last executing test programs:

6m57.559382536s ago: executing program 2 (id=3):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x210000, &(0x7f0000000280)={[{@user_xattr}, {@noquota}, {@dioread_nolock}, {@jqfmt_vfsv1}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x70}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@stripe={'stripe', 0x3d, 0x20}}, {@bsdgroups}, {@max_batch_time={'max_batch_time', 0x3d, 0x3fe}}, {@user_xattr}, {@noinit_itable}]}, 0x3, 0x583, &(0x7f0000000800)="$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")
bpf$MAP_CREATE(0x0, &(0x7f0000001240)=ANY=[@ANYBLOB="0500000004000000090000000800000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYBLOB="00020000e5f825dcf1d3"], 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000001c0)={0xffffffffffffffff, 0x0, 0x0}, 0x20)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xc)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x40042, 0xa0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
getsockname$packet(r4, &(0x7f0000000080)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r5, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000005c0)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000900)=@delchain={0x24, 0x2e, 0x501, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xfff2, 0xa}, {0x0, 0xd}}}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000ff01000000000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000800)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x18)
bind$bt_hci(r7, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
io_setup(0x870, &(0x7f0000002400)=<r9=>0x0)
io_submit(r9, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2002000000, 0x4, 0x0, 0x1, 0x0, r7, &(0x7f0000000040)="2800ffff0000", 0x6, 0x0, 0x0, 0x2}])
utimes(&(0x7f00000000c0)='./file0\x00', 0x0)
write$FUSE_INIT(r6, &(0x7f0000004200)={0x50, 0x0, 0x0, {0x7, 0x2b, 0x0, 0xa0031718561b10dc, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}}, 0x50)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000c40))

6m55.110740894s ago: executing program 4 (id=5):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket(0x10, 0x803, 0x2)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000001ffffeb00000000eb658e0d850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f00000002c0)={[{@barrier}, {@nodioread_nolock}, {@noquota}, {@barrier}, {@auto_da_alloc}, {@nodioread_nolock}]}, 0x1, 0x599, &(0x7f0000001280)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000740)='./file1\x00', 0x183042, 0x15)
pwrite64(r3, &(0x7f0000000140)='2', 0xfdef, 0xe7c)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r2, 0x0)

6m54.880449973s ago: executing program 2 (id=10):
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="02000000040000000500000002"], 0x50)
r0 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000880)=ANY=[@ANYBLOB="b702000007000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c034055b67dafe6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622003b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1ff8d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd7130856f756436303767d2e24f29e5dad9796edb697aeea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002706870014f51c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff2c91018afc9ffc2cc788bee1b47683db01a469398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa447e2edfae4f390a83984e68a6d80a5f5222ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae486aca54183fb01c73f979ca9857399537f5dc2a2d0e0007000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a088a22e8b15c3e233db7ab22e30d46a9d24d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e48455b5a8b90dfae158b94f50adab988dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d5a3e1a90800c66ee2b1ad76dff9f9000071414c99d4894ee7f8249dc1f6428d2129369ee1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987591ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e5dee734fe7da3770845cf442d488afdc0e1700000000000000000a034000000000000000000000000000000005205000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db0c407081c6281e2d8429a863903ca75f4c7df3ea8fc2018d07af1491ef060cd4403a099f32468f65bd06b4082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b65f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033ec14bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdcfb1ebbb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce40c14089c82759106f422582b42e3e8484ea5a6ad9aa5210b16eafe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35c9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403502734137ff47257f164391c673b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb74b5589829b6b0679b5d6"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
bpf$MAP_CREATE(0x0, &(0x7f0000001d40)=ANY=[@ANYBLOB="12000000070000000400000002"], 0x50)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x901800, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000040)={0x3, 0x2, 0x3000, 0x1000, &(0x7f0000feb000/0x1000)=nil})
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x9, 0x4, &(0x7f0000000f80)=ANY=[@ANYRESHEX=r3, @ANYBLOB="e24ce478"], &(0x7f0000000240)='syzkaller\x00', 0xfffffffd, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x4, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

6m53.276385422s ago: executing program 2 (id=13):
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
writev(r0, &(0x7f0000000140)=[{&(0x7f00000001c0)="580000001400192340834b80040d8c560a067f0202ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd000000100001000c0c10000000010000000000", 0x58}], 0x1)

6m53.110137346s ago: executing program 4 (id=14):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000028c0), 0x20a40, 0x0)
close(r1)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f00000006c0))
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000005c0)='kmem_cache_free\x00', r4}, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_subtree(r0, &(0x7f0000000380)=ANY=[@ANYBLOB="8fedcb5d07081196f37538e486"], 0x280)

6m51.808416297s ago: executing program 2 (id=17):
r0 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'bridge0\x00', &(0x7f0000000040)=@ethtool_link_settings={0x42, 0x0, 0x3, 0x2, 0x8, 0x0, 0x9, 0x0, 0x0, 0x3, [0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}})

6m51.038664182s ago: executing program 2 (id=18):
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0xfffffffffffffdee, &(0x7f0000000000)=0x8000000000005)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000009c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0xc)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000040)={0x0, 0x84, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="a800000000010904000500000000000002000000240001801400018008000100e000000108000200ac1e01010c00028005000100000009002400028014000180080001000000010908000200ac1e00010c000280050001000000000044000f800800014000000006080003400000002b080003400000000808000240000000400800014000000000fb0001400000000708000140000044f10800034000000003080007"], 0xa8}}, 0x0)

6m50.675131884s ago: executing program 4 (id=19):
r0 = socket$inet6(0xa, 0x802, 0x88)
setsockopt$inet6_udp_int(r0, 0x11, 0x1000000067, &(0x7f0000002240)=0x800000001, 0x4)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@ipv4_newrule={0x1c, 0x20, 0x301, 0x70bd28, 0x1, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x13}}, 0x1c}, 0x1, 0x0, 0x0, 0x200480d4}, 0x0)
r1 = accept4$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040), 0x80000)
sendto$packet(r1, &(0x7f0000000080)="d4b5277e224bd4fa752630ea8fa9b18669e0535c4b09f10716e8e2b05d4f203ff146a5703f96871557bb646bf69beb1c5c27134ea8ec0c19e21a45799f92d26e88d94b5d5bd5daa31886de0249ee2424eee6afd72d3544f55668ac6475c62860838a9412d68aa9c951a73204723db170fe8628a640b6fd78f1fe7baa30f2ab415d019e6fae1d94eb455789bce3b028b51a077a5de215cbe72f42785a6c7974e50ad7dfa327adec011c8bdf2d34cf41341cb72c873bead561053c05", 0xbb, 0x40, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x2200050, &(0x7f0000000000)=ANY=[], 0x1, 0x1516, &(0x7f0000003140)="$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")
syz_usb_connect$sierra_net(0x4, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)
sched_setaffinity(0x0, 0x4, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x9)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1b0000000000000000000000008000000000", @ANYBLOB], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r8}, 0x10)
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000001540)='./file1\x00', 0x10, &(0x7f0000006d40)=ANY=[@ANYBLOB="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"], 0xff, 0x14fe, &(0x7f0000002ac0)="$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")
pwrite64(r3, 0x0, 0x0, 0x4f56)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000000)={'ip6gre0\x00', 0x0})
open(&(0x7f0000000180)='./bus\x00', 0x14927f, 0x1e9)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="1b000000210001"], 0x28}}, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x4008840, &(0x7f0000000180)={0xa, 0x4e23, 0x4000001, @mcast2}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x40000, 0x0, 0x0)

6m48.372070823s ago: executing program 4 (id=26):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x1, 0xfffff, 0x5, 0x5, 0x1}, 0x50)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000000c0)={r0, &(0x7f0000000340), 0x0}, 0x20)

6m47.142965181s ago: executing program 4 (id=28):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f00000004c0)={0x5, 0x40000}, 0x10)
syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000000)='./file1\x00', 0x2000004c, &(0x7f00000004c0)=ANY=[@ANYBLOB='utf8,discard,dmask=00000000000000000000007,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c757466382c696f636861727365743d6d616363726f617469616e2c6e616d65636173653d312c616c6c6f775f7574696d653d3030303030303030303030372c756d61736b3d30303030303030303030303030303030303030303232362c0000000000000000d74bdc68"], 0x1, 0x14f7, &(0x7f0000002a80)="$eJzs3HuYjlXbMPB1rrUuxjTpbpLNsM51XtxpsEySZJOQTZIkSZJdQtIkSUJiyC5pSEK2k2QzhGQzjUljv99knzR5pEmSkOzC+g49z/d6nrfnffve7+n7HO875+841nGvc677PO+15pxjrs0f9w89R9VrUb92MyIS/xL460uKECJGCDFMCHGDECIQQlSKrxR/5XgBBSn/2oewP9ej6dd6Bexa4v7nbdz/vI37n7dx//M27n/exv3P27j/eRv3n7G8bPucYjfyyLuDn//nZXz+/x8kt/zkbzaWv7nXfyGF+5+3cf/zNu5/3sb9z9u4/3kb9/9/vlr/yTHuf97G/WcsL7vWz595XNtxrf/+GGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4zlDef8VVoIceU1uNaLYowxxhhjjDHG2J/K57/WK2CMMcYYY4wxxtj/eyCkUEKLQOQT+UWMKCBixXUiTlwvCoobRETcKOLFTaKQuFkUFkVEUVFMJIjiooQwAoUVJEJRUpQSUXGLKC1uFYmijCgrygknyoskcZuoIG4XFcUdopK4U1QWd4kqoqqoJqqLu0UNcY+oKWqJ2uJeUUfUFfVEfXGfaCDuFw3FA6KReFA0Fg+JJuJh0VQ8IpqJR0Vz8ZhoIR4XLcUTopVoLdqItqLd/1X+K6KveFX0E/1FihggBorXxCAxWAwRQ8Uw8boYLt4QI8SbIlWMFKPEW2K0eFuMEe+IsWKcGC/eFRPERDFJTBZTxFSRJt4T08T7Yrr4QMwQM8UsMVukizlirvhQzBPzxQLxkVgoPhaLxGKxRCwVGeITkSmWiSzxqVguPhPZYoVYKVaJ1WKNWCvWifVig9goNonNYovYKraJ7eJzsUPsFLvEbrFH7BX7xBdiv/hSHBBfiRzx9X8x/+y/y+8FAgRIkKBBQz7IBzEQA7EQC3EQBwWhIEQgAvEQD4WgEBSGwlAUikICJEAJKAEICAQEJaEkRCEKpaE0JEIilIWy4MBBEiRBBbgdKkJFqASVoDJUhipQFapCdagONaAG1ISaUBtqQx2oA/WgHtwH98H90BAaQiNoBI2hMTSBJtAUmkIzaAbNoTm0gBbQElpCK2gFbaANtIN20B7aQwfoAJ2gE3SGztAFukAyJENX6ArdoBt0h+7QA3pAT+gJvaA39IZX4BV4FV6F/lBHDoCBMBAGwSAYAkNhKLwOw+ENeAPehFQYCaPgLXgL3oYxcAbGwjgYD+OhhpwIk2AykJwKaZAG02AaTIfpMANmwkyYDekwB+bCXJgH82E+fAQL4WP4GBbDYlgKGZABmbAMsiALlsNZyIYVsBJWwWpYA6thHayHdbARNsFG2AJbYBtsg8/hc9gJO2E37Ia9sBe+gC/gS/gSUiEHcuAgHIRDcAgOw2HIhVw4AkfgKByFY3AMjsNxOAEn4RSchNNwGs7AWTgH5+ACXICL8FLCd833ltmQKuQVWmqZT+aTMTJGxspYGSfjZEFZUEZkRMbLeFlIFpKFZWFZVBaVCTJBlpAlJEqUJENZUpaUURmVpWVpmSgTZVlZVjrpZJJMkhVkBVlRVpSV5J2ysrxLVpFVZUdXXVaXNWQnV1PWkrVlbVlH1pX1ZH1ZXzaQDWRD2VA2ko1kY9lYNpEPy6ZyAAyBR+WVzrSQI6GlHAWtZGvZRraVb8OTsr0cAx1kR9lJPi3HwVjoItu7ZPmc7ConQTf5gpwML8oecir0lC/LXrK37CNfkX1lB9dP9pczYIAcKGfDIDlYDpFD5TyoK690rJ58U6bKkXKUfEsuhbflGPmOHCvHyfHyXTlBTpST5GQ5RU6VafI9OU2+L6fLD+QMOVPOkrNlupwj58oP5Tw5Xy6QH8mF8mO5SC6WS+RSmSE/kZlymcySn8rl8jOZLVfIlXKVXC3XyLVynVwvN8iNcpPcLLfIrXKb3C4/lzvkTrlL7pZ75F65T34h98sv5QH5lcyRX8uD8i/ykPxGHpbfylz5nTwiv5dH5Q/ymPxRHpc/yRPypDwlf5an5S/yjDwrz8nz8oL8VV6Ul+Rl6aVQoKRSSqtA5VP5VYwqoGLVdSpOXa8KqhtURN2o4tVNqpC6WRVWRVRRVUwlqOKqhDIKlVWkQlVSlVJRdYsqrW5ViaqMKqvKKafKqyR1m6qgblcV1R2qkrpTVVZ3qSqqqqqmqqu7VQ11j6qpaqna6l5VR9VV9VR9dZ9qoO5XDdUDqpF6UDVWD6km6mHVVD2imqlHVXP1mGqhHlct1ROqlWqt2qi2qp16UrVXT6kOqqPqpJ5WndUzqot6ViWr51RX9bzqpl5Q3dWLqod6SfVUL6teqrfqoy6py8qrfqq/SlED1ED1mhqkBqshaqgapl5Xw9UbaoR6U6WqkWqUekuNVm+rMeodNVaNU+PVu2qCmqgmqclqipqq0tR7app6X01XH6gZaqaapWardDVHDflbpQX/B/nv/5P8Eb99+ja1XX2udqidapfarfaovWqf2qf2q/3qgDqgclSOOqgOqkPqkDqsDqtclauOqCPqqDqqjqlj6rg6rk6ok+q8+lmdVr+oM+qsOqvOqwvqgrr4t9+B0KClVlrrQOfT+XWMLqBj9XU6Tl+vC+obdETfqOP1TbqQvlkX1kV0UV1MJ+jiuoQ2GrXVpENdUpfSUX2LLq1v1Ym6jC6ry2mny+skfdu/nP9H62un2+n2ur3uoDvoTrqT7qw76y66i07Wybqr7qq76W66u+6ue+geuqfuqXvpXrqP7qP76r66n+6nU3SKHqhf04P0YD1ED9XD9Ot6uB6uR+gROlWn6lF6lB6tR+sxeoweq8fq8Xq8nqAn6El6kp6ip+g0naan6Wl6up6uZ+gZepaepdN1up6r5+p5ep5eoBfohXqhXqQX6SV6ic7QGTpTZ+osnaWX6+U6W6/QK/QqvUqv0Wv0Or1Ob9Ab9Ca9SW/RW3S23q636x16h96ld+k9eo/ep/fp/Xq/PqAP6Bydow/qg/qQPqQP68M6V+fqI/qIPqqP6mP6mD6uj+sT+oQ+pU/p0/q0PqPP6HP6nL6gL+iL+qK+rC9fuewLZCADHeggX5AviAligtggNogL4oKCQcEgEkSC+CA+KBTcHBQOigRFg2JBQlA8KBGYAAMbUBAGJYNSQTS4JSgd3BokBmWCskG5wAXlg6TgtqBCcHtQMbgjqBTcGVQO7gqqBFWDakH14O6gRnBPUDOoFdQO7g3qBHWDekH94L6gQXB/0DB4IGgUPBg0Dh4KmgQPB02DR4JmwaNB8+CxoEXweNAyeCJoFbQO2gRtg3Z/an3vzxR5yvUz/U2KGWAGmtfMIDPYDDFDzTDzuhlu3jAjzJsm1Yw0o8xbZrR524wx75ixZpwZb941E8xEM8lMNlPMVJNm3jPTzPtmuvnAzDAzzSwz26SbOWau+dDMM/PNAvORWWg+NovMYrPELDUZ5hOTaZaZLPOpWW4+M9lmhVlpVpnVZo1Za9aZ9WaD2Wg2mc1mi9lqtpnt5nOzw+w0u8xus8fsNfvMF2a/+dIcMF+ZHPO1OWj+Yg6Zb8xh863JNd+ZI+Z7c9T8YI6ZH81x85M5YU6aU+Znc9r8Ys6Ys+acOW8umF/NRXPJXDb+ysX9ldM7atSYD/NhDMZgLMZiHMZhQSyIEYxgPMZjISyEhbEwFsWimIAJWAJL4BWEhCWxJEYxiqWxNCZiIpbFsujQYRImYQWsgBWxIlbCSlgZK2MVrILVsBrejXfjPXgP1sJaeC/ei3WxLtbH+tgAG2BDbIiNsBE2xsbYBJtgU2yKzbAZNsfm2AJbYEtsia2wFbbBNtgO22F7bI8dsAN2wk7YGTtjF+yCyZiMXbErdsNu2B27Yw/sgT2xJ/bCXtgH+2Bf7Iv9sB+mYAoOxIE4CAfhEByCw3AYDsfhOAJHYCqm4igchaNxNI7BMTgWx+F4fBcn4ESchJNxCk7FNEzDaTgNp+N0nIEzcBbOwnRMx7k4F+fhPFyAC3AhLsRFuAiX4BLMwAzMxEzMwixcjssxG7NxJa7E1bga1+JaXI/rcSNuxM24GbfiVtyO23EH7sBduAv34B7ch/twP+7HA3gAczAHD+JBPISH8DAexlzMxSN4BI/iUTyGx/A4HscTeAJP4Sk8jafxDJ7Bc3gOL+CveBEv4WX0GGOliLXX2Th7vS1ob7AxtoD9+7ioLWYTbHFbwhpb2Bb5hxittYm2jC1ry1lny9ske9vv4iq2qq1mq9u7bQ17j635u7iBvd82tA/YRvZBW9/e9w9xY/uQbWIft03tE7aZbW2b27a2hX3ctrRP2Fa2tW1j29rO9hnbxT5rk+1ztqt9/ndxpl1m19sNdqPdZPfbL+05e94etT/YC/ZX28/2t8Ps63a4fcOOsG/aVDvyd/F4+66dYCfaSXaynWKn/i6eZWfbdDvHzrUf2nl2/u/iDPuJXWiz7CK72C6xS3+Lr6wpy35ql9vPbLZdYVfaVXa1XWPX2nX/ttZVdovdarfZffYLu8PutLvsbrvH7v0tvrKPA/Yrm2O/tkfs9/aQ/cYetsdsrv3ut/jK/o7ZH+1x+5M9YU/aU/Zne9r+Ys/Ys7/t/8ref7aX7GXrrSAgSYo0BZSP8lMMFaBYuo7i6HoqSDdQhG6keLqJCtHNVJiKUFEqRglUnEqQISRLRCGVpFIUpVuoNN1KiVSGylI5clSekug2qkC3U0W6gyrRnVSZ7qIqVJWqUXW6m2rQPVSTalFtupfqUF2qR/XpPmpA91NDeoAa0YPUmB6iJvQwNaVHqBk9Ss3pMWpBj1NLeoJaUWtqQ22pHT1J7ekp6kAdqRM9TZ3pGepCz1IyPUdd6XnqRi9Qd3qRetBL1JNepl7Um/rQK9SXXqV+1J9SaAANpNdoEA2mITSUhtHrNJzeoBH0JqXSSBpFb9FoepvG0Ds0lsbReHqXJtBEmkSTaQpNpTR6j6bR+zSdPqAZNJNm0WxKpzk0lz6keTSfFtBHtJA+pkW0mJbQUsqgTyiTllEWfUrL6TPKphW0klbRalpDa2kdracNtJE20WbaQltpG22nz2kH7aRdtJv20F7aR1/QfvqSDtBXlENf00H6Cx2ib+gwfUu59B0doe/pKP1Ax+hHOk4/0Qk6SafoZzpNv9AZOkvn6DxdoF/pIl2iy+RJhBDKUIU6DMJ8Yf4wJiwQxobXhXHh9WHB8IYwEt4Yxoc3hYXCm8PCYZGwaFgsTAiLhyVCE2JoQwrDsGRYKoyGt4Slw1vDxLBMWDYsF7qwfJgU3hZWCG8PK4Z3hJXCO8PK4V1hlbBq+PiD1cO7wxrhPWHNsFZYO7w3rBPWDeuF9cP7wgbh/WHD8IGwUfhgWDF8KGwSPhw2DR8Jm4WPhs3Dx8IW4eNhy/CJsFXYOmwTtg3bhU+G7cOnwg5hx7BT+HTYOXwm7BI+GyaHz4Vdw+f/8HhKOCAcGL4WvhZ6/4BaEl0azYh+Es2MLotmRT+NLo9+Fs2OroiujK6Kro6uia6Nrouuj26Iboxuim6ObolujW6Lel8/v3DgpFNOu8Dlc/ldjCvgYt11Ls5d7wq6G1zE3eji3U2ukLvZFXZFXFFXzCW44q6EMw6ddeRCV9KVclF3iyvtbnWJrowr68o558q7JNfWtXPtXHv3lOvgOrpO7mn3tHvGPeOedc+651xX97zr5l5w3d2Lrod7yb3kXna9XG/Xx73i+rpXXT/X36W4FDfQDXSD3CA3xA1xw9wwN9wNdyPcCJfqUt0oN8qNdqPdGDfGjXVj3Xg33k1wE9wkN8lNcVNcmktz09w0N91NdzPcDDfLzXLpLt3NdXPdPDfPLXAL3MLEhW6RW+SWuCUuw2W4TJfpslyWW+6Wu2yX7Va6lW61W+3WurVuvVvvNrqNbrPb7La6rW672+52uB1ul9vl9rg9bp/b5/a7/e6AO+ByXI476A66Q+6QO+y+dbnuO3fEfe+Ouh/cMfejO+5+cifcSXfK/exOu1/cGXfWnXPn3QX3q7voLrnLzru0yHuRaZH3I9MjH0RmRGZGZkVmR9IjcyJzIx9G5kXmRxZEPoosjHwcWRRZHFkSWRrJiHwSyYwsi2RFPo0sj3wWyY6siKyMrIqsjqyJeF98R+hL+lI+6m/xpf2tPtGX8WV9Oe98eZ/kb/MV/O2+or/DV/J3+sr+Ll/FV/XV/BO+lW/t2/i2vp1/0rf3T/kOvqPv5J/2nf0zvot/1if753xX/7zv5l/w3f2Lvod/yff0L/tevrfv41/xff2rvp/v71P8AD/Qv+YH+cF+iB/qh/nX/XD/hh/h3/SpfqQf5d/yo/3bfox/x4/14/x4/66f4Cf6SX6yn+Kn+jT/np/m3/fT/Qd+hp/pZ/nZPt3P8XP9h36en+8X+I/8Qv+xX+QX+yV+qc/wn/hMv8xn+U/9cv+Zz/Yr/Eq/yq/2a/xav86v9xv8Rr/Jb/Zb/Fa/zW/3n/sdfqff5Xf7PX6v3+e/8Pv9l/6A/8rn+K/9Qf8Xf8h/4w/7b32u/84f8d/7o/4Hf8z/6I/7n/wJf9Kf8j/70/4Xf8af9ef8eX/B/+ov+kv+svf+Wj9JZ4wxxhj770D9wfEB/+Rn8m/jioFCiOt3Fsv99zU3F/7rfLBM6BwRQjzXv+ej/3vUqZOSkvK392YrEZRaLISIXM3PJ67GK0Qn8YxIFh1FhX+6vsGy9wX6g/rRO4WI/bucGHE1vlr/9v+g/pNPj8+sHJ6L/0/qLxYisdTVnALiany1fsX/oH6R9n+w/gLfpAnR4e9y4sTV+Gr9JPGUeF4k/8M7GWOMMcYYY4yxvxosq3X/o/vnK/fnCfpqTn5xNf6j+3PGGGOMMcYYY4xdey/27vPsk8nJHbvzhCc84cm/Ta71fybGGGOMMcbYn+3qRf+1XgljjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMZZ3/f/4OrFrvUfGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGPsWvtfAQAA//9itDg8")
bpf$TOKEN_CREATE(0x24, &(0x7f0000000180), 0x8)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r5 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r5, &(0x7f0000001fc0)=""/184, 0x20002078)

