last executing test programs:

20m51.71664844s ago: executing program 32 (id=42):
socket(0x2, 0x2, 0x1)
r0 = semget$private(0x0, 0x6, 0x0)
semtimedop(r0, &(0x7f00000003c0)=[{0x2, 0x4, 0x1800}], 0x1, 0x0)
semop(r0, &(0x7f0000001240)=[{}, {0x2, 0x0, 0x2000}], 0x2)
semtimedop(r0, &(0x7f0000000080)=[{0x3, 0xfeff, 0x2000}, {0x0, 0x0, 0x1000}, {0x4, 0x7f9c}], 0x3, 0x0)
semop(0x0, &(0x7f0000000000)=[{0x3, 0x200}], 0x1)

20m51.170358223s ago: executing program 33 (id=47):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x10, 0x7fff0000}]})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xd0, &(0x7f0000000000)=0x46, 0x4)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r0, &(0x7f0000000000), 0xd)

18m2.707667007s ago: executing program 34 (id=1106):
io_uring_enter(0xffffffffffffffff, 0x92, 0x2, 0x9, 0x0, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
r1 = syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRESDEC], 0x0)
r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_ep_write(r1, 0x81, 0x0, 0x0)
read$char_usb(r2, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

17m52.47299867s ago: executing program 35 (id=1173):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000003c0)='./bus\x00', 0xe, &(0x7f0000000540)={[{@init_itable}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1ff}}, {@stripe}, {@noblock_validity}]}, 0x3, 0x451, &(0x7f0000000f80)="$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")
mkdir(&(0x7f0000000080)='./bus\x00', 0x0)
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x0, 0x1)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000100)=@v1={0x0, @adiantum, 0x0, @desc1})
chdir(&(0x7f00000003c0)='./bus\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x121c80, 0x47)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000280)=0x40000000)

17m35.505964572s ago: executing program 36 (id=1286):
r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x5d032, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000100)={0xaa, 0x101})
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5})
mprotect(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x5)
syz_io_uring_complete(r0)
syz_io_uring_complete(r0)

17m6.649146848s ago: executing program 37 (id=1516):
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='huge=within_size'])
chdir(&(0x7f0000000280)='./file0\x00')
creat(&(0x7f0000000000)='./bus\x00', 0x181)
r0 = open(&(0x7f0000000780)='./bus\x00', 0x14d0be, 0x48)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600402, 0x7ffffe, 0x4002011, r0, 0x800000)
openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)

15m49.463860268s ago: executing program 9 (id=2213):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000100)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r0, 0x3ba0, &(0x7f0000000280)={0x48, 0x1, r1, 0x0, 0x7, 0xa3})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r0, 0x3ba0, &(0x7f0000000140)={0x48, 0x2, r1, 0x0, 0x0, 0x0, 0x0, 0x1})
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r0, 0x3ba0, &(0x7f00000001c0)={0x48, 0x1, r1, 0x0, 0x7, 0x1})
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r0, 0x3ba0, &(0x7f0000000440)={0x48, 0x1, r1, 0x0, 0x9, 0x2})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000080)={0x28, 0x2, r1, 0x0, &(0x7f0000fff000/0x1000)=nil, 0x1000})

15m49.345871975s ago: executing program 9 (id=2215):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = dup(r0)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in6={{0xa, 0x4e21, 0xdb, @empty}}, 0xffd, 0x203, 0xffff18b6, 0x6, 0x330, 0x80000001, 0xdb}, 0x9c)
sendmsg$inet6(r1, &(0x7f0000000540)={&(0x7f0000000000)={0xa, 0x4e24, 0x7fff, @loopback, 0x6}, 0x1c, 0x0}, 0x54)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000300)={r3, @in={{0x2, 0x4e21, @empty}}, 0xe17c, 0xfff, 0x2, 0xd22, 0xa1, 0x0, 0x2}, &(0x7f0000000180)=0x9c)

15m49.163316462s ago: executing program 9 (id=2219):
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f0000000040)={0x8, 0x1, 0x4, 0x0, 0x5})
mount$overlay(0x0, 0x0, 0x0, 0x204008, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './bus'}}]})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x10000000000088}, 0x0)
syz_mount_image$btrfs(&(0x7f0000000100), &(0x7f00000000c0)='./file1\x00', 0x810, &(0x7f00000001c0)={[{@metadata_ratio={'metadata_ratio', 0x3d, 0x2}}, {}, {@compress_force}, {@nodiscard}, {@compress_algo={'compress', 0x3d, 'zstd'}}, {@clear_cache}, {@flushoncommit}, {@usebackuproot}]}, 0x1, 0x50f3, &(0x7f000000f3c0)="$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")
syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f0000000040)=ANY=[], 0x1, 0x6c1, &(0x7f00000003c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_misc(r0, &(0x7f0000000040), 0xe09)

15m48.047785656s ago: executing program 9 (id=2229):
syz_mount_image$minix(&(0x7f00000000c0), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0032006c00ae1ecebf96fccb8a69f4a8ea113bda4a1e87a726a9dcf01d4bf4543b835eb2b9e6066dc6b060d90b6ca4385a4244aa53e0a0acaebd0c1dd5d380385e85b29008b29f2fb4a93ebe5ace1c105e684d1fd61659e8decea319f675e039904905a8130e2f3c8d5c7a22b4487a331c727612ff1ddd6aabd0e4ab29212632a15e835fac77a7c827"], 0x1, 0x174, &(0x7f0000000240)="$eJzs281uElEYgOFvAH/iysSdcWfV+lMGCpou9VKadmwap2qsmzYu9Aq8Bq/M3oALb0BMR8BEGCaRyAnyPKsvvEzmsDjM2UwAm6vzPLLIYutyvnP95udbWeoVASsySnz/HyMgnfZF6hUAaXx7EXEREV+/fziI9tbM8/myf5z01r3Z/inidmfcs/vx4I8++hLVZ7/69tzrb0z7w7l9++7k/o/icTyJnehGHr3oj/vh9PrhkqcRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADZVFt2mvvALrXh5XBa92n6l6v3afrXquw19UNuvVb178KY8XLRMYI7Wkvu/3bD/Ow37H0jn9Oz81X5ZFu8MBoNhOqT+ZwL+tfz9ydv89Ox85/hk/6g4Kl4P+8Nne4PB3tNeXp3s88Xne2B9/X7op14JAAAAAAAAAPC3dqP+3RoAAOD/sorXiVL/RgAAAAAAAAAAAAAAWHc/AwAA//8c7qwa")
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x1c, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x204]})
unlink(&(0x7f0000000080)='./file1\x00')
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0)

15m47.361526498s ago: executing program 9 (id=2237):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x39b3)
ioctl$int_in(r0, 0x5452, &(0x7f0000000040)=0xffffffffffff2836)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="12000000040000000400000012"], 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000048c0)={r1, &(0x7f00000047c0), &(0x7f0000004880)=@udp=r0}, 0x20)
recvmmsg(r0, &(0x7f0000001b40)=[{{0x0, 0x0, 0x0}, 0x6}, {{0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000340)=""/83, 0x53}], 0x1}, 0x81}], 0x2, 0x21, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000280)=0x1, 0x4)

15m46.613604424s ago: executing program 9 (id=2243):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x101402, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x5, 0x3, 0xc06a2f6, 0x1, 0x7}, 0x6, 0x0, 0xa, 0x4, 0x6, 0x8, 0x18, 0x9, 0x3, 0x4, {0x0, 0x2, 0x9, 0x800, 0x8704, 0x27000000}}}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000006c0)=@newtfilter={0x3c, 0x2c, 0xd2b, 0x800, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0x10, 0xfff1}, {}, {0x7, 0xb}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_CLASSID={0x8, 0x1, {0xf, 0xc}}]}}]}, 0x3c}}, 0x24044094)

15m46.237670639s ago: executing program 38 (id=2243):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x101402, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x5, 0x3, 0xc06a2f6, 0x1, 0x7}, 0x6, 0x0, 0xa, 0x4, 0x6, 0x8, 0x18, 0x9, 0x3, 0x4, {0x0, 0x2, 0x9, 0x800, 0x8704, 0x27000000}}}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000006c0)=@newtfilter={0x3c, 0x2c, 0xd2b, 0x800, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0x10, 0xfff1}, {}, {0x7, 0xb}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_CLASSID={0x8, 0x1, {0xf, 0xc}}]}}]}, 0x3c}}, 0x24044094)

14m46.947363574s ago: executing program 2 (id=2744):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000005b80)={0x68, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x30, 0xe, {{{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @void, @val, @void, @void, @void, @void, @void, @void, @val={0x3c, 0x4, {0x0, 0xd5, 0xb4, 0x6}}, @void, @void, @void, @void}}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x7965}, @crypto_settings=[@NL80211_ATTR_SOCKET_OWNER={0x4}]]}, 0x68}}, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
close_range(r3, 0xffffffffffffffff, 0x0)

14m46.761905808s ago: executing program 2 (id=2748):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000070000000850000005000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='tlb_flush\x00', r1, 0x0, 0x9}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000180)='tlb_flush\x00', r0, 0x0, 0x51}, 0x18)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

14m45.702033759s ago: executing program 2 (id=2762):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000200)=0x474c, 0x4)
bind$inet(r0, &(0x7f0000000240)={0x2, 0x0, @local}, 0x6f)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x6e27, @multicast1}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x300)
r1 = epoll_create(0x9)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000000c0)={0x30000008})

14m45.109118069s ago: executing program 2 (id=2769):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x1004, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$binder(0x0, &(0x7f0000000340)='./file0/../file0\x00', 0x0, 0x80000, 0x0)

14m44.9522328s ago: executing program 2 (id=2774):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4000811}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'geneve1\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0xd}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x1c, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x40010, 0x3, 0x0, 0x1}}, @TCA_GRED_MAX_P={0x8, 0x4, 0x1}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x51}, 0x0)
bind$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x14)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

14m43.481720211s ago: executing program 2 (id=2796):
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='fd\x00')
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
getdents(r0, &(0x7f0000000940)=""/4096, 0x1000)

14m43.229772074s ago: executing program 39 (id=2796):
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='fd\x00')
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
getdents(r0, &(0x7f0000000940)=""/4096, 0x1000)

13m0.434203391s ago: executing program 1 (id=3767):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x1, 0x7fff0000}]})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_open_dev$loop(&(0x7f0000000240), 0x7, 0x180862)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_freeze_timeout', 0x2a2c02, 0xf)
socket$packet(0x11, 0x3, 0x300)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000940), 0x101402)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
pselect6(0x40, &(0x7f0000000240)={0x0, 0x0, 0xffffffffffffffff, 0x1, 0x0, 0x20003, 0x1, 0x2}, 0x0, &(0x7f0000000500)={0x3ff, 0x0, 0x8, 0xa, 0x80000000, 0x0, 0x7fffffff}, 0x0, 0x0)

13m0.278327422s ago: executing program 1 (id=3770):
r0 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'syz_tun\x00', <r1=>0x0})
bind$packet(r0, &(0x7f0000000080)={0x11, 0x800, r1, 0x1, 0x0, 0x6, @random="518440db9de1"}, 0x14)
r2 = socket$packet(0x11, 0x2, 0x300)
r3 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r4=>0x0})
bind$packet(r2, &(0x7f0000000300)={0x11, 0x63dcbf62d8600606, r4, 0x1, 0x8, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x32}}, 0x14)
syz_emit_ethernet(0x11, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaa8aaaaac0aa2aaaaaaa0d0606"], 0x0)

13m0.200838714s ago: executing program 1 (id=3774):
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$udf(&(0x7f0000000040), &(0x7f0000000fc0)='./file0/file0\x00', 0x100c007, &(0x7f0000001040)=ANY=[@ANYBLOB='gid=', @ANYRESDEC=0x0, @ANYBLOB="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", @ANYRES8], 0xfd, 0xc2f, &(0x7f0000000280)="$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")
socket$netlink(0x10, 0x3, 0x8000000004)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000017c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8, &(0x7f00000005c0)={[{@errors_remount}, {}]}, 0x4, 0x50a, &(0x7f00000018c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=ANY=[], 0x361, 0x0)

12m59.841259991s ago: executing program 1 (id=3778):
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000012c0), 0xfe, 0x249, &(0x7f0000000800)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={0x0}, 0x18)
open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
mount(&(0x7f00000004c0)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
lstat(&(0x7f0000000180)='./file1\x00', 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1c0000000, 0x8005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200]})
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)

12m59.258295466s ago: executing program 1 (id=3781):
syz_emit_ethernet(0x4a, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaa618e38850ee186dd6000000040140600fe8000000000000000000000000000bbfe80"], 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
recvmmsg(r0, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x40000000000012d, 0x2, 0x0)
setsockopt$inet_int(r0, 0x0, 0x12, &(0x7f0000000180)=0x80000003, 0x4)
setsockopt$inet_int(r0, 0x0, 0x7, &(0x7f0000000140)=0x6, 0x4)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'lo\x00'})
syz_emit_ethernet(0x32, &(0x7f0000001140)={@broadcast, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@ipv4={0x800, @udp={{0x6, 0x4, 0x0, 0x0, 0x24, 0x66, 0x0, 0x0, 0x11, 0x0, @empty, @empty, {[@timestamp={0x44, 0x4, 0x8d}]}}, {0x1, 0x4e20, 0xc, 0x0, @gue={{0x1, 0x0, 0x0, 0x0, 0x0, @void}}}}}}}, 0x0)

12m58.146183717s ago: executing program 1 (id=3786):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f00000002c0)={0x0, 0x0, 0x0, 'queue1\x00', 0x49})
write$sndseq(r1, &(0x7f0000000000)=[{0x1e, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}], 0x1001a)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000100)={{0x1, 0x0, 0x0, 0x3}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f0000000440)={0x1, 0x20000006})
ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0)
close_range(r0, 0xffffffffffffffff, 0x400000000000000)

12m57.296218518s ago: executing program 40 (id=3786):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f00000002c0)={0x0, 0x0, 0x0, 'queue1\x00', 0x49})
write$sndseq(r1, &(0x7f0000000000)=[{0x1e, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}], 0x1001a)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000100)={{0x1, 0x0, 0x0, 0x3}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f0000000440)={0x1, 0x20000006})
ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0)
close_range(r0, 0xffffffffffffffff, 0x400000000000000)

11m47.028482579s ago: executing program 4 (id=4348):
close(0x3)
r0 = socket(0x2, 0x80805, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000200)={<r2=>0x0, 0x1c, &(0x7f00000002c0)=[@in6={0xa, 0x4e21, 0x383, @dev={0xfe, 0x80, '\x00', 0x3c}, 0x4}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x7a, &(0x7f0000000340)={r2, @in6={{0xa, 0x3, 0x4, @mcast1}}}, &(0x7f0000000040)=0x84)
sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="30000000000000008400000001000000000000017c"], 0x30}], 0x1, 0x0)
setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000040)={r2, 0x5}, 0x8)

11m46.526200569s ago: executing program 4 (id=4354):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r2, &(0x7f0000000440), 0x6f5, 0x2000000022, &(0x7f0000000480)={0x77359400})
setsockopt$sock_int(r2, 0x1, 0x4b, &(0x7f0000000040)=0xfd87, 0x4)
sendmsg$key(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0216000002"], 0x10}}, 0x0)

11m44.019641321s ago: executing program 4 (id=4372):
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000b00), 0x1, 0x565, &(0x7f00000003c0)="$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")
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80202, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
recvmsg(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwritev2(r2, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0x1}], 0x1, 0xe7b, 0x3, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

11m43.587822389s ago: executing program 4 (id=4381):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2901090, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
mount(0x0, &(0x7f0000000d40)='./file0/../file0/../file0\x00', &(0x7f00000002c0)='sysfs\x00', 0x0, 0x0)
pivot_root(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000001c0)='./file0/../file0/../file0\x00')

11m43.435213568s ago: executing program 4 (id=4384):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000140)=ANY=[], 0x8)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000080)=ANY=[], 0x8)
setsockopt$inet6_int(r0, 0x29, 0x3a, &(0x7f0000000040)=0x8, 0x4)
recvmmsg(r0, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0)
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000180)={{{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in=@local, 0x4e22, 0x400, 0x4e21, 0x0, 0xa, 0x80, 0x40, 0x2f}, {0xfff, 0x401, 0x7, 0x2, 0x5, 0x2, 0x9277, 0xa676}, {0x80000000, 0x6, 0xffff, 0x5}, 0x27, 0x6e6bb0, 0x2, 0x1, 0x3, 0x1}, {{@in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x4d2, 0x32}, 0x2, @in6=@remote, 0x3504, 0x10b43197a60a3a06, 0x2, 0x2, 0x81, 0xffffffa0, 0x2}}, 0xe8)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

11m42.183481757s ago: executing program 4 (id=4389):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x18)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
close(r3)
socket$netlink(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000000900010073797a300000000078000000030a01030000000000000000050000000900010073797a300000000008000540000000001c0008800c00024000000000000000000c00014000000000000000000900030073797a3200000000280004800800024000000000140003007465616d5f736c6176655f3000000000080001"], 0xd4}}, 0x4000010)
write$binfmt_misc(r2, &(0x7f0000000000), 0xfffffecc)
splice(r1, 0x0, r3, 0x0, 0x4ffe6, 0x0)

11m41.293675954s ago: executing program 41 (id=4389):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x18)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
close(r3)
socket$netlink(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000000900010073797a300000000078000000030a01030000000000000000050000000900010073797a300000000008000540000000001c0008800c00024000000000000000000c00014000000000000000000900030073797a3200000000280004800800024000000000140003007465616d5f736c6176655f3000000000080001"], 0xd4}}, 0x4000010)
write$binfmt_misc(r2, &(0x7f0000000000), 0xfffffecc)
splice(r1, 0x0, r3, 0x0, 0x4ffe6, 0x0)

10m8.431123403s ago: executing program 5 (id=5000):
sched_setattr(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x50)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3, 0x9, 0x0, 0x1, 0x3801}, {0x2c}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x7, 0x0, 0xc}, {0x18, 0x2, 0x2, 0x0, r1}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

10m7.562208545s ago: executing program 5 (id=5005):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_io_uring_setup(0x88f, &(0x7f00000010c0)={0x0, 0xc941, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r5 = socket$can_j1939(0x1d, 0x2, 0x7)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x0, 0x0, 0x0, 0x0, 0x2})
io_uring_enter(r2, 0x47f6, 0x0, 0x4, 0x0, 0x0)

10m5.059289553s ago: executing program 5 (id=5020):
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000140), 0x10)
r1 = syz_io_uring_setup(0x835, &(0x7f00000000c0)={0x0, 0x679d, 0x400, 0x2000006, 0x3ce}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r0, 0x0, &(0x7f0000000240)="144024aeae8b2b5d63f7449a372e1406d4defe495b5744eed6801d1d51e1d3fcdcf25bdf4a5f2ef4b45d6898757795c858f0c3d4b26bd644", 0x38, 0x2400c0c7, 0x1})
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x288, 0x0, 0xa, 0x148, 0xd0, 0x10, 0x1f0, 0x2a8, 0x2a8, 0x1f0, 0x2a8, 0x3, 0x0, {[{{@ip={@loopback, @multicast1, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x70, 0xd0, 0x0, {0x200003ae, 0x7f00}}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @remote, 0x7, 0x70, [0x13, 0x2a84, 0x26, 0x7, 0x2, 0x13, 0x7, 0x31, 0x10, 0x32, 0x2b, 0x3c, 0xc, 0x23, 0x801e, 0x32], 0x2, 0x80000001, 0x6}}}, {{@ip={@private=0xa010102, @dev={0xac, 0x14, 0x14, 0xf}, 0x0, 0x0, 'veth1_to_team\x00', 'ip6erspan0\x00', {}, {0xff}, 0x29, 0x3}, 0x0, 0xc0, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x5}}, @inet=@rpfilter={{0x28}, {0xb}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x1, @empty, 0x80, 0x2, [0x26, 0x11, 0x3, 0x3ff, 0x3e, 0xd, 0x14, 0x30, 0x8, 0x40, 0x1039, 0xf, 0x4, 0x20, 0x16, 0x32], 0x2, 0x8, 0xffffffffffffff00}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x2e8)
io_uring_enter(r1, 0x3516, 0x0, 0x0, 0x0, 0x0)

10m3.581485705s ago: executing program 5 (id=5026):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
unshare(0x48020200)
mount$bind(&(0x7f0000000580)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x1b5008, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000540)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2145499, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, 0x0)

10m2.807720586s ago: executing program 5 (id=5032):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = dup(r0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c)
sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
r2 = dup(r0)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000000)='ip6gretap0\x00', 0x10)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e22, @empty}}, 0x8003, 0xbffc, 0xe652, 0x2, 0x4, 0x8, 0xff}, 0x9c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f0000000600)={0x0, @in6={{0xa, 0x4e23, 0x7, @empty, 0x2001}}, 0x6, 0x6}, 0x90)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000100)={0x0, @in6={{0xa, 0x4e60, 0xfffffff2, @empty, 0x2}}, 0x1000000, 0x2d, 0xffff1896, 0x0, 0xc, 0x40000000, 0x1b}, 0x9c)

10m2.246320181s ago: executing program 5 (id=5035):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2041, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000080)={0x49de, 0x0, 0x0, 0xbfff, 0x0, "ec28a144f13d7607"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x10, "0062ba5d8200"})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x9000)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = syz_open_pts(r0, 0x20800)
dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000100)=0x44)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x20008010)

