last executing test programs:

37m37.515331583s ago: executing program 32 (id=154):
creat(&(0x7f00000002c0)='./file0\x00', 0x51)
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
truncate(&(0x7f0000000240)='./file0\x00', 0x206b12)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x42, 0x8)

32m57.981191347s ago: executing program 33 (id=1022):
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0xd0}, 0x1, 0x0, 0x0, 0x4000850}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x401c2, 0x0)
ftruncate(r2, 0x8800000)
ioctl$PIO_SCRNMAP(r2, 0x4b41, &(0x7f0000001d40)="8a6cc8ef341763a5336eea5ac94b954fb2e3d98b373d438400fa066a96135950222e8f3719e0c8daa4b36f72b354423f7f7313dbc751da7f2c98ecf849335e8d35acd1b2aedb59d50862a5c631386733448692b6f2b641e32e55ee90912c7ed7fc13dd43e634cdca41bef2533f0166f2c73c9ae5920a08acdeb4373c70962cabb641d8563bb6d853080d5312209dc74ca196f3")
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmmsg(r4, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0)
madvise(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xc)
sendfile(r3, r2, 0x0, 0x578410eb)
r5 = syz_io_uring_setup(0x6810, &(0x7f0000000400)={0x0, 0x49fa, 0x4, 0x0, 0x4e}, 0x0, 0x0)
sendmsg$nl_xfrm(r2, &(0x7f0000000180)={&(0x7f0000000040), 0xc, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYBLOB="d80000001d00000227bd7000ffdbdf25b70003006465666c6174650000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007803000097119a7b48de9708c229356905ea00bcb327e6ad594c378982d21b270498be880928ca5dae16951210b024311c87017237f7e25c62049b48588e343af3fea6ed5af666be6bfc2ffddbb1ea5305f8bec7ed6146c15eff011205d974195b58c9d5788b5bebf9c50c93fd35a34c5f17da00668b88d3e70a000008000c000a000000"], 0xd8}, 0x1, 0x0, 0x0, 0xc8c0}, 0x2000080)
syz_io_uring_submit(0x0, 0x0, 0x0)
write$binfmt_elf64(r2, &(0x7f0000000480)={{0x7f, 0x45, 0x4c, 0x46, 0x8, 0x87, 0x5, 0x7, 0x8000000000000000, 0x3, 0x3, 0x9, 0x71, 0x40, 0xbb, 0x0, 0x0, 0x38, 0x3, 0x7, 0x2, 0x6}, [{0x60000000, 0x7fff, 0x4, 0x1000000ab, 0x4, 0x4, 0x1, 0x4}, {0x1, 0x40, 0x2, 0x1, 0x8, 0x2, 0xe, 0xd}, {0x60000000, 0x6, 0x8c1, 0x6, 0x4000000000000, 0x80, 0x6, 0x2}], "bb2593a2d75a32dfc843e25857c3e844c572920120bcf7cb6c4ac80f23a6ddc79c3204f6a81073fbd0b3fec4d3236f58857ff85395eddbcbc9704eb834594f9cc11986d63c6f9e8a93a0cd746c35c8c50e87271e7017aba5979be16042366543ef1ded5c0cef012965f49c8127b05796f00ef8b1344097179d0b20172879ee098b4dc92c5760e835e580c44d4e3e2369ffe9450119eb4aed1070a31645e9ae441c", ['\x00']}, 0x289)
r6 = syz_open_dev$evdev(&(0x7f00000001c0), 0x10001, 0x400800)
dup(r6)
r7 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r7, 0x10e, 0xc, &(0x7f0000000080)={0x2, 0x7, 0x3, 0x3}, 0x10)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
io_uring_enter(r5, 0x47f6, 0x6ee0, 0x0, 0x0, 0x0)

29m46.908973512s ago: executing program 34 (id=1446):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000480)='task\x00')
fchdir(r3)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
syz_clone(0x2180, 0x0, 0x0, 0x0, 0x0, 0x0)
pread64(0xffffffffffffffff, &(0x7f0000000500)=""/31, 0x1f, 0x40000000009)

29m38.733133289s ago: executing program 35 (id=1491):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000180)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x0, 0x0}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000bc0)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000007c0)="0d18687da3e7f33aed145cf8ff2d1e5a18c0d5f9856f4824f41040f6987d0b531da10713ed151bc4867681f28e033aef683334d03864ed30590dd4ea64a20ecbbc1346c9f42510d91eec0632885b7da95ca85f4b1435c5c1e993a85257df5f19bdfc5e038a16e6a8aef907e347081fdb93cee93217e11f19cde423e6138bd1b79ee615527ccaf8049959ac6e32af46d777ccb8c26ca925f69590df13a81aee3213e80ba5cacf1f930b3cc49093d11594ef13325790b55efbdc2dd99ed1c3c609a49cc15187", 0xc5}, {&(0x7f00000002c0)="9c811ff500139d7d28a5f0de630ec6041ed353d314", 0x15}], 0x2}}, {{0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f00000003c0)="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", 0x147}], 0x1}}, {{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000300)="f043d0ddb9327cb1d997c0bf1dd84098cb85afd99293d862ada9cece6275998888c379505f4fb8", 0x27}, {&(0x7f00000006c0)="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", 0xfe}, {&(0x7f0000000940)="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", 0x14c}, {&(0x7f0000000c80)="128d3cafbd8e20761b663ee2464fd6f4658a8f2dc55c6f14df9ef39d802b6b59eaa0bbe29e4247be5760", 0x2a}], 0x4}}], 0x3, 0x0)

29m37.792029842s ago: executing program 36 (id=1496):
r0 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600))
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={0x0}, 0x1, 0x7a00}, 0x0)

29m29.637964818s ago: executing program 37 (id=1506):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001040)={0xf, {"a2e3ad21ed0d09f91b3d090987f70e06d038e7ff7fc6e5539b0d440e8b089b3f380068090890e0878f0e1ac6e7049b334d959b669a240d5b67f3988f7ef319520120ffe8d178708c523c921b1b5b5b070d074a0936cd3b78130daa61d8e8040000005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0x1000}}, 0x1006)

28m47.435003482s ago: executing program 38 (id=1537):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=ANY=[], 0x7c}}, 0x1)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x88}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x104}, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x18, 0x3, 0x0, &(0x7f0000000440)='GPL\x00'}, 0x94)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000280)={0x3})
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000500)="b8010000000f01c10f22a10f20e035800000000f22e066ba610066b80a0066ef66b832000f00d0b8010000000f01c166ba4300b0beee0f793c1e2e643e2e3e650f79288fc878c15b0e3f", 0x4a}], 0x1, 0x21, 0x0, 0x0)
symlink(&(0x7f0000000000)='./file0\x00', 0x0)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000850}, 0x20000040)
ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000200)={0x9f5})
ioctl$KVM_RUN(r1, 0xae80, 0x0)

28m40.982742744s ago: executing program 39 (id=1549):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000740)={0x4c, 0x36, 0x2, 0x70bd28, 0x25dfdbfc, "", [@generic="ef2c04e39bf75096de5a2960042a80d377b9ec8325e2f932185c1c", @nested={0x18, 0x100, 0x0, 0x1, [@nested={0x4, 0x10d}, @typed={0xc, 0xe9, 0x0, 0x0, @str='nl80211\x00'}, @nested={0x4, 0xa8}]}, @generic, @typed={0x8, 0xc3, 0x0, 0x0, @ipv4=@multicast1}]}, 0x4c}], 0x1, 0x0, 0x0, 0x40000}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r1, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r2, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

25m11.706960849s ago: executing program 40 (id=2069):
writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000100)="390000fa461ad7e48489bffa560200130011186809fc071200000f0000ff3f21000000170a001700e0da8979d2fc6ca9e48270faf047145bc79e0b9971bcbedac0eead49dbecf96eebb1fdc2a85f4728f28690f68bfafb9c6299ad41ec75c80a1ba3c1c0902886930f9322c55f5da3972ff74b1df2a9a35995a5720dc519ab536fc8ddb40abbcc6d8d02f91e0bc09a9bdddca1", 0x93}], 0x1)
r0 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x22c01)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000000c0)=ANY=[@ANYRES64=r0])

25m9.586468394s ago: executing program 41 (id=2074):
socket$pppl2tp(0x18, 0x1, 0x1)
socket$igmp6(0xa, 0x3, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
r0 = open(&(0x7f0000000380)='./bus\x00', 0x240, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x84)
r2 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$FUSE_NOTIFY_STORE(r1, &(0x7f0000000240)=ANY=[@ANYBLOB='+\x00\x00\x00', @ANYRES32=r0], 0x2b)
sendfile(r2, r0, 0x0, 0x4000000053d2)

15m49.643793593s ago: executing program 42 (id=3797):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000003c0)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket(0x10, 0x3, 0x0)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1, 0x23, 0x8, 0x7ffd}, 0x50)

15m43.14215355s ago: executing program 43 (id=3801):
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_mount_image$fuse(0x0, 0x0, 0x3000009, 0x0, 0x1, 0x0, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
bind$inet(r3, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xb}}, 0x10)
setsockopt$sock_int(r3, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r4}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
listen(0xffffffffffffffff, 0x0)
connect$inet(r3, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg$inet(r3, &(0x7f0000004d00)=[{{0x0, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x30000}}], 0x300, 0xf00)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0)

15m40.17294668s ago: executing program 44 (id=3805):
socket$netlink(0x10, 0x3, 0x4)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_wakeup_irq', 0x0, 0x108)
listen(0xffffffffffffffff, 0x19a8)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec25, 0x400, 0x3, 0x190}, &(0x7f00000006c0)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000600)})
io_uring_enter(r2, 0x847ba, 0x0, 0xe, 0x0, 0x0)

14m8.567725972s ago: executing program 45 (id=3901):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r1, &(0x7f0000000480)={0xa, 0xfffe, 0x3, @mcast1, 0x5}, 0x1c)
r2 = dup2(r1, r1)
sendmmsg$unix(r2, &(0x7f0000008380), 0x400000000000174, 0x4008890)
socket$nl_netfilter(0x10, 0x3, 0xc)

13m12.475910198s ago: executing program 46 (id=3947):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$sndctrl(&(0x7f0000000440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r3, 0x40045532, &(0x7f0000000040))
r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
r5 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0, 0x13f, 0xa}}, 0xfe2f)
ioctl$SNDRV_PCM_IOCTL_RESET(r5, 0x4141, 0x0)

12m10.431626586s ago: executing program 47 (id=3996):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f000054e000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f0000530000/0x3000)=nil)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)='devtmpfs\x00', 0x800, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
mount$overlay(0x0, &(0x7f0000001340)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r2 = openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080), 0x18)
open$dir(0x0, 0x0, 0x0)
getdents64(r2, &(0x7f0000000300)=""/152, 0x98)

12m8.597997785s ago: executing program 48 (id=3999):
ioctl$PPPIOCNEWUNIT(0xffffffffffffffff, 0xc004743e, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
recvmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f00000002c0)=""/76, 0x0})
r2 = memfd_create(&(0x7f0000000640)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\xfd\x89\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\rW\xef\x10\xd6d#\xf2\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13^\x13\xcb\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8\x1f\xb2C\xf8\'?]\x16C\x166\xc0\xbcJT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8', 0x2)
pwritev(r2, &(0x7f0000000540)=[{&(0x7f0000000600)='\x00', 0x1}], 0x1, 0x7fffff, 0x8)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000380)={0x26, 'hash\x00', 0x0, 0x0, 'md5-generic\x00'}, 0x58)
r4 = accept$alg(r3, 0x0, 0x0)
sendfile(r4, r2, 0x0, 0x2000081)

9m48.370477187s ago: executing program 49 (id=4163):
ioctl$VIDIOC_TRY_DECODER_CMD(0xffffffffffffffff, 0xc0485661, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000240)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r2, 0xc0045005, &(0x7f0000000000)=0x1000)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'wlan0\x00'})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x0)
openat$cuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ppoll(&(0x7f0000000040)=[{r2, 0x9620}], 0x1, 0x0, 0x0, 0x0)

8m29.148812741s ago: executing program 50 (id=4283):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x218, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket(0x22, 0x2, 0x24)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x5d031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x1, 0x0, 0x0, 0x2)

7m36.879750492s ago: executing program 51 (id=4364):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbee6, 0x8031, 0xffffffffffffffff, 0x4000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r2 = creat(&(0x7f0000000080)='./file0\x00', 0xecf86c37d53049cc)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='mmap_lock_acquire_returned\x00', r3, 0x0, 0xffffffffffffffff}, 0x18)
close(r2)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)

6m30.851942775s ago: executing program 52 (id=4457):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = syz_open_dev$admmidi(&(0x7f0000000000), 0x2, 0x1a9882)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r4, 0xc0305710, &(0x7f0000000040)={0x0, 0x7ff, 0x41})
close_range(r3, 0xffffffffffffffff, 0x0)
setsockopt(r2, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x402, @loopback}], 0x1c)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0x6, 0xfa11, 0xffffffff}, 0x0)
r5 = syz_open_dev$vcsa(&(0x7f0000000000), 0x1, 0x1a1300)
poll(&(0x7f0000000040)=[{r5, 0x8744}], 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000020c0)={&(0x7f0000002080)='thread_noise\x00', r5, 0x0, 0xf583}, 0x18)
unshare(0x22020600)

6m28.200987572s ago: executing program 6 (id=4484):
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r1 = openat$ppp(0xffffffffffffff9c, 0x0, 0x1a01, 0x0)
ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$PPPIOCSFLAGS1(r1, 0x80047458, &(0x7f00000003c0)=0xc446806)

6m27.274691937s ago: executing program 6 (id=4487):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r0 = socket(0x400000000010, 0x3, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0x10}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001300)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, r2, {0x0, 0xffe0}, {}, {0xa}}, [@filter_kind_options=@f_u32={{0x8}, {0xc, 0x2, [@TCA_U32_DIVISOR={0x8, 0x4, 0x2}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
close(0x3)

6m25.695381742s ago: executing program 6 (id=4491):
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=ANY=[], &(0x7f0000000000)='GPL\x00'}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000040)={0x0, 0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x0)
r5 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0)
write$USERIO_CMD_SET_PORT_TYPE(r5, &(0x7f00000002c0)={0x1, 0x5}, 0x2)
write$USERIO_CMD_REGISTER(r5, &(0x7f00000000c0), 0x2)
write$USERIO_CMD_SET_PORT_TYPE(r5, &(0x7f0000000100)={0x1, 0x1}, 0x2)

6m21.085979419s ago: executing program 6 (id=4494):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
close(r0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x1a1)
fcntl$setlease(r2, 0x400, 0x1)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)={'#! ', './file0'}, 0xb)
ioperm(0x2, 0x7fb, 0x100)
execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

6m19.145308192s ago: executing program 6 (id=4498):
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r0, &(0x7f0000000180)={0x1a, 0x0, 0xf9, 0x8, 0x0, 0x0, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3e}}, 0x10)
socket$xdp(0x2c, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000004c0))
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0x80, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x8, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

6m17.473279444s ago: executing program 6 (id=4503):
openat$ptmx(0xffffffffffffff9c, 0x0, 0x100, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8009, 0x0, 0x4, 0x0, 0xfffffe0000000001, 0xfa11, 0x7}, 0x0)
mremap(&(0x7f00007f1000/0x4000)=nil, 0x4000, 0x800000, 0x0, &(0x7f0000130000/0x800000)=nil)
getdents(0xffffffffffffffff, &(0x7f0000000140)=""/177, 0xb1)
r2 = syz_open_dev$dri(&(0x7f0000000040), 0x1, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r3, r4, 0x0, 0x20000023896)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback, 0x7}, 0x1c)
setsockopt$inet6_tcp_int(r5, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r5, &(0x7f0000000380)="e8", 0xfffffffffffffe98, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0xfffffffd, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000300)='htcp\x00', 0x5)
syz_usb_connect(0x3, 0x2d, 0x0, 0x0)
shutdown(r5, 0x1)
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r2, 0xc01864b0, 0x0)
r6 = socket$key(0xf, 0x3, 0x2)
r7 = syz_open_dev$swradio(&(0x7f0000000040), 0x1, 0x2)
ioctl$VIDIOC_REQBUFS(r7, 0xc0145608, &(0x7f0000000000)={0xfffffffa, 0xb, 0x4})
ioctl$VIDIOC_STREAMOFF(r7, 0x40045613, &(0x7f0000000140)=0x200)
sendmsg$key(r6, 0x0, 0x0)
mlock(&(0x7f000005a000/0x1000)=nil, 0x1000)
mremap(&(0x7f00005a1000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000ac4000/0x4000)=nil)

6m0.818327923s ago: executing program 53 (id=4503):
openat$ptmx(0xffffffffffffff9c, 0x0, 0x100, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8009, 0x0, 0x4, 0x0, 0xfffffe0000000001, 0xfa11, 0x7}, 0x0)
mremap(&(0x7f00007f1000/0x4000)=nil, 0x4000, 0x800000, 0x0, &(0x7f0000130000/0x800000)=nil)
getdents(0xffffffffffffffff, &(0x7f0000000140)=""/177, 0xb1)
r2 = syz_open_dev$dri(&(0x7f0000000040), 0x1, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r3, r4, 0x0, 0x20000023896)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback, 0x7}, 0x1c)
setsockopt$inet6_tcp_int(r5, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r5, &(0x7f0000000380)="e8", 0xfffffffffffffe98, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0xfffffffd, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000300)='htcp\x00', 0x5)
syz_usb_connect(0x3, 0x2d, 0x0, 0x0)
shutdown(r5, 0x1)
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r2, 0xc01864b0, 0x0)
r6 = socket$key(0xf, 0x3, 0x2)
r7 = syz_open_dev$swradio(&(0x7f0000000040), 0x1, 0x2)
ioctl$VIDIOC_REQBUFS(r7, 0xc0145608, &(0x7f0000000000)={0xfffffffa, 0xb, 0x4})
ioctl$VIDIOC_STREAMOFF(r7, 0x40045613, &(0x7f0000000140)=0x200)
sendmsg$key(r6, 0x0, 0x0)
mlock(&(0x7f000005a000/0x1000)=nil, 0x1000)
mremap(&(0x7f00005a1000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000ac4000/0x4000)=nil)

5m30.679119368s ago: executing program 3 (id=4579):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
lseek(r0, 0x8000000e, 0x1)
getdents64(r0, 0x0, 0x31)