6m35.636357068s ago: executing program 32 (id=18):
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0xfffffffffffffdee, &(0x7f0000000000)=0x8000000000005)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000009c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0xc)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000040)={0x0, 0x84, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="a800000000010904000500000000000002000000240001801400018008000100e000000108000200ac1e01010c00028005000100000009002400028014000180080001000000010908000200ac1e00010c000280050001000000000044000f800800014000000006080003400000002b080003400000000808000240000000400800014000000000fb0001400000000708000140000044f10800034000000003080007"], 0xa8}}, 0x0)

6m31.472963707s ago: executing program 33 (id=28):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f00000004c0)={0x5, 0x40000}, 0x10)
syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000000)='./file1\x00', 0x2000004c, &(0x7f00000004c0)=ANY=[@ANYBLOB='utf8,discard,dmask=00000000000000000000007,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c757466382c696f636861727365743d6d616363726f617469616e2c6e616d65636173653d312c616c6c6f775f7574696d653d3030303030303030303030372c756d61736b3d30303030303030303030303030303030303030303232362c0000000000000000d74bdc68"], 0x1, 0x14f7, &(0x7f0000002a80)="$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")
bpf$TOKEN_CREATE(0x24, &(0x7f0000000180), 0x8)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r5 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r5, &(0x7f0000001fc0)=""/184, 0x20002078)

5m43.032176749s ago: executing program 1 (id=118):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'veth1_to_hsr\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x7)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x18a}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r5}, 0x10)
close(r3)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
stat(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000280)=@nbd={'/dev/nbd', 0x0}, r7, &(0x7f0000000380)={0x0, 0x7a, 0x1, 0x2, 0x5, 0x9, 0xfc, 0x7, 0x7})
ioctl$KDSIGACCEPT(r6, 0x5607, 0x2c)
socket$nl_audit(0x10, 0x3, 0x9)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r9 = dup(r8)
ioctl$TIOCL_SETVESABLANK(r9, 0x560e, &(0x7f0000000140))
r10 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r10, 0x107, 0xa, 0x0, 0x0)
ioctl$TIOCL_BLANKSCREEN(r9, 0x541c, &(0x7f0000000040))
sendto$packet(r0, &(0x7f00000000c0)="3f031c000302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r1, 0x1, 0x0, 0x6, @multicast}, 0x14)

5m40.854041076s ago: executing program 1 (id=122):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000004080)={0x44, 0x4a, 0x1, 0x0, 0x25dfdbfc, {0xa, 0x0, 0x6e80}, [@nested={0x30, 0x143, 0x0, 0x1, [@nested={0x1e, 0x112, 0x0, 0x1, [@generic="3472fe6e3791b7e4a43465bcac4cd110d23f43de72328891362c"]}, @typed={0xc, 0xc9, 0x0, 0x0, @u64=0x6}]}]}, 0x44}}, 0x0)

5m39.824248837s ago: executing program 1 (id=124):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/locks\x00', 0x0, 0x0)
pread64(r5, &(0x7f00000024c0)=""/209, 0xd1, 0x8)
r6 = open(&(0x7f00009e1000)='./file0\x00', 0x149040, 0x10)
fcntl$setlease(r6, 0x400, 0x0)
fcntl$setlease(r6, 0x400, 0x2)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x100000000000000, 0x0, 0x100000, 0x0, 0x2004c8, 0x8000000, 0x7, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x1, 0x8]})
creat(&(0x7f00000001c0)='./file0\x00', 0x8)
r7 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r7, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r7, &(0x7f0000006380)={0x2020}, 0x2020)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
r8 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r8}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r9 = userfaultfd(0x801)
ioctl$UFFDIO_API(r9, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r9, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3})
syz_io_uring_setup(0x50cf, &(0x7f0000000000)={0x0, 0xfffffffc, 0x40000, 0x2, 0x333}, &(0x7f0000000080), &(0x7f0000ff4000))
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r4, 0x4048ae9b, &(0x7f0000000040)={0x80000, 0x0, [0x80, 0x0, 0x8, 0x4, 0x3, 0x5, 0x400, 0x936b]})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)

5m36.734830822s ago: executing program 1 (id=125):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x5, 0x3, 0xc06a2f6, 0x1, 0x7}, 0x6, 0x0, 0xa, 0x4, 0x6, 0x8, 0x18, 0x9, 0x3, 0x4, {0x0, 0x2, 0x9, 0x800, 0x8704, 0x27000000}}}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001a40)=@newtfilter={0x30, 0x2c, 0xd2b, 0x800, 0x25dfdbfc, {0x0, 0x0, 0x0, r4, {0x10, 0xfff1}, {}, {0x7, 0xb}}, [@filter_kind_options=@f_fw={{0x7}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x24044094)
r5 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000002380)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bc21, 0x25dfdbff, {0x0, 0x0, 0x0, r6, {0xffff, 0x8}, {}, {0xfff2, 0x2}}, [@filter_kind_options=@f_basic={{0xa}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x8008}, 0x20004804)
r7 = socket(0x400000000010, 0x3, 0x0)
r8 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=@gettfilter={0x24, 0x2e, 0x205, 0x70bd2c, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0xc, 0x10}, {0x0, 0xfff1}, {0x8}}}, 0x24}, 0x1, 0x0, 0x0, 0x5}, 0x40410c0)

5m34.013442281s ago: executing program 1 (id=130):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'veth1_to_hsr\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x7)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x18a}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r5}, 0x10)
close(r3)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
stat(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000280)=@nbd={'/dev/nbd', 0x0}, r7, &(0x7f0000000380)={0x0, 0x7a, 0x1, 0x2, 0x5, 0x9, 0xfc, 0x7, 0x7})
ioctl$KDSIGACCEPT(r6, 0x5607, 0x2c)
socket$nl_audit(0x10, 0x3, 0x9)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r9 = dup(r8)
ioctl$TIOCL_SETVESABLANK(r9, 0x560e, &(0x7f0000000140))
r10 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r10, 0x107, 0xa, 0x0, 0x0)
ioctl$TIOCL_BLANKSCREEN(r9, 0x541c, &(0x7f0000000040))
sendto$packet(r0, &(0x7f00000000c0)="3f031c000302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r1, 0x1, 0x0, 0x6, @multicast}, 0x14)

5m30.424991978s ago: executing program 1 (id=134):
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000080)=0x454e, 0x4)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@ipv6_newaddr={0x20, 0x14, 0x1, 0x0, 0x4, {0xa, 0x0, 0x2c33898d3a30fcc6}, [@IFA_FLAGS={0x8, 0x8, 0x402}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000040}, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e24, @multicast1}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)

5m14.367784232s ago: executing program 34 (id=134):
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000080)=0x454e, 0x4)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@ipv6_newaddr={0x20, 0x14, 0x1, 0x0, 0x4, {0xa, 0x0, 0x2c33898d3a30fcc6}, [@IFA_FLAGS={0x8, 0x8, 0x402}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000040}, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e24, @multicast1}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)

58.980622682s ago: executing program 5 (id=548):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000005c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x45, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000040)={0x0, 0x7, 0xfa00, {0x0, &(0x7f0000000000), 0x13f}}, 0x20)
close(r2)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, 0x0, 0x8844)

57.923038418s ago: executing program 5 (id=552):
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x3, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="02050000070000002bbd7000feffffff0400070000a000000a"], 0x38}, 0x1, 0x400000000000000}, 0x0)

57.052776063s ago: executing program 5 (id=556):
pipe2(&(0x7f0000001cc0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80000)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@dfltgid}]}})

55.827556696s ago: executing program 5 (id=559):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r3, 0x0, 0x0, 0x0, &(0x7f0000000380), 0x0, 0xa1b, 0x0, 0x2, 0x0, &(0x7f0000000700)="010a", 0x0}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x2d)
r4 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000000)='source', 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
tkill(0x0, 0xb)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, 0x0, 0x0)
r6 = accept4(r1, 0x0, 0x0, 0x80000)
sendmmsg$alg(r6, &(0x7f0000000040), 0x0, 0x40800)
r7 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_SUBDEV_ENUM_DV_TIMINGS(r7, 0xc0945662, &(0x7f0000000100)={0x9, 0x0, '\x00', {0x0, @bt={0x3, 0x3, 0x0, 0x2, 0x8, 0x7, 0x9, 0xfffff801, 0x7, 0x80000001, 0xb92, 0x4a72, 0x8, 0x4, 0x0, 0x1, {0x78, 0x3ff}, 0x2, 0x2}}})

51.890945644s ago: executing program 5 (id=566):
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x3, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="02050000070000002bbd7000feffffff0400070000a000000a"], 0x38}, 0x1, 0x400000000000000}, 0x0)

50.47328046s ago: executing program 5 (id=568):
socket$igmp6(0xa, 0x3, 0x2)
syz_init_net_socket$llc(0x1a, 0x802, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x10, 0x2, 0x213}, &(0x7f00000000c0), 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x0, 0x0}, &(0x7f00000002c0)=0xc)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, {0xff}}, './file0\x00'})
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$nl_netfilter(0x10, 0x3, 0xc)
gettid()
r3 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
r4 = syz_open_dev$video(&(0x7f0000000440), 0x8, 0x0)
ioctl$VIDIOC_S_SELECTION(r4, 0xc040565f, &(0x7f0000000940)={0xa, 0x0, 0x7, {0x3, 0x1000, 0xfc, 0x86c}})
ioctl$vim2m_VIDIOC_S_FMT(r3, 0xc0d05605, &(0x7f0000000100)={0x2, @pix_mp={0x3, 0x0, 0x3231564e, 0x0, 0x3, [{0x101, 0x9fb}, {0xb, 0x4}, {0x6, 0x1}, {0x3, 0x7fffffff}, {0x1, 0x8}, {0x7ff, 0x2007}, {0x7, 0x8}, {0x6, 0x2d19}], 0x1, 0x0, 0x0, 0x2, 0x1}})
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock2(&(0x7f0000658000/0x4000)=nil, 0x4000, 0x0)
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
rename(&(0x7f0000000240)='./file0\x00', &(0x7f0000000c40)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00')
socket$nl_netfilter(0x10, 0x3, 0xc)
fsopen(&(0x7f0000000240)='cgroup2\x00', 0x0)
syz_open_dev$amidi(&(0x7f00000006c0), 0x3e0, 0x123e81)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="640000000206030004000000000000000000000005000100070000000900020073797a30000000001400078005001500040000000800124000000000050005000a000000050004000000000015000300686173683a69702c706f72742c6e65", @ANYRES8=r1], 0x64}, 0x1, 0x0, 0x0, 0x4000800}, 0x10000)

34.534109452s ago: executing program 35 (id=568):
socket$igmp6(0xa, 0x3, 0x2)
syz_init_net_socket$llc(0x1a, 0x802, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x10, 0x2, 0x213}, &(0x7f00000000c0), 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x0, 0x0}, &(0x7f00000002c0)=0xc)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, {0xff}}, './file0\x00'})
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$nl_netfilter(0x10, 0x3, 0xc)
gettid()
r3 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
r4 = syz_open_dev$video(&(0x7f0000000440), 0x8, 0x0)
ioctl$VIDIOC_S_SELECTION(r4, 0xc040565f, &(0x7f0000000940)={0xa, 0x0, 0x7, {0x3, 0x1000, 0xfc, 0x86c}})
ioctl$vim2m_VIDIOC_S_FMT(r3, 0xc0d05605, &(0x7f0000000100)={0x2, @pix_mp={0x3, 0x0, 0x3231564e, 0x0, 0x3, [{0x101, 0x9fb}, {0xb, 0x4}, {0x6, 0x1}, {0x3, 0x7fffffff}, {0x1, 0x8}, {0x7ff, 0x2007}, {0x7, 0x8}, {0x6, 0x2d19}], 0x1, 0x0, 0x0, 0x2, 0x1}})
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock2(&(0x7f0000658000/0x4000)=nil, 0x4000, 0x0)
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
rename(&(0x7f0000000240)='./file0\x00', &(0x7f0000000c40)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00')
socket$nl_netfilter(0x10, 0x3, 0xc)
fsopen(&(0x7f0000000240)='cgroup2\x00', 0x0)
syz_open_dev$amidi(&(0x7f00000006c0), 0x3e0, 0x123e81)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="640000000206030004000000000000000000000005000100070000000900020073797a30000000001400078005001500040000000800124000000000050005000a000000050004000000000015000300686173683a69702c706f72742c6e65", @ANYRES8=r1], 0x64}, 0x1, 0x0, 0x0, 0x4000800}, 0x10000)

8.461420813s ago: executing program 0 (id=659):
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r1 = dup2(r0, r0)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000240)={'\x00', 0x40, 0xa, 0x1, 0x40000000, 0x10})
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000700)='kfree\x00', r2}, 0x18)
ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0)

7.980382343s ago: executing program 7 (id=661):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB], 0x2c}}, 0x0)

7.433239028s ago: executing program 0 (id=663):
r0 = openat$random(0xffffffffffffff9c, &(0x7f0000000340), 0x80201, 0x0)
fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000380), 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x3, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x10, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={0x0}, 0x18)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)=@x86={0x0, 0x1, 0x0, 0x0, 0x4, 0x0, 0x10, 0x1, 0x0, 0x2, 0x9, 0xd, 0x0, 0x0, 0x1049, 0x0, 0xff, 0xef, 0x0, '\x00', 0x70})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

7.211474724s ago: executing program 3 (id=664):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r4)
r5 = socket$unix(0x1, 0x5, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x8000000, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x28, 0x2, {{0x100, 0x6, 0x6361, 0x5, 0xfffffffd, 0x6}, [@TCA_NETEM_LATENCY64={0xc, 0xa, 0x7}]}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x80000, {0x0, 0x0, 0x0, r7, {0x0, 0x10}, {0x1, 0xb}, {0x8, 0xf}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0x10, 0x3, {0x2, 0x9, 0x200}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x2000c061}, 0x4008000)
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

