57f371c614de4e0947db43ac6aeff868f3a0b167242664318969937a9c0812b8794a8706eedf68c082040e346dc3f995587af7f906cee9ca6d47d579ff0a78e55fe16d96acda3606172ca1d83add4a3693c8ee562085b28a79164e4db9a55334aad34a990d8faf2abb40f83ac9e3ae3c795c00"/173, 0xad}, {&(0x7f0000000280)="2bdcd757f046d9c3d7f9b5ce466a0c027bb5438d", 0x14}, {&(0x7f00000002c0)="42a4ae7cfe62478d02ff4127baa1983648069aced4f3fb6edc0c65aeb1f734ea107c4816e39cd03b596733a95ff3efc1e8033017aba7aadf36d52fc026f8816edd44acf640a8fb6ae6f9adb9335fff70f91d26a77da4ca09a93d73fb28366e8c371561d8c60ad4f474a396e369b877f6703bcfbbe72a3a2275bd9bf239d8570ca775a89e4896a45373a1f6a50b78dbd2f106b858c3b296acfeb2e211cc588fbe52a84d8bb2bdf19a", 0xa8}, {&(0x7f0000000c40)="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", 0x3c7}, {&(0x7f00000008c0)="ae6755d9", 0x4}], 0x6, &(0x7f0000001a00)=ANY=[@ANYBLOB="1800000000000000100100000100000051d833483cc75dd6900000000000000004000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319e2e66d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0)

4m51.249063691s ago: executing program 7 (id=1133):
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000200)='./file0\x00', 0x10, &(0x7f0000000140)={[{@norecovery}]}, 0xee, 0x474, &(0x7f00000004c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x185641, 0x0)
r2 = open(&(0x7f00000003c0)='./bus\x00', 0x84902, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x11, r2, 0x0)
write$FUSE_ATTR(r1, &(0x7f0000000440)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0xffffffffff7ffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6288f669, 0x0, 0xc000}}}, 0x78)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
pipe(&(0x7f0000000040))

4m50.122913557s ago: executing program 7 (id=1137):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
socket$nl_route(0x10, 0x3, 0x0)
r1 = epoll_create1(0x0)
r2 = epoll_create1(0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000100)={0xa000000d})
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000400)={0xa})
epoll_pwait(r1, &(0x7f0000000080)=[{}], 0x1, 0x80000000, 0x0, 0x0)

4m48.656962469s ago: executing program 7 (id=1142):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000800)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x1f}]}, @NFT_MSG_NEWSETELEM={0x8c, 0xc, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x60, 0x3, 0x0, 0x1, [{0x5c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x50, 0xb, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x5}, @NFTA_LIMIT_UNIT={0xc}]}}}, {0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}]}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0x110}}, 0x0)

4m46.677206738s ago: executing program 36 (id=1142):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000800)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x1f}]}, @NFT_MSG_NEWSETELEM={0x8c, 0xc, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x60, 0x3, 0x0, 0x1, [{0x5c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x50, 0xb, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x5}, @NFTA_LIMIT_UNIT={0xc}]}}}, {0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}]}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0x110}}, 0x0)

4m30.008275214s ago: executing program 8 (id=1203):
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x80082, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
epoll_create(0x10001)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
execve(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
pselect6(0x40, &(0x7f0000000000)={0x0, 0x0, 0x8000000000000000, 0x0, 0x77c8, 0x0, 0x0, 0x10000000}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x8, 0x9, 0x0, 0x2, 0x7}, 0x0, 0x0)

4m28.606655955s ago: executing program 8 (id=1206):
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x39000, 0x0)
r0 = memfd_create(&(0x7f0000000080), 0x0)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x408cd, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
r2 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r2, &(0x7f0000000200)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=@newtfilter={0x478, 0x2c, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r3, {0xe}, {}, {0x8, 0xffe0}}, [@filter_kind_options=@f_basic={{0xa}, {0x448, 0x2, [@TCA_BASIC_POLICE={0x444, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x8, 0x62, 0x2, 0x0, 0xc, 0x2, 0x7fff, 0x0, 0xffffff70, 0x19, 0xffffffa9, 0x2, 0x7, 0x80000001, 0x7, 0x3, 0x9, 0xc, 0x4, 0x6, 0x5d0bef1f, 0x400, 0x5, 0x837, 0xffffffff, 0x9fec, 0x401, 0x2000068, 0x7, 0xdd64, 0x1, 0x8, 0x8001, 0xfffffffe, 0x2, 0x0, 0x200, 0xfff, 0xfffffff1, 0xffff, 0x4, 0xf, 0x7, 0x7469, 0xb, 0x2, 0x200, 0xff32, 0x6, 0xca, 0x4ec1, 0x1, 0x9, 0x80, 0x0, 0x10000, 0x9, 0xb4, 0x7, 0x6, 0x0, 0x0, 0x8156b2a, 0x2, 0xd5c, 0x4, 0xa0, 0x4, 0x267, 0x1, 0x0, 0x81, 0xff, 0x2, 0xe6b, 0x9, 0xa, 0xc8c, 0x1, 0xd2a, 0x6, 0xf4e, 0x9, 0x3a0, 0x3, 0x8, 0x7ff, 0x44, 0x2, 0x9, 0x800, 0x3, 0x8, 0x0, 0x8e5e00, 0x922e, 0x0, 0x8, 0x2, 0xf, 0x4, 0x2, 0x2c000, 0x80, 0x1, 0x1, 0x2, 0x5, 0x0, 0xb, 0x6, 0x0, 0x3365, 0xa82f, 0x5, 0xffffffff, 0x1000, 0x0, 0x4, 0x0, 0x1, 0xc, 0x81, 0x111, 0x7, 0x5c20, 0x7b, 0x0, 0xe, 0x4, 0x6, 0x391, 0x0, 0x0, 0x3, 0x9, 0xc95d90a, 0xff, 0x2, 0x7, 0xd, 0xc7, 0x0, 0x7, 0x0, 0x9, 0xffffffff, 0x9, 0x1, 0x4, 0xd, 0x4, 0xfffffff9, 0x10, 0x2, 0xfff, 0x2, 0x6, 0xe56d, 0x600000, 0x1, 0x6, 0x0, 0x10000, 0x0, 0x3, 0x9, 0x0, 0x1000, 0x6, 0x9, 0x0, 0x10000, 0x81, 0x2, 0xffff6c4b, 0x1, 0x7, 0x5, 0x7fff, 0x8, 0xffffffff, 0x9, 0x6, 0x0, 0x40, 0x67e1, 0x80000000, 0x3, 0x603c, 0x80000004, 0x4, 0x0, 0xfffffff8, 0x7, 0x3, 0x10, 0x400, 0xfffffe00, 0x4, 0x3, 0x0, 0xffff, 0x4, 0x6, 0x8, 0x0, 0x400, 0x1, 0x8a, 0x10, 0x4, 0x0, 0xfffffffd, 0x3, 0x7, 0x616, 0x2, 0x2, 0xd1, 0x2, 0x0, 0x8, 0xe, 0x800, 0x1, 0x4, 0xd87, 0x80000001, 0x48e0, 0x8, 0x9, 0x40, 0x400, 0x5, 0x2, 0x4e1b, 0x1, 0x1000, 0x8, 0x4, 0x3, 0x0, 0x2, 0x9, 0xa2, 0x3, 0x10001, 0xffff, 0x4d, 0xd, 0x8, 0x2, 0x2, 0x8]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x20002, 0x5, 0x1, 0x2, 0xfff, {0x5, 0x0, 0x9c, 0xf9e, 0xfff, 0x7}, {0xf8, 0x2, 0x0, 0x4, 0x6fb}, 0x6, 0x3}}]}]}}]}, 0x478}}, 0x4000)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000000000)={0x2, 0x24e23, @loopback}, 0x10)

4m27.745296607s ago: executing program 8 (id=1209):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mremap(&(0x7f0000a94000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
munmap(&(0x7f00006a1000/0x1000)=nil, 0x1000)
mlock(&(0x7f0000eee000/0x2000)=nil, 0x2000)
madvise(&(0x7f0000c46000/0x3000)=nil, 0x3000, 0xa)
mlock(&(0x7f0000c5e000/0x3000)=nil, 0x3000)
mremap(&(0x7f00009a1000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000fef000/0x4000)=nil)
mremap(&(0x7f00006bd000/0x2000)=nil, 0x2000, 0x4000, 0x3, &(0x7f0000721000/0x4000)=nil)
mlock(&(0x7f00005ac000/0x1000)=nil, 0x1000)
mremap(&(0x7f000040b000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f00004b3000/0x4000)=nil)
mremap(&(0x7f0000e3b000/0x4000)=nil, 0x4000, 0x4000, 0x3, &(0x7f0000fe1000/0x4000)=nil)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2000, 0x3, &(0x7f0000c51000/0x2000)=nil)
munmap(&(0x7f00003fe000/0xc00000)=nil, 0xc00000)

4m27.357473503s ago: executing program 8 (id=1212):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200410, &(0x7f0000000a40)={[{@init_itable_val={'init_itable', 0x3d, 0xc0}}, {}, {@acl}, {@min_batch_time={'min_batch_time', 0x3d, 0xb044}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nomblk_io_submit}, {@nodelalloc}, {@auto_da_alloc}, {@norecovery}]}, 0x1, 0x591, &(0x7f0000000f80)="$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")
chdir(&(0x7f0000000380)='./file0\x00')
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x841c00, 0x0)
bpf$MAP_CREATE(0x100000000000000, 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r1, 0x0)
syz_mount_image$squashfs(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x0, &(0x7f0000000b80)=ANY=[], 0xfe, 0x19c, &(0x7f0000000440)="$eJzs0bFrFEEUx/Hvm5nb2whRT8UiggkYXDdEcrtBC6vDKsItWNgIHnpcVhNclcteYULEayQg0fwLWoiWKmglomAdLAQLjU06SYpgIRZysncTwb/B+TS/fW/ZnZk3c3k7LwO/d5Zb1OjT7OUjggFGZdBTapCvbf3d5togOGvrVZvPbI7ki0vXm1mWLoydKVH5pwH8GCtX4G8rf8FhxZBQQz7vLLeaciWhV+OGmk2o1Jl4gG7QDh8yYoY5dBlNL1jlnKItQR32TXV8pvLFpZPzgnAtvRnH06fvUq2eKvafpdVXSHhfFI+4QwjlhCEfaHBv3exhUpBwTm1oMeA1WFvXJ45NbqPCLXoI74Jtyl+Nh7rAcfxLxYFmOCg8RieM19mvMFydz9LqDHJevZTIfDI/Swq/q7XfupXNrlxU8st7WpMtX6JNSkFEPBExXYyGA7xnZYOuHSqb3xiVN8Uqu3M1/XfPbXWEozzxuN3sdBYiDz5IkBB3Ia7AcP93KmG8uGDe2m9s8GX3wXEcx3Ecx3Ecx/kP/AkAAP//1ItaLQ==")
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$sock_buf(r2, 0x1, 0x22, &(0x7f0000000400)=""/120, &(0x7f0000000480)=0x78)
getsockopt$sock_cred(r0, 0x1, 0x11, 0x0, &(0x7f0000000280))
r3 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r3, 0x40286608, &(0x7f0000000040)={0x19, 0x5, 0xb, 0x1, 0xffffffef, 0x9})

4m26.660985363s ago: executing program 8 (id=1217):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x16f4c000)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002800), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r1, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000001500)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
r3 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x60})
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
mremap(&(0x7f0000638000/0x1000)=nil, 0x6aa000, 0x2000, 0x3, &(0x7f00005c0000/0x2000)=nil)
close(r3)

4m24.481662606s ago: executing program 8 (id=1223):
r0 = gettid()
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000000180)=@file={0x1}, 0x6e)
listen(r1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$TCGETS2(0xffffffffffffffff, 0x802c542a, 0x0)
syz_open_dev$evdev(0x0, 0x40, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r2, &(0x7f0000000000)=@file={0x1}, 0x6e)
connect$unix(r2, &(0x7f0000000080)=@file={0x1}, 0x6e)

4m23.411421331s ago: executing program 37 (id=1223):
r0 = gettid()
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000000180)=@file={0x1}, 0x6e)
listen(r1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$TCGETS2(0xffffffffffffffff, 0x802c542a, 0x0)
syz_open_dev$evdev(0x0, 0x40, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r2, &(0x7f0000000000)=@file={0x1}, 0x6e)
connect$unix(r2, &(0x7f0000000080)=@file={0x1}, 0x6e)

14.88551475s ago: executing program 1 (id=1857):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x39, 0x0, 0x60)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, 0x0)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'tunl0\x00', <r3=>0x0})
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_inet6_SIOCADDRT(r2, 0x890b, &(0x7f0000000540)={@rand_addr=' \x01\x00', @local, @private1, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x4400046, r3})
setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'macvlan0\x00', <r5=>0x0})
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000540)={@empty, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @rand_addr=' \x01\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, r5})
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="300000001800ef0100000000000000000a00000000000000000000001400050000000000000000000000000000000002"], 0x30}, 0x1, 0x11}, 0x0)

11.761892416s ago: executing program 2 (id=1861):
r0 = socket$alg(0x26, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bind$alg(r0, &(0x7f0000000740)={0x26, 'hash\x00', 0x0, 0x0, 'xxhash64-generic\x00'}, 0x58)
r4 = accept4(r0, 0x0, 0x0, 0x0)
sendto$packet(r4, &(0x7f00000002c0)="48357e0287af48ffa745b497a54e0eec1bf2c69011f35b48339d15afaef1bd7efe075ff441b16e244b8b05fe09e29583ad142567826dfa5cbc6f979b050015bde8c4441cd0fa6be03213181bfe84743015ec12ced8b1aa8f44e5c30afac6f9fd2ab1303be0d1b2c02533bcc97cce7da9b507b053b11821323590d379e9e350a3291fbedb6382de878b7a56e4e38c7f746d0424029f5d49b04697a4", 0xfffffffffffffcf6, 0x0, 0x0, 0x0)

11.754357557s ago: executing program 1 (id=1863):
syz_open_dev$evdev(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x549, &(0x7f0000001800)="$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")
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x40, 0x0, 0x2, 0x5, 0x0, 0x0, {0x2}, [@CTA_EXPECT_TUPLE={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @loopback}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_EXPECT_MASK={0x4}, @CTA_EXPECT_MASTER={0x4}]}, 0x40}}, 0x0)

10.678084952s ago: executing program 2 (id=1864):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000000400)={0xa, 0x2, 0x2013, @loopback, 0x9}, 0x1c)
setsockopt$inet6_tcp_int(r3, 0x6, 0xa, &(0x7f0000001100)=0x804, 0x4)
setsockopt$sock_int(r3, 0x1, 0x2f, &(0x7f0000000080)=0x8, 0x4)
sendto$inet6(r3, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)

9.689650277s ago: executing program 1 (id=1867):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000010c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb0100180000000000000018000000180000000200000000000021000000030000001702000000ffdee802000000010000000000"], 0x0, 0x32, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
pipe2(&(0x7f0000000040), 0x800)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000d84000)={0xa, 0x2, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000300)={@in6={{0xa, 0x0, 0x6, @remote, 0xfffffffc}}, 0x0, 0x0, 0x6, 0x0, "3f114438efdaca16d374b49a365be44d5e860ea3ba676c0b5047b80e2c3535d5bd9db3c8572560f4d1be5cd41f7716082ee3589f099942e6f1c395ddb8160381baadf27900"}, 0xd8)
setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000100)={@in6={{0xa, 0x0, 0x20000000, @remote}}, 0x0, 0x0, 0x0, 0x0, "ddfd3b7ed7c6a1c172a987ae5ce3cafd64c9a736831a5912d606798fb75c9981c4b3ac0e06891ff18bc5543ed57215a3c45f9154dfa319e52a15a2b9acf80c07fb1a854dad742eef6187f2304844c296"}, 0xd8)
sendto$inet6(r1, 0x0, 0x0, 0x20004002, &(0x7f0000b63fe4)={0xa, 0x2, 0x80000000}, 0x1c)
syz_usb_control_io$hid(r0, &(0x7f0000001540)={0x24, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="00220f00000003a8407a730b93bf0280b3"], 0x0}, 0x0)
r2 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
ioctl$F2FS_IOC_WRITE_CHECKPOINT(r2, 0xf507, 0x0)

9.689127547s ago: executing program 6 (id=1868):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r3, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r4, @ANYBLOB="01000000020000001c0012000c000100626f6e6400"], 0x3c}}, 0x20000090)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="6c00000010001fff109e00008000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000003f0000440012800b00010067656e6576650000340002800500030003000000060005004e20000005000400ab000000050009000100000005000a0001000000050009000100000008000a00", @ANYRES32=r4], 0x6c}, 0x1, 0x0, 0x0, 0x1}, 0x0)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
openat$tun(0xffffffffffffff9c, 0x0, 0xa2f01, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)={{0x14}, [], {0x14, 0x10}}, 0x28}}, 0x0)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, 0x0, 0x0)

9.063548616s ago: executing program 2 (id=1870):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000100000000000000ac1e000100000000000000000000000000000000000000000a0060"], 0xb8}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0x2, 0x0, 0x25dfdbfe, {{@in6=@private0, @in=@remote, 0x0, 0x400, 0x0, 0x0, 0xa, 0x60, 0x0, 0x3b, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, 0x9}}, 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_xfrm(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9"], 0xb8}}, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x25dfdbfe, {{@in=@loopback, @in6=@ipv4={'\x00', '\xff\xff', @loopback}, 0x0, 0x400, 0x0, 0x0, 0xa, 0x60}, {}, {}, 0x1, 0x0, 0x0, 0x0, 0x1}}, 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$nl_xfrm(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x0, {{@in6=@private0, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x40, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x9}, {0x0, 0x5}}}, 0xb8}}, 0x4000)

8.630457582s ago: executing program 9 (id=1871):
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
connect$unix(0xffffffffffffffff, &(0x7f0000000200)=@abs={0x1, 0x0, 0x4e23}, 0x6e)
unshare(0x2040600)
ioctl$MON_IOCH_MFLUSH(0xffffffffffffffff, 0x9208, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$radio(0x0, 0xffffffffffffffff, 0x2)
r2 = syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
dup(r2)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
shutdown(r3, 0x0)
recvmmsg(r3, &(0x7f0000000080), 0x72a, 0x500, 0x0)

8.445351695s ago: executing program 2 (id=1872):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
r3 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_proto_private(r3, 0x89e2, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_CHANNEL(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x40044)

8.302580257s ago: executing program 9 (id=1874):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$VIDIOC_QUERYMENU(0xffffffffffffffff, 0xc02c5625, &(0x7f0000000180)={0x8000, 0xc5f7, @value=0x1})
r3 = add_key$user(&(0x7f0000000080), &(0x7f0000000300)={'syz', 0x3}, &(0x7f0000000200)="000087000000000000cc4c52bb85dfcda2", 0x11, 0xfffffffffffffffe)
r4 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r3, r4, r3}, &(0x7f00000000c0)=""/67, 0x43, 0x0)