5m28.870692843s ago: executing program 3 (id=4583):
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000040)="66baf80cb852e16f87081111bafc0cec660f3880318fe97812ca0f01efc74424000b000000b8010000000f01d9c7442406000000000f01142426660f38820766b842000f00d8f2d9ed", 0x49}], 0x1, 0x4, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_TEST(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="2c0000000b0601010000000000000000"], 0x2c}, 0x1, 0x0, 0x0, 0x44080}, 0x4000082)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000015c0)={0x54, r5, 0x1, 0x70bd2d, 0x1, {0x3}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e21, @loopback}}, {0x14, 0x2, @in={0x2, 0x4e21, @broadcast}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)
r6 = msgget$private(0x0, 0x244)
msgsnd(r6, &(0x7f0000000540)={0x2}, 0x8, 0x800)
msgctl$IPC_SET(r6, 0x1, &(0x7f0000003580)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0xe}, 0x0, 0x0, 0x6e, 0x8, 0xfffffffffffffffc, 0x1, 0x9, 0x0, 0x2, 0x2})
r7 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0)
fsetxattr$system_posix_acl(r7, &(0x7f0000000000)='system.posix_acl_access\x00', 0x0, 0x24, 0x0)
ioctl$USBDEVFS_CONTROL(r7, 0xc0185500, 0x0)
msgctl$MSG_INFO(r6, 0xc, &(0x7f00000000c0)=""/113)

5m26.812889993s ago: executing program 3 (id=4586):
socket$nl_generic(0x10, 0x3, 0x10)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000100), 0x802, 0x0)
r0 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0x3795, 0x0, 0x1, 0x40000333}, &(0x7f0000000440)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000100)=[{0x0}], 0x1})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={0xffffffffffffffff, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2}, 0x50)
io_uring_enter(r0, 0x847ba, 0x0, 0xe, 0x0, 0x0)

5m25.525326623s ago: executing program 3 (id=4588):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000140)={@host})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r0, 0x7a8, &(0x7f00000001c0)={{@host}, @host, 0x4, 0xabc, 0x2449, 0x0, 0x0, 0x4})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r0, 0x7a8, &(0x7f0000000080)={{@hyper, 0x10400000}, @hyper, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x1})

5m24.44607856s ago: executing program 3 (id=4590):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f00000002c0)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x1, {0x0, 0x0, 0x0, r3, {0x0, 0xfffb}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}, 0x1, 0x0, 0x0, 0x4805}, 0x4000800)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)=@delchain={0x24, 0x66, 0xf31, 0xf7ffffbb, 0x3, {0x0, 0x0, 0x0, r3, {0xffe0, 0xfff2}, {0xb, 0xfff1}, {0x2, 0xfff2}}}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0)

5m23.159809635s ago: executing program 3 (id=4593):
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setxattr$incfs_metadata(&(0x7f0000000800)='./cgroup\x00', &(0x7f0000000840), &(0x7f0000000880)="22cf", 0x2, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet6(0x10, 0x80000, 0x3)
r2 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_G_SELECTION(r2, 0xc040565e, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
r3 = fsopen(&(0x7f0000000040)='sysfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
fsmount(r3, 0x1, 0x0)

5m5.859074639s ago: executing program 54 (id=4593):
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setxattr$incfs_metadata(&(0x7f0000000800)='./cgroup\x00', &(0x7f0000000840), &(0x7f0000000880)="22cf", 0x2, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet6(0x10, 0x80000, 0x3)
r2 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_G_SELECTION(r2, 0xc040565e, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
r3 = fsopen(&(0x7f0000000040)='sysfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
fsmount(r3, 0x1, 0x0)

2m21.702310219s ago: executing program 5 (id=4959):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_open_procfs(0x0, &(0x7f0000000000)='net/vlan/vlan0\x00')
syz_open_procfs(0x0, &(0x7f00000001c0)='net/vlan/vlan0\x00')
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x10, 0x803, 0x0)
openat$vhost_vsock(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
pselect6(0x40, &(0x7f0000000000)={0x0, 0x5, 0x3, 0x8000, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x2000000009, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

2m20.913340559s ago: executing program 5 (id=4961):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
mmap(&(0x7f0000103000/0x4000)=nil, 0x4000, 0x1000002, 0x11012, r1, 0x108000)
syz_clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

2m19.633915822s ago: executing program 5 (id=4963):
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=ANY=[@ANYBLOB="4000000010004b0428bd7000000000007a000000", @ANYRES32=0x0, @ANYBLOB="0000000080480500140012800b0001006272696467"], 0x40}}, 0x4)

2m18.719393528s ago: executing program 5 (id=4964):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x800, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000380)={0x1, &(0x7f0000000000)=[{0x6, 0xfe, 0x0, 0x7fc00100}]})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
r4 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0xfad6, 0x10000, 0x3}, 0x0, &(0x7f0000000280)=<r5=>0x0)
syz_io_uring_submit(0x0, r5, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r4, 0x1f85, 0x40110a, 0x4d, 0x0, 0x85)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a, 0x2})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000440)="97713b46fbaa2b1044f2d408ffca802db4d770eb9874f493e0ef367e4bde497c403b450c72ff2417d079bb892435a1e107fa5c0ecd207d9e6f2a209bf148e6bc56955cb53347d1499097488fcad724a1"})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000300)={0x4c, 0x0, &(0x7f0000000140)=[@reply_sg={0x40486312, {0x0, 0x0, 0x0, 0x0, 0xa26b1a4fb20b8820, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

2m17.130726597s ago: executing program 5 (id=4970):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='contention_end\x00', r0}, 0x10)
r1 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0xe}}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r3, 0x4004af61, &(0x7f0000000140)=0x200000000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
fcntl$getown(r2, 0x9)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[], 0xa0}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r5 = add_key$user(&(0x7f0000002100), 0x0, 0x0, 0x0, 0xfffffffffffffffd)
r6 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000000)={r6, r6, r6}, 0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)={'crc32c\x00'}})
r7 = add_key$keyring(&(0x7f0000000400), &(0x7f0000000480)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$search(0xa, r5, 0x0, &(0x7f0000000380)={'syz', 0x1}, r7)
r8 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000020000000900010073797a320000000014000200626f6e643000000000000000000000006334f27938511b5722b87979a10965337d8b2de3a5c521d868dd28d0ab07a27d5c51983a17f5c7667893abba59494446193f3d50a66accc4780559fd82e523575620e426a180b7c4270d7d1ab691c7335975bbacb586d40293a63d938229c153e5d5e19f82cf280afaeb675c75cd51e511a341cce18fb3526748dfedac04a6d6a53b89eccdecd5cb76c68994e5d76318d52093815cc61763813d823f3dd602440ad3ea80f522b429d628"], 0x34}}, 0xc800)

2m15.660464794s ago: executing program 5 (id=4975):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000070000000400000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='oom_score_adj_update\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='oom_score_adj_update\x00', r3}, 0x10)
r4 = syz_open_procfs(0x0, &(0x7f0000000040)='oom_score_adj\x00')
writev(r4, &(0x7f00000002c0)=[{&(0x7f0000000280)='0', 0x1}], 0x1)

2m10.71909653s ago: executing program 7 (id=4988):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000001340))
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000180)=0x6f)
r1 = epoll_create1(0x0)
r2 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000780)={0x10000000})
write$dsp(r0, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)

2m8.800627807s ago: executing program 7 (id=4994):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x800, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000380)={0x1, &(0x7f0000000000)=[{0x6, 0xfe, 0x0, 0x7fc00100}]})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
r4 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0xfad6, 0x10000, 0x3}, &(0x7f0000000040)=<r5=>0x0, 0x0)
syz_io_uring_submit(r5, 0x0, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r4, 0x1f85, 0x40110a, 0x4d, 0x0, 0x85)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a, 0x2})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000440)="97713b46fbaa2b1044f2d408ffca802db4d770eb9874f493e0ef367e4bde497c403b450c72ff2417d079bb892435a1e107fa5c0ecd207d9e6f2a209bf148e6bc56955cb53347d1499097488fcad724a1"})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000300)={0x4c, 0x0, &(0x7f0000000140)=[@reply_sg={0x40486312, {0x0, 0x0, 0x0, 0x0, 0xa26b1a4fb20b8820, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

2m5.487585339s ago: executing program 8 (id=4995):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_udp_encap(r0, 0x11, 0x68, &(0x7f0000000040)=0x2, 0x4)
setsockopt$inet_udp_encap(r0, 0x11, 0x64, 0x0, 0x0)
setsockopt$inet_udp_encap(r0, 0x11, 0x68, &(0x7f0000000000)=0x3, 0x4)

2m4.650757326s ago: executing program 8 (id=4997):
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x8a0c40, 0x0, 0x0, 0x0, 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000100)='./file0\x00', &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [], {0x4, 0x5}, [], {0x10, 0x1}, {0x20, 0x7}}, 0x24, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x10, 0x103)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
syz_mount_image$fuse(0x0, &(0x7f0000000380)='./bus\x00', 0x322020, &(0x7f0000000140)=ANY=[], 0x1, 0x0, 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000480)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1f1)

2m4.244193728s ago: executing program 7 (id=4998):
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x1e8301, 0x0)
socket$packet(0x11, 0x2, 0x300)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000500)=ANY=[@ANYBLOB="12010000000000207d1e5a2d00000000000109022400010000000009040000010300000009210000000122080009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000140)={0x24, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="002208000000a20100c3"], 0x0}, 0x0)
syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
r1 = syz_io_uring_setup(0x10e, &(0x7f0000000140)={0x0, 0x334e, 0x1000, 0x3, 0x41}, &(0x7f00000003c0)=<r2=>0x0, &(0x7f0000000100)=<r3=>0x0)
syz_io_uring_setup(0x2400, &(0x7f0000000240)={0x0, 0xbe44, 0x10000, 0x2, 0x2be, 0x0, r1}, 0x0, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x1, 0x7})
write$UHID_CREATE2(r4, &(0x7f00000001c0)=ANY=[@ANYBLOB="06"], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r1, 0x7277, 0x0, 0x28, 0x0, 0x0)

2m3.742738682s ago: executing program 8 (id=4999):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='contention_end\x00', r0}, 0x10)
r1 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0xe}}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r3}, 0x10)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r4, 0x4004af61, &(0x7f0000000140)=0x200000000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
fcntl$getown(r3, 0x9)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[], 0xa0}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r6 = add_key$user(&(0x7f0000002100), 0x0, 0x0, 0x0, 0xfffffffffffffffd)
r7 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000000)={r7, r7, r7}, 0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)={'crc32c\x00'}})
r8 = add_key$keyring(&(0x7f0000000400), &(0x7f0000000480)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$search(0xa, r6, 0x0, &(0x7f0000000380)={'syz', 0x1}, r8)
r9 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r9, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000020000000900010073797a320000000014000200626f6e643000000000000000000000006334f27938511b5722b87979a10965337d8b2de3a5c521d868dd28d0ab07a27d5c51983a17f5c7667893abba59494446193f3d50a66accc4780559fd82e523575620e426a180b7c4270d7d1ab691c7335975bbacb586d40293a63d938229c153e5d5e19f82cf280afaeb675c75cd51e511a341cce18fb3526748dfedac04a6d6a53b89eccdecd5cb76c68994e5d76318d52093815cc61763813d823f3dd602440ad3ea80f522b429d628"], 0x34}}, 0xc800)

2m1.202197174s ago: executing program 7 (id=5003):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000240)=ANY=[], 0xdd, 0x11ff, &(0x7f0000003300)="$eJzs3E+LHEUYB+A348bdbNw/aowmBy3w4qnJ7sGTIItsQHZAiVkhEYSO26vDtjPD9LAwIkZPXv0cnr0JfoO9+Bm87cVjDmJLurMmEyeRHLIDyfMcpl+q6kd1wTDQQ1Ufv/fT1wf7Vbafj6Nz5kx0hhHpTooUnTjx5k57vXFzZ6vb3b6W0tWt6xvvppRW3/rts28XI+L8p7+s/roYR+ufH/+5+cfRxaNLx39f/6pXpV6V+oNxytOtwWCc3yqLtNerDrKUPi6LvCpSr18Vo6n+/XIwHE5S3t9bWR6OiqpKeX+SDopJGg/SeDRJ+Zd5r5+yLEsry8Ejnf3/Ibs/36nrOqKuz8aLUdd1fS6W43y8FCuxGt9HxMvxSrwaF+K1uBivxxtxqRl1GrcPAAAAAAAAAAAAAAAAAAAAz4/Hnf9fi3Xn/wEAAAAAAAAAAAAAAAAAAOAUfHLj5s5Wt7t9LaWliPLHw93D3fba9m/tRy/KKOJKrMVf0Zz+b7X11Q+721dSYz1+KG/fy98+3H2hzd/9uJvfaF4ncC+/0PSd5DfafJrOL8byg/NvxlpcmD3/5sz8Urzz9gP5LNbi9y9iEGXsNXPfz3+3kdIHH3Ufyl9uxgEAAMCzIEv/mvn8nmWP6m/zT/D/wEPP1wtxeWG+ayeimnxzkHfKYtQU5Umx9J8WxWOKxemWzlOaqxNzX6niWS3OxXTLvH+ZOA33vwbzvhMAAAAAAAAAAACexFPeV7gQM3aWvT+fpQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/sAPHAgAAAADC/K3T6NgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYKgAAAD///7lyMc=")
syz_clone(0xb44040, 0x0, 0x0, 0x0, 0x0, 0x0)
rt_sigaction(0x1b, 0x0, 0x0, 0x0, 0x0)
tkill(0x0, 0x1b)
lsetxattr$trusted_overlay_upper(0x0, 0x0, 0x0, 0x361, 0x0)
rename(&(0x7f0000000000)='./file2\x00', &(0x7f0000000040)='./file1\x00')

2m0.20117978s ago: executing program 55 (id=4975):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000070000000400000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='oom_score_adj_update\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='oom_score_adj_update\x00', r3}, 0x10)
r4 = syz_open_procfs(0x0, &(0x7f0000000040)='oom_score_adj\x00')
writev(r4, &(0x7f00000002c0)=[{&(0x7f0000000280)='0', 0x1}], 0x1)

1m58.173978085s ago: executing program 7 (id=5007):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_udp_encap(r0, 0x11, 0x68, &(0x7f0000000040)=0x2, 0x4)
setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000080)=0x2, 0x4)
setsockopt$inet_udp_encap(r0, 0x11, 0x68, 0x0, 0x0)

1m57.814974073s ago: executing program 8 (id=5008):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x800, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000380)={0x1, &(0x7f0000000000)=[{0x6, 0xfe, 0x0, 0x7fc00100}]})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
r4 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0xfad6, 0x10000, 0x3}, &(0x7f0000000040)=<r5=>0x0, 0x0)
syz_io_uring_submit(r5, 0x0, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r4, 0x1f85, 0x40110a, 0x4d, 0x0, 0x85)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a, 0x2})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000440)="97713b46fbaa2b1044f2d408ffca802db4d770eb9874f493e0ef367e4bde497c403b450c72ff2417d079bb892435a1e107fa5c0ecd207d9e6f2a209bf148e6bc56955cb53347d1499097488fcad724a1"})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000300)={0x4c, 0x0, &(0x7f0000000140)=[@reply_sg={0x40486312, {0x0, 0x0, 0x0, 0x0, 0xa26b1a4fb20b8820, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

1m56.62524165s ago: executing program 7 (id=5011):
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=ANY=[@ANYBLOB="4000000010004b0428bd7000000000007a000000", @ANYBLOB="0000000080480500140012800b000100627269646765"], 0x40}}, 0x4)

1m53.579452162s ago: executing program 56 (id=5011):
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=ANY=[@ANYBLOB="4000000010004b0428bd7000000000007a000000", @ANYBLOB="0000000080480500140012800b000100627269646765"], 0x40}}, 0x4)

1m53.564075529s ago: executing program 8 (id=5014):
r0 = socket$inet6(0xa, 0x3, 0x20)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x2, 0x4, @mcast1}, 0x19)

1m52.832179587s ago: executing program 8 (id=5019):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
openat$audio(0xffffff9c, 0x0, 0x402, 0x0)
connect$unix(r0, &(0x7f0000000840)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x10)
syz_open_dev$sndctrl(0x0, 0x1, 0x0)
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SCSI_IOCTL_GET_PCI(r2, 0x5393, &(0x7f0000000000))

1m37.273951064s ago: executing program 57 (id=5019):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
openat$audio(0xffffff9c, 0x0, 0x402, 0x0)
connect$unix(r0, &(0x7f0000000840)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x10)
syz_open_dev$sndctrl(0x0, 0x1, 0x0)
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SCSI_IOCTL_GET_PCI(r2, 0x5393, &(0x7f0000000000))

18.529729225s ago: executing program 9 (id=5141):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000140), 0x62981)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x800000, 0x0, 'queue1\x00', 0x2})
syz_usb_connect(0x3, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="12010002a2b8d240bb2170200b"], 0x0)
writev(r0, &(0x7f0000000580)=[{&(0x7f0000000000)="238292", 0xfff6}], 0x2)

17.8353868s ago: executing program 2 (id=5142):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@ipv4_delroute={0x24, 0x19, 0x1, 0x0, 0x0, {}, [@RTA_GATEWAY={0x8, 0x1e, @multicast2}]}, 0x24}}, 0x0)
r2 = syz_open_procfs(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8000, 0x20000000019}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$full(0xffffffffffffff9c, &(0x7f0000000140), 0x200000, 0x0)
fchdir(r2)
landlock_create_ruleset(&(0x7f00000000c0)={0x131}, 0x18, 0x0)
socket$alg(0x26, 0x5, 0x0)
setuid(0xee01)

12.931058683s ago: executing program 9 (id=5148):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000001340))
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000180)=0x6f)
r1 = epoll_create1(0x0)
r2 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000780)={0x10000000})
write$dsp(r0, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)

12.324628359s ago: executing program 2 (id=5149):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}, 0x1, 0x0, 0x0, 0x4000800}, 0x10)