7.207545892s ago: executing program 7 (id=665):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b70300000000000085000000040000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./bus\x00', 0x289c2, 0x1)
fcntl$setlease(r2, 0x400, 0x1)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10)
sendto$inet(r0, &(0x7f0000000000), 0xfffffffffffffd74, 0x40004, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r3}, 0x18)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB='/\x00\x00'], 0x20)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSIGACCEPT(r4, 0x5607, 0x4)
ioctl$VT_ACTIVATE(r4, 0x5606, 0x4)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{}, 0x0, 0x0}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0, r3, 0x0, 0x4}, 0x6e)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x22, &(0x7f0000000000)=0x1, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
sendmmsg$inet(r5, &(0x7f0000000c00)=[{{&(0x7f0000000040)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000540)}}, {{&(0x7f00000004c0)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000000b80)=[{&(0x7f0000000680)="d1b64e668b306ee86c74d16a00c1426aad44134142cdf9e0c8f3759207f4871fba53544d06e7291dc44fcc93b24348d32fda6e18eacfc99bf7159c4bf034dca7389744897c1aa6b4310c6204ecd0640f1fd114ce9db73b4fe15990561b13043efb526e68bf60f5fd6512dcf4b7eee7d13ccdcef3efc5e0b043339ade0879dcbc98bbe762bdf5e495d3f625ec0e2fe2f07805cf1afeb20a2bea4d16cf8b25484f6be02661fa88f2bd23e58592c1477c2fb42d4696742e6aeb00649c535652118fa3cf232b08", 0xc5}, {&(0x7f0000000480)="5b99ce6bbda5ef6ad6945feaf873e223e12bd8483b4e87913d04", 0x1a}, {&(0x7f0000000940)="528c61bcfc9fc198b28e485426a3b13a809cf604be1ebbfa42b0aa98103217aabdab82", 0x23}, {&(0x7f0000000c80)="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", 0x1bc}, {&(0x7f0000000a80)="7686edb1b0c6bba6e71dc6ce2925a8ad4ba8f0850919e93a0a1858b9abbe37ae7fdfaf3f513e6be7e6edd8683db491a49283d89b7a24e9c2e104408d04f726c7c45f5e4031daecb5c5e08a164e3053128176956801efa65520e5dd053836fcc9c3384c1b5209cf6367841688c0ed9b3c1e25", 0x72}, {&(0x7f0000000b00)="2acfff5676edb1acf636626af447500cb4fa1383936ca2d21a0c387bd889018a2e57f804b8b500660b9ba29472889864745af1b5cf933d954d03b19fc1ec12571c24aef11d3157373406159b8f8994d560252ebe7c0a013970c91c0b48356a7f717d959496596573477a", 0x6a}], 0x6}}], 0x2, 0x2404c042)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000080)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)

6.31095158s ago: executing program 0 (id=667):
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)={0x14, 0x0, 0x1, 0x70bd28, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x800)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000000)={0x6, 'wlan1\x00', {}, 0x108})
syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01090000000000000f478e"])
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x101800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x0, 0x10000, 0x2, 0x4002004c4, 0xffe, 0x0, 0x0, 0x0, 0x900f, 0x0, 0xd57b, 0x0, 0x7], 0xeeee8000, 0x2113c0})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

5.728040708s ago: executing program 6 (id=668):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000002140)='bbr\x00', 0x4)
bind$inet6(r0, 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x51, @ipv4={'\x00', '\xff\xff', @loopback}, 0x104}, 0x1c)

5.555485578s ago: executing program 3 (id=669):
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000700), 0x0, 0xf, 0xffffffffffffffff, 0x4}, 0x38)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x3, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300005500000085000000d000000095"], &(0x7f0000000340)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r0, 0x27, 0xe80, 0x0, &(0x7f0000000740)="f8ad48cc02cb29dcc8007f5b0800", 0x0, 0x3ad9, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x50)

5.312580248s ago: executing program 7 (id=670):
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x1f, 0x17, &(0x7f00000007c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xc}, {{}, {}, {}, {0x85, 0x0, 0x0, 0x8}}, {{0x6, 0x0, 0xb, 0x9, 0x0, 0x4}, {0x65, 0x0, 0x6, 0x9}}, [@printk={@ld, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x1, 0x2, 0xa, 0x9}, {0x4, 0x0, 0x3, 0x9}, {}, {}, {0x15}}], {{0x5, 0x1, 0x3, 0x3}, {0x5, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x76}}}, 0x0, 0xd, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000580)=ANY=[@ANYBLOB="61128c000000000061134c0000000000bf2000000000000007000000080000003d0301000000000095000000000000006926000000000000bf67000000000000150600000fbf52ee4507000002000000250600000ee60000bf250000000000001f010000000000006507040002000000070700004c0000001f75000000000000bf540000000000000704000004000bffbd350100000000009500000000000000050000000000000095000000000000001f1bd1fe4b3af9c97925711095cc1a3a25b9418ffdc4a1da470a14e4391c3fb600100000a4911fe82664d775cdb9dfc83fa32db39b636c1866b526ffff00005172a74e9afe751664f580a6c5bccf1ef6583e0c1cd1f7fe416b5d6902e7db826e6dffda3aabdc5b5ce08ca4ee6035f1b7dc6b3b4672f7c22efa6d633473cd548789f8ab5a654106888aff6f3eb7e962160dac2c68c044584bb50e9c0952bab14c2c65176c7e40faaea21457d5f2d6f40c4d3390a1e14561cbf0a6ccd15f45c52753e24c6488b23ec9a3261c7706cecfc37b25b382c76631983e053efde84f80c5483d26bfaa66bf477cca77d399c76469551913f98a26fa0363ebb7f861a3d53d4dd6d91f7dcefb0748cd20346878bc0759851cd32ba781d6e62e8eee022be7fb6fff27871a5a7a723e5e330f454f0c568fbfc9b901bd6cc3af8355e5ecf3f74a472c7861beeeba7d5d25208a2e1d4c0b8e4f82ce05ffe1c69aaea312bbb3656c873b26161dccd130823e87d0b411e6fdb2cc4def13ecdf4217b647803c9dbaba0cd1036081842b7fc3a30759c24058ad22001bc2817d4604bc2d49bf41894e61356ddf6d394a397c67321a0dd4ac4082ee583de98e8a89535050054d40a4dbd809d0ce9c444286b5d5a51d933d35714d8ca7fb49b5329107825926fd5caaf4ddd1e81e616fc56e47d30e51cd558d630f665a88da23e96c45a0a4ccd554a92628336eb43de1022d60e5ffe41b6bef61ea28c5ea09a832f9f84b10aa4b6350930b11"], 0x0}, 0x94)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_devices(r0, &(0x7f0000000840)=ANY=[@ANYBLOB="1e0308004d6b71ef288563"], 0xffdd)

5.183373069s ago: executing program 0 (id=671):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0)
getsockname$packet(r2, 0x0, &(0x7f0000000200))
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001500)=@newqdisc={0x6c, 0x24, 0xe0b, 0x0, 0x4, {0x0, 0x0, 0x0, 0x0, {0x0, 0x9}, {0xffff, 0xffff}, {0xfff1}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x3c, 0x2, {{0x1ff, 0x4, 0x0, 0x0, 0xfffffffd, 0x8}, [@TCA_NETEM_ECN={0x8, 0x7, 0x1}, @TCA_NETEM_LOSS={0x18, 0x5, 0x0, 0x1, [@NETEM_LOSS_GE={0x14, 0x2, {0x2, 0xb1e, 0x1, 0xffffffff}}]}]}}}]}, 0x6c}}, 0x0)
sendto$packet(r0, &(0x7f00000001c0)="44c33b69ebc9e05e9bdec0c288a8", 0xe, 0x800, &(0x7f0000000440)={0x11, 0x11, 0x0, 0x1, 0x9, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xf}}, 0x14)

5.013598721s ago: executing program 6 (id=672):
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r1 = dup2(r0, r0)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000240)={'\x00', 0x40, 0xa, 0x1, 0x40000000, 0x10})
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000700)='kfree\x00', r2}, 0x18)
ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0)

4.516183818s ago: executing program 7 (id=673):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000280), r1)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r7, 0x8933, &(0x7f00000001c0)={'wpan0\x00', <r9=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_KEY(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)={0x64, r8, 0x1, 0xffffffff, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r9}, @NL802154_ATTR_SEC_KEY={0x48, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "403a050c7a0100009f8f90f800"}, @NL802154_KEY_ATTR_ID={0x28, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_IMPLICIT={0x1c, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa3}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x1}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x2}]}, @NL802154_KEY_ID_ATTR_MODE={0x8}]}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x2}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x800}, 0x0)
sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(r1, &(0x7f0000000440)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x30, r6, 0x400, 0x70bd2c, 0x25dfdbfc, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r9}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x3}]}, 0x30}, 0x1, 0x0, 0x0, 0x804}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r10 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
semget$private(0x0, 0x4000000009, 0x208)
connect$netrom(r10, &(0x7f0000000300)={{0x6, @rose}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48)
sendto$netrom(r10, 0x0, 0x0, 0x0, &(0x7f0000000000)={{0x6, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}, [@bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null]}, 0x48)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000002c0), r1)
sendmsg$NLBL_UNLABEL_C_STATICADD(r1, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x8, 0x3000000000002}, 0x0)
r11 = socket$inet(0x2, 0x2, 0x4)
setsockopt$IP_VS_SO_SET_ADD(r11, 0x0, 0x482, &(0x7f00000000c0)={0x84, @dev={0xac, 0x14, 0x14, 0x20}, 0x8015, 0x1, 'wlc\x00', 0x1, 0x7, 0x71}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000000)={{0x84, @loopback, 0x4e21, 0x3, 'lblcr\x00', 0x0, 0x81, 0x3a}, {@rand_addr=0x64010105, 0x4e25, 0x0, 0xc3, 0xfffffff8, 0x12d5c}}, 0x44)
r12 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$sock(r12, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0)
bind$802154_dgram(r0, &(0x7f0000000140)={0x24, @long={0x3, 0x3}}, 0xb)

4.274367205s ago: executing program 0 (id=674):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000180), 0xfc, 0x564, &(0x7f00000008c0)="$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")
open(0x0, 0x14937e, 0x111)
pwritev2(0xffffffffffffffff, &(0x7f0000002140)=[{&(0x7f0000000e40)="8c", 0x1}], 0x1, 0xb0a1, 0x1, 0x81)

3.946685392s ago: executing program 3 (id=675):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x18, 0x140f, 0xee70877cfbc8a0b9, 0x70bd2d, 0x25dfdbfd, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x18}, 0x1, 0x0, 0x0, 0x24044000}, 0x41844)

3.914145067s ago: executing program 6 (id=676):
r0 = openat$random(0xffffffffffffff9c, &(0x7f0000000340), 0x80201, 0x0)
fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000380), 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x3, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x10, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={0x0}, 0x18)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)=@x86={0x0, 0x1, 0x0, 0x0, 0x4, 0x0, 0x10, 0x1, 0x0, 0x2, 0x9, 0xd, 0x0, 0x0, 0x1049, 0x0, 0xff, 0xef, 0x0, '\x00', 0x70})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

2.572976364s ago: executing program 3 (id=677):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[], 0x1c}}, 0x0)

2.413615349s ago: executing program 7 (id=678):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200010, &(0x7f00000003c0)={[{@resgid}, {}, {@grpquota}, {@nobarrier}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@discard}, {@noauto_da_alloc}, {@stripe={'stripe', 0x3d, 0x2}}]}, 0x3, 0x572, &(0x7f00000006c0)="$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")
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2041, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000080)={0x49de, 0x0, 0x0, 0xbfff, 0x0, "ec28a144f13d7607"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x10, "0062ba5d8200"})
syz_open_pts(r0, 0x20800)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000100)=0x44)

2.316262651s ago: executing program 6 (id=679):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000000)={0x0, 0x3, 0x0, 0x1, 0x400000000000000}, 0x0)

2.164151749s ago: executing program 0 (id=680):
syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f0000000180)='./file1\x00', 0x8, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0xfb, 0x6a8, &(0x7f0000001dc0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbee3, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x20)
getdents64(r3, &(0x7f0000000f80)=""/4096, 0xa2)

1.700693618s ago: executing program 3 (id=681):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000002140)='bbr\x00', 0x4)
bind$inet6(r0, 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x51, @ipv4={'\x00', '\xff\xff', @loopback}, 0x104}, 0x1c)

1.360811404s ago: executing program 6 (id=682):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x4, [@typedef={0x2}]}, {0x0, [0x0, 0x61]}}, 0x0, 0x28, 0x0, 0x0, 0x80}, 0x28)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001300)=@framed={{}, [@alu={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}]}, &(0x7f0000000040)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0xb, r0, 0x8, 0x0, 0x0, 0x14, 0x0, 0x14}, 0x94)

1.041142714s ago: executing program 7 (id=683):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0)
getsockname$packet(r2, 0x0, &(0x7f0000000200))
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001500)=@newqdisc={0x6c, 0x24, 0xe0b, 0x0, 0x4, {0x0, 0x0, 0x0, 0x0, {0x0, 0x9}, {0xffff, 0xffff}, {0xfff1}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x3c, 0x2, {{0x1ff, 0x4, 0x0, 0x0, 0xfffffffd, 0x8}, [@TCA_NETEM_ECN={0x8, 0x7, 0x1}, @TCA_NETEM_LOSS={0x18, 0x5, 0x0, 0x1, [@NETEM_LOSS_GE={0x14, 0x2, {0x2, 0xb1e, 0x1, 0xffffffff}}]}]}}}]}, 0x6c}}, 0x0)
sendto$packet(r0, &(0x7f00000001c0)="44c33b69ebc9e05e9bdec0c288a8", 0xe, 0x800, &(0x7f0000000440)={0x11, 0x11, 0x0, 0x1, 0x9, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xf}}, 0x14)

1.002531601s ago: executing program 3 (id=684):
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000700), 0x0, 0xf, 0xffffffffffffffff, 0x4}, 0x38)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x3, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300005500000085000000d000000095"], &(0x7f0000000340)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r0, 0x27, 0xe80, 0x0, &(0x7f0000000740)="f8ad48cc02cb29dcc8007f5b0800", 0x0, 0x3ad9, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x50)

0s ago: executing program 6 (id=685):
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r1 = dup2(r0, r0)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000240)={'\x00', 0x40, 0xa, 0x1, 0x40000000, 0x10})
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000700)='kfree\x00', r2}, 0x18)
ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0)

kernel console output (not intermixed with test programs):