6.536322844s ago: executing program 9 (id=1875):
r0 = socket$alg(0x26, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bind$alg(r0, &(0x7f0000000740)={0x26, 'hash\x00', 0x0, 0x0, 'xxhash64-generic\x00'}, 0x58)
r4 = accept4(r0, 0x0, 0x0, 0x0)
sendto$packet(r4, &(0x7f00000002c0)="48357e0287af48ffa745b497a54e0eec1bf2c69011f35b48339d15afaef1bd7efe075ff441b16e244b8b05fe09e29583ad142567826dfa5cbc6f979b050015bde8c4441cd0fa6be03213181bfe84743015ec12ced8b1aa8f44e5c30afac6f9fd2ab1303be0d1b2c02533bcc97cce7da9b507b053b11821323590d379e9e350a3291fbedb6382de878b7a56e4e38c7f746d0424029f5d49b04697a4", 0xfffffffffffffcf6, 0x0, 0x0, 0x0)

6.536174633s ago: executing program 4 (id=1876):
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mknod(0x0, 0x8001420, 0x0)
openat2$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000940))
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_script(r4, 0x0, 0xb)
splice(r3, 0x0, r5, 0x0, 0x80, 0x4)
timer_settime(r2, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

6.526145914s ago: executing program 6 (id=1885):
socket$netlink(0x10, 0x3, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
socket(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$kcm(0x10, 0x3, 0x10)
socket$packet(0x11, 0x2, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$netlink(0x10, 0x3, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="3c00000010001ffe00989837a182138b00268f1c", @ANYRES32=0x0, @ANYBLOB="ff7f000080000000140012800a00010076786c616e0000000400028008000a00", @ANYRES64=r0], 0x3c}, 0x1, 0x8000a0ffffffff}, 0x0)

6.522505604s ago: executing program 2 (id=1877):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4000, &(0x7f0000000400)={[{@resuid}, {@barrier_val={'barrier', 0x3d, 0x83fc}}, {@noblock_validity}, {@discard}, {@data_ordered}, {@grpid}, {@nodiscard}, {@test_dummy_encryption}]}, 0xd, 0x5f6, &(0x7f0000000c00)="$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")
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_read_part_table(0x634, &(0x7f0000000000)="$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")
r2 = dup(r1)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000480)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct={0x0, 0x0, 0x0, 0x4, 0x1, 0xffff}]}}, 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f0000000000)='./file1\x00', 0x300004c, &(0x7f0000000700), 0x1, 0x575, &(0x7f0000001200)="$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")
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000640)={0x0, 0xd000})
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

5.42800869s ago: executing program 9 (id=1878):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001ac0)=@newlink={0x44, 0x10, 0x609, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88a8ffa7}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}]}}}, @IFLA_LINK={0x8, 0x5, r6}]}, 0x44}}, 0x0)
r7 = socket(0x10, 0x803, 0x8)
sendmsg$IPVS_CMD_SET_INFO(r7, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x60, &(0x7f0000000300)={&(0x7f0000000900)=ANY=[@ANYBLOB="5c00000010001ffffcffffff0000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800b0001006772657461700000240002800800070064010100060003001008000008001500700f0d0008000700ac1414bb08000a00", @ANYRES32=r8], 0x5c}}, 0x40)

5.371042881s ago: executing program 4 (id=1879):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000000240)={r5, @in6={{0xa, 0x4e23, 0xffff14de, @dev={0xfe, 0x80, '\x00', 0x21}, 0x3}}, [0x4002, 0x80000001, 0x6, 0x80, 0xd, 0x304, 0x2, 0x5, 0xffffffffffffffff, 0x6, 0x7, 0x401, 0x0, 0x7, 0x4ba]}, &(0x7f0000000000)=0x100)

5.204967253s ago: executing program 6 (id=1880):
syz_emit_ethernet(0x4a, &(0x7f00000003c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x8, 0x2f, 0x0, @remote, @local, {[], {{0x0, 0x22eb, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
openat$sysfs(0xffffff9c, &(0x7f0000000080)='/sys/power/pm_test', 0x0, 0x0)
read$msr(r0, &(0x7f0000002000)=""/102400, 0x19000)
ioctl$UI_SET_LEDBIT(0xffffffffffffffff, 0x40045569, 0x7)
munmap(&(0x7f00003fe000/0xc00000)=nil, 0xc00000)
socket(0x10, 0x3, 0x0)
chdir(0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r1, 0xffffffff80000800, 0xee01, &(0x7f00000000c0)={0x84, 0x7f, 0x2000200000a95e, 0x0, 0x9, 0x400, 0x48cd, 0x0, 0x800000df})

5.089122065s ago: executing program 2 (id=1881):
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
close(0x3)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x1000800, &(0x7f0000000200)={[{@iocharset={'iocharset', 0x3d, 'iso8859-9'}}, {@discard}, {@gid}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'cp936'}}, {@sys_tz}, {@allow_utime={'allow_utime', 0x3d, 0x1}}, {@discard}, {@errors_continue}, {@errors_remount}, {@utf8}, {}]}, 0x1, 0x1525, &(0x7f00000037c0)="$eJzs3AuYTlXbOPD7XmvtMSbpaZLDsNa6N09yWCZJckglhyRJkiSnhKRJXklIDDklDUlIDkNyGEJymJg0zufzISFJmiQJyamy/teEv7e33u/t+96+z3d9c/+ua1/W/ex9r732cz/bXnvPzPNtl6E1G9eq1pCI4N+CF/5JBoBYABgIANcAQAAA5ePLx2evzy0x+d/bCftrPZx2pUfAriSuf87G9c/ZuP45G9c/Z+P652xc/5yN65+zcf0Zy8k2Ty90LS85d+Hn/zkZX///D8kqM/bLtWWu7woQ82dTuP45G9f//6zgz2zE9c/ZuP45VeyVHgD7X4DP/5wg1z9dw/XP2bj+jOVkV/r585VeIJKz34Mr/fljjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMZYznPGXKQC41L7S42KMMcYYY4wxxthfx+e60iNgjDHGGGOMMcbYfz8EARIUBBADuSAWckMcCAC4GvLCNRCBayEeroN8cD3khwJQEApBAhSGIqDBgAWCEIpCMYjCDVAcboQSUBJKQWlwUAYS4SYoCzdDObgFysOtUAFug4pQCSpDFbgdqsIdcCfcBdXgbqgONaAm1IJ7oDbcC3XgPqgL90M9eADqw4PQAB6ChvAwNIJHoDE8Ck3gMWgKzaA5tICW/6X8F6EHvAQ9oRckQ2/oAy9DX+gH/WEADIRXYBC8CoPhNUiBITAUXodh8AYMhzdhBIyEUfAWjIa3YQyMhXEwHlJhAkyEd2ASvAuTYQpMhWmQBtNhBrwHM2EWzIb3YQ58AHNhHsyHBZAOH8JCWAQZ8BEsho8hE2IBYBkshxWwElbBalgDa2EdrIcNsBE2wWbYAlthG2yHHbATPoFd8Cnshj2wFz6DffA5ZMISWPqn80//Q35XBAQUKFChwhiMwViMxTiMwzyYB/NiXoxgBOMxHvNhPsyP+bEgFsQETMAiWAQNGiQkLIpFMYpRLI7FsQSWwFJYCh06TMRELIs3Yzksh+WxPFbAClgRK2ElrIJVsCpWxTvxTqyG1bA6VseaWBPvwXuwN9bBOlgX62I9rHfp8RQ2xIbYCBthY2yMTbAJNsWm2BybY0tsia2wFbbG1tgW22I7bIftsT0mYRJ2wA7YETtiJ+yEnbEzdsEu2BW7YbesF3MBvoQvYS+sLnpjH+yDfTElV38cgAPwFRyEr+Kr+Bqm4BAciq/j6/gGDsdTOAJH4igchVXF2zgGxyKJ8ZiKqTgRJ+IknISTcQpOwWmYhtNxBs7AmTgLZ+H7OAc/wA9wHs7DBZiO6bgQF2EGZuBiPI2ZuASX4jJcjitwOa7C1bgK1+I6XIsbcANuwk24BbfgNtyGO3AHfoIKAD/FPbgHU3Af7sP9uB8P4AE8iAcxC7PwEB7Cw3gYj+ARPIpH8RgexxN4HE/iSTyFp/EMnsFzKC6e+5+UXJMCIpsSSsSIGBErYkWciBN5RB6RV+QVERER8SJe5BP5RH6RXxQUBUWCSBBFRBFhhBEkwhgAEFERFcVFcVFClBClRCnhhBOJIlGUFWVFOVFOlBe3igriNlFRVBJtXBVRRVQVbd2d4i5RTVQT1UUNUVPUErVEbVFb1BF1RF1RV9QT9UR98aBoIHpjf3xYZFemsRiCTcRQbCqaCXnxKFqJ4dhatBFtxZNiJI7A9qKVSxLPiA5iDHYUfxNj8TnRWYzHLuIF0VV0E93Fi6KHaO16il5iMvYWfcQ07Cv6if5igJiJNcT7OCd3TfGaSBFDxFDxuliAb4jh4k0xQowUo8RbYrR4W4wRY8U4MV6kiglionhHTBLvisliipgqpok0MV3MEO+JmWKWmC3eF3PEB2KumCfmiwUiXXwoFopFIkN8JBaLj0WmWCKWimViuVghVopVYrVYI9aKdWK9QATYJDaLLWKr2Ca2ix1ip/hE7BKfit1ij9grPhP7xOdiv/hCHBBfioPiK5ElvhaHxDfisPhWHBHfiaPie3FMHBcnxA/ipPhRnBKnxRlxVpwTP4mfxS/ivPACJEohpVQykDEyl4yVuWWcvErmkcHFd/daGS+vk/nk9TK/LCALykIyQRaWRaSWRlpJMpRFZTEZlTfI4vJGWUKWlKVkaelkGZkob5Jl5c2ynLxFlpe3ygryNllRVpKVZRV5u6wq75AQubCP6rKGrClryXtkMtwr68j7ZF15v6wnH5D15YOygXxINpQPy0byEdlYPiqbyMdkU9lMNpctZEv5uGwln5CtZRvZVj4p28mnZHv5tEySz8gO0l/8iDwnO8vnZRf5guwqu8nu8hd5XnrZU/aS0BtkH/my7Cv7yf5ygBwoX5GD5KtysHxNpsghcqh8XQ6Tb8jh8k05Qo6Uo+RbcrR8W46RY+U4OV6myglyonxHTpLvyslyipwqp8k0OV32v9jTbCn/Zf47f5A/+Ne9b5Kb5Ra5VW6T2+UOuVN+InfJXXK33C33yr1yn9wn98v98oA8IA/KgzJLZslD8pA8LA/LI/KIPCqPymPyuDwrf5An5Y/ylDwtT8uz8pw8J3+++B6AQiWUVEoFKkblUrEqt4pTV6k86mqVV12jIupaFa+uU/nU9Sq/KqAKqkIqQRVWRZRWRllFKlRFVTEVVTfgxQ+MKqVKK6fKqER1038mXxVXN6oSquRv8i+NL/mfjK+laqlaqVaqtWqt2qq2qp1qp9qr9ipJJakOqoPqqDqqTqqT6qw6qy6qi+qquqruqrvqoXqonqqnSlbJqo96WfVV/VR/NUANVK+oQWqQGqwGqxSVooaqoWqYGqaGq+FqhBqhRqlRarQarcaoMWqcGqdSVaqaqCaqSWqSmqwmq6lqqkpTaWqGmqFmqplqtpqt5qg5aq6aq+ar+SpdpauFaqHKUBlqsVqsMtUStUQtU8vUCrVCrVKr1Bq1Rq1T69QGtUFlqs1qs9qqtqrtarvaqXaqXWqX2q12q71qr9qn9qn9ar86oA6og+qgylJZ6pA6pA6rw+qIOqKOqqPqmDqmTqgT6qQ6qU6pU+qMOqPOqXPqZ/WzOq/OZ0/7AhGIQAUqiAligtggNogL4oI8QZ4gb5A3iASRID6ID/IF1wf5gwJBwaBQkBAUDooEOjCBDS5dSaLBDUHx4MagRFAyKBWUDlxQJkgMbgrKBjcH5YJbgvLBrUGF4LagYlApqBxUCW4PqgZ3BHcGdwXVgruD6kGNoGZQK7gnqB3cG9QJ7gvqBvcH9YIHgvrBg0GD4KGgYfBw0Ch4JGgcPBo0CR4LmgbNguZBi6DlX9q/96cKPOF66l46WffWffTLuq/up/vrAXqgfkUP0q/qwfo1naKH6KH6dT1Mv6GH6zf1CD1Sj9Jv6dH6bT1Gj9Xj9HidqifoifodPUm/qyfrKXqqnqbT9HQ9Q7+nZ+pZerZ+X8/RH+i5ep6erxfodP2hXqgX6Qz9kV6sP9aZeoleqpfp5XqFXqlX6dV6jV6r1+n1eoPeqDfpzXqL3qq36e16h96pP9G79Kd6t96j9+rP9D79ud6vv9AH9Jf6oP5KZ+mv9SH9jT6sv9VH9Hf6qP5eH9PH9Qn9gz6pf9Sn9Gl9Rp/V5/RP+mf9iz6vffbkPvvybpRRJsbEmFgTa+JMnMlj8pi8Jq+JmIiJN/Emn8ln8pv8pqApaBJMgiliiphsZMgUNUVN1ERNcVPclDAlTClTyjjjTKJJNGVNWVPOlDPlTXlTwVQwFU1FU9lUNreb280d5g5zl7nL3G3uNjVMDVPL1DK1TW1Tx9QxdU1dU8/UM/VNfdPANDANTUPTyDQyjU1j08Q0MU1NU9PcNDctTUvTyrQyrU1r09a0Ne1MO9PetDdJJsl0MB1MR9PRdDKdTGfT2XQxXUxX09V0N91ND9PD9DQ9TbJJNn1MH9PX9DX9TX8z0Aw0g8wgM9gMNikmxQw1Q80wM8wMN8PNCDPSjMqeqJq3zRgz1owz402qSTUTzUQzyUwyk81kM9VMNWkmzcwwM8xMM9PMNrPNHDPHzDVzzXwz36SbdLPQLDQZJsMsNotNpsk0S81Ss9wsNyvNSrParDZrzVqzHtabjWaj2Ww2m61mq9lutpudZqfZZXaZ3Wa32Wv2mn1mn9lv9psD5oA5aA6aLJNlDplD5rA5bI6YI+aoOWqOmWPmhDlhTpqT5pQ5Zc6YM+acKXDxeulNrM1t4+xVNo+92ua119h/jAvaQjbBFrZFrLb5bYHfxMZaW8KWtKVsaetsGZtob/pdXNFWspVtFXu7rWrvsHf+Lq5t77V17H22rr3f1rL3/CauZx+w9e2jtkH2FMk2s41sC9vYPmqb2MdsU9vMNrctbDv7lG1vn7ZJ9hnbwT77u3ihXWRX2zV2rV1nd9s99ow9aw/bb+05+5PtaXvZgfYVO8i+agfb12yKHfK7eJR9y462b9sxdqwdZ8f/Lp5qp9k0O93OsO/ZmXbW7+J0+6GdYzPsXDvPzrcLfo2zx5RhP7KL7cc20waw1C6zy+0Ku9Ku+v9jXWY32I12k91lP7Vb7Ta73e6wOy9NhO0eu9d+ZvfZz+0h+409YL+0B+0Rm2W//jXOPr4j9jt71H5vj9nj9oT9wZ60P6pL2dnH/oP9xZ633gIhAUlSFFAM5aJYyk1xdBXloaspL11DEbqW4uk6ykfXU34qQAWpECVQYSpCmgxZIgqpKBWjKN1Al4ZXikqTozKUSDdRWbqZytEtVJ5upQp0G1WkSlSZqtDtFHdx62p0N1WnGlSTatE9VJvupTp0H9Wl+6kePUD16UFqQA9RQ3qYGtEj1JgepSb0GDWlZtScWlBLepxa0RPUmtpQW3qS2tFT1J6epiR6hjrQs9SR/kad6DnqTM9TF3qBulI36k4vUg96iXpSL0qm3tSHXqa+1I/60wAaSK/QIHqVBtNrlEJDaCi9TsPoDRpOb9IIGkmj6C0aTW/TGBpL42g8pdIEmkjv0CR6lybTFJpK0yiNptMMeo9SaRbNpvdpDn1Ac2kezacFlE4f0kJaRBn0ES2mjymTltBSWkbLaQWtpFW0mtbQWlpH62kDbaRNtJm20FbaRttpB+2kT2gXfUq7aQ/tpc9oH31O++kLOkBf0kH6irLoazpE39Bh+paO0He+F31Px+g4naAf6CT9SKfoNJ2hs3SOfqKf6Rc6T54gxFCEMlRhEMaEucLYMHcYF14V5gmvDvOG14SR8NowPrwuzBdeH+YPC4QFw0JhQlg4LBLq0IQ2pDAMi4bFwmh4Q1g8vDEsEZYMS4WlQxeWCRPDm8Ky4c1hufCWsHx4a1ghvC2sGFYKH72/Snh7WDW8I7wzvCusFt4dVg9rhDXDWuE9Ye3w3rBOeF9YN7w/LBc+ENYPHwwbhA+FDcOHw0bhI2Hj8NGwSfhY2DRsFjYPW4Qtw8fDVuETYeuwTdg2fDJsFz4Vtg+fDpPCZ8IO4bO/rn9g0T9fnxz2DvuEL4cvh97fJ+dHF0TTox9GF0YXRTOiH0UXRz+OZkaXRJdGl0WXR1dEV0ZXRVdH10TXRtdF10c3RDdGN0W9r5ULHDrhpFMucDEul4t1uV2cu8rlcVe7vO4aF3HXunh3ncvnrnf5XQFX0BVyCa6wK+K0M846cqEr6oq5qLvBFXc3uhKupCvlSjvnyrhE18K1dC1dK/eEa+3auLbuSfeke8o95Z52T7tnXAf3rOvo/uY6uedcZ/e8e9694Lq6bq67e9H1cBPyXjjLkl0f18f1dX1df9ffDXQD3SA3yA12g12KS3FD3VA3zA1zw91wN8KNcKPcKDfajXZj3Bg3zo1zqS7VTXQT3SQ3yU12k91UN9WluTQ3w81wM91MV3XWhb3MdXPdfDffpbt0t9Blzxkz3GK32GW6TLfULXXL3XK30q10q91qt9atdevderfRbXSb3Wa31W112912t9PtdLvcLrfbX3OhU7fP7Xf73QF3wB10X7ks97U75L5xh9237oj7zh1137tj7rg74X5wJ92P7pQ77c64s+6c+8n97H5x5513qZEJkYmRdyKTIu9GJkemRKZGpkXSItMjMyLvRWZGZkVmR96PzIl8EJkbmReZH1kQSY98GFkYWRTJiHwUWRz5OJIZWRJZGlkWWR5ZEfG+8NbQF/XFfNTf4Iv7G30JX9KX8qW982V8or/Jl/U3+3L+Fl/e3+or+Nt8RV/JV/aP+aa+mW/uW/iW/nHfyj/hW/s2vq1/0rfzT/n2/mmf5J/xHfyzvqP/m+/kn/Od/fO+i3/Bd/XdfHf/ou/hX/I9fS+f7Hv7Pv5l39f38/39AD/Qv+IH+Vf9YP+aT/FD/FD/uh/m3/DD/Zt+hB/pR8W85UdfukWG8T7VT/AT/Tt+kn/XT/ZT/FQ/zaf56X6Gf8/P9LP8bP++n+M/8HP9PD/fL/Dp/kO/0C/yGf4jv9h/7DP9kksPlf1Kv8qv9mv8Wr/Or/cb/Ea/yW/2W/xWv81v9zv8Tv+J3+U/9bv9Hr/Xf+b3+c/9fv+FP+C/9Af9Vz7Lf+0P+W/8Yf+tP+K/80f99/6YP+5P+B/8Sf+jP+VP+zP+rD/nf/I/+1/8ef6bNcYYY4yxP2XC5ab47ZoLj/N7/0GO+LuN+wDA1dsKZf39+uwZ5fr8F9r9REK7CAA806vLw5eW6tWTk5MvbpspISg2D+DST4KyxcDleAm0hacgCdpA2T8cfz/R7Rz9i/6jtwLE/V1OLFyOL/f/BQAm/0H/jz85amGF8Ez8f9D/PIASxS7n5IbL8RJo++vzlTZQ7p+Mv0CrfzH+3F+mArT+u5w8cDm+PP5EeAKehaTfbMkYY4wxxhhjjF3QT1TudOn+89JvfP7R/XmCupyTCy7H/+r+nDHGGGOMMcYYY1fec926P/14UlKbTv/5xp3/paw/3WgC/109c+MPG94DXHpFAcC/2SFAdkP+Tx7Flv+RfaVcPHX+cdXysz6A/x2l/CsaV/g/JsYYY4wxxthf7vKk/7evqys1IMYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjLAf6U98Hluff+zqxK32MjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHG2JX2/wIAAP//3UT6ZQ==")
getsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x24, &(0x7f0000000c00), &(0x7f0000002000)=0x2)