12.096546247s ago: executing program 4 (id=5150):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000880)={0x0, 0x0, @pic={0x2a, 0xc0, 0x7, 0x6, 0xfb, 0x0, 0xf, 0x4, 0x3, 0x0, 0x3, 0x58, 0x9e, 0x6, 0x6, 0x7f}})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x8000000000000035, 0xfff, 0x0, 0x40180, 0x5, 0x14, 0xf1, 0x3, 0x7fffffffffffe, 0x5, 0x5, 0xc6bd, 0x8000000000000001, 0x45, 0x5, 0xbdb], 0xd000, 0x1c4213})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10.686106226s ago: executing program 0 (id=5151):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x4, &(0x7f00000002c0)={@local={0xac, 0x2, 0x44, 0xa}, @private=0x5000000}, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getpid()
socket$vsock_stream(0x28, 0x1, 0x0)
ptrace$setregs(0xf, 0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040))
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$SOCK_DIAG_BY_FAMILY(r0, &(0x7f00000065c0)={0x0, 0x0, &(0x7f0000006580)={&(0x7f00000003c0)=ANY=[@ANYBLOB="280000001400110200000000fcdbdf25280068fdfa"], 0x28}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0x8, 0x3, 0x298, 0x0, 0x11, 0x148, 0x340, 0x0, 0x430, 0x2a8, 0x2a8, 0x430, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0xc8, 0x110, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip_vti0\x00', {0x0, 0x0, 0x3f, 0x0, 0x0, 0x3, 0x9, 0x0, 0x80}}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x8, 'syz0\x00'}}}, {{@ip={@multicast2, @empty, 0x0, 0x0, 'vlan0\x00', 'netdevsim0\x00', {}, {}, 0x0, 0x0, 0x44}, 0x0, 0xc0, 0xf0, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@ttl={{0x28}, {0x1, 0x3}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2f8)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002880)='.\x00', &(0x7f00000028c0), 0x4001, &(0x7f00000000c0)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x4000}})
write$FUSE_NOTIFY_STORE(r3, &(0x7f0000000080)={0x29, 0x4, 0x0, {0x1, 0x7fff, 0x1, 0x0, [0x0]}}, 0x29)

9.604960161s ago: executing program 1 (id=5152):
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = syz_open_dev$sndpcmp(&(0x7f0000001540), 0x1, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_PARAMS_OLD(r0, 0xc1004111, &(0x7f0000001580))

8.929390071s ago: executing program 2 (id=5153):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01012abd7000000008002b00000008000300", @ANYRES32=r2, @ANYBLOB="04004600070034007677ae00080026006c090000300051802c0000800800030005ac0e00040004000500020003000000110001"], 0x60}, 0x1, 0x0, 0x0, 0x80}, 0x4804)

8.102830862s ago: executing program 4 (id=5154):
rseq(&(0x7f0000000240)={0x0, 0x0, 0x0, 0x4}, 0x20, 0x0, 0x0)
r0 = socket$kcm(0x2d, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000040)={r1})
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000100)={r2})
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000080)={r2})
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x3000003, 0x204031, 0xffffffffffffffff, 0xffffd000)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x19)
mlock(&(0x7f0000ffe000/0x2000)=nil, 0x2000)
munlockall()
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000181100"/20, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$cgroup_root(0xffffff9c, &(0x7f0000000200)='./cgroup/syz0\x00', 0x200002, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, 0xffffffffffffffff, 0x0)
r3 = socket$xdp(0x2c, 0x3, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
getsockopt$XDP_MMAP_OFFSETS(r3, 0x11b, 0x1, 0x0, &(0x7f0000000100)=0xfffffffffffffcf8)

5.626830099s ago: executing program 0 (id=5155):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x0, 0x0, &(0x7f0000000000)='GPL\x00'}, 0x94)
request_key(&(0x7f0000001000)='dns_resolver\x00', &(0x7f0000001040)={'syz', 0x2}, &(0x7f0000001080)='\x00', 0x0)
request_key(&(0x7f00000010c0)='dns_resolver\x00', &(0x7f0000001100)={'syz', 0x2}, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
io_uring_setup(0xfc6, &(0x7f0000000180))
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(0xffffffffffffffff, 0x6, 0x21, &(0x7f0000000b00)="86cf8445f4ba1d9f20174688f169e58c", 0x10)
listen(0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x42ba, &(0x7f0000000300)={0x0, 0xf36e, 0x4000, 0x2, 0xfffffffd}, &(0x7f0000000100), &(0x7f0000000140))
pivot_root(0x0, 0x0)

5.168124626s ago: executing program 1 (id=5156):
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x2000, 0x0, 0x3)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB="b80000000201050000000000000000000300000a14001980080002005100000008000200480a000008000c400000000234000e800c000280050001003a0000001400018008000100c21414aa080002000a01010106000340000300000600034000000000080008400000ffff0c000f8008000340000000070800034000000081080002400000ee340800034000000ff208000140000000060800084000000006100016400000000b0000000100000009060012"], 0xb8}, 0x1, 0x0, 0x0, 0x4000800}, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001d40)=ANY=[@ANYBLOB="101300002d00090036bd70000100000004000000cb011180c708605d8a0c9549f671af21be3edd7313f3b3cefa172a8aae2f295cc72b60b26946113d23"], 0x1310}, 0x1, 0x0, 0x0, 0x20000004}, 0x84)
add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
r1 = io_uring_setup(0x194e, &(0x7f0000000a80)={0x0, 0xd3d5, 0x80, 0x5, 0x2b0})
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000280))
ioctl$VHOST_SET_FEATURES(r2, 0x4008af00, &(0x7f0000000080)=0x200000000)
ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000040)=0x1)
r3 = dup2(r2, r2)
read$FUSE(r3, &(0x7f0000002b40)={0x2020}, 0x2020)
read$FUSE(r3, &(0x7f0000000b00)={0x2020}, 0x2020)
close_range(r1, 0xffffffffffffffff, 0x0)

5.125316588s ago: executing program 9 (id=5157):
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1ea7, 0x907, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x9, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x2}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x1}}}}}]}}]}}, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1000, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
fcntl$setstatus(r0, 0x4, 0x42000)
r1 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec25, 0x8, 0x1, 0x40000333}, &(0x7f0000000dc0)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0)

5.049628773s ago: executing program 2 (id=5158):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1208002, &(0x7f0000000100)={[{@grpquota}, {@delalloc}, {@resuid}, {@debug}, {@dioread_nolock}, {}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$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")
lchown(&(0x7f00000006c0)='./file0\x00', 0x0, 0xee01)
finit_module(0xffffffffffffffff, 0x0, 0x0)
quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000100)={0x2, 0x0, 0xca, 0x0, 0x2, 0x2, 0x0, 0x0, 0x9d})
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
chown(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)

5.045869881s ago: executing program 4 (id=5159):
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[], 0x5, 0x14fe, &(0x7f0000003f40)="$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")
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
r1 = open(&(0x7f0000000780)='./bus\x00', 0x145c7e, 0x0)
io_setup(0x5ff, &(0x7f0000000400)=<r2=>0x0)
write$cgroup_pid(r0, &(0x7f0000000340), 0x12)
io_submit(r2, 0x1ffffff0, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000000000)="96", 0xffffff20}, &(0x7f0000000740)={0x0, 0x0, 0x41, 0x3, 0x0, r0, 0x0, 0x0, 0xffffffffffffffff}])

3.966725271s ago: executing program 0 (id=5160):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000500)={0xa, 0x4e20, 0xffffffff, @empty, 0x4}, 0x1c)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x1, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x4e24, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x1, "65a252e7cb7a5918c004a9971a46afced2c32642b1ec9fe34818d8ccd82041b7", "c930713c550e74ee13c2638ac75b2a9666efd31a34fce4498df8105d8bd8ed283a220c3a9becd8a70d3607ea8270d351", "ae12e16b560f2f8ac4ca3e745ce285f12f6e8719e7f1e7f286a68f76", {"980aa8fb8f80d69f1fb53e086447e91e", "55e824bb69e833bd36300b088233545a"}}}}}}}, 0x0)
recvmsg(r0, &(0x7f0000005280)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000004100)=""/129, 0x81}, {0x0}], 0x2}, 0x20061)

3.41969183s ago: executing program 1 (id=5161):
r0 = socket(0x10, 0x80002, 0x0)
r1 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=@RTM_NEWMDB={0x38, 0x54, 0x1e5, 0x70bd2a, 0x1, {0x7, r2}, [@MDBA_SET_ENTRY={0x20, 0x1, {r2, 0x0, 0x3, 0x1, {@in6_addr=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x86dd}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x40084c0)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)

2.818228227s ago: executing program 4 (id=5162):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f00000004c0)=@newsa={0x180, 0x1a, 0x1, 0x0, 0x0, {{@in6=@local, @in6=@local, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {@in6=@dev={0xfe, 0x80, '\x00', 0x29}, 0x1a, 0x33}, @in=@multicast2, {0x0, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffffc, 0x1000000000000000, 0x80}, {0x0, 0x4, 0x0, 0x1}, {0x1, 0x5}, 0x0, 0x1, 0xa, 0x1, 0x6}, [@algo_comp={0x48, 0x3, {{'lzjh\x00'}}}, @algo_auth={0x48, 0x1, {{'sha224-ce\x00'}}}]}, 0x180}, 0x1, 0x0, 0x0, 0x4004050}, 0x40000)

2.493411748s ago: executing program 0 (id=5163):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ff9}]})
r0 = getpgrp(0xffffffffffffffff)
tkill(r0, 0x0)

2.438434696s ago: executing program 1 (id=5164):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="200000006a0009012bbd7000fbdbdf250affa600000000000800"], 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x0)

2.369704428s ago: executing program 2 (id=5165):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
utimensat(r0, 0x0, 0x0, 0x0)

2.225157688s ago: executing program 9 (id=5166):
memfd_secret(0x80000)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000680)='/sys/power/disk', 0x2, 0x0)
io_setup(0x20, &(0x7f0000001140)=<r0=>0x0)
io_submit(r0, 0x1, &(0x7f00000001c0)=[0x0])

1.967344143s ago: executing program 4 (id=5167):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x8, 0x4, 0x4, 0xdf, 0x0, 0x1}, 0x48)
syz_open_procfs(0x0, &(0x7f0000000000)='net/vlan/vlan0\x00')
syz_open_procfs(0x0, &(0x7f00000001c0)='net/vlan/vlan0\x00')
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x10, 0x803, 0x0)
openat$vhost_vsock(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
pselect6(0x0, 0x0, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x2000000009, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

1.897426547s ago: executing program 0 (id=5168):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000)
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

1.69481453s ago: executing program 1 (id=5169):
rseq(&(0x7f0000000240)={0x0, 0x0, 0x0, 0x4}, 0x20, 0x0, 0x0)
r0 = socket$kcm(0x2d, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000040)={r1})
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000100)={r2})
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000080)={r2})
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x3000003, 0x204031, 0xffffffffffffffff, 0xffffd000)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x19)
mlock(&(0x7f0000ffe000/0x2000)=nil, 0x2000)
munlockall()
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000181100"/20, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$cgroup_root(0xffffff9c, &(0x7f0000000200)='./cgroup/syz0\x00', 0x200002, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, 0xffffffffffffffff, 0x0)
r3 = socket$xdp(0x2c, 0x3, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
getsockopt$XDP_MMAP_OFFSETS(r3, 0x11b, 0x1, 0x0, &(0x7f0000000100)=0xfffffffffffffcf8)

1.501118523s ago: executing program 9 (id=5170):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x0, 0x0, &(0x7f0000000000)='GPL\x00'}, 0x94)
request_key(&(0x7f0000001000)='dns_resolver\x00', &(0x7f0000001040)={'syz', 0x2}, &(0x7f0000001080)='\x00', 0x0)
request_key(&(0x7f00000010c0)='dns_resolver\x00', &(0x7f0000001100)={'syz', 0x2}, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
io_uring_setup(0xfc6, &(0x7f0000000180))
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(0xffffffffffffffff, 0x6, 0x21, &(0x7f0000000b00)="86cf8445f4ba1d9f20174688f169e58c", 0x10)
listen(0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x42ba, &(0x7f0000000300)={0x0, 0xf36e, 0x4000, 0x2, 0xfffffffd}, &(0x7f0000000100), &(0x7f0000000140))
pivot_root(0x0, 0x0)

1.260751163s ago: executing program 2 (id=5171):
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x2000, 0x0, 0x3)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB="b80000000201050000000000000000000300000a14001980080002005100000008000200480a000008000c400000000234000e800c000280050001003a0000001400018008000100c21414aa080002000a01010106000340000300000600034000000000080008400000ffff0c000f8008000340000000070800034000000081080002400000ee340800034000000ff208000140000000060800084000000006100016400000000b0000000100000009060012"], 0xb8}, 0x1, 0x0, 0x0, 0x4000800}, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001d40)=ANY=[@ANYBLOB="101300002d00090036bd70000100000004000000cb011180c708605d8a0c9549f671af21be3edd7313f3b3cefa172a8aae2f295cc72b60b26946113d23"], 0x1310}, 0x1, 0x0, 0x0, 0x20000004}, 0x84)
add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
r1 = io_uring_setup(0x194e, &(0x7f0000000a80)={0x0, 0xd3d5, 0x80, 0x5, 0x2b0})
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000280))
ioctl$VHOST_SET_FEATURES(r2, 0x4008af00, &(0x7f0000000080)=0x200000000)
ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000040)=0x1)
ioctl$VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, &(0x7f0000000000)=0x5)
read$FUSE(0xffffffffffffffff, &(0x7f0000002b40)={0x2020}, 0x2020)
read$FUSE(0xffffffffffffffff, &(0x7f0000000b00)={0x2020}, 0x2020)
close_range(r1, 0xffffffffffffffff, 0x0)

998.261098ms ago: executing program 0 (id=5172):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000003c0), 0xfef85154c7902b6e)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
timerfd_create(0x8, 0x80000)
add_key(0x0, 0x0, &(0x7f00000000c0)="f16a1bd26759bbca23b7d526cfd3e3fa52deadccb5ce", 0x16, 0xfffffffffffffffc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={0x0}, 0x18)
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000)
listen(r0, 0x0)
syz_emit_ethernet(0x4a, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x240540c7, 0x0, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000100)='./file1\x00', 0x0, &(0x7f0000000200)=ANY=[@ANYRES32=0x0], 0x11, 0x6ed, &(0x7f00000003c0)="$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")
renameat2(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000100)='./file0/file0\x00', 0x0)

915.891246ms ago: executing program 1 (id=5173):
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file0\x00', 0x880, &(0x7f0000000180)=ANY=[@ANYRES8=0x0, @ANYRES8, @ANYRES64, @ANYRES16=0x0], 0x1, 0x36c, &(0x7f00000022c0)="$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")
socket$inet_tcp(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0xfffffffffffffffe)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000001a40)=""/102392, 0x18ff8)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB], 0x48)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x804051, 0x0, 0x1, 0x0, &(0x7f0000000d40))

429.228893ms ago: executing program 4 (id=5174):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3}}, &(0x7f00000001c0)='syzkaller\x00'}, 0x80)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={r0, r2, 0x25, 0x2, @val=@tcx={@void, @value=r0}}, 0x1c)
syz_emit_ethernet(0x2e, &(0x7f0000000a40)=ANY=[], 0x0)

0s ago: executing program 9 (id=5175):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a, 0x4})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000280)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000140)={0x4c, 0x0, &(0x7f0000000600)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x18, 0x0, &(0x7f0000000240)={0x30, 0x30, 0x30}}, 0x1000}], 0x0, 0x0, 0x0})
r4 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
read$FUSE(r4, 0x0, 0x0)

kernel console output (not intermixed with test programs):