etting the MTU to 1560 would solve the problem.
[  342.921269][ T6591] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  343.078989][ T6501] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  343.146587][ T6680] capability: warning: `syz.0.161' uses deprecated v2 capabilities in a way that may be insecure
[  343.312273][ T6501] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  343.521371][ T6501] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  344.100933][ T6501] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  344.115151][   T30] audit: type=1326 audit(1757639337.132:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6688 comm="syz.0.164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  344.232970][ T6591] hsr_slave_0: entered promiscuous mode
[  344.243950][ T6591] hsr_slave_1: entered promiscuous mode
[  344.253312][ T6591] debugfs: 'hsr0' already exists in 'hsr'
[  344.259245][ T6591] Cannot create hsr debugfs directory
[  344.274868][   T30] audit: type=1326 audit(1757639337.172:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6688 comm="syz.0.164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  344.297779][   T30] audit: type=1326 audit(1757639337.172:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6688 comm="syz.0.164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  344.322252][   T30] audit: type=1326 audit(1757639337.172:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6688 comm="syz.0.164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  344.855990][ T6518] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  344.869196][ T6693] loop3: detected capacity change from 0 to 2048
[  344.947962][ T6518] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  344.986016][ T6693] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  345.046476][   T30] audit: type=1800 audit(1757639338.072:48): pid=6693 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.165" name="bus" dev="loop3" ino=18 res=0 errno=0
[  345.139137][ T6518] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  345.304108][ T6518] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  345.718613][ T5815] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  346.333728][ T6501] 8021q: adding VLAN 0 to HW filter on device bond0
[  346.617900][ T6591] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  346.693174][ T6591] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  346.853533][ T6591] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  346.989367][ T6501] 8021q: adding VLAN 0 to HW filter on device team0
[  347.008442][ T6591] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  347.223287][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  347.229960][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  347.358189][ T3985] bridge0: port 1(bridge_slave_0) entered blocking state
[  347.365929][ T3985] bridge0: port 1(bridge_slave_0) entered forwarding state
[  347.554843][ T3985] bridge0: port 2(bridge_slave_1) entered blocking state
[  347.562555][ T3985] bridge0: port 2(bridge_slave_1) entered forwarding state
[  347.594186][ T6721] loop0: detected capacity change from 0 to 512
[  347.776400][ T6721] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  347.789750][ T6721] ext4 filesystem being mounted at /62/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  348.002574][ T6518] 8021q: adding VLAN 0 to HW filter on device bond0
[  348.319925][ T6518] 8021q: adding VLAN 0 to HW filter on device team0
[  348.421730][ T2999] bridge0: port 1(bridge_slave_0) entered blocking state
[  348.429314][ T2999] bridge0: port 1(bridge_slave_0) entered forwarding state
[  348.557348][ T2999] bridge0: port 2(bridge_slave_1) entered blocking state
[  348.565033][ T2999] bridge0: port 2(bridge_slave_1) entered forwarding state
[  349.405189][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  349.626086][ T6591] 8021q: adding VLAN 0 to HW filter on device bond0
[  349.977185][ T6591] 8021q: adding VLAN 0 to HW filter on device team0
[  350.086406][ T3709] bridge0: port 1(bridge_slave_0) entered blocking state
[  350.094112][ T3709] bridge0: port 1(bridge_slave_0) entered forwarding state
[  350.312710][ T3709] bridge0: port 2(bridge_slave_1) entered blocking state
[  350.320300][ T3709] bridge0: port 2(bridge_slave_1) entered forwarding state
[  351.964321][ T6501] 8021q: adding VLAN 0 to HW filter on device batadv0
[  352.239248][   T30] audit: type=1326 audit(1757639345.252:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6751 comm="syz.0.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  352.262416][   T30] audit: type=1326 audit(1757639345.252:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6751 comm="syz.0.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  352.285834][   T30] audit: type=1326 audit(1757639345.262:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6751 comm="syz.0.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=201 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  352.308891][   T30] audit: type=1326 audit(1757639345.262:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6751 comm="syz.0.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  352.331910][   T30] audit: type=1326 audit(1757639345.262:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6751 comm="syz.0.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  352.555626][ T6742] loop3: detected capacity change from 0 to 8192
[  352.598694][ T6518] 8021q: adding VLAN 0 to HW filter on device batadv0
[  354.266402][ T6591] 8021q: adding VLAN 0 to HW filter on device batadv0
[  355.218579][ T6774] netlink: 36 bytes leftover after parsing attributes in process `syz.0.177'.
[  358.664294][ T6501] veth0_vlan: entered promiscuous mode
[  358.850329][ T6501] veth1_vlan: entered promiscuous mode
[  359.234727][ T6797] team0: Port device team_slave_0 removed
[  359.458843][ T6501] veth0_macvtap: entered promiscuous mode
[  359.537769][ T6501] veth1_macvtap: entered promiscuous mode
[  359.728028][ T6518] veth0_vlan: entered promiscuous mode
[  359.824797][ T6501] batman_adv: batadv0: Interface activated: batadv_slave_0
[  359.890933][ T6518] veth1_vlan: entered promiscuous mode
[  359.968803][ T6501] batman_adv: batadv0: Interface activated: batadv_slave_1
[  360.112190][   T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  360.145091][   T12] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  360.222918][   T12] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  360.254038][   T12] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  360.898581][ T6518] veth0_macvtap: entered promiscuous mode
[  360.966643][ T6518] veth1_macvtap: entered promiscuous mode
[  361.232164][ T6591] veth0_vlan: entered promiscuous mode
[  361.279426][ T6808] loop3: detected capacity change from 0 to 512
[  361.290347][ T6518] batman_adv: batadv0: Interface activated: batadv_slave_0
[  361.340080][ T6808] EXT4-fs: Ignoring removed nomblk_io_submit option
[  361.388057][ T6518] batman_adv: batadv0: Interface activated: batadv_slave_1
[  361.442398][ T6591] veth1_vlan: entered promiscuous mode
[  361.515441][ T6808] EXT4-fs error (device loop3): ext4_iget_extra_inode:5104: inode #15: comm syz.3.182: corrupted in-inode xattr: e_value size too large
[  361.570000][ T1896] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  361.615702][ T6808] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.182: couldn't read orphan inode 15 (err -117)
[  361.657785][ T6808] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  361.664404][ T1896] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  361.799246][ T1896] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  361.856235][ T4030] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  362.006207][ T6591] veth0_macvtap: entered promiscuous mode
[  362.219941][ T6591] veth1_macvtap: entered promiscuous mode
[  362.811817][   T30] audit: type=1800 audit(1757639355.812:54): pid=6817 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.182" name="file2" dev="loop3" ino=16 res=0 errno=0
[  363.656468][ T6591] batman_adv: batadv0: Interface activated: batadv_slave_0
[  364.641692][ T6591] batman_adv: batadv0: Interface activated: batadv_slave_1
[  364.681313][   T14] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  364.762392][ T2967] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  364.771450][ T2967] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  364.903534][ T2967] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  365.253055][ T5815] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  366.693053][ T5827] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  366.722565][ T5827] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  366.732526][ T5827] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  366.748679][ T5827] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  366.764277][ T5827] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  367.445504][ T6839] netlink: 36 bytes leftover after parsing attributes in process `syz.3.185'.
[  368.084433][ T5813] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  368.099653][ T5813] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  368.111204][ T5813] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  368.156691][ T5813] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  368.209717][ T5813] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  368.864601][ T5813] Bluetooth: hci2: command tx timeout
[  369.713485][ T6860] syzkaller0: entered promiscuous mode
[  369.719199][ T6860] syzkaller0: entered allmulticast mode
[  370.383109][ T5813] Bluetooth: hci6: command tx timeout
[  370.693565][ T6836] chnl_net:caif_netlink_parms(): no params data found
[  370.751406][   T35] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  370.902874][ T6843] chnl_net:caif_netlink_parms(): no params data found
[  370.941903][ T5813] Bluetooth: hci2: command tx timeout
[  370.973807][   T35] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  371.544939][   T35] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  371.763510][   T35] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.357762][ T6886] loop3: detected capacity change from 0 to 128
[  372.486408][ T5813] Bluetooth: hci6: command tx timeout
[  372.496672][ T6886] vfat: Unknown parameter '0xffffffffffffffff�01777777777777777777777���'
[  373.032577][ T5813] Bluetooth: hci2: command tx timeout
[  373.186948][   T35] bridge_slave_1: left allmulticast mode
[  373.193064][   T35] bridge_slave_1: left promiscuous mode
[  373.200039][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[  373.324423][   T35] bridge_slave_0: left allmulticast mode
[  373.330328][   T35] bridge_slave_0: left promiscuous mode
[  373.337639][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[  374.691696][ T5813] Bluetooth: hci6: command tx timeout
[  375.717136][ T5813] Bluetooth: hci2: command tx timeout
[  376.738801][ T5813] Bluetooth: hci6: command tx timeout
[  377.767629][   T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  377.859292][   T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  377.928943][   T35] bond0 (unregistering): Released all slaves
[  379.723395][   T35] hsr_slave_0: left promiscuous mode
[  379.792026][   T35] hsr_slave_1: left promiscuous mode
[  379.801883][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  379.809461][   T35] batman_adv: batadv0: Removing interface: batadv_slave_0
[  380.094746][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  380.104463][   T35] batman_adv: batadv0: Removing interface: batadv_slave_1
[  380.216554][   T35] veth1_macvtap: left promiscuous mode
[  380.222717][   T35] veth0_macvtap: left promiscuous mode
[  380.228759][   T35] veth1_vlan: left promiscuous mode
[  380.234649][   T35] veth0_vlan: left promiscuous mode
[  380.991263][ T6912] netlink: 36 bytes leftover after parsing attributes in process `syz.3.194'.
[  382.007301][   T35] team0 (unregistering): Port device team_slave_1 removed
[  382.184445][   T35] team0 (unregistering): Port device team_slave_0 removed
[  383.795939][ T6836] bridge0: port 1(bridge_slave_0) entered blocking state
[  383.807334][ T6836] bridge0: port 1(bridge_slave_0) entered disabled state
[  383.815527][ T6836] bridge_slave_0: entered allmulticast mode
[  383.825626][ T6836] bridge_slave_0: entered promiscuous mode
[  384.210189][ T6836] bridge0: port 2(bridge_slave_1) entered blocking state
[  384.217971][ T6836] bridge0: port 2(bridge_slave_1) entered disabled state
[  384.226104][ T6836] bridge_slave_1: entered allmulticast mode
[  384.236279][ T6836] bridge_slave_1: entered promiscuous mode
[  384.332773][ T5827] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  384.353727][ T5827] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  384.364371][ T5827] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  384.458848][ T5827] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  384.542686][ T5827] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  385.110017][ T6836] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  385.132729][ T6843] bridge0: port 1(bridge_slave_0) entered blocking state
[  385.140358][ T6843] bridge0: port 1(bridge_slave_0) entered disabled state
[  385.148622][ T6843] bridge_slave_0: entered allmulticast mode
[  385.158759][ T6843] bridge_slave_0: entered promiscuous mode
[  385.416023][ T6843] bridge0: port 2(bridge_slave_1) entered blocking state
[  385.423859][ T6843] bridge0: port 2(bridge_slave_1) entered disabled state
[  385.432098][ T6843] bridge_slave_1: entered allmulticast mode
[  385.442069][ T6843] bridge_slave_1: entered promiscuous mode
[  385.472917][ T6836] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  385.739486][ T6843] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  386.037158][ T6843] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  386.246358][ T6943] loop3: detected capacity change from 0 to 128
[  386.373538][ T6943] EXT4-fs (loop3): Test dummy encryption mode enabled
[  386.470447][ T6943] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  386.585475][ T6943] ext4 filesystem being mounted at /mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  386.702244][ T5813] Bluetooth: hci3: command tx timeout
[  386.749725][ T6943] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  387.094889][   T35] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  387.412385][ T5899] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  387.723052][ T5899] usb 4-1: device descriptor read/64, error -71
[  388.042012][ T5899] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  388.213600][ T6836] team0: Port device team_slave_0 added
[  388.313161][ T5899] usb 4-1: device descriptor read/64, error -71
[  388.463383][ T5899] usb usb4-port1: attempt power cycle
[  388.717550][   T35] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  388.810397][ T5813] Bluetooth: hci3: command tx timeout
[  389.173221][ T5899] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  389.391873][ T6836] team0: Port device team_slave_1 added
[  390.110953][   T35] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  390.348584][ T6843] team0: Port device team_slave_0 added
[  390.893867][ T5813] Bluetooth: hci3: command tx timeout
[  391.054297][   T35] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  391.328964][ T6843] team0: Port device team_slave_1 added
[  392.238169][ T6836] batman_adv: batadv0: Adding interface: batadv_slave_0
[  392.245627][ T6836] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  392.272320][ T6836] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  392.942842][ T5813] Bluetooth: hci3: command tx timeout
[  393.025169][ T6836] batman_adv: batadv0: Adding interface: batadv_slave_1
[  393.032914][ T6836] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  393.059902][ T6836] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  393.512764][ T6843] batman_adv: batadv0: Adding interface: batadv_slave_0
[  393.519936][ T6843] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  393.546537][ T6843] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  394.228659][ T5899] usb 4-1: device descriptor read/8, error -110
[  394.395470][ T6843] batman_adv: batadv0: Adding interface: batadv_slave_1
[  394.403605][ T6843] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  394.430607][ T6843] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  394.628022][ T5899] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  394.713257][   T35] bridge_slave_1: left allmulticast mode
[  394.719152][   T35] bridge_slave_1: left promiscuous mode
[  394.726205][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[  394.739381][ T5899] usb 4-1: device descriptor read/8, error -32
[  394.894959][ T5899] usb usb4-port1: unable to enumerate USB device
[  394.941858][   T35] bridge_slave_0: left allmulticast mode
[  394.947733][   T35] bridge_slave_0: left promiscuous mode
[  394.954783][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[  395.773932][   T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  395.851289][   T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  395.909507][   T35] bond0 (unregistering): Released all slaves
[  395.973897][ T6964] netlink: 28 bytes leftover after parsing attributes in process `syz.3.201'.
[  395.983452][ T6964] netlink: 348 bytes leftover after parsing attributes in process `syz.3.201'.
[  395.992952][ T6964] netlink: 28 bytes leftover after parsing attributes in process `syz.3.201'.
[  396.002158][ T6964] netlink: 348 bytes leftover after parsing attributes in process `syz.3.201'.
[  396.011311][ T6964] netlink: 28 bytes leftover after parsing attributes in process `syz.3.201'.
[  396.126605][ T6967] loop0: detected capacity change from 0 to 512
[  396.290225][ T6917] chnl_net:caif_netlink_parms(): no params data found
[  396.378559][ T6967] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  396.406742][   T35] hsr_slave_0: left promiscuous mode
[  396.424912][   T35] hsr_slave_1: left promiscuous mode
[  396.434098][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  396.441885][   T35] batman_adv: batadv0: Removing interface: batadv_slave_0
[  396.479063][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  396.487367][   T35] batman_adv: batadv0: Removing interface: batadv_slave_1
[  396.562910][   T35] veth1_macvtap: left promiscuous mode
[  396.568697][   T35] veth0_macvtap: left promiscuous mode
[  396.579102][   T35] veth1_vlan: left promiscuous mode
[  396.585315][   T35] veth0_vlan: left promiscuous mode
[  396.859425][ T6971] netlink: 36 bytes leftover after parsing attributes in process `syz.3.203'.
[  397.559247][   T35] team0 (unregistering): Port device team_slave_1 removed
[  397.596284][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  397.599444][   T35] team0 (unregistering): Port device team_slave_0 removed
[  397.932535][   T30] audit: type=1326 audit(1757639390.922:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6972 comm="syz.0.204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  398.005453][   T30] audit: type=1326 audit(1757639390.992:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6972 comm="syz.0.204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  398.029426][   T30] audit: type=1326 audit(1757639390.992:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6972 comm="syz.0.204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  398.054347][   T30] audit: type=1326 audit(1757639391.012:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6972 comm="syz.0.204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  398.077175][   T30] audit: type=1326 audit(1757639391.012:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6972 comm="syz.0.204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  398.099826][   T30] audit: type=1326 audit(1757639391.022:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6972 comm="syz.0.204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  398.123009][   T30] audit: type=1326 audit(1757639391.092:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6972 comm="syz.0.204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  398.145760][   T30] audit: type=1326 audit(1757639391.092:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6972 comm="syz.0.204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  398.168399][   T30] audit: type=1326 audit(1757639391.142:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6972 comm="syz.0.204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  398.195978][   T30] audit: type=1326 audit(1757639391.222:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6972 comm="syz.0.204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  398.260492][ T6836] hsr_slave_0: entered promiscuous mode
[  398.271842][ T6836] hsr_slave_1: entered promiscuous mode
[  398.280933][ T6836] debugfs: 'hsr0' already exists in 'hsr'
[  398.287437][ T6836] Cannot create hsr debugfs directory
[  398.553941][ T6843] hsr_slave_0: entered promiscuous mode
[  398.565205][ T6843] hsr_slave_1: entered promiscuous mode
[  398.597630][ T6843] debugfs: 'hsr0' already exists in 'hsr'
[  398.606056][ T6843] Cannot create hsr debugfs directory
[  399.486643][   T35] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  399.806764][   T35] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  399.968220][   T35] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  400.180667][   T35] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  400.672556][ T6917] bridge0: port 1(bridge_slave_0) entered blocking state
[  400.680154][ T6917] bridge0: port 1(bridge_slave_0) entered disabled state
[  400.694940][ T6917] bridge_slave_0: entered allmulticast mode
[  400.705500][ T6917] bridge_slave_0: entered promiscuous mode
[  400.953680][ T6917] bridge0: port 2(bridge_slave_1) entered blocking state
[  400.964473][ T6917] bridge0: port 2(bridge_slave_1) entered disabled state
[  400.972551][ T6917] bridge_slave_1: entered allmulticast mode
[  400.983218][ T6917] bridge_slave_1: entered promiscuous mode
[  401.066457][ T6998] netlink: 'syz.3.210': attribute type 10 has an invalid length.
[  401.226340][ T7001] netlink: 24 bytes leftover after parsing attributes in process `syz.0.211'.
[  401.332511][ T6998] team0: Port device virt_wifi0 added
[  401.477987][ T7001] team0: No ports can be present during mode change
[  401.855188][ T6917] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  402.004509][ T6917] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  402.082577][ T7008] netlink: 36 bytes leftover after parsing attributes in process `syz.0.213'.
[  402.209254][   T35] bridge_slave_1: left allmulticast mode
[  402.215466][   T35] bridge_slave_1: left promiscuous mode
[  402.222438][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[  402.283388][   T35] bridge_slave_0: left allmulticast mode
[  402.292393][   T35] bridge_slave_0: left promiscuous mode
[  402.299074][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[  403.083162][   T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  403.108858][   T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  403.176734][   T35] bond0 (unregistering): Released all slaves