4.196324688s ago: executing program 4 (id=1882):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_sctp(0x2, 0x1, 0x84)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
socket$alg(0x26, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000080)={'syz1\x00', {0x1b10, 0x0, 0x1, 0x2}, 0x2f, [0x2, 0x1, 0x704d, 0x1, 0x5, 0x1, 0x2, 0x0, 0x4, 0xfffffc01, 0xfffffffb, 0x8, 0x1, 0x100, 0xfe, 0x48, 0x7, 0x5, 0x2ca, 0x8, 0x76, 0x8, 0x0, 0x81, 0x40, 0x19b1, 0x8000, 0x7, 0x797, 0x4000000, 0x7, 0x3, 0xe, 0x7, 0x1, 0x1, 0x5, 0xe, 0x7, 0x10001, 0x9, 0x7f, 0x8, 0x6, 0xfffffff7, 0x4, 0x6, 0x40, 0x7f, 0x9, 0x1, 0x6, 0x3, 0x2284919, 0x4, 0x5643fa73, 0xfffeffff, 0x6, 0x800, 0x2, 0x8a, 0x6, 0x1, 0x6], [0xfffffed2, 0x7fffffff, 0xffff, 0x8, 0xe62, 0x3, 0x3, 0x9, 0xc33, 0x3, 0x7, 0x800, 0x6c368000, 0x8, 0x1000007, 0x0, 0x10, 0x5, 0x8, 0x8001, 0x3, 0x7fff, 0x9, 0x0, 0x5, 0x4, 0x401, 0x8, 0x40, 0xc10, 0x80000001, 0x3, 0x3, 0x3, 0x7, 0x8, 0x8, 0x5, 0x4, 0x9, 0x5, 0x3, 0x2, 0x3, 0x0, 0x11e, 0xa4, 0x0, 0x5, 0xd69, 0x9, 0xf404, 0xf1, 0x3, 0x3, 0x1, 0x6, 0x6, 0x0, 0x6, 0x8, 0x6, 0x4, 0x1000068], [0x1, 0x1, 0x4, 0xfffffffc, 0x0, 0x7fff, 0x405, 0x9, 0x2, 0xffc, 0x7, 0x4, 0xc, 0x7, 0xa, 0xa, 0x8, 0x4, 0x5, 0x5, 0x2, 0x30000000, 0x644, 0x2, 0xfffffffd, 0x7, 0x5, 0x7f, 0x7ff, 0xd, 0x400, 0xf, 0x41, 0x81, 0xc99, 0x25a, 0x2, 0x0, 0x2, 0x5d9fffa, 0x3ff, 0x40, 0x1, 0x8, 0x10000, 0xe7, 0x200, 0x7af5, 0x0, 0xb, 0x0, 0xffff, 0x7, 0xc, 0x2, 0x81, 0x9, 0x2, 0x7, 0x100, 0x7, 0x0, 0x6, 0x10], [0xffffff80, 0xd5800000, 0x0, 0x4, 0x2, 0x62a, 0x3, 0x407, 0xb343, 0x4, 0x1, 0x8, 0x8000, 0x8, 0xffffff81, 0x80000000, 0x5, 0x3, 0x201, 0xfff, 0x3, 0xfffffffd, 0x3c63, 0x7, 0x6, 0xe6, 0xffffffff, 0x3, 0x2, 0x7, 0x1, 0x7, 0x7, 0x8, 0x1, 0xf, 0x9, 0x17cb, 0x0, 0x3, 0x6fe, 0xe, 0x7, 0x13a, 0x7, 0x0, 0xb757, 0x2, 0x11b, 0x996, 0x54, 0x8c1, 0x0, 0x5, 0x4, 0x2, 0x5, 0x10000400, 0x9, 0x5, 0x3, 0xfffffffb, 0xc, 0x2]}, 0x45c)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$kcm(0x10, 0x2, 0x0)
r0 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0xc0}, &(0x7f0000000600)=<r1=>0x0, &(0x7f0000000640)=<r2=>0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200))
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x5b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc})
io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0)

4.07474039s ago: executing program 6 (id=1883):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = dup(r0)
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r2, 0x40000000af01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000200)={0x1, 0x1, 0x0, &(0x7f0000000740)=""/51, 0x0})
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000340))
r4 = dup(r3)
ioctl$VHOST_NET_SET_BACKEND(r2, 0x4008af30, &(0x7f0000000000)={0x1, r4})
ioctl$VHOST_SET_FEATURES(r2, 0x4008af00, &(0x7f00000001c0)=0x304008000)
ioctl$VHOST_NET_SET_BACKEND(r2, 0x4008af30, &(0x7f00000003c0)={0x1, r1})
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r6=>0x0})
sendto$packet(r4, &(0x7f0000000400)="f257a8ea7bc273dfaeab96850806", 0xe, 0x44, &(0x7f0000000200)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @broadcast}, 0x14)

3.870277713s ago: executing program 1 (id=1884):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
write$tcp_mem(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x20, 0x0, 0x20, 0xffffffffffffbe41}, 0x48)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4a, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
gettid()
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000180))
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000040)="0f01cb650f741065666765f36f0f330f09660f3a0cb9000000752066b9800000c00f326635004000000f300f01d7ba4100ed", 0x32}], 0x1, 0x12, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0x5f, 0xff, 0x0, 0xa6, 0x0, 0x5, 0x0, 0xfffffffffffffdfc}, {0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4, 0xff, 0x2, 0x0, 0x800000000000000}, {0x2, 0x33, 0x0, 0x0, 0x4, 0x5, 0x4, 0x0, 0x5}]})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x0, 0x8000, 0x40, 0x0, 0x0, 0x2004cb, 0x1, 0xfffffffffffffffe, 0x3, 0x0, 0xff, 0x0, 0x0, 0x2, 0x7ffffffe], 0x80a0000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

3.869791833s ago: executing program 9 (id=1886):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x8, 0x4, 0x4, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0xa, 0x8, &(0x7f0000000240)=ANY=[@ANYBLOB="1809000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7030000070000008500000021000000b70000000000000095"], &(0x7f0000000640)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000400)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
add_key$fscrypt_provisioning(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$session_to_parent(0x12)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0xe, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f0800", 0x0, 0xe8a2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

3.755558264s ago: executing program 4 (id=1887):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$VIDIOC_QUERYMENU(0xffffffffffffffff, 0xc02c5625, &(0x7f0000000180)={0x8000, 0xc5f7, @value=0x1})
r3 = add_key$user(&(0x7f0000000080), &(0x7f0000000300)={'syz', 0x3}, &(0x7f0000000200)="000087000000000000cc4c52bb85dfcda2", 0x11, 0xfffffffffffffffe)
r4 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r3, r4, r3}, &(0x7f00000000c0)=""/67, 0x43, 0x0)

3.741588795s ago: executing program 6 (id=1888):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = inotify_init()
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = inotify_add_watch(r3, &(0x7f0000000280)='.\x00', 0x25000001)
inotify_rm_watch(r3, r4)

2.71108135s ago: executing program 9 (id=1889):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
writev(r1, &(0x7f0000000400)=[{&(0x7f0000000100)="92", 0x1}], 0x1)
syz_usbip_server_init(0x0)
syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x7}, @hci_rp_read_enc_key_size={{}, {0x0, 0xc9, 0xb6}}}}, 0xa)
pipe(&(0x7f0000000380)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r2)
splice(r0, 0x0, r3, 0x0, 0x80, 0x6)
r4 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x2982, 0x0)
r5 = dup(r4)
ioctl$TCSETAW(r4, 0x5407, &(0x7f0000000000)={0x7, 0xfffb, 0x1, 0x1, 0x1, "8cd373f12210c706"})
write$UHID_INPUT(r5, &(0x7f0000001040)={0xfc, {"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", 0x1000}}, 0x1006)
wait4(0x0, &(0x7f0000000080), 0x40000000, 0x0)

2.71017468s ago: executing program 4 (id=1890):
r0 = socket$alg(0x26, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bind$alg(r0, &(0x7f0000000740)={0x26, 'hash\x00', 0x0, 0x0, 'xxhash64-generic\x00'}, 0x58)
r4 = accept4(r0, 0x0, 0x0, 0x0)
sendto$packet(r4, &(0x7f00000002c0)="48357e0287af48ffa745b497a54e0eec1bf2c69011f35b48339d15afaef1bd7efe075ff441b16e244b8b05fe09e29583ad142567826dfa5cbc6f979b050015bde8c4441cd0fa6be03213181bfe84743015ec12ced8b1aa8f44e5c30afac6f9fd2ab1303be0d1b2c02533bcc97cce7da9b507b053b11821323590d379e9e350a3291fbedb6382de878b7a56e4e38c7f746d0424029f5d49b04697a4", 0xfffffffffffffcf6, 0x0, 0x0, 0x0)

1.604472666s ago: executing program 6 (id=1891):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f00000011c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r1, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000001240)={&(0x7f0000001200)={0x1c, r2, 0x101, 0x70bd2b, 0x25dfdbfd}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x4008000)
r3 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_mreq(r3, 0x29, 0x14, 0x0, 0x53)
r4 = socket$inet(0x2, 0x3, 0x6)
ioctl$sock_inet_SIOCSARP(r4, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @dev}, {0x1, @local}, 0x4a, {0x2, 0x0, @remote}})
sendmsg$AUDIT_USER_AVC(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x38, 0x1403, 0x1, 0x70bd2d, 0x25dfdbff, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'hsr0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0xc080}, 0x20000010)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_usb_connect(0x3, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0xeb, 0xfe, 0xae, 0x10, 0x1a0a, 0x101, 0x301d, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0xc6, 0x0, 0x0, 0xfb, 0xa3, 0x5d}}]}}]}}, 0x0)

1.084058524s ago: executing program 1 (id=1892):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x31dfb000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, &(0x7f00000004c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
setsockopt$inet_tcp_int(r3, 0x6, 0x6, &(0x7f0000000040)=0x24, 0x4)

1.081954004s ago: executing program 4 (id=1893):
socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
r0 = syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000640)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x0, 0x0, 0xffffffffffff8001, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x12, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd, 0x24, 0xf, 0x1, 0x0, 0x4}}, {[], {{0x9, 0x5, 0x82, 0x2, 0x200, 0x0, 0x2}}, {{0x9, 0x5, 0x3, 0x2, 0x200}}}}}]}}]}}, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
getsockopt(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0)
r1 = syz_usb_connect(0x0, 0x24, &(0x7f0000004200)={{0x12, 0x1, 0x0, 0xe2, 0x79, 0x3b, 0x10, 0x5d1, 0x2001, 0x900, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x4d, 0x2f, 0x9c}}]}}]}}, 0x0)
syz_usb_control_io$cdc_ecm(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, 0x0, &(0x7f0000000740)={0x2c, &(0x7f0000000500)=ANY=[@ANYBLOB="4015de"], 0x0, 0x0, 0x0, 0x0})
r2 = fsopen(&(0x7f0000000000)='cgroup\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000780)='none', &(0x7f00000007c0)='\x00\x00\x00\x00\x00\x00\x00\t\x00\x00\x00\x00\x00^a&\xcd\x8c.\xda|\x9ex\x00\x1d\x1cL\t\\\x15Dk\xb7\x04\xd5\x7fj\xf4H\x9d\xb2\x8b\xf7\x8a3[\xc3\x99\x14\nc\xdfV\x1bR?\xaf\xe67\xa6\x99\xcc>', 0x0)
syz_usb_control_io$hid(r1, 0x0, &(0x7f0000000700)={0x2c, &(0x7f0000000000)=ANY=[@ANYBLOB="088340"], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r1, &(0x7f0000000200)={0x24, &(0x7f0000000000)={0x40, 0x5, 0x8b, {0x8b, 0x1, "47eabd7e5b42005db4b19d376cab522ab51185620748d604c0c658b0e9c46766725a018e4f86012cb9e51334c8660bf0c85ce85facb74f1d1e41b88d55de0f70b8fa47635b5c0adebdad0874694616f1bbf01bf5595d5878fb903b939574ddd26426612b501f3ba32063fe19f88b01f2a8a1eee7d0f991337057c53863559b1087c358d55da579ec4f"}}, &(0x7f00000000c0)={0x0, 0x3, 0x8d, @string={0x8d, 0x3, "94157b3e00e8cceb7c821398ca9cc0dc8d25107daa18bc1356005eeb3b1eb252833a073a8ee4ad56a65844a523278bde4933e18f05f53df6a3b104ad80db8874717c2aebe3541b9b05131fcb1af4d84febecd06f58929d71c0fcd3d601ef562671c72cfc2cd153fcefe1fe654bd101477d629750770726fe85503a36d5f9d58b3df68ccdcf9def908232bb"}}, &(0x7f0000000180)={0x0, 0x22, 0x4, {[@global=@item_012={0x1, 0x1, 0x9, 'C'}, @local=@item_012={0x1, 0x2, 0x0, "af"}]}}, &(0x7f00000001c0)={0x0, 0x21, 0x9, {0x9, 0x21, 0xc5, 0xe, 0x1, {0x22, 0xb64}}}}, &(0x7f0000000500)={0x2c, &(0x7f0000000300)={0x20, 0x0, 0xdd, "72f1242b8866be3361b4d9f837f7acf4fea8e9eba67e4f4f54579153e9701fb5e925461ce4bc6fc564027cc5cd564ffb678bb16a88d7c189368ce1b4830e20e6e40a956c1c043a8c6399f6e7423a87106ee43077c7a48dfbac14b7c7e3708b3fd17dd6b4657bc1548c6b35ce25681f3069ae0b41b58a800921f2a3a626bc3f83f39bfaa8dd47cb698a3e901765b27fde2573d17d36fe9ce592d4d205d5272f3952fd2a14e6c2626f54fce3c07e7852f50753179f59bce3361550df2e54297f26d38412b36d29c0e803c6d60a8d0b1c09832ace6e7260caf7dd944189ce"}, 0x0, &(0x7f0000000280)={0x0, 0x8, 0x1, 0x81}, &(0x7f0000000400)={0x20, 0x1, 0x81, "1201a538f06baf2bc5a9b009b263c5342a0bdf5decf9996c9bc3919cdb42cc301305ce3425893d175b6acd602b23ed09315606f1bfef6644a7ff3d1cf8ba5ccb204338ab48499da183f92c6887b695b3375a14430188a71979168c6bf0243c08684a40679f4bdab24201ccdf0cd9fe2aa205c74189f0c334c98f4188959a4797ed"}, &(0x7f00000004c0)={0x20, 0x3, 0x1, 0x7}})
syz_usb_control_io(r0, &(0x7f0000000580)={0x2c, 0x0, &(0x7f00000002c0)={0x0, 0x3, 0x4, @lang_id={0x4}}, 0x0, 0x0, 0x0}, 0x0)