10m1.789393641s ago: executing program 42 (id=5035):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2041, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000080)={0x49de, 0x0, 0x0, 0xbfff, 0x0, "ec28a144f13d7607"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x10, "0062ba5d8200"})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x9000)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = syz_open_pts(r0, 0x20800)
dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000100)=0x44)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x20008010)

31.461608522s ago: executing program 7 (id=6866):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000280)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000100)='./file1\x00', 0x13b)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, 0x0, 0x0)
r3 = open(&(0x7f0000000580)='./file0\x00', 0x80242, 0x1df2a23c5997fa5f)
write$FUSE_CREATE_OPEN(r3, &(0x7f0000000440)={0xa0, 0xffffffffffffffda, 0x0, {{0x4, 0x3, 0x5, 0x6, 0x203, 0x1, {0xffffffffffffffff, 0x9, 0x20ff, 0x5, 0x89, 0xd615, 0x9, 0x7fffffff, 0xfffffffe, 0x8000, 0x0, 0x0, 0x0, 0x3ff, 0x400000}}, {0x0, 0x13}}}, 0x35)
sendfile(r3, r3, &(0x7f0000000080), 0x7f03)

20.533631995s ago: executing program 7 (id=6886):
openat$kvm(0xffffffffffffff9c, 0x0, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={0x0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r5=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)={0x24, r4, 0x1, 0x70bd28, 0x1, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}]}, 0x24}}, 0x80)

17.61869481s ago: executing program 6 (id=6889):
openat$kvm(0xffffffffffffff9c, 0x0, 0x80, 0x0)
r0 = gettid()
mknod(&(0x7f0000000180)='./file0\x00', 0x1ffa, 0x0)
acct(&(0x7f0000000140)='./file0\x00')
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000003c0)={0x4, 0x80100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
ftruncate(0xffffffffffffffff, 0xffff)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x7)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)

17.463653997s ago: executing program 7 (id=6890):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(0xffffffffffffffff, &(0x7f0000000200)={0x2020}, 0x2020)
mount(&(0x7f0000000300), &(0x7f0000000080)='.\x00', &(0x7f0000000040)='binder\x00', 0x2200892, 0x0)
read$FUSE(r3, &(0x7f00000005c0)={0x2020}, 0x2020)

16.274366326s ago: executing program 7 (id=6893):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = userfaultfd(0x1)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000140))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1})
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
pipe(&(0x7f00000045c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
vmsplice(r3, &(0x7f0000001440)=[{&(0x7f0000001a00)="ce", 0x1}], 0x1, 0x4)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$UFFDIO_COPY(r0, 0xc028aa05, &(0x7f0000000040)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000000/0x3000)=nil, 0x3000})

15.152473587s ago: executing program 0 (id=6894):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeeb, 0x8031, 0xffffffffffffffff, 0xc36e5000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
unshare(0x8000000)
semtimedop(0x0, &(0x7f0000000280)=[{0x0, 0x0, 0x1000}], 0x1, 0x0)

15.025372086s ago: executing program 3 (id=6895):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
keyctl$instantiate_iov(0x14, 0x0, &(0x7f00000005c0), 0x0, 0x0)
sendmsg(r1, 0x0, 0x0)
sched_setattr(0x0, 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
io_uring_setup(0x2d29, &(0x7f0000000600)={0x0, 0x707d, 0x400, 0x2, 0xe8})
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000001, 0x10, 0xffffffffffffffff, 0x68376000)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0xc800, &(0x7f00000002c0)={0xa, 0x4000, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x40020}, 0x1c)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000600)=@newtaction={0x50, 0x1e, 0x109, 0x100, 0x0, {}, [{0x3c, 0x1, [@m_skbmod={0x38, 0x15, 0x0, 0x0, {{0xb}, {0x4}, {0x9, 0x6, "c9e656978f"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x2}}}}]}]}, 0x50}, 0x1, 0x2b1e, 0x0, 0x1}, 0x0)

13.918031684s ago: executing program 0 (id=6896):
syz_mount_image$udf(&(0x7f0000000c40), &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='noadinicb,nostrict,mode=00000000000000000000004,uid=forget,noadinicb,umask=00000000000000040002000,lastblock=00000000000000000013,undelete,partition=00000000000000000005,\x00'], 0x47, 0xc11, &(0x7f0000000d00)="$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")
setrlimit(0x1, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff})
truncate(&(0x7f0000000080)='./file1\x00', 0x400000f000)
syz_mount_image$msdos(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x1, 0x241, &(0x7f0000002000)="$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")
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
truncate(&(0x7f0000000240)='./file1\x00', 0x20fffffffc)
socket(0x10, 0x803, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0xc000)
ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000018c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
setns(r2, 0x24020000)
umount2(&(0x7f0000000040)='.\x00', 0x2)
close_range(r0, 0xffffffffffffffff, 0x0)

13.785526659s ago: executing program 6 (id=6897):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, 0x0, 0x40080)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x24, 0x1, 0x4, 0x801, 0x0, 0x0, {0x5, 0x0, 0x2}, [@NFULA_CFG_CMD={0x5, 0x1, 0x1}, @NFULA_CFG_FLAGS={0x6, 0x6, 0x1, 0x0, 0x6}]}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r1 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r1)
r2 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r2, 0x7a7, &(0x7f00000000c0)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, &(0x7f0000000280)={@my=0x1})
r3 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000400)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581", @ANYRES8], 0x0)
syz_usb_control_io$hid(r3, 0x0, 0x0)
syz_usb_control_io$hid(r3, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0xf, {[@main=@item_4={0x3, 0x0, 0xa, "23398b7d"}, @main=@item_4={0x3, 0x0, 0xa, "ea4c2119"}, @global=@item_4={0x3, 0x1, 0x2, "0100"}]}}, 0x0}, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r2, 0x7a4, &(0x7f0000000180)={{@any, 0xffffffff}, @hyper, 0x8, 0x0, 0xfffffffffffefffe, 0x0, 0x0, 0x80, 0xfffffffe})
rt_tgsigqueueinfo(r1, r1, 0x8, &(0x7f0000000140)={0x3d, 0x5, 0xfffffff9})
tkill(r1, 0x2e)
ptrace$peeksig(0x4209, r1, &(0x7f0000000580)={0x1, 0x0, 0x2}, &(0x7f00000016c0)=[{}, {}])

13.63409103s ago: executing program 3 (id=6898):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6, 0xff, 0x7, 0x7fc00002}]})
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
socket(0x10, 0x3, 0x0)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x4008010)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300))
io_uring_enter(0xffffffffffffffff, 0x48e9, 0x0, 0x2, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000500)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

13.5302219s ago: executing program 0 (id=6899):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='devices.list\x00', 0x26e1, 0x0)
close(r0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000072"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r1)
socket$kcm(0xa, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r2}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x20)
recvmsg(r0, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000002ec0)=[{&(0x7f0000000900)=""/223, 0xdf}], 0x1}, 0x102)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r3}, 0x10)
r4 = socket$kcm(0x10, 0x2, 0x0)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000001c0)={r2, &(0x7f0000000180)}, 0x20)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000011008108090f9becdb4cb92e264831373f00000069bd6efb2502eaf60d002700020400bf050005001201", 0x2e}], 0x1}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)

12.320312523s ago: executing program 3 (id=6901):
r0 = io_uring_setup(0x664c, &(0x7f0000000480)={0x0, 0xc305, 0x4000, 0x5})
r1 = semget$private(0x0, 0x6, 0x0)
semop(r1, &(0x7f00000000c0)=[{0x0, 0xc63e}], 0x1)
close_range(r0, 0xffffffffffffffff, 0x0)
r2 = getpid()
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x6}}}, 0x24}}, 0x4000084)
r4 = syz_pidfd_open(r2, 0x0)
setns(r4, 0x24020000)
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="120100002897b91066000088a40100"/36], 0x0)
stat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000300))
r5 = syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = syz_pidfd_open(r5, 0x0)
setns(r6, 0x24020000)
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x1231060, 0x0)

12.065321929s ago: executing program 0 (id=6902):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000001a300)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$vim2m(0x0, 0x7, 0x2)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000004740)={0x14, 0x35, 0x107, 0xfffffffe, 0x25dfdbfd, {0x3, 0x7c}}, 0x14}, 0x1, 0x0, 0x0, 0x4048091}, 0x8010)

10.942232301s ago: executing program 6 (id=6904):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r5 = socket$unix(0x1, 0x5, 0x0)
r6 = dup2(r5, r4)
close_range(r6, 0xffffffffffffffff, 0x0)

10.01331231s ago: executing program 8 (id=6905):
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000000c0)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0x36}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$VIDIOC_QUERYMENU(0xffffffffffffffff, 0xc02c5625, &(0x7f0000000180)={0xcd55, 0xc5eb, @name="9cb660555c8bcad706836a2e862c60542dd510cef2617c034188f228d69352ea"})
r3 = add_key$user(&(0x7f0000000000), &(0x7f00000001c0)={'syz', 0x0}, &(0x7f0000000540)="bc3009bb6668", 0x6, 0xfffffffffffffffe)
r4 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r3, r4, r3}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)

7.86239942s ago: executing program 3 (id=6906):
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x1, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}]}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@newlink={0x3c, 0x10, 0x403, 0x70bd25, 0x0, {0x0, 0x0, 0x0, 0x0, 0x500}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_MASTER={0x8, 0xa, r5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000804}, 0x8000)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x1, 0x803, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=@newlink={0x58, 0x10, 0x403, 0x300, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x18, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6, 0x1, 0xffe}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xe, 0x8}}]}}}, @IFLA_LINK={0x8, 0x5, r8}, @IFLA_MASTER={0x8, 0xa, r8}]}, 0x58}}, 0x8000)

7.739710551s ago: executing program 6 (id=6907):
syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f000001b700)=""/102392, 0x18ff8)
r1 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x0)
fchdir(r2)
open(&(0x7f0000000040)='./bus\x00', 0x143142, 0x80)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x1c1840, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000e80)='./bus\x00', 0x1c1002, 0x0)
write(r4, &(0x7f0000004200)='t', 0x1)
sendfile(r4, r3, 0x0, 0x40001)

7.653495863s ago: executing program 8 (id=6908):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setns(0xffffffffffffffff, 0x24020000)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
unshare(0x6020400)
r3 = fsopen(&(0x7f0000000140)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x0)
syz_clone3(&(0x7f0000000340)={0x200000000, 0x0, 0x0, 0x0, {0x3a}, 0x0, 0x0, 0x0, 0x0, 0x0, {r4}}, 0x58)

6.562297124s ago: executing program 8 (id=6909):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mkdir(0x0, 0x22)
rmdir(&(0x7f0000000080)='./cgroup/../file0\x00')
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000700)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a20000000000a01040000000000000000010000030900010073797a30000000002c000000030a01010000000000000000010000000900010073797a30000000000900030073797a3200000000a0000000060a010400000000000000000100000008000b400000000078000480340001800b000100657874686472000024000280080001400000000c080003400000000008000440000000220500020007000000400001800c0001006269747769736500300002800800034000000002080001400000001408000240000000120c0007800700010096fee10008000640000000440900010073797a30"], 0x114}}, 0x0)

6.313736066s ago: executing program 7 (id=6910):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="01000000040000000400000008"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='sched_switch\x00'}, 0x18)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000040)=ANY=[], 0x118)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'dummy0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=@bridge_newneigh={0x28, 0x1c, 0x1, 0x70bd28, 0x25dfdbfc, {0x7, 0x0, 0x0, r3, 0xe9e7490c5270708f, 0x12, 0x4}, [@NDA_LLADDR={0xa, 0x2, @multicast}]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x4040000)

5.443175442s ago: executing program 8 (id=6911):
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
syz_open_dev$vcsa(0x0, 0x8000, 0x200000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeeb, 0x8031, 0xffffffffffffffff, 0xc36e5000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ptrace$peekuser(0x3, r0, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x38, 0x38, 0x4, [@var={0x2, 0x0, 0x0, 0x11, 0x4, 0xffffffff}, @const={0x0, 0x0, 0x0, 0x2}, @func_proto={0x2, 0x0, 0x0, 0x8, 0x2}, @var={0x2, 0x0, 0x0, 0xe, 0x3}]}, {0x0, [0x0, 0x61]}}, 0x0, 0x54}, 0x20)

4.405878472s ago: executing program 8 (id=6912):
openat$fb0(0xffffffffffffff9c, 0x0, 0x60c40, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='net\x00')
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x80)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x12)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r2 = io_uring_setup(0x3450, &(0x7f0000000080)={0x0, 0x1539})
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mremap(&(0x7f00003eb000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000003000/0x1000)=nil)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r2, 0x10, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000002700)=""/4096, 0x2200}], 0x0, 0xa}, 0x20)

4.263357235s ago: executing program 3 (id=6913):
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000400)=0x7)
syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x200800, &(0x7f0000000080)=ANY=[@ANYBLOB='\"'], 0x1, 0x1536, &(0x7f00000004c0)="$eJzs3AucTtX6OPDnWWvtMSS9TXIZ1lrP5k1imSTJJUkuSZIkSW4JSZMcSUgMuSUNSch1SC5DSC4Tk8b9fr8kJEmTJCG5Jev/Ef7qVL/T+Z3zO86neb6fz/5Yz+z9rP28+9nv++69Md9ALPyMCP4leOGPJICfZ+wHANcAQAAApeNKx51fn11i0r+2E/bv9XDqla6AXUnc/6yN+5+1cf+zNu5/1sb9z9q4/1kb9z9r4/4zlpVtnJr/Wl6y7vJNx0HVGlSvXI/4+f9fVp0/XMPf/38hmSVGf7G6xPWdAGL+bAr3P2vj/v9lBX9mI+5/1sb9z6pir3QB7L8Av///kpr8Osz2hxty/7M27j9jWdmVfv58pReIZO1jcKXPP8YYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjWcMpf9Fp8AoALoVXui7GGGOMMcYYY4z9+/hsV7oCxhhjjDHGGGOM/d9DECBBQQAxkA1iITvkAAEAV0MuuAYicC3EwXWQG66HPJAX8kF+iIcCUBA0GLBAEEIhKAxRuAGKwI1QFG6CYlAcHJSABLgZSsItUApuhdJwG5SB26EslIPyUAHugIpwJ1SCu6Ay3A1VoCpUg+pwD9SAe6Em3Ae14H6oDQ9AHXgQ6sJDUA8ehvrwCDSAR6EhPAaNoDE0gabQ7H+V/yJ0hZegG3SHJOgBPeFl6AW9oQ/0hX7wCvSHV2EAvAbJMBAGweswGN6AIfAmDIVhMBzeghEwEkbBaBgDYyEFxsF4eBsmwDswESbBZJgCqTAVpsG7MB1mwEx4D2bB+zAb5sBcmAdp8AHMhwWQDh/CQvgIMmARLIYlsBSWwXJYASthFayGNbAW1sF62AAbYRNshi2wFbbBdvgYdsAnsBN2wW74FPbAZ/9k/sm/y++EgIACBSpUGIMxGIuxmANzYE7MibkwF0YwgnEYh7kxN+bBPJgP82E8xmNBLIgGDRISFsJCGMUoFsEiWBSLYjEshg4dJmAClsRbsBSWwtJYGstgGSyL5bAcVsAKWBErYiWshJWxMlbBKlgNq+E9eA/2wJpYE2thLayNtS89nsJ6WA/rY31sgA2wITbERtgIm2ATbIbNsDk2xxbYAlthK2yNrbENtsFETMS22BbbYTtsj+2xA3bAjtgRO2Fn7Jz5YjbAl/Al7I5VRA/siT2xFyZn64N9sS++gv3xVXwVX8NkHIiD8HV8Hd/AIXgCh+IwHI7DsaIYiaNwNJIYiymYguNxPE7ACTgRJ+EknIKpOBWn4TScjjNwBr6Hs/B9fB/n4Bych2mYhvNxAaZjOi7Ek5iBi3AxLsGluAyX4gpciStwNa7B1bgO1+EG3ICbcBNuwS24Dbfhx6gA8BPchbswGffgHtyLe3Ef7sP9uB8zMRMP4AE8iAfxEB7Cw3gYj+BRPIZH8TgexxN4Ek/hKTyDZ/AsPh//Vf2Pb1qVDOI8JZSIETEiVsSKHCKHyClyilwil4iIiIgTcSK3yC3yiDwin8gn4kW8KCgKCiOMIBHGAICIiqgoIoqIoqKoKCaKCSecSBAJoqQoKUqJUqK0uE2UEbeLsqKcaOkqiAqiomjlKom7RGVRWVQRVUU1UV1UFzVEDVFT1BS1RC1RW9QWdcSDoq7ogX3wYXG+Mw3EQGwoBmEj0VjIi59gzcUQbCFailbiSTEMh2Ib0dwlimdEWzEK24m/idH4nOggxmJH8YLoJDqLLuJF0VW0cN1EdzERe4ieYgr2Er1FH9FXTMeq4j2clb2aeE0ki4FikHhdzMM3xBDxphgqhonh4i0xQowUo8RoMUaMFSlinBgv3hYTxDtiopgkJospIlVMFdPEu2K6mCFmivfELPG+mC3miLlinkgTH4j5YoFIFx+KheIjkSEWicViiVgqlonlYoVYKVaJ1WKNWCvWifVig9goNonNYovYKraJ7eJjsUN8InaKXWK3+FTsEZ+JveJzsU98IfaLL0Wm+EocEF+Lg+IbcUh8Kw6L78QRcVQcE9+L4+IHcUKcFKfEaXFG/CjOip/EOeEFSJRCSqlkIGNkNhkrs8sc8iqZUwYXj+61Mk5eJ3PL62UemVfmk/llvCwgC0otjbSSZCgLycIyKm+QReSNsqi8SRaTxaWTJWSCvFmWlLfIUvJWWVreJsvI22VZWU6WlxXkHbKivFNC5MI+qsiqspqsLu+RSXCvrCnvk7Xk/bK2fEDWkQ/KuvIhWU8+LOvLR2QD+ahsKB+TjWRj2UQ2lc3k47K5fEK2kC1lK/mkbC2fkm3k0zJRPiPbSn/xFHlOdpDPy47yBdlJdpZd5E/ynPSym+wuoQfInvJl2Uv2ln1kX9lPviL7y1flAPmaTJYD5SD5uhws35BD5JtyqBwmh8u35Ag5Uo6So+UYOVamyHFyvHxbTpDvyIlykpwsp8hUOVX2uTjTTCn/Yf7bv5M/4Oe9b5Ab5Sa5WW6RW+U2uV1+LHfIHXKn3Cl3y91yj9wj98q9cp/cJ/fL/TJTZsoD8oA8KA/KQ/KQPCwPyyPyqDwtv5fH5Q/yhDwpT8rT8ow8I89ePAagUAkllVKBilHZVKzKrnKoq1ROdbXKpa5REXWtilPXqdzqepVH5VX5VH4Vrwqogkoro6wiFapCqrCKqhvw4gmjiqniyqkSKkHd/M/kqyLqRlVU3fSr/Ev1Jf1Bfc1UM9VcNVctVAvVSrVSrVVr1Ua1UYkqUbVVbVU71U61V+1VB9VBdVQdVSfVSXVRXVRX1VV1U91UkkpSPdXLqpfqrfqovqqfekX1V/3VADVAJatkNUgNUoPVYDVEDVFD1VA1XA1XI9QINUqNUmPUGJWiUtR4NV5NUBPURDVRTVaTVapKVdPUNDVdTVcz1Uw1S81Ss9VsNVfNVWkqTc1X81W6SlcL1UKVoRapRWqJWqKWqWVqhVqhVqlVao1ao9apdSpDbVQb1Wa1WW1VW9V2tV3tUDvUTrVT7Va71R61R+1Ve9U+tU/tV/tVpspUB9QBdVAdVIfUIXVYHVZH1BF1TB1Tx9VxdUKdUKfUKXVGnVFn1Vl1Tp07f9kXiEAEKlBBTBATxAaxQY4gR5AzyBnkCnIFkSASxAVxQe7g+iBPkDfIF+QP4oMCwV2gAxPYQFxsejS4ISgS3BgUDW4KigXFAxeUCBKCm4OSwS1BqeDWoHRwW1AmuD0oG5QLygcVgjuCisGdQaXgrqBycHdQJagaVAuqB/cENYJ7g5rBfUGt4P6gdvBAUCd4MKgbPBTUCx4O6gePBA2CR4OGwWNBo6Bx0CRoGjT7U/O3MH9ufu9P5H3CddPddZLuoXvql3Uv3Vv30X11P/2K7q9f1QP0azpZD9SD9Ot6sH5DD9Fv6qF6mB6u39Ij9Eg9So/WY/RYnaLH6fH6bT1Bv6Mn6kl6sp6iU/VUPU2/q6frGXqmfk/P0u/r2XqOnqvn6TT9gZ6vF+h0/aFeqD/SGXqRXqyX6KV6mV6uV+iVepVerdfotXqdXq836I16k96st+itepverj/WO/QneqfepXfrT/Ue/Zneqz/X+/QXOga+1Jn6K31Af60P6m/0If2tPqy/00f0UX1Mf6+P6x/0CX1Sn9Kn9Rn9oz6rf9LntD9/cX/+690oo0yMiTGxJtbkMDlMTpPT5DK5TMRETJyJM7lNbpPH5DH5TD4Tb+JNQVPQnEeGTCFTyERN1BQxRUxRU9QUM8WMM84kmART0pQ0pUwpU9qUNmVMGVPWlDXlTXlzh7nD3GnuNHeZu8zd5m5T1VQ11U11U8PUMDVNTVPL1DK1TW1Tx9QxdU1dU8/UM/VNfdPANDANTUPTyDQyTUwT08w0M81Nc9PCtDCtTCvT2rQ2bUwbk2gSTVvT1rQz7Ux70950MB1MR9PRdDKdTBfTxXQ1XU03080kmSTT0/Q0vUwv08f0Mf1MP9Pf9DcDzACTbJLNIDPIDDaDzRAzxAw1w8zw8xeqZqQZZUZ/O8aMNSkmxYw3480EM8FMNBPNZDPZpJpUM81MM9PNdDPTzDSzzCwz28w2c81ck2bSzHwz36SbdLPQLDQZJsMsNovNUrPULDfLzUqz0qw2q81aWGvWm/Vmo9loNpvNZqvZarab7WaH2WF2mp1mt9lt9pg9Zq/Za/aZfWa/2W8yTaY5YA6Yg+agOWQOmcPmsDlijphj5pg5bo6bE+aEOWVOmTMm78XvS29ibXabw15lc9qrbS57jf37OJ/Nb+NtAVvQapvH5v1VbKy1Re1Ntpgtbp0tYRPszb+Jy9pytrytYO+wFe2dttJv4hr2XlvT3mdr2fttdXvPr+La9gFbxz5q6yIC2Ma2vm1qG9hHbUP7mG1kG9smtqltbZ+ybezTNtE+Y9vaZ38Tz7cL7Eq7yq62a+xOu8uesqftQfuNPWN/tN1sd9vPvmL721ftAPuaTbYDfxMPt2/ZEXakHWVH2zF27G/iyXaKTbVT7TT7rp1uZ/wmTrMf2Fk23c62c+xcO+/n+HxN6fZDu9B+ZDNsAIvtErvULrPL7Yr/X+sSu86utxvsDvuJ3Wy32K12m91+6ULY7rK77ad2j/3MHrBf2332C7vfHrKZ9quf4/Ov75D91h6239kj9qg9Zr+3x+0P6ufckb0A7I/2e/uTPWe9BUICkqQooBjKRrGUnXLQVZSTrqZcdA1F6FqKo+soN11PeSgv5aP8FE8FqCBpMmSJKKRCVJiidANdKq8YFSdHJSiBbqaSdAuVolupNN1GZeh2KkvlqDxVoDuoIt1Jleguqkx3UxWqStWoOt1DNeheqkn3US26n2rTA1SHHqS69BDVo4epPj1CDehRakiPUSNqTE2oKTWjx6k5PUEtqCW1oiepNT1FbehpSqRnqC09S+3ob9SenqMO9Dx1pBeoE3WmLvQidaWXqBt1pyTqQT3pZepFvakP9aV+9Ar1p1dpAL1GyTSQBtHrNJjeoCH0Jg2lYTSc3qIRNJJG0WgaQ2MphcbReHqbJtA7NJEm0WSaQqk0labRu6QuHo9Z9D7Npjk0l+ZRGn1A82kBpdOHtJA+ogxaRItpCS2lZbScVtBKWkWraQ2tpXW0njbQRtpEm2kLbaVttJ0+ph30Ce2kXbSbPqU99Bntpc9pH31B++lLyqSv6AB9TQfpGzpE3/ru9B0doaN0jL6n4/QDnaCTdIpO0xn6kc7ST3SOPEGIoQhlqMIgjAmzhbFh9jBHeFWYM7w6zBVeE0bCa8O48Lowd3h9mCfMG+YL84fxYYGwYKhDE9qQwjAsFBYOo+ENYZHwxrBoiGGxsHjowhJhQnhzWDK8JSwV3hqWDm8Ly4S3h2XDcuGj91cI7wgrhneGlcK7wsrh3WGVsGpYLawe3hPWCO8Na4b3hbXC+8NS4QNhnfDBsG74UCjg4bB++EjYIHw0bBg+FjYKG4dNwqZhs/DxsHn4RNgibBm2Cp8MW4dPhW3Cp8PE8Jmwbfjsz+sfWPDH65PCHmHP8OXw5dD7++Tc6LxoWvSD6Pzogmh69MPowuhH0Yzoouji6JLo0uiy6PLoiujK6Kro6uia6Nrouuj66Iao99WzgUMnnHTKBS7GZXOxLrvL4a5yOd3VLpe7xkXctS7OXedyu+tdHpfX5XP5Xbwr4Ao67YyzjlzoCrnCLupucEXcja6ou8kVc8WdcyVcgmvqmrlmrrl7wrVwLV0r96R70j3lnnJPu6fdM66te9a1c39z7d1zroN73j3vXnCdXGfXxb3ourpxuS6cg0mup+vperlero/r4/q5fq6/6+8GuAEu2SW7QW6QG+wGuyFuiBvqhrrhbrgb4Ua4UW6UG+PGuBSX4sa78W6Cm+AmuoluspvsUl2qm+amueluuqs448JeZrvZbq6b69Jcmpvvzl8zpruFbqHLcBlusVvslrqlbrlb7la6lW61W+3WurVuvVvvNrqNbrPb7La6rW672+52uB1up7/mwqRuj9vr9rp9bp/b7750me4rd8B97Q66b9wh96077L5zR9xRd8x97467H9wJd9KdcqfdGfejO+t+cuecdymRcZHxkbcjEyLvRCZGJkUmR6ZEUiNTI9Mi70amR2ZEZkbei8yKvB+ZHZkTmRuZF0mLfBCZH1kQSY98GFkY+SiSEVkUWRxZElkaWRbxvsDm0BfyhX3U3+CL+Bt9UX+TL+aLe+dL+AR/sy/pb/Gl/K2+tL/Nl/G3+7K+nC/vH/ONfGPfxDf1zfzjvrl/wrfwLX0r/6Rv7Z/ybfzTPtE/49v6Z307/zff3j/nO/jnfUf/gu/kO/su/kXf1b/ku/nuPsn38D39y76X7+37+L6+n3/F9/ev+gH+NZ/sB/pB/nU/2L/hh/g3/VA/zA+PecuPuHSLDGN9ih/nx/u3/QT/jp/oJ/nJfopP9VP9NP+un+5n+Jn+PT/Lv+9n+zl+rp/n0/wHfr5f4NP9h36h/8hn+EWXHir75X6FX+lX+dV+jV/r1/n1foPf6Df5zX6L3+q3+e3+Y7/Df+J3+l1+t//U7/Gf+b3+c7/Pf+H3+y99pv/KH/Bf+4P+G3/If+sP++/8EX/UH/Pf++P+B3/Cn/Sn/Gl/xv/oz/qf/Dn+P2uMMcYYY3/KuMtD8es1Fx7n9/idHPGLjXsCwNVb8mf+cv35K8q1eS6Me4v41hEAeKZ7x4cvLVWqJCUlXdw2Q0JQeA7Apb8JOi8GLseLoBU8BYnQEkr+bv29Recz9A/mj94GkOMXObFwOb48/+cAmPQ78z/+5PD5ZcJTcf/D/HMAiha+nJMdLseLoNXPt/stodQf1J+3+S/rj/3t/Nm/SAFo8YucnHA5vlx/AjwBz0Lir7ZkjDHGGGOMMcYu6C3Kt790/3npX3z+3v15vLqckw0ux//o/pwxxhhjjDHGGGNX3nOduzz9eGJiy/b//KDS/yrrTw8awv/VzDz43YH3AJd+ogDgX5wQ4PxA/idfxab/yL6SL751/n7V0tM+gP+OVv47Blf4g4kxxhhjjDH2b3f5ov/XP1dXqiDGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYYywL+k/8OrEr/RoZY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4yxK+3/BQAA//+8LPw2")
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xc, 0xe, &(0x7f0000001700)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000001c0), 0xfffffedf, 0x10, &(0x7f0000000040), 0x0, 0x0, 0xffffffffffffffff, 0xd}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r3, 0x0, 0xe, 0x0, &(0x7f0000000140)="e0b954bc6762240c61c57ed374ad", 0x0, 0x20041ff, 0x2000, 0x0, 0x0, 0x0, 0x0}, 0x50)