[  403.752395][   T35] hsr_slave_0: left promiscuous mode
[  403.777166][   T30] kauditd_printk_skb: 26 callbacks suppressed
[  403.777253][   T30] audit: type=1326 audit(1757639396.802:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.0.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  403.789421][   T35] hsr_slave_1: left promiscuous mode
[  403.815527][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  403.823532][   T35] batman_adv: batadv0: Removing interface: batadv_slave_0
[  403.897451][   T30] audit: type=1326 audit(1757639396.862:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.0.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  403.904597][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  403.920124][   T30] audit: type=1326 audit(1757639396.872:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.0.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  403.929968][   T35] batman_adv: batadv0: Removing interface: batadv_slave_1
[  403.949988][   T30] audit: type=1326 audit(1757639396.872:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.0.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  403.950238][   T30] audit: type=1326 audit(1757639396.872:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.0.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  403.950490][   T30] audit: type=1326 audit(1757639396.882:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.0.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=103 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  403.950739][   T30] audit: type=1326 audit(1757639396.882:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.0.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  404.047872][   T30] audit: type=1326 audit(1757639396.892:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.0.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f4739d8d65f code=0x7ffc0000
[  404.070450][   T30] audit: type=1326 audit(1757639396.902:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.0.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  404.093048][   T30] audit: type=1326 audit(1757639396.902:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.0.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  404.186055][   T35] veth1_macvtap: left promiscuous mode
[  404.192830][   T35] veth0_macvtap: left promiscuous mode
[  404.198783][   T35] veth1_vlan: left promiscuous mode
[  404.204671][   T35] veth0_vlan: left promiscuous mode
[  405.041420][   T35] team0 (unregistering): Port device team_slave_1 removed
[  405.137466][   T35] team0 (unregistering): Port device team_slave_0 removed
[  405.640418][ T6917] team0: Port device team_slave_0 added
[  405.733650][ T6917] team0: Port device team_slave_1 added
[  406.153696][ T6917] batman_adv: batadv0: Adding interface: batadv_slave_0
[  406.161020][ T6917] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  406.187607][ T6917] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  406.352660][ T6917] batman_adv: batadv0: Adding interface: batadv_slave_1
[  406.359834][ T6917] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  406.386555][ T6917] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  406.968536][ T6917] hsr_slave_0: entered promiscuous mode
[  406.979521][ T6917] hsr_slave_1: entered promiscuous mode
[  406.989123][ T6917] debugfs: 'hsr0' already exists in 'hsr'
[  406.995187][ T6917] Cannot create hsr debugfs directory
[  407.455843][ T6836] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  407.517235][ T6836] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  407.602060][   T24] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  407.610240][ T6836] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  407.647511][ T6843] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  407.723693][ T6836] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  407.768600][ T6843] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  407.816870][   T24] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  407.827516][   T24] usb 1-1: config 0 has no interface number 0
[  407.834730][   T24] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  407.846075][   T24] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  407.856253][   T24] usb 1-1: config 0 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  407.869585][   T24] usb 1-1: New USB device found, idVendor=28bd, idProduct=0042, bcdDevice= 0.00
[  407.879122][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  407.908058][   T24] usb 1-1: config 0 descriptor??
[  407.918930][ T6843] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  408.005838][ T6843] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  408.606961][   T24] input: HID 28bd:0042 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.1/0003:28BD:0042.0003/input/input6
[  408.675338][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  408.683361][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  408.854120][   T24] uclogic 0003:28BD:0042.0003: input,hidraw0: USB HID v0.00 Keypad [HID 28bd:0042] on usb-dummy_hcd.0-1/input1
[  408.927588][   T24] usb 1-1: USB disconnect, device number 3
[  409.793899][ T7033] fido_id[7033]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  410.123589][ T6917] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  410.244803][ T6917] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  410.346531][ T6917] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  410.438934][ T6917] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  410.618817][ T6836] 8021q: adding VLAN 0 to HW filter on device bond0
[  410.661867][ T6843] 8021q: adding VLAN 0 to HW filter on device bond0
[  410.873473][ T6836] 8021q: adding VLAN 0 to HW filter on device team0
[  410.906585][ T6843] 8021q: adding VLAN 0 to HW filter on device team0
[  410.959747][ T2999] bridge0: port 1(bridge_slave_0) entered blocking state
[  410.967511][ T2999] bridge0: port 1(bridge_slave_0) entered forwarding state
[  411.090304][ T2999] bridge0: port 1(bridge_slave_0) entered blocking state
[  411.098070][ T2999] bridge0: port 1(bridge_slave_0) entered forwarding state
[  411.115687][ T2999] bridge0: port 2(bridge_slave_1) entered blocking state
[  411.123399][ T2999] bridge0: port 2(bridge_slave_1) entered forwarding state
[  411.141632][ T2999] bridge0: port 2(bridge_slave_1) entered blocking state
[  411.149199][ T2999] bridge0: port 2(bridge_slave_1) entered forwarding state
[  411.878641][ T6843] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  412.840580][ T6917] 8021q: adding VLAN 0 to HW filter on device bond0
[  412.924441][ T7052] netlink: 36 bytes leftover after parsing attributes in process `syz.0.222'.
[  413.105061][ T6917] 8021q: adding VLAN 0 to HW filter on device team0
[  413.233024][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[  413.240610][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[  413.404055][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[  413.411938][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[  414.658604][ T6836] 8021q: adding VLAN 0 to HW filter on device batadv0
[  415.118272][ T6843] 8021q: adding VLAN 0 to HW filter on device batadv0
[  416.471657][ T6917] 8021q: adding VLAN 0 to HW filter on device batadv0
[  416.983595][ T5874] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  417.215292][ T5874] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[  417.224015][ T5874] usb 4-1: config 0 has no interface number 0
[  417.230466][ T5874] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  417.244182][ T5874] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  417.254965][ T5874] usb 4-1: config 0 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  417.269135][ T5874] usb 4-1: New USB device found, idVendor=28bd, idProduct=0042, bcdDevice= 0.00
[  417.279100][ T5874] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  417.344884][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  417.513059][ T5874] usb 4-1: config 0 descriptor??
[  417.522376][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[  417.524600][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  417.993322][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[  418.266297][ T5874] input: HID 28bd:0042 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.1/0003:28BD:0042.0004/input/input7
[  418.528915][ T6836] veth0_vlan: entered promiscuous mode
[  418.573893][ T5874] uclogic 0003:28BD:0042.0004: input,hidraw0: USB HID v0.00 Keypad [HID 28bd:0042] on usb-dummy_hcd.3-1/input1
[  418.716264][ T6836] veth1_vlan: entered promiscuous mode
[  418.733532][ T5874] usb 4-1: USB disconnect, device number 7
[  419.281171][ T6836] veth0_macvtap: entered promiscuous mode
[  419.430556][ T6843] veth0_vlan: entered promiscuous mode
[  419.483542][ T6836] veth1_macvtap: entered promiscuous mode
[  419.596099][ T6843] veth1_vlan: entered promiscuous mode
[  419.765551][ T6836] batman_adv: batadv0: Interface activated: batadv_slave_0
[  419.913989][ T7115] netlink: 36 bytes leftover after parsing attributes in process `syz.3.230'.
[  419.987246][ T7112] fido_id[7112]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  419.993331][ T6836] batman_adv: batadv0: Interface activated: batadv_slave_1
[  420.198390][   T14] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  420.347963][ T6843] veth0_macvtap: entered promiscuous mode
[  420.382326][   T14] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  420.391732][   T14] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  420.461388][   T14] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  420.677542][ T6843] veth1_macvtap: entered promiscuous mode
[  421.193973][ T7122] loop0: detected capacity change from 0 to 512
[  421.305795][ T7122] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  421.321373][ T7122] ext4 filesystem being mounted at /97/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  422.085693][ T6843] batman_adv: batadv0: Interface activated: batadv_slave_0
[  423.077283][ T6843] batman_adv: batadv0: Interface activated: batadv_slave_1
[  423.594147][ T4706] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  423.614419][ T6917] veth0_vlan: entered promiscuous mode
[  423.667519][ T7129] syzkaller0: entered promiscuous mode
[  423.673503][ T7129] syzkaller0: entered allmulticast mode
[  423.763911][ T4706] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  423.781858][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  423.884295][ T4706] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  423.964384][ T4706] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  423.996526][ T6917] veth1_vlan: entered promiscuous mode
[  424.871368][ T6917] veth0_macvtap: entered promiscuous mode
[  424.982353][ T6917] veth1_macvtap: entered promiscuous mode
[  425.293171][ T6917] batman_adv: batadv0: Interface activated: batadv_slave_0
[  425.478623][ T6917] batman_adv: batadv0: Interface activated: batadv_slave_1
[  425.668098][   T12] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  425.843559][ T4030] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  425.931829][ T4030] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  426.015082][ T4706] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  426.366039][   T30] kauditd_printk_skb: 20 callbacks suppressed
[  426.366126][   T30] audit: type=1326 audit(1757639419.372:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7152 comm="syz.0.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  426.397190][   T30] audit: type=1326 audit(1757639419.392:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7152 comm="syz.0.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  426.420164][   T30] audit: type=1326 audit(1757639419.432:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7152 comm="syz.0.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  426.964683][ T5827] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  426.980559][ T5827] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  426.992775][ T5827] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  427.012591][ T5827] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  427.029775][   T30] audit: type=1326 audit(1757639419.612:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7152 comm="syz.0.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  427.053465][   T30] audit: type=1326 audit(1757639419.622:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7152 comm="syz.0.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  427.170510][ T5827] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  427.210409][ T7155] loop0: detected capacity change from 0 to 2048
[  427.627173][ T7155] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: writeback.
[  427.952009][   T30] audit: type=1326 audit(1757639420.922:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7152 comm="syz.0.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  427.979519][   T30] audit: type=1326 audit(1757639420.922:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7152 comm="syz.0.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  428.003186][   T30] audit: type=1326 audit(1757639420.922:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7152 comm="syz.0.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  428.032986][   T30] audit: type=1326 audit(1757639421.002:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7152 comm="syz.0.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  428.056901][   T30] audit: type=1326 audit(1757639421.002:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7152 comm="syz.0.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4739d8eba9 code=0x7ffc0000
[  428.182928][ T7155] EXT4-fs error (device loop0): ext4_find_inline_data_nolock:169: inode #12: comm syz.0.235: inline data xattr refers to an external xattr inode
[  428.473977][ T7155] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  428.643665][ T7155] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 16 with error 28
[  428.658390][ T7155] EXT4-fs (loop0): This should not happen!! Data will be lost
[  428.658390][ T7155] 
[  428.669674][ T7155] EXT4-fs (loop0): Total free blocks count 0
[  428.676272][ T7155] EXT4-fs (loop0): Free/Dirty block details
[  428.682541][ T7155] EXT4-fs (loop0): free_blocks=2415919104
[  428.688546][ T7155] EXT4-fs (loop0): dirty_blocks=32
[  428.694572][ T7155] EXT4-fs (loop0): Block reservation details
[  428.701277][ T7155] EXT4-fs (loop0): i_reserved_data_blocks=2
[  428.811413][ T5899] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  428.834897][ T5813] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  428.846776][ T5813] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  428.863852][ T5813] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  428.878830][ T5813] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  428.903323][ T5813] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  429.243631][ T7158] chnl_net:caif_netlink_parms(): no params data found
[  429.254066][ T5899] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[  429.264588][ T5899] usb 4-1: config 0 has no interface number 0
[  429.271027][ T5899] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  429.272155][ T5813] Bluetooth: hci4: command tx timeout
[  429.283558][ T5899] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  429.298406][ T5899] usb 4-1: config 0 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  429.312190][ T5899] usb 4-1: New USB device found, idVendor=28bd, idProduct=0042, bcdDevice= 0.00
[  429.322238][ T5899] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  429.448415][ T5899] usb 4-1: config 0 descriptor??
[  430.262524][ T5899] input: HID 28bd:0042 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.1/0003:28BD:0042.0005/input/input8
[  430.365849][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  430.471972][ T5899] uclogic 0003:28BD:0042.0005: input,hidraw0: USB HID v0.00 Keypad [HID 28bd:0042] on usb-dummy_hcd.3-1/input1
[  430.570405][ T5899] usb 4-1: USB disconnect, device number 8
[  430.944376][ T5813] Bluetooth: hci5: command tx timeout
[  431.358902][ T5813] Bluetooth: hci4: command tx timeout
[  431.498215][ T3709] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  431.558752][ T7188] fido_id[7188]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  431.798166][ T3709] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  431.884796][ T7195] netlink: 36 bytes leftover after parsing attributes in process `syz.3.239'.
[  431.995401][ T7176] chnl_net:caif_netlink_parms(): no params data found
[  432.135634][ T3709] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  432.468749][ T7200] loop0: detected capacity change from 0 to 1024
[  432.566247][ T7200] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  432.609103][ T3709] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  432.765745][ T7200] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  433.022931][ T5813] Bluetooth: hci5: command tx timeout
[  433.280362][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  433.354575][ T7158] bridge0: port 1(bridge_slave_0) entered blocking state
[  433.362664][ T7158] bridge0: port 1(bridge_slave_0) entered disabled state
[  433.370580][ T7158] bridge_slave_0: entered allmulticast mode
[  433.381054][ T7158] bridge_slave_0: entered promiscuous mode
[  433.472168][ T5813] Bluetooth: hci4: command tx timeout
[  433.495583][ T7207] syzkaller0: entered promiscuous mode
[  433.501286][ T7207] syzkaller0: entered allmulticast mode
[  433.515444][ T7158] bridge0: port 2(bridge_slave_1) entered blocking state
[  433.523227][ T7158] bridge0: port 2(bridge_slave_1) entered disabled state
[  433.531097][ T7158] bridge_slave_1: entered allmulticast mode
[  433.541371][ T7158] bridge_slave_1: entered promiscuous mode
[  434.185160][ T7158] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  434.206726][ T3709] bridge_slave_1: left allmulticast mode
[  434.213017][ T3709] bridge_slave_1: left promiscuous mode
[  434.219916][ T3709] bridge0: port 2(bridge_slave_1) entered disabled state
[  434.342377][ T3709] bridge_slave_0: left allmulticast mode
[  434.350307][ T3709] bridge_slave_0: left promiscuous mode
[  434.357285][ T3709] bridge0: port 1(bridge_slave_0) entered disabled state
[  435.103143][ T5813] Bluetooth: hci5: command tx timeout
[  435.155490][ T3709] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  435.235095][ T3709] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  435.279536][ T3709] bond0 (unregistering): Released all slaves
[  435.359678][ T7158] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  435.509371][ T5813] Bluetooth: hci4: command tx timeout
[  435.930321][ T7158] team0: Port device team_slave_0 added
[  436.165838][ T7158] team0: Port device team_slave_1 added
[  436.408155][ T7233] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -EINTR
[  436.499669][ T7176] bridge0: port 1(bridge_slave_0) entered blocking state
[  436.517758][ T7176] bridge0: port 1(bridge_slave_0) entered disabled state
[  436.527574][ T7176] bridge_slave_0: entered allmulticast mode
[  436.538436][ T7176] bridge_slave_0: entered promiscuous mode
[  436.698090][ T3709] hsr_slave_0: left promiscuous mode
[  436.732951][ T3709] hsr_slave_1: left promiscuous mode
[  436.742086][ T3709] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  436.749723][ T3709] batman_adv: batadv0: Removing interface: batadv_slave_0
[  436.805831][ T3709] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  436.816761][ T3709] batman_adv: batadv0: Removing interface: batadv_slave_1
[  436.962231][ T3709] veth1_macvtap: left promiscuous mode
[  436.968560][ T3709] veth0_macvtap: left promiscuous mode
[  436.975431][ T3709] veth1_vlan: left promiscuous mode
[  436.981906][ T3709] veth0_vlan: left promiscuous mode
[  437.191958][ T5813] Bluetooth: hci5: command tx timeout
[  437.484276][ T5899] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  437.680666][ T5899] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  437.689250][ T5899] usb 1-1: config 0 has no interface number 0
[  437.695968][ T5899] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  437.707600][ T5899] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  437.717765][ T5899] usb 1-1: config 0 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  437.731040][ T5899] usb 1-1: New USB device found, idVendor=28bd, idProduct=0042, bcdDevice= 0.00
[  437.740595][ T5899] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  437.761897][ T5899] usb 1-1: config 0 descriptor??
[  438.125131][ T3709] team0 (unregistering): Port device team_slave_1 removed
[  438.218425][ T3709] team0 (unregistering): Port device team_slave_0 removed
[  438.243874][ T7248] netlink: 36 bytes leftover after parsing attributes in process `syz.3.248'.
[  438.436401][ T5899] input: HID 28bd:0042 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.1/0003:28BD:0042.0006/input/input9
[  438.547971][ T5899] uclogic 0003:28BD:0042.0006: input,hidraw0: USB HID v0.00 Keypad [HID 28bd:0042] on usb-dummy_hcd.0-1/input1
[  438.638709][ T5899] usb 1-1: USB disconnect, device number 4
[  439.043111][ T7176] bridge0: port 2(bridge_slave_1) entered blocking state
[  439.051336][ T7176] bridge0: port 2(bridge_slave_1) entered disabled state
[  439.059860][ T7176] bridge_slave_1: entered allmulticast mode
[  439.070749][ T7176] bridge_slave_1: entered promiscuous mode
[  439.119745][ T7158] batman_adv: batadv0: Adding interface: batadv_slave_0
[  439.127525][ T7158] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  439.159542][ T7158] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  439.221748][ T7249] fido_id[7249]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  439.447376][ T7158] batman_adv: batadv0: Adding interface: batadv_slave_1
[  439.454939][ T7158] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  439.484021][ T7158] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  439.698331][ T7176] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  439.798214][ T7176] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  440.271358][ T7158] hsr_slave_0: entered promiscuous mode
[  440.287193][ T7158] hsr_slave_1: entered promiscuous mode
[  440.296683][ T7158] debugfs: 'hsr0' already exists in 'hsr'
[  440.302846][ T7158] Cannot create hsr debugfs directory
[  440.345696][ T3709] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  440.520217][ T7254] syzkaller0: entered promiscuous mode
[  440.526165][ T7254] syzkaller0: entered allmulticast mode
[  440.534180][ T5899] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  440.620498][ T3709] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  440.681127][ T7176] team0: Port device team_slave_0 added
[  440.733777][ T5899] usb 1-1: Using ep0 maxpacket: 16
[  440.757596][ T5899] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  440.768345][ T5899] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  440.812072][ T5899] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  440.822246][ T5899] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  440.830851][ T5899] usb 1-1: Product: syz