d from eth2
[ 2014.297786][T10875] Bluetooth: hci6: command tx timeout
[ 2015.454153][T21517] chnl_net:caif_netlink_parms(): no params data found
[ 2015.503924][T21427] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 2015.822294][T21549] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 2015.832251][T21549] block device autoloading is deprecated and will be removed.
[ 2016.382696][T10875] Bluetooth: hci6: command tx timeout
[ 2017.488424][T21427] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2017.657413][T21562] Failed to get privilege flags for destination (handle=0x2:0x0)
[ 2017.698996][T21427] 8021q: adding VLAN 0 to HW filter on device team0
[ 2017.792719][ T3957] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2017.800305][ T3957] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2017.990447][ T3957] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2017.997973][ T3957] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2018.457577][T10875] Bluetooth: hci6: command tx timeout
[ 2019.675557][T21566] smc: net device bond0 applied user defined pnetid SYZ2
[ 2020.645686][T21517] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2020.654250][T21517] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2020.668726][T21517] bridge_slave_0: entered allmulticast mode
[ 2020.689599][T21517] bridge_slave_0: entered promiscuous mode
[ 2020.974704][T21434] bond0: (slave syz_tun): Releasing backup interface
[ 2021.051081][T21517] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2021.058966][T21517] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2021.066892][T21517] bridge_slave_1: entered allmulticast mode
[ 2021.081960][T21517] bridge_slave_1: entered promiscuous mode
[ 2021.215689][ T4354] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2022.325358][ T4354] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2025.129481][T21517] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2025.271775][ T4354] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2025.723682][T21517] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2025.925687][ T4354] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2026.074473][T21597] Failed to get privilege flags for destination (handle=0x2:0x0)
[ 2027.126435][T21517] team0: Port device team_slave_0 added
[ 2027.317785][T21517] team0: Port device team_slave_1 added
[ 2029.632026][ T4354] bridge_slave_1: left allmulticast mode
[ 2029.638228][ T4354] bridge_slave_1: left promiscuous mode
[ 2029.644823][ T4354] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2029.878019][ T4354] bridge_slave_0: left allmulticast mode
[ 2029.883989][ T4354] bridge_slave_0: left promiscuous mode
[ 2029.891062][ T4354] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2031.546716][ T4354] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2031.565969][ T4354] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2031.587149][ T4354] bond0 (unregistering): Released all slaves
[ 2031.716110][T21517] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2031.723437][T21517] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2031.755205][T21517] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2031.892256][T21517] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2031.900208][T21517] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2031.926561][T21517] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2032.945987][T21634] Failed to get privilege flags for destination (handle=0x2:0x0)
[ 2033.603353][T21517] hsr_slave_0: entered promiscuous mode
[ 2033.621161][T21517] hsr_slave_1: entered promiscuous mode
[ 2033.630066][T21517] debugfs: 'hsr0' already exists in 'hsr'
[ 2033.635967][T21517] Cannot create hsr debugfs directory
[ 2033.817004][ T4354] hsr_slave_0: left promiscuous mode
[ 2033.859956][ T4354] hsr_slave_1: left promiscuous mode
[ 2033.868795][ T4354] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2033.876342][ T4354] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2033.980880][ T4354] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2033.988751][ T4354] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2034.091403][T21641] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4348'.
[ 2034.113101][ T4354] veth1_macvtap: left promiscuous mode
[ 2034.120833][ T4354] veth0_macvtap: left promiscuous mode
[ 2034.126709][ T4354] veth1_vlan: left promiscuous mode
[ 2034.132572][ T4354] veth0_vlan: left promiscuous mode
[ 2035.913720][ T4354] team0 (unregistering): Port device team_slave_1 removed
[ 2035.948374][ T4354] team0 (unregistering): Port device team_slave_0 removed
[ 2036.487922][T21641] vlan2: entered promiscuous mode
[ 2036.648509][ T4354] IPVS: stop unused estimator thread 0...
[ 2036.824084][T21427] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2037.434527][T21427] veth0_vlan: entered promiscuous mode
[ 2037.546734][T21427] veth1_vlan: entered promiscuous mode
[ 2038.058948][T21427] veth0_macvtap: entered promiscuous mode
[ 2038.795411][T21427] veth1_macvtap: entered promiscuous mode
[ 2038.871926][T21427] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2038.895215][T21427] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2038.949167][T19266] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2038.988559][T19266] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2039.053466][T21517] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 2039.145363][T21660] Failed to get privilege flags for destination (handle=0x2:0x0)
[ 2039.165022][T19266] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2039.208817][T21517] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 2039.302856][T19266] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2039.361196][T21517] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 2039.446853][T21517] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 2041.473319][T21517] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2041.972136][T21517] 8021q: adding VLAN 0 to HW filter on device team0
[ 2042.317508][ T4568] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2042.325010][ T4568] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2042.427884][ T4568] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2042.435391][ T4568] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2042.487688][T21682] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4360'.
[ 2042.516041][T21682] vlan2: entered promiscuous mode
[ 2044.568821][T21698] random: crng reseeded on system resumption
[ 2046.740475][T21708] Failed to get privilege flags for destination (handle=0x2:0x0)
[ 2047.129982][T21517] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2048.051494][T21517] veth0_vlan: entered promiscuous mode
[ 2048.239372][T21517] veth1_vlan: entered promiscuous mode
[ 2048.522832][T21517] veth0_macvtap: entered promiscuous mode
[ 2048.584958][T21517] veth1_macvtap: entered promiscuous mode
[ 2048.752140][T21517] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2048.818440][T21517] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2049.009220][T19316] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2049.088088][T19316] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2049.172922][T19316] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2049.240755][T19316] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2050.819906][T20037] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 2050.831667][T20037] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 2050.863419][T20037] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 2050.880079][T20037] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 2050.892887][T20037] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 2052.977228][T11279] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -110). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[ 2052.998183][T11279] dvb_usb_az6027 10-1:0.0: probe with driver dvb_usb_az6027 failed with error -110
[ 2053.004434][T20466] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[ 2053.025348][T20466] dvb_usb_az6027 2-1:0.0: probe with driver dvb_usb_az6027 failed with error -2
[ 2053.049139][ T5858] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -2). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[ 2053.064840][ T5858] dvb_usb_az6027 7-1:0.0: probe with driver dvb_usb_az6027 failed with error -2
[ 2053.086262][T21698] Restarting kernel threads ...
[ 2053.092424][T21698] Done restarting kernel threads.
[ 2053.179427][T11279] usb 10-1: USB disconnect, device number 7
[ 2053.339206][T21734] Bluetooth: hci5: command tx timeout
[ 2053.589104][ T5858] usb 7-1: USB disconnect, device number 55
[ 2053.601940][T20466] usb 2-1: USB disconnect, device number 74
[ 2053.986677][T21747] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4371'.
[ 2054.015643][T21747] vlan2: entered promiscuous mode
[ 2054.303354][T21728] chnl_net:caif_netlink_parms(): no params data found
[ 2054.764235][T11378] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2055.093925][T11378] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2055.313674][T11378] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2055.425799][T21734] Bluetooth: hci5: command tx timeout
[ 2055.461905][T21756] program syz.6.4373 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 2055.686003][T11378] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2056.559770][T11378] bridge_slave_1: left allmulticast mode
[ 2056.565742][T11378] bridge_slave_1: left promiscuous mode
[ 2056.572585][T11378] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2056.867626][T11378] bridge_slave_0: left allmulticast mode
[ 2056.873584][T11378] bridge_slave_0: left promiscuous mode
[ 2056.880498][T11378] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2057.498452][T21734] Bluetooth: hci5: command tx timeout
[ 2057.619928][T11378] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2057.648691][T11378] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2057.666432][T11378] bond0 (unregistering): Released all slaves
[ 2058.022748][T11378] hsr_slave_0: left promiscuous mode
[ 2058.074567][T11378] hsr_slave_1: left promiscuous mode
[ 2058.083343][T11378] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2058.091173][T11378] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2058.232329][T11378] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2058.240051][T11378] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2058.432349][T11378] veth1_macvtap: left promiscuous mode
[ 2058.438470][T11378] veth0_macvtap: left promiscuous mode
[ 2058.444339][T11378] veth1_vlan: left promiscuous mode
[ 2058.450118][T11378] veth0_vlan: left promiscuous mode
[ 2059.596077][T21734] Bluetooth: hci5: command tx timeout
[ 2060.032656][T11378] team0 (unregistering): Port device team_slave_1 removed
[ 2060.075352][T11378] team0 (unregistering): Port device team_slave_0 removed
[ 2061.281121][T21728] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2061.290321][T21728] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2061.300315][T21728] bridge_slave_0: entered allmulticast mode
[ 2061.310028][T21728] bridge_slave_0: entered promiscuous mode
[ 2061.467884][T21728] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2061.476067][T21728] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2061.484445][T21728] bridge_slave_1: entered allmulticast mode
[ 2061.498297][T21728] bridge_slave_1: entered promiscuous mode
[ 2062.526841][T21728] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2062.619877][T21728] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2063.201183][T17642] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 2063.211842][T17642] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2063.225934][ T4354] netdevsim netdevsim9 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2063.251166][T17642] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2063.306439][T21728] team0: Port device team_slave_0 added
[ 2063.329308][T17642] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2063.342451][T17642] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2063.385005][T21728] team0: Port device team_slave_1 added
[ 2063.458118][ T4354] netdevsim netdevsim9 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2063.825514][T21728] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2063.836659][T21728] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2063.863149][T21728] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2063.924314][ T4354] netdevsim netdevsim9 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2064.006266][T21728] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2064.013668][T21728] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2064.040452][T21728] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2064.082089][ T4354] netdevsim netdevsim9 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2064.087671][T21798] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4382'.
[ 2064.220745][T21798] vlan2: entered promiscuous mode
[ 2064.711556][T21728] hsr_slave_0: entered promiscuous mode
[ 2064.722179][T21728] hsr_slave_1: entered promiscuous mode
[ 2064.731194][T21728] debugfs: 'hsr0' already exists in 'hsr'
[ 2064.737086][T21728] Cannot create hsr debugfs directory
[ 2065.058122][ T4354] bridge_slave_1: left allmulticast mode
[ 2065.063987][ T4354] bridge_slave_1: left promiscuous mode
[ 2065.070906][ T4354] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2065.108695][ T4354] bridge_slave_0: left allmulticast mode
[ 2065.114658][ T4354] bridge_slave_0: left promiscuous mode
[ 2065.127741][ T4354] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2065.418220][T17642] Bluetooth: hci0: command tx timeout
[ 2065.710318][ T4354] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2065.729344][ T4354] bond_slave_0: left promiscuous mode
[ 2065.762639][ T4354] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2065.775474][ T4354] bond_slave_1: left promiscuous mode
[ 2065.788083][ T4354] bond0 (unregistering): Released all slaves
[ 2067.497517][T17642] Bluetooth: hci0: command tx timeout
[ 2067.575889][ T3957] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2067.584319][ T3957] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2067.708962][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[ 2067.826866][ T4354] hsr_slave_0: left promiscuous mode
[ 2067.856343][ T4354] hsr_slave_1: left promiscuous mode
[ 2067.865383][ T4354] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2067.873227][ T4354] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2067.921084][ T4354] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2067.928962][ T4354] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2067.966937][T21825] netlink: 52 bytes leftover after parsing attributes in process `syz.1.4390'.
[ 2067.993257][ T4354] veth1_macvtap: left promiscuous mode
[ 2067.999191][ T4354] veth0_macvtap: left promiscuous mode
[ 2068.005075][ T4354] veth1_vlan: left promiscuous mode
[ 2068.010913][ T4354] veth0_vlan: left promiscuous mode
[ 2068.347594][T21826] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4390'.
[ 2068.356860][T21826] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4390'.
[ 2068.767173][ T4354] team_slave_1 (unregistering): left promiscuous mode
[ 2068.935171][ T4354] team0 (unregistering): Port device team_slave_1 removed
[ 2068.962985][ T4354] team_slave_0 (unregistering): left promiscuous mode
[ 2068.971802][T21734] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 2068.987715][T21734] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 2068.997982][ T4354] team0 (unregistering): Port device team_slave_0 removed
[ 2069.049460][T21734] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 2069.072852][T21734] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 2069.084493][T21734] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 2069.379946][T21832] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4392'.
[ 2069.469395][T21786] chnl_net:caif_netlink_parms(): no params data found
[ 2069.581929][T21734] Bluetooth: hci0: command tx timeout
[ 2069.611015][T21832] vlan2: entered promiscuous mode
[ 2071.184793][T21734] Bluetooth: hci2: command tx timeout
[ 2071.338978][T21829] chnl_net:caif_netlink_parms(): no params data found
[ 2071.376127][T21728] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 2071.455653][T21728] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 2071.580379][T21728] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 2071.688619][T21734] Bluetooth: hci0: command tx timeout
[ 2071.723683][T21728] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 2072.111680][T21786] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2072.119396][T21786] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2072.127543][T21786] bridge_slave_0: entered allmulticast mode
[ 2072.137009][T21786] bridge_slave_0: entered promiscuous mode
[ 2072.279068][T21786] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2072.286605][T21786] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2072.301200][T21786] bridge_slave_1: entered allmulticast mode
[ 2072.314229][T21786] bridge_slave_1: entered promiscuous mode
[ 2072.734240][T21786] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2072.780807][T21786] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2073.258026][T21734] Bluetooth: hci2: command tx timeout
[ 2074.988198][T21786] team0: Port device team_slave_0 added
[ 2075.351973][T21734] Bluetooth: hci2: command tx timeout
[ 2077.273927][ T4076] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2077.375308][T21786] team0: Port device team_slave_1 added
[ 2077.433887][T21734] Bluetooth: hci2: command tx timeout
[ 2077.642676][T21864] netlink: 52 bytes leftover after parsing attributes in process `syz.1.4400'.
[ 2077.716637][T21829] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2077.725226][T21829] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2077.733291][T21829] bridge_slave_0: entered allmulticast mode
[ 2077.743037][T21829] bridge_slave_0: entered promiscuous mode
[ 2077.781916][T21786] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2077.789385][T21786] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2077.815733][T21786] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2077.897973][ T4076] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2077.929022][T21829] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2077.936535][T21829] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2077.944702][T21829] bridge_slave_1: entered allmulticast mode
[ 2077.958663][T21829] bridge_slave_1: entered promiscuous mode
[ 2077.978070][T21864] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4400'.
[ 2077.987231][T21864] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4400'.
[ 2078.020914][T21786] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2078.032012][T21786] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2078.059760][T21786] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2078.100640][ T4076] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2078.341970][ T4076] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2078.563717][T21829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2078.721790][T21829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2078.755698][T21786] hsr_slave_0: entered promiscuous mode
[ 2078.766141][T21786] hsr_slave_1: entered promiscuous mode
[ 2078.774939][T21786] debugfs: 'hsr0' already exists in 'hsr'
[ 2078.781030][T21786] Cannot create hsr debugfs directory
[ 2079.005136][ T4076] bridge_slave_1: left allmulticast mode
[ 2079.011305][ T4076] bridge_slave_1: left promiscuous mode
[ 2079.018115][ T4076] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2079.076809][ T4076] bridge_slave_0: left allmulticast mode
[ 2079.083066][ T4076] bridge_slave_0: left promiscuous mode
[ 2079.089873][ T4076] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2079.704606][ T4076] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2079.756323][ T4076] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2079.803911][ T4076] bond0 (unregistering): Released all slaves
[ 2080.202071][T21829] team0: Port device team_slave_0 added
[ 2080.358714][T21829] team0: Port device team_slave_1 added
[ 2080.580747][   T30] audit: type=1800 audit(1755997134.377:648): pid=21886 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.4407" name="bus" dev="overlay" ino=457 res=0 errno=0
[ 2080.706200][T21728] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2080.768587][T21829] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2080.775842][T21829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2080.806323][T21829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2080.950831][ T4076] hsr_slave_0: left promiscuous mode
[ 2080.967943][ T4076] hsr_slave_1: left promiscuous mode
[ 2080.976222][ T4076] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2080.984535][ T4076] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2081.055751][ T4076] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2081.063642][ T4076] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2081.165981][ T4076] veth1_macvtap: left promiscuous mode
[ 2081.172013][ T4076] veth0_macvtap: left promiscuous mode
[ 2081.178119][ T4076] veth1_vlan: left promiscuous mode
[ 2081.183653][ T4076] veth0_vlan: left promiscuous mode
[ 2082.207674][ T4076] team0 (unregistering): Port device team_slave_1 removed
[ 2082.240421][ T4076] team0 (unregistering): Port device team_slave_0 removed
[ 2082.671275][T21829] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2082.678609][T21829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2082.706296][T21829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2083.207090][T21904] Failed to get privilege flags for destination (handle=0x2:0x0)
[ 2083.287056][T21829] hsr_slave_0: entered promiscuous mode
[ 2083.297721][T21829] hsr_slave_1: entered promiscuous mode
[ 2083.306545][T21829] debugfs: 'hsr0' already exists in 'hsr'
[ 2083.312578][T21829] Cannot create hsr debugfs directory
[ 2083.409440][T21728] 8021q: adding VLAN 0 to HW filter on device team0
[ 2083.674674][T19316] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2083.682296][T19316] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2083.712271][T21908] /dev/nullb0: Can't lookup blockdev
[ 2083.883097][T19316] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2083.890793][T19316] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2083.966615][   T30] audit: type=1800 audit(1755997137.807:649): pid=21911 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.4416" name="bus" dev="overlay" ino=495 res=0 errno=0
[ 2084.612900][T21786] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 2084.730681][T21786] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 2084.864155][T21786] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 2084.928539][T21786] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 2086.470542][T21829] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 2086.511024][T21829] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 2086.592769][T21829] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 2086.676916][T21829] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 2088.835727][T21786] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2089.127998][T21728] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2089.180828][T21786] 8021q: adding VLAN 0 to HW filter on device team0
[ 2089.335591][ T3637] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2089.343188][ T3637] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2089.542471][ T3637] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2089.550147][ T3637] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2090.003702][T21728] veth0_vlan: entered promiscuous mode