4.261678032s ago: executing program 0 (id=6923):
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000200))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_OPENAT={0x12, 0x48, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000b40)='./file1\x00', 0x0, 0x100, 0x12345})
r1 = syz_io_uring_setup(0x81e, &(0x7f0000000480)={0x0, 0x40, 0x10, 0xfffffffe, 0x34f}, &(0x7f00000000c0)=<r2=>0x0, &(0x7f0000000080)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffff9, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000200)=[{0x9, 0x1, 0x0, 0x6}]}, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x50, 0x0, 0x0, 0x0, 0x1})
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x1a, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0)
io_uring_enter(r1, 0x47bc, 0x0, 0x21, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, 0x0)

3.060355088s ago: executing program 3 (id=6914):
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
syz_open_dev$evdev(0x0, 0x8c, 0x123a40)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)

2.180964674s ago: executing program 0 (id=6915):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x9)
getdents64(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = gettid()
timer_create(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000040)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)

1.033784397s ago: executing program 6 (id=6916):
gettid()
syz_mount_image$erofs(&(0x7f0000000000), &(0x7f0000000180)='./bus\x00', 0x1, &(0x7f0000000100)=ANY=[], 0xfd, 0x1f8, &(0x7f0000000380)="$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")
r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getdents64(r0, 0xfffffffffffffffe, 0x29)
r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x20, 0x0)
ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x6)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
r2 = signalfd(0xffffffffffffffff, &(0x7f00000002c0)={[0x7fffffff]}, 0x8)
r3 = gettid()
timer_create(0x0, &(0x7f0000000180)={0x0, 0x11, 0x4, @tid=r3}, &(0x7f0000000080))
read$FUSE(r2, &(0x7f00000008c0)={0x2020}, 0xfffffef0)
timer_settime(0x0, 0x0, &(0x7f0000000300)={{0x0, 0x1}, {0x0, 0xe4c}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
timer_delete(0x0)

737.647996ms ago: executing program 8 (id=6917):
socket$nl_generic(0x11, 0x3, 0x10)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
syz_open_dev$vim2m(&(0x7f00000000c0), 0x8aaf, 0x2)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r1 = syz_open_dev$usbfs(&(0x7f0000000080), 0x77, 0x101301)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r1, 0x84009422, 0x0)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0xfffffffffffffffe, 0x2000a000000, 0xfffffffffffffffd, 0x0, 0x10, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3fa, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xe, 0x80000006}, 0x0, 0x0)

681.133025ms ago: executing program 6 (id=6918):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000001000)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r4, &(0x7f0000000140)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1f}}, 0x10)
shutdown(r4, 0x1)

0s ago: executing program 7 (id=6919):
syz_open_dev$vbi(0x0, 0x3, 0x2)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$kcm(0x2, 0x200000000000001, 0x0)
setsockopt$sock_attach_bpf(r4, 0x1, 0x50, &(0x7f0000000100), 0x48)

kernel console output (not intermixed with test programs):