[  440.835829][ T5899] usb 1-1: Manufacturer: syz
[  440.841232][ T5899] usb 1-1: SerialNumber: syz
[  441.084325][ T3709] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  441.115138][ T7176] team0: Port device team_slave_1 added
[  441.273762][ T5899] usb 1-1: 0:2 : does not exist
[  441.349499][ T5899] usb 1-1: 5:0: failed to get current value for ch 0 (-22)
[  441.500321][ T5899] usb 1-1: USB disconnect, device number 5
[  441.537444][ T3709] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  441.616230][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  441.624919][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  441.836372][ T7010] udevd[7010]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  441.983937][ T7176] batman_adv: batadv0: Adding interface: batadv_slave_0
[  441.991292][ T7176] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  442.018366][ T7176] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  442.163004][   T14] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  442.171830][   T14] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  442.273671][ T7176] batman_adv: batadv0: Adding interface: batadv_slave_1
[  442.280954][ T7176] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  442.308324][ T7176] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  442.686257][ T3709] bridge_slave_1: left allmulticast mode
[  442.692386][ T3709] bridge_slave_1: left promiscuous mode
[  442.699103][ T3709] bridge0: port 2(bridge_slave_1) entered disabled state
[  442.784307][ T3709] bridge_slave_0: left allmulticast mode
[  442.790208][ T3709] bridge_slave_0: left promiscuous mode
[  442.797574][ T3709] bridge0: port 1(bridge_slave_0) entered disabled state
[  443.699849][ T3709] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  443.883844][ T3709] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  443.931374][ T5827] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  443.943156][ T3709] bond0 (unregistering): Released all slaves
[  443.969226][ T5827] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  443.995037][ T5827] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  444.122706][ T5827] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  444.184986][ T5827] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  444.356355][ T7176] hsr_slave_0: entered promiscuous mode
[  444.368424][ T7176] hsr_slave_1: entered promiscuous mode
[  444.381605][ T7176] debugfs: 'hsr0' already exists in 'hsr'
[  444.387554][ T7176] Cannot create hsr debugfs directory
[  444.483649][ T3709] hsr_slave_0: left promiscuous mode
[  444.523370][ T3709] hsr_slave_1: left promiscuous mode
[  444.532888][ T3709] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  444.540942][ T3709] batman_adv: batadv0: Removing interface: batadv_slave_0
[  444.604786][ T3709] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  444.612692][ T3709] batman_adv: batadv0: Removing interface: batadv_slave_1
[  444.665131][ T3709] veth1_macvtap: left promiscuous mode
[  444.671038][ T3709] veth0_macvtap: left promiscuous mode
[  444.679010][ T3709] veth1_vlan: left promiscuous mode
[  444.687633][ T3709] veth0_vlan: left promiscuous mode
[  445.232274][ T5866] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  445.442099][ T5866] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  445.450549][ T5866] usb 1-1: config 0 has no interface number 0
[  445.457227][ T5866] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  445.468763][ T5866] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  445.479342][ T5866] usb 1-1: config 0 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  445.492753][ T5866] usb 1-1: New USB device found, idVendor=28bd, idProduct=0042, bcdDevice= 0.00
[  445.504705][ T5866] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  445.625833][ T5866] usb 1-1: config 0 descriptor??
[  445.959796][ T3709] team0 (unregistering): Port device team_slave_1 removed
[  446.060332][ T3709] team0 (unregistering): Port device team_slave_0 removed
[  446.305492][ T5827] Bluetooth: hci2: command tx timeout
[  446.360220][ T7282] netlink: 36 bytes leftover after parsing attributes in process `syz.3.257'.
[  446.515350][ T5866] input: HID 28bd:0042 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.1/0003:28BD:0042.0007/input/input10
[  446.605097][ T5866] uclogic 0003:28BD:0042.0007: input,hidraw0: USB HID v0.00 Keypad [HID 28bd:0042] on usb-dummy_hcd.0-1/input1
[  446.670645][ T5866] usb 1-1: USB disconnect, device number 6
[  447.460379][ T7283] fido_id[7283]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  448.076643][ T3709] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  448.225894][ T3709] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  448.296602][ T7290] syzkaller0: entered promiscuous mode
[  448.304235][ T7290] syzkaller0: entered allmulticast mode
[  448.382210][ T5827] Bluetooth: hci2: command tx timeout
[  448.503339][ T3709] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  448.786336][ T3709] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  449.001834][ T5866] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  449.197706][ T5866] usb 1-1: Using ep0 maxpacket: 16
[  449.218665][ T5866] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  449.229325][ T5866] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  449.231728][ T7296] loop3: detected capacity change from 0 to 2048
[  449.414595][ T5866] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  449.424331][ T5866] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  449.432911][ T5866] usb 1-1: Product: syz
[  449.437289][ T5866] usb 1-1: Manufacturer: syz
[  449.443230][ T5866] usb 1-1: SerialNumber: syz
[  449.571733][ T7296] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  449.692754][ T7158] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  449.783107][ T5866] usb 1-1: 0:2 : does not exist
[  449.850681][ T5866] usb 1-1: 5:0: failed to get current value for ch 0 (-22)
[  450.091260][ T5866] usb 1-1: USB disconnect, device number 7
[  450.119055][ T3709] bridge_slave_1: left allmulticast mode
[  450.125528][ T3709] bridge_slave_1: left promiscuous mode
[  450.132759][ T3709] bridge0: port 2(bridge_slave_1) entered disabled state
[  450.207151][ T5815] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  450.238346][ T3709] bridge_slave_0: left allmulticast mode
[  450.245223][ T3709] bridge_slave_0: left promiscuous mode
[  450.252565][ T3709] bridge0: port 1(bridge_slave_0) entered disabled state
[  450.307938][ T7010] udevd[7010]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  450.493018][ T5827] Bluetooth: hci2: command tx timeout
[  451.085772][ T3709] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  451.108022][ T3709] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  451.131120][ T3709] bond0 (unregistering): Released all slaves
[  451.404236][ T7158] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  451.629425][ T7158] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  451.776816][ T7158] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  452.308380][ T7272] chnl_net:caif_netlink_parms(): no params data found
[  452.541798][ T5827] Bluetooth: hci2: command tx timeout
[  452.933059][ T3709] hsr_slave_0: left promiscuous mode
[  452.983508][ T3709] hsr_slave_1: left promiscuous mode
[  452.992367][ T3709] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  453.000143][ T3709] batman_adv: batadv0: Removing interface: batadv_slave_0
[  453.075392][ T3709] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  453.087626][ T3709] batman_adv: batadv0: Removing interface: batadv_slave_1
[  453.192691][ T3709] veth1_macvtap: left promiscuous mode
[  453.198558][ T3709] veth0_macvtap: left promiscuous mode
[  453.205502][ T3709] veth1_vlan: left promiscuous mode
[  453.211202][ T3709] veth0_vlan: left promiscuous mode
[  454.272342][   T24] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  454.362984][ T3709] team0 (unregistering): Port device team_slave_1 removed
[  454.419874][ T3709] team0 (unregistering): Port device team_slave_0 removed
[  454.515278][   T24] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  454.525022][   T24] usb 1-1: config 0 has no interface number 0
[  454.531972][   T24] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  454.544279][   T24] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  454.555277][   T24] usb 1-1: config 0 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  454.569161][   T24] usb 1-1: New USB device found, idVendor=28bd, idProduct=0042, bcdDevice= 0.00
[  454.579270][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  454.682315][   T24] usb 1-1: config 0 descriptor??
[  454.890729][ T7176] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  455.118291][ T7176] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  455.220367][ T7176] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  455.332671][ T7176] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  455.376986][ T7325] syzkaller0: entered promiscuous mode
[  455.383529][ T7325] syzkaller0: entered allmulticast mode
[  455.473231][   T24] input: HID 28bd:0042 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.1/0003:28BD:0042.0008/input/input11
[  455.674820][   T24] uclogic 0003:28BD:0042.0008: input,hidraw0: USB HID v0.00 Keypad [HID 28bd:0042] on usb-dummy_hcd.0-1/input1
[  455.724645][   T24] usb 1-1: USB disconnect, device number 8
[  456.491243][ T7333] fido_id[7333]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  456.563237][ T7272] bridge0: port 1(bridge_slave_0) entered blocking state
[  456.571297][ T7272] bridge0: port 1(bridge_slave_0) entered disabled state
[  456.579672][ T7272] bridge_slave_0: entered allmulticast mode
[  456.592817][ T7272] bridge_slave_0: entered promiscuous mode
[  456.836882][ T7272] bridge0: port 2(bridge_slave_1) entered blocking state
[  456.844841][ T7272] bridge0: port 2(bridge_slave_1) entered disabled state
[  456.854793][ T7272] bridge_slave_1: entered allmulticast mode
[  456.865334][ T7272] bridge_slave_1: entered promiscuous mode
[  457.242190][ T7272] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  457.324379][ T7158] 8021q: adding VLAN 0 to HW filter on device bond0
[  457.373896][ T7337] loop3: detected capacity change from 0 to 2048
[  457.517604][ T7272] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  457.644027][ T7337] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  457.807803][ T7342] EXT4-fs (loop3): shut down requested (0)
[  457.980646][ T7272] team0: Port device team_slave_0 added
[  458.020300][ T7158] 8021q: adding VLAN 0 to HW filter on device team0
[  458.099021][ T7272] team0: Port device team_slave_1 added
[  458.193772][   T14] bridge0: port 1(bridge_slave_0) entered blocking state
[  458.201815][   T14] bridge0: port 1(bridge_slave_0) entered forwarding state
[  458.328308][ T7344] netlink: 'syz.0.272': attribute type 10 has an invalid length.
[  458.402750][ T7345] netlink: 'syz.0.272': attribute type 10 has an invalid length.
[  458.457953][   T14] bridge0: port 2(bridge_slave_1) entered blocking state
[  458.465817][   T14] bridge0: port 2(bridge_slave_1) entered forwarding state
[  458.497954][ T5815] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  458.503803][ T7344] team0: Port device dummy0 added
[  458.525964][ T7345] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  458.544291][ T7345] team0: Failed to send options change via netlink (err -105)
[  458.554947][ T7345] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  458.572596][ T7345] team0: Port device dummy0 removed
[  458.596482][ T7345] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  458.629813][ T7272] batman_adv: batadv0: Adding interface: batadv_slave_0
[  458.637787][ T7272] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  458.666603][ T7272] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  458.933864][ T7272] batman_adv: batadv0: Adding interface: batadv_slave_1
[  458.941135][ T7272] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  458.968393][ T7272] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  459.168893][ T7176] 8021q: adding VLAN 0 to HW filter on device bond0
[  459.618431][ T7272] hsr_slave_0: entered promiscuous mode
[  459.631144][ T7272] hsr_slave_1: entered promiscuous mode
[  459.644236][ T7272] debugfs: 'hsr0' already exists in 'hsr'
[  459.650355][ T7272] Cannot create hsr debugfs directory
[  459.723390][ T7176] 8021q: adding VLAN 0 to HW filter on device team0
[  459.859987][ T4185] bridge0: port 1(bridge_slave_0) entered blocking state
[  459.867769][ T4185] bridge0: port 1(bridge_slave_0) entered forwarding state
[  460.186587][ T3709] bridge0: port 2(bridge_slave_1) entered blocking state
[  460.194681][ T3709] bridge0: port 2(bridge_slave_1) entered forwarding state
[  461.267878][ T7362] loop3: detected capacity change from 0 to 512
[  461.425372][ T7362] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  461.439737][ T7362] ext4 filesystem being mounted at /103/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  462.153367][ T7369] syzkaller0: entered promiscuous mode
[  462.159175][ T7369] syzkaller0: entered allmulticast mode
[  462.245178][ T5815] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  462.450932][ T7158] 8021q: adding VLAN 0 to HW filter on device batadv0
[  462.813975][ T7272] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  462.933735][ T7272] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  463.052907][ T7272] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  463.201354][ T7272] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  463.520930][ T7176] 8021q: adding VLAN 0 to HW filter on device batadv0
[  464.067603][ T7383] hub 6-0:1.0: USB hub found
[  464.105217][ T7383] hub 6-0:1.0: 1 port detected
[  464.895278][ T7272] 8021q: adding VLAN 0 to HW filter on device bond0
[  465.165707][ T7272] 8021q: adding VLAN 0 to HW filter on device team0
[  465.268944][ T7396] netlink: 4 bytes leftover after parsing attributes in process `syz.3.282'.
[  465.305426][ T3894] bridge0: port 1(bridge_slave_0) entered blocking state
[  465.314057][ T3894] bridge0: port 1(bridge_slave_0) entered forwarding state
[  465.372539][ T7402] netlink: 4 bytes leftover after parsing attributes in process `syz.3.282'.
[  465.447542][ T3894] bridge0: port 2(bridge_slave_1) entered blocking state
[  465.455721][ T3894] bridge0: port 2(bridge_slave_1) entered forwarding state
[  466.345317][ T7158] veth0_vlan: entered promiscuous mode
[  466.560537][ T7158] veth1_vlan: entered promiscuous mode
[  466.951589][ T7158] veth0_macvtap: entered promiscuous mode
[  467.087953][ T7158] veth1_macvtap: entered promiscuous mode
[  468.234480][ T7176] veth0_vlan: entered promiscuous mode
[  468.449794][ T7176] veth1_vlan: entered promiscuous mode
[  468.487945][ T7158] batman_adv: batadv0: Interface activated: batadv_slave_0
[  468.746163][ T7158] batman_adv: batadv0: Interface activated: batadv_slave_1
[  468.912539][ T3709] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  468.965836][ T7425] syzkaller0: entered promiscuous mode
[  468.972200][ T7425] syzkaller0: entered allmulticast mode
[  469.073024][ T3709] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  469.186858][ T3709] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  469.289970][ T7176] veth0_macvtap: entered promiscuous mode
[  469.357424][ T3709] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  469.642032][ T7176] veth1_macvtap: entered promiscuous mode
[  470.166364][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  470.173525][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  470.295202][ T7176] batman_adv: batadv0: Interface activated: batadv_slave_0
[  470.607238][ T7176] batman_adv: batadv0: Interface activated: batadv_slave_1
[  470.767985][ T4185] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  470.892312][ T4185] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  470.969350][ T4185] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  471.053491][ T4185] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  471.331947][ T7436] loop3: detected capacity change from 0 to 2048
[  471.500160][ T7272] 8021q: adding VLAN 0 to HW filter on device batadv0
[  471.684831][ T7436] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  472.003299][ T7448] EXT4-fs (loop3): shut down requested (0)
[  472.691321][ T5815] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  473.323781][   T30] kauditd_printk_skb: 98 callbacks suppressed
[  473.323877][   T30] audit: type=1326 audit(1757639466.352:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7458 comm="syz.3.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  473.522156][   T30] audit: type=1326 audit(1757639466.422:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7458 comm="syz.3.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  473.547975][   T30] audit: type=1326 audit(1757639466.432:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7458 comm="syz.3.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  473.575507][   T30] audit: type=1326 audit(1757639466.432:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7458 comm="syz.3.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  473.599564][   T30] audit: type=1326 audit(1757639466.432:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7458 comm="syz.3.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  473.625821][   T30] audit: type=1326 audit(1757639466.442:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7458 comm="syz.3.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  473.650187][   T30] audit: type=1326 audit(1757639466.442:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7458 comm="syz.3.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  473.674260][   T30] audit: type=1326 audit(1757639466.442:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7458 comm="syz.3.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  473.698014][   T30] audit: type=1326 audit(1757639466.492:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7458 comm="syz.3.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  473.721796][   T30] audit: type=1326 audit(1757639466.492:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7458 comm="syz.3.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  475.449998][ T7272] veth0_vlan: entered promiscuous mode
[  475.605553][ T7272] veth1_vlan: entered promiscuous mode
[  475.682295][ T7483] syzkaller0: entered promiscuous mode
[  475.688338][ T7483] syzkaller0: entered allmulticast mode
[  476.129621][ T7272] veth0_macvtap: entered promiscuous mode
[  476.258529][ T7272] veth1_macvtap: entered promiscuous mode
[  476.563615][ T7272] batman_adv: batadv0: Interface activated: batadv_slave_0
[  476.702010][ T7272] batman_adv: batadv0: Interface activated: batadv_slave_1
[  476.885237][ T5103] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  476.962876][ T5103] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  477.002625][ T5103] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  477.070271][ T5103] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  477.830267][ T7505] loop3: detected capacity change from 0 to 2048
[  478.093969][ T7505] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  478.414977][ T7519] EXT4-fs (loop3): shut down requested (0)
[  479.030524][ T5815] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  479.602270][    T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!!
[  480.054099][ T1896] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  480.064353][ T1896] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  480.562392][ T5103] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  480.572070][ T5103] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  480.978134][ T4185] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  480.978244][ T4185] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  481.504619][ T4706] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  481.513601][ T4706] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  481.723269][ T5899] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  481.952121][ T5899] usb 6-1: Using ep0 maxpacket: 16
[  482.035608][ T5899] usb 6-1: New USB device found, idVendor=1e7d, idProduct=2e22, bcdDevice= 0.00
[  482.045562][ T5899] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  482.155987][ T5899] usb 6-1: config 0 descriptor??
[  482.204689][ T7558] tipc: Started in network mode
[  482.210337][ T7558] tipc: Node identity 72669413a8b7, cluster identity 4711
[  482.219207][ T7558] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  482.367949][ T7561] syzkaller0: entered promiscuous mode
[  482.374604][ T7561] syzkaller0: entered allmulticast mode
[  482.588268][ T7558] tipc: Resetting bearer <eth:syzkaller0>
[  482.735193][ T5899] koneplus 0003:1E7D:2E22.0009: hidraw0: USB HID v20.00 Device [HID 1e7d:2e22] on usb-dummy_hcd.5-1/input0
[  482.783290][ T7555] tipc: Resetting bearer <eth:syzkaller0>
[  482.869629][ T5899] usb 6-1: USB disconnect, device number 2
[  482.885700][ T7555] tipc: Disabling bearer <eth:syzkaller0>
[  483.443070][ T7572] loop0: detected capacity change from 0 to 512
[  483.669008][ T7568] fido_id[7568]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  484.083480][ T7574] tipc: Started in network mode
[  484.088984][ T7574] tipc: Node identity 1ebba01d1c3b, cluster identity 4711
[  484.099621][ T7574] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  484.236047][ T7578] syzkaller0: entered promiscuous mode
[  484.242097][ T7578] syzkaller0: entered allmulticast mode
[  484.336783][   T30] kauditd_printk_skb: 58 callbacks suppressed
[  484.336870][   T30] audit: type=1107 audit(1757639477.362:297): pid=7575 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='����:˚�S&�H��H�Q9��Bc8�obRQ�,̩�J9C����VM\���L���C&S��f�^Ҥ[��5�����ˎi��f��ke�wEtɕ����:�J�����c��N6}�)��
��[�W��z�_w�p:'�3�'
[  484.394080][ T7574] tipc: Resetting bearer <eth:syzkaller0>
[  484.474583][ T7573] tipc: Resetting bearer <eth:syzkaller0>
[  484.625362][ T7573] tipc: Disabling bearer <eth:syzkaller0>
[  485.057166][ T7586] tipc: Started in network mode
[  485.063035][ T7586] tipc: Node identity 8634c41c7358, cluster identity 4711
[  485.072204][ T7586] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  485.403922][ T7591] syzkaller0: entered promiscuous mode
[  485.409533][ T7591] syzkaller0: entered allmulticast mode
[  485.417480][ T7591] tipc: Resetting bearer <eth:syzkaller0>
[  485.545909][ T7585] tipc: Resetting bearer <eth:syzkaller0>
[  486.986020][   T42] tipc: Node number set to 4117546012
[  487.727323][ T7585] tipc: Disabling bearer <eth:syzkaller0>
[  487.756237][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  487.926716][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  488.084335][ T7601] loop6: detected capacity change from 0 to 512
[  488.366262][ T7601] Quota error (device loop6): v2_read_file_info: Free block number 1 out of range (1, 6).