0s ago: executing program 1 (id=1894):
socket$netlink(0x10, 0x3, 0x0)
unshare(0x20000400)
unshare(0x8000400)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
bind$tipc(0xffffffffffffffff, &(0x7f0000000100)=@nameseq={0x1e, 0x1, 0x2, {0x43, 0x3, 0x3}}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @multicast2, 0xffff, 0x0, 'lblc\x00', 0x1d, 0x1000, 0x4a}, 0x2c)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000003000000400001802c0004001400010002000000ac1414aa00000000000000001400020002000000e000000200000000000004000d0001007564703a73"], 0x54}}, 0x0)

kernel console output (not intermixed with test programs):

 ready
[  335.816989][ T4354] bridge0: port 2(bridge_slave_1) entered blocking state
[  335.824184][ T4354] bridge0: port 2(bridge_slave_1) entered forwarding state
[  335.846337][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  335.888302][ T4740] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  335.991591][ T4740] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  336.138905][ T4740] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  336.151968][ T4740] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  336.379445][ T4740] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  336.605012][ T4740] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  336.820885][ T7814] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  336.917261][ T7814] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  336.976936][ T4740] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  337.004779][ T4740] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  337.023774][ T4740] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  337.049728][ T4740] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  337.077808][ T4740] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  337.132349][ T4740] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  337.524023][ T8039] loop6: detected capacity change from 0 to 128
[  337.647500][ T8041] autofs4:pid:8041:autofs_fill_super: called with bogus options
[  338.265629][ T8043] syz.6.936: attempt to access beyond end of device
[  338.265629][ T8043] loop6: rw=2049, sector=145, nr_sectors = 240 limit=128
[  338.334910][   T26] audit: type=1326 audit(1747843162.403:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8038 comm="syz.6.936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f738e969 code=0x7ffc0000
[  338.443038][   T26] audit: type=1326 audit(1747843162.513:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8038 comm="syz.6.936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f738e969 code=0x7ffc0000
[  339.007726][ T8039] syz.6.936: attempt to access beyond end of device
[  339.007726][ T8039] loop6: rw=524288, sector=145, nr_sectors = 240 limit=128
[  339.505583][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  339.525196][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  340.240765][ T7814] 8021q: adding VLAN 0 to HW filter on device batadv0
[  342.124884][ T6920] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  342.139251][ T6920] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  342.164440][ T6920] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  342.173700][ T6920] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  342.185097][ T7814] device veth0_vlan entered promiscuous mode
[  342.193844][ T6920] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  342.202287][ T6920] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  342.216317][ T7814] device veth1_vlan entered promiscuous mode
[  342.256633][ T6919] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  342.272131][ T6919] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  342.281201][ T6919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  342.296071][ T6919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  342.310845][ T7814] device veth0_macvtap entered promiscuous mode
[  342.322966][ T7814] device veth1_macvtap entered promiscuous mode
[  342.341266][ T7814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  342.353747][ T7814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.364199][ T7814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  342.374944][ T7814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.390268][ T7814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  342.401026][ T7814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.417984][ T7814] batman_adv: batadv0: Interface activated: batadv_slave_0
[  342.428321][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  342.442261][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  342.452514][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  342.462355][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  342.477077][ T7814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  342.488292][ T7814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.499157][ T7814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  342.510237][ T7814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.520358][ T7814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  342.531192][ T7814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.541404][ T7814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  342.552345][ T7814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.568591][ T7814] batman_adv: batadv0: Interface activated: batadv_slave_1
[  342.578807][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  342.590584][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  342.624716][ T7814] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  342.639291][ T7814] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  342.649280][ T7814] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  342.658420][ T7814] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  342.773477][ T4354] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  342.785853][ T4354] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  342.806917][ T6920] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  342.808657][ T6919] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  342.828512][ T6920] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  342.845216][ T6919] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  343.134472][ T8119] netlink: 'syz.6.954': attribute type 1 has an invalid length.
[  343.194415][   T26] audit: type=1326 audit(1747843167.263:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8117 comm="syz.2.955" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ffa1c78e969 code=0x0
[  344.825402][ T8119] 8021q: adding VLAN 0 to HW filter on device bond1
[  345.259566][ T8131] bond1: (slave geneve2): making interface the new active one
[  345.305862][ T8131] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  345.804939][ T7134] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready
[  346.263399][ T8131] syz.6.954 (8131) used greatest stack depth: 18944 bytes left
[  346.312321][ T8119] device bond1 entered promiscuous mode
[  346.355356][ T8119] device geneve2 entered promiscuous mode
[  346.727992][ T8162] loop6: detected capacity change from 0 to 512
[  346.835182][ T8162] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  346.866953][ T8162] ext4 filesystem being mounted at /96/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  347.088253][   T26] audit: type=1804 audit(1747843171.153:117): pid=8162 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.948" name="/newroot/96/file1/file2" dev="loop6" ino=16 res=1 errno=0
[  347.608612][ T8162] EXT4-fs (loop6): unmounting filesystem.
[  348.709494][ T8197] loop7: detected capacity change from 0 to 1024
[  349.531854][ T8197] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  350.471174][ T7814] EXT4-fs (loop7): unmounting filesystem.
[  351.259710][ T8236] loop7: detected capacity change from 0 to 2048
[  352.210878][ T8236]  loop7: p1 < > p3
[  352.254707][ T8236] loop7: p3 size 134217728 extends beyond EOD, truncated
[  352.324434][ T8245] kvm: emulating exchange as write
[  352.768219][ T4352] udevd[4352]: inotify_add_watch(7, /dev/loop7p1, 10) failed: No such file or directory
[  352.801026][ T6787] udevd[6787]: inotify_add_watch(7, /dev/loop7p3, 10) failed: No such file or directory
[  353.092635][ T5788] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  353.292657][ T5788] usb 8-1: Using ep0 maxpacket: 16
[  353.300398][ T5788] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  353.351151][ T5788] usb 8-1: config 0 has no interfaces?
[  353.385560][ T5788] usb 8-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  353.409333][ T5788] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  353.447572][ T5788] usb 8-1: config 0 descriptor??
[  353.591916][ T8269] netlink: 4 bytes leftover after parsing attributes in process `syz.6.977'.
[  354.543823][ T8253] loop7: detected capacity change from 0 to 1024
[  354.619225][   T26] audit: type=1800 audit(1747843178.683:118): pid=8274 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.980" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[  354.642921][ T8253] hfsplus: unable to parse mount options
[  354.698067][ T8253] netlink: 8 bytes leftover after parsing attributes in process `syz.7.976'.
[  354.776502][ T4334] usb 8-1: USB disconnect, device number 2
[  354.889248][ T8285] loop6: detected capacity change from 0 to 512
[  354.946686][ T8285] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  354.979003][ T8278] netlink: 8 bytes leftover after parsing attributes in process `syz.2.982'.
[  355.022704][ T8285] EXT4-fs (loop6): group descriptors corrupted!
[  355.923743][ T8292] infiniband syz2: set down
[  355.928324][ T8292] infiniband syz2: added ipvlan1
[  356.010145][ T8292] infiniband syz2: Couldn't open port 1
[  356.043471][ T8292] RDS/IB: syz2: added
[  356.047750][ T8292] smc: adding ib device syz2 with port count 1
[  356.054092][ T8292] smc:    ib device syz2 port 1 has pnetid 
[  356.857609][ T8305] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci2/hci2:200/input8
[  357.934870][ T8316] netlink: 16 bytes leftover after parsing attributes in process `syz.2.991'.
[  359.933439][ T8341] netlink: 'syz.4.996': attribute type 16 has an invalid length.
[  359.941640][ T8341] netlink: 'syz.4.996': attribute type 17 has an invalid length.
[  359.958169][ T8341] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  359.965607][ T8341] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  359.988227][ T8341] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  360.911182][ T8356] netlink: 40 bytes leftover after parsing attributes in process `syz.4.997'.
[  362.808140][ T8376] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1006'.
[  363.001137][ T8376] device bridge_slave_1 left promiscuous mode
[  363.016006][ T8376] bridge0: port 2(bridge_slave_1) entered disabled state
[  363.824595][ T8376] device bridge_slave_0 left promiscuous mode
[  363.831127][ T8376] bridge0: port 1(bridge_slave_0) entered disabled state
[  365.164724][ T8398] netlink: 'syz.0.1012': attribute type 10 has an invalid length.
[  365.268892][ T8398] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  365.364276][ T8400] netlink: 108 bytes leftover after parsing attributes in process `syz.4.1013'.
[  365.859039][ T8405] loop7: detected capacity change from 0 to 2048
[  366.488305][ T8405] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  369.282941][ T7814] EXT4-fs (loop7): unmounting filesystem.
[  369.508507][ T8451] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1025'.
[  369.581960][ T8451] device team0 entered promiscuous mode
[  369.600516][ T8451] device team_slave_0 entered promiscuous mode
[  369.627300][ T8451] device team_slave_1 entered promiscuous mode
[  369.636920][ T8451] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  369.670496][ T8451] device team0 left promiscuous mode
[  369.688674][ T8451] device team_slave_0 left promiscuous mode
[  369.716865][ T8451] device team_slave_1 left promiscuous mode
[  370.722655][   T26] audit: type=1326 audit(1747843194.753:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.6.1029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f738e969 code=0x7fc00000
[  371.243913][   T26] audit: type=1326 audit(1747843195.313:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.6.1029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f738e969 code=0x7fc00000
[  371.295892][ T8481] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  371.396768][   T26] audit: type=1326 audit(1747843195.333:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.6.1029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fd7f738e969 code=0x7fc00000
[  371.452933][ T8481] infiniband srz1: RDMA CMA: cma_listen_on_dev, error -98
[  371.589909][   T26] audit: type=1326 audit(1747843195.333:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.6.1029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f738e969 code=0x7fc00000
[  371.722277][   T26] audit: type=1326 audit(1747843195.333:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.6.1029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f738e969 code=0x7fc00000
[  371.752704][   T26] audit: type=1326 audit(1747843195.333:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.6.1029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f738e969 code=0x7fc00000
[  371.810992][   T26] audit: type=1326 audit(1747843195.333:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.6.1029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f738e969 code=0x7fc00000
[  371.855826][ T8485] netlink: 44 bytes leftover after parsing attributes in process `syz.6.1034'.
[  371.910237][   T26] audit: type=1326 audit(1747843195.333:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.6.1029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f738e969 code=0x7fc00000
[  371.983770][ T8485] bridge0: port 2(bridge_slave_1) entered disabled state
[  371.991126][   T26] audit: type=1326 audit(1747843195.333:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.6.1029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f738e969 code=0x7fc00000
[  371.993285][ T8485] bridge0: port 1(bridge_slave_0) entered disabled state
[  372.028779][   T26] audit: type=1326 audit(1747843195.333:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.6.1029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f738e969 code=0x7fc00000
[  372.166674][ T8496] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  372.212927][ T8496] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  372.249755][ T8495] netlink: 'syz.7.1037': attribute type 1 has an invalid length.
[  372.491207][ T8499] device veth1_to_team entered promiscuous mode
[  373.251320][ T8505] loop6: detected capacity change from 0 to 1024
[  373.345379][ T8505] EXT4-fs: Ignoring removed nobh option
[  373.382924][ T8505] EXT4-fs: Ignoring removed bh option
[  373.421859][ T8505] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  373.522903][ T8505] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  373.666493][ T8519] capability: warning: `syz.6.1038' uses deprecated v2 capabilities in a way that may be insecure
[  373.941176][ T5633] EXT4-fs (loop6): unmounting filesystem.
[  374.083644][ T8527] sch_tbf: burst 4398 is lower than device lo mtu (39799) !
[  374.359524][ T8534] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1055'.
[  374.399023][ T8532] loop6: detected capacity change from 0 to 2048
[  374.602353][ T8534] device vxcan3 entered promiscuous mode
[  374.637782][ T8532] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  375.986483][ T5633] EXT4-fs (loop6): unmounting filesystem.
[  377.091512][ T8565] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1052'.
[  377.190782][ T8565] device bridge_slave_1 left promiscuous mode
[  377.199049][ T8565] bridge0: port 2(bridge_slave_1) entered disabled state
[  377.332880][ T8565] device bridge_slave_0 left promiscuous mode
[  377.349286][ T8565] bridge0: port 1(bridge_slave_0) entered disabled state
[  377.712337][ T8572] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  377.745436][ T8572] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  378.130134][ T8582] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1056'.
[  378.188286][ T8582] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1056'.
[  378.674994][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  378.683987][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  385.772832][   T26] kauditd_printk_skb: 45 callbacks suppressed
[  385.772852][   T26] audit: type=1326 audit(1747843209.753:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8627 comm="syz.2.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  386.382113][   T26] audit: type=1326 audit(1747843209.753:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8627 comm="syz.2.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  386.408485][   T26] audit: type=1326 audit(1747843209.763:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8627 comm="syz.2.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  386.483744][   T26] audit: type=1326 audit(1747843209.763:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8627 comm="syz.2.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=263 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  386.562675][   T26] audit: type=1326 audit(1747843209.763:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8627 comm="syz.2.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  386.689288][   T26] audit: type=1326 audit(1747843209.763:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8627 comm="syz.2.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  386.791577][   T26] audit: type=1326 audit(1747843209.763:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8627 comm="syz.2.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  386.840066][   T26] audit: type=1326 audit(1747843209.773:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8627 comm="syz.2.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  387.002675][   T26] audit: type=1326 audit(1747843210.523:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8627 comm="syz.2.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  387.166025][   T26] audit: type=1326 audit(1747843210.523:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8627 comm="syz.2.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  390.984209][ T8692] overlayfs: failed to clone upperpath
[  391.216396][ T8693] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  391.264927][ T8693] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  392.021371][ T8707] syz.2.1082 sent an empty control message without MSG_MORE.
[  393.135809][ T4265] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  393.147346][ T4265] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  393.157057][ T4265] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  393.165244][ T4265] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  393.174416][ T4265] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  393.181722][ T4265] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  394.564864][ T8727] Invalid option length (1048180) for dns_resolver key
[  395.312897][ T4265] Bluetooth: hci5: command 0x0409 tx timeout
[  395.504514][ T8731] loop6: detected capacity change from 0 to 128
[  395.526347][ T6654] infiniband syz1: set down
[  395.617315][ T8731] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  395.712402][ T5790] infiniband syz1: ib_query_port failed (-19)
[  395.983145][ T8731] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  396.635858][ T7141] smc: removing ib device syz1
[  397.408486][ T4265] Bluetooth: hci5: command 0x041b tx timeout
[  397.823673][ T8749] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1092'.
[  397.922325][ T8749] bridge0: port 2(bridge_slave_1) entered disabled state
[  397.929692][ T8749] bridge0: port 1(bridge_slave_0) entered disabled state
[  400.425809][ T4265] Bluetooth: hci5: command 0x040f tx timeout
[  401.498962][ T8783] 9pnet: Unknown protocol version 9p20\++}
[  402.164632][ T8715] chnl_net:caif_netlink_parms(): no params data found
[  402.512976][ T4265] Bluetooth: hci5: command 0x0419 tx timeout
[  402.683721][ T8715] bridge0: port 1(bridge_slave_0) entered blocking state
[  402.721666][ T8715] bridge0: port 1(bridge_slave_0) entered disabled state
[  402.783736][ T8715] device bridge_slave_0 entered promiscuous mode
[  402.896018][ T8715] bridge0: port 2(bridge_slave_1) entered blocking state
[  402.923091][ T8715] bridge0: port 2(bridge_slave_1) entered disabled state
[  402.949390][ T8715] device bridge_slave_1 entered promiscuous mode
[  403.617856][ T8818] tipc: Started in network mode
[  403.629760][ T8818] tipc: Node identity 6, cluster identity 4711
[  403.854169][ T8818] tipc: Node number set to 6
[  404.114558][ T8715] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  404.177280][ T8715] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  404.443876][ T8831] overlayfs: failed to resolve './file1': -2
[  404.467441][ T8833] loop6: detected capacity change from 0 to 128
[  404.512398][ T8715] team0: Port device team_slave_0 added
[  404.535830][ T8715] team0: Port device team_slave_1 added
[  404.600726][ T8833] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  404.619234][ T8833] ext4 filesystem being mounted at /133/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  404.702837][ T8833] syz.6.1108 (pid 8833) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  404.737174][ T8715] batman_adv: batadv0: Adding interface: batadv_slave_0
[  404.763228][ T8715] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  404.816055][ T8833] fscrypt: key with description 'fscrypt:e8dab99234bb312e' is too short (got 26 bytes, need 32+ bytes)
[  404.907637][ T8715] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  404.909824][ T8833] fscrypt: key with description 'fscrypt:e8dab99234bb312e' is too short (got 26 bytes, need 32+ bytes)
[  404.990816][ T8715] batman_adv: batadv0: Adding interface: batadv_slave_1
[  405.008988][ T8715] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  405.045422][ T8715] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  405.433471][ T5633] EXT4-fs (loop6): unmounting filesystem.
[  405.769814][ T8715] device hsr_slave_0 entered promiscuous mode
[  405.914225][ T8715] device hsr_slave_1 entered promiscuous mode
[  405.992632][ T8715] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  406.003551][ T8715] Cannot create hsr debugfs directory
[  406.205470][ T8856] loop6: detected capacity change from 0 to 512
[  406.259310][ T8856] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  406.319693][ T8856] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002]
[  406.438546][ T8856] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2195: inode #15: comm syz.6.1114: corrupted in-inode xattr
[  406.481009][ T8856] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.1114: couldn't read orphan inode 15 (err -117)
[  406.522746][ T8856] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  407.547784][ T5633] EXT4-fs (loop6): unmounting filesystem.
[  407.779767][ T8715] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  407.842058][ T8715] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  407.917745][ T8715] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  407.955799][ T8715] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  408.273665][ T8715] 8021q: adding VLAN 0 to HW filter on device bond0
[  408.298633][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  408.301047][ T8887] overlayfs: failed to resolve './file1': -2
[  408.307713][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  408.353977][ T8715] 8021q: adding VLAN 0 to HW filter on device team0
[  408.379964][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  408.435059][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  408.491830][ T4319] bridge0: port 1(bridge_slave_0) entered blocking state
[  408.499017][ T4319] bridge0: port 1(bridge_slave_0) entered forwarding state
[  408.568463][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  408.613736][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  408.673436][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  408.692346][ T4319] bridge0: port 2(bridge_slave_1) entered blocking state