0) entered blocking state
[  663.037403][T18454] bridge0: port 1(bridge_slave_0) entered disabled state
[  663.045032][T18454] bridge_slave_0: entered allmulticast mode
[  663.053414][T18454] bridge_slave_0: entered promiscuous mode
[  663.063755][T18454] bridge0: port 2(bridge_slave_1) entered blocking state
[  663.072474][T18454] bridge0: port 2(bridge_slave_1) entered disabled state
[  663.080507][T18454] bridge_slave_1: entered allmulticast mode
[  663.094697][T18454] bridge_slave_1: entered promiscuous mode
[  663.114004][ T5944] usb 1-1: new high-speed USB device number 44 using dummy_hcd
[  663.187832][T18454] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  663.217534][T18454] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  663.226933][T18567] syz_tun: entered allmulticast mode
[  663.267428][T18454] team0: Port device team_slave_0 added
[  663.277752][T18567] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4437'.
[  663.280376][T18454] team0: Port device team_slave_1 added
[  663.287774][ T5944] usb 1-1: Using ep0 maxpacket: 32
[  663.310784][ T5944] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  663.326461][ T5944] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  663.344027][ T5944] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  663.354188][ T5944] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  663.403497][T18567] syz_tun (unregistering): left allmulticast mode
[  663.424136][T18454] batman_adv: batadv0: Adding interface: batadv_slave_0
[  663.431194][T18454] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  663.459040][T18454] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  663.472226][ T5944] usb 1-1: config 0 descriptor??
[  663.473459][T18454] batman_adv: batadv0: Adding interface: batadv_slave_1
[  663.487540][T18454] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  663.516949][T18454] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  663.518205][ T5944] hub 1-1:0.0: USB hub found
[  663.701305][T18454] hsr_slave_0: entered promiscuous mode
[  663.710426][T18454] hsr_slave_1: entered promiscuous mode
[  663.718359][T18454] debugfs: 'hsr0' already exists in 'hsr'
[  663.725199][T18454] Cannot create hsr debugfs directory
[  663.739635][ T5944] hub 1-1:0.0: 1 port detected
[  664.023690][T18571] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4439'.
[  664.147357][ T5944] usb 1-1: USB disconnect, device number 44
[  664.188126][T18572] macvlan4: entered promiscuous mode
[  664.206501][T18572] macvlan4: entered allmulticast mode
[  664.215667][T18572] bond3: entered promiscuous mode
[  664.234381][T18572] 8021q: adding VLAN 0 to HW filter on device macvlan4
[  664.262177][T18572] bond3: left promiscuous mode
[  664.454615][T18457] Bluetooth: hci2: command tx timeout
[  664.624058][   T30] kauditd_printk_skb: 18 callbacks suppressed
[  664.624084][   T30] audit: type=1326 audit(1760109016.752:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18584 comm="syz.5.4444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5078eec9 code=0x7ffc0000
[  664.721850][   T30] audit: type=1326 audit(1760109016.752:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18584 comm="syz.5.4444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5078eec9 code=0x7ffc0000
[  664.808900][   T30] audit: type=1326 audit(1760109016.782:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18584 comm="syz.5.4444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5078eec9 code=0x7ffc0000
[  664.862781][   T30] audit: type=1326 audit(1760109016.782:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18584 comm="syz.5.4444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fec5078eec9 code=0x7ffc0000
[  664.924207][   T30] audit: type=1326 audit(1760109016.782:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18584 comm="syz.5.4444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5078eec9 code=0x7ffc0000
[  664.952265][T18454] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  664.962911][   T30] audit: type=1326 audit(1760109016.782:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18584 comm="syz.5.4444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5078eec9 code=0x7ffc0000
[  664.985573][   T30] audit: type=1326 audit(1760109016.782:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18584 comm="syz.5.4444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5078eec9 code=0x7ffc0000
[  664.992565][T18454] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  665.008175][   T30] audit: type=1326 audit(1760109016.782:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18584 comm="syz.5.4444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5078eec9 code=0x7ffc0000
[  665.008230][   T30] audit: type=1326 audit(1760109016.782:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18584 comm="syz.5.4444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7fec5078eec9 code=0x7ffc0000
[  665.008277][   T30] audit: type=1326 audit(1760109016.782:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18584 comm="syz.5.4444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5078eec9 code=0x7ffc0000
[  665.088365][T18454] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  665.101995][T18454] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  665.370727][T18454] 8021q: adding VLAN 0 to HW filter on device bond0
[  665.433452][T18454] 8021q: adding VLAN 0 to HW filter on device team0
[  665.468685][ T7360] bridge0: port 1(bridge_slave_0) entered blocking state
[  665.476052][ T7360] bridge0: port 1(bridge_slave_0) entered forwarding state
[  665.520795][ T7360] bridge0: port 2(bridge_slave_1) entered blocking state
[  665.528145][ T7360] bridge0: port 2(bridge_slave_1) entered forwarding state
[  666.276258][T18454] 8021q: adding VLAN 0 to HW filter on device batadv0
[  667.112617][T18454] veth0_vlan: entered promiscuous mode
[  667.137943][T18454] veth1_vlan: entered promiscuous mode
[  667.234581][T18454] veth0_macvtap: entered promiscuous mode
[  667.241539][T18632] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4454'.
[  667.256439][T18454] veth1_macvtap: entered promiscuous mode
[  667.361226][T18454] batman_adv: batadv0: Interface activated: batadv_slave_0
[  667.395601][T18454] batman_adv: batadv0: Interface activated: batadv_slave_1
[  667.427028][   T37] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  667.453321][   T37] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  667.475353][   T37] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  667.494599][   T37] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  668.038228][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  668.075958][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  668.190569][   T37] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  668.220651][   T37] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  668.510755][T18642] netlink: 'syz.8.4390': attribute type 1 has an invalid length.
[  668.543537][T18644] netlink: 'syz.3.4458': attribute type 39 has an invalid length.
[  669.383891][T18657] netlink: 'syz.0.4463': attribute type 10 has an invalid length.
[  669.434714][T18657] 8021q: adding VLAN 0 to HW filter on device team0
[  669.444082][T18657] bond0: (slave team0): Enslaving as an active interface with an up link
[  670.998784][ T8968] usb 1-1: new full-speed USB device number 45 using dummy_hcd
[  671.123148][   T30] kauditd_printk_skb: 35 callbacks suppressed
[  671.123172][   T30] audit: type=1804 audit(1760109023.255:359): pid=18699 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.4480" name="/newroot/107/file0" dev="tmpfs" ino=602 res=1 errno=0
[  671.322800][T18710] binder: 18708:18710 ioctl c0306201 2000000001c0 returned -22
[  671.487405][T18712] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  671.512002][T18712] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  671.894034][T18709] cgroup: fork rejected by pids controller in /syz8
[  673.659969][ T8968] usb 1-1: unable to get BOS descriptor or descriptor too short
[  673.683959][ T8968] usb 1-1: unable to read config index 0 descriptor/start: -71
[  673.940052][ T8968] usb 1-1: can't read configurations, error -71
[  675.405695][T18796] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4505'.
[  675.500758][T18796] vxlan0: entered promiscuous mode
[  675.561808][   T12] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  675.583002][   T12] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  675.626608][   T12] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  675.673752][   T12] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  676.426860][T18813] loop8: detected capacity change from 0 to 4096
[  676.723558][T18828] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  677.685968][ T5897] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  677.835474][ T5897] usb 9-1: Using ep0 maxpacket: 32
[  677.848199][ T5897] usb 9-1: config 4 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  677.872261][ T5897] usb 9-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  677.882293][ T5897] usb 9-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  677.900005][ T5897] usb 9-1: Product: syz
[  677.913649][ T5897] usb 9-1: Manufacturer: syz
[  677.920060][T18861] netlink: 'syz.7.4525': attribute type 1 has an invalid length.
[  677.936770][ T5897] hub 9-1:4.0: bad descriptor, ignoring hub
[  677.942988][ T5897] hub 9-1:4.0: probe with driver hub failed with error -5
[  677.954327][ T5897] usbhid 9-1:4.0: couldn't find an input interrupt endpoint
[  678.004976][T18861] 8021q: adding VLAN 0 to HW filter on device bond2
[  678.076188][T18863] ip6erspan0: entered promiscuous mode
[  678.094350][T18863] bond2: (slave ip6erspan0): making interface the new active one
[  678.107928][T18863] bond2: (slave ip6erspan0): Enslaving as an active interface with an up link
[  678.257666][   T44] usb 9-1: USB disconnect, device number 2
[  681.719214][T18925] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  683.890614][T18939] cgroup: fork rejected by pids controller in /syz0
[  687.007664][T19568] netlink: 20 bytes leftover after parsing attributes in process `syz.7.4577'.
[  687.364619][T19576] syz_tun: entered allmulticast mode
[  687.378006][T19578] pimreg: entered allmulticast mode
[  687.464584][T19571] syz_tun: left allmulticast mode
[  687.614683][T19583] netlink: 'syz.5.4581': attribute type 10 has an invalid length.
[  687.696731][T19583] 8021q: adding VLAN 0 to HW filter on device bond0
[  687.727468][T19583] team0: Failed to send port change of device bond0 via netlink (err -105)
[  687.763573][T19583] team0: Failed to send options change via netlink (err -105)
[  687.771337][T19583] team0: Port device bond0 added
[  688.685945][T19595] loop8: detected capacity change from 0 to 32768
[  688.731069][T19595] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.4587 (19595)
[  688.790369][T19595] BTRFS info (device loop8): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  688.807298][T19608] cgroup: fork rejected by pids controller in /syz5
[  688.827487][T19595] BTRFS info (device loop8): using crc32c (crc32c-lib) checksum algorithm
[  688.831573][T19645] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4594'.
[  689.260224][T19595] BTRFS info (device loop8): setting nodatasum
[  689.299570][T19595] BTRFS info (device loop8): setting nodatacow
[  689.308928][T19595] BTRFS info (device loop8): enabling free space tree
[  689.317740][T19595] BTRFS info (device loop8): enabling auto defrag
[  689.324929][T19595] BTRFS info (device loop8): max_inline set to 0
[  689.977034][T18454] BTRFS info (device loop8): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  690.841690][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  690.851067][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  692.284105][T20117] loop8: detected capacity change from 0 to 32768
[  693.524143][T20153] netlink: 28 bytes leftover after parsing attributes in process `syz.7.4615'.
[  695.204347][T20170] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4620'.
[  696.037847][   T30] audit: type=1326 audit(1760109048.187:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20192 comm="syz.5.4628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5078eec9 code=0x7ffc0000
[  696.127197][T20194] delete_channel: no stack
[  696.183238][   T30] audit: type=1326 audit(1760109048.187:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20192 comm="syz.5.4628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5078eec9 code=0x7ffc0000
[  696.446137][   T30] audit: type=1326 audit(1760109048.207:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20192 comm="syz.5.4628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fec5078eec9 code=0x7ffc0000
[  696.582174][   T30] audit: type=1326 audit(1760109048.207:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20192 comm="syz.5.4628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5078eec9 code=0x7ffc0000
[  696.659164][T20201] 9pnet_fd: Insufficient options for proto=fd
[  696.695893][   T30] audit: type=1326 audit(1760109048.207:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20192 comm="syz.5.4628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5078eec9 code=0x7ffc0000
[  696.767860][T20205] loop5: detected capacity change from 0 to 2048
[  696.779335][   T30] audit: type=1326 audit(1760109048.207:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20192 comm="syz.5.4628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fec5078eec9 code=0x7ffc0000
[  696.852335][T20205] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  696.897968][   T30] audit: type=1326 audit(1760109048.207:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20192 comm="syz.5.4628" exe="/root/syz-executor" sig=0 arch=40000003 syscall=246 compat=1 ip=0x200000000006 code=0x7ffc0000
[  696.946138][   T30] audit: type=1326 audit(1760109048.207:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20192 comm="syz.5.4628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5078eec9 code=0x7ffc0000
[  696.980016][   T30] audit: type=1326 audit(1760109048.207:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20192 comm="syz.5.4628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5078eec9 code=0x7ffc0000
[  697.433480][T20226] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4643'.
[  698.664038][T20257] lo speed is unknown, defaulting to 1000
[  698.920854][T20264] loop8: detected capacity change from 0 to 1024
[  701.058726][T20295] loop8: detected capacity change from 0 to 128
[  701.081703][T20296] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4666'.
[  701.169731][T20294] syz_tun: entered allmulticast mode
[  701.448660][T20295] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  701.510980][T20295] ext4 filesystem being mounted at /39/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  701.799765][T20295] fscrypt: loop8: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12
[  702.164684][T18454] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  703.152827][T18457] Bluetooth: hci3: command 0x0406 tx timeout
[  705.603035][T20350] loop8: detected capacity change from 0 to 32768
[  705.611321][T20350] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.4686 (20350)
[  705.619637][T20369] netlink: 'syz.3.4691': attribute type 10 has an invalid length.
[  705.645452][T20350] BTRFS info (device loop8): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  705.664112][T20350] BTRFS info (device loop8): using sha256 (sha256-lib) checksum algorithm
[  705.858473][T20350] BTRFS info (device loop8): rebuilding free space tree
[  705.905065][T20350] BTRFS info (device loop8): disabling free space tree
[  705.951280][T20350] BTRFS info (device loop8): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  705.971216][T20350] BTRFS info (device loop8): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  706.065754][T20350] BTRFS info (device loop8): enabling ssd optimizations
[  706.103841][T20350] BTRFS info (device loop8): force clearing of disk cache
[  706.121660][T20350] BTRFS info (device loop8): enabling auto defrag
[  706.142926][T20350] BTRFS info (device loop8): max_inline set to 4096
[  706.150668][T20388] lo speed is unknown, defaulting to 1000
[  707.202456][T20350] BTRFS info (device loop8): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  708.333571][T20427] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4707'.
[  708.630803][T20427] veth3: entered promiscuous mode
[  708.636328][T20427] bridge2: port 1(veth3) entered blocking state
[  708.680098][T20427] bridge2: port 1(veth3) entered disabled state
[  708.695118][T20427] veth3: entered allmulticast mode
[  709.063282][T20445] tipc: Started in network mode
[  709.123656][T20445] tipc: Node identity 1280f0a4bfc6, cluster identity 4711
[  709.156973][T20445] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  709.394374][T20461] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4718'.
[  710.184198][T20469] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  710.286996][ T8968] tipc: Node number set to 2907107492
[  712.645823][T20498] loop7: detected capacity change from 0 to 16384
[  712.709070][T20500] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 31 prio class 2
[  712.823987][    C1] I/O error, dev loop7, sector 16 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 2
[  712.824245][T20498] loop7: detected capacity change from 16384 to 0
[  712.986710][T20509] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4736'.
[  713.676879][   T30] audit: type=1804 audit(1760109065.826:369): pid=20535 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.4747" name="file0" dev="tmpfs" ino=4656 res=1 errno=0
[  714.047459][T20550] No control pipe specified
[  714.500235][T20539] loop8: detected capacity change from 0 to 32768
[  714.527878][T20539] btrfs: Deprecated parameter 'usebackuproot'
[  714.537060][T20539] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  714.586106][T20539] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.4749 (20539)
[  714.644044][T20539] BTRFS info (device loop8): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  714.704148][T20539] BTRFS info (device loop8): using crc32c (crc32c-lib) checksum algorithm
[  714.777513][T20539] BTRFS warning (device loop8): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  714.912002][T20573] team0: Port device team_slave_0 removed
[  715.405520][T20539] BTRFS info (device loop8): rebuilding free space tree
[  715.462638][T20539] BTRFS info (device loop8): disabling free space tree
[  715.486485][T20539] BTRFS info (device loop8): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  715.496692][T20539] BTRFS info (device loop8): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  715.520942][T20539] BTRFS info (device loop8): enabling ssd optimizations
[  715.554364][T20539] BTRFS info (device loop8): turning on flush-on-commit
[  715.586463][T20539] BTRFS info (device loop8): enabling disk space caching
[  715.593600][T20539] BTRFS info (device loop8): force clearing of disk cache
[  715.621411][T20539] BTRFS info (device loop8): trying to use backup root at mount time
[  715.646540][T20539] BTRFS info (device loop8): force zlib compression, level 3
[  715.807296][T20591] batadv3: entered promiscuous mode
[  715.872575][T18454] BTRFS info (device loop8): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  716.464248][T20602] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4770'.
[  716.938379][T20614] loop5: detected capacity change from 0 to 8
[  716.970946][T20614] SQUASHFS error: zlib decompression failed, data probably corrupt
[  717.005629][T20614] SQUASHFS error: Failed to read block 0x9b: -5
[  717.023080][T20614] SQUASHFS error: Unable to read metadata cache entry [99]
[  717.055620][T20614] SQUASHFS error: Unable to read inode 0x127
[  717.192649][T20621] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4777'.
[  717.856831][   T30] audit: type=1326 audit(1760109070.018:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20638 comm="syz.8.4784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ccf18eec9 code=0x7ffc0000
[  717.975112][   T30] audit: type=1326 audit(1760109070.018:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20638 comm="syz.8.4784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ccf18eec9 code=0x7ffc0000
[  718.104030][   T30] audit: type=1326 audit(1760109070.018:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20638 comm="syz.8.4784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f3ccf18eec9 code=0x7ffc0000
[  718.206186][   T30] audit: type=1326 audit(1760109070.018:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20638 comm="syz.8.4784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ccf18eec9 code=0x7ffc0000
[  718.590978][   T30] audit: type=1326 audit(1760109070.018:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20638 comm="syz.8.4784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ccf18eec9 code=0x7ffc0000
[  718.946028][   T30] audit: type=1326 audit(1760109070.018:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20638 comm="syz.8.4784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3ccf18eec9 code=0x7ffc0000
[  719.022522][   T30] audit: type=1326 audit(1760109070.018:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20638 comm="syz.8.4784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ccf18eec9 code=0x7ffc0000
[  719.108251][   T30] audit: type=1326 audit(1760109070.018:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20638 comm="syz.8.4784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f3ccf18eec9 code=0x7ffc0000
[  719.184594][   T30] audit: type=1326 audit(1760109070.018:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20638 comm="syz.8.4784" exe="/root/syz-executor" sig=0 arch=40000003 syscall=2 compat=1 ip=0x200000000006 code=0x7ffc0000
[  719.208821][   T30] audit: type=1326 audit(1760109070.088:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20638 comm="syz.8.4784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ccf18eec9 code=0x7ffc0000
[  719.301783][T20655] netlink: 96 bytes leftover after parsing attributes in process `syz.3.4789'.
[  719.363927][   T30] audit: type=1326 audit(1760109070.088:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20638 comm="syz.8.4784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ccf18eec9 code=0x7ffc0000
[  719.495035][   T30] audit: type=1326 audit(1760109070.098:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20640 comm="syz.8.4784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ccf18eec9 code=0x7ffc0000
[  719.563668][   T30] audit: type=1326 audit(1760109070.098:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20640 comm="syz.8.4784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ccf18eec9 code=0x7ffc0000
[  719.792748][T20674] netlink: 'syz.7.4795': attribute type 4 has an invalid length.
[  719.810055][T20674] netlink: 'syz.7.4795': attribute type 4 has an invalid length.
[  722.261023][    T9] libceph: connect (1)[c::]:6789 error -101
[  722.273180][    T9] libceph: mon0 (1)[c::]:6789 connect error
[  722.358401][T20733] ceph: No mds server is up or the cluster is laggy
[  722.437387][T20742] kernel profiling enabled (shift: 8)
[  722.671493][T20747] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4820'.
[  723.423350][T20437] kernel write not supported for file /228/attr/prev (pid: 20437 comm: kworker/1:0)
[  723.627855][T20783] overlayfs: failed to clone upperpath
[  724.256283][T20799] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  726.301349][T20839] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  727.541832][T20854] netlink: 96 bytes leftover after parsing attributes in process `syz.7.4862'.
[  727.888094][T20861] loop8: detected capacity change from 0 to 8
[  727.918392][T20861] SQUASHFS error: Failed to read block 0x6de: -5
[  727.940488][T20861] SQUASHFS error: Unable to read metadata cache entry [6dc]
[  727.960756][T20861] SQUASHFS error: Failed to read block 0x63a: -5
[  727.971227][T20861] SQUASHFS error: Unable to read metadata cache entry [638]
[  727.978736][T20861] SQUASHFS error: Unable to read directory block [26067d:ffff]
[  728.233090][T20872] fuse: Bad value for 'fd'
[  728.431271][T20876] sctp: [Deprecated]: syz.0.4871 (pid 20876) Use of int in max_burst socket option.
[  728.431271][T20876] Use struct sctp_assoc_value instead
[  728.808798][T20893] overlayfs: failed to clone upperpath
[  728.934722][T20895] kvm: pic: non byte write
[  732.981912][T20972] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  733.324022][T20981] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4911'.
[  733.762828][T20989] netlink: 48 bytes leftover after parsing attributes in process `syz.8.4914'.