[  488.377765][ T7601] EXT4-fs warning (device loop6): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  488.507795][ T7601] EXT4-fs (loop6): mount failed
[  488.792193][   T30] audit: type=1326 audit(1757639481.782:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7600 comm="syz.6.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04638eba9 code=0x7ffc0000
[  488.815895][   T30] audit: type=1326 audit(1757639481.822:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7600 comm="syz.6.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04638eba9 code=0x7ffc0000
[  488.843084][   T30] audit: type=1326 audit(1757639481.822:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7600 comm="syz.6.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb04638eba9 code=0x7ffc0000
[  489.349866][   T30] audit: type=1326 audit(1757639482.032:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7600 comm="syz.6.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04638eba9 code=0x7ffc0000
[  489.373253][   T30] audit: type=1326 audit(1757639482.032:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7600 comm="syz.6.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04638eba9 code=0x7ffc0000
[  489.396240][   T30] audit: type=1326 audit(1757639482.062:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7600 comm="syz.6.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb04638eba9 code=0x7ffc0000
[  489.421899][   T30] audit: type=1326 audit(1757639482.062:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7600 comm="syz.6.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04638eba9 code=0x7ffc0000
[  489.449294][   T30] audit: type=1326 audit(1757639482.062:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7600 comm="syz.6.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04638eba9 code=0x7ffc0000
[  489.474214][   T30] audit: type=1326 audit(1757639482.092:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7600 comm="syz.6.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fb04638eba9 code=0x7ffc0000
[  489.498879][   T30] audit: type=1326 audit(1757639482.092:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7600 comm="syz.6.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04638eba9 code=0x7ffc0000
[  489.523141][   T30] audit: type=1326 audit(1757639482.122:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7600 comm="syz.6.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=50 compat=0 ip=0x7fb04638eba9 code=0x7ffc0000
[  489.550095][   T30] audit: type=1326 audit(1757639482.122:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7600 comm="syz.6.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb04638eba9 code=0x7ffc0000
[  489.575304][   T30] audit: type=1326 audit(1757639482.142:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7600 comm="syz.6.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb04638eba9 code=0x7ffc0000
[  490.292126][ T7629] vxcan1: entered allmulticast mode
[  490.742693][ T7635] netlink: 'syz.3.317': attribute type 10 has an invalid length.
[  490.774589][ T7635] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  490.844955][ T1896] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  490.854296][ T1896] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  491.012786][ T7637] program syz.5.318 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  491.324753][ T4706] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  491.333657][ T4706] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  491.994119][    T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!!
[  492.203177][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  493.664705][ T7666] netlink: 4 bytes leftover after parsing attributes in process `syz.6.325'.
[  493.676470][ T7666] netlink: 348 bytes leftover after parsing attributes in process `syz.6.325'.
[  493.686132][ T7666] netlink: 4 bytes leftover after parsing attributes in process `syz.6.325'.
[  493.695668][ T7666] netlink: 348 bytes leftover after parsing attributes in process `syz.6.325'.
[  493.705935][ T7666] netlink: 4 bytes leftover after parsing attributes in process `syz.6.325'.
[  494.308831][ T7667] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  494.598371][ T7664] tipc: Disabling bearer <eth:syzkaller0>
[  495.147409][ T7677] vxcan1: entered allmulticast mode
[  495.782439][    T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!!
[  497.574195][ T7684] 9pnet_fd: Insufficient options for proto=fd
[  497.745659][   T30] kauditd_printk_skb: 5 callbacks suppressed
[  497.745757][   T30] audit: type=1326 audit(1757639490.762:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.7.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef6c18eba9 code=0x7ffc0000
[  497.776935][   T30] audit: type=1326 audit(1757639490.772:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.7.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fef6c18eba9 code=0x7ffc0000
[  497.800581][   T30] audit: type=1326 audit(1757639490.772:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.7.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef6c18eba9 code=0x7ffc0000
[  498.204141][   T30] audit: type=1326 audit(1757639490.862:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.7.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef6c18eba9 code=0x7ffc0000
[  500.407566][   T30] audit: type=1326 audit(1757639493.412:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7711 comm="syz.7.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef6c18eba9 code=0x7ffc0000
[  500.552720][   T30] audit: type=1326 audit(1757639493.462:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7711 comm="syz.7.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7fef6c18eba9 code=0x7ffc0000
[  500.576164][   T30] audit: type=1326 audit(1757639493.462:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7711 comm="syz.7.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef6c18eba9 code=0x7ffc0000
[  500.602646][   T30] audit: type=1326 audit(1757639493.472:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7711 comm="syz.7.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef6c18eba9 code=0x7ffc0000
[  501.621975][ T7729] loop9: detected capacity change from 0 to 7
[  501.666857][ T7729] Buffer I/O error on dev loop9, logical block 0, async page read
[  501.675847][ T7729] Buffer I/O error on dev loop9, logical block 0, async page read
[  501.684561][ T7729] Buffer I/O error on dev loop9, logical block 0, async page read
[  501.693128][ T7729] Buffer I/O error on dev loop9, logical block 0, async page read
[  501.701706][ T7729] Buffer I/O error on dev loop9, logical block 0, async page read
[  501.710111][ T7729] Buffer I/O error on dev loop9, logical block 0, async page read
[  501.723879][ T7729] Buffer I/O error on dev loop9, logical block 0, async page read
[  501.733834][ T7729] ldm_validate_partition_table(): Disk read failed.
[  501.740768][ T7729] Buffer I/O error on dev loop9, logical block 0, async page read
[  501.749341][ T7729] Buffer I/O error on dev loop9, logical block 0, async page read
[  501.757957][ T7729] Buffer I/O error on dev loop9, logical block 0, async page read
[  501.766445][ T7729] Dev loop9: unable to read RDB block 0
[  501.773252][ T7729]  loop9: unable to read partition table
[  501.918000][ T7729] loop9: partition table beyond EOD, truncated
[  501.929689][ T7729] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  501.929689][ T7729] 
) failed (rc=-5)
[  502.069293][ T7733] loop7: detected capacity change from 0 to 512
[  502.518538][ T7741] bond1: entered promiscuous mode
[  502.524104][ T7741] bond1: entered allmulticast mode
[  502.531971][ T7741] 8021q: adding VLAN 0 to HW filter on device bond1
[  502.909698][ T7741] bond1 (unregistering): Released all slaves
[  504.877583][ T7760] loop5: detected capacity change from 0 to 128
[  504.992479][ T7760] EXT4-fs (loop5): Test dummy encryption mode enabled
[  505.127365][ T7760] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  505.149017][ T7760] ext4 filesystem being mounted at /mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  505.174520][ T7760] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  505.666280][ T7756] loop3: detected capacity change from 0 to 1024
[  505.709989][    T9] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  506.521221][ T7756] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  506.539307][ T7756] ext4 filesystem being mounted at /127/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  506.561988][    T9] usb 6-1: device descriptor read/64, error -71
[  506.872549][    T9] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  507.301359][ T7768] loop0: detected capacity change from 0 to 512
[  513.206491][ T2999] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  513.235106][ T5815] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  515.166705][ T7804] loop5: detected capacity change from 0 to 128
[  515.219626][ T7804] EXT4-fs (loop5): Test dummy encryption mode enabled
[  515.267677][ T7804] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  515.282017][ T7804] ext4 filesystem being mounted at /mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  515.314809][ T7804] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  515.333614][ T7798] netlink: 'syz.3.363': attribute type 3 has an invalid length.
[  519.251715][    T9] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  524.981364][ T7820] netlink: 272 bytes leftover after parsing attributes in process `syz.0.369'.
[  527.170351][ T7843] netlink: 53448 bytes leftover after parsing attributes in process `syz.7.378'.
[  528.200684][ T7851] netlink: 'syz.0.381': attribute type 3 has an invalid length.
[  529.714277][ T7872] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  529.753596][ T7872] syzkaller0: entered promiscuous mode
[  529.759520][ T7872] syzkaller0: entered allmulticast mode
[  529.874554][ T7872] tipc: Resetting bearer <eth:syzkaller0>
[  530.031061][ T7869] tipc: Resetting bearer <eth:syzkaller0>
[  530.113775][ T7869] tipc: Disabling bearer <eth:syzkaller0>
[  530.136835][ T7875] program syz.6.387 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  531.536297][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  531.543319][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  532.454566][ T7895] netlink: 'syz.0.396': attribute type 3 has an invalid length.
[  532.984283][    C0] vxcan1: j1939_tp_rxtimer: 0xffff8880260b6e00: rx timeout, send abort
[  532.995874][    C0] vxcan1: j1939_xtp_rx_abort_one: 0xffff8880260b6e00: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  533.832612][ T7899] infiniband syz!: set active
[  533.837547][ T7899] infiniband syz!: added team_slave_0
[  533.981306][   T30] audit: type=1326 audit(1757639527.002:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7906 comm="syz.3.400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  534.101824][   T30] audit: type=1326 audit(1757639527.102:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7906 comm="syz.3.400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  534.125962][   T30] audit: type=1326 audit(1757639527.102:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7906 comm="syz.3.400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  534.148904][   T30] audit: type=1326 audit(1757639527.102:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7906 comm="syz.3.400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  534.171767][   T30] audit: type=1326 audit(1757639527.182:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7906 comm="syz.3.400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=93 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  534.198816][   T30] audit: type=1326 audit(1757639527.182:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7906 comm="syz.3.400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  534.222813][   T30] audit: type=1326 audit(1757639527.182:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7906 comm="syz.3.400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  534.292612][ T7899] RDS/IB: syz!: added
[  534.296885][ T7899] smc: adding ib device syz! with port count 1
[  534.304321][ T7899] smc:    ib device syz! port 1 has pnetid 
[  536.730387][ T7918] loop3: detected capacity change from 0 to 512
[  536.779362][ T7918] EXT4-fs: Ignoring removed nomblk_io_submit option
[  537.053390][ T7913] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  537.094800][ T7913] syzkaller0: entered promiscuous mode
[  537.100610][ T7913] syzkaller0: entered allmulticast mode
[  537.196582][ T7918] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  537.205500][ T7918] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01d, mo2=0102]
[  537.274803][ T7913] tipc: Resetting bearer <eth:syzkaller0>
[  537.326765][ T7918] EXT4-fs (loop3): couldn't mount RDWR because of unsupported optional features (80)
[  537.339086][ T7918] EXT4-fs (loop3): Skipping orphan cleanup due to unknown ROCOMPAT features
[  537.391821][ T7912] tipc: Resetting bearer <eth:syzkaller0>
[  537.540930][ T7918] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  537.600980][ T7912] tipc: Disabling bearer <eth:syzkaller0>
[  537.887721][ T7929] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  538.197767][ T7933] can0: slcan on ttyS3.
[  540.543104][ T7930] can0 (unregistered): slcan off ttyS3.
[  541.418698][ T7942] netlink: 'syz.3.409': attribute type 3 has an invalid length.
[  542.052187][   T42] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  542.299496][   T30] audit: type=1326 audit(1757639535.312:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7953 comm="syz.3.414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  542.337695][   T42] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  542.346359][   T42] usb 7-1: config 0 has no interface number 0
[  542.353225][   T42] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  542.364681][   T42] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  542.378655][   T42] usb 7-1: config 0 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  542.393424][   T42] usb 7-1: New USB device found, idVendor=28bd, idProduct=0042, bcdDevice= 0.00
[  542.402991][   T42] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  542.469953][   T30] audit: type=1326 audit(1757639535.402:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7953 comm="syz.3.414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  542.496658][   T30] audit: type=1326 audit(1757639535.452:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7953 comm="syz.3.414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  542.520665][   T30] audit: type=1326 audit(1757639535.482:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7953 comm="syz.3.414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  542.543898][   T30] audit: type=1326 audit(1757639535.482:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7953 comm="syz.3.414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  542.566797][   T30] audit: type=1326 audit(1757639535.582:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7953 comm="syz.3.414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  542.593131][   T30] audit: type=1326 audit(1757639535.582:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7953 comm="syz.3.414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  542.617282][   T30] audit: type=1326 audit(1757639535.592:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7953 comm="syz.3.414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  542.640050][   T30] audit: type=1326 audit(1757639535.592:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7953 comm="syz.3.414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359958eba9 code=0x7ffc0000
[  542.735607][   T42] usb 7-1: config 0 descriptor??
[  543.207269][   T42] usbhid 7-1:0.1: can't add hid device: -71
[  543.214862][   T42] usbhid 7-1:0.1: probe with driver usbhid failed with error -71
[  543.312146][   T42] usb 7-1: USB disconnect, device number 2
[  543.853246][ T7969] tipc: Started in network mode
[  543.858442][ T7969] tipc: Node identity 76a47affb526, cluster identity 4711
[  543.867080][ T7969] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  543.980490][ T7973] syzkaller0: entered promiscuous mode
[  543.986796][ T7973] syzkaller0: entered allmulticast mode
[  544.123420][ T7969] tipc: Resetting bearer <eth:syzkaller0>
[  544.233553][ T7968] tipc: Resetting bearer <eth:syzkaller0>
[  544.344827][ T7968] tipc: Disabling bearer <eth:syzkaller0>
[  545.502631][ T7993] netlink: 'syz.6.427': attribute type 4 has an invalid length.
[  546.355675][ T8006] netlink: 20 bytes leftover after parsing attributes in process `syz.0.430'.
[  546.369585][ T8006] netlink: 8 bytes leftover after parsing attributes in process `syz.0.430'.
[  546.617456][ T8008] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  546.682948][ T8009] syzkaller0: entered promiscuous mode
[  546.689088][ T8009] syzkaller0: entered allmulticast mode
[  546.746564][ T8008] tipc: Resetting bearer <eth:syzkaller0>
[  546.808679][ T8012] loop5: detected capacity change from 0 to 1024
[  546.833025][ T8012] EXT4-fs: Ignoring removed oldalloc option
[  546.839605][ T8012] EXT4-fs: Ignoring removed bh option
[  546.984576][ T8003] tipc: Resetting bearer <eth:syzkaller0>
[  547.074112][ T8012] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  547.080448][ T8003] tipc: Disabling bearer <eth:syzkaller0>
[  547.300658][   T30] audit: type=1804 audit(1757639540.312:340): pid=8012 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.433" name="/newroot/26/file1/file1" dev="loop5" ino=15 res=1 errno=0
[  547.733270][ T8020] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  547.785685][ T8020] syzkaller0: entered promiscuous mode
[  547.793779][ T8020] syzkaller0: entered allmulticast mode
[  547.905865][ T7158] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  548.023053][ T8019] tipc: Resetting bearer <eth:syzkaller0>
[  548.075860][ T8019] tipc: Disabling bearer <eth:syzkaller0>
[  548.678630][ T8032] netlink: 40 bytes leftover after parsing attributes in process `syz.5.436'.
[  548.755716][ T8032] netlink: 40 bytes leftover after parsing attributes in process `syz.5.436'.
[  550.372353][ T5866] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  550.430665][ T8051] loop6: detected capacity change from 0 to 1024
[  550.506527][ T8051] EXT4-fs: Ignoring removed oldalloc option
[  550.513135][ T8051] EXT4-fs: Ignoring removed bh option
[  550.582073][ T5866] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  550.590509][ T5866] usb 8-1: config 0 has no interface number 0
[  550.597472][ T5866] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  550.608823][ T5866] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  550.619003][ T5866] usb 8-1: config 0 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  550.632335][ T5866] usb 8-1: New USB device found, idVendor=28bd, idProduct=0042, bcdDevice= 0.00
[  550.641842][ T5866] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  550.775576][ T8051] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  550.982883][ T5866] usb 8-1: config 0 descriptor??
[  551.082618][   T30] audit: type=1804 audit(1757639544.072:341): pid=8051 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.446" name="/newroot/27/file1/file1" dev="loop6" ino=15 res=1 errno=0
[  551.474762][ T5866] usbhid 8-1:0.1: can't add hid device: -71
[  551.481769][ T5866] usbhid 8-1:0.1: probe with driver usbhid failed with error -71
[  551.634094][ T5866] usb 8-1: USB disconnect, device number 2
[  552.028978][ T7176] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  552.149227][ T8072] netlink: 60 bytes leftover after parsing attributes in process `syz.5.450'.
[  552.210033][ T8072] netlink: 60 bytes leftover after parsing attributes in process `syz.5.450'.
[  552.277013][ T8074] netlink: 60 bytes leftover after parsing attributes in process `syz.5.450'.
[  553.860197][ T8094] loop7: detected capacity change from 0 to 512
[  554.063490][ T5822] Bluetooth: hci4: command 0x0406 tx timeout
[  554.067790][ T5813] Bluetooth: hci5: command 0x0406 tx timeout
[  554.106368][ T8094] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  554.120767][ T8094] ext4 filesystem being mounted at /26/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  554.789818][ T7272] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  554.915240][ T8105] loop6: detected capacity change from 0 to 1024
[  554.983160][ T8105] EXT4-fs: Ignoring removed oldalloc option
[  554.989559][ T8105] EXT4-fs: Ignoring removed bh option
[  555.284289][ T8105] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  555.709507][   T30] audit: type=1804 audit(1757639548.702:342): pid=8105 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.461" name="/newroot/30/file1/file1" dev="loop6" ino=15 res=1 errno=0
[  555.812224][ T8122] bond0: (slave dummy0): Releasing backup interface
[  555.921795][ T5873] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  556.217108][ T5873] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  556.225885][ T5873] usb 8-1: config 0 has no interface number 0
[  556.232523][ T5873] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  556.243801][ T5873] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  556.254060][ T5873] usb 8-1: config 0 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  556.274161][ T5873] usb 8-1: New USB device found, idVendor=28bd, idProduct=0042, bcdDevice= 0.00
[  556.284012][ T5873] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  556.452408][ T7176] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  556.482392][ T5873] usb 8-1: config 0 descriptor??
[  556.972473][ T5873] usbhid 8-1:0.1: can't add hid device: -71
[  556.979333][ T5873] usbhid 8-1:0.1: probe with driver usbhid failed with error -71
[  557.085494][ T5873] usb 8-1: USB disconnect, device number 3
[  557.422548][ T8139] netlink: 'syz.5.468': attribute type 3 has an invalid length.
[  558.761138][ T8155] netlink: 'syz.3.475': attribute type 29 has an invalid length.
[  558.808407][ T8156] netlink: 'syz.3.475': attribute type 29 has an invalid length.
[  559.836359][ T8169] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  561.074319][ T8187] netlink: 'syz.0.484': attribute type 3 has an invalid length.
[  562.721948][ T8207] loop6: detected capacity change from 0 to 512
[  562.917553][ T8213] netlink: 44 bytes leftover after parsing attributes in process `syz.0.495'.
[  562.988057][ T8207] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  563.001810][ T8207] ext4 filesystem being mounted at /37/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  563.053782][ T8212] netlink: 44 bytes leftover after parsing attributes in process `syz.0.495'.
[  563.127452][ T8216] netlink: 44 bytes leftover after parsing attributes in process `syz.0.495'.
[  563.278544][ T8218] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  563.788884][ T7176] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  563.814301][ T8227] vxcan1: entered allmulticast mode