[  408.699540][ T4319] bridge0: port 2(bridge_slave_1) entered forwarding state
[  408.767518][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  408.792370][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  410.928989][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  410.947923][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  410.948849][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  410.952322][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  410.963419][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  410.964097][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  411.014808][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  411.015795][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  411.016552][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  411.018897][ T8715] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  412.101590][ T8935] loop7: detected capacity change from 0 to 512
[  412.120192][ T8935] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  412.120576][ T8935] EXT4-fs (loop7): invalid journal inode
[  412.120635][ T8935] EXT4-fs (loop7): can't get journal size
[  412.154932][ T8935] EXT4-fs (loop7): 1 truncate cleaned up
[  412.154964][ T8935] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  412.265197][ T8939] EXT4-fs error (device loop7): ext4_ind_map_blocks:604: inode #19: comm syz.7.1133: Can't allocate blocks for non-extent mapped inodes with bigalloc
[  412.396186][ T8935] EXT4-fs error (device loop7): ext4_ind_map_blocks:604: inode #18: comm syz.7.1133: Can't allocate blocks for non-extent mapped inodes with bigalloc
[  412.479521][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  412.493288][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  412.519245][ T8715] 8021q: adding VLAN 0 to HW filter on device batadv0
[  412.538176][ T8934] EXT4-fs error (device loop7): ext4_ind_map_blocks:604: inode #18: comm syz.7.1133: Can't allocate blocks for non-extent mapped inodes with bigalloc
[  412.613070][ T8934] EXT4-fs error (device loop7): ext4_ind_map_blocks:604: inode #18: comm syz.7.1133: Can't allocate blocks for non-extent mapped inodes with bigalloc
[  412.663826][ T8934] EXT4-fs error (device loop7): ext4_ind_map_blocks:604: inode #18: comm syz.7.1133: Can't allocate blocks for non-extent mapped inodes with bigalloc
[  412.754707][ T8934] EXT4-fs error (device loop7): ext4_ind_map_blocks:604: inode #18: comm syz.7.1133: Can't allocate blocks for non-extent mapped inodes with bigalloc
[  412.816058][ T8934] EXT4-fs error (device loop7): ext4_ind_map_blocks:604: inode #18: comm syz.7.1133: Can't allocate blocks for non-extent mapped inodes with bigalloc
[  412.836823][ T8934] EXT4-fs error (device loop7): ext4_ind_map_blocks:604: inode #18: comm syz.7.1133: Can't allocate blocks for non-extent mapped inodes with bigalloc
[  412.888586][ T8934] EXT4-fs error (device loop7): ext4_ind_map_blocks:604: inode #18: comm syz.7.1133: Can't allocate blocks for non-extent mapped inodes with bigalloc
[  412.942117][ T8934] EXT4-fs error (device loop7): ext4_ind_map_blocks:604: inode #18: comm syz.7.1133: Can't allocate blocks for non-extent mapped inodes with bigalloc
[  412.975015][ T8960] loop6: detected capacity change from 0 to 512
[  413.035640][ T8960] ext4: Unknown parameter 'noacl'
[  413.496307][ T8971] loop6: detected capacity change from 0 to 128
[  413.775739][   T26] kauditd_printk_skb: 5 callbacks suppressed
[  413.790095][   T26] audit: type=1800 audit(1747843493.837:189): pid=8971 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1149" name="file2" dev="loop6" ino=1048609 res=0 errno=0
[  414.051200][ T7814] EXT4-fs (loop7): unmounting filesystem.
[  416.329881][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  416.363434][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  416.398637][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  416.423875][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  416.457947][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  416.476710][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  416.492979][ T8715] device veth0_vlan entered promiscuous mode
[  416.526154][ T8715] device veth1_vlan entered promiscuous mode
[  416.615316][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  416.639574][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  416.663942][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  416.933657][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  418.669056][ T8715] device veth0_macvtap entered promiscuous mode
[  418.722313][ T8715] device veth1_macvtap entered promiscuous mode
[  418.817591][ T8715] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  418.873269][ T8715] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  418.968888][ T8715] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  419.251208][ T8715] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  419.489479][ T8715] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  419.571733][ T8715] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  419.581730][ T8715] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  419.592294][ T8715] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  419.634558][ T8715] batman_adv: batadv0: Interface activated: batadv_slave_0
[  419.667394][ T8715] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  419.721107][ T8715] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  419.731060][ T8715] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  419.741658][ T8715] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  419.751558][ T8715] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  419.762425][ T8715] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  419.772404][ T8715] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  419.782932][ T8715] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  419.792857][ T8715] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  419.819875][ T8715] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  419.831315][ T8715] batman_adv: batadv0: Interface activated: batadv_slave_1
[  419.847201][ T7147] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  419.878870][ T7147] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  419.903930][ T7147] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  419.923692][ T7147] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  419.940127][ T8715] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  419.966260][ T8715] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  420.005161][ T8715] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  420.021407][ T4262] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  420.026840][ T8715] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  420.038713][ T4262] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  420.048131][ T4262] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  420.058630][ T4262] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  420.069214][ T4262] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  420.078360][ T4262] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  420.318922][ T4721] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  420.337550][ T4721] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  420.409535][ T7147] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  420.429139][ T4716] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  420.442020][ T4716] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  420.469228][ T7147] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  422.124492][ T4262] Bluetooth: hci2: command 0x0409 tx timeout
[  422.686192][ T9031] chnl_net:caif_netlink_parms(): no params data found
[  422.750487][ T9075] loop6: detected capacity change from 0 to 512
[  422.853145][ T9075] EXT4-fs error (device loop6): ext4_do_update_inode:5253: inode #3: comm syz.6.1164: corrupted inode contents
[  422.942972][ T9075] EXT4-fs error (device loop6): ext4_dirty_inode:6118: inode #3: comm syz.6.1164: mark_inode_dirty error
[  422.995015][ T9075] EXT4-fs error (device loop6): ext4_do_update_inode:5253: inode #3: comm syz.6.1164: corrupted inode contents
[  423.153481][ T9075] EXT4-fs error (device loop6): __ext4_ext_dirty:202: inode #3: comm syz.6.1164: mark_inode_dirty error
[  423.192198][ T9075] Quota error (device loop6): write_blk: dquota write failed
[  423.217691][ T9075] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  423.231529][ T9031] bridge0: port 1(bridge_slave_0) entered blocking state
[  423.260791][ T9031] bridge0: port 1(bridge_slave_0) entered disabled state
[  423.281005][ T9031] device bridge_slave_0 entered promiscuous mode
[  423.286265][ T9075] EXT4-fs error (device loop6): ext4_acquire_dquot:6802: comm syz.6.1164: Failed to acquire dquot type 0
[  423.298286][ T9031] bridge0: port 2(bridge_slave_1) entered blocking state
[  423.332894][ T9031] bridge0: port 2(bridge_slave_1) entered disabled state
[  423.365285][ T9031] device bridge_slave_1 entered promiscuous mode
[  423.404423][ T9075] EXT4-fs (loop6): 1 orphan inode deleted
[  423.433761][ T7141] Quota error (device loop6): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  423.440791][ T9075] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  423.461114][ T7141] EXT4-fs error (device loop6): ext4_release_dquot:6838: comm kworker/u4:69: Failed to release dquot type 1
[  423.509971][ T9075] ext4 filesystem being mounted at /148/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  423.574975][ T9031] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  423.656547][ T9031] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  423.979392][ T9031] team0: Port device team_slave_0 added
[  424.030544][ T9031] team0: Port device team_slave_1 added
[  424.140107][ T5633] EXT4-fs (loop6): unmounting filesystem.
[  424.158144][ T9031] batman_adv: batadv0: Adding interface: batadv_slave_0
[  424.174364][ T9031] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  424.203810][ T4262] Bluetooth: hci2: command 0x041b tx timeout
[  424.363492][ T9031] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  424.408301][ T9113] loop6: detected capacity change from 0 to 256
[  424.438106][ T9031] batman_adv: batadv0: Adding interface: batadv_slave_1
[  424.441597][ T9113] FAT-fs (loop6): Unrecognized mount option "shortname=[Ƚ›[(­ºg$win95" or missing value
[  424.465281][ T9031] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  424.511757][ T9031] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  424.719500][ T9031] device hsr_slave_0 entered promiscuous mode
[  424.769584][ T9031] device hsr_slave_1 entered promiscuous mode
[  424.789918][ T9031] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  424.808022][ T9031] Cannot create hsr debugfs directory
[  424.996842][ T9123] device vlan3 entered promiscuous mode
[  425.465317][ T9031] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  425.481255][ T9128] loop6: detected capacity change from 0 to 1024
[  425.523549][ T9031] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  425.569267][ T9031] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  425.613284][ T9031] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  425.884699][ T9031] 8021q: adding VLAN 0 to HW filter on device bond0
[  425.916007][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  425.944282][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  425.984991][ T9031] 8021q: adding VLAN 0 to HW filter on device team0
[  426.056554][ T7147] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  426.073658][ T7147] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  426.103099][ T7147] bridge0: port 1(bridge_slave_0) entered blocking state
[  426.110270][ T7147] bridge0: port 1(bridge_slave_0) entered forwarding state
[  426.177133][ T7147] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  426.195787][ T7147] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  426.241109][ T7147] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  426.249941][ T7147] bridge0: port 2(bridge_slave_1) entered blocking state
[  426.257117][ T7147] bridge0: port 2(bridge_slave_1) entered forwarding state
[  426.265846][ T7147] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  426.274007][ T4262] Bluetooth: hci2: command 0x040f tx timeout
[  426.301761][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  426.314367][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  426.622490][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  426.968819][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  427.051449][ T7141] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  427.060398][ T7141] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  427.095589][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  427.133197][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  427.167691][ T9031] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  427.321549][ T9031] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  427.330277][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  427.340123][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  427.473711][ T9148] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1179'.
[  428.364365][ T4262] Bluetooth: hci2: command 0x0419 tx timeout
[  428.632081][ T9150] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1181'.
[  428.899261][ T9161] loop8: detected capacity change from 0 to 128
[  428.947405][ T9161] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  429.522668][ T9169] EXT4-fs (loop8): re-mounted. Quota mode: none.
[  429.529530][ T9169] ext4 filesystem being remounted at /3/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  429.958500][ T8715] EXT4-fs (loop8): unmounting filesystem.
[  429.968208][ T9171] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  430.066349][ T9171] device bridge_slave_0 left promiscuous mode
[  430.091506][ T9171] bridge0: port 1(bridge_slave_0) entered disabled state
[  430.125417][ T9171] device bridge_slave_1 left promiscuous mode
[  430.132094][ T9171] bridge0: port 2(bridge_slave_1) entered disabled state
[  430.147592][ T9171] bond0: (slave bond_slave_0): Releasing backup interface
[  430.158132][   T26] audit: type=1326 audit(1747843510.227:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9174 comm="syz.2.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  430.245319][ T9171] bond0: (slave bond_slave_1): Releasing backup interface
[  430.361916][   T26] audit: type=1326 audit(1747843510.227:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9174 comm="syz.2.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  430.880770][   T26] audit: type=1326 audit(1747843510.227:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9174 comm="syz.2.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  430.945277][   T26] audit: type=1326 audit(1747843510.227:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9174 comm="syz.2.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  430.991221][   T26] audit: type=1326 audit(1747843510.227:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9174 comm="syz.2.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  431.100160][   T26] audit: type=1326 audit(1747843510.227:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9174 comm="syz.2.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  431.127166][   T26] audit: type=1326 audit(1747843510.227:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9174 comm="syz.2.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  431.141354][ T9171] team0: Port device team_slave_0 removed
[  431.186678][   T26] audit: type=1326 audit(1747843510.227:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9174 comm="syz.2.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  431.202025][ T9171] team0: Port device team_slave_1 removed
[  431.288072][   T26] audit: type=1326 audit(1747843510.227:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9174 comm="syz.2.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  431.363886][ T4262] Bluetooth: hci2: command 0x0405 tx timeout
[  431.371530][ T9171] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  431.379128][ T9171] batman_adv: batadv0: Removing interface: batadv_slave_0
[  431.388100][ T9171] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  431.396041][ T9171] batman_adv: batadv0: Removing interface: batadv_slave_1
[  431.413295][ T9171] bond0: (slave wlan1): Releasing backup interface
[  431.420837][   T26] audit: type=1326 audit(1747843510.227:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9174 comm="syz.2.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  431.451974][ T9171] bond1: (slave geneve2): Releasing active interface
[  431.459235][ T9171] device geneve2 left promiscuous mode
[  431.782321][ T9172] netlink: 'syz.6.1186': attribute type 10 has an invalid length.
[  432.220755][ T9172] 8021q: adding VLAN 0 to HW filter on device bond0
[  432.283663][ T9172] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  432.351373][ T7165] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  432.367755][ T9194] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1193'.
[  432.480717][    C1] vcan0: j1939_tp_rxtimer: 0xffff888055643c00: rx timeout, send abort
[  432.746255][ T9202] netlink: 'syz.6.1196': attribute type 1 has an invalid length.
[  432.786936][ T9205] 8021q: adding VLAN 0 to HW filter on device bond2
[  432.822974][ T9206] device veth5 entered promiscuous mode
[  432.855544][ T9206] bond2: (slave veth5): Enslaving as a backup interface with a down link
[  432.942118][ T4741] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  432.978072][ T4741] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  433.063093][ T9031] 8021q: adding VLAN 0 to HW filter on device batadv0
[  435.412434][ T9242] xt_bpf: check failed: parse error
[  435.806145][ T9249] loop6: detected capacity change from 0 to 1024
[  435.846236][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  435.873648][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  435.940743][ T9253] loop8: detected capacity change from 0 to 1024
[  435.949203][ T9253] EXT4-fs: Ignoring removed nomblk_io_submit option
[  435.967055][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  435.967187][ T9249] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  435.987602][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  436.003492][ T9249] ext4 filesystem being mounted at /157/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  436.021196][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  436.029938][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  436.041757][ T9031] device veth0_vlan entered promiscuous mode
[  436.065956][ T9253] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  436.144315][ T9031] device veth1_vlan entered promiscuous mode
[  436.169028][ T4710] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  436.204936][ T4710] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  436.254107][ T9266] EXT4-fs error (device loop8): ext4_group_add:1746: comm syz.8.1212: inode #7: comm syz.8.1212: iget: illegal inode #
[  436.279042][ T4710] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  436.303662][ T4710] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  436.328777][ T9031] device veth0_macvtap entered promiscuous mode
[  436.328969][ T9266] EXT4-fs warning (device loop8): ext4_group_add:1748: Error opening resize inode
[  436.363637][ T9031] device veth1_macvtap entered promiscuous mode
[  436.419557][ T9031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  436.439133][ T9031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  436.457530][ T9031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  436.473372][ T9031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  436.484049][ T9031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  436.494889][ T9031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  436.505053][ T9031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  436.522539][ T9031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  436.534388][ T9031] batman_adv: batadv0: Interface activated: batadv_slave_0
[  436.546159][ T8715] EXT4-fs error (device loop8): htree_dirblock_to_tree:1112: inode #2: block 16: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=2, rec_len=12, size=1024 fake=1
[  436.552798][ T7165] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  436.574580][ T4710] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  436.623843][ T7165] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  436.648543][ T4710] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  436.675779][ T7165] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  436.712628][ T7165] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  436.720924][ T4710] EXT4-fs (loop6): This should not happen!! Data will be lost
[  436.720924][ T4710] 
[  436.740393][ T4710] EXT4-fs (loop6): Total free blocks count 0
[  436.746981][ T4710] EXT4-fs (loop6): Free/Dirty block details
[  436.772674][ T4710] EXT4-fs (loop6): free_blocks=4293918720
[  436.778845][ T4710] EXT4-fs (loop6): dirty_blocks=16
[  436.790942][ T8715] EXT4-fs (loop8): unmounting filesystem.
[  436.822697][ T4710] EXT4-fs (loop6): Block reservation details
[  436.839432][ T4710] EXT4-fs (loop6): i_reserved_data_blocks=1
[  436.887139][ T5633] EXT4-fs (loop6): unmounting filesystem.
[  436.896031][ T9031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  436.927654][ T9031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  437.180059][ T9031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  437.516418][ T9031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  437.598206][ T9031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  437.624756][ T9031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  437.634819][ T9031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  437.645315][ T9031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  437.655181][ T9031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  437.665642][ T9031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  437.685469][ T9031] batman_adv: batadv0: Interface activated: batadv_slave_1
[  437.713007][ T7165] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  437.735953][ T7165] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  438.513544][ T9031] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  438.524464][ T9031] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  438.561488][ T9031] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  438.570788][ T9031] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  438.819069][ T7141] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  439.421347][ T7141] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  439.810348][ T7141] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  439.868303][ T4716] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  439.877888][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  439.884264][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  439.910138][ T4716] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  439.968727][ T7141] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  440.133537][ T7165] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  440.219171][ T9308] xt_cgroup: invalid path, errno=-2
[  440.898490][ T4724] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  440.915154][ T9309] trusted_key: encrypted_key: insufficient parameters specified
[  440.974363][ T4724] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  441.229067][ T4721] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  442.753888][ T9328] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1231'.