[  736.158879][   T30] audit: type=1326 audit(1760109088.317:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21041 comm="syz.0.4932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  736.222126][   T30] audit: type=1326 audit(1760109088.317:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21041 comm="syz.0.4932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  736.276021][   T30] audit: type=1326 audit(1760109088.357:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21041 comm="syz.0.4932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  736.345970][   T30] audit: type=1326 audit(1760109088.357:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21041 comm="syz.0.4932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  736.394927][   T30] audit: type=1326 audit(1760109088.357:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21041 comm="syz.0.4932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  736.532238][   T30] audit: type=1326 audit(1760109088.367:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21041 comm="syz.0.4932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  736.635880][   T30] audit: type=1326 audit(1760109088.367:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21041 comm="syz.0.4932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  736.730830][   T30] audit: type=1326 audit(1760109088.367:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21041 comm="syz.0.4932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  736.873982][   T30] audit: type=1326 audit(1760109088.367:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21041 comm="syz.0.4932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=48 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  736.934324][   T30] audit: type=1326 audit(1760109088.367:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21041 comm="syz.0.4932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  737.352142][T21044] loop5: detected capacity change from 0 to 32768
[  737.374025][T21044] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.4933 (21044)
[  737.476932][ T8968] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  737.568101][T21044] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  737.649393][T21044] BTRFS info (device loop5): using crc32c (crc32c-lib) checksum algorithm
[  737.729218][ T8968] usb 9-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  737.765438][ T8968] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  737.784405][ T8968] usb 9-1: Product: syz
[  737.803963][ T8968] usb 9-1: Manufacturer: syz
[  737.811699][ T8968] usb 9-1: SerialNumber: syz
[  737.969817][T21044] BTRFS info (device loop5): enabling ssd optimizations
[  738.065206][T21044] BTRFS info (device loop5): turning off barriers
[  738.072086][T21044] BTRFS info (device loop5): disabling tree log
[  738.078833][T21044] BTRFS info (device loop5): enabling free space tree
[  738.142277][T21044] BTRFS info (device loop5): max_inline set to 4096
[  738.746083][T16793] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  739.053034][T21099] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4946'.
[  739.836078][ T8968] lan78xx 9-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000040. ret = -EPROTO
[  739.989799][ T8968] lan78xx 9-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00001000. ret = -EPROTO
[  740.027757][ T8968] lan78xx 9-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x0000011c. ret = -EPROTO
[  740.145530][ T8968] lan78xx 9-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[  740.276333][ T8968] lan78xx 9-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  740.390648][ T8968] lan78xx 9-1:1.0: probe with driver lan78xx failed with error -71
[  740.451286][ T8968] usb 9-1: USB disconnect, device number 3
[  741.121047][T21137] overlayfs: failed to clone upperpath
[  742.465121][T21141] loop8: detected capacity change from 0 to 40427
[  742.504483][T21141] F2FS-fs (loop8): build fault injection type: 0x7
[  742.558241][T21141] F2FS-fs (loop8): invalid crc value
[  742.740003][T21141] F2FS-fs (loop8): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  742.821935][T21141] F2FS-fs (loop8): Start checkpoint disabled!
[  742.853318][T21141] F2FS-fs (loop8): f2fs_disable_checkpoint() finish, err:0
[  742.895994][T21141] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e6
[  743.277594][T21166] syz.8.4960: attempt to access beyond end of device
[  743.277594][T21166] loop8: rw=2049, sector=45096, nr_sectors = 128 limit=40427
[  743.341265][T21141] F2FS-fs (loop8): ino:10, start:1, end:8193, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[  743.358885][T21166] syz.8.4960: attempt to access beyond end of device
[  743.358885][T21166] loop8: rw=2049, sector=45224, nr_sectors = 128 limit=40427
[  743.425906][T21166] syz.8.4960: attempt to access beyond end of device
[  743.425906][T21166] loop8: rw=2049, sector=45352, nr_sectors = 128 limit=40427
[  743.486791][T21166] syz.8.4960: attempt to access beyond end of device
[  743.486791][T21166] loop8: rw=2049, sector=45480, nr_sectors = 128 limit=40427
[  743.570527][T21166] syz.8.4960: attempt to access beyond end of device
[  743.570527][T21166] loop8: rw=2049, sector=45608, nr_sectors = 128 limit=40427
[  743.780314][T21171] netdevsim netdevsim7 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  743.807302][   T36] kworker/u8:2: attempt to access beyond end of device
[  743.807302][   T36] loop8: rw=2049, sector=45736, nr_sectors = 16 limit=40427
[  743.892184][   T36] CPU: 1 UID: 0 PID: 36 Comm: kworker/u8:2 Not tainted syzkaller #0 PREEMPT(full) 
[  743.892207][   T36] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  743.892219][   T36] Workqueue: writeback wb_workfn (flush-7:8)
[  743.892252][   T36] Call Trace:
[  743.892259][   T36]  <TASK>
[  743.892268][   T36]  dump_stack_lvl+0x189/0x250
[  743.892290][   T36]  ? __pfx_dump_stack_lvl+0x10/0x10
[  743.892307][   T36]  ? __pfx_queue_work_on+0x10/0x10
[  743.892329][   T36]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  743.892348][   T36]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  743.892375][   T36]  f2fs_handle_critical_error+0x37c/0x540
[  743.892399][   T36]  f2fs_write_end_io+0x886/0xb60
[  743.892435][   T36]  __submit_merged_bio+0x27a/0x6a0
[  743.892458][   T36]  __submit_merged_write_cond+0x255/0x530
[  743.892481][   T36]  f2fs_write_data_pages+0x261d/0x3000
[  743.892531][   T36]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  743.892627][   T36]  ? f2fs_write_meta_pages+0x357/0x450
[  743.892654][   T36]  ? __lock_acquire+0xab9/0xd20
[  743.892679][   T36]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  743.892699][   T36]  do_writepages+0x32e/0x550
[  743.892729][   T36]  ? reacquire_held_locks+0x127/0x1d0
[  743.892751][   T36]  ? writeback_sb_inodes+0x384/0x1010
[  743.892775][   T36]  __writeback_single_inode+0x145/0xff0
[  743.892792][   T36]  ? do_raw_spin_unlock+0x122/0x240
[  743.892812][   T36]  writeback_sb_inodes+0x6c7/0x1010
[  743.892871][   T36]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  743.892950][   T36]  ? rcu_is_watching+0x15/0xb0
[  743.892997][   T36]  wb_writeback+0x43b/0xaf0
[  743.893022][   T36]  ? queue_io+0x321/0x590
[  743.893041][   T36]  ? __pfx_wb_writeback+0x10/0x10
[  743.893066][   T36]  ? _raw_spin_unlock_irq+0x23/0x50
[  743.893087][   T36]  wb_workfn+0x409/0xef0
[  743.893123][   T36]  ? __pfx_wb_workfn+0x10/0x10
[  743.893151][   T36]  ? __lock_acquire+0xab9/0xd20
[  743.893181][   T36]  ? process_scheduled_works+0x9ef/0x17b0
[  743.893209][   T36]  ? _raw_spin_unlock_irq+0x23/0x50
[  743.893225][   T36]  ? process_scheduled_works+0x9ef/0x17b0
[  743.893245][   T36]  ? process_scheduled_works+0x9ef/0x17b0
[  743.893269][   T36]  process_scheduled_works+0xae1/0x17b0
[  743.893317][   T36]  ? __pfx_process_scheduled_works+0x10/0x10
[  743.893355][   T36]  worker_thread+0x8a0/0xda0
[  743.893420][   T36]  kthread+0x711/0x8a0
[  743.893440][   T36]  ? __pfx_worker_thread+0x10/0x10
[  743.893461][   T36]  ? __pfx_kthread+0x10/0x10
[  743.893479][   T36]  ? _raw_spin_unlock_irq+0x23/0x50
[  743.893495][   T36]  ? lockdep_hardirqs_on+0x9c/0x150
[  743.893510][   T36]  ? __pfx_kthread+0x10/0x10
[  743.893528][   T36]  ret_from_fork+0x4bc/0x870
[  743.893551][   T36]  ? __pfx_ret_from_fork+0x10/0x10
[  743.893579][   T36]  ? __switch_to_asm+0x39/0x70
[  743.893596][   T36]  ? __switch_to_asm+0x33/0x70
[  743.893612][   T36]  ? __pfx_kthread+0x10/0x10
[  743.893629][   T36]  ret_from_fork_asm+0x1a/0x30
[  743.893663][   T36]  </TASK>
[  743.897550][   T36] F2FS-fs (loop8): Stopped filesystem due to reason: 3
[  743.991390][T21178] netlink: 'syz.5.4967': attribute type 2 has an invalid length.
[  744.211343][   T36] CPU: 1 UID: 0 PID: 36 Comm: kworker/u8:2 Not tainted syzkaller #0 PREEMPT(full) 
[  744.211387][   T36] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  744.211402][   T36] Workqueue: writeback wb_workfn (flush-7:8)
[  744.211441][   T36] Call Trace:
[  744.211450][   T36]  <TASK>
[  744.211457][   T36]  dump_stack_lvl+0x189/0x250
[  744.211480][   T36]  ? __pfx_dump_stack_lvl+0x10/0x10
[  744.211497][   T36]  ? __pfx_queue_work_on+0x10/0x10
[  744.211519][   T36]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  744.211536][   T36]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  744.211563][   T36]  f2fs_handle_critical_error+0x37c/0x540
[  744.211587][   T36]  f2fs_write_end_io+0x886/0xb60
[  744.211623][   T36]  __submit_merged_bio+0x27a/0x6a0
[  744.211646][   T36]  __submit_merged_write_cond+0x255/0x530
[  744.211668][   T36]  f2fs_write_data_pages+0x261d/0x3000
[  744.211718][   T36]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  744.211823][   T36]  ? f2fs_write_meta_pages+0x357/0x450
[  744.211864][   T36]  ? __lock_acquire+0xab9/0xd20
[  744.211907][   T36]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  744.211961][   T36]  do_writepages+0x32e/0x550
[  744.212001][   T36]  ? reacquire_held_locks+0x127/0x1d0
[  744.212031][   T36]  ? writeback_sb_inodes+0x384/0x1010
[  744.212066][   T36]  __writeback_single_inode+0x145/0xff0
[  744.212089][   T36]  ? do_raw_spin_unlock+0x122/0x240
[  744.212119][   T36]  writeback_sb_inodes+0x6c7/0x1010
[  744.212165][   T36]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  744.212222][   T36]  ? rcu_is_watching+0x15/0xb0
[  744.212255][   T36]  wb_writeback+0x43b/0xaf0
[  744.212279][   T36]  ? queue_io+0x321/0x590
[  744.212298][   T36]  ? __pfx_wb_writeback+0x10/0x10
[  744.212322][   T36]  ? _raw_spin_unlock_irq+0x23/0x50
[  744.212344][   T36]  wb_workfn+0x409/0xef0
[  744.212380][   T36]  ? __pfx_wb_workfn+0x10/0x10
[  744.212408][   T36]  ? __lock_acquire+0xab9/0xd20
[  744.212437][   T36]  ? process_scheduled_works+0x9ef/0x17b0
[  744.212465][   T36]  ? _raw_spin_unlock_irq+0x23/0x50
[  744.212479][   T36]  ? process_scheduled_works+0x9ef/0x17b0
[  744.212499][   T36]  ? process_scheduled_works+0x9ef/0x17b0
[  744.212522][   T36]  process_scheduled_works+0xae1/0x17b0
[  744.212571][   T36]  ? __pfx_process_scheduled_works+0x10/0x10
[  744.212611][   T36]  worker_thread+0x8a0/0xda0
[  744.212657][   T36]  kthread+0x711/0x8a0
[  744.212677][   T36]  ? __pfx_worker_thread+0x10/0x10
[  744.212698][   T36]  ? __pfx_kthread+0x10/0x10
[  744.212716][   T36]  ? _raw_spin_unlock_irq+0x23/0x50
[  744.212732][   T36]  ? lockdep_hardirqs_on+0x9c/0x150
[  744.212748][   T36]  ? __pfx_kthread+0x10/0x10
[  744.212765][   T36]  ret_from_fork+0x4bc/0x870
[  744.212789][   T36]  ? __pfx_ret_from_fork+0x10/0x10
[  744.212817][   T36]  ? __switch_to_asm+0x39/0x70
[  744.212833][   T36]  ? __switch_to_asm+0x33/0x70
[  744.212849][   T36]  ? __pfx_kthread+0x10/0x10
[  744.212866][   T36]  ret_from_fork_asm+0x1a/0x30
[  744.212901][   T36]  </TASK>
[  744.528549][   T36] F2FS-fs (loop8): Stopped filesystem due to reason: 3
[  744.749076][T21171] netdevsim netdevsim7 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  744.761046][T21186] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4972'.
[  744.925663][T21171] netdevsim netdevsim7 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  745.099027][T21171] netdevsim netdevsim7 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  745.480396][   T36] netdevsim netdevsim7 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  745.560883][   T36] netdevsim netdevsim7 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  745.655521][   T13] netdevsim netdevsim7 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  745.720104][   T36] netdevsim netdevsim7 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  746.033077][T21211] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4983'.
[  746.099991][T21211] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4983'.
[  747.586395][T21243] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4992'.
[  747.730381][T21245] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4992'.
[  749.113511][T21275] sctp: [Deprecated]: syz.3.5007 (pid 21275) Use of struct sctp_assoc_value in delayed_ack socket option.
[  749.113511][T21275] Use struct sctp_sack_info instead
[  749.130461][T21272] kvm: pic: non byte write
[  752.244365][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  752.250851][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  753.307615][T21333] lo speed is unknown, defaulting to 1000
[  753.438571][T21339] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  754.454999][T21353] loop8: detected capacity change from 0 to 2048
[  754.518683][T21353] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  754.709136][T21359] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  754.745558][T21359] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 516 with error 28
[  754.769539][T21359] EXT4-fs (loop8): This should not happen!! Data will be lost
[  754.769539][T21359] 
[  754.779922][T21359] EXT4-fs (loop8): Total free blocks count 0
[  754.786154][T21359] EXT4-fs (loop8): Free/Dirty block details
[  754.792417][T21359] EXT4-fs (loop8): free_blocks=2415919104
[  754.814505][T21359] EXT4-fs (loop8): dirty_blocks=528
[  754.825545][T21359] EXT4-fs (loop8): Block reservation details
[  754.838351][T21359] EXT4-fs (loop8): i_reserved_data_blocks=33
[  754.856690][T21365] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5040'.
[  755.073303][  T993] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 24 with max blocks 2 with error 28
[  755.172811][T21372] ref_ctr_offset mismatch. inode: 0x26e offset: 0x0 ref_ctr_offset(old): 0x200000000000 ref_ctr_offset(new): 0x0
[  755.390731][T18457] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  755.404536][T18457] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  755.414670][T18457] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  755.423532][T18457] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  755.432842][T18457] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  755.554063][T21375] lo speed is unknown, defaulting to 1000
[  756.022676][T21388] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5047'.
[  756.053829][T21388] netlink: 'syz.0.5047': attribute type 10 has an invalid length.
[  756.090462][T21375] chnl_net:caif_netlink_parms(): no params data found
[  756.123135][T21388] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  756.746492][T21375] bridge0: port 1(bridge_slave_0) entered blocking state
[  756.779440][T21375] bridge0: port 1(bridge_slave_0) entered disabled state
[  756.801511][T21375] bridge_slave_0: entered allmulticast mode
[  756.810907][T21375] bridge_slave_0: entered promiscuous mode
[  756.820389][T21375] bridge0: port 2(bridge_slave_1) entered blocking state
[  756.827797][T21375] bridge0: port 2(bridge_slave_1) entered disabled state
[  756.835519][T21375] bridge_slave_1: entered allmulticast mode
[  756.844801][T21375] bridge_slave_1: entered promiscuous mode
[  757.009579][T21375] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  757.069069][T21375] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  757.147036][T21375] team0: Port device team_slave_0 added
[  757.177870][T21375] team0: Port device team_slave_1 added
[  757.528581][T18457] Bluetooth: hci3: command tx timeout
[  757.568258][T21412] team0: Port device team_slave_0 removed
[  758.106059][T21375] batman_adv: batadv0: Adding interface: batadv_slave_0
[  758.137234][T21375] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  758.225060][T21375] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  758.287342][T21375] batman_adv: batadv0: Adding interface: batadv_slave_1
[  758.311091][T21375] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  758.349091][T21375] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  758.551198][T21375] hsr_slave_0: entered promiscuous mode
[  758.611638][T21375] hsr_slave_1: entered promiscuous mode
[  758.663338][T21375] debugfs: 'hsr0' already exists in 'hsr'
[  758.692847][T21375] Cannot create hsr debugfs directory
[  759.214723][ T8983] libceph: connect (1)[c::]:6789 error -101
[  759.229665][ T8983] libceph: mon0 (1)[c::]:6789 connect error
[  759.339313][T21436] ceph: No mds server is up or the cluster is laggy
[  759.599867][T18457] Bluetooth: hci3: command tx timeout
[  760.994431][T21375] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  761.087095][T21375] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  761.150891][T21375] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  761.207128][T21375] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  761.640892][T21375] 8021q: adding VLAN 0 to HW filter on device bond0
[  761.673372][T18457] Bluetooth: hci3: command tx timeout
[  761.741296][T21375] 8021q: adding VLAN 0 to HW filter on device team0
[  761.809825][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  761.817158][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  761.857028][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  761.864376][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  763.306062][T21375] 8021q: adding VLAN 0 to HW filter on device batadv0
[  763.753714][T18457] Bluetooth: hci3: command tx timeout
[  765.166565][T21537] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5089'.
[  765.259386][T21375] veth0_vlan: entered promiscuous mode
[  765.319016][T21375] veth1_vlan: entered promiscuous mode
[  765.456567][T21375] veth0_macvtap: entered promiscuous mode
[  765.498095][T21375] veth1_macvtap: entered promiscuous mode
[  765.631648][T21375] batman_adv: batadv0: Interface activated: batadv_slave_0
[  765.699504][T21375] batman_adv: batadv0: Interface activated: batadv_slave_1
[  765.767482][   T12] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  765.812077][   T12] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  765.820848][   T12] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  765.955080][   T12] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  766.143250][T21556] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  766.227834][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  766.242368][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  766.298594][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  766.328506][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  766.778062][T21575] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  766.855396][T21580] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  766.962993][T21575] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  767.376435][   T30] kauditd_printk_skb: 19 callbacks suppressed
[  767.376453][   T30] audit: type=1326 audit(1760109119.523:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21562 comm="syz.3.5101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f46ecd2af79 code=0x7ffc0000
[  767.462515][   T30] audit: type=1326 audit(1760109119.523:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21562 comm="syz.3.5101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46ecd8eec9 code=0x7ffc0000
[  767.486132][   T30] audit: type=1326 audit(1760109119.523:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21562 comm="syz.3.5101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f46ecd2af79 code=0x7ffc0000
[  767.531353][   T30] audit: type=1326 audit(1760109119.523:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21562 comm="syz.3.5101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f46ecd2af79 code=0x7ffc0000
[  767.554842][   T30] audit: type=1326 audit(1760109119.523:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21562 comm="syz.3.5101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46ecd8eec9 code=0x7ffc0000
[  767.639753][   T30] audit: type=1326 audit(1760109119.523:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21562 comm="syz.3.5101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46ecd8eec9 code=0x7ffc0000
[  767.846758][   T30] audit: type=1326 audit(1760109119.523:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21562 comm="syz.3.5101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f46ecd2af79 code=0x7ffc0000
[  767.944047][   T30] audit: type=1326 audit(1760109119.523:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21562 comm="syz.3.5101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46ecd8eec9 code=0x7ffc0000
[  768.073157][   T30] audit: type=1326 audit(1760109119.523:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21562 comm="syz.3.5101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f46ecd2af79 code=0x7ffc0000
[  768.235652][   T30] audit: type=1326 audit(1760109119.523:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21562 comm="syz.3.5101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46ecd8eec9 code=0x7ffc0000
[  768.483993][T21600] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5114'.
[  768.746067][T21608] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5118'.
[  768.779874][T21608] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5118'.
[  769.223048][T21620] GUP no longer grows the stack in syz.8.5122 (21620): 200000003000-20000000a000 (200000001000)
[  769.258819][T21620] CPU: 0 UID: 0 PID: 21620 Comm: syz.8.5122 Not tainted syzkaller #0 PREEMPT(full) 
[  769.258851][T21620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  769.258865][T21620] Call Trace:
[  769.258875][T21620]  <TASK>
[  769.258886][T21620]  dump_stack_lvl+0x189/0x250
[  769.258921][T21620]  ? __pfx_dump_stack_lvl+0x10/0x10
[  769.258945][T21620]  ? __pfx__printk+0x10/0x10
[  769.258965][T21620]  ? find_vma+0xe7/0x160
[  769.259003][T21620]  __get_user_pages+0x2470/0x2a00
[  769.259069][T21620]  ? rcu_is_watching+0x15/0xb0
[  769.259108][T21620]  __gup_longterm_locked+0xde4/0x1660
[  769.259142][T21620]  ? irqentry_exit+0x74/0x90
[  769.259167][T21620]  ? lockdep_hardirqs_on+0x9c/0x150
[  769.259207][T21620]  ? gup_fast_fallback+0x1c25/0x22d0
[  769.259235][T21620]  gup_fast_fallback+0x1d65/0x22d0
[  769.259300][T21620]  ? __pfx_gup_fast_fallback+0x10/0x10
[  769.259319][T21620]  ? __mutex_lock+0x335/0x1350
[  769.259360][T21620]  ? is_valid_gup_args+0x11f/0x200
[  769.259395][T21620]  ? get_user_pages_fast+0x4d/0xb0
[  769.259418][T21620]  __iov_iter_get_pages_alloc+0x39f/0xb40
[  769.259457][T21620]  ? __pfx_pipe_clear_nowait+0x10/0x10
[  769.259486][T21620]  ? wait_for_space+0x248/0x2d0
[  769.259516][T21620]  iov_iter_get_pages2+0x5e/0xa0
[  769.259547][T21620]  __se_sys_vmsplice+0x548/0x10d0
[  769.259598][T21620]  ? __pfx___se_sys_vmsplice+0x10/0x10
[  769.259626][T21620]  ? __pfx_futex_wait+0x10/0x10
[  769.259669][T21620]  ? __ia32_sys_rt_sigreturn+0x743/0x860
[  769.259756][T21620]  ? do_syscall_64+0xbe/0xfa0
[  769.259786][T21620]  do_syscall_64+0xfa/0xfa0
[  769.259812][T21620]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  769.259832][T21620]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  769.259854][T21620]  ? clear_bhb_loop+0x60/0xb0
[  769.259880][T21620]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  769.259902][T21620] RIP: 0033:0x7f3ccf18eec9
[  769.259923][T21620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  769.259942][T21620] RSP: 002b:00007f3ccffa5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[  769.259966][T21620] RAX: ffffffffffffffda RBX: 00007f3ccf3e5fa0 RCX: 00007f3ccf18eec9
[  769.259983][T21620] RDX: 0000000000000001 RSI: 00002000000000c0 RDI: 0000000000000007
[  769.259997][T21620] RBP: 00007f3ccf211f91 R08: 0000000000000000 R09: 0000000000000000
[  769.260011][T21620] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  769.260024][T21620] R13: 00007f3ccf3e6038 R14: 00007f3ccf3e5fa0 R15: 00007ffda6ca8f68
[  769.260063][T21620]  </TASK>
[  770.062939][T21628] netlink: 28 bytes leftover after parsing attributes in process `syz.6.5126'.
[  770.436590][T21638] loop6: detected capacity change from 0 to 8
[  772.295198][T21660] Invalid ELF header magic: != ELF
[  772.481430][T21663] lo speed is unknown, defaulting to 1000
[  772.495009][T21664] kvm: pic: level sensitive irq not supported
[  772.499313][T21664] kvm: pic: level sensitive irq not supported
[  772.514922][T21664] kvm: pic: single mode not supported
[  772.626119][T21670] loop6: detected capacity change from 0 to 256
[  772.879594][T21676] netlink: 8 bytes leftover after parsing attributes in process `syz.8.5143'.
[  772.902415][T21674] block device autoloading is deprecated and will be removed.
[  776.253009][   T30] kauditd_printk_skb: 269 callbacks suppressed
[  776.253031][   T30] audit: type=1326 audit(1760109128.437:691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21697 comm="syz.6.5148" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f29bb98eec9 code=0x0
[  778.405205][   T13] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  778.873887][   T13] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  779.275303][   T13] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  779.759293][T21756] overlayfs: failed to clone upperpath
[  779.845782][   T13] bond0: (slave netdevsim0): Releasing backup interface
[  779.907363][ T5842] Bluetooth: hci2: command 0x0406 tx timeout
[  779.960410][   T13] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  781.423738][   T44] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  781.625255][   T44] usb 9-1: Using ep0 maxpacket: 16
[  781.710140][   T44] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  781.842343][   T44] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  781.853646][   T13] bridge_slave_1: left allmulticast mode
[  781.859740][   T13] bridge_slave_1: left promiscuous mode
[  781.928903][   T44] usb 9-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  781.943317][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  781.971764][   T44] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  782.041371][   T44] usb 9-1: Product: syz
[  782.061083][   T13] bridge_slave_0: left allmulticast mode
[  782.075763][   T44] usb 9-1: Manufacturer: syz
[  782.093810][   T13] bridge_slave_0: left promiscuous mode
[  782.141887][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  782.150687][   T44] usb 9-1: SerialNumber: syz
[  782.192483][   T44] usb 9-1: config 0 descriptor??
[  782.329424][   T13] veth3: left allmulticast mode
[  782.397440][   T44] em28xx 9-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  782.416138][   T13] bridge2: port 1(veth3) entered disabled state
[  782.451728][   T44] em28xx 9-1:0.0: Audio interface 0 found (Vendor Class)
[  783.039686][   T44] em28xx 9-1:0.0: unknown em28xx chip ID (0)
[  783.057174][   T44] em28xx 9-1:0.0: Config register raw data: 0xfffffffb
[  783.761188][   T44] em28xx 9-1:0.0: AC97 command still being executed: not handled properly!
[  783.790246][   T44] em28xx 9-1:0.0: Unknown AC97 audio processor detected!
[  783.990700][   T44] em28xx 9-1:0.0: AC97 command still being executed: not handled properly!
[  784.018007][   T44] em28xx 9-1:0.0: couldn't setup AC97 register 2
[  784.140475][   T44] em28xx 9-1:0.0: couldn't setup AC97 register 4
[  784.193418][   T44] em28xx 9-1:0.0: couldn't setup AC97 register 6
[  784.220346][   T44] em28xx 9-1:0.0: couldn't setup AC97 register 54
[  784.238847][   T44] em28xx 9-1:0.0: couldn't setup AC97 register 56
[  784.311269][   T44] usb 9-1: USB disconnect, device number 4
[  787.109979][   T13] team0: Port device bond0 removed
[  787.131910][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  787.205779][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  787.235628][   T13] bond0 (unregistering): Released all slaves
[  788.530577][   T13] bond1 (unregistering): Released all slaves
[  789.175577][   T13] bond2 (unregistering): (slave batadv1): Releasing active interface
[  789.202825][   T13] bond2 (unregistering): (slave batadv2): Releasing active interface
[  790.258446][   T13] bond2 (unregistering): Released all slaves
[  790.359932][T21803] bridge: RTM_NEWNEIGH with invalid ether address
[  791.848498][   T13] hsr_slave_0: left promiscuous mode
[  792.067823][   T13] hsr_slave_1: left promiscuous mode
[  792.074100][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  792.168013][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  792.199029][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  792.247155][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  792.575803][   T13] veth1_macvtap: left promiscuous mode
[  792.629436][   T13] veth0_macvtap: left promiscuous mode
[  792.661936][   T13] veth1_vlan: left promiscuous mode
[  792.697950][   T13] veth0_vlan: left promiscuous mode
[  798.334926][ T8983] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  798.805205][ T8983] usb 7-1: Using ep0 maxpacket: 8
[  798.875235][ T8983] usb 7-1: config index 0 descriptor too short (expected 74, got 45)
[  798.883576][ T8983] usb 7-1: config 16 has an invalid descriptor of length 102, skipping remainder of the config
[  798.925429][ T8983] usb 7-1: too many endpoints for config 16 interface 0 altsetting 48: 120, using maximum allowed: 30
[  798.968409][ T8983] usb 7-1: config 16 interface 0 altsetting 48 has 0 endpoint descriptors, different from the interface descriptor's value: 120
[  798.982022][ T8983] usb 7-1: config 16 interface 0 has no altsetting 0
[  798.988890][ T8983] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  798.998383][ T8983] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  799.098883][   T13] team0 (unregistering): Port device team_slave_1 removed
[  800.284436][T20437] lo speed is unknown, defaulting to 1000
[  800.290303][T20437] syz2: Port: 1 Link DOWN
[  800.316045][T21911] netdevsim netdevsim7 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  800.486454][T21911] netdevsim netdevsim7 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  800.597853][T21911] netdevsim netdevsim7 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  800.818182][T21911] netdevsim netdevsim7 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  801.102038][ T7359] netdevsim netdevsim7 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  801.173953][   T37] netdevsim netdevsim7 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  801.231192][ T7359] netdevsim netdevsim7 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  801.325233][   T37] netdevsim netdevsim7 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  802.033447][T21950] netlink: 14 bytes leftover after parsing attributes in process `syz.3.5230'.
[  802.298794][ T8983] usb 7-1: string descriptor 0 read error: -71
[  802.503132][ T8983] usb 7-1: USB disconnect, device number 14
[  802.750816][T21950] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  802.771077][T21950] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  802.795823][T21950] bond0 (unregistering): (slave batadv0): Releasing backup interface
[  802.814529][T21950] bond0 (unregistering): Released all slaves
[  802.912917][ T8983] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  803.086286][ T8983] usb 7-1: Using ep0 maxpacket: 8
[  803.116845][ T8983] usb 7-1: config 2 interface 0 has no altsetting 0
[  803.153314][ T8983] usb 7-1: New USB device found, idVendor=04e2, idProduct=141a, bcdDevice=ca.10
[  803.170714][ T8983] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  803.192621][ T8983] usb 7-1: Product: syz
[  803.196860][ T8983] usb 7-1: Manufacturer: syz
[  803.201491][ T8983] usb 7-1: SerialNumber: syz
[  803.405395][T21975] loop8: detected capacity change from 0 to 64
[  803.454598][ T8983] usb 7-1: USB disconnect, device number 15
[  807.513013][T22032] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5262'.
[  807.533167][T22032] netlink: 'syz.0.5262': attribute type 11 has an invalid length.
[  807.763956][T22032] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5262'.
[  807.778637][T22032] netlink: 'syz.0.5262': attribute type 11 has an invalid length.
[  809.506709][T22063] fuse: Bad value for 'fd'
[  809.840945][T22067] overlayfs: failed to clone upperpath
[  812.879159][T22121] loop6: detected capacity change from 0 to 64
[  812.918374][   T30] audit: type=1800 audit(1760109165.126:692): pid=22121 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.5292" name="file7" dev="loop6" ino=13 res=0 errno=0
[  812.980249][T22121] overlayfs: upper fs needs to support d_type.
[  813.008235][T22121] overlayfs: upper fs does not support tmpfile.
[  813.408821][T22129] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  813.698391][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  813.704979][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  814.177568][T22136] Set syz0 is full, maxelem 0 reached
[  815.675010][T22175] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5312'.
[  816.992176][T22203] netlink: 'syz.0.5323': attribute type 1 has an invalid length.
[  817.124304][T22203] bond3: entered promiscuous mode
[  817.144555][T22203] 8021q: adding VLAN 0 to HW filter on device bond3
[  817.364186][T22208] bond3: (slave bridge2): making interface the new active one
[  817.406668][T22208] bridge2: entered promiscuous mode
[  817.456165][T22208] bond3: (slave bridge2): Enslaving as an active interface with an up link
[  817.590095][T22213] netlink: 'syz.3.5325': attribute type 3 has an invalid length.
[  817.632245][T22213] netlink: 'syz.3.5325': attribute type 3 has an invalid length.
[  817.719576][T22216] sch_tbf: burst 19869 is lower than device lo mtu (11337746) !
[  818.958591][T22241] team0: Port device team_slave_0 removed
[  819.742817][T22257] bridge: RTM_NEWNEIGH with invalid ether address
[  819.974995][T18457] Bluetooth: hci2: unexpected event for opcode 0x2042
[  823.958276][ T8956] delete_channel: no stack
[  824.046988][T18457] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  824.058374][T18457] Bluetooth: hci2: Injecting HCI hardware error event
[  824.070185][ T5842] Bluetooth: hci2: hardware error 0x00
[  824.362902][T22314] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  825.168207][T22322] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5363'.
[  825.287646][T22322] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5363'.
[  826.217065][ T5842] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  830.526395][T22387] netlink: 55631 bytes leftover after parsing attributes in process `syz.6.5390'.
[  830.925045][T22405] overlayfs: failed to clone upperpath
[  830.936625][T22400] bond0: (slave wlan1): Releasing backup interface
[  831.705720][T22410] sctp: [Deprecated]: syz.0.5401 (pid 22410) Use of struct sctp_assoc_value in delayed_ack socket option.
[  831.705720][T22410] Use struct sctp_sack_info instead
[  831.915188][T22420] loop6: detected capacity change from 0 to 1024
[  832.002594][T22420] EXT4-fs: Conflicting test_dummy_encryption options
[  836.025981][T22470] 9pnet_fd: Insufficient options for proto=fd
[  837.893304][T22506] overlayfs: failed to clone upperpath
[  838.348392][T22522] ipip1: entered promiscuous mode
[  839.716523][T22541] netlink: 124 bytes leftover after parsing attributes in process `syz.8.5441'.
[  839.780417][T22541] netlink: 40 bytes leftover after parsing attributes in process `syz.8.5441'.
[  840.472403][T22548] fuse: Bad value for 'fd'
[  840.734313][T22552] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5445'.
[  842.516050][T22577] netlink: 24 bytes leftover after parsing attributes in process `syz.7.5454'.
[  842.562543][T22580] netlink: 'syz.7.5454': attribute type 10 has an invalid length.
[  843.942030][T22602] team0: Port device team_slave_0 removed
[  845.870854][T22637] team0: Port device team_slave_0 removed
[  847.910360][T22668] netlink: 'syz.3.5487': attribute type 39 has an invalid length.
[  849.772186][T22703] vxlan0: left promiscuous mode
[  849.781032][T22703] vxlan0: entered allmulticast mode
[  849.805806][T22703] bond2: entered allmulticast mode
[  849.817926][T22703] ip6erspan0: entered allmulticast mode
[  849.839417][T22703] ip6erspan0: left promiscuous mode
[  849.855560][T22703] gre4: entered allmulticast mode
[  849.867524][T22703] gretap2: entered allmulticast mode
[  849.879323][T22703] netdevsim netdevsim7 eth0: entered allmulticast mode
[  849.891411][T22703] netdevsim netdevsim7 eth1: entered allmulticast mode
[  849.903023][T22703] netdevsim netdevsim7 eth2: entered allmulticast mode
[  849.916667][T22703] netdevsim netdevsim7 eth3: entered allmulticast mode
[  849.927024][T22703] ipip1: left promiscuous mode
[  849.931852][T22703] ipip1: entered allmulticast mode
[  849.949617][T22703] mac80211_hwsim hwsim39 wlan3: entered allmulticast mode
[  849.957255][ T7360] netdevsim netdevsim7 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  849.975103][ T7360] netdevsim netdevsim7 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  849.994270][ T7360] netdevsim netdevsim7 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  850.302738][ T7360] netdevsim netdevsim7 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  850.636350][T22722] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5505'.
[  850.863166][T22722] bridge0: port 2(bridge_slave_1) entered disabled state
[  850.870648][T22722] bridge0: port 1(bridge_slave_0) entered disabled state
[  851.493799][T22737] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5509'.
[  853.431457][T22768] loop6: detected capacity change from 0 to 256
[  853.455930][T22768] exfat: Deprecated parameter 'namecase'
[  853.473278][T22768] exfat: Deprecated parameter 'utf8'
[  853.509073][T22768] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  855.237963][T22785] netlink: 'syz.3.5526': attribute type 4 has an invalid length.
[  855.289839][T22790] netlink: 'syz.3.5526': attribute type 4 has an invalid length.
[  855.898084][ T8963] usb 7-1: new full-speed USB device number 16 using dummy_hcd
[  855.909600][T22796] overlayfs: failed to resolve './file0': -2
[  858.666493][T22843] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5546'.
[  859.059820][ T8963] usb 7-1: unable to get BOS descriptor or descriptor too short
[  859.069618][ T8963] usb 7-1: unable to read config index 0 descriptor/start: -71
[  859.131320][ T8963] usb 7-1: can't read configurations, error -71
[  860.311371][T22878] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5559'.
[  864.263352][T22926] netlink: 96 bytes leftover after parsing attributes in process `syz.7.5575'.
[  864.457703][   T30] audit: type=1326 audit(1760109472.668:693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22929 comm="syz.6.5577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29bb98eec9 code=0x7ffc0000
[  864.579825][   T30] audit: type=1326 audit(1760109472.698:694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22929 comm="syz.6.5577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29bb98eec9 code=0x7ffc0000
[  864.670690][   T30] audit: type=1326 audit(1760109472.698:695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22929 comm="syz.6.5577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f29bb98eec9 code=0x7ffc0000
[  864.761449][   T30] audit: type=1326 audit(1760109472.698:696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22929 comm="syz.6.5577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29bb98eec9 code=0x7ffc0000
[  864.863894][   T30] audit: type=1326 audit(1760109472.698:697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22929 comm="syz.6.5577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29bb98eec9 code=0x7ffc0000
[  864.958127][   T30] audit: type=1326 audit(1760109472.718:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22929 comm="syz.6.5577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f29bb98eec9 code=0x7ffc0000
[  865.054558][   T30] audit: type=1326 audit(1760109472.718:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22929 comm="syz.6.5577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29bb98eec9 code=0x7ffc0000
[  865.121948][   T30] audit: type=1326 audit(1760109472.718:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22929 comm="syz.6.5577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29bb98eec9 code=0x7ffc0000
[  865.175727][   T30] audit: type=1326 audit(1760109472.718:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22929 comm="syz.6.5577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f29bb98eec9 code=0x7ffc0000
[  865.263173][   T30] audit: type=1326 audit(1760109472.718:702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22929 comm="syz.6.5577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29bb98eec9 code=0x7ffc0000
[  865.730501][T22955] lo speed is unknown, defaulting to 1000
[  865.737437][T22955] lo speed is unknown, defaulting to 1000
[  865.764267][T22955] lo speed is unknown, defaulting to 1000
[  865.885493][T22955] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  866.090775][T22955] lo speed is unknown, defaulting to 1000
[  866.122468][T22955] lo speed is unknown, defaulting to 1000
[  866.151893][T22955] lo speed is unknown, defaulting to 1000
[  866.162182][T22955] lo speed is unknown, defaulting to 1000
[  866.169604][T22955] lo speed is unknown, defaulting to 1000
[  866.176992][T22955] lo speed is unknown, defaulting to 1000
[  867.046988][T22963] batadv_slave_0: entered promiscuous mode
[  867.067172][T22963] batadv_slave_0: left allmulticast mode
[  867.091294][T22965] bridge0: port 2(bridge_slave_1) entered disabled state
[  867.099248][T22965] bridge0: port 1(bridge_slave_0) entered disabled state
[  867.159425][T22965] bridge0: entered allmulticast mode
[  867.290778][T22967] bridge_slave_1: left allmulticast mode
[  867.348882][T22967] bridge_slave_1: left promiscuous mode
[  867.421279][T22967] bridge0: port 2(bridge_slave_1) entered disabled state
[  867.484602][T22967] bridge_slave_0: left allmulticast mode
[  867.504000][T22967] bridge_slave_0: left promiscuous mode
[  867.528111][T22967] bridge0: port 1(bridge_slave_0) entered disabled state
[  870.496527][T23019] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  870.504501][T23019] IPv6: NLM_F_CREATE should be set when creating new route
[  870.511768][T23019] IPv6: NLM_F_CREATE should be set when creating new route
[  870.519039][T23019] IPv6: NLM_F_CREATE should be set when creating new route
[  874.278799][T23054] ptrace attach of "./syz-executor exec"[18454] was attempted by "ßRĺÖ~…źsۄ9!ţ+îËlĂ vűs\x22~UëxĺaŒ*œfÜČPyôw.źÁÉ6űŠiîÂBÖĄO‹źŐÎ ź‘Ě^Ś$ îĆwĂü*ƒăű? Ć;Ř-éŤbˇ?3—AŐ”‘SĂŃ­ÂKkĆŰr\x0aćéĂؙ:…y>sÄy\x1b˘SD8\x1bÝuƒ\x0aÚŃ2Űš.źbf×h„łÜú™‰ËÝšĆ5żcMš+˛wœkŕ×Ň|Í(Hnô'cCźćj<,ᨊŹr.uń(lnšvNÍżFˆQ+&iÝÁŽĐkŸŸĐ&ȍ˘ŹÄ¤>貼˝f‰bRsŤóˇ–ž\x0c~1šœ‰Ď%^“?ń\x1bČYľű\x1b­gŻ´-3ËŠVO|\x0a᳡ÖĆÄ[.ŘŔ'3őš‹ÚDľÁA˙ĹüzrcOĆ Ľƒ,œô‘ť;ň˝ŽŰj„Ő!pŽoűŸUe{‘™ˆĹs%@čOŽtnZ–b™§Bš&+4ű?pÄĹRNĄŒű˝!YˑNj˜âgÎiqĐďÜ[ś6ŮÍh“í˛vN|›°Ő xiúčPo54(%*Ş Ëô˝ŒáëħlĺLU•ťŠ˛Dŕ䧼7`zú8äh¨Â“ý˝„Ů=ť‚¨š-eŢđi¤’î}˜\x5c\x09Łv:-םË\x09•œ9.˝ŚV€¨•§E×&ő†ćš\x09   b&hΚ€AŽ‘`œRœƒ&ą˝֕—AĚÔO •Ý›/\x1bLŔ\x07Ŕű&÷ňDČuÄoO…ćĆ^Cň'S1 @ŻĂŠňôű#^^ô„ĽV1Ľž56r芴tUő\x0cô¸˝0é´˛˜´´>’‰ĹŞčŮěMŃü˛VĐjŘ\x07Ŕ=şÉ}]M†‡XUtűÜY[%>pšüÄů*×ójšs;”Űx—9K§Ł4Ím{yŢăWp5p\x0cVŐ\x0c×\x0a(UΡúXŤţ8'C}ôħż°J=ŇŃ˜áć6WwŘ&äu×]÷ą8?Żœ +Äßţ3qˇ(*R\x09Ň-e“\x22gç„ŰăőNŇřN?-ńň݋˛ňłŐ0Аުä…JxĘŮ~~°ÓŃ/AL†żI8‡ŽĆo$Ť¤îaÔ3će@JŕcŤŽT đśĚ‘łÄѧ8%pţçź‘Ó/܏!/%Vţ'RąjoqŁsvgq˝c´]\x0
[  874.463366][ T5842] Bluetooth: hci3: unexpected event 0x03 length: 1 < 11
[  875.147858][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  875.386993][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  878.192574][T23094] loop6: detected capacity change from 0 to 256
[  878.202625][T23094] exfat: Deprecated parameter 'utf8'
[  878.896947][T23094] exfat: Deprecated parameter 'namecase'
[  878.943043][T23094] exfat: Deprecated parameter 'utf8'
[  879.045101][T23094] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x389acbd6, utbl_chksum : 0xe619d30d)
[  881.458233][ T5842] Bluetooth: hci5: unexpected event for opcode 0x0c24
[  882.302720][ T5842] Bluetooth: hci3: command 0x0406 tx timeout
[  884.052148][T23145] overlayfs: missing 'lowerdir'
[  884.155729][T23143] netlink: 'syz.7.5643': attribute type 1 has an invalid length.
[  885.519950][T18457] Bluetooth: hci5: Controller not accepting commands anymore: ncmd = 0
[  885.531845][T18457] Bluetooth: hci5: Injecting HCI hardware error event
[  885.555185][ T5842] Bluetooth: hci5: hardware error 0x00
[  885.740402][T23160] xfrm0: entered promiscuous mode
[  885.779237][T23160] xfrm0: entered allmulticast mode
[  887.656923][ T5842] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[  897.326606][T23299] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5690'.
[  898.273489][T23315] loop6: detected capacity change from 0 to 8
[  898.313128][T23311] lo speed is unknown, defaulting to 1000
[  899.122901][   T30] kauditd_printk_skb: 22 callbacks suppressed
[  899.122937][   T30] audit: type=1800 audit(1760109506.738:725): pid=23320 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.5696" name="file1" dev="loop6" ino=5 res=0 errno=0
[  902.129395][T23367] ptrace attach of "./syz-executor exec"[10735] was attempted by "./syz-executor exec"[23367]
[  907.346732][T23426] netlink: 'syz.8.5730': attribute type 1 has an invalid length.
[  908.708942][T23451] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5735'.
[  909.946790][ T8956] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  910.098529][ T8956] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  910.253347][ T8956] usb 7-1: config 0 has no interfaces?
[  910.298671][ T8956] usb 7-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  910.327452][ T8956] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  910.372298][ T8956] usb 7-1: config 0 descriptor??
[  910.594689][ T8956] usb 7-1: USB disconnect, device number 18
[  913.453339][T23505] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5752'.
[  913.586449][T23505] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5752'.
[  914.081293][T23513] lo speed is unknown, defaulting to 1000
[  915.398083][T23533] delete_channel: no stack
[  915.796269][T23536] af_packet: tpacket_rcv: packet too big, clamped from 42 to 4294967286. macoff=82
[  916.597285][T23540] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5767'.
[  918.732671][T23540] team0 (unregistering): Port device team_slave_1 removed
[  919.168896][T23567] overlayfs: failed to clone upperpath
[  919.367577][T23569] netlink: 4980 bytes leftover after parsing attributes in process `syz.3.5776'.
[  919.376876][T23569] openvswitch: netlink: Flow actions attr not present in new flow.
[  919.510283][T23573] ip6tnl0: entered promiscuous mode
[  919.522714][T23573] ip6tnl0: entered allmulticast mode
[  922.719093][T23607] overlayfs: failed to clone upperpath
[  928.083662][T23667] loop6: detected capacity change from 0 to 1764
[  928.112075][T23667] iso9660: Bad value for 'session'
[  932.350717][T23715] overlayfs: failed to clone upperpath
[  932.850345][   T30] audit: type=1326 audit(1760109541.038:726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23720 comm="syz.0.5826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  932.928836][   T30] audit: type=1326 audit(1760109541.038:727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23720 comm="syz.0.5826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  933.050893][   T30] audit: type=1326 audit(1760109541.038:728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23720 comm="syz.0.5826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  933.206038][   T30] audit: type=1326 audit(1760109541.038:729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23720 comm="syz.0.5826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  933.782850][   T30] audit: type=1326 audit(1760109541.038:730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23720 comm="syz.0.5826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  935.691234][T23745] loop6: detected capacity change from 0 to 262144
[  935.716925][T23745] BTRFS: device fsid 7e32c2af-f87a-45a1-bcba-64dea7c56a53 devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.5834 (23745)
[  935.761055][T23745] BTRFS info (device loop6): first mount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  935.771459][T23745] BTRFS info (device loop6): using xxhash64 (xxhash64-generic) checksum algorithm
[  936.647309][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  936.653849][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  936.750264][T23745] BTRFS info (device loop6): enabling ssd optimizations
[  936.757409][T23745] BTRFS info (device loop6): enabling free space tree
[  937.627749][T23786] overlayfs: failed to clone upperpath
[  937.955533][T23745] BTRFS info (device loop6): balance: start -d -m -s
[  937.963322][T23745] BTRFS info (device loop6): relocating block group 63963136 flags data
[  938.016552][T23745] BTRFS info (device loop6): relocating block group 13631488 flags data
[  938.091854][T23745] BTRFS info (device loop6): found 1 extents, stage: move data extents
[  938.141628][T23745] BTRFS info (device loop6): found 1 extents, stage: update data pointers
[  938.174657][T23745] BTRFS info (device loop6): 3 enospc errors during balance
[  938.183389][T23745] BTRFS info (device loop6): balance: ended with status: -28
[  939.977904][T23802] overlayfs: failed to clone upperpath
[  940.310790][T23806] syz.8.5849 (23806) used greatest stack depth: 16056 bytes left
[  940.537751][   T30] audit: type=1804 audit(1760109548.738:731): pid=23812 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.5850" name="file0" dev="ramfs" ino=84816 res=1 errno=0
[  941.035441][T23819] siw: device registration error -23
[  941.060780][T21375] BTRFS info (device loop6): last unmount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  949.019860][T23892] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5877'.