[  564.464367][ T8233] netlink: 'syz.6.500': attribute type 3 has an invalid length.
[  565.423702][ T8242] loop0: detected capacity change from 0 to 512
[  565.495514][ T8242] EXT4-fs: Ignoring removed nobh option
[  566.091978][ T8242] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #3: comm syz.0.504: corrupted inode contents
[  566.432682][ T8242] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #3: comm syz.0.504: mark_inode_dirty error
[  566.727887][ T8242] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #3: comm syz.0.504: corrupted inode contents
[  566.784505][ T8242] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #3: comm syz.0.504: mark_inode_dirty error
[  566.893078][ T8242] Quota error (device loop0): write_blk: dquota write failed
[  566.901742][ T8242] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  566.912199][ T8242] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.504: Failed to acquire dquot type 0
[  567.011881][ T8262] loop6: detected capacity change from 0 to 512
[  567.079344][ T8242] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.504: corrupted inode contents
[  567.142100][ T8242] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #16: comm syz.0.504: mark_inode_dirty error
[  567.238980][ T8242] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.504: corrupted inode contents
[  567.308801][ T8242] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.504: mark_inode_dirty error
[  567.430429][ T8242] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.504: corrupted inode contents
[  567.481658][ T8262] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  567.495312][ T8262] ext4 filesystem being mounted at /40/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  567.538340][ T8242] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  567.623492][ T8242] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.504: corrupted inode contents
[  567.636650][ T8268] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  567.703550][ T8242] EXT4-fs error (device loop0): ext4_truncate:4666: inode #16: comm syz.0.504: mark_inode_dirty error
[  567.721056][ T8265] tipc: Disabling bearer <eth:syzkaller0>
[  567.763604][ T8242] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  567.965329][ T8242] EXT4-fs (loop0): 1 truncate cleaned up
[  567.979298][ T8242] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  567.995280][ T8242] ext4 filesystem being mounted at /181/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  568.083280][ T7176] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  569.007199][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  569.134099][ T8283] netlink: 'syz.3.515': attribute type 3 has an invalid length.
[  569.425652][ T5813] Bluetooth: hci2: command 0x0406 tx timeout
[  570.607746][ T8302] netlink: 52 bytes leftover after parsing attributes in process `syz.0.522'.
[  571.132606][ T8312] loop7: detected capacity change from 0 to 512
[  571.164498][ T8312] EXT4-fs: Ignoring removed nobh option
[  571.490765][ T8312] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #3: comm syz.7.526: corrupted inode contents
[  571.562724][ T8312] EXT4-fs error (device loop7): ext4_dirty_inode:6538: inode #3: comm syz.7.526: mark_inode_dirty error
[  571.638201][ T8319] vxcan1: entered allmulticast mode
[  571.667323][ T8312] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #3: comm syz.7.526: corrupted inode contents
[  571.755314][ T8312] EXT4-fs error (device loop7): __ext4_ext_dirty:206: inode #3: comm syz.7.526: mark_inode_dirty error
[  571.883497][ T8312] Quota error (device loop7): write_blk: dquota write failed
[  571.893148][ T8312] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota
[  571.903729][ T8312] EXT4-fs error (device loop7): ext4_acquire_dquot:6937: comm syz.7.526: Failed to acquire dquot type 0
[  572.022443][ T8312] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #16: comm syz.7.526: corrupted inode contents
[  572.204775][ T8312] EXT4-fs error (device loop7): ext4_dirty_inode:6538: inode #16: comm syz.7.526: mark_inode_dirty error
[  572.287742][ T8312] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #16: comm syz.7.526: corrupted inode contents
[  572.372033][ T8312] EXT4-fs error (device loop7): __ext4_ext_dirty:206: inode #16: comm syz.7.526: mark_inode_dirty error
[  572.453170][ T8312] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #16: comm syz.7.526: corrupted inode contents
[  572.475169][ T8312] EXT4-fs error (device loop7) in ext4_orphan_del:305: Corrupt filesystem
[  572.511999][ T8312] EXT4-fs error (device loop7): ext4_do_update_inode:5653: inode #16: comm syz.7.526: corrupted inode contents
[  572.643010][ T8312] EXT4-fs error (device loop7): ext4_truncate:4666: inode #16: comm syz.7.526: mark_inode_dirty error
[  572.742556][ T8312] EXT4-fs error (device loop7) in ext4_process_orphan:347: Corrupt filesystem
[  572.815730][ T8312] EXT4-fs (loop7): 1 truncate cleaned up
[  572.824177][ T8312] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  572.837821][ T8312] ext4 filesystem being mounted at /39/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  573.396109][ T7272] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  575.224607][ T8353] team0: Port device team_slave_0 removed
[  576.150404][ T8365] netlink: 'syz.0.545': attribute type 1 has an invalid length.
[  577.057758][ T8380] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  577.152277][ T8379] netlink: 4 bytes leftover after parsing attributes in process `syz.0.550'.
[  577.180516][ T8376] syzkaller0: entered promiscuous mode
[  577.186614][ T8376] syzkaller0: entered allmulticast mode
[  577.317409][ T8376] tipc: Resetting bearer <eth:syzkaller0>
[  577.396188][ T8375] tipc: Resetting bearer <eth:syzkaller0>
[  577.464845][ T8375] tipc: Disabling bearer <eth:syzkaller0>
[  578.205563][ T8391] vxcan1: entered allmulticast mode
[  578.635624][ T8394] loop7: detected capacity change from 0 to 1024
[  578.695227][ T8394] EXT4-fs: Ignoring removed oldalloc option
[  578.703143][ T8394] EXT4-fs: Ignoring removed bh option
[  578.985239][ T8394] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  579.271277][   T30] audit: type=1804 audit(1757639572.282:343): pid=8394 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.555" name="/newroot/44/file1/file1" dev="loop7" ino=15 res=1 errno=0
[  579.392071][   T30] audit: type=1804 audit(1757639572.332:344): pid=8407 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.7.555" name="/newroot/44/file1/file1" dev="loop7" ino=15 res=1 errno=0
[  580.388780][ T7272] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  583.445530][ T8427] netlink: 4 bytes leftover after parsing attributes in process `syz.6.563'.
[  584.324510][ T8434] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  586.322821][ T8449] 9pnet_fd: Insufficient options for proto=fd
[  589.447378][ T8453] loop7: detected capacity change from 0 to 1024
[  589.479342][ T8453] EXT4-fs: Ignoring removed oldalloc option
[  589.487265][ T8453] EXT4-fs: Ignoring removed bh option
[  589.671264][ T8427] Set syz1 is full, maxelem 65536 reached
[  590.235731][ T8453] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  590.879677][ T7272] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  591.668436][ T8474] loop7: detected capacity change from 0 to 512
[  591.886228][ T8474] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  591.895892][ T8474] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem
[  592.049022][ T8474] EXT4-fs (loop7): warning: mounting unchecked fs, running e2fsck is recommended
[  592.075731][ T8474] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  592.085170][ T8474] System zones: 0-2, 18-18, 34-35
[  592.093249][ T8474] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  592.793978][ T7272] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  592.975102][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  592.981955][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  593.463648][ T8489] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  593.822895][ T8496] 9pnet_fd: Insufficient options for proto=fd
[  594.472712][ T8500] syz.7.583 uses obsolete (PF_INET,SOCK_PACKET)
[  599.575046][ T8537] loop6: detected capacity change from 0 to 1024
[  600.116559][ T8537] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  600.354824][ T8537] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  600.458427][ T8545] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  600.489503][ T8537] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 44 with max blocks 1 with error 28
[  600.502533][ T8537] EXT4-fs (loop6): This should not happen!! Data will be lost
[  600.502533][ T8537] 
[  600.512723][ T8537] EXT4-fs (loop6): Total free blocks count 0
[  600.518945][ T8537] EXT4-fs (loop6): Free/Dirty block details
[  600.525300][ T8537] EXT4-fs (loop6): free_blocks=68451041280
[  600.531336][ T8537] EXT4-fs (loop6): dirty_blocks=32
[  600.545242][ T8537] EXT4-fs (loop6): Block reservation details
[  600.545666][ T8545] syzkaller0: entered promiscuous mode
[  600.552107][ T8537] EXT4-fs (loop6): i_reserved_data_blocks=2
[  600.557266][ T8545] syzkaller0: entered allmulticast mode
[  600.730801][ T8545] tipc: Resetting bearer <eth:syzkaller0>
[  600.896500][ T8544] tipc: Resetting bearer <eth:syzkaller0>
[  601.034583][ T8544] tipc: Disabling bearer <eth:syzkaller0>
[  601.464940][ T4030] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  602.556253][ T8568] loop6: detected capacity change from 0 to 512
[  602.637414][ T8568] EXT4-fs: Ignoring removed nomblk_io_submit option
[  602.782634][ T8568] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  602.795157][ T8568] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01d, mo2=0102]
[  602.829846][ T8568] EXT4-fs (loop6): couldn't mount RDWR because of unsupported optional features (80)
[  602.840061][ T8568] EXT4-fs (loop6): Skipping orphan cleanup due to unknown ROCOMPAT features
[  602.852028][ T8568] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  602.953717][ T5813] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  602.983888][ T5813] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  603.026127][ T5813] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  603.075766][ T5813] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  603.152278][ T5813] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  603.425571][ T8568] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  605.261867][ T5813] Bluetooth: hci3: command tx timeout
[  605.774366][ T8597] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  605.870141][ T8595] syzkaller0: entered promiscuous mode
[  605.876051][ T8595] syzkaller0: entered allmulticast mode
[  606.025676][ T8595] tipc: Resetting bearer <eth:syzkaller0>
[  606.175800][ T8593] tipc: Resetting bearer <eth:syzkaller0>
[  606.250639][ T8593] tipc: Disabling bearer <eth:syzkaller0>
[  606.600976][ T3894] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  606.728778][ T3894] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  607.168286][ T3894] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  607.354626][ T5813] Bluetooth: hci3: command tx timeout
[  607.838783][ T8570] chnl_net:caif_netlink_parms(): no params data found
[  608.173586][ T3894] bridge_slave_1: left allmulticast mode
[  608.179487][ T3894] bridge_slave_1: left promiscuous mode
[  608.186709][ T3894] bridge0: port 2(bridge_slave_1) entered disabled state
[  608.359692][ T3894] bridge_slave_0: left allmulticast mode
[  608.366538][ T3894] bridge_slave_0: left promiscuous mode
[  608.373611][ T3894] bridge0: port 1(bridge_slave_0) entered disabled state
[  609.248365][ T3894] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  609.295288][ T3894] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  609.328949][ T3894] bond0 (unregistering): Released all slaves
[  609.424394][ T5813] Bluetooth: hci3: command tx timeout
[  609.668044][ T3894] tipc: Left network mode
[  611.842047][ T5813] Bluetooth: hci3: command tx timeout
[  612.784557][ T3894] hsr_slave_0: left promiscuous mode
[  612.917665][ T3894] hsr_slave_1: left promiscuous mode
[  612.932920][ T3894] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  612.940618][ T3894] batman_adv: batadv0: Removing interface: batadv_slave_0
[  613.047393][ T3894] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  613.055719][ T3894] batman_adv: batadv0: Removing interface: batadv_slave_1
[  613.265162][ T3894] veth1_macvtap: left promiscuous mode
[  613.270972][ T3894] veth0_macvtap: left promiscuous mode
[  613.277479][ T3894] veth1_vlan: left promiscuous mode
[  613.283304][ T3894] veth0_vlan: left promiscuous mode
[  614.830588][ T3894] team0 (unregistering): Port device team_slave_1 removed
[  614.941816][ T3894] team0 (unregistering): Port device team_slave_0 removed
[  615.299249][ T8634] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  615.312407][ T8637] syzkaller0: entered promiscuous mode
[  615.318323][ T8637] syzkaller0: entered allmulticast mode
[  615.575081][ T8649] tipc: Resetting bearer <eth:syzkaller0>
[  615.714408][ T8632] tipc: Resetting bearer <eth:syzkaller0>
[  615.768763][ T8632] tipc: Disabling bearer <eth:syzkaller0>
[  616.518104][ T8570] bridge0: port 1(bridge_slave_0) entered blocking state
[  616.525951][ T8570] bridge0: port 1(bridge_slave_0) entered disabled state
[  616.533584][ T8570] bridge_slave_0: entered allmulticast mode
[  616.541746][ T8570] bridge_slave_0: entered promiscuous mode
[  616.658995][ T8570] bridge0: port 2(bridge_slave_1) entered blocking state
[  616.667074][ T8570] bridge0: port 2(bridge_slave_1) entered disabled state
[  616.674954][ T8570] bridge_slave_1: entered allmulticast mode
[  616.682997][ T8570] bridge_slave_1: entered promiscuous mode
[  617.216209][ T8674] loop0: detected capacity change from 0 to 512
[  617.272199][ T8674] EXT4-fs: Ignoring removed nomblk_io_submit option
[  617.309524][ T8570] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  617.439781][ T8674] EXT4-fs error (device loop0): ext4_iget_extra_inode:5104: inode #15: comm syz.0.632: corrupted in-inode xattr: e_value size too large
[  617.441660][ T8570] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  617.514392][ T8674] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.632: couldn't read orphan inode 15 (err -117)
[  617.641809][ T8674] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  617.680138][ T8570] team0: Port device team_slave_0 added
[  617.792005][ T8570] team0: Port device team_slave_1 added
[  618.751201][ T8570] batman_adv: batadv0: Adding interface: batadv_slave_0
[  618.758687][ T8570] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  618.779561][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  618.789315][ T8570] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  619.017387][ T8570] batman_adv: batadv0: Adding interface: batadv_slave_1
[  619.024851][ T8570] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  619.052493][ T8570] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  619.813396][ T8570] hsr_slave_0: entered promiscuous mode
[  619.826201][ T8570] hsr_slave_1: entered promiscuous mode
[  619.835606][ T8570] debugfs: 'hsr0' already exists in 'hsr'
[  619.841934][ T8570] Cannot create hsr debugfs directory
[  621.724521][ T8707] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  621.840418][ T8702] tipc: Resetting bearer <eth:syzkaller0>
[  622.166932][ T8700] tipc: Disabling bearer <eth:syzkaller0>
[  622.393330][ T8570] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  622.526511][ T8570] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  622.664184][ T8570] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  622.784591][ T8570] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  624.186891][ T8570] 8021q: adding VLAN 0 to HW filter on device bond0
[  624.533780][ T8570] 8021q: adding VLAN 0 to HW filter on device team0
[  624.698244][ T5103] bridge0: port 1(bridge_slave_0) entered blocking state
[  624.706097][ T5103] bridge0: port 1(bridge_slave_0) entered forwarding state
[  624.853020][ T5103] bridge0: port 2(bridge_slave_1) entered blocking state
[  624.860611][ T5103] bridge0: port 2(bridge_slave_1) entered forwarding state
[  625.569117][ T8745] loop7: detected capacity change from 0 to 512
[  625.618305][ T8745] EXT4-fs: Ignoring removed nomblk_io_submit option
[  625.724106][ T8745] EXT4-fs (loop7): revision level too high, forcing read-only mode
[  625.734811][ T8745] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01d, mo2=0102]
[  625.780173][ T8745] EXT4-fs (loop7): couldn't mount RDWR because of unsupported optional features (80)
[  625.790441][ T8745] EXT4-fs (loop7): Skipping orphan cleanup due to unknown ROCOMPAT features
[  625.802261][ T8745] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  625.948731][ T8745] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  627.640079][ T8570] 8021q: adding VLAN 0 to HW filter on device batadv0
[  628.462753][ T8784] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  631.707928][ T8819] loop0: detected capacity change from 0 to 1024
[  632.000816][ T8570] veth0_vlan: entered promiscuous mode
[  632.051905][ T8819] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  632.104815][ T8570] veth1_vlan: entered promiscuous mode
[  633.147518][ T8570] veth0_macvtap: entered promiscuous mode
[  633.183975][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  633.269482][ T8570] veth1_macvtap: entered promiscuous mode
[  633.506050][ T8570] batman_adv: batadv0: Interface activated: batadv_slave_0
[  633.676665][ T8570] batman_adv: batadv0: Interface activated: batadv_slave_1
[  633.856363][ T4030] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  633.937009][ T4030] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  634.014253][ T4030] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  634.035467][ T8842] loop0: detected capacity change from 0 to 1024
[  634.144953][ T4030] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  635.341726][ T8856] =====================================================
[  635.349042][ T8856] BUG: KMSAN: uninit-value in hfsplus_uni2asc+0x9a6/0x27a0
[  635.359420][ T8856]  hfsplus_uni2asc+0x9a6/0x27a0
[  635.364650][ T8856]  hfsplus_readdir+0xd60/0x1a70
[  635.369737][ T8856]  iterate_dir+0x452/0x620
[  635.374528][ T8856]  __se_sys_getdents64+0x17e/0x550
[  635.379859][ T8856]  __x64_sys_getdents64+0x97/0xe0
[  635.385204][ T8856]  x64_sys_call+0x3a14/0x3e20
[  635.390153][ T8856]  do_syscall_64+0xd9/0x210
[  635.395467][ T8856]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  635.401690][ T8856] 
[  635.404109][ T8856] Uninit was created at:
[  635.408602][ T8856]  __kmalloc_noprof+0x95f/0x1310
[  635.413858][ T8856]  hfsplus_find_init+0x90/0x1d0
[  635.418944][ T8856]  hfsplus_readdir+0x1dc/0x1a70
[  635.424195][ T8856]  iterate_dir+0x452/0x620
[  635.428821][ T8856]  __se_sys_getdents64+0x17e/0x550
[  635.434273][ T8856]  __x64_sys_getdents64+0x97/0xe0
[  635.439511][ T8856]  x64_sys_call+0x3a14/0x3e20
[  635.446201][ T8856]  do_syscall_64+0xd9/0x210
[  635.450891][ T8856]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  635.459802][ T8856] 
[  635.462419][ T8856] CPU: 0 UID: 0 PID: 8856 Comm: syz.0.680 Not tainted syzkaller #0 PREEMPT(none) 
[  635.471925][ T8856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  635.482235][ T8856] =====================================================
[  635.489377][ T8856] Disabling lock debugging due to kernel taint
[  635.495766][ T8856] Kernel panic - not syncing: kmsan.panic set ...
[  635.502350][ T8856] CPU: 0 UID: 0 PID: 8856 Comm: syz.0.680 Tainted: G    B               syzkaller #0 PREEMPT(none) 
[  635.513363][ T8856] Tainted: [B]=BAD_PAGE
[  635.517621][ T8856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  635.527810][ T8856] Call Trace:
[  635.531190][ T8856]  <TASK>
[  635.534253][ T8856]  __dump_stack+0x26/0x30
[  635.538801][ T8856]  dump_stack_lvl+0x53/0x270
[  635.543600][ T8856]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  635.549628][ T8856]  dump_stack+0x1e/0x25
[  635.554431][ T8856]  vpanic+0x361/0xc50
[  635.558639][ T8856]  panic+0x15d/0x160
[  635.562793][ T8856]  kmsan_report+0x31c/0x320
[  635.567497][ T8856]  ? kmsan_get_metadata+0xfb/0x160
[  635.572814][ T8856]  ? __msan_warning+0x1b/0x30
[  635.577697][ T8856]  ? hfsplus_uni2asc+0x9a6/0x27a0
[  635.582900][ T8856]  ? hfsplus_readdir+0xd60/0x1a70
[  635.588158][ T8856]  ? iterate_dir+0x452/0x620
[  635.592955][ T8856]  ? __se_sys_getdents64+0x17e/0x550
[  635.598448][ T8856]  ? __x64_sys_getdents64+0x97/0xe0
[  635.603845][ T8856]  ? x64_sys_call+0x3a14/0x3e20
[  635.608945][ T8856]  ? do_syscall_64+0xd9/0x210
[  635.613786][ T8856]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  635.620064][ T8856]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  635.626605][ T8856]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  635.632874][ T8856]  ? kmsan_get_metadata+0xfb/0x160
[  635.638196][ T8856]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  635.644222][ T8856]  ? kmsan_get_metadata+0xfb/0x160
[  635.649546][ T8856]  ? kmsan_internal_memmove_metadata+0x91/0x230
[  635.655989][ T8856]  ? kmsan_get_metadata+0xfb/0x160
[  635.661305][ T8856]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  635.667356][ T8856]  ? utf32_to_utf8+0x3e4/0x410
[  635.672364][ T8856]  ? kmsan_get_metadata+0xfb/0x160
[  635.677687][ T8856]  __msan_warning+0x1b/0x30
[  635.682371][ T8856]  hfsplus_uni2asc+0x9a6/0x27a0
[  635.687422][ T8856]  ? __msan_memcpy+0x108/0x1c0
[  635.692419][ T8856]  hfsplus_readdir+0xd60/0x1a70
[  635.697549][ T8856]  ? aa_file_perm+0x549/0x2140
[  635.702532][ T8856]  ? __futex_wait+0x3f6/0x450
[  635.707489][ T8856]  ? __pfx_hfsplus_readdir+0x10/0x10
[  635.712997][ T8856]  iterate_dir+0x452/0x620
[  635.717625][ T8856]  __se_sys_getdents64+0x17e/0x550
[  635.722948][ T8856]  ? __pfx_filldir64+0x10/0x10
[  635.727916][ T8856]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  635.733945][ T8856]  __x64_sys_getdents64+0x97/0xe0
[  635.739184][ T8856]  x64_sys_call+0x3a14/0x3e20
[  635.744098][ T8856]  do_syscall_64+0xd9/0x210
[  635.748779][ T8856]  ? irqentry_exit+0x16/0x60
[  635.753596][ T8856]  ? clear_bhb_loop+0x40/0x90
[  635.758465][ T8856]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  635.764547][ T8856] RIP: 0033:0x7f4739d8eba9
[  635.769106][ T8856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  635.788917][ T8856] RSP: 002b:00007f473ac3b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  635.797523][ T8856] RAX: ffffffffffffffda RBX: 00007f4739fd6180 RCX: 00007f4739d8eba9
[  635.805648][ T8856] RDX: 00000000000000a2 RSI: 0000200000000f80 RDI: 0000000000000006
[  635.813763][ T8856] RBP: 00007f4739e11e19 R08: 0000000000000000 R09: 0000000000000000
[  635.821871][ T8856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  635.829975][ T8856] R13: 00007f4739fd6218 R14: 00007f4739fd6180 R15: 00007fff04a31b38
[  635.838151][ T8856]  </TASK>
[  635.841455][ T8856] Kernel Offset: disabled
[  635.845817][ T8856] Rebooting in 86400 seconds..