[  443.612940][ T4297] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  444.494502][ T4297] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  444.534888][ T4297] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  444.571159][ T4297] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  444.592016][ T4297] usb 10-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  444.612482][ T4297] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  444.668824][ T4262] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  444.680055][ T4262] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  444.688234][ T4262] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  444.706704][ T4262] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  444.716373][ T4262] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  444.725216][ T4262] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  444.790405][ T4297] usb 10-1: config 0 descriptor??
[  445.664754][ T4297] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[  445.731572][ T4297] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.9-1/input0
[  445.751587][ T9362] loop6: detected capacity change from 0 to 1024
[  445.817397][ T9362] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  446.122603][ T9362] capability: warning: `syz.6.1237' uses 32-bit capabilities (legacy support in use)
[  446.129732][ T5790] usb 10-1: USB disconnect, device number 2
[  446.832739][ T4265] Bluetooth: hci3: command 0x0409 tx timeout
[  446.893009][ T9366] fido_id[9366]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.9/usb10/10-1/report_descriptor': No such file or directory
[  447.081176][ T9378] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  447.181645][ T9378] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  447.898887][ T9378] device bridge_slave_0 left promiscuous mode
[  447.952465][ T9378] bridge0: port 1(bridge_slave_0) entered disabled state
[  448.425639][ T9378] device bridge_slave_1 left promiscuous mode
[  448.431929][ T9378] bridge0: port 2(bridge_slave_1) entered disabled state
[  448.478133][ T9378] bond0: (slave bond_slave_0): Releasing backup interface
[  448.524134][ T9378] bond0: (slave bond_slave_1): Releasing backup interface
[  448.667079][ T9394] loop6: detected capacity change from 0 to 512
[  448.671000][ T9378] team0: Port device team_slave_0 removed
[  449.261152][ T4259] Bluetooth: hci3: command 0x041b tx timeout
[  449.440047][ T9378] team0: Port device team_slave_1 removed
[  449.905781][ T9378] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  449.921334][ T9394] EXT4-fs (loop6): orphan cleanup on readonly fs
[  449.932820][ T9378] batman_adv: batadv0: Removing interface: batadv_slave_0
[  449.959908][ T9394] EXT4-fs (loop6): Cannot turn on journaled quota: type 0: error -2
[  450.075113][ T9378] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  450.089202][ T9378] batman_adv: batadv0: Removing interface: batadv_slave_1
[  450.110622][ T9394] EXT4-fs (loop6): 1 truncate cleaned up
[  450.169010][ T9394] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  450.243160][ T9394] EXT4-fs (loop6): re-mounted. Quota mode: writeback.
[  450.258692][ T9378] bridge1: port 1(veth3) entered disabled state
[  451.007913][ T9378] bond1: (slave vcan1): Releasing backup interface
[  451.021208][ T5633] EXT4-fs (loop6): unmounting filesystem.
[  451.101551][ T9378] device vxlan0 left promiscuous mode
[  451.149955][ T9378] bridge0: port 3(vxlan0) entered disabled state
[  451.312687][ T4259] Bluetooth: hci3: command 0x040f tx timeout
[  451.511062][ T4297] bond0 speed is unknown, defaulting to 1000
[  451.582913][   T26] kauditd_printk_skb: 56 callbacks suppressed
[  451.582929][   T26] audit: type=1326 audit(1747843531.647:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9413 comm="syz.4.1252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45fab8e969 code=0x7fc00000
[  451.623281][   T26] audit: type=1326 audit(1747843531.687:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9413 comm="syz.4.1252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f45fab8e969 code=0x7fc00000
[  451.979227][ T9422] netlink: 'syz.9.1254': attribute type 1 has an invalid length.
[  452.009831][ T9426] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  452.242879][   T26] audit: type=1326 audit(1747843532.297:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9413 comm="syz.4.1252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45fab8e969 code=0x7fc00000
[  452.797204][ T9427] device veth3 entered promiscuous mode
[  452.951903][ T9348] chnl_net:caif_netlink_parms(): no params data found
[  452.988318][ T9435] loop6: detected capacity change from 0 to 8192
[  453.152030][ T9435] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  453.243506][ T9435] REISERFS (device loop6): found reiserfs format "3.6" with non-standard journal
[  453.277729][ T9435] REISERFS (device loop6): using ordered data mode
[  453.287987][ T9435] reiserfs: using flush barriers
[  453.354197][ T9435] REISERFS (device loop6): journal params: device loop6, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  453.402589][ T4259] Bluetooth: hci3: command 0x0419 tx timeout
[  453.533601][ T9435] REISERFS (device loop6): checking transaction log (loop6)
[  455.079440][ T9348] bridge0: port 1(bridge_slave_0) entered blocking state
[  455.114424][ T9348] bridge0: port 1(bridge_slave_0) entered disabled state
[  455.138254][ T9348] device bridge_slave_0 entered promiscuous mode
[  455.183960][ T9348] bridge0: port 2(bridge_slave_1) entered blocking state
[  455.194636][ T9435] REISERFS (device loop6): Using tea hash to sort names
[  455.230528][ T9348] bridge0: port 2(bridge_slave_1) entered disabled state
[  455.238118][ T9435] REISERFS (device loop6): Created .reiserfs_priv - reserved for xattr storage.
[  455.467064][ T9348] device bridge_slave_1 entered promiscuous mode
[  455.501406][ T7141] device hsr_slave_0 left promiscuous mode
[  455.880555][ T7141] device hsr_slave_1 left promiscuous mode
[  456.125712][ T7141] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  456.149518][ T7141] batman_adv: batadv0: Removing interface: batadv_slave_0
[  456.269340][ T7141] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  456.284581][ T7141] batman_adv: batadv0: Removing interface: batadv_slave_1
[  456.310003][ T7141] device bridge_slave_1 left promiscuous mode
[  456.353054][ T7141] bridge0: port 2(bridge_slave_1) entered disabled state
[  456.402586][ T7141] device bridge_slave_0 left promiscuous mode
[  456.408857][ T7141] bridge0: port 1(bridge_slave_0) entered disabled state
[  456.918911][ T7141] device veth1_macvtap left promiscuous mode
[  456.974974][ T7141] device veth0_macvtap left promiscuous mode
[  457.058723][ T7141] device veth1_vlan left promiscuous mode
[  457.422702][ T7141] device veth0_vlan left promiscuous mode
[  457.456309][ T9485] netlink: 'syz.2.1269': attribute type 11 has an invalid length.
[  457.464317][ T9485] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.1269'.
[  457.480676][ T9484] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  458.527031][   T26] audit: type=1326 audit(1747843538.597:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.6.1277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f738e969 code=0x7fc00000
[  458.570085][   T26] audit: type=1326 audit(1747843538.617:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.6.1277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd7f738e969 code=0x7fc00000
[  459.208954][   T26] audit: type=1326 audit(1747843539.277:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.6.1277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f738e969 code=0x7fc00000
[  459.681527][ T7141] team0 (unregistering): Port device team_slave_1 removed
[  459.786499][ T7141] team0 (unregistering): Port device team_slave_0 removed
[  459.887057][ T7141] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  460.553070][ T7141] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  461.949726][ T7141] bond0 (unregistering): Released all slaves
[  462.079119][ T9488] device batadv_slave_1 entered promiscuous mode
[  462.086431][ T9491] device veth1_virt_wifi entered promiscuous mode
[  462.122310][ T9518] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1279'.
[  462.228378][ T9539] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  462.308121][ T9539] bond0: (slave wlan1): Releasing backup interface
[  462.364071][ T9539] bond2: (slave veth5): Releasing backup interface
[  462.445514][ T9348] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  462.480616][ T9348] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  462.532471][ T9491] device veth1_virt_wifi left promiscuous mode
[  462.553908][ T9491] device batadv_slave_1 left promiscuous mode
[  463.375221][ T9348] team0: Port device team_slave_0 added
[  463.402146][ T9348] team0: Port device team_slave_1 added
[  463.519999][ T9348] batman_adv: batadv0: Adding interface: batadv_slave_0
[  463.559041][ T9348] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  463.667981][ T9348] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  463.775232][ T9348] batman_adv: batadv0: Adding interface: batadv_slave_1
[  463.782227][ T9348] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  463.808905][ T9348] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  463.865956][   T26] audit: type=1326 audit(1747843543.937:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9568 comm="syz.2.1293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  464.946725][   T26] audit: type=1326 audit(1747843543.937:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9568 comm="syz.2.1293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  465.784154][ T9577] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  465.807806][ T9577] device bond1 left promiscuous mode
[  465.814754][ T9577] device veth5 left promiscuous mode
[  466.968991][ T9348] device hsr_slave_0 entered promiscuous mode
[  467.035085][   T26] audit: type=1326 audit(1747843544.657:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9568 comm="syz.2.1293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  467.083086][ T9348] device hsr_slave_1 entered promiscuous mode
[  467.104091][ T9348] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  467.118995][ T9348] Cannot create hsr debugfs directory
[  467.154081][   T26] audit: type=1326 audit(1747843544.657:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9568 comm="syz.2.1293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  467.243100][   T26] audit: type=1326 audit(1747843544.657:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9568 comm="syz.2.1293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  467.272592][   T26] audit: type=1326 audit(1747843544.657:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9568 comm="syz.2.1293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  467.275476][ T9584] IPv6: sit2: Disabled Multicast RS
[  467.324703][ T9590] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  467.342576][   T26] audit: type=1326 audit(1747843544.657:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9568 comm="syz.2.1293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  467.366861][ T9590] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  467.421655][   T26] audit: type=1326 audit(1747843544.657:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9568 comm="syz.2.1293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  467.444767][ T9590] bond1: (slave dummy0): Releasing active interface
[  467.513336][   T26] audit: type=1326 audit(1747843544.837:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9568 comm="syz.2.1293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  467.598408][ T9590] bond0: (slave bond_slave_0): Releasing backup interface
[  467.602870][   T26] audit: type=1326 audit(1747843544.837:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9568 comm="syz.2.1293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1c78e969 code=0x7ffc0000
[  467.699488][ T9590] bond0: (slave bond_slave_1): Releasing backup interface
[  468.753703][ T9590] team0: Port device team_slave_0 removed
[  468.869251][ T9590] team0: Port device team_slave_1 removed
[  469.803543][ T9590] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  469.811199][ T9590] batman_adv: batadv0: Removing interface: batadv_slave_0
[  469.889696][ T9590] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  469.906867][ T9620] loop9: detected capacity change from 0 to 512
[  469.922714][ T9590] batman_adv: batadv0: Removing interface: batadv_slave_1
[  469.934088][ T9620] EXT4-fs: Ignoring removed nobh option
[  470.185381][ T9590] bond2: (slave gretap1): Releasing active interface
[  470.436560][ T9620] EXT4-fs error (device loop9): ext4_free_branches:1030: inode #11: comm syz.9.1305: invalid indirect mapped block 256 (level 2)
[  470.604865][ T9620] EXT4-fs (loop9): 2 truncates cleaned up
[  470.610750][ T9620] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  470.858116][ T9609] netlink: 'syz.4.1303': attribute type 1 has an invalid length.
[  470.914109][ T9613] device ip6erspan0 entered promiscuous mode
[  473.956735][   T26] kauditd_printk_skb: 25 callbacks suppressed
[  473.956751][   T26] audit: type=1800 audit(1747843554.027:297): pid=9627 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.9.1305" name="file1" dev="loop9" ino=15 res=0 errno=0
[  474.602964][ T9625] EXT4-fs error (device loop9): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[  474.983384][ T4265] Bluetooth: hci4: unexpected event 0x03 length: 17 > 11
[  476.709942][ T9348] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  476.742176][ T9031] EXT4-fs (loop9): unmounting filesystem.
[  476.763358][ T9348] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  476.855701][ T9348] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  476.886159][ T9348] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  476.992726][ T4265] Bluetooth: hci4: command 0x0409 tx timeout
[  477.060396][ T9348] 8021q: adding VLAN 0 to HW filter on device bond0
[  477.085147][ T7139] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  477.103949][ T7139] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  477.167858][ T9348] 8021q: adding VLAN 0 to HW filter on device team0
[  478.738667][ T9706] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1326'.
[  479.072690][ T4265] Bluetooth: hci4: command 0x040f tx timeout
[  479.937628][ T7145] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  479.971717][ T7145] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  480.023052][ T7145] bridge0: port 1(bridge_slave_0) entered blocking state
[  480.030220][ T7145] bridge0: port 1(bridge_slave_0) entered forwarding state
[  480.058732][ T7145] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  480.089291][ T7145] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  480.116610][ T7145] bridge0: port 2(bridge_slave_1) entered blocking state
[  480.123807][ T7145] bridge0: port 2(bridge_slave_1) entered forwarding state
[  480.144171][ T7145] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  480.166297][ T7145] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  480.203149][ T7145] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  480.223958][ T7145] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  480.249460][ T7145] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  480.265944][ T7145] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  480.507338][ T6925] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  480.521485][ T6925] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  480.569673][ T9348] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  480.588466][ T9348] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  480.609734][ T6925] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  480.624887][ T6925] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  480.675578][ T6925] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  480.712348][ T6925] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  480.740735][ T6925] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  481.731858][ T9747] device veth1_to_team entered promiscuous mode
[  481.857256][ T9747] device veth1_to_team left promiscuous mode
[  482.930666][ T7139] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  482.949845][ T7139] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  483.018932][ T9348] 8021q: adding VLAN 0 to HW filter on device batadv0
[  483.054802][ T9774] overlayfs: failed to clone upperpath
[  483.074881][ T7139] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  483.111504][ T7139] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  483.211066][ T4716] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  483.234774][ T4716] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  483.270794][ T4716] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  483.304607][ T4716] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  483.362116][ T9348] device veth0_vlan entered promiscuous mode
[  484.106849][ T9348] device veth1_vlan entered promiscuous mode
[  484.264339][ T9348] device veth0_macvtap entered promiscuous mode
[  484.884476][   T62] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  484.895334][   T62] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  484.945297][   T62] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  484.987164][ T9348] device veth1_macvtap entered promiscuous mode
[  485.076582][ T9795] bond0 speed is unknown, defaulting to 1000
[  485.121741][ T7139] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  485.159754][ T9348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  485.262545][ T9348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  485.309009][ T9348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  485.349355][ T9348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  485.448693][ T9348] batman_adv: batadv0: Interface activated: batadv_slave_0
[  485.474459][ T7147] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  485.486052][ T7147] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  486.486933][   T26] audit: type=1326 audit(1747843566.537:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9807 comm="syz.6.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f738e969 code=0x7fc00000
[  486.534959][ T9348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  486.561779][ T9348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.573159][    T7] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  486.587551][   T26] audit: type=1326 audit(1747843566.537:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9807 comm="syz.6.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd7f738e969 code=0x7fc00000
[  486.613249][ T9348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  486.657593][ T9348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.692609][ T9348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  486.709790][   T26] audit: type=1326 audit(1747843566.537:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9807 comm="syz.6.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f738e969 code=0x7fc00000
[  486.742716][ T9348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  486.764711][ T9348] batman_adv: batadv0: Interface activated: batadv_slave_1
[  486.776656][   T26] audit: type=1326 audit(1747843566.537:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9807 comm="syz.6.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f738e969 code=0x7fc00000
[  486.889345][    T7] usb 10-1: Using ep0 maxpacket: 32
[  486.894929][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  486.921276][    T7] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  486.941622][    T7] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  486.951889][    T7] usb 10-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.00
[  486.961865][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  486.991650][    T7] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  487.002801][   T26] audit: type=1326 audit(1747843566.537:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9807 comm="syz.6.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f738e969 code=0x7fc00000
[  487.011400][ T9348] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  487.047363][    T7] usb 10-1: config 0 descriptor??
[  487.063240][   T26] audit: type=1326 audit(1747843566.537:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9807 comm="syz.6.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f738e969 code=0x7fc00000
[  487.085893][   T26] audit: type=1326 audit(1747843566.537:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9807 comm="syz.6.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f738e969 code=0x7fc00000
[  487.114503][   T26] audit: type=1326 audit(1747843566.537:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9807 comm="syz.6.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f738e969 code=0x7fc00000
[  487.143507][ T9348] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  487.164849][ T9348] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  487.179917][ T9348] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  487.191818][   T26] audit: type=1326 audit(1747843566.537:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9807 comm="syz.6.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f738e969 code=0x7fc00000
[  487.227110][   T26] audit: type=1326 audit(1747843566.537:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9807 comm="syz.6.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7f738e969 code=0x7fc00000
[  487.357050][ T9799] bond0 speed is unknown, defaulting to 1000
[  487.483143][    T7] koneplus 0003:1E7D:2D51.0004: unknown main item tag 0x0
[  487.513628][   T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  487.528003][    T7] koneplus 0003:1E7D:2D51.0004: unknown main item tag 0x0
[  487.532418][   T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  487.570360][    T7] koneplus 0003:1E7D:2D51.0004: unknown main item tag 0x0
[  487.583083][    T7] koneplus 0003:1E7D:2D51.0004: unknown main item tag 0x0
[  487.596136][    T7] koneplus 0003:1E7D:2D51.0004: unknown main item tag 0x0
[  487.612149][    T7] koneplus 0003:1E7D:2D51.0004: hidraw0: USB HID v0.00 Device [HID 1e7d:2d51] on usb-dummy_hcd.9-1/input0
[  487.630224][ T7147] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  487.695703][    T7] koneplus 0003:1E7D:2D51.0004: couldn't init struct koneplus_device
[  487.730117][    T7] koneplus 0003:1E7D:2D51.0004: couldn't install mouse
[  487.750810][    T7] koneplus: probe of 0003:1E7D:2D51.0004 failed with error -5
[  487.753867][ T6925] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  487.787533][ T6925] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  487.822625][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  488.208722][ T9832] loop1: detected capacity change from 0 to 512
[  488.251670][ T9832] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  488.298389][ T4300] usb 10-1: USB disconnect, device number 3
[  488.363514][ T9832] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  488.402838][ T9832] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  488.516039][ T9832] EXT4-fs (loop1): re-mounted. Quota mode: writeback.
[  488.981506][ T9348] EXT4-fs (loop1): unmounting filesystem.
[  489.079651][ T9854] netlink: 'syz.6.1356': attribute type 5 has an invalid length.
[  498.939642][ T9932] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1377'.
[  501.200170][ T9940] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  501.318056][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  501.324776][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  504.587760][ T9983] loop9: detected capacity change from 0 to 256
[  504.623637][ T9983] exfat: Deprecated parameter 'namecase'
[  504.629374][ T9983] exfat: Unknown parameter 'eprors'
[  504.769785][ T9986] device syz_tun entered promiscuous mode
[  504.776102][ T9986] device vlan3 entered promiscuous mode
[  504.826786][ T9983] xt_HMARK: proto mask must be zero with L3 mode
[  509.200223][T10017] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  509.309408][T10024] loop9: detected capacity change from 0 to 128
[  509.317761][T10017] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  509.368664][T10024] FAT-fs (loop9): bogus number of FAT structure