[  950.683383][   T30] audit: type=1326 audit(1760109558.888:732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23906 comm="syz.0.5880" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x0
[  953.481323][ T7360] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  953.533675][ T7360] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  953.607925][ T7360] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  953.690092][ T7360] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  954.559465][T23953] lo speed is unknown, defaulting to 1000
[  958.266458][T24013] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5915'.
[  958.558272][T24015] bond3: (slave ip6gretap1): Enslaving as an active interface with an up link
[  958.743395][T24019] bond3 (unregistering): (slave ip6gretap1): Releasing backup interface
[  958.895305][   T30] audit: type=1326 audit(1760109567.058:733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24007 comm="syz.0.5914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7fc00000
[  959.242048][T24019] bond3 (unregistering): Released all slaves
[  961.829266][T24043] netlink: 'syz.3.5923': attribute type 10 has an invalid length.
[  961.859628][T24043] batman_adv: batadv0: Removing interface: dummy0
[  962.423635][T24054] overlayfs: failed to clone upperpath
[  964.202026][T24082] 9pnet_fd: p9_fd_create_unix (24082): address too long: ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  971.374369][T24152] bond0: (slave bond_slave_0): Releasing backup interface
[  971.584795][T24152] bond0: (slave bond_slave_1): Releasing backup interface
[  971.844661][T24152] team0: Port device team_slave_1 removed
[  972.596415][T24152] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  972.603964][T24152] batman_adv: batadv0: Removing interface: batadv_slave_0
[  972.613709][T24152] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  972.621783][T24152] batman_adv: batadv0: Removing interface: batadv_slave_1
[  972.634878][T24152] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  975.707717][T24195] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5970'.
[  976.174472][T24210] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  979.467150][T24231] IPVS: fo: FWM 3 0x00000003 - no destination available
[  980.053089][T24238] loop6: detected capacity change from 0 to 4096
[  981.291622][T24244] tipc: Failed to remove unknown binding: 66,1,1/0:1951764263/1951764265
[  981.347111][T24244] tipc: Failed to remove unknown binding: 66,1,1/0:1951764263/1951764265
[  981.355715][T24244] tipc: Failed to remove unknown binding: 66,1,1/0:1951764263/1951764265
[  987.761981][T24324] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6008'.
[  987.829662][T24324] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6008'.
[  988.633595][T24333] overlayfs: failed to clone upperpath
[  988.765543][T24340] overlayfs: failed to clone upperpath
[  991.251084][T24363] ptrace attach of "./syz-executor exec"[21375] was attempted by "./syz-executor exec"[24363]
[  991.273933][   T30] audit: type=1326 audit(1760109599.478:734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24360 comm="syz.0.6020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  991.327121][T24361] netlink: 180 bytes leftover after parsing attributes in process `syz.0.6020'.
[  991.367602][T24361] netlink: 180 bytes leftover after parsing attributes in process `syz.0.6020'.
[  991.387339][   T30] audit: type=1326 audit(1760109599.478:735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24360 comm="syz.0.6020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  991.467093][T24361] netlink: 180 bytes leftover after parsing attributes in process `syz.0.6020'.
[  991.492398][   T30] audit: type=1326 audit(1760109599.478:736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24360 comm="syz.0.6020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  991.646474][   T30] audit: type=1326 audit(1760109599.478:737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24360 comm="syz.0.6020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  991.735174][   T30] audit: type=1326 audit(1760109599.478:738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24360 comm="syz.0.6020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  991.777671][T24366] netlink: 'syz.3.6022': attribute type 10 has an invalid length.
[  991.814913][T24366] netlink: 'syz.3.6022': attribute type 10 has an invalid length.
[  991.834022][   T30] audit: type=1326 audit(1760109599.528:739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24360 comm="syz.0.6020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  991.975117][   T30] audit: type=1326 audit(1760109599.528:740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24360 comm="syz.0.6020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  992.116903][   T30] audit: type=1326 audit(1760109599.528:741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24360 comm="syz.0.6020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  992.226794][   T30] audit: type=1326 audit(1760109599.528:742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24360 comm="syz.0.6020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  992.304550][   T30] audit: type=1326 audit(1760109599.528:743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24360 comm="syz.0.6020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[  994.188708][T24395] fuse: Unknown parameter '0x0000000000000391'
[  997.202695][T24410] loop6: detected capacity change from 0 to 512
[  997.228903][T24410] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  997.348469][T24410] EXT4-fs (loop6): 1 truncate cleaned up
[  997.355528][T24410] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  997.390521][   T30] kauditd_printk_skb: 16 callbacks suppressed
[  997.390535][   T30] audit: type=1800 audit(1760109605.598:760): pid=24410 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.6035" name="file1" dev="loop6" ino=15 res=0 errno=0
[  997.500321][T21375] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  997.975206][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  997.985676][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  998.296794][T24429] netdevsim netdevsim6 netdevsim0: entered promiscuous mode
[ 1003.623558][T24488] netlink: 32 bytes leftover after parsing attributes in process `syz.7.6058'.
[ 1003.652303][T24488] team0: Port device team_slave_1 removed
[ 1005.312580][T24513] loop6: detected capacity change from 0 to 64
[ 1006.090359][T24536] loop6: detected capacity change from 0 to 2048
[ 1006.150561][T24536] loop6: detected capacity change from 0 to 256
[ 1006.170216][T24536] exfat: Bad value for 'uid'
[ 1006.184458][T24536] exfat: Bad value for 'uid'
[ 1014.606010][T24626] netlink: 24 bytes leftover after parsing attributes in process `syz.6.6101'.
[ 1016.685606][T24645] lo speed is unknown, defaulting to 1000
[ 1017.412485][T24649] vlan3: entered promiscuous mode
[ 1017.419631][T24649] ip6gretap0: entered promiscuous mode
[ 1018.604818][T24659] uprobe: syz.6.6109:24659 failed to unregister, leaking uprobe
[ 1018.931060][T24670] netlink: 'syz.6.6112': attribute type 4 has an invalid length.
[ 1018.988353][T24671] netlink: 'syz.6.6112': attribute type 4 has an invalid length.
[ 1024.460007][   T30] audit: type=1326 audit(1760109632.668:761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24726 comm="syz.7.6128" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f94ddb8eec9 code=0x0
[ 1029.592866][T24778] loop6: detected capacity change from 0 to 2048
[ 1029.787581][T24778] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1031.626451][T24806] lo speed is unknown, defaulting to 1000
[ 1036.837972][T24851] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6168'.
[ 1037.159625][T24858] netlink: 4 bytes leftover after parsing attributes in process `syz.7.6170'.
[ 1041.056876][T24913] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1043.635024][T24943] netlink: 'syz.8.6193': attribute type 10 has an invalid length.
[ 1043.642989][T24943] netlink: 40 bytes leftover after parsing attributes in process `syz.8.6193'.
[ 1043.653622][T24943] veth0_vlan: entered allmulticast mode
[ 1043.660067][T24943] A link change request failed with some changes committed already. Interface veth0_vlan may have been left with an inconsistent configuration, please check.
[ 1049.791805][T24985] netlink: 28 bytes leftover after parsing attributes in process `syz.6.6203'.
[ 1053.535383][T25020] overlayfs: failed to clone upperpath
[ 1056.591749][T25054] loop6: detected capacity change from 0 to 1024
[ 1056.599259][T25054] journal_path: Lookup failure for './file0'
[ 1056.605312][T25054] EXT4-fs: error: could not find journal device path
[ 1059.783947][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[ 1059.916762][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[ 1065.049369][T25100] netlink: 140 bytes leftover after parsing attributes in process `syz.3.6234'.
[ 1065.323805][T25106] netlink: 'syz.8.6236': attribute type 4 has an invalid length.
[ 1066.200362][T25113] lo speed is unknown, defaulting to 1000
[ 1066.217938][T25115] overlayfs: invalid redirect ((null))
[ 1066.239623][   T30] audit: type=1326 audit(1760109674.438:762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25114 comm="syz.8.6241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ccf18eec9 code=0x7ffc0000
[ 1066.336557][   T30] audit: type=1326 audit(1760109674.438:763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25114 comm="syz.8.6241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ccf18eec9 code=0x7ffc0000
[ 1066.417398][   T30] audit: type=1326 audit(1760109674.438:764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25114 comm="syz.8.6241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ccf18eec9 code=0x7ffc0000
[ 1066.461180][T25118] vlan3: entered promiscuous mode
[ 1066.471187][   T30] audit: type=1326 audit(1760109674.438:765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25114 comm="syz.8.6241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ccf18eec9 code=0x7ffc0000
[ 1066.508729][T25118] vlan3: entered allmulticast mode
[ 1066.525252][   T30] audit: type=1326 audit(1760109674.438:766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25114 comm="syz.8.6241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ccf18eec9 code=0x7ffc0000
[ 1066.573504][   T30] audit: type=1326 audit(1760109674.468:767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25114 comm="syz.8.6241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ccf18eec9 code=0x7ffc0000
[ 1066.599549][T25118] hsr_slave_1: entered allmulticast mode
[ 1066.677966][   T30] audit: type=1326 audit(1760109674.478:768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25114 comm="syz.8.6241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ccf18eec9 code=0x7ffc0000
[ 1066.766821][   T30] audit: type=1326 audit(1760109674.478:769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25114 comm="syz.8.6241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ccf18eec9 code=0x7ffc0000
[ 1066.920056][   T30] audit: type=1326 audit(1760109674.508:770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25114 comm="syz.8.6241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ccf18eec9 code=0x7ffc0000
[ 1067.000304][   T30] audit: type=1326 audit(1760109674.508:771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25114 comm="syz.8.6241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ccf18eec9 code=0x7ffc0000
[ 1071.119508][T25161] netlink: 'syz.8.6253': attribute type 10 has an invalid length.
[ 1071.826679][T25161] netlink: 40 bytes leftover after parsing attributes in process `syz.8.6253'.
[ 1071.887990][T25161] team0: Port device geneve0 added
[ 1077.367221][   T30] kauditd_printk_skb: 7 callbacks suppressed
[ 1077.367242][   T30] audit: type=1326 audit(1760109685.548:779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25195 comm="syz.0.6262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1077.546165][T25200] netlink: 'syz.3.6264': attribute type 1 has an invalid length.
[ 1077.627459][T25201] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6264'.
[ 1077.666897][   T30] audit: type=1326 audit(1760109685.548:780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25195 comm="syz.0.6262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1077.882693][T25200] bond4: entered promiscuous mode
[ 1077.888485][T25200] 8021q: adding VLAN 0 to HW filter on device bond4
[ 1077.896097][   T30] audit: type=1326 audit(1760109685.548:781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25195 comm="syz.0.6262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1077.928734][T25201] bond4: entered allmulticast mode
[ 1077.950822][   T30] audit: type=1326 audit(1760109685.548:782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25195 comm="syz.0.6262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1078.271793][   T30] audit: type=1326 audit(1760109685.548:783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25195 comm="syz.0.6262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1078.561299][T25207] bond4: (slave bridge3): making interface the new active one
[ 1078.575844][T25207] bridge3: entered promiscuous mode
[ 1078.581394][T25207] bridge3: entered allmulticast mode
[ 1078.589491][T25207] bond4: (slave bridge3): Enslaving as an active interface with an up link
[ 1078.658145][   T30] audit: type=1326 audit(1760109685.548:784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25195 comm="syz.0.6262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=245 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1078.717868][   T30] audit: type=1326 audit(1760109685.548:785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25195 comm="syz.0.6262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1078.743030][   T30] audit: type=1326 audit(1760109685.548:786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25195 comm="syz.0.6262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1078.785504][   T30] audit: type=1326 audit(1760109685.548:787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25195 comm="syz.0.6262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1078.808379][   T30] audit: type=1326 audit(1760109685.548:788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25195 comm="syz.0.6262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1078.841797][T25216] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[ 1079.202659][T25227] netlink: 20 bytes leftover after parsing attributes in process `syz.3.6272'.
[ 1079.270971][T25228] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6269'.
[ 1088.472553][T25311] overlayfs: failed to clone upperpath
[ 1094.087246][T25347] tmpfs: Bad value for 'mpol'
[ 1097.510724][T25386] loop6: detected capacity change from 0 to 512
[ 1097.610123][T25386] EXT4-fs: Ignoring removed nobh option
[ 1097.636214][T25392] netlink: 12 bytes leftover after parsing attributes in process `syz.7.6323'.
[ 1097.645504][T25392] netlink: 12 bytes leftover after parsing attributes in process `syz.7.6323'.
[ 1097.717670][T25386] fscrypt (loop6, inode 2): Error -61 getting encryption context
[ 1097.737857][T25386] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -61
[ 1097.919950][T25386] EXT4-fs error (device loop6): ext4_orphan_get:1392: inode #13: comm syz.6.6320: casefold flag without casefold feature
[ 1097.967351][T25386] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.6320: couldn't read orphan inode 13 (err -117)
[ 1098.074305][T25386] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1099.675969][T21375] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1099.945839][T25419] lo speed is unknown, defaulting to 1000
[ 1105.318235][T25465] netlink: 'syz.7.6343': attribute type 4 has an invalid length.
[ 1110.066309][T25510] TCP: tcp_parse_options: Illegal window scaling value 94 > 14 received
[ 1110.775871][T25518] lo speed is unknown, defaulting to 1000
[ 1111.013835][T25522] vxfs: unable to read disk superblock at 1
[ 1111.024699][T25522] vxfs: unable to read disk superblock at 8
[ 1111.030992][T25522] vxfs: can't find superblock.
[ 1111.772914][T25528] netlink: 'syz.3.6360': attribute type 13 has an invalid length.
[ 1112.498660][T25528] netlink: 'syz.3.6360': attribute type 17 has an invalid length.
[ 1113.628944][T25528] ip6tnl0: left promiscuous mode
[ 1113.640959][T25528] ip6tnl0: left allmulticast mode
[ 1114.303780][T25528] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1114.697615][T25564] vlan2: entered promiscuous mode
[ 1114.703154][T25564] vlan2: entered allmulticast mode
[ 1114.709167][T25564] hsr_slave_1: entered allmulticast mode
[ 1114.936015][T25564] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6369'.
[ 1117.925019][T25605] netlink: 96 bytes leftover after parsing attributes in process `syz.7.6381'.
[ 1120.450645][T25636] __vm_enough_memory: pid: 25636, comm: syz.3.6390, bytes: 21200581312512 not enough memory for the allocation
[ 1120.746702][ T5944] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[ 1120.854844][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[ 1120.861470][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[ 1120.906877][ T5944] usb 7-1: Using ep0 maxpacket: 16
[ 1121.134996][ T5944] usb 7-1: config 0 has no interfaces?
[ 1121.143359][ T5944] usb 7-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 8.f8
[ 1121.164797][ T5944] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1121.173444][ T5944] usb 7-1: Product: syz
[ 1121.178462][ T5944] usb 7-1: Manufacturer: syz
[ 1121.183127][ T5944] usb 7-1: SerialNumber: syz
[ 1121.199755][ T5944] usb 7-1: config 0 descriptor??
[ 1122.197107][T25647] usb 7-1: USB disconnect, device number 19
[ 1124.264754][T25669] orangefs_mount: mount request failed with -4
[ 1124.515362][T25676] loop6: detected capacity change from 0 to 512
[ 1124.697557][T25676] EXT4-fs error (device loop6): ext4_xattr_inode_iget:441: inode #12: comm syz.6.6413: missing EA_INODE flag
[ 1124.725031][T25676] EXT4-fs error (device loop6): ext4_xattr_inode_iget:446: comm syz.6.6413: error while reading EA inode 12 err=-117
[ 1125.629856][T25676] EXT4-fs (loop6): 1 orphan inode deleted
[ 1125.637713][T25676] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1126.210302][T21375] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1129.666764][ T5944] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[ 1129.810510][   T30] kauditd_printk_skb: 62 callbacks suppressed
[ 1129.810530][   T30] audit: type=1326 audit(1760109738.018:851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25731 comm="syz.0.6419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1129.886727][ T5944] usb 7-1: Using ep0 maxpacket: 16
[ 1129.896784][   T30] audit: type=1326 audit(1760109738.018:852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25731 comm="syz.0.6419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1130.103378][   T30] audit: type=1326 audit(1760109738.048:853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25731 comm="syz.0.6419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1130.126785][ T5944] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[ 1130.137898][   T30] audit: type=1326 audit(1760109738.048:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25731 comm="syz.0.6419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1130.137952][   T30] audit: type=1326 audit(1760109738.048:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25731 comm="syz.0.6419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1130.138003][   T30] audit: type=1326 audit(1760109738.058:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25731 comm="syz.0.6419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1130.138069][   T30] audit: type=1326 audit(1760109738.058:857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25731 comm="syz.0.6419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1130.138116][   T30] audit: type=1326 audit(1760109738.098:858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25731 comm="syz.0.6419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1130.804227][   T30] audit: type=1326 audit(1760109738.098:859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25731 comm="syz.0.6419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1130.880880][   T30] audit: type=1326 audit(1760109738.098:860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25731 comm="syz.0.6419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1131.139055][ T5944] usb 7-1: New USB device found, idVendor=0458, idProduct=4018, bcdDevice= 0.00
[ 1131.792905][ T5944] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1131.807617][ T5944] usb 7-1: config 0 descriptor??
[ 1131.879939][T25740] lo speed is unknown, defaulting to 1000
[ 1132.087133][ T5944] usb 7-1: can't set config #0, error -71
[ 1132.908104][ T5944] usb 7-1: USB disconnect, device number 20
[ 1134.607025][ T8968] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[ 1134.796693][ T8968] usb 7-1: Using ep0 maxpacket: 8
[ 1134.896052][ T8968] usb 7-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1134.905436][ T8968] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1134.951054][ T8968] usb 7-1: config 0 descriptor??
[ 1135.169971][ T8968] asix 7-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[ 1135.496373][ T8968] asix 7-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[ 1135.592149][T25791] ptrace attach of "./syz-executor exec"[5827] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[ 1136.216694][ T8968] asix 7-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[ 1136.472153][ T8968] asix 7-1:0.0: probe with driver asix failed with error -71
[ 1136.520114][ T8968] usb 7-1: USB disconnect, device number 21
[ 1136.531657][T25795] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6437'.
[ 1139.182997][ T5944] usb 7-1: new full-speed USB device number 22 using dummy_hcd
[ 1139.958168][ T5944] usb 7-1: not running at top speed; connect to a high speed hub
[ 1140.037958][ T5944] usb 7-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[ 1140.086685][ T5944] usb 7-1: config 1 has no interface number 1
[ 1140.113235][ T5944] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1140.180770][ T5944] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1140.210764][ T5944] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1140.236894][ T5944] usb 7-1: Product: syz
[ 1140.247014][ T5944] usb 7-1: Manufacturer: syz
[ 1140.258609][ T5944] usb 7-1: SerialNumber: syz
[ 1140.443409][T25828] lo speed is unknown, defaulting to 1000
[ 1140.488638][T25811] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1140.497653][T25811] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1140.522663][ T5944] usb 7-1: 2:1: invalid format type 0x1002 is detected, processed as PCM
[ 1140.586428][ T5944] usb 7-1: failed to enable PITCH for EP 0x82
[ 1140.753362][ T5944] usb 7-1: USB disconnect, device number 22
[ 1142.268275][T25850] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6452'.
[ 1146.328222][T25879] netlink: 'syz.8.6462': attribute type 10 has an invalid length.
[ 1147.293218][T25879] bond0: (slave bridge_slave_1): Enslaving as an active interface with an up link
[ 1148.629951][T25901] tipc: Failed to remove unknown binding: 66,1,1/0:3117427175/3117427177
[ 1148.638817][T25901] tipc: Failed to remove unknown binding: 66,1,1/0:3117427175/3117427177
[ 1148.814536][T25902] lo speed is unknown, defaulting to 1000
[ 1149.543138][T25910] loop6: detected capacity change from 0 to 512
[ 1149.698128][T25910] netlink: 16 bytes leftover after parsing attributes in process `syz.6.6470'.
[ 1155.696332][T25975] loop6: detected capacity change from 0 to 512
[ 1155.709565][T25975] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[ 1155.760655][T25975] EXT4-fs (loop6): 1 truncate cleaned up
[ 1155.774255][T25975] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1156.009503][T21375] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1156.151297][T25985] lo speed is unknown, defaulting to 1000
[ 1158.267282][T26014] 9pnet_virtio: no channels available for device syz
[ 1158.730592][T26016] lo speed is unknown, defaulting to 1000
[ 1161.055865][T26049] netlink: 'syz.0.6513': attribute type 3 has an invalid length.
[ 1161.065342][T26049] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6513'.
[ 1169.240949][T26127] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6535'.
[ 1169.860252][T26134] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6537'.
[ 1171.595270][T26149] lo speed is unknown, defaulting to 1000
[ 1171.684304][T26157] fuse: Bad value for 'fd'
[ 1172.073618][T26156] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6544'.
[ 1172.102735][   T13] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1172.707271][T26156] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6544'.
[ 1172.751359][   T37] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1172.882886][   T37] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1172.902751][   T37] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1174.063925][T26178] netlink: 232 bytes leftover after parsing attributes in process `syz.3.6551'.
[ 1174.170795][T26176] netlink: 20 bytes leftover after parsing attributes in process `syz.7.6550'.
[ 1179.135566][T26220] ptrace attach of ""[26222] was attempted by "./syz-executor exec"[26220]
[ 1182.294185][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[ 1182.300686][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[ 1183.604571][T26267] orangefs_mount: mount request failed with -4
[ 1184.812654][T26273] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[ 1189.138063][T26308] loop6: detected capacity change from 0 to 256
[ 1189.159784][T26311] Invalid option length (4313) for dns_resolver key
[ 1189.414979][T26308] FAT-fs (loop6): IO charset macrgman not found
[ 1197.039963][T26386] o2cb: This node has not been configured.
[ 1197.046463][T26386] o2cb: Cluster check failed. Fix errors before retrying.
[ 1197.054469][T26386] (syz.6.6608,26386,0):user_dlm_register:674 ERROR: status = -22
[ 1197.062686][T26386] (syz.6.6608,26386,0):dlmfs_mkdir:438 ERROR: Error -22 could not register domain "bus"
[ 1198.500434][   T30] kauditd_printk_skb: 29 callbacks suppressed
[ 1198.500454][   T30] audit: type=1326 audit(1760109806.688:890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26393 comm="syz.0.6611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1199.356917][   T30] audit: type=1326 audit(1760109806.698:891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26393 comm="syz.0.6611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1199.456873][   T30] audit: type=1326 audit(1760109806.708:892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26393 comm="syz.0.6611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1199.623975][   T30] audit: type=1326 audit(1760109806.708:893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26393 comm="syz.0.6611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1200.756759][   T30] audit: type=1326 audit(1760109806.708:894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26393 comm="syz.0.6611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1201.884043][   T30] audit: type=1326 audit(1760109806.708:895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26393 comm="syz.0.6611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1201.916872][   T30] audit: type=1326 audit(1760109806.708:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26393 comm="syz.0.6611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1201.940085][   T30] audit: type=1326 audit(1760109806.708:897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26393 comm="syz.0.6611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1201.963391][   T30] audit: type=1326 audit(1760109807.368:898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26393 comm="syz.0.6611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1202.054895][   T30] audit: type=1326 audit(1760109807.368:899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26393 comm="syz.0.6611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f515eb8eec9 code=0x7ffc0000
[ 1204.451007][T26441] netlink: 96 bytes leftover after parsing attributes in process `syz.7.6623'.
[ 1211.611851][T26486] vlan2: entered allmulticast mode
[ 1211.675737][T26486] veth0_to_bond: entered allmulticast mode
[ 1212.030610][T26491] netlink: 'syz.8.6635': attribute type 1 has an invalid length.
[ 1212.315606][T26492] bond3 (unregistering): Released all slaves
[ 1212.341621][T26495] netlink: 28 bytes leftover after parsing attributes in process `syz.8.6635'.
[ 1215.011812][T26495] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1217.176278][T26525] netlink: 'syz.3.6646': attribute type 10 has an invalid length.
[ 1217.629840][T26536] ieee802154 phy0 wpan0: encryption failed: -22
[ 1217.958692][T26529] 8021q: adding VLAN 0 to HW filter on device bond5
[ 1218.186048][T26532] 8021q: adding VLAN 0 to HW filter on device macvlan2
[ 1218.254323][T26532] bond5: (slave macvlan2): Enslaving as a backup interface with a down link
[ 1219.055196][T26521] lo speed is unknown, defaulting to 1000
[ 1220.071586][T26556] netlink: 24 bytes leftover after parsing attributes in process `syz.0.6652'.
[ 1220.255717][T26556] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6652'.
[ 1221.710888][T26569] overlayfs: failed to clone upperpath
[ 1222.007967][T26580] netlink: 36 bytes leftover after parsing attributes in process `syz.0.6657'.
[ 1225.530609][T26601] xt_hashlimit: overflow, try lower: 3/0
[ 1226.118216][T26606] bridge4: entered promiscuous mode
[ 1226.123602][T26606] bridge4: entered allmulticast mode
[ 1228.545791][T26621] lo speed is unknown, defaulting to 1000
[ 1228.653140][T26633] lo speed is unknown, defaulting to 1000
[ 1233.891766][T26664] netdevsim netdevsim0: Direct firmware load for ./file0/file1 failed with error -2
[ 1233.906279][T26664] netdevsim netdevsim0: Falling back to sysfs fallback for: ./file0/file1
[ 1234.112259][T26666] netlink: 'syz.3.6681': attribute type 83 has an invalid length.
[ 1240.188201][T26711] tipc: Started in network mode
[ 1240.194496][T26711] tipc: Node identity 6, cluster identity 4711
[ 1240.214712][T26711] tipc: Node number set to 6
[ 1242.843240][T26738] (syz.3.6700,26738,0):dlmfs_mkdir:421 ERROR: invalid domain name for directory.
[ 1243.834893][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[ 1243.845375][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[ 1244.206391][   T30] kauditd_printk_skb: 30 callbacks suppressed
[ 1244.206416][   T30] audit: type=1800 audit(1760109851.808:930): pid=26755 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.6708" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=93761 res=0 errno=0
[ 1247.459973][T26791] fuse: Unknown parameter '0000000000000000000000000000000000000000'
[ 1251.125773][T26788] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1251.249685][T26788] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1255.360509][   T37] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1256.217004][   T13] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1256.226365][   T13] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1256.349167][   T13] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1258.048923][T26869] tipc: Started in network mode
[ 1258.300764][T26869] tipc: Node identity 4, cluster identity 4711
[ 1259.048451][T26869] tipc: Node number set to 4
[ 1268.934110][T26944] loop6: detected capacity change from 0 to 32768
[ 1269.944520][T26944] XFS (loop6): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1270.879001][T26944] XFS (loop6): Ending clean mount
[ 1270.897106][T26944] XFS (loop6): Quotacheck needed: Please wait.
[ 1270.990233][T26944] XFS (loop6): Quotacheck: Done.
[ 1271.007919][T26944] xfs: Unknown parameter '˙˙˙˙˙˙˙˙˙˙˙˙˙˙18446744073709551615˙˙˙˙š@­LqE:†‹ á艞Őt}˛0ü$‰'
[ 1272.303199][T21375] XFS (loop6): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1273.683941][T26980] Invalid ELF header magic: != ELF
[ 1293.061808][T27118] team0: Port device vxlan0 added
[ 1293.132244][   T61] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1293.169212][   T61] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1293.257300][   T61] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1293.272519][   T61] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1293.398215][T27131] netlink: 16 bytes leftover after parsing attributes in process `syz.8.6806'.
[ 1295.902534][T27154] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6811'.
[ 1296.167927][T27154] bridge4: port 1(ip6gretap1) entered blocking state
[ 1296.882892][T27154] bridge4: port 1(ip6gretap1) entered disabled state
[ 1296.986854][T27154] ip6gretap1: entered allmulticast mode
[ 1297.029592][T27154] ip6gretap1: entered promiscuous mode
[ 1299.098448][T27160] veth5: entered promiscuous mode
[ 1299.104598][T27160] bridge4: port 2(veth5) entered blocking state
[ 1299.154950][T27160] bridge4: port 2(veth5) entered disabled state
[ 1299.196989][T27160] veth5: entered allmulticast mode
[ 1299.321849][T27178] gtp0: entered promiscuous mode
[ 1299.352973][   T30] audit: type=1326 audit(1760109907.558:931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27177 comm="syz.3.6817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46ecd8eec9 code=0x7ffc0000
[ 1299.438140][T27182] syz_tun: entered allmulticast mode
[ 1299.563451][   T30] audit: type=1326 audit(1760109907.558:932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27177 comm="syz.3.6817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46ecd8eec9 code=0x7ffc0000
[ 1299.599180][T27180] syz_tun: left allmulticast mode
[ 1299.753982][   T30] audit: type=1326 audit(1760109907.558:933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27177 comm="syz.3.6817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=428 compat=0 ip=0x7f46ecd8eec9 code=0x7ffc0000
[ 1300.523574][   T30] audit: type=1326 audit(1760109907.558:934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27177 comm="syz.3.6817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46ecd8eec9 code=0x7ffc0000
[ 1300.553299][   T30] audit: type=1326 audit(1760109907.558:935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27177 comm="syz.3.6817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46ecd8eec9 code=0x7ffc0000
[ 1300.586847][T27192] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1300.608284][   T30] audit: type=1326 audit(1760109907.558:936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27177 comm="syz.3.6817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=442 compat=0 ip=0x7f46ecd8eec9 code=0x7ffc0000
[ 1300.636119][   T30] audit: type=1326 audit(1760109907.558:937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27177 comm="syz.3.6817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46ecd8eec9 code=0x7ffc0000
[ 1300.673248][   T30] audit: type=1326 audit(1760109907.558:938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27177 comm="syz.3.6817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46ecd8eec9 code=0x7ffc0000
[ 1301.018648][   T30] audit: type=1326 audit(1760109907.568:939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27177 comm="syz.3.6817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f46ecd8eec9 code=0x7ffc0000
[ 1301.045326][   T30] audit: type=1326 audit(1760109907.568:940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27177 comm="syz.3.6817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46ecd8eec9 code=0x7ffc0000
[ 1305.171192][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[ 1305.180066][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[ 1313.698464][T27273] netlink: 'syz.8.6838': attribute type 1 has an invalid length.
[ 1313.738655][T27276] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6839'.
[ 1313.870360][T27277] 8021q: adding VLAN 0 to HW filter on device bond5
[ 1313.884185][T27277] bond4: (slave bond5): making interface the new active one
[ 1313.893581][T27277] bond4: (slave bond5): Enslaving as an active interface with an up link
[ 1313.935237][T27273] bond4: (slave gretap1): Enslaving as a backup interface with an up link
[ 1313.958858][T27277] netlink: 28 bytes leftover after parsing attributes in process `syz.8.6838'.
[ 1313.982724][T27277] 8021q: adding VLAN 0 to HW filter on device bond4
[ 1318.780319][T27323] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6851'.
[ 1322.165186][T27356] ptrace attach of "./syz-executor exec"[5827] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[ 1323.564746][T27369] syzkaller0: entered promiscuous mode
[ 1323.791721][T27369] syzkaller0: entered allmulticast mode
[ 1326.502568][T27399] overlayfs: failed to clone upperpath
[ 1333.399627][T27445] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6880'.
[ 1333.479089][T27445] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6880'.
[ 1336.941397][T27468] loop6: detected capacity change from 0 to 1024
[ 1339.053626][   T13] hfsplus: b-tree write err: -5, ino 4
[ 1341.850559][T27500] netlink: 'syz.3.6895': attribute type 6 has an invalid length.
[ 1342.601323][T27500] netlink: 'syz.3.6895': attribute type 7 has an invalid length.
[ 1342.616934][T27500] netlink: 'syz.3.6895': attribute type 8 has an invalid length.
[ 1343.093269][T27517] netlink: 'syz.0.6899': attribute type 39 has an invalid length.
[ 1343.177823][T25647] usb 7-1: new high-speed USB device number 23 using dummy_hcd
[ 1349.020767][T27544] netlink: 'syz.3.6906': attribute type 1 has an invalid length.
[ 1350.039469][   T30] kauditd_printk_skb: 19 callbacks suppressed
[ 1350.039489][   T30] audit: type=1804 audit(1760109958.228:960): pid=27552 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.6907" name="bus" dev="ramfs" ino=96308 res=1 errno=0
[ 1350.356634][   T30] audit: type=1804 audit(1760109958.278:961): pid=27552 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.6907" name="bus" dev="ramfs" ino=96308 res=1 errno=0
[ 1350.457208][T27544] 8021q: adding VLAN 0 to HW filter on device bond6
[ 1351.134245][T27554] veth15: entered promiscuous mode
[ 1352.082048][T27554] bond6: (slave veth15): Enslaving as an active interface with a down link
[ 1355.602078][T27585] loop6: detected capacity change from 0 to 16
[ 1366.612367][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[ 1462.276526][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1462.283825][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P10735/1:b..l
[ 1462.293218][    C0] rcu: 	(detected by 0, t=10502 jiffies, g=154857, q=253 ncpus=2)
[ 1462.301200][    C0] task:syz-executor    state:R  running task     stack:21736 pid:10735 tgid:10735 ppid:10720  task_flags:0x400140 flags:0x00080003
[ 1462.318364][    C0] Call Trace:
[ 1462.321797][    C0]  <TASK>
[ 1462.324947][    C0]  __schedule+0x1798/0x4cc0
[ 1462.329521][    C0]  ? __pfx___schedule+0x10/0x10
[ 1462.334955][    C0]  ? is_bpf_text_address+0x292/0x2b0
[ 1462.340387][    C0]  ? preempt_schedule_irq+0xaa/0x150
[ 1462.345828][    C0]  preempt_schedule_irq+0xb5/0x150
[ 1462.351000][    C0]  ? __pfx_preempt_schedule_irq+0x10/0x10
[ 1462.356993][    C0]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[ 1462.362902][    C0]  irqentry_exit+0x6f/0x90
[ 1462.367463][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1462.373491][    C0] RIP: 0010:lock_release+0xa6/0x3e0
[ 1462.378762][    C0] Code: 25 08 50 91 92 41 83 bf 2c 0b 00 00 00 0f 85 1e 02 00 00 49 81 3e 40 03 55 93 0f 84 11 02 00 00 48 c7 44 24 20 00 00 00 00 9c <8f> 44 24 20 48 8b 5c 24 20 fa 48 c7 c7 67 de 7f 8d e8 c4 c8 ae 09
[ 1462.398518][    C0] RSP: 0018:ffffc9000e78f1a8 EFLAGS: 00000206
[ 1462.404647][    C0] RAX: 0000000000000000 RBX: ffffffff903a9b01 RCX: 396086f9b0a0ff00
[ 1462.412769][    C0] RDX: ffffc9000e78f301 RSI: ffffffff8bc079c0 RDI: ffffffff8bc07980
[ 1462.420914][    C0] RBP: dffffc0000000000 R08: ffffc9000e78f590 R09: 0000000000000000
[ 1462.429022][    C0] R10: ffffc9000e78f338 R11: fffff52001cf1e69 R12: ffffc9000e78f5a0
[ 1462.437040][    C0] R13: ffffffff8173cd25 R14: ffffffff8e13d2e0 R15: ffff88802bac1e40
[ 1462.445056][    C0]  ? unwind_next_frame+0xa5/0x2390
[ 1462.450333][    C0]  ? unwind_next_frame+0xa5/0x2390
[ 1462.455506][    C0]  ? deref_stack_reg+0x19f/0x230
[ 1462.460507][    C0]  ? unwind_next_frame+0xa5/0x2390
[ 1462.465799][    C0]  unwind_next_frame+0x19a9/0x2390
[ 1462.471041][    C0]  ? unwind_next_frame+0xa5/0x2390
[ 1462.476218][    C0]  ? __reset_page_owner+0x71/0x1f0
[ 1462.481399][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1462.487609][    C0]  arch_stack_walk+0x11c/0x150
[ 1462.492478][    C0]  ? free_unref_folios+0xdb3/0x14f0
[ 1462.497749][    C0]  stack_trace_save+0x9c/0xe0
[ 1462.502478][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[ 1462.508074][    C0]  save_stack+0xf5/0x1f0
[ 1462.512420][    C0]  ? __pfx_save_stack+0x10/0x10
[ 1462.517382][    C0]  ? page_ext_put+0x97/0xc0
[ 1462.521931][    C0]  __reset_page_owner+0x71/0x1f0
[ 1462.527002][    C0]  free_unref_folios+0xdb3/0x14f0
[ 1462.532078][    C0]  ? folio_unqueue_deferred_split+0x93/0x230
[ 1462.538136][    C0]  folios_put_refs+0x584/0x670
[ 1462.542962][    C0]  ? __pfx_folios_put_refs+0x10/0x10
[ 1462.548361][    C0]  ? folio_batch_remove_exceptionals+0x18c/0x1f0
[ 1462.554849][    C0]  shmem_undo_range+0x49e/0x14b0
[ 1462.559866][    C0]  ? __pfx_shmem_undo_range+0x10/0x10
[ 1462.565426][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[ 1462.570984][    C0]  shmem_evict_inode+0x272/0xa70
[ 1462.576001][    C0]  ? inode_wait_for_writeback+0xf9/0x290
[ 1462.581682][    C0]  ? __pfx_shmem_evict_inode+0x10/0x10
[ 1462.587187][    C0]  ? __pfx_inode_wait_for_writeback+0x10/0x10
[ 1462.593318][    C0]  ? do_raw_spin_unlock+0x122/0x240
[ 1462.598567][    C0]  ? __pfx_shmem_evict_inode+0x10/0x10
[ 1462.604062][    C0]  evict+0x504/0x9c0
[ 1462.608012][    C0]  ? __pfx_evict+0x10/0x10
[ 1462.612463][    C0]  ? do_raw_spin_unlock+0x122/0x240
[ 1462.617704][    C0]  ? _raw_spin_unlock+0x28/0x50
[ 1462.622599][    C0]  ? iput+0x946/0xc50
[ 1462.626995][    C0]  do_unlinkat+0x39f/0x560
[ 1462.631553][    C0]  ? __pfx_do_unlinkat+0x10/0x10
[ 1462.636528][    C0]  ? strncpy_from_user+0x150/0x290
[ 1462.641773][    C0]  ? getname_flags+0x1e5/0x540
[ 1462.646673][    C0]  __x64_sys_unlink+0x47/0x50
[ 1462.651386][    C0]  do_syscall_64+0xfa/0xfa0
[ 1462.656557][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1462.663926][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1462.671233][    C0]  ? clear_bhb_loop+0x60/0xb0
[ 1462.677391][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1462.683336][    C0] RIP: 0033:0x7f46ecd8e477
[ 1462.687796][    C0] RSP: 002b:00007ffd89136fc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000057
[ 1462.696261][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f46ecd8e477
[ 1462.705559][    C0] RDX: 00007ffd89136ff0 RSI: 00007ffd89137080 RDI: 00007ffd89137080
[ 1462.713871][    C0] RBP: 00007ffd89137080 R08: 0000000000000000 R09: 0000000000000000
[ 1462.722074][    C0] R10: 0000000000000100 R11: 0000000000000206 R12: 00007ffd89138110
[ 1462.730371][    C0] R13: 00007f46ece11d7d R14: 000000000014a3df R15: 00007ffd89138150
[ 1462.738596][    C0]  </TASK>
[ 1462.741779][    C0] rcu: rcu_preempt kthread starved for 10095 jiffies! g154857 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[ 1462.753208][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 1462.763754][    C0] rcu: RCU grace-period kthread stack dump:
[ 1462.769707][    C0] task:rcu_preempt     state:R  running task     stack:27224 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00080000
[ 1462.783259][    C0] Call Trace:
[ 1462.786784][    C0]  <TASK>
[ 1462.789842][    C0]  __schedule+0x1798/0x4cc0
[ 1462.794513][    C0]  ? __pfx___schedule+0x10/0x10
[ 1462.799421][    C0]  ? schedule+0x91/0x360
[ 1462.803791][    C0]  schedule+0x165/0x360
[ 1462.807985][    C0]  schedule_timeout+0x12b/0x270
[ 1462.813136][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[ 1462.818726][    C0]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 1462.824759][    C0]  ? __pfx_process_timeout+0x10/0x10
[ 1462.830374][    C0]  ? prepare_to_swait_event+0x341/0x380
[ 1462.836064][    C0]  rcu_gp_fqs_loop+0x301/0x1540
[ 1462.840980][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1462.846440][    C0]  ? __pfx_rcu_watching_snap_recheck+0x10/0x10
[ 1462.852635][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[ 1462.857965][    C0]  ? _raw_spin_unlock_irq+0x2e/0x50
[ 1462.863212][    C0]  ? finish_swait+0xcd/0x1f0
[ 1462.867847][    C0]  rcu_gp_kthread+0x99/0x390
[ 1462.872489][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1462.877912][    C0]  ? __kthread_parkme+0x7b/0x200
[ 1462.882903][    C0]  ? __kthread_parkme+0x1a1/0x200
[ 1462.888249][    C0]  kthread+0x711/0x8a0
[ 1462.892362][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1462.897610][    C0]  ? __pfx_kthread+0x10/0x10
[ 1462.902346][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1462.908196][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1462.913692][    C0]  ? __pfx_kthread+0x10/0x10
[ 1462.918320][    C0]  ret_from_fork+0x4bc/0x870
[ 1462.922961][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[ 1462.928129][    C0]  ? __switch_to_asm+0x39/0x70
[ 1462.932962][    C0]  ? __switch_to_asm+0x33/0x70
[ 1462.937784][    C0]  ? __pfx_kthread+0x10/0x10
[ 1462.942422][    C0]  ret_from_fork_asm+0x1a/0x30
[ 1462.947269][    C0]  </TASK>
[ 1462.950328][    C0] rcu: Stack dump where RCU GP kthread last ran:
[ 1462.956683][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted syzkaller #0 PREEMPT(full) 
[ 1462.965675][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1462.975819][    C0] RIP: 0010:pv_native_safe_halt+0x13/0x20
[ 1462.981591][    C0] Code: cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 33 e1 1b 00 f3 0f 1e fa fb f4 <e9> c8 e6 02 00 cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90
[ 1463.001345][    C0] RSP: 0018:ffffffff8de07d80 EFLAGS: 000002c6
[ 1463.007481][    C0] RAX: 5eb34e7852d30500 RBX: ffffffff8196bc07 RCX: 5eb34e7852d30500
[ 1463.016213][    C0] RDX: 0000000000000001 RSI: ffffffff8d7e9b20 RDI: ffffffff8bc079e0
[ 1463.024924][    C0] RBP: ffffffff8de07ea8 R08: ffff8880b8632fdb R09: 1ffff110170c65fb
[ 1463.033387][    C0] R10: dffffc0000000000 R11: ffffed10170c65fc R12: ffffffff8f9e1870
[ 1463.041606][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 1ffffffff1bd2a40
[ 1463.049892][    C0] FS:  0000000000000000(0000) GS:ffff888125d0b000(0000) knlGS:0000000000000000
[ 1463.059493][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1463.067003][    C0] CR2: 0000001b32a18ff8 CR3: 000000002e0fe000 CR4: 00000000003526f0
[ 1463.075290][    C0] Call Trace:
[ 1463.078675][    C0]  <TASK>
[ 1463.096211][    C0]  default_idle+0x13/0x20
[ 1463.100632][    C0]  default_idle_call+0x73/0xb0
[ 1463.105471][    C0]  do_idle+0x1e7/0x510
[ 1463.109622][    C0]  ? __pfx_do_idle+0x10/0x10
[ 1463.114318][    C0]  cpu_startup_entry+0x44/0x60
[ 1463.119450][    C0]  rest_init+0x2de/0x300
[ 1463.123880][    C0]  start_kernel+0x3ae/0x410
[ 1463.128580][    C0]  x86_64_start_reservations+0x24/0x30
[ 1463.134511][    C0]  x86_64_start_kernel+0x143/0x1c0
[ 1463.139789][    C0]  common_startup_64+0x13e/0x147
[ 1463.145061][    C0]  </TASK>
[ 1463.321581][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[ 1463.332268][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[ 1463.338757][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
SYZFAIL: failed to send rpc
fd=3 want=48800 sent=0 n=-1 (errno 32: Broken pipe)
[ 1464.998011][T15881] syz_tun (unregistering): left allmulticast mode
[ 1465.038337][T15881] bond1: (slave syz_tun): Releasing active interface
[ 1465.800080][  T993] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1465.826911][  T993] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1466.019124][  T993] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1466.047431][  T993] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1466.184973][  T993] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1466.216560][  T993] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1466.350948][  T993] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1466.364653][  T993] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1466.600120][  T993] veth13: left allmulticast mode
[ 1466.605334][  T993] veth13: left promiscuous mode
[ 1466.611464][  T993] bridge1: port 1(veth13) entered disabled state
[ 1467.194230][  T993] tipc: Disabling bearer <eth:syzkaller0>
[ 1467.480248][  T993] bond4 (unregistering): (slave bridge3): Releasing backup interface
[ 1467.494216][  T993] bridge3 (unregistering): left promiscuous mode
[ 1467.500814][  T993] bridge3 (unregistering): left allmulticast mode
[ 1467.595312][  T993] bond1 (unregistering): Released all slaves
[ 1467.931779][  T993] bond2 (unregistering): (slave veth9): Releasing active interface
[ 1467.942134][  T993] bond2 (unregistering): Released all slaves
[ 1467.957862][  T993] bond3 (unregistering): Released all slaves
[ 1467.993506][  T993] bond5 (unregistering): (slave macvlan2): Releasing backup interface
[ 1468.012273][  T993] bond0 (unregistering): Released all slaves
[ 1468.354310][  T993] bond4 (unregistering): Released all slaves
[ 1468.681239][  T993] bond5 (unregistering): Released all slaves
[ 1469.000878][  T993] bond6 (unregistering): (slave veth15): Releasing active interface
[ 1469.012506][  T993] bond6 (unregistering): Released all slaves
[ 1469.242684][  T993] tipc: Left network mode
[ 1469.660303][  T993] hsr_slave_0: left promiscuous mode
[ 1469.669093][  T993] hsr_slave_1: left promiscuous mode
[ 1469.677137][  T993] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1469.684584][  T993] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1469.698145][  T993] veth1_macvtap: left promiscuous mode
[ 1469.703721][  T993] veth0_macvtap: left promiscuous mode
[ 1469.709884][  T993] veth1_vlan: left promiscuous mode
[ 1469.720476][  T993] veth0_vlan: left promiscuous mode
[ 1470.041129][  T993] pim6reg (unregistering): left allmulticast mode
[ 1471.727673][  T993] IPVS: stop unused estimator thread 0...