[ 2090.217769][T21728] veth1_vlan: entered promiscuous mode
[ 2090.727055][T21829] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2090.826236][T21728] veth0_macvtap: entered promiscuous mode
[ 2090.933345][T21728] veth1_macvtap: entered promiscuous mode
[ 2090.991201][T21829] 8021q: adding VLAN 0 to HW filter on device team0
[ 2091.125299][ T3637] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2091.133051][ T3637] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2091.212757][T21728] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2091.344732][ T3637] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2091.352367][ T3637] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2091.505150][T21728] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2091.608002][ T4076] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2091.618676][ T3957] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2091.629219][T21941] Failed to get privilege flags for destination (handle=0x2:0x0)
[ 2091.686289][ T3957] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2091.824176][ T3957] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2092.627658][T21786] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2093.941040][T21829] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2094.583660][T21829] veth0_vlan: entered promiscuous mode
[ 2094.706721][T21829] veth1_vlan: entered promiscuous mode
[ 2095.059424][T21829] veth0_macvtap: entered promiscuous mode
[ 2095.176621][T21829] veth1_macvtap: entered promiscuous mode
[ 2095.423675][T21829] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2095.530322][T21829] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2095.658763][T11374] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2095.732129][T11374] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2095.793460][T11374] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2095.889350][T11374] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2095.959255][T21786] veth0_vlan: entered promiscuous mode
[ 2096.101833][T21786] veth1_vlan: entered promiscuous mode
[ 2096.405724][T21786] veth0_macvtap: entered promiscuous mode
[ 2096.485913][T21786] veth1_macvtap: entered promiscuous mode
[ 2096.680944][T21786] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2096.706602][T21985] Failed to get privilege flags for destination (handle=0x2:0x0)
[ 2096.790158][T21786] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2096.898511][ T3563] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2096.932379][ T3563] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2096.995641][ T3563] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2097.034526][ T3563] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2097.518848][T21995] overlayfs: failed to resolve './file1': -2
[ 2099.223689][T22022] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4437'.
[ 2099.725502][ T4076] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2099.734231][ T4076] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2099.908563][ T4076] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2099.916785][ T4076] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2100.473206][T22039] fuse: Bad value for 'fd'
[ 2100.973228][T22047] overlayfs: failed to resolve './file1': -2
[ 2103.243790][T22083] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4448'.
[ 2104.326496][T22090] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4449'.
[ 2104.355252][T22090] vlan2: entered promiscuous mode
[ 2104.609465][T22092] fuse: Bad value for 'fd'
[ 2105.675478][T22098] Failed to get privilege flags for destination (handle=0x2:0x0)
[ 2105.932642][T11374] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2105.940957][T11374] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2106.381067][ T3637] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2106.393238][ T3637] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2106.514005][T19316] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2106.522287][T19316] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2106.733098][ T3563] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2106.742607][ T3563] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2106.919001][T22111] binder: BINDER_SET_CONTEXT_MGR already set
[ 2106.925443][T22111] binder: 22104:22111 ioctl 4018620d 2000000002c0 returned -16
[ 2107.011121][T22111] binder: 22104:22111 ioctl c0306201 200000000240 returned -11
[ 2107.584120][   T30] audit: type=1326 audit(1755997161.407:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22104 comm="syz.3.4455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe58d8ebe9 code=0x7fc00000
[ 2110.046366][T22131] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4459'.
[ 2110.080600][T22131] vlan2: entered promiscuous mode
[ 2110.086856][T22131] bond0: entered promiscuous mode
[ 2110.092491][T22131] bond_slave_0: entered promiscuous mode
[ 2110.099528][T22131] bond_slave_1: entered promiscuous mode
[ 2110.153163][T22134] fuse: Bad value for 'fd'
[ 2112.179948][T22142] Failed to get privilege flags for destination (handle=0x2:0x0)
[ 2119.529246][T22169] binder: BINDER_SET_CONTEXT_MGR already set
[ 2119.535392][T22169] binder: 22165:22169 ioctl 4018620d 2000000002c0 returned -16
[ 2119.576868][T22169] binder: 22165:22169 ioctl c0306201 200000000240 returned -11
[ 2120.165235][   T30] audit: type=1326 audit(1755997174.007:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22165 comm="syz.0.4469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8a918ebe9 code=0x7fc00000
[ 2120.819609][T22185] Failed to get privilege flags for destination (handle=0x2:0x0)
[ 2126.041736][T22199] libceph: resolve '400' (ret=-3): failed
[ 2128.529077][T17642] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 2128.549804][T17642] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 2128.575583][T17642] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 2128.592044][T17642] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 2128.604018][T17642] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 2128.847839][T22212] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4483'.
[ 2128.874919][T22212] vlan2: entered promiscuous mode
[ 2129.159422][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[ 2130.111618][T22208] chnl_net:caif_netlink_parms(): no params data found
[ 2130.769913][T17642] Bluetooth: hci3: command tx timeout
[ 2132.950166][T22237] misc userio: Can't change port type on an already running userio instance
[ 2133.121751][T17642] Bluetooth: hci3: command tx timeout
[ 2135.399341][T17642] Bluetooth: hci3: command tx timeout
[ 2136.556516][T22248] random: crng reseeded on system resumption
[ 2137.422845][T17642] Bluetooth: hci3: command tx timeout
[ 2137.755383][T22263] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4497'.
[ 2137.842578][T22263] vlan2: entered promiscuous mode
[ 2137.848304][T22263] bond0: entered promiscuous mode
[ 2137.853530][T22263] bond_slave_0: entered promiscuous mode
[ 2137.860896][T22263] bond_slave_1: entered promiscuous mode
[ 2137.962300][T22208] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2137.970531][T22208] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2137.978839][T22208] bridge_slave_0: entered allmulticast mode
[ 2137.988608][T22208] bridge_slave_0: entered promiscuous mode
[ 2138.402573][T22208] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2138.410589][T22208] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2138.419073][T22208] bridge_slave_1: entered allmulticast mode
[ 2138.429871][T22208] bridge_slave_1: entered promiscuous mode
[ 2138.769758][T22208] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2139.001785][T22208] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2139.606641][T22208] team0: Port device team_slave_0 added
[ 2139.638434][T22208] team0: Port device team_slave_1 added
[ 2139.968051][T22208] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2139.978198][T22208] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2140.009777][T22208] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2140.390974][T19348] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2140.554070][T22208] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2140.561502][T22208] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2140.587927][T22208] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2140.751745][T19348] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2140.972468][T19348] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2141.118577][T22289] random: crng reseeded on system resumption
[ 2143.583424][T19348] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2144.024717][T22208] hsr_slave_0: entered promiscuous mode
[ 2144.035183][T22208] hsr_slave_1: entered promiscuous mode
[ 2144.044121][T22208] debugfs: 'hsr0' already exists in 'hsr'
[ 2144.050196][T22208] Cannot create hsr debugfs directory
[ 2144.868431][T19348] bridge_slave_0: left allmulticast mode
[ 2144.874389][T19348] bridge_slave_0: left promiscuous mode
[ 2144.881382][T19348] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2145.592186][T22307] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4511'.
[ 2145.821322][T19348] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2145.879994][T19348] bond_slave_0: left promiscuous mode
[ 2145.927613][T19348] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2145.965212][T19348] bond_slave_1: left promiscuous mode
[ 2145.976401][T19348] bond0 (unregistering): Released all slaves
[ 2146.357979][T22307] vlan2: entered promiscuous mode
[ 2146.578485][T19348] tipc: Left network mode
[ 2149.345443][T19348] hsr_slave_0: left promiscuous mode
[ 2149.651306][T19348] hsr_slave_1: left promiscuous mode
[ 2149.659683][T19348] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2149.667393][T19348] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2149.750110][T19348] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2149.758533][T19348] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2149.910397][T19348] veth1_macvtap: left promiscuous mode
[ 2149.916239][T19348] veth0_macvtap: left promiscuous mode
[ 2149.922381][T19348] veth1_vlan: left promiscuous mode
[ 2149.928286][T19348] veth0_vlan: left promiscuous mode
[ 2151.535831][T19348] team0 (unregistering): Port device team_slave_1 removed
[ 2151.656071][T19348] team0 (unregistering): Port device team_slave_0 removed
[ 2153.384109][T22208] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 2153.893738][T22208] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 2153.928832][T22208] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 2153.962953][T22208] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 2157.342019][T22208] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2157.994279][T22208] 8021q: adding VLAN 0 to HW filter on device team0
[ 2159.641768][T21734] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 2159.651606][T21734] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 2159.662846][T21734] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 2159.685277][T19316] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2159.692990][T19316] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2159.785843][T21734] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 2159.804155][T21734] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 2159.815347][T19316] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2159.822959][T19316] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2161.898242][T17642] Bluetooth: hci6: command tx timeout
[ 2162.051068][T22377] chnl_net:caif_netlink_parms(): no params data found
[ 2162.304738][T22402] overlayfs: failed to resolve './file0': -2
[ 2162.919642][T22208] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2164.358017][T17642] Bluetooth: hci6: command tx timeout
[ 2165.443336][T22416] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4547'.
[ 2165.848786][ T3637] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2166.120099][ T3637] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2166.378877][T21734] Bluetooth: hci6: command tx timeout
[ 2166.427466][T22377] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2166.434998][T22377] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2166.443182][T22377] bridge_slave_0: entered allmulticast mode
[ 2166.453074][T22377] bridge_slave_0: entered promiscuous mode
[ 2166.516799][T22426] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4549'.
[ 2166.533934][ T3637] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2167.227746][T22426] vlan2: entered promiscuous mode
[ 2167.232987][T22426] bond0: entered promiscuous mode
[ 2167.238432][T22426] bond_slave_0: entered promiscuous mode
[ 2167.245264][T22426] bond_slave_1: entered promiscuous mode
[ 2168.244823][T22377] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2168.255898][T22377] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2168.265903][T22377] bridge_slave_1: entered allmulticast mode
[ 2168.278339][T22377] bridge_slave_1: entered promiscuous mode
[ 2168.324241][ T3637] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2169.127527][T21734] Bluetooth: hci6: command tx timeout
[ 2169.330383][T22377] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2169.483861][T22377] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2169.637497][T22439] overlayfs: failed to resolve './file0': -2
[ 2170.005785][ T3637] bridge_slave_1: left allmulticast mode
[ 2170.011818][ T3637] bridge_slave_1: left promiscuous mode
[ 2170.018864][ T3637] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2170.130064][ T3637] bridge_slave_0: left allmulticast mode
[ 2170.136150][ T3637] bridge_slave_0: left promiscuous mode
[ 2170.143832][ T3637] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2172.968008][T21602] usb 4-1: new high-speed USB device number 105 using dummy_hcd
[ 2173.063661][ T3637] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2173.121026][ T3637] bond_slave_0: left promiscuous mode
[ 2173.144589][T21602] usb 4-1: Using ep0 maxpacket: 8
[ 2173.165611][T21602] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2173.176707][T21602] usb 4-1: config 0 has no interfaces?
[ 2173.189494][ T3637] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2173.202671][ T3637] bond_slave_1: left promiscuous mode
[ 2173.213835][ T3637] bond0 (unregistering): Released all slaves
[ 2173.234694][T21602] usb 4-1: New USB device found, idVendor=eb1a, idProduct=e357, bcdDevice=85.86
[ 2173.244765][T21602] usb 4-1: New USB device strings: Mfr=1, Product=0, SerialNumber=3
[ 2173.253291][T21602] usb 4-1: Manufacturer: syz
[ 2173.262891][T21602] usb 4-1: SerialNumber: syz
[ 2173.316295][T21602] usb 4-1: config 0 descriptor??
[ 2174.004686][T21602] usb 4-1: USB disconnect, device number 105
[ 2174.009407][T22377] team0: Port device team_slave_0 added
[ 2174.262081][T22377] team0: Port device team_slave_1 added
[ 2174.964334][T22377] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2174.971597][T22377] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2175.002791][T22377] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2175.133590][T22477] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4563'.
[ 2175.160817][T22477] vlan2: entered promiscuous mode
[ 2176.454286][T22377] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2176.462315][T22377] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2176.488751][T22377] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2176.593679][T22208] veth0_vlan: entered promiscuous mode
[ 2176.954464][T22208] veth1_vlan: entered promiscuous mode
[ 2177.070440][ T3637] hsr_slave_0: left promiscuous mode
[ 2177.108862][ T3637] hsr_slave_1: left promiscuous mode
[ 2177.116967][ T3637] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2177.125078][ T3637] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2177.202795][ T3637] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2177.210724][ T3637] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2177.323742][ T3637] veth1_macvtap: left promiscuous mode
[ 2177.330764][ T3637] veth0_macvtap: left promiscuous mode
[ 2177.336751][ T3637] veth1_vlan: left promiscuous mode
[ 2177.342697][ T3637] veth0_vlan: left promiscuous mode
[ 2177.365172][T17642] Bluetooth: hci5: command 0x0406 tx timeout
[ 2179.545421][ T3637] team0 (unregistering): Port device team_slave_1 removed
[ 2179.719038][ T3637] team0 (unregistering): Port device team_slave_0 removed
[ 2181.340865][T22377] hsr_slave_0: entered promiscuous mode
[ 2181.355408][T22377] hsr_slave_1: entered promiscuous mode
[ 2182.022104][T22208] veth0_macvtap: entered promiscuous mode
[ 2182.116005][T22510] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4574'.
[ 2182.143257][T22510] vlan2: entered promiscuous mode
[ 2182.351786][T22208] veth1_macvtap: entered promiscuous mode
[ 2182.909239][T22208] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2183.398064][T22208] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2183.575110][ T4568] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2183.673914][ T4568] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2185.789272][ T4568] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2185.809613][ T4568] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2186.093536][T22377] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 2186.229258][T22377] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 2186.373021][T22377] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 2186.550446][T22377] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 2187.577964][T20037] Bluetooth: hci0: command 0x0406 tx timeout
[ 2189.035534][T22547] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4583'.
[ 2189.059193][T22547] tipc: Started in network mode
[ 2189.064331][T22547] tipc: Node identity 7f000001, cluster identity 4711
[ 2189.074264][T22547] tipc: New replicast peer: 255.255.255.255
[ 2189.081948][T22547] tipc: Enabled bearer <udp:syz2>, priority 10
[ 2189.488623][T22549] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4584'.
[ 2189.516419][T22549] vlan2: entered promiscuous mode
[ 2190.161065][T22377] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2190.421688][ T5858] tipc: Node number set to 2130706433
[ 2190.636532][T22377] 8021q: adding VLAN 0 to HW filter on device team0
[ 2190.690326][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[ 2190.816630][T19348] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2190.824271][T19348] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2191.068836][T19348] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2191.076405][T19348] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2191.288206][T17642] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 2191.319179][T17642] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 2191.351390][T17642] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 2191.372722][T17642] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 2191.396626][T17642] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 2192.415112][T22567] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4590'.
[ 2192.697795][T21734] Bluetooth: hci2: command 0x0406 tx timeout
[ 2193.498244][T21734] Bluetooth: hci4: command tx timeout
[ 2194.470729][T22377] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2195.580907][T17642] Bluetooth: hci4: command tx timeout
[ 2196.160392][T22590] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4595'.
[ 2196.188001][T22590] vlan2: entered promiscuous mode
[ 2196.548650][T22557] chnl_net:caif_netlink_parms(): no params data found
[ 2196.744702][ T3637] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2197.092907][ T3637] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2197.373770][ T3637] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2197.634905][ T3637] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2197.658305][T17642] Bluetooth: hci4: command tx timeout
[ 2199.939063][T17642] Bluetooth: hci4: command tx timeout
[ 2199.945462][ T3637] bridge_slave_1: left allmulticast mode
[ 2199.951500][ T3637] bridge_slave_1: left promiscuous mode
[ 2199.958220][ T3637] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2199.993394][ T3637] bridge_slave_0: left allmulticast mode
[ 2199.999457][ T3637] bridge_slave_0: left promiscuous mode
[ 2200.005667][ T3637] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2202.887159][T22626] kAFS: No cell specified
[ 2203.041573][ T3637] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2203.114890][ T3637] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2203.203899][ T3637] bond0 (unregistering): Released all slaves
[ 2203.723427][ T3637] hsr_slave_0: left promiscuous mode
[ 2203.778268][ T3637] hsr_slave_1: left promiscuous mode
[ 2203.786433][ T3637] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2203.794334][ T3637] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2203.888072][ T3637] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2203.895660][ T3637] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2204.059983][ T3637] veth1_macvtap: left promiscuous mode
[ 2204.065752][ T3637] veth0_macvtap: left promiscuous mode
[ 2204.071902][ T3637] veth1_vlan: left promiscuous mode
[ 2204.080818][ T3637] veth0_vlan: left promiscuous mode
[ 2204.251287][T22631] overlayfs: failed to resolve './file0': -2
[ 2205.679725][ T3637] team0 (unregistering): Port device team_slave_1 removed
[ 2205.809683][ T3637] team0 (unregistering): Port device team_slave_0 removed
[ 2206.484583][T22377] veth0_vlan: entered promiscuous mode
[ 2206.573098][T22557] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2206.580748][T22557] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2206.588879][T22557] bridge_slave_0: entered allmulticast mode
[ 2206.598579][T22557] bridge_slave_0: entered promiscuous mode
[ 2206.644379][T22557] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2206.652553][T22557] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2206.660889][T22557] bridge_slave_1: entered allmulticast mode
[ 2206.670694][T22557] bridge_slave_1: entered promiscuous mode
[ 2206.780816][T22377] veth1_vlan: entered promiscuous mode
[ 2207.284832][T22557] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2207.421354][T22557] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2207.846036][T22557] team0: Port device team_slave_0 added
[ 2207.869813][T22377] veth0_macvtap: entered promiscuous mode
[ 2207.961826][T22377] veth1_macvtap: entered promiscuous mode
[ 2207.998744][T22557] team0: Port device team_slave_1 added
[ 2208.842916][T22557] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2208.850164][T22557] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2208.876638][T22557] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2210.020641][T22377] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2210.460600][T22377] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2210.512142][T22557] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2210.519408][T22557] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2210.548862][T22557] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2210.564317][T11378] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2210.601227][T11378] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2210.680474][T11378] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2210.750394][T11378] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2210.993836][T22649] kAFS: No cell specified
[ 2211.523068][T22557] hsr_slave_0: entered promiscuous mode
[ 2211.533651][T22557] hsr_slave_1: entered promiscuous mode
[ 2211.541874][T22557] debugfs: 'hsr0' already exists in 'hsr'
[ 2211.547823][T22557] Cannot create hsr debugfs directory
[ 2212.499049][T17642] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 2212.509298][T17642] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 2212.538446][T17642] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 2212.560740][T17642] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 2212.572467][T17642] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 2212.941732][T22661] overlayfs: failed to resolve './file0': -2
[ 2214.443673][T22557] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 2214.479024][T22557] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 2214.601804][T22557] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 2214.697885][T17642] Bluetooth: hci3: command tx timeout
[ 2214.705597][T22557] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 2215.040575][T22658] chnl_net:caif_netlink_parms(): no params data found
[ 2215.598211][ T4568] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2215.773821][ T4568] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2215.958565][ T4568] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2216.193527][ T4568] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2216.808365][T17642] Bluetooth: hci3: command tx timeout
[ 2217.131200][ T4568] bridge_slave_1: left allmulticast mode
[ 2217.137060][ T4568] bridge_slave_1: left promiscuous mode
[ 2217.143848][ T4568] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2217.293292][ T4568] bridge_slave_0: left allmulticast mode
[ 2217.300161][ T4568] bridge_slave_0: left promiscuous mode
[ 2217.306757][ T4568] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2217.350627][T22700] kAFS: No cell specified
[ 2218.120099][ T4568] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2218.158618][T21734] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 2218.169308][ T4568] bond_slave_0: left promiscuous mode
[ 2218.169828][T22702] fuse: Bad value for 'group_id'
[ 2218.180298][T22702] fuse: Bad value for 'group_id'
[ 2218.193257][ T4568] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2218.203223][T21734] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 2218.219667][ T4568] bond_slave_1: left promiscuous mode
[ 2218.230783][ T4568] bond0 (unregistering): Released all slaves
[ 2218.250028][T21734] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 2218.267942][T22658] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2218.275471][T22658] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2218.283487][T22658] bridge_slave_0: entered allmulticast mode
[ 2218.294093][T22658] bridge_slave_0: entered promiscuous mode
[ 2218.393489][T21734] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 2218.404886][T22658] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2218.416561][T22658] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2218.424736][T22658] bridge_slave_1: entered allmulticast mode
[ 2218.434634][T22658] bridge_slave_1: entered promiscuous mode
[ 2218.484284][T21734] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 2218.522332][ T4568] tipc: Disabling bearer <udp:syz2>
[ 2218.528748][ T4568] tipc: Left network mode
[ 2218.711097][T22658] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2218.858583][T21734] Bluetooth: hci3: command tx timeout
[ 2218.876995][T22557] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2218.896520][T22658] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2219.350652][T22658] team0: Port device team_slave_0 added
[ 2219.482299][T22557] 8021q: adding VLAN 0 to HW filter on device team0
[ 2219.566125][ T4568] hsr_slave_0: left promiscuous mode
[ 2219.617376][ T4568] hsr_slave_1: left promiscuous mode
[ 2219.625476][ T4568] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2219.633454][ T4568] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2219.708730][ T4568] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2219.716316][ T4568] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2219.814194][ T4568] veth1_macvtap: left promiscuous mode
[ 2219.821795][ T4568] veth0_macvtap: left promiscuous mode
[ 2219.827859][ T4568] veth1_vlan: left promiscuous mode
[ 2219.833512][ T4568] veth0_vlan: left promiscuous mode
[ 2220.620967][T21734] Bluetooth: hci5: command tx timeout
[ 2220.688939][T22710] overlayfs: failed to resolve './file0': -2
[ 2220.721178][ T4568] team0 (unregistering): Port device team_slave_1 removed
[ 2220.750338][ T4568] team0 (unregistering): Port device team_slave_0 removed
[ 2220.945402][T21734] Bluetooth: hci3: command tx timeout
[ 2220.994029][T22658] team0: Port device team_slave_1 added
[ 2221.415903][T11378] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2221.423715][T11378] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2221.672366][T22658] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2221.679769][T22658] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2221.708209][T22658] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2221.871150][T22658] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2221.878539][T22658] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2221.908226][T22658] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2222.023152][ T3957] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2222.031352][ T3957] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2222.415121][ T4568] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2222.478731][T22658] hsr_slave_0: entered promiscuous mode
[ 2222.489317][T22658] hsr_slave_1: entered promiscuous mode
[ 2222.498321][T22658] debugfs: 'hsr0' already exists in 'hsr'
[ 2222.504407][T22658] Cannot create hsr debugfs directory
[ 2222.629577][ T4568] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2222.704698][T21734] Bluetooth: hci5: command tx timeout
[ 2222.788009][T22703] chnl_net:caif_netlink_parms(): no params data found
[ 2222.891461][ T4568] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2223.169137][ T4568] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2223.992115][ T4568] bridge_slave_1: left allmulticast mode
[ 2223.998437][ T4568] bridge_slave_1: left promiscuous mode
[ 2224.005125][ T4568] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2224.043371][ T4568] bridge_slave_0: left allmulticast mode
[ 2224.052123][ T4568] bridge_slave_0: left promiscuous mode
[ 2224.060113][ T4568] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2224.715956][ T4568] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2224.778138][T21734] Bluetooth: hci5: command tx timeout
[ 2224.787496][ T4568] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2224.816920][ T4568] bond0 (unregistering): Released all slaves
[ 2225.251287][ T4568] hsr_slave_0: left promiscuous mode
[ 2225.284311][ T4568] hsr_slave_1: left promiscuous mode
[ 2225.294907][ T4568] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2225.302667][ T4568] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2225.352071][ T4568] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2225.359805][ T4568] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2225.471182][ T4568] veth1_macvtap: left promiscuous mode
[ 2225.476926][ T4568] veth0_macvtap: left promiscuous mode
[ 2225.485136][ T4568] veth1_vlan: left promiscuous mode
[ 2225.490835][ T4568] veth0_vlan: left promiscuous mode
[ 2225.530954][T22732] fuse: Bad value for 'group_id'
[ 2225.536102][T22732] fuse: Bad value for 'group_id'
[ 2226.375289][ T4568] team0 (unregistering): Port device team_slave_1 removed
[ 2226.416302][ T4568] team0 (unregistering): Port device team_slave_0 removed
[ 2226.898138][T21734] Bluetooth: hci5: command tx timeout
[ 2227.103579][T22557] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2227.616683][T22658] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 2227.675319][T22703] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2227.683349][T22703] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2227.691474][T22703] bridge_slave_0: entered allmulticast mode
[ 2227.701453][T22703] bridge_slave_0: entered promiscuous mode
[ 2227.741660][T20119] usb 6-1: new full-speed USB device number 92 using dummy_hcd
[ 2227.762927][T22658] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 2227.824200][T22703] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2227.836086][T22703] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2227.844120][T22703] bridge_slave_1: entered allmulticast mode
[ 2227.854012][T22703] bridge_slave_1: entered promiscuous mode
[ 2227.873784][T22658] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 2227.943618][T22658] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 2227.960757][T20119] usb 6-1: config 0 has no interfaces?
[ 2227.966502][T20119] usb 6-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[ 2227.976420][T20119] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2228.049416][T20119] usb 6-1: config 0 descriptor??
[ 2228.279059][T21602] usb 6-1: USB disconnect, device number 92
[ 2228.358383][T22703] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2228.422592][T22703] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2228.774968][T22703] team0: Port device team_slave_0 added
[ 2228.850868][T22703] team0: Port device team_slave_1 added
[ 2229.178235][T22703] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2229.185460][T22703] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2229.213116][T22703] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2229.323541][T22703] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2229.330791][T22703] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2229.357489][T22703] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2229.561018][T22658] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2229.940421][T22703] hsr_slave_0: entered promiscuous mode
[ 2229.950967][T22703] hsr_slave_1: entered promiscuous mode
[ 2229.986824][T22557] veth0_vlan: entered promiscuous mode
[ 2230.185736][T22658] 8021q: adding VLAN 0 to HW filter on device team0
[ 2230.458777][T22557] veth1_vlan: entered promiscuous mode
[ 2230.517680][T11378] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2230.525189][T11378] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2230.541668][T11378] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2230.549266][T11378] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2231.134366][T22557] veth0_macvtap: entered promiscuous mode
[ 2231.234915][T22557] veth1_macvtap: entered promiscuous mode
[ 2231.668679][T22557] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2231.912232][T22557] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2232.036433][ T4568] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2232.118529][ T4568] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2232.267004][ T4568] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2232.277027][ T4568] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2232.454361][T22703] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 2232.555446][T22703] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 2232.676971][T22703] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 2232.719414][T22772] fuse: Bad value for 'group_id'
[ 2232.724567][T22772] fuse: Bad value for 'group_id'
[ 2232.779688][T22703] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 2233.320704][T22658] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2234.166869][T22703] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2234.378747][T22703] 8021q: adding VLAN 0 to HW filter on device team0
[ 2234.492787][ T4568] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2234.500405][ T4568] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2234.629670][ T4568] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2234.637356][ T4568] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2236.040751][T22658] veth0_vlan: entered promiscuous mode
[ 2236.255441][T22658] veth1_vlan: entered promiscuous mode
[ 2236.557562][T22658] veth0_macvtap: entered promiscuous mode
[ 2236.663219][T22658] veth1_macvtap: entered promiscuous mode
[ 2236.853611][T22658] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2236.960868][T22658] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2237.072460][ T4354] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2237.141530][T19266] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2237.209350][T19266] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2237.276021][T19266] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2237.364895][T22703] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2238.471799][T22822] vivid-000: =================  START STATUS  =================
[ 2238.479719][T22822] vivid-000: Test Pattern: 75% Colorbar
[ 2238.486576][T22822] vivid-000: Fill Percentage of Frame: 100
[ 2238.493332][T22822] vivid-000: Horizontal Movement: No Movement
[ 2238.499894][T22822] vivid-000: Vertical Movement: No Movement
[ 2238.506075][T22822] vivid-000: OSD Text Mode: All
[ 2238.511425][T22822] vivid-000: Show Border: false
[ 2238.516563][T22822] vivid-000: Show Square: false
[ 2238.522855][T22822] vivid-000: Sensor Flipped Horizontally: false
[ 2238.530633][T22822] vivid-000: Sensor Flipped Vertically: false
[ 2238.537000][T22822] vivid-000: Insert SAV Code in Image: false
[ 2238.544300][T22822] vivid-000: Insert EAV Code in Image: false
[ 2238.551705][T22822] vivid-000: Insert Video Guard Band: false
[ 2238.558298][T22822] vivid-000: Reduced Framerate: false
[ 2238.563951][T22822] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator
[ 2238.572084][T22822] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[ 2238.580429][T22822] vivid-000: Enable Capture Cropping: true grabbed
[ 2238.589049][T22822] vivid-000: Enable Capture Composing: true grabbed
[ 2238.595856][T22822] vivid-000: Enable Capture Scaler: true grabbed
[ 2238.603145][T22822] vivid-000: Timestamp Source: End of Frame
[ 2238.609410][T22822] vivid-000: Colorspace: sRGB
[ 2238.614239][T22822] vivid-000: Transfer Function: Default
[ 2238.620175][T22822] vivid-000: Y'CbCr Encoding: Default
[ 2238.625709][T22822] vivid-000: HSV Encoding: Hue 0-179
[ 2238.631218][T22822] vivid-000: Quantization: Default
[ 2238.636484][T22822] vivid-000: Apply Alpha To Red Only: false
[ 2238.642713][T22822] vivid-000: Standard Aspect Ratio: 4x3
[ 2238.648492][T22822] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[ 2238.656491][T22822] vivid-000: DV Timings: 640x480p59 inactive
[ 2238.662762][T22822] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[ 2238.670341][T22822] vivid-000: Maximum EDID Blocks: 2
[ 2238.675693][T22822] vivid-000: Limited RGB Range (16-235): false
[ 2238.682130][T22822] vivid-000: Rx RGB Quantization Range: Automatic
[ 2238.690241][T22822] vivid-000: Power Present: 0x00000001
[ 2238.695885][T22822] tpg source WxH: 320x180 (R'G'B)
[ 2238.701458][T22822] tpg field: 1
[ 2238.704902][T22822] tpg crop: (0,0)/320x180
[ 2238.709409][T22822] tpg compose: (0,0)/320x180
[ 2238.714077][T22822] tpg colorspace: 8
[ 2238.718072][T22822] tpg transfer function: 0/2
[ 2238.722781][T22822] tpg quantization: 0/1
[ 2238.727013][T22822] tpg RGB range: 0/2
[ 2238.731079][T22822] vivid-000: ==================  END STATUS  ==================
[ 2239.988474][ T3957] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2239.996621][ T3957] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2240.320896][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2240.331286][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2240.596471][T22703] veth0_vlan: entered promiscuous mode
[ 2240.765435][T22703] veth1_vlan: entered promiscuous mode
[ 2241.158304][T22703] veth0_macvtap: entered promiscuous mode
[ 2241.228326][T22703] veth1_macvtap: entered promiscuous mode
[ 2241.440420][T22703] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2241.503800][T22703] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2241.625495][T19266] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2241.721007][T19266] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2241.808796][T19266] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2241.879650][T19266] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2243.256789][T22861] sit1: entered promiscuous mode
[ 2244.366212][T22874] overlayfs: failed to resolve './file1': -2
[ 2245.211564][T22882] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4653'.
[ 2245.820328][ T4568] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2245.828579][ T4568] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2246.216287][T19266] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2246.227750][T19266] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2249.382421][T22903] loop8: detected capacity change from 0 to 5
[ 2249.760941][T22837] Buffer I/O error on dev loop8, logical block 0, async page read
[ 2250.035878][T22837] Buffer I/O error on dev loop8, logical block 0, async page read
[ 2250.143194][T22837] Buffer I/O error on dev loop8, logical block 0, async page read
[ 2250.213372][T22837] Buffer I/O error on dev loop8, logical block 0, async page read
[ 2250.290097][T22837] Buffer I/O error on dev loop8, logical block 0, async page read
[ 2250.387097][T22837] Buffer I/O error on dev loop8, logical block 0, async page read
[ 2250.399413][T22837] Buffer I/O error on dev loop8, logical block 0, async page read
[ 2250.559239][T22837] Buffer I/O error on dev loop8, logical block 0, async page read
[ 2250.675239][T22837] Buffer I/O error on dev loop8, logical block 0, async page read
[ 2250.705472][T22837] Buffer I/O error on dev loop8, logical block 0, async page read
[ 2251.008851][T22923] overlayfs: failed to resolve './file1': -2
[ 2251.889850][T22929] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4663'.
[ 2252.013267][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[ 2252.809969][T19316] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2252.820138][T19316] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2253.329404][T19316] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2253.345375][T19316] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2257.016469][T22954] overlayfs: failed to resolve './file1': -2
[ 2257.950792][T22960] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4674'.
[ 2260.972680][T22979] binder: 22977:22979 ioctl c0306201 200000000240 returned -11
[ 2261.390533][   T30] audit: type=1326 audit(1755997315.217:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22977 comm="syz.5.4682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa1f58ebe9 code=0x7fc00000
[ 2261.763736][T22988] binder: 22987:22988 ioctl 4018620d 0 returned -22
[ 2265.291385][T23027] binder: 23024:23027 ioctl c0306201 200000000240 returned -11
[ 2265.374012][T23028] binder: 23026:23028 ioctl 4018620d 0 returned -22
[ 2265.845665][   T30] audit: type=1326 audit(1755997319.687:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23024 comm="syz.8.4697" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f302498ebe9 code=0x7fc00000
[ 2266.138667][T23032] bridge_slave_0: left allmulticast mode
[ 2266.144767][T23032] bridge_slave_0: left promiscuous mode
[ 2266.151488][T23032] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2266.259872][T23032] bridge_slave_1: left allmulticast mode
[ 2266.265752][T23032] bridge_slave_1: left promiscuous mode
[ 2266.272608][T23032] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2266.309009][T23032] bond0: (slave bond_slave_0): Releasing backup interface
[ 2266.350748][T23032] bond0: (slave bond_slave_1): Releasing backup interface
[ 2266.421198][T23037] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4702'.
[ 2266.522771][T23033] netlink: 'syz.7.4701': attribute type 10 has an invalid length.
[ 2266.612008][T23042] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4701'.
[ 2266.692042][T23032] team0: Port device team_slave_0 removed
[ 2266.831808][T23032] team0: Port device team_slave_1 removed
[ 2266.843141][T23032] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2266.858438][T23032] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2266.962067][T23032] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2266.969818][T23032] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2267.269190][T23033] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2267.282054][T23033] team0: Port device bond0 added
[ 2267.643960][T23042] team0 (unregistering): Port device bond0 removed
[ 2270.072050][T23062] netlink: 1624 bytes leftover after parsing attributes in process `syz.5.4713'.
[ 2270.756308][T23068] binder: 23064:23068 ioctl c0306201 200000000240 returned -11
[ 2270.955316][T23070] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4716'.
[ 2271.228284][   T30] audit: type=1326 audit(1755997325.067:654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23064 comm="syz.4.4714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff14f8ebe9 code=0x7fc00000
[ 2271.832154][T23074] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4717'.
[ 2275.486948][T23091] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 2275.496003][T23091] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 2276.309520][T23096] netlink: 1624 bytes leftover after parsing attributes in process `syz.4.4726'.
[ 2277.339967][   T30] audit: type=1326 audit(1755997331.177:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23098 comm="syz.0.4728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8a918ebe9 code=0x7fc00000
[ 2283.823874][   T30] audit: type=1326 audit(1755997337.667:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23150 comm="syz.0.4744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8a918ebe9 code=0x7fc00000
[ 2292.227488][ T5944] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[ 2292.437965][ T5944] usb 9-1: Using ep0 maxpacket: 8
[ 2292.486684][ T5944] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 2292.496773][ T5944] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 2292.506802][ T5944] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 2292.516905][ T5944] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 2292.530114][ T5944] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 2292.539418][ T5944] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2293.261022][ T5944] usb 9-1: GET_CAPABILITIES returned 2f
[ 2293.271833][ T5944] usbtmc 9-1:16.0: can't read capabilities
[ 2293.302519][T23195] netlink: 112 bytes leftover after parsing attributes in process `syz.0.4760'.
[ 2294.602742][ T5944] usb 9-1: USB disconnect, device number 2
[ 2295.838467][T23210] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4766'.
[ 2296.612344][T23219] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4769'.
[ 2300.272263][T23240] sctp: [Deprecated]: syz.7.4773 (pid 23240) Use of int in maxseg socket option.
[ 2300.272263][T23240] Use struct sctp_assoc_value instead
[ 2301.890709][T23252] 9pnet_fd: Insufficient options for proto=fd
[ 2302.435648][T23245] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2302.442600][T23245] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 2302.502265][T23245] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 2302.508594][T23245] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 2302.539276][T21734] Bluetooth: hci0: command 0x0406 tx timeout
[ 2302.580343][T23245] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2302.591801][T23245] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 2302.608102][T23245] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 2302.651884][T23245] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2302.658480][T23245] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 2302.702873][T23245] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 2302.774761][T23260] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4781'.