[  509.390140][T10024] FAT-fs (loop9): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  509.411044][T10024] FAT-fs (loop9): Can't find a valid FAT filesystem
[  509.420841][T10022] loop1: detected capacity change from 0 to 2048
[  510.390930][T10022]  loop1: p1 < > p3
[  510.464829][T10022] loop1: p3 size 134217728 extends beyond EOD, truncated
[  510.662889][ T4297] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  510.992871][ T4297] usb 10-1: Using ep0 maxpacket: 16
[  511.041435][ T4297] usb 10-1: config 1 has an invalid descriptor of length 135, skipping remainder of the config
[  511.142643][ T4297] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 3
[  511.222364][ T4297] usb 10-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  511.969408][T10036] udevd[10036]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[  511.979570][ T4297] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  512.000667][T10034] udevd[10034]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  512.041723][ T4297] usb 10-1: Product: syz
[  512.078443][T10034] udevd[10034]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  512.144548][ T4297] usb 10-1: Manufacturer: syz
[  512.149291][ T4297] usb 10-1: SerialNumber: syz
[  512.354349][T10036] udevd[10036]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[  512.411823][ T4297] usb 10-1: 0:2 : does not exist
[  512.464724][ T4297] usb 10-1: 5:0: failed to get current value for ch 0 (-22)
[  512.571486][ T4297] usb 10-1: USB disconnect, device number 4
[  513.693613][T10034] udevd[10034]: error opening ATTR{/sys/devices/platform/dummy_hcd.9/usb10/10-1/10-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  514.353340][T10073] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1409'.
[  514.928806][T10083] netlink: 'syz.1.1411': attribute type 1 has an invalid length.
[  514.969825][T10083] bond1 (unregistering): Released all slaves
[  515.871079][T10088] device veth0_to_batadv entered promiscuous mode
[  515.879061][T10088] device macsec1 entered promiscuous mode
[  520.603516][T10133] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1426'.
[  520.721369][T10112] bond0 speed is unknown, defaulting to 1000
[  523.309614][T10168] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1434'.
[  523.715607][ T4294] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  523.920731][ T4294] usb 10-1: Using ep0 maxpacket: 32
[  523.934686][ T4294] usb 10-1: config 0 has an invalid interface number: 2 but max is 0
[  523.974129][ T4294] usb 10-1: config 0 has no interface number 0
[  524.002277][ T4294] usb 10-1: config 0 interface 2 altsetting 4 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  524.051056][ T4294] usb 10-1: config 0 interface 2 has no altsetting 0
[  524.090595][ T4294] usb 10-1: New USB device found, idVendor=5543, idProduct=0781, bcdDevice= 0.00
[  524.139923][ T4294] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  524.182728][ T4294] usb 10-1: config 0 descriptor??
[  524.626922][ T4294] uclogic 0003:5543:0781.0005: unknown main item tag 0x0
[  524.657382][ T4294] uclogic 0003:5543:0781.0005: unknown main item tag 0x0
[  524.691315][ T4294] uclogic 0003:5543:0781.0005: unknown main item tag 0x0
[  524.709899][ T4294] uclogic 0003:5543:0781.0005: item fetching failed at offset 6/7
[  524.746847][ T4294] uclogic 0003:5543:0781.0005: parse failed
[  524.776839][ T4294] uclogic: probe of 0003:5543:0781.0005 failed with error -22
[  524.903950][ T4297] usb 10-1: USB disconnect, device number 5
[  527.300047][    C0] Unknown status report in ack skb
[  527.910965][T10252] tipc: Failed to remove unknown binding: 66,1,1/6:1208893616/1208893618
[  528.032526][T10256] RDS: rds_bind could not find a transport for fec0:ffff::1, load rds_tcp or rds_rdma?
[  528.562653][T10252] tipc: Failed to remove unknown binding: 66,1,1/6:1208893616/1208893618
[  531.906303][T10280] loop1: detected capacity change from 0 to 4096
[  531.915205][T10280] __ntfs_warning: 52 callbacks suppressed
[  531.915222][T10280] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  531.941487][T10280] ntfs: (device loop1): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1.
[  532.549798][T10280] ntfs: volume version 3.1.
[  532.562284][T10280] ntfs: (device loop1): ntfs_lookup_inode_by_name(): Corrupt directory.  Aborting lookup.
[  532.572322][T10280] ntfs: (device loop1): load_and_init_quota(): Failed to find inode number for $Quota.
[  532.582041][T10280] ntfs: (device loop1): load_system_files(): Failed to load $Quota.  Mounting read-only.  Run chkdsk.
[  532.593079][T10280] ntfs: (device loop1): ntfs_lookup_inode_by_name(): Corrupt directory.  Aborting lookup.
[  532.603323][T10280] ntfs: (device loop1): load_and_init_usnjrnl(): Failed to find inode number for $UsnJrnl.
[  532.613386][T10280] ntfs: (device loop1): load_system_files(): Failed to load $UsnJrnl.  Will not be able to remount read-write.  Run chkdsk.
[  533.346007][T10291] netlink: 277 bytes leftover after parsing attributes in process `syz.6.1462'.
[  539.226822][T10336] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1473'.
[  539.424440][T10340] batman_adv: batadv0: Adding interface: vlan0
[  539.431847][T10340] batman_adv: batadv0: The MTU of interface vlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  539.501376][T10340] batman_adv: batadv0: Interface activated: vlan0
[  539.931700][   T26] audit: type=1326 audit(1747843619.997:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10353 comm="syz.1.1476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc5618e969 code=0x7ffc0000
[  540.037014][   T26] audit: type=1326 audit(1747843619.997:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10353 comm="syz.1.1476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc5618e969 code=0x7ffc0000
[  540.096186][T10343] bond0 speed is unknown, defaulting to 1000
[  540.162057][   T26] audit: type=1326 audit(1747843620.027:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10353 comm="syz.1.1476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7efc5618e969 code=0x7ffc0000
[  540.296590][   T26] audit: type=1326 audit(1747843620.027:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10353 comm="syz.1.1476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc5618e969 code=0x7ffc0000
[  540.392949][   T26] audit: type=1326 audit(1747843620.027:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10353 comm="syz.1.1476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc5618e969 code=0x7ffc0000
[  540.472403][   T26] audit: type=1326 audit(1747843620.027:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10353 comm="syz.1.1476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=137 compat=0 ip=0x7efc5618e969 code=0x7ffc0000
[  540.614168][   T26] audit: type=1326 audit(1747843620.027:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10353 comm="syz.1.1476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc5618e969 code=0x7ffc0000
[  540.636694][   T26] audit: type=1326 audit(1747843620.027:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10353 comm="syz.1.1476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc5618e969 code=0x7ffc0000
[  540.665071][   T26] audit: type=1326 audit(1747843620.027:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10353 comm="syz.1.1476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7efc5618e969 code=0x7ffc0000
[  540.688636][   T26] audit: type=1326 audit(1747843620.027:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10353 comm="syz.1.1476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc5618e969 code=0x7ffc0000
[  540.752628][T10370] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1479'.
[  542.907506][T10394] netlink: 'syz.6.1484': attribute type 1 has an invalid length.
[  543.018425][T10394] 8021q: adding VLAN 0 to HW filter on device bond3
[  543.196558][T10404] overlayfs: failed to clone upperpath
[  543.216090][T10397] bond3: (slave vlan3): making interface the new active one
[  543.308483][T10402] loop1: detected capacity change from 0 to 4096
[  543.339114][T10407] loop9: detected capacity change from 0 to 128
[  543.380093][T10407] EXT4-fs (loop9): mounting ext2 file system using the ext4 subsystem
[  543.392041][T10397] bond3: (slave vlan3): Enslaving as an active interface with an up link
[  543.416642][T10402] NILFS (loop1): invalid segment: Checksum error in segment payload
[  543.459943][T10402] NILFS (loop1): trying rollback from an earlier position
[  543.469294][ T7145] IPv6: ADDRCONF(NETDEV_CHANGE): bond3: link becomes ready
[  543.515525][T10402] NILFS (loop1): recovery complete
[  543.545925][T10413] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  543.564694][T10407] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  543.675590][T10407] ext2 filesystem being mounted at /50/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  544.422714][ T4265] Bluetooth: hci2: command 0x0406 tx timeout
[  545.596267][ T9031] EXT4-fs (loop9): unmounting filesystem.
[  547.079407][T10454] loop9: detected capacity change from 0 to 128
[  547.090161][T10452] netlink: 'syz.4.1499': attribute type 4 has an invalid length.
[  548.203341][T10465] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1502'.
[  548.212762][T10465] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1502'.
[  548.222038][T10465] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1502'.
[  548.231363][T10465] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1502'.
[  548.240556][T10465] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1502'.
[  548.249875][T10465] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1502'.
[  548.259159][T10465] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1502'.
[  548.268378][T10465] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1502'.
[  548.277652][T10465] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1502'.
[  548.286880][T10465] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1502'.
[  548.866510][T10463] syz.9.1501: attempt to access beyond end of device
[  548.866510][T10463] loop9: rw=2049, sector=145, nr_sectors = 48 limit=128
[  549.104165][ T7147] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  549.112043][ T7147] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  549.122824][T10454] 9pnet: Could not find request transport: f
[  549.944741][ T4259] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  549.954812][ T4259] Bluetooth: hci2: Injecting HCI hardware error event
[  549.964771][ T4265] Bluetooth: hci2: hardware error 0x00
[  550.052537][ T4301] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  550.242690][ T4301] usb 2-1: Using ep0 maxpacket: 8
[  550.250404][ T4301] usb 2-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  550.281655][ T4301] usb 2-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x94, skipping
[  550.310478][ T4301] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  550.354981][ T4301] usb 2-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[  550.426858][ T4301] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  550.442612][ T4301] usb 2-1: Product: syz
[  550.452303][ T4301] usb 2-1: Manufacturer: syz
[  550.958765][ T4301] usb 2-1: SerialNumber: syz
[  550.997404][ T4301] usb 2-1: config 0 descriptor??
[  551.266616][ T4301] usb 2-1: USB disconnect, device number 2
[  552.033011][ T4265] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  552.895811][T10536] ip6t_srh: unknown srh invflags 7863
[  554.074262][T10548] __nla_validate_parse: 45 callbacks suppressed
[  554.074282][T10548] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1523'.
[  555.055584][T10556] sch_tbf: burst 511 is lower than device veth3 mtu (1514) !
[  555.680353][T10562] 9pnet: p9_errstr2errno: server reported unknown error 18446744073709
[  556.004939][T10574] loop9: detected capacity change from 0 to 16
[  556.037321][T10574] erofs: (device loop9): mounted with root inode @ nid 36.
[  557.365845][T10593] loop9: detected capacity change from 0 to 512
[  557.378442][T10593] EXT4-fs: Ignoring removed mblk_io_submit option
[  558.077004][T10593] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b816c118, mo2=0002]
[  558.115209][T10593] System zones: 1-12
[  558.664368][T10593] EXT4-fs error (device loop9): ext4_xattr_ibody_find:2195: inode #15: comm syz.9.1535: corrupted in-inode xattr
[  558.753806][T10593] EXT4-fs error (device loop9): ext4_orphan_get:1405: comm syz.9.1535: couldn't read orphan inode 15 (err -117)
[  558.888345][T10593] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  559.931631][ T9031] EXT4-fs (loop9): unmounting filesystem.
[  560.756778][T10625] team0: Mode changed to "loadbalance"
[  560.922701][T10629] netlink: 'syz.2.1541': attribute type 10 has an invalid length.
[  561.699653][T10629] 8021q: adding VLAN 0 to HW filter on device bond0
[  561.717048][T10629] team0: Port device bond0 added
[  561.737073][T10631] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1541'.
[  562.060233][T10654] support for the xor transformation has been removed.
[  563.159504][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  563.173328][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  563.560468][T10631] team0 (unregistering): Port device bond0 removed
[  564.917548][T10694] netlink: 'syz.6.1554': attribute type 4 has an invalid length.
[  564.925978][T10694] netlink: 199836 bytes leftover after parsing attributes in process `syz.6.1554'.
[  567.108121][T10715] netlink: 'syz.6.1561': attribute type 1 has an invalid length.
[  567.167791][T10715] 8021q: adding VLAN 0 to HW filter on device bond4
[  567.279141][T10715] device veth7 entered promiscuous mode
[  567.306058][T10715] bond4: (slave veth7): Enslaving as an active interface with a down link
[  568.686631][T10742] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1567'.
[  569.287827][T10747] xt_CT: You must specify a L4 protocol and not use inversions on it
[  569.796948][T10742] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[  570.099277][T10734] tipc: New replicast peer: 10.1.1.2
[  570.105062][T10719] bond0 speed is unknown, defaulting to 1000
[  570.121327][T10734] tipc: Enabled bearer <udp:syz0>, priority 10
[  570.158734][T10742] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1567'.
[  570.414182][ T4265] Bluetooth: hci3: command 0x0406 tx timeout
[  572.384525][T10773] sg_write: data in/out 64380/1 bytes for SCSI command 0x1c-- guessing data in;
[  572.384525][T10773]    program syz.9.1570 not setting count and/or reply_len properly
[  574.243456][T10810] netlink: 'syz.4.1582': attribute type 6 has an invalid length.
[  576.471797][T10827] loop9: detected capacity change from 0 to 512
[  576.559117][T10827] EXT4-fs: Ignoring removed orlov option
[  576.654362][T10827] ext3: Unknown parameter 'nobarrier."'
[  577.371177][T10805] bond0 speed is unknown, defaulting to 1000
[  581.417203][T10854] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  598.407572][   T26] kauditd_printk_skb: 17 callbacks suppressed
[  598.407584][   T26] audit: type=1326 audit(1747843678.459:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10969 comm="syz.9.1621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a8318e969 code=0x7fc00000
[  599.202972][   T26] audit: type=1326 audit(1747843678.459:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10969 comm="syz.9.1621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f6a8318e969 code=0x7fc00000
[  599.242361][   T26] audit: type=1326 audit(1747843678.459:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10969 comm="syz.9.1621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a8318e969 code=0x7fc00000
[  599.291448][   T26] audit: type=1326 audit(1747843678.459:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10969 comm="syz.9.1621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a8318e969 code=0x7fc00000
[  600.515279][   T26] audit: type=1326 audit(1747843678.459:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10969 comm="syz.9.1621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a8318e969 code=0x7fc00000
[  600.709330][T10968] bond0 speed is unknown, defaulting to 1000
[  600.738952][   T26] audit: type=1326 audit(1747843678.459:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10969 comm="syz.9.1621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a8318e969 code=0x7fc00000
[  601.026418][   T26] audit: type=1326 audit(1747843678.459:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10969 comm="syz.9.1621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a8318e969 code=0x7fc00000
[  601.332608][   T26] audit: type=1326 audit(1747843678.459:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10969 comm="syz.9.1621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a8318e969 code=0x7fc00000
[  601.641097][   T26] audit: type=1326 audit(1747843678.459:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10969 comm="syz.9.1621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a8318e969 code=0x7fc00000
[  601.945245][   T26] audit: type=1326 audit(1747843678.459:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10969 comm="syz.9.1621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a8318e969 code=0x7fc00000
[  603.459660][T11017] xt_HMARK: proto mask must be zero with L3 mode
[  603.613773][T10998] loop1: detected capacity change from 0 to 16
[  604.573473][T10998] erofs: (device loop1): mounted with root inode @ nid 36.
[  604.585410][T11020] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1633'.
[  604.922069][T11020] netlink: 80 bytes leftover after parsing attributes in process `syz.2.1633'.
[  605.093228][T11042] team0: Mode changed to "loadbalance"
[  605.140016][T11042] netlink: 'syz.4.1627': attribute type 10 has an invalid length.
[  605.185269][T11042] 8021q: adding VLAN 0 to HW filter on device bond0
[  605.219642][T11042] team0: Port device bond0 added
[  605.231097][ T4300] bond0 speed is unknown, defaulting to 1000
[  605.237372][T11044] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1627'.
[  607.122843][T11044] team0 (unregistering): Port device bond0 removed
[  608.065557][T10932] bond0 speed is unknown, defaulting to 1000
[  608.077047][ T5790] bond0 speed is unknown, defaulting to 1000
[  608.083284][ T5787] bond0 speed is unknown, defaulting to 1000
[  610.096142][T11086] netlink: 104 bytes leftover after parsing attributes in process `syz.1.1644'.
[  610.364484][T11088] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1646'.
[  610.466309][T11088] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  610.476201][T11093] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1646'.
[  610.703811][T11090] netlink: 'syz.4.1645': attribute type 1 has an invalid length.
[  610.712273][T11090] netlink: 'syz.4.1645': attribute type 2 has an invalid length.
[  614.614876][T11125] loop1: detected capacity change from 0 to 512
[  614.720719][T11125] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.1662: invalid indirect mapped block 10 (level 1)
[  614.737361][T11125] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.1662: invalid indirect mapped block 8 (level 1)
[  614.753509][T11125] EXT4-fs (loop1): 1 truncate cleaned up
[  614.759520][T11125] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  615.845825][ T9348] EXT4-fs (loop1): unmounting filesystem.
[  620.259046][T11175] orangefs_mount: mount request failed with -4
[  620.401064][T11184] netlink: 'syz.2.1670': attribute type 1 has an invalid length.
[  620.527605][T11187] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1671'.
[  620.570992][T11188] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  620.629656][T11188] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  620.670217][T11188] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  620.679073][T11188] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  620.761848][T11188] bond3: (slave geneve2): making interface the new active one
[  620.820622][T11188] bond3: (slave geneve2): Enslaving as an active interface with an up link
[  620.839979][T11189] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1670'.
[  620.941352][T11189] 8021q: adding VLAN 0 to HW filter on device bond3
[  621.447528][T11182] loop1: detected capacity change from 0 to 32768
[  621.584915][T11182] XFS (loop1): Mounting V5 Filesystem
[  621.827693][T11182] XFS (loop1): Ending clean mount
[  621.896588][T11182] XFS (loop1): Quotacheck needed: Please wait.
[  622.053574][T11182] XFS (loop1): Quotacheck: Done.
[  622.790585][   T26] kauditd_printk_skb: 56 callbacks suppressed
[  622.790601][   T26] audit: type=1804 audit(1747843702.846:453): pid=11182 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1669" name="/newroot/63/file0/bus" dev="loop1" ino=9292 res=1 errno=0
[  623.368229][   T26] audit: type=1804 audit(1747843703.426:454): pid=11182 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1669" name="/newroot/63/file0/bus" dev="loop1" ino=9292 res=1 errno=0
[  623.429138][   T26] audit: type=1804 audit(1747843703.466:455): pid=11250 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1669" name="/newroot/63/file0/bus" dev="loop1" ino=9292 res=1 errno=0
[  623.475773][T11255] device wireguard0 entered promiscuous mode
[  624.212025][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  624.218814][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  624.408117][ T9348] XFS (loop1): Unmounting Filesystem
[  626.615315][T11310] loop1: detected capacity change from 0 to 1024
[  628.070932][T11314] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1700'.
[  628.465065][T11314] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1700'.
[  629.626938][T11336] netlink: 277 bytes leftover after parsing attributes in process `syz.2.1705'.
[  632.220805][T11382] loop1: detected capacity change from 0 to 2048
[  632.379344][T11382]  loop1: p1 < > p3
[  632.386172][T11382] loop1: p3 size 134217728 extends beyond EOD, truncated
[  632.853562][T11399] fuse: Bad value for 'fd'
[  632.897388][T11399] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1720'.
[  632.912829][T11399] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1720'.
[  634.111936][   T26] audit: type=1326 audit(1747843714.175:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11413 comm="syz.4.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45fab8e969 code=0x7ffc0000
[  634.220921][   T26] audit: type=1326 audit(1747843714.195:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11413 comm="syz.4.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f45fab8e969 code=0x7ffc0000
[  634.916334][T11429] RDS: rds_bind could not find a transport for fec0:ffff::1, load rds_tcp or rds_rdma?
[  634.981706][   T26] audit: type=1326 audit(1747843714.195:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11413 comm="syz.4.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45fab8e969 code=0x7ffc0000
[  635.036447][   T26] audit: type=1326 audit(1747843714.195:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11413 comm="syz.4.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f45fab8e969 code=0x7ffc0000
[  635.137628][   T26] audit: type=1326 audit(1747843714.195:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11413 comm="syz.4.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45fab8e969 code=0x7ffc0000
[  635.330840][   T26] audit: type=1326 audit(1747843714.195:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11413 comm="syz.4.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=297 compat=0 ip=0x7f45fab8e969 code=0x7ffc0000
[  635.499564][   T26] audit: type=1326 audit(1747843714.195:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11413 comm="syz.4.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45fab8e969 code=0x7ffc0000
[  636.673612][   T26] audit: type=1326 audit(1747843714.195:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11413 comm="syz.4.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f45fab8e969 code=0x7ffc0000
[  636.724142][T11452] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1731'.
[  636.733630][T11452] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1731'.
[  636.742602][T11452] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1731'.