[ 2302.821944][T23245] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 2302.828407][T23245] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 2302.862513][T23245] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 2303.968759][T23265] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4783'.
[ 2304.537988][T21734] Bluetooth: hci2: command 0x0406 tx timeout
[ 2304.617581][T21734] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2304.623816][T21734] Bluetooth: hci0: command 0x0406 tx timeout
[ 2304.697449][T17642] Bluetooth: hci3: command 0x0c1a tx timeout
[ 2304.857652][T17642] Bluetooth: hci5: command 0x0c1a tx timeout
[ 2306.120964][T23283] netlink: 68 bytes leftover after parsing attributes in process `syz.0.4788'.
[ 2306.590108][T23287] 9pnet_fd: Insufficient options for proto=fd
[ 2306.643903][T17642] Bluetooth: hci2: command 0x0406 tx timeout
[ 2306.698736][T17642] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2306.777866][T17642] Bluetooth: hci3: command 0x0c1a tx timeout
[ 2306.939344][T17642] Bluetooth: hci5: command 0x0c1a tx timeout
[ 2307.661615][T23298] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4795'.
[ 2308.818295][T17642] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2308.867436][T17642] Bluetooth: hci3: command 0x0c1a tx timeout
[ 2309.041698][T17642] Bluetooth: hci5: command 0x0c1a tx timeout
[ 2310.956805][T23321] 9pnet_fd: Insufficient options for proto=fd
[ 2312.988780][T23333] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4809'.
[ 2313.451304][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[ 2313.635503][T23341] binder: 23340:23341 ioctl 4018620d 2000000002c0 returned -22
[ 2313.714696][T23341] binder: 23340:23341 ioctl c0306201 2000000003c0 returned -14
[ 2313.766791][T23341] binder: 23340:23341 ioctl c0306201 2000000001c0 returned -14
[ 2313.836727][T23345] binder: 23340:23345 ioctl c0306201 200000000240 returned -14
[ 2313.896476][T23341] binder: 23340:23341 ioctl c0306201 200000000300 returned -14
[ 2314.565245][T23353] 9pnet_fd: Insufficient options for proto=fd
[ 2316.639319][T23368] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4823'.
[ 2318.509821][T23393] 9pnet_fd: Insufficient options for proto=fd
[ 2320.348530][T23407] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4837'.
[ 2320.660283][ T5858] usb 6-1: new high-speed USB device number 93 using dummy_hcd
[ 2320.828496][ T5858] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[ 2320.837730][ T5858] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2320.953487][ T5858] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[ 2320.963247][ T5858] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[ 2320.971671][ T5858] usb 6-1: Manufacturer: syz
[ 2321.100363][ T5858] usb 6-1: config 0 descriptor??
[ 2321.687483][ T5858] rc_core: IR keymap rc-hauppauge not found
[ 2321.693591][ T5858] Registered IR keymap rc-empty
[ 2321.703337][ T5858] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0
[ 2321.717790][ T5858] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0/input28
[ 2321.818429][T23424] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2321.828654][T23424] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2321.978100][    C1] igorplugusb 6-1:0.0: Error: urb status = -32
[ 2323.076550][T23427] netlink: 'syz.7.4843': attribute type 10 has an invalid length.
[ 2323.129230][T23440] netlink: 32 bytes leftover after parsing attributes in process `syz.8.4846'.
[ 2323.175540][T23441] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4843'.
[ 2323.706333][T11279] usb 6-1: USB disconnect, device number 93
[ 2324.369117][T23448] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4848'.
[ 2324.401206][T23448] vlan2: entered promiscuous mode
[ 2324.406449][T23448] team0: entered promiscuous mode
[ 2324.412171][T23448] team_slave_0: entered promiscuous mode
[ 2324.419248][T23448] team_slave_1: entered promiscuous mode
[ 2327.039150][T23458] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4852'.
[ 2328.572280][T23468] netlink: 32 bytes leftover after parsing attributes in process `syz.5.4857'.
[ 2328.980093][T23472] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4859'.
[ 2329.015694][T23472] vlan2: entered promiscuous mode
[ 2329.022128][T23472] team0: entered promiscuous mode
[ 2329.027490][T23472] team_slave_0: entered promiscuous mode
[ 2329.034393][T23472] team_slave_1: entered promiscuous mode
[ 2330.380797][T23477] bridge_slave_0: left allmulticast mode
[ 2330.386672][T23477] bridge_slave_0: left promiscuous mode
[ 2330.393582][T23477] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2330.690914][T23483] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4861'.
[ 2330.837993][T23477] bridge_slave_1: left allmulticast mode
[ 2330.844038][T23477] bridge_slave_1: left promiscuous mode
[ 2330.855248][T23477] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2330.973672][T23477] bond0: (slave bond_slave_0): Releasing backup interface
[ 2331.019353][T23477] bond_slave_0: left promiscuous mode
[ 2331.114523][T23477] bond0: (slave bond_slave_1): Releasing backup interface
[ 2331.179444][T23477] bond_slave_1: left promiscuous mode
[ 2331.192478][T23477] team_slave_0: left promiscuous mode
[ 2331.331946][T23477] team0: Port device team_slave_0 removed
[ 2331.343590][T23477] team_slave_1: left promiscuous mode
[ 2331.452813][T23477] team0: Port device team_slave_1 removed
[ 2331.472005][T23477] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2331.479757][T23477] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2331.606102][T23477] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2331.613948][T23477] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2333.445102][T23502] trusted_key: encrypted_key: master key parameter 'user' is invalid
[ 2334.383159][T23508] netlink: 32 bytes leftover after parsing attributes in process `syz.4.4871'.
[ 2334.413604][T23506] tipc: Started in network mode
[ 2334.419125][T23506] tipc: Node identity 4e00ba5cf5ef, cluster identity 4711
[ 2334.427511][T23506] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 2334.550478][T23506] syzkaller0: entered promiscuous mode
[ 2334.556170][T23506] syzkaller0: entered allmulticast mode
[ 2334.853454][T23506] tipc: Resetting bearer <eth:syzkaller0>
[ 2334.918662][T23505] tipc: Resetting bearer <eth:syzkaller0>
[ 2334.990739][T23505] tipc: Disabling bearer <eth:syzkaller0>
[ 2338.259720][T23527] bridge_slave_0: left allmulticast mode
[ 2338.265601][T23527] bridge_slave_0: left promiscuous mode
[ 2338.272613][T23527] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2338.484041][T23527] bridge_slave_1: left allmulticast mode
[ 2338.490071][T23527] bridge_slave_1: left promiscuous mode
[ 2338.496368][T23527] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2338.882344][T23530] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4880'.
[ 2338.960038][T23527] bond0: (slave bond_slave_0): Releasing backup interface
[ 2339.130043][T23527] bond0: (slave bond_slave_1): Releasing backup interface
[ 2339.530399][T23527] team0: Port device team_slave_0 removed
[ 2339.594254][T23527] team0: Port device team_slave_1 removed
[ 2339.603763][T23527] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2339.611502][T23527] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2339.825991][T23527] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2339.833879][T23527] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2340.236962][T23538] netlink: 32 bytes leftover after parsing attributes in process `syz.5.4883'.
[ 2342.439077][T23564] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[ 2342.509398][T23566] netlink: 32 bytes leftover after parsing attributes in process `syz.5.4895'.
[ 2354.907791][T21602] usb 5-1: new full-speed USB device number 26 using dummy_hcd
[ 2355.143855][T23616] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4909'.
[ 2355.167640][T21602] usb 5-1: config 0 has no interfaces?
[ 2355.262817][T21602] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 2355.273025][T21602] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2355.281508][T21602] usb 5-1: Product: syz
[ 2355.285838][T21602] usb 5-1: Manufacturer: syz
[ 2355.290713][T21602] usb 5-1: SerialNumber: syz
[ 2355.439266][T21602] usb 5-1: config 0 descriptor??
[ 2358.379533][T23640] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4917'.
[ 2364.661029][T23670] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4929'.
[ 2365.608191][T23674] loop7: detected capacity change from 0 to 256
[ 2366.916987][ T5944] usb 5-1: USB disconnect, device number 26
[ 2368.053174][   T30] audit: type=1326 audit(1755997421.857:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23691 comm="syz.4.4937" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7eff14f8ebe9 code=0x0
[ 2370.035872][T23708] loop7: detected capacity change from 0 to 128
[ 2370.269197][T23708] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 2370.321090][T23708] ext4 filesystem being mounted at /48/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 2371.100195][T22658] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 2371.777062][T23727] binder_alloc: 23724: binder_alloc_buf, no vma
[ 2371.900335][T23729] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4951'.
[ 2371.915583][T23729] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4951'.
[ 2372.348388][   T30] audit: type=1326 audit(1755997426.177:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23724 comm="syz.7.4950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf7958ebe9 code=0x7fc00000
[ 2374.921170][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[ 2376.541980][T23757] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4962'.
[ 2377.113906][T23761] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4963'.
[ 2377.123561][T23761] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4963'.
[ 2378.303742][T23767] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4965'.
[ 2378.330704][T23767] vlan2: entered promiscuous mode
[ 2378.335952][T23767] bridge0: entered promiscuous mode
[ 2378.852336][   T30] audit: type=1326 audit(1755997432.677:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23763 comm="syz.5.4964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa1f58ebe9 code=0x7fc00000
[ 2380.999783][T23788] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4974'.
[ 2381.009575][T23788] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4974'.
[ 2381.124771][T23790] input: syz1 as /devices/virtual/input/input29
[ 2382.665370][T23800] loop8: detected capacity change from 0 to 128
[ 2382.833400][T23800] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 2382.858237][T23800] ext4 filesystem being mounted at /73/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 2383.247655][ T5944] usb 8-1: new full-speed USB device number 23 using dummy_hcd
[ 2383.444114][T22703] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 2383.528998][ T5944] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 2383.540421][ T5944] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2383.550808][ T5944] usb 8-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[ 2383.560179][ T5944] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2383.574599][T23809] binder_alloc: 23807: binder_alloc_buf, no vma
[ 2383.679620][ T5944] usb 8-1: config 0 descriptor??
[ 2384.274198][   T30] audit: type=1326 audit(1755997438.077:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23807 comm="syz.0.4980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8a918ebe9 code=0x7fc00000
[ 2384.371362][ T5944] savu 0003:1E7D:2D5A.0039: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.7-1/input0
[ 2384.598924][T21602] usb 8-1: USB disconnect, device number 23
[ 2384.936413][T23821] overlayfs: missing 'workdir'
[ 2385.461893][T23816] fido_id[23816]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.7/usb8/report_descriptor': No such file or directory
[ 2385.582211][T23825] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4986'.
[ 2385.591769][T23825] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4986'.
[ 2387.016902][T23837] loop0: detected capacity change from 0 to 1024
[ 2387.259849][T23837] hfsplus: small dir entry
[ 2388.614879][T23845] loop8: detected capacity change from 0 to 16
[ 2388.665237][T23845] erofs (device loop8): mounted with root inode @ nid 36.
[ 2391.298884][T23852] binder_alloc: 23846: binder_alloc_buf, no vma
[ 2391.825172][   T30] audit: type=1326 audit(1755997445.667:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23846 comm="syz.7.4994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf7958ebe9 code=0x7fc00000
[ 2392.066200][   T30] audit: type=1326 audit(1755997445.907:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23853 comm="syz.0.4996" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd8a918ebe9 code=0x0
[ 2392.897517][T21602] usb 8-1: new full-speed USB device number 24 using dummy_hcd
[ 2393.183954][T21602] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 2393.195385][T21602] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2393.205672][T21602] usb 8-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[ 2393.218594][T21602] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2393.268777][T23862] netlink: 20 bytes leftover after parsing attributes in process `syz.0.5000'.
[ 2393.370354][T21602] usb 8-1: config 0 descriptor??
[ 2393.950787][T21602] savu 0003:1E7D:2D5A.003A: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.7-1/input0
[ 2394.255558][T23864] loop0: detected capacity change from 0 to 512
[ 2394.306179][T11279] usb 8-1: USB disconnect, device number 24
[ 2394.320074][T23864] EXT4-fs: inline encryption not supported
[ 2394.416051][T23864] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 2394.555780][T23864] EXT4-fs (loop0): 1 truncate cleaned up
[ 2394.564009][T23864] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 2395.010427][T23865] fido_id[23865]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.7/usb8/report_descriptor': No such file or directory
[ 2395.369385][T21829] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 2396.880212][T23870] loop7: detected capacity change from 0 to 8192
[ 2396.973732][T23875] loop0: detected capacity change from 0 to 512
[ 2397.043945][T23875] ext2: Unknown parameter 'smackfstransmute'
[ 2397.074030][T23870] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 2398.667739][T21734] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 2398.679147][T21734] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 2398.699281][T21734] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 2398.758654][T21734] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 2398.858360][T21734] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 2399.606452][T23881] chnl_net:caif_netlink_parms(): no params data found
[ 2399.658447][T23891] binder_alloc: 23887: binder_alloc_buf, no vma
[ 2399.712235][T19348] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2399.986797][   T30] audit: type=1326 audit(1755997453.827:663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23890 comm="syz.4.5010" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7eff14f8ebe9 code=0x0
[ 2400.066786][T19348] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2400.169088][   T30] audit: type=1326 audit(1755997454.007:664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23887 comm="syz.8.5008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f302498ebe9 code=0x7fc00000
[ 2400.330667][T19348] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2400.636206][T19348] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2400.937483][T17642] Bluetooth: hci6: command tx timeout
[ 2402.059428][T19348] bond0 (unregistering): Released all slaves
[ 2402.699802][T23881] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2402.707554][T23881] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2402.715386][T23881] bridge_slave_0: entered allmulticast mode
[ 2402.725224][T23881] bridge_slave_0: entered promiscuous mode
[ 2402.863009][T19348] hsr_slave_0: left promiscuous mode
[ 2402.878863][T19348] hsr_slave_1: left promiscuous mode
[ 2402.967884][T19348] veth1_macvtap: left promiscuous mode
[ 2402.973719][T19348] veth0_macvtap: left promiscuous mode
[ 2402.981556][T19348] veth1_vlan: left promiscuous mode
[ 2402.987217][T19348] veth0_vlan: left promiscuous mode
[ 2403.017676][T17642] Bluetooth: hci6: command tx timeout
[ 2404.767908][T23881] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2404.775590][T23881] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2404.788057][T23881] bridge_slave_1: entered allmulticast mode
[ 2404.796480][T23881] bridge_slave_1: entered promiscuous mode
[ 2405.098241][T21734] Bluetooth: hci6: command tx timeout
[ 2405.158853][T21734] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 2405.268871][T21734] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2405.304206][T23881] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2405.319966][T21734] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2405.375283][T21734] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2405.390396][T21734] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2405.880444][T23881] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2406.233296][T19348] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2406.331702][T23881] team0: Port device team_slave_0 added
[ 2406.387600][T19348] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2406.468412][T23881] team0: Port device team_slave_1 added
[ 2406.648157][T19348] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2406.852540][T19348] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2407.308464][T21734] Bluetooth: hci6: command tx timeout
[ 2407.473082][T23931] Invalid option length (1158) for dns_resolver key
[ 2407.612489][T21734] Bluetooth: hci0: command tx timeout
[ 2408.909865][T23881] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2408.916948][T23881] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2408.943947][T23881] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2409.218743][T23881] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2409.225885][T23881] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2409.252599][T23881] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2409.462598][T23935] binder_alloc: 23932: binder_alloc_buf, no vma
[ 2409.711565][T21734] Bluetooth: hci0: command tx timeout
[ 2409.940792][T19348] bond0 (unregistering): Released all slaves
[ 2410.011209][   T30] audit: type=1326 audit(1755997463.827:665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23932 comm="syz.0.5023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8a918ebe9 code=0x7fc00000
[ 2410.191102][T23919] chnl_net:caif_netlink_parms(): no params data found
[ 2410.379149][T23881] hsr_slave_0: entered promiscuous mode
[ 2410.388697][T23881] hsr_slave_1: entered promiscuous mode
[ 2410.396472][T23881] debugfs: 'hsr0' already exists in 'hsr'
[ 2410.402586][T23881] Cannot create hsr debugfs directory
[ 2411.821780][T21734] Bluetooth: hci0: command tx timeout
[ 2417.668822][T21734] Bluetooth: hci0: command tx timeout
[ 2418.500425][T19348] hsr_slave_0: left promiscuous mode
[ 2418.568253][T19348] hsr_slave_1: left promiscuous mode
[ 2418.635266][T19348] veth1_macvtap: left promiscuous mode
[ 2418.642411][T19348] veth0_macvtap: left promiscuous mode
[ 2418.648377][T19348] veth1_vlan: left promiscuous mode
[ 2418.653853][T19348] veth0_vlan: left promiscuous mode
[ 2420.665569][T21734] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 2420.691780][T21734] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 2420.715747][T21734] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 2420.834082][T21734] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 2420.851109][T21734] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 2421.324016][T23919] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2421.331845][T23919] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2421.339879][T23919] bridge_slave_0: entered allmulticast mode
[ 2421.349808][T23919] bridge_slave_0: entered promiscuous mode
[ 2421.720489][T23919] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2421.728230][T23919] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2421.736040][T23919] bridge_slave_1: entered allmulticast mode
[ 2421.746320][T23919] bridge_slave_1: entered promiscuous mode
[ 2422.348108][T23919] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2422.474371][T23919] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2423.018741][T17642] Bluetooth: hci3: command tx timeout
[ 2423.169158][T23919] team0: Port device team_slave_0 added
[ 2423.534243][T23919] team0: Port device team_slave_1 added
[ 2423.816923][T23881] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 2423.995476][T23962] loop0: detected capacity change from 0 to 764
[ 2424.025984][T23919] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2424.038090][T23919] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2424.066846][T23919] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2424.105284][T23881] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 2424.198059][T23950] chnl_net:caif_netlink_parms(): no params data found
[ 2424.230722][T23881] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 2424.253446][T23962] rock: directory entry would overflow storage
[ 2424.259942][T23962] rock: sig=0x4654, size=5, remaining=4
[ 2424.308262][T23919] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2424.315396][T23919] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2424.348122][T23919] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2424.378620][T23881] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 2425.107894][T17642] Bluetooth: hci3: command tx timeout
[ 2425.201480][T23919] hsr_slave_0: entered promiscuous mode
[ 2425.212846][T23919] hsr_slave_1: entered promiscuous mode
[ 2425.221188][T23919] debugfs: 'hsr0' already exists in 'hsr'
[ 2425.227009][T23919] Cannot create hsr debugfs directory
[ 2425.630071][T23969] netlink: 76 bytes leftover after parsing attributes in process `syz.0.5032'.
[ 2425.854963][   T12] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2426.383745][   T12] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2426.608193][   T12] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2426.805954][   T12] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2426.921207][T23975] loop4: detected capacity change from 0 to 1024
[ 2427.003215][T23975] EXT4-fs: Ignoring removed nobh option
[ 2427.010293][T23975] EXT4-fs: inline encryption not supported
[ 2427.108938][T23881] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2427.182748][T17642] Bluetooth: hci3: command tx timeout
[ 2427.418756][T23975] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 2427.574006][T23975] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4183: comm syz.4.5026: Allocating blocks 385-513 which overlap fs metadata
[ 2427.622937][T23881] 8021q: adding VLAN 0 to HW filter on device team0
[ 2427.633214][T23950] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2427.640998][T23950] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2427.649390][T23950] bridge_slave_0: entered allmulticast mode
[ 2427.660070][T23950] bridge_slave_0: entered promiscuous mode
[ 2427.705255][   T12] bridge_slave_1: left allmulticast mode
[ 2427.711437][   T12] bridge_slave_1: left promiscuous mode
[ 2427.719930][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2427.756003][   T12] bridge_slave_0: left allmulticast mode
[ 2427.762139][   T12] bridge_slave_0: left promiscuous mode
[ 2427.769342][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2427.784560][T23975] EXT4-fs (loop4): pa ffff88812221a2a0: logic 16, phys. 129, len 24
[ 2427.793274][T23975] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[ 2427.825354][T23975] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[ 2427.838000][T23975] EXT4-fs (loop4): This should not happen!! Data will be lost
[ 2427.838000][T23975] 
[ 2427.848020][T23975] EXT4-fs (loop4): Total free blocks count 0
[ 2427.854185][T23975] EXT4-fs (loop4): Free/Dirty block details
[ 2427.860400][T23975] EXT4-fs (loop4): free_blocks=128
[ 2427.865700][T23975] EXT4-fs (loop4): dirty_blocks=0
[ 2427.871255][T23975] EXT4-fs (loop4): Block reservation details
[ 2427.877553][T23975] EXT4-fs (loop4): i_reserved_data_blocks=0
[ 2428.525966][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2428.560425][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2428.577966][   T12] bond0 (unregistering): Released all slaves
[ 2428.677488][T21602] usb 5-1: new full-speed USB device number 27 using dummy_hcd
[ 2428.690103][T23950] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2428.697786][T23950] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2428.705567][T23950] bridge_slave_1: entered allmulticast mode
[ 2428.715258][T23950] bridge_slave_1: entered promiscuous mode
[ 2428.902288][ T3637] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2428.910061][ T3637] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2428.924017][T21602] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 2428.935449][T21602] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2428.945791][T21602] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[ 2428.958760][T21602] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2428.975176][T21602] usb 5-1: config 0 descriptor??
[ 2429.261047][T17642] Bluetooth: hci3: command tx timeout
[ 2429.328755][T23950] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2429.471428][T21602] savu 0003:1E7D:2D5A.003B: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.4-1/input0
[ 2429.504560][ T3637] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2429.512239][ T3637] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2429.607518][T23950] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2429.744785][T21602] usb 5-1: USB disconnect, device number 27
[ 2430.105926][T23950] team0: Port device team_slave_0 added
[ 2430.171395][T23950] team0: Port device team_slave_1 added
[ 2430.272424][T23985] fido_id[23985]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[ 2430.500148][   T12] hsr_slave_0: left promiscuous mode
[ 2430.510331][   T12] hsr_slave_1: left promiscuous mode
[ 2430.519358][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2430.527040][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2430.556479][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2430.564626][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2430.705439][   T12] veth1_macvtap: left promiscuous mode
[ 2430.711493][   T12] veth0_macvtap: left promiscuous mode
[ 2430.717716][   T12] veth1_vlan: left promiscuous mode
[ 2430.723250][   T12] veth0_vlan: left promiscuous mode
[ 2430.807664][T23987] loop4: detected capacity change from 0 to 1024
[ 2431.299473][T23987] hfsplus: xattr search failed
[ 2431.561846][T22557] hfsplus: node 4:3 still has 1 user(s)!
[ 2431.934088][   T12] team_slave_1 (unregistering): left promiscuous mode
[ 2432.059892][   T12] team0 (unregistering): Port device team_slave_1 removed
[ 2432.082873][   T12] team_slave_0 (unregistering): left promiscuous mode
[ 2432.112420][   T12] team0 (unregistering): Port device team_slave_0 removed
[ 2432.589830][T23919] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 2432.741679][T23919] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 2432.798623][T23919] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 2432.848805][T23950] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2432.855949][T23950] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2432.882317][T23950] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2432.920124][T23950] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2432.927823][T23950] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2432.955278][T23950] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2432.991674][T23919] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 2433.238690][T23996] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5039'.
[ 2433.402364][T23950] hsr_slave_0: entered promiscuous mode
[ 2433.412758][T23950] hsr_slave_1: entered promiscuous mode
[ 2433.895048][T24002] netlink: 76 bytes leftover after parsing attributes in process `syz.0.5040'.
[ 2435.059638][T23919] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2435.390460][T23881] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2435.491814][T23919] 8021q: adding VLAN 0 to HW filter on device team0
[ 2435.649270][T19348] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2435.656805][T19348] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2435.770611][T19348] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2435.778255][T19348] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2435.953996][T23950] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 2435.996898][T23950] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 2436.337889][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[ 2436.383111][T23950] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 2436.830773][T23919] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 2436.843631][T23919] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2437.062056][T23950] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 2437.145801][T23881] veth0_vlan: entered promiscuous mode
[ 2437.332478][T23881] veth1_vlan: entered promiscuous mode
[ 2437.807166][T23881] veth0_macvtap: entered promiscuous mode
[ 2437.932580][T23881] veth1_macvtap: entered promiscuous mode
[ 2438.121197][T24031] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5048'.
[ 2438.191833][T23881] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2438.308993][T24027] netlink: 'syz.4.5047': attribute type 10 has an invalid length.
[ 2438.358923][T24028] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5047'.
[ 2438.432973][T24027] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2438.445930][T24027] team0: Port device bond0 added
[ 2438.508608][T23881] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2438.614020][T24028] team0 (unregistering): Port device bond0 removed
[ 2438.787597][T19316] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2438.840572][T19316] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2438.923778][T19316] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2439.004505][T19316] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2439.083076][T23919] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2439.154495][T23950] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2439.313218][T24041] netlink: 76 bytes leftover after parsing attributes in process `syz.0.5049'.
[ 2439.400633][T23950] 8021q: adding VLAN 0 to HW filter on device team0
[ 2439.621352][T19348] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2439.629189][T19348] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2440.010526][T19348] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2440.018434][T19348] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2440.279202][T23950] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 2440.290409][T23950] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2440.787330][T24051] loop4: detected capacity change from 0 to 1024
[ 2441.113561][   T30] audit: type=1800 audit(1755997494.957:666): pid=24057 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.5050" name="file1" dev="loop4" ino=20 res=0 errno=0
[ 2442.005485][T23950] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2442.323334][T24066] 9pnet_virtio: no channels available for device syz
[ 2442.558473][T23950] veth0_vlan: entered promiscuous mode
[ 2442.701737][T23919] veth0_vlan: entered promiscuous mode
[ 2442.725053][T23950] veth1_vlan: entered promiscuous mode
[ 2442.785971][T23919] veth1_vlan: entered promiscuous mode
[ 2443.185607][T23950] veth0_macvtap: entered promiscuous mode
[ 2443.225741][T23919] veth0_macvtap: entered promiscuous mode
[ 2443.263341][T23950] veth1_macvtap: entered promiscuous mode
[ 2443.309708][T23919] veth1_macvtap: entered promiscuous mode
[ 2443.530563][T23950] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2443.629255][T23919] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2443.673731][T23950] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2443.743443][T23919] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2443.793366][   T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2443.872522][   T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2443.967480][   T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2443.976504][   T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2444.092309][   T12] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2444.182834][   T12] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2444.269997][ T4568] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2444.332008][ T4568] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2448.161512][T24103] netlink: 76 bytes leftover after parsing attributes in process `syz.4.5058'.
[ 2449.460581][T19348] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2449.470133][T19348] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2449.716924][T24116] Bluetooth: MGMT ver 1.23
[ 2449.806857][T19348] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2449.815981][T19348] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2452.545031][T24154] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5071'.
[ 2452.708322][T23984] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[ 2452.921830][T23984] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 2452.932455][T23984] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 2452.947302][T23984] usb 5-1: config 1 has no interface number 0
[ 2452.953621][T23984] usb 5-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2452.966481][T23984] usb 5-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[ 2452.976070][T23984] usb 5-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 2453.171600][T23984] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 2453.181322][T23984] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2453.189842][T23984] usb 5-1: Product: syz
[ 2453.194186][T23984] usb 5-1: Manufacturer: syz
[ 2453.199089][T23984] usb 5-1: SerialNumber: syz
[ 2453.837790][T24168] loop2: detected capacity change from 0 to 128
[ 2453.881630][T24168] vfat: Unknown parameter 'shor‚name'
[ 2453.918100][T21734] Bluetooth: hci6: Opcode 0x206a failed: -110
[ 2453.924459][T21734] Bluetooth: hci6: command 0x206a tx timeout
[ 2454.121650][T11094] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2454.129995][T11094] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2454.174700][T23984] cdc_ncm 5-1:1.1: bind() failure
[ 2454.232273][T23984] usb 5-1: USB disconnect, device number 28
[ 2454.309404][ T3957] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2454.318549][ T3957] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2454.441036][ T3957] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2454.454714][ T3957] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2454.675389][T24091] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2454.683896][T24091] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2456.362167][T23984] usb 10-1: new full-speed USB device number 8 using dummy_hcd
[ 2456.500105][T24191] loop2: detected capacity change from 0 to 128
[ 2456.511738][T24191] vfat: Unknown parameter 'rodixlate'
[ 2456.922998][T24193] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5082'.
[ 2457.749346][T24199] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5084'.
[ 2458.423148][T24202] loop4: detected capacity change from 0 to 512
[ 2458.569637][T24202] EXT4-fs (loop4): blocks per group (95) and clusters per group (32768) inconsistent
[ 2458.911087][T23984] usb 10-1: device not accepting address 8, error -71
[ 2460.250554][T24210] loop2: detected capacity change from 0 to 8192
[ 2469.153007][T24227] fuse: Unknown parameter 'fd0x0000000000000004'
[ 2469.339593][T24230] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2469.428763][T24231] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5096'.
[ 2484.286263][T24264] fuse: Unknown parameter 'fd0x0000000000000004'
[ 2486.674458][T24272] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5111'.
[ 2486.934055][T24274] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[ 2486.990329][T24277] sch_tbf: burst 4 is lower than device syzkaller0 mtu (1514) !
[ 2489.935682][T24289] loop2: detected capacity change from 0 to 1024
[ 2490.993613][T24294] loop0: detected capacity change from 0 to 512
[ 2491.084940][T24295] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 2491.143875][T24294] EXT4-fs: Ignoring removed nobh option
[ 2491.431132][T24294] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 2491.715729][T24294] EXT4-fs error (device loop0): ext4_lookup:1787: inode #15: comm syz.0.5119: iget: bad i_size value: 15393162788874
[ 2493.738134][T21829] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 2496.335715][T21602] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[ 2496.598052][T21602] usb 5-1: Using ep0 maxpacket: 32
[ 2496.656222][T21602] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 2496.666912][T21602] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 2496.676323][T21602] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 2497.028902][T21602] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 2497.038558][T21602] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2497.053598][T21602] usb 5-1: Product: syz
[ 2497.060336][T21602] usb 5-1: Manufacturer: syz
[ 2497.065142][T21602] usb 5-1: SerialNumber: syz
[ 2497.368464][T21602] cdc_ncm 5-1:1.0: skipping garbage
[ 2497.374096][T21602] cdc_ncm 5-1:1.0: skipping garbage
[ 2497.379832][T21602] cdc_ncm 5-1:1.0: CDC Union missing and no IAD found
[ 2497.386890][T21602] cdc_ncm 5-1:1.0: bind() failure
[ 2497.723650][T24025] usb 5-1: USB disconnect, device number 29
[ 2497.778445][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[ 2498.387654][T23984] usb 10-1: new high-speed USB device number 10 using dummy_hcd
[ 2498.627981][T23984] usb 10-1: no configurations
[ 2498.633124][T23984] usb 10-1: can't read configurations, error -22
[ 2498.867604][T23984] usb 10-1: new high-speed USB device number 11 using dummy_hcd
[ 2499.083412][T23984] usb 10-1: no configurations
[ 2499.089395][T23984] usb 10-1: can't read configurations, error -22
[ 2499.858813][T23984] usb usb10-port1: attempt power cycle
[ 2501.908075][T23984] usb 10-1: new high-speed USB device number 12 using dummy_hcd
[ 2503.509065][T23984] usb 10-1: device descriptor read/8, error -71
[ 2505.036676][T24361] input: syz1 as /devices/virtual/input/input30
[ 2512.137534][T24394] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5156'.
[ 2512.560452][T24399] loop4: detected capacity change from 0 to 256
[ 2512.584471][T24025] usb 10-1: new high-speed USB device number 14 using dummy_hcd
[ 2512.732596][T24399] exFAT-fs (loop4): failed to load upcase table (idx : 0x00012c80, chksum : 0x0ff561db, utbl_chksum : 0xe619d30d)
[ 2512.763027][T24398] loop2: detected capacity change from 0 to 1024
[ 2512.801238][T24025] usb 10-1: Using ep0 maxpacket: 16
[ 2512.838236][T24025] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2512.848926][T24025] usb 10-1: New USB device found, idVendor=1ea7, idProduct=0907, bcdDevice= 0.00
[ 2512.852259][T24398] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 2512.858556][T24025] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2512.940190][T24398] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 2512.973244][T24025] usb 10-1: config 0 descriptor??
[ 2513.008555][   T30] audit: type=1800 audit(1755998079.829:667): pid=24399 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.5159" name="bus" dev="loop4" ino=1048781 res=0 errno=0
[ 2513.044780][T24398] System zones: 0-1, 3-36
[ 2513.176722][T24398] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 2513.459942][T24025] usbhid 10-1:0.0: can't add hid device: -71
[ 2513.466843][T24025] usbhid 10-1:0.0: probe with driver usbhid failed with error -71
[ 2513.553077][T24025] usb 10-1: USB disconnect, device number 14
[ 2514.106928][T23881] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 2514.878183][   T30] audit: type=1326 audit(1755998081.719:668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24420 comm="syz.0.5168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8a918ebe9 code=0x7ffc0000
[ 2514.901539][   T30] audit: type=1326 audit(1755998081.749:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24420 comm="syz.0.5168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd8a918ebe9 code=0x7ffc0000
[ 2515.059907][   T30] audit: type=1326 audit(1755998081.909:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24420 comm="syz.0.5168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8a918ebe9 code=0x7ffc0000
[ 2515.088960][   T30] audit: type=1326 audit(1755998081.909:671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24420 comm="syz.0.5168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8a918ebe9 code=0x7ffc0000
[ 2515.644640][T24429] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5171'.
[ 2515.895929][T24435] loop0: detected capacity change from 0 to 1024
[ 2516.608219][T24435] =====================================================
[ 2516.619582][T24435] BUG: KMSAN: uninit-value in hfs_find_1st_rec_by_cnid+0x212/0x3d0
[ 2516.629541][T24435]  hfs_find_1st_rec_by_cnid+0x212/0x3d0
[ 2516.635319][T24435]  __hfsplus_brec_find+0x274/0x840
[ 2516.640942][T24435]  hfsplus_brec_find+0x4df/0x9f0
[ 2516.646087][T24435]  hfsplus_delete_all_attrs+0x255/0x420
[ 2516.652132][T24435]  hfsplus_delete_cat+0x1302/0x13d0
[ 2516.657668][T24435]  hfsplus_unlink+0x526/0xd70
[ 2516.664763][T24435]  hfsplus_rename+0x157/0x2f0
[ 2516.671929][T24435]  vfs_rename+0x1f51/0x2530
[ 2516.676544][T24435]  do_renameat2+0x1484/0x1a50
[ 2516.681397][T24435]  __x64_sys_renameat2+0x15d/0x210
[ 2516.686616][T24435]  x64_sys_call+0x4ac/0x3e20
[ 2516.691379][T24435]  do_syscall_64+0xd9/0x210
[ 2516.695983][T24435]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2516.702033][T24435] 
[ 2516.709588][T24435] Uninit was created at:
[ 2516.714072][T24435]  __kmalloc_noprof+0x95f/0x1310
[ 2516.721087][T24435]  hfsplus_find_init+0x90/0x1d0
[ 2516.726074][T24435]  hfsplus_delete_all_attrs+0xc0/0x420
[ 2516.731682][T24435]  hfsplus_delete_cat+0x1302/0x13d0
[ 2516.736979][T24435]  hfsplus_unlink+0x526/0xd70
[ 2516.741885][T24435]  hfsplus_rename+0x157/0x2f0
[ 2516.746650][T24435]  vfs_rename+0x1f51/0x2530
[ 2516.751339][T24435]  do_renameat2+0x1484/0x1a50
[ 2516.756117][T24435]  __x64_sys_renameat2+0x15d/0x210
[ 2516.761406][T24435]  x64_sys_call+0x4ac/0x3e20
[ 2516.766112][T24435]  do_syscall_64+0xd9/0x210
[ 2516.770794][T24435]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2516.776772][T24435] 
[ 2516.779820][T24435] CPU: 0 UID: 0 PID: 24435 Comm: syz.0.5172 Not tainted syzkaller #0 PREEMPT(none) 
[ 2516.789363][T24435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2516.799585][T24435] =====================================================
[ 2516.811647][T24435] Disabling lock debugging due to kernel taint
[ 2516.819287][T24435] Kernel panic - not syncing: kmsan.panic set ...
[ 2516.825779][T24435] CPU: 0 UID: 0 PID: 24435 Comm: syz.0.5172 Tainted: G    B               syzkaller #0 PREEMPT(none) 
[ 2516.836815][T24435] Tainted: [B]=BAD_PAGE
[ 2516.841004][T24435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2516.851160][T24435] Call Trace:
[ 2516.854511][T24435]  <TASK>
[ 2516.857498][T24435]  __dump_stack+0x26/0x30
[ 2516.861939][T24435]  dump_stack_lvl+0x53/0x270
[ 2516.866633][T24435]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 2516.872574][T24435]  dump_stack+0x1e/0x25
[ 2516.876828][T24435]  vpanic+0x361/0xc50
[ 2516.881028][T24435]  panic+0x15d/0x160
[ 2516.885064][T24435]  kmsan_report+0x31c/0x320
[ 2516.889679][T24435]  ? __msan_warning+0x1b/0x30
[ 2516.894439][T24435]  ? hfs_find_1st_rec_by_cnid+0x212/0x3d0
[ 2516.900282][T24435]  ? __hfsplus_brec_find+0x274/0x840
[ 2516.905691][T24435]  ? hfsplus_brec_find+0x4df/0x9f0
[ 2516.910938][T24435]  ? hfsplus_delete_all_attrs+0x255/0x420
[ 2516.916776][T24435]  ? hfsplus_delete_cat+0x1302/0x13d0
[ 2516.922271][T24435]  ? hfsplus_unlink+0x526/0xd70
[ 2516.927239][T24435]  ? hfsplus_rename+0x157/0x2f0
[ 2516.932256][T24435]  ? vfs_rename+0x1f51/0x2530
[ 2516.937037][T24435]  ? do_renameat2+0x1484/0x1a50
[ 2516.942062][T24435]  ? __x64_sys_renameat2+0x15d/0x210
[ 2516.947470][T24435]  ? x64_sys_call+0x4ac/0x3e20
[ 2516.952342][T24435]  ? do_syscall_64+0xd9/0x210
[ 2516.957121][T24435]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2516.963298][T24435]  ? kmsan_get_metadata+0xfb/0x160
[ 2516.968538][T24435]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 2516.974439][T24435]  ? kmsan_get_metadata+0xfb/0x160
[ 2516.979657][T24435]  ? kmsan_internal_memmove_metadata+0x91/0x230
[ 2516.985994][T24435]  ? kmsan_get_metadata+0xfb/0x160
[ 2516.991192][T24435]  ? kmsan_internal_memmove_metadata+0x91/0x230
[ 2516.997532][T24435]  ? kmsan_get_metadata+0xfb/0x160
[ 2517.002736][T24435]  __msan_warning+0x1b/0x30
[ 2517.007326][T24435]  hfs_find_1st_rec_by_cnid+0x212/0x3d0
[ 2517.013041][T24435]  ? kmsan_get_metadata+0xfb/0x160
[ 2517.018281][T24435]  __hfsplus_brec_find+0x274/0x840
[ 2517.023518][T24435]  ? __pfx_hfs_find_1st_rec_by_cnid+0x10/0x10
[ 2517.029729][T24435]  hfsplus_brec_find+0x4df/0x9f0
[ 2517.034791][T24435]  ? __pfx_hfs_find_1st_rec_by_cnid+0x10/0x10
[ 2517.041014][T24435]  hfsplus_delete_all_attrs+0x255/0x420
[ 2517.046671][T24435]  hfsplus_delete_cat+0x1302/0x13d0
[ 2517.052007][T24435]  hfsplus_unlink+0x526/0xd70
[ 2517.056893][T24435]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 2517.062817][T24435]  hfsplus_rename+0x157/0x2f0
[ 2517.067595][T24435]  ? __pfx_hfsplus_rename+0x10/0x10
[ 2517.072895][T24435]  vfs_rename+0x1f51/0x2530
[ 2517.077547][T24435]  do_renameat2+0x1484/0x1a50
[ 2517.082380][T24435]  __x64_sys_renameat2+0x15d/0x210
[ 2517.087875][T24435]  x64_sys_call+0x4ac/0x3e20
[ 2517.092579][T24435]  do_syscall_64+0xd9/0x210
[ 2517.097202][T24435]  ? irqentry_exit+0x16/0x60
[ 2517.101966][T24435]  ? clear_bhb_loop+0x40/0x90
[ 2517.106819][T24435]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2517.112806][T24435] RIP: 0033:0x7fd8a918ebe9
[ 2517.117339][T24435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2517.137056][T24435] RSP: 002b:00007fd8a73d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[ 2517.145599][T24435] RAX: ffffffffffffffda RBX: 00007fd8a93b6090 RCX: 00007fd8a918ebe9
[ 2517.153656][T24435] RDX: ffffffffffffff9c RSI: 00002000000000c0 RDI: ffffffffffffff9c
[ 2517.161695][T24435] RBP: 00007fd8a9211e19 R08: 0000000000000000 R09: 0000000000000000
[ 2517.169737][T24435] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000000
[ 2517.177768][T24435] R13: 00007fd8a93b6128 R14: 00007fd8a93b6090 R15: 00007fff3e5aa018
[ 2517.185822][T24435]  </TASK>
[ 2517.189155][T24435] Kernel Offset: disabled
[ 2517.193523][T24435] Rebooting in 86400 seconds..