[  636.751869][T11452] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1731'.
[  636.760823][T11452] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1731'.
[  636.770597][T11452] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1731'.
[  636.779496][T11452] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1731'.
[  636.788432][T11452] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1731'.
[  636.797422][T11452] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1731'.
[  636.806338][T11452] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1731'.
[  636.921869][ T4294] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  636.951790][ T4300] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  636.988489][   T26] audit: type=1326 audit(1747843714.195:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11413 comm="syz.4.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45fab8e969 code=0x7ffc0000
[  637.151969][   T26] audit: type=1326 audit(1747843714.195:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11413 comm="syz.4.1726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=312 compat=0 ip=0x7f45fab8e969 code=0x7ffc0000
[  637.193560][ T4300] usb 2-1: config 0 has no interfaces?
[  637.212013][ T4300] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  637.221124][ T4300] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  637.280094][ T4300] usb 2-1: Product: syz
[  637.301681][ T4300] usb 2-1: Manufacturer: syz
[  637.325461][ T4300] usb 2-1: SerialNumber: syz
[  637.374956][ T4300] usb 2-1: config 0 descriptor??
[  638.451832][ T5784] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  639.745529][ T5784] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  639.962446][T10932] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  640.613132][ T4300] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  640.762745][ T5784] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  642.129461][ T5784] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  642.176002][T11493] device wireguard0 entered promiscuous mode
[  642.314602][T11505] netlink: 'syz.2.1742': attribute type 30 has an invalid length.
[  642.322748][T11505] (unnamed net_device) (uninitialized): option arp_missed_max: invalid value (0)
[  642.331896][T11505] (unnamed net_device) (uninitialized): option arp_missed_max: allowed values 1 - 255
[  643.002453][T10932] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  643.912527][ T5787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  643.951280][ T5784] usb 2-1: USB disconnect, device number 3
[  645.083524][ T5784] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  646.122925][T10932] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  647.164950][ T5787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  649.163686][ T4300] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  649.306063][ T5787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  650.371758][ T5787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  650.582148][T10932] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  651.458349][ T5783] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  651.913183][T11578] xt_connbytes: Forcing CT accounting to be enabled
[  651.925026][T11578] Cannot find del_set index 286 as target
[  652.316600][T10932] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  652.662645][ T5787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  654.871832][ T5784] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  655.324144][T10932] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  655.959928][ T5787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  657.593755][ T5784] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  658.542691][ T4300] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  658.630998][ T5787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  659.933786][ T4297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  660.097486][ T9811] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  661.073710][ T5783] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  661.894937][ T9811] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  661.909780][T11673] loop1: detected capacity change from 0 to 1024
[  662.125378][ T5783] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  663.166118][ T5783] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  664.494246][ T5784] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  665.590675][T10932] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  665.600058][ T5784] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  666.720770][ T5784] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  667.528207][ T4710] hfsplus: b-tree write err: -5, ino 4
[  667.966784][ T5783] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  669.201760][ T4300] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  669.212153][ T5784] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  669.729298][ T9811] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  670.616953][ T4297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  670.656682][ T9811] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  671.702739][ T5784] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  671.954022][T11759] loop1: detected capacity change from 0 to 8
[  672.486979][ T9811] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  672.643395][T11759] SQUASHFS error: Failed to read block 0x4de: -5
[  672.651648][T11759] SQUASHFS error: Failed to read block 0x4de: -5
[  672.658556][   T26] kauditd_printk_skb: 17 callbacks suppressed
[  672.658571][   T26] audit: type=1800 audit(1747843752.710:483): pid=11759 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1805" name="file1" dev="loop1" ino=5 res=0 errno=0
[  672.707216][T11769] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  672.773689][ T4297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  672.859440][T11776] netlink: 'syz.6.1808': attribute type 12 has an invalid length.
[  674.455645][ T5784] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  674.521987][   T26] audit: type=1326 audit(1747843754.570:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11784 comm="syz.9.1814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a8318e969 code=0x7fc00000
[  675.445538][   T26] audit: type=1326 audit(1747843754.570:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11784 comm="syz.9.1814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f6a8318e969 code=0x7fc00000
[  675.523769][ T4297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  675.553905][   T26] audit: type=1326 audit(1747843754.570:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11784 comm="syz.9.1814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a8318e969 code=0x7fc00000
[  675.580522][T10932] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  677.405957][ T5784] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  677.414894][   T26] audit: type=1326 audit(1747843754.570:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11784 comm="syz.9.1814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a8318e969 code=0x7fc00000
[  677.477663][   T26] audit: type=1326 audit(1747843754.570:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11784 comm="syz.9.1814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a8318e969 code=0x7fc00000
[  677.531921][   T26] audit: type=1326 audit(1747843754.570:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11784 comm="syz.9.1814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a8318e969 code=0x7fc00000
[  677.708929][   T26] audit: type=1326 audit(1747843754.570:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11784 comm="syz.9.1814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a8318e969 code=0x7fc00000
[  677.741922][   T26] audit: type=1326 audit(1747843754.570:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11784 comm="syz.9.1814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a8318e969 code=0x7fc00000
[  678.518288][ T4297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  679.202421][ T9811] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  679.475386][T11847] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  679.791561][T11847] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  680.110900][T10932] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  680.138444][T11847] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  680.211811][ T5783] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  680.370606][T11853] loop1: detected capacity change from 0 to 256
[  680.415505][T11853] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  680.472481][T11853] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=512, location=512
[  680.503083][T11853] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  680.527218][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  680.531553][T11853] UDF-fs: Scanning with blocksize 512 failed
[  680.591558][T11853] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  680.624974][T11853] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  680.911267][T11853] loop1: detected capacity change from 0 to 2048
[  681.073319][T11748] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  681.567104][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  681.576361][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  681.791264][ T4300] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  681.938456][ T5783] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  685.099962][ T5784] net_ratelimit: 4 callbacks suppressed
[  685.099977][ T5784] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  685.116368][T11901] netlink: 'syz.9.1836': attribute type 10 has an invalid length.
[  685.248549][ T2189] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  685.258330][T11901] team0: Port device wlan1 added
[  685.496424][T11918] __nla_validate_parse: 38 callbacks suppressed
[  685.496443][T11918] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1843'.
[  685.655716][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  685.663008][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  685.771717][T11914] bond0 speed is unknown, defaulting to 1000
[  686.138024][ T5787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  687.255215][ T5787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  688.288160][ T5783] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  688.491355][ T4300] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  689.512192][ T5787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  690.829254][ T9811] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  690.846137][ T4721] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  691.453987][T11981] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1858'.
[  691.459774][ T4297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  691.475215][ T5791] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  691.486640][ T4300] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  691.568321][ T4300] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  691.584463][T11993] loop1: detected capacity change from 0 to 512
[  691.678522][T11993] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  691.726149][T11993] ext4 filesystem being mounted at /92/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  692.595017][ T5791] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  693.520489][ T9348] EXT4-fs (loop1): unmounting filesystem.
[  694.514706][ T5790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  694.616286][ T4300] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  694.640884][T12023] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1868'.
[  694.861857][T12028] bond5: (slave geneve3): Opening slave failed
[  695.647679][ T4300] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  695.677054][ T5791] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  696.692075][ T4300] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  696.703445][ T4300] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  696.714474][ T4300] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  696.733763][ T4300] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  696.759567][ T4300] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  696.798995][ T5791] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  696.807379][ T4300] usb 2-1: config 0 descriptor??
[  696.909293][T12055] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  696.919132][T12055] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  696.927896][T12055] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  696.936738][T12055] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  697.666970][ T2189] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  697.788350][ T4300] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  697.799193][ T4300] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving
[  697.813137][ T4300] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  697.859109][T12055] bond0: (slave vxlan0): Enslaving as an active interface with an up link
[  697.878152][ T5791] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  697.937498][T12068] netlink: 'syz.9.1878': attribute type 1 has an invalid length.
[  698.052180][T12068] 8021q: adding VLAN 0 to HW filter on device bond1
[  698.078449][T12070] device vlan2 entered promiscuous mode
[  698.084350][T12070] device bond1 entered promiscuous mode
[  698.164752][T12074] bond1: (slave gretap1): making interface the new active one
[  698.191157][T12074] device gretap1 entered promiscuous mode
[  698.233561][T12074] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  698.285311][T12074] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  698.331816][T12074] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  698.692285][T12074] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  699.049118][ T5787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  699.110613][T12074] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  699.163188][ T4741] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready
[  699.178708][ T4741] IPv6: ADDRCONF(NETDEV_CHANGE): vlan2: link becomes ready
[  699.219397][ T5791] usb 2-1: reset high-speed USB device number 4 using dummy_hcd
[  699.255259][ T6925] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  699.341003][ T4300] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  701.569317][ T5787] usb 2-1: USB disconnect, device number 4
[  702.146627][ T2189] net_ratelimit: 11 callbacks suppressed
[  702.146646][ T2189] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  702.161102][ T2189] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  702.206852][T12117] hsr0 speed is unknown, defaulting to 1000
[  702.249521][T12117] hsr0 speed is unknown, defaulting to 1000
[  702.290931][T12117] hsr0 speed is unknown, defaulting to 1000
[  702.460618][T12117] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  702.962302][ T1067] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  703.179942][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  703.255922][ T5791] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  703.259647][ T1067] 
[  703.266383][ T1067] ============================================
[  703.272557][ T1067] WARNING: possible recursive locking detected
[  703.278728][ T1067] 6.1.139-syzkaller #0 Not tainted
[  703.283850][ T1067] --------------------------------------------
[  703.290017][ T1067] kworker/u4:5/1067 is trying to acquire lock:
[  703.295999][T12117] hsr0 speed is unknown, defaulting to 1000
[  703.296170][ T1067] ffff88807d154218 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock){+...}-{2:2}, at: __dev_queue_xmit+0x208f/0x3760
[  703.314215][ T1067] 
[  703.314215][ T1067] but task is already holding lock:
[  703.321595][ T1067] ffff88807d73a258 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock){+...}-{2:2}, at: __dev_queue_xmit+0x129a/0x3760
[  703.322719][T12129] tipc: Started in network mode
[  703.333626][ T1067] 
[  703.333626][ T1067] other info that might help us debug this:
[  703.333636][ T1067]  Possible unsafe locking scenario:
[  703.333636][ T1067] 
[  703.333641][ T1067]        CPU0
[  703.333645][ T1067]        ----
[  703.333649][ T1067]   lock(dev->qdisc_tx_busylock ?: &qdisc_tx_busylock);
[  703.333674][ T1067]   lock(dev->qdisc_tx_busylock ?: &qdisc_tx_busylock);
[  703.333689][ T1067] 
[  703.333689][ T1067]  *** DEADLOCK ***
[  703.333689][ T1067] 
[  703.333694][ T1067]  May be due to missing lock nesting notation
[  703.333694][ T1067] 
[  703.333700][ T1067] 8 locks held by kworker/u4:5/1067:
[  703.333712][ T1067]  #0: ffff888023b24138 ((wq_completion)bond1#4){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160
[  703.333775][ T1067]  #1: ffffc90004c9fd00 ((work_completion)(&(&bond->alb_work)->work)){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160
[  703.333828][ T1067]  #2: ffffffff8c92ab20 (rcu_read_lock){....}-{1:2}, at: bond_alb_monitor+0xee/0x17f0
[  703.333876][ T1067]  #3: ffffffff8c92ab20 (rcu_read_lock){....}-{1:2}, at: alb_send_learning_packets+0x116/0x2c0
[  703.333925][ T1067]  #4: ffffffff8c92ab80 (rcu_read_lock_bh){....}-{1:2}, at: __dev_queue_xmit+0x26f/0x3760
[  703.448925][ T1067]  #5: ffff88807d73a258 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock){+...}-{2:2}, at: __dev_queue_xmit+0x129a/0x3760
[  703.461380][ T1067]  #6: ffffffff8c92ab20 (rcu_read_lock){....}-{1:2}, at: ip_finish_output2+0x3e8/0x11b0
[  703.471145][ T1067]  #7: ffffffff8c92ab80 (rcu_read_lock_bh){....}-{1:2}, at: __dev_queue_xmit+0x26f/0x3760
[  703.481072][ T1067] 
[  703.481072][ T1067] stack backtrace:
[  703.486970][ T1067] CPU: 0 PID: 1067 Comm: kworker/u4:5 Not tainted 6.1.139-syzkaller #0
[  703.495211][ T1067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  703.505271][ T1067] Workqueue: bond1 bond_alb_monitor
[  703.510482][ T1067] Call Trace:
[  703.513763][ T1067]  <TASK>
[  703.516695][ T1067]  dump_stack_lvl+0x168/0x22e
[  703.521386][ T1067]  ? show_regs_print_info+0x12/0x12
[  703.526592][ T1067]  ? load_image+0x3b0/0x3b0
[  703.531104][ T1067]  __lock_acquire+0x122f/0x7c50
[  703.536062][ T1067]  ? verify_lock_unused+0x140/0x140
[  703.541272][ T1067]  ? verify_lock_unused+0x140/0x140
[  703.546478][ T1067]  ? mark_lock+0x94/0x320
[  703.550818][ T1067]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  703.556818][ T1067]  ? mark_lock+0x94/0x320
[  703.561161][ T1067]  ? mark_lock+0x94/0x320
[  703.565513][ T1067]  ? mark_lock+0x94/0x320
[  703.569938][ T1067]  lock_acquire+0x1b4/0x490
[  703.574450][ T1067]  ? __dev_queue_xmit+0x208f/0x3760
[  703.579666][ T1067]  ? read_lock_is_recursive+0x10/0x10
[  703.585044][ T1067]  ? rcu_lockdep_current_cpu_online+0x33/0x120
[  703.591209][ T1067]  ? rcu_read_lock_bh_held+0x76/0xe0
[  703.596499][ T1067]  ? rcu_read_lock_held+0x40/0x40
[  703.601542][ T1067]  _raw_spin_lock+0x2a/0x40
[  703.606096][ T1067]  ? __dev_queue_xmit+0x208f/0x3760
[  703.611302][ T1067]  __dev_queue_xmit+0x208f/0x3760
[  703.616358][ T1067]  ? __dev_queue_xmit+0x26f/0x3760
[  703.621480][ T1067]  ? netdev_core_pick_tx+0x340/0x340
[  703.626785][ T1067]  ? mark_lock+0x94/0x320
[  703.631152][ T1067]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  703.637141][ T1067]  ? lock_chain_count+0x20/0x20
[  703.642004][ T1067]  ? ip_finish_output2+0x3e8/0x11b0
[  703.647213][ T1067]  ip_finish_output2+0xbe8/0x11b0
[  703.652247][ T1067]  ? ip_finish_output2+0x3e8/0x11b0
[  703.657459][ T1067]  ? ip_fragment+0x210/0x210
[  703.662058][ T1067]  ? ip_skb_dst_mtu+0x587/0x9c0
[  703.666920][ T1067]  ? __ip_finish_output+0x3eb/0x4c0
[  703.672128][ T1067]  iptunnel_xmit+0x525/0x930
[  703.676725][ T1067]  ip_tunnel_xmit+0x1c39/0x2360
[  703.681590][ T1067]  ? ip4_dst_hoplimit+0x2d0/0x2d0
[  703.686632][ T1067]  ? gre_build_header+0x301/0x9a0
[  703.691667][ T1067]  gre_tap_xmit+0x50b/0x700
[  703.696178][ T1067]  dev_hard_start_xmit+0x262/0x870
[  703.701316][ T1067]  sch_direct_xmit+0x24e/0x4a0
[  703.706087][ T1067]  ? mrp_pdu_parse_vecattr_event+0x230/0x230
[  703.712077][ T1067]  __dev_queue_xmit+0x18cd/0x3760
[  703.717112][ T1067]  ? __dev_queue_xmit+0x26f/0x3760
[  703.722230][ T1067]  ? netdev_core_pick_tx+0x340/0x340
[  703.727519][ T1067]  ? __netdev_alloc_skb+0x118/0x4d0
[  703.732729][ T1067]  ? __alloc_skb+0x7e0/0x7e0
[  703.737328][ T1067]  ? skb_put+0x117/0x210
[  703.741589][ T1067]  ? memset+0x1e/0x40
[  703.745583][ T1067]  alb_upper_dev_walk+0x212/0x3d0
[  703.750624][ T1067]  netdev_walk_all_upper_dev_rcu+0xf2/0x3d0
[  703.756536][ T1067]  ? alb_send_lp_vid+0x660/0x660
[  703.761509][ T1067]  ? netdev_has_upper_dev+0x400/0x400
[  703.767241][ T1067]  ? memset+0x1e/0x40
[  703.771230][ T1067]  ? alb_send_lp_vid+0x387/0x660
[  703.776170][ T1067]  ? alb_send_learning_packets+0x116/0x2c0
[  703.781981][ T1067]  ? alb_send_learning_packets+0x116/0x2c0
[  703.787818][ T1067]  alb_send_learning_packets+0x1de/0x2c0
[  703.793465][ T1067]  ? asm_sysvec_reschedule_ipi+0x16/0x20
[  703.799119][ T1067]  ? bond_alb_monitor+0x17f0/0x17f0
[  703.804341][ T1067]  ? netdev_lower_get_next_private_rcu+0x9b/0xf0
[  703.810683][ T1067]  bond_alb_monitor+0x3e1/0x17f0
[  703.815630][ T1067]  ? lockdep_hardirqs_on+0x94/0x140
[  703.820850][ T1067]  ? bond_alb_monitor+0xee/0x17f0
[  703.825880][ T1067]  ? read_lock_is_recursive+0x10/0x10
[  703.831279][ T1067]  ? bond_alb_xmit+0x40/0x40
[  703.835871][ T1067]  ? preempt_schedule_thunk+0x16/0x18
[  703.841260][ T1067]  ? process_one_work+0x7a1/0x1160
[  703.846380][ T1067]  process_one_work+0x898/0x1160
[  703.851329][ T1067]  ? worker_detach_from_pool+0x240/0x240
[  703.856971][ T1067]  ? _raw_spin_lock_irq+0xab/0xe0
[  703.862002][ T1067]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  703.867387][ T1067]  ? kthread_data+0x4b/0xc0
[  703.871901][ T1067]  worker_thread+0xaa2/0x1250
[  703.876595][ T1067]  kthread+0x29d/0x330
[  703.880678][ T1067]  ? worker_clr_flags+0x1a0/0x1a0
[  703.885707][ T1067]  ? kthread_blkcg+0xd0/0xd0
[  703.890309][ T1067]  ret_from_fork+0x1f/0x30
[  703.894743][ T1067]  </TASK>
[  703.897958][ T1067] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  703.907584][T12129] tipc: Node identity ac1414aa, cluster identity 4711
[  703.919982][T12129] tipc: Enabled bearer <udp:s>, priority 10
[  703.929760][T12117] hsr0 speed is unknown, defaulting to 1000
[  703.947144][T12117] hsr0 speed is unknown, defaulting to 1000
[  703.967231][T12117] hsr0 speed is unknown, defaulting to 1000
[  703.986251][T12117] hsr0 speed is unknown, defaulting to 1000
[  703.993208][T12117] hsr0 speed is unknown, defaulting to 1000
[  704.000728][T12117] hsr0 speed is unknown, defaulting to 1000
[  704.289943][ T5784] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  704.612231][T10932] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  705.049758][T10932] tipc: Node number set to 2886997162
[  705.099759][ T6925] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  705.108082][ T6925] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  707.350151][ T6925] net_ratelimit: 5 callbacks suppressed
[  707.350169][ T6925] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  707.366440][ T6925] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  707.420432][ T5784] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  707.650191][T10932] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  708.450482][ T5791] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  708.472358][ T7165] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  708.480678][ T7165] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  709.490341][ T5784] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  709.590944][ T4721] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  709.599222][ T4721] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  712.610887][ T5791] net_ratelimit: 13 callbacks suppressed
[  712.610907][ T5791] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  712.951343][ T4721] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  712.959725][ T4721] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog