last executing test programs:

6.435326894s ago: executing program 5 (id=502):
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x404, &(0x7f00000005c0)={[{@discard}, {@bh}, {@nomblk_io_submit}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000002bc0)={[{@noblock_validity}, {@noblock_validity}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
chdir(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(0xffffffffffffffff, 0x0, 0x10001)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10)
r4 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000840)="89000000120081ae08060cdc030000fe7f03c00e000000000001ffca1b1f0000000024c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00150c00014003080c00bdad446b31007a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947e", 0x75}, {&(0x7f0000000140)="11d6cb557c8496a2fe7a81f38210bfa9b70ee09c", 0x14}], 0x2}, 0x4000000)

5.497924387s ago: executing program 0 (id=505):
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000600)={@cgroup, 0xffffffffffffffff, 0x28}, 0x20)
r0 = io_uring_setup(0x743c, &(0x7f0000000840)={0x0, 0x1c5d, 0x800, 0x1, 0x153})
io_uring_register$IORING_REGISTER_BUFFERS2(r0, 0xf, &(0x7f0000002400)={0x3, 0x0, 0x0, &(0x7f0000002340)=[{0x0}, {0x0}, {0x0}], 0x0}, 0x20)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f00000026c0)={0x1, 0x0, 0x0, 0x0}, 0x20)

5.027691658s ago: executing program 0 (id=509):
io_uring_setup(0x1af8, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_open_procfs$userns(0x0, &(0x7f0000000000))
geteuid()
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e20, @multicast2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f00000009c0)={0xfffffff8, {{0xa, 0x4e21, 0x800, @private2={0xfc, 0x2, '\x00', 0x1}, 0xffff}}, 0x0, 0x8, [{{0xa, 0x4e23, 0x4, @mcast2, 0xa}}, {{0xa, 0x4e25, 0x1, @private2={0xfc, 0x2, '\x00', 0x1}, 0x9}}, {{0xa, 0x4e1f, 0x6, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x5}}, {{0xa, 0x4e23, 0x3, @remote, 0x7fffffff}}, {{0xa, 0x4e23, 0x1, @private1, 0x5}}, {{0xa, 0x4e22, 0x8001, @dev={0xfe, 0x80, '\x00', 0x38}, 0x7ff}}, {{0xa, 0x4e21, 0x9, @mcast1, 0x4}}, {{0xa, 0x4e20, 0x0, @local, 0xffffffff}}]}, 0x490)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0xc2f00, 0x4d, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

3.884297787s ago: executing program 5 (id=512):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_MEDIA_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYBLOB="090725bd6ff4fdffffff0b"], 0x14}}, 0x0)

3.842242191s ago: executing program 3 (id=513):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x21, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
bind$bt_hci(r2, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001200)=ANY=[@ANYBLOB="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"], 0x218}, 0x1, 0x0, 0x0, 0x40858}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x24040880)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7ffff000)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000340)=ANY=[], 0x0, 0x8, 0x0, 0x0, 0x0, 0x51, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xd8f}, 0x94)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
uname(0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000060000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setrlimit(0x9, &(0x7f0000000000))
pipe(&(0x7f0000000040)={<r5=>0xffffffffffffffff})
uname(&(0x7f0000000200)=""/48)
io_setup(0x3ff, &(0x7f0000000500)=<r6=>0x0)
io_submit(r6, 0x2, &(0x7f0000000800)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, r5, 0x0}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x1, r5, 0x0, 0x0, 0x2, 0x0, 0x0, r5}])
ioctl$PIO_FONTX(r5, 0x4b6c, &(0x7f0000000180)={0xd8, 0x2, &(0x7f0000000b00)="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"})
io_setup(0x2004, &(0x7f0000000680))

3.584883664s ago: executing program 5 (id=515):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
acct(0x0)

3.432006564s ago: executing program 0 (id=517):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x13, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000040000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f00000003c0)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
rt_sigpending(0x0, 0x0)

3.263066635s ago: executing program 5 (id=518):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b70400000000000085"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000040), 0x208e24b)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count', 0xa00, 0xb)
r3 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x2a82)
ioctl$LOOP_CONFIGURE(r3, 0x4c0a, &(0x7f0000000140)={r2, 0x800, {0x2a00, 0x80010000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "2809e8dbe108598927875397bab22d0000b420a9c81f40f05f819e01177d3d458dac00000000000000000000003b00000000000000000200", "90be8b1c5512406c7f00", [0x4, 0x40000000000000]}})

2.382131385s ago: executing program 4 (id=519):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r1, 0xc0f85403, 0x0)

2.219817855s ago: executing program 0 (id=520):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000001000000000000000000018110000", @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000400), 0x101201, 0x0)
ioctl$IMADDTIMER(r2, 0x80044940, &(0x7f0000000600)=0x14)
ioctl$IMADDTIMER(r2, 0x80044940, &(0x7f0000000080)=0x14)
r3 = socket$netlink(0x10, 0x3, 0x0)
writev(r3, &(0x7f00000003c0)=[{&(0x7f0000000240)="3900000013000318680907070000000f0000ff3f04000000170a001700000000040037000f00030001332564aaee7b1d58b9a64411f6bbf44d", 0x39}], 0x1)
close(r2)

2.219164022s ago: executing program 3 (id=521):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = syz_io_uring_setup(0x131, &(0x7f0000000340)={0x0, 0x5cb1, 0x2, 0x3, 0xfffffffd}, &(0x7f0000000140)=<r4=>0x0, &(0x7f0000000280))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0x200, 0x0, 0x4)
io_uring_enter(r3, 0x1e76, 0xf728, 0x5, 0x0, 0x0)

1.969293454s ago: executing program 2 (id=523):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0x2}, 0x18)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000180)='./file1\x00', 0x100c085, &(0x7f0000000d00)=ANY=[@ANYRES8=0x0, @ANYBLOB="c0da5b74006e9c47add458a1bd748b7ffa5628dc52f84873cbe6a43cfd29e4198255a0610d383b0e46b2b6457282a9f3caef22979e54c145e6a0ce2850a890bdae263cb1af7c4e1fa3628453c70aae32270b0042f1532cf08030eccdca96e2c97aae42cf5d9ec5f0afa4fcc53c8f9289677038d09ae2b1bd2271e0a76e6324df3a2b01a9ed0277d7e8d6f7d463ae62692faa55bdb43dc2bea18eea4a635951fd0a220a835fa24d0700c8f8c2495bbd97d5cd93ed0ec29c45d1d7638b2cae5ed3bec0d2f0415ddff7884bb34ab0cb1598e9c7b92a29005e4090ede480b3412f5c33da5e7c8672bda19fd3d989f8"], 0x4, 0x7f4, &(0x7f0000000e40)="$eJzs3U9oHOfZAPBnFMl2FD5/Id9HPmMcZ2znA5s6ymqVKBU5pJvVSJ5ktSt2V8WmlMTEcjCWk5AQ0pjS1JekLS2lpx7TXEMuubUUWuih7anQHHrpoRDIpSUtLZSWUnDZ2V1r9Wcl/5HlNP39RPadfeeZd953drLPznpnJgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACASKqzpdJkErW8vnQ6Ha4622wsbDG/395P1xRbrDci6fwX+/bFgW7Vgf9dnX1/5+FoHOo+OxT7OsW+uHzP/fc+8T+jI/3lt+jQzToyfNbY4JMk4uudTl08u7Ky/Mpt6Mgu+taPexP7rnuRv1/tPM5n9bzVyBcq81matxrpzPR06ZFTc610Lq9lrTOtdraQVptZpd1opserJ9LJmZmpNJs401iqz89Walm/8vGHy6XSdPr0xGJWabYa9UeenmhVT+W1Wl6fL2LKpdejE/N4Z0d8Jm+n7ayykKbnL6wsT23X1U7Q5JqavWt2nEMP3fvxax/95cJyZ4cc1kjS2zHLk5Pl8uT0YzOPPV4qjZZL5bUVpXXiWkSMRHQibstOy511zyZ1o709ZsOMiKv/vTNv3nCLRnr5P2qRRz2W4nSkkcZI8bj6NxbVmI1mNGKh8/w3Y+vmb8j////IH3+11XoH838/yx9YnX0wivx/uPvs8LD8v6EXO/A3OqzV+vvd3gzWvRpvxOW4GGdjJVZiOV65mTXuWd/qbfwb2dn25iOLeuTRikbksRCVoibt1aQxE9MxHaV4Nk7FXLQijbnIoxZZtOJMtKIdWbFHVaMZWVSiHY1oRhrHoxonIo3JmImZmIo0spiIM9GIpajHfMxGpWjlfFwotvvUun7d/7XnfvTCrz9+pzN9LWhyi4EknQ9znaA/bxG0Id3fQP7vRIz09u5dyUnskn03+Kru0Ds33LqrRf4fvdPdAAAAAG6jpPj2PYmIsXigmJrLa9mX7nS3AAAAgB1U/K75UKcY60w9EEnn+L+0SeSHu943AAAAYGckxTl2SUSMx4Pdqf7pUpt9CQAAAAD8Gyr+/f9wpxiPeLOocPwPAAAAnzHfGHaN/Y/29K6x21rcm/zkT9FsjiVXFk8/lFyqdOIql+7qLtcrvnitxfbcwWR/r5GimB69fE8SEaPV7FDSv/rlP/d2y0+Kx4OrFyAcdq3/ZJsOxNYdKJ7Ft+NIN+bIuW55rj+nu5bxubyWTVQbtScmk96XI+3XXrzwlSiG/836wv4kzl9YWZ54/qWVc0VfrnRauXKpd3n4pL9URPeEii36crW3BeKBzUc8VpyI0VvveHe9pcHx964mO7L1+JPBdb4VR7sxR8e75fja8e/rrHNy4onJqFT2j7Sz0+3Xrg6MvteLydWR7+2PNrmBV+GtONaNOXb8WLfYpBflNb14cWMvyoPb//q2xXX34p0jb57+688bSTa1XS+mbrEXAHfK+eKqP6tZ6O4iC/3jalcnoa3Lu3f3l7yRd7nzq58y+ssP5LrR2JDd05vJ7m/F8W7M8e7nidGDm+SV0ibv6C9fePkXvXf0R9/7/g++fPiXH6zL6zfQi/fiRDemV8R9PxuSYztj/s66rPpuZ4l3h663VSsnr++dGku6Nx+Kyw9fuHT2heUXll8sl6emS4+WSo+VY6z4qNArhvRU5gH4z7bdPXY++Oq10GF34Uke3eao+r5rPymYiOfjpViJc3GyONsgIh7cvNXxgZ8hnNzmqHV84A4vJ7c5tlyNLa+P3XssiSGxUwNb7P++VxR/u00vCADsgqPb5OEk7u3Of/2/ekusi7grSU5uc9y9Npef6N44t390HMNz+aDf98rP3/YtAgCffVnzk2S8/XbSbOaLz07OzExW2qeytNmoPpM289n5LM3r7axZPVWpz2fpYrPRblT7Xx3PZq20tbS42Gi207lGM11stPLTxZ3f096t31vZQqXezqutxVpWaWVptVFvV6rtdDZvVdPFpadqeetU1iwWbi1m1Xwur1baeaOethpLzWo2kaatLBsIzGezejufy7OxNK+ni818odK8EhG1pYUsnc1a1Wa+2G50G+yvK6/PNZoLRbMTG4f/h93e3gDwafDqG5cvnl1ZWX7l5iZ+ez3Bd3qMAMBasjQAAAAAAAAAAAAAAHz6bTxdr1N7QycCjsVNnz746t64lbMPP3sTn3u/+7LsRIO30s7da17TPb2d5c5vnxueeO7JJy+u1iSjg5v3qTcPnPpdFv3RbdHO5v+nbHaq69v7I/b88Lvdmi8MCU5Gd3ikH0bETSx+NdkiZvffiwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgO/8KAAD//wifUTs=")

1.874748938s ago: executing program 4 (id=524):
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000140), 0x80000, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
pipe(&(0x7f0000000000))
socket$inet6(0xa, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x8042, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0xa0b41, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f00000002c0)=ANY=[@ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000001, 0x12, r1, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[], 0x48)
ioctl$TIOCL_GETKMSGREDIRECT(r2, 0x541c, &(0x7f0000000000))

1.822490828s ago: executing program 3 (id=525):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000900)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}, @NFT_MSG_NEWSETELEM={0x48, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x1c, 0x3, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}, @NFTA_SET_ELEM_KEY={0x4}]}, {0x4}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xac}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

1.635975573s ago: executing program 1 (id=527):
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000dc0)={0x0, 0x4000, 0x0, 0x865d, 0xfd, "ffff00"})
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
io_setup(0x7, &(0x7f0000000000)=<r1=>0x0)
r2 = eventfd(0x10)
io_submit(r1, 0x1, &(0x7f00000006c0)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4, r0, &(0x7f00000003c0)='z', 0x1, 0xcead, 0x0, 0x5, r2}])
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

1.607336863s ago: executing program 0 (id=528):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_MEDIA_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYBLOB="090725bd6ff4fdffffff0b"], 0x14}}, 0x0)

1.595354775s ago: executing program 3 (id=529):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000100)={0x0, r0}, 0x8)
listen(0xffffffffffffffff, 0x5)
ioctl$sock_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, 0x0)

1.511921669s ago: executing program 4 (id=530):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
acct(0x0)

1.511345746s ago: executing program 2 (id=531):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
sendmsg$netlink(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)=ANY=[@ANYBLOB="140100002800010004000000fcdbdf250401f2800c00180008ac0f0000000000140001"], 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)

1.41875784s ago: executing program 5 (id=532):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$tipc(0x1e, 0x2, 0x0)
sendmsg$tipc(r1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
syz_usb_connect$cdc_ecm(0x0, 0x4d, 0x0, 0x0)
connect$tipc(r1, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'vcan0\x00'})
r2 = socket(0x1, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080))
r3 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x50}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000"], 0x48)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'veth1_to_hsr\x00', <r4=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r4}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)

1.406632005s ago: executing program 3 (id=533):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="ec0000002100390d000000000000000000000000000000000000000000000000e000000200000000000000000000000000000000000000000000a00000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000009c001100"], 0xec}}, 0x0)

1.381924546s ago: executing program 1 (id=534):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x70bd27, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x93, 0xfc}, [{0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0xfffffffc, 0x0, 0x0, 0xfffffffd}, {0x1, 0x0, 0x0, 0x4000000, 0x7, 0x80000}, {0x8, 0x5, 0x0, 0xfffffffc, 0x1ee}, {}, {0x0, 0x0, 0x0, 0x0, 0x6}, {0x0, 0xc3}, {0x0, 0x5}, {0x5}, {}, {0x0, 0x10}, {0x0, 0x404, 0x0, 0x8000000}, {0x0, 0xffffffff, 0x0, 0x0, 0xfffffffd}, {0x2, 0x0, 0x400000, 0x0, 0x6}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8000000}, {}, {0x0, 0x0, 0x0, 0x0, 0x20}, {0xfffffffd}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0x2000}, {}, {0x0, 0x7, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x2, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x5, 0xfffffffd}, {0xffffffff}, {}, {0x2, 0x0, 0xc, 0x0, 0x0, 0x6}, {0xffffffff}, {0x0, 0x6}, {}, {}, {0xffffffff, 0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {0x0, 0x9, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x1, 0x3}, {0x80, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x8}, {0x0, 0x0, 0x0, 0x0, 0x9}, {0x0, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x9}, {}, {0x0, 0x15, 0x0, 0x48510}, {0x0, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, {}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x0, 0xd, 0xffffffff}, {}, {}, {0x0, 0xfffefffd, 0x0, 0xffffffff}, {0x9, 0x0, 0x0, 0x1}, {}, {0x5}, {}, {0x0, 0xfffffffc, 0x0, 0x3ff, 0x40000000}, {0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0x7, 0x0, 0x0, 0x0, 0x400000}, {0x4, 0x0, 0x200}, {}, {0x0, 0x0, 0x0, 0x0, 0xffffffff}, {0x5}, {}, {0x0, 0x0, 0x0, 0x4000, 0x0, 0xfb4}, {}, {0x0, 0x101, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x4, 0x9}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {}, {0x800000, 0x0, 0x0, 0x0, 0x0, 0x56}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffefffff}, {0x0, 0xfffffffe}, {0x0, 0x0, 0x6, 0x0, 0x4}, {}, {}, {0x0, 0xfffffffd}, {0x6}, {0x7f, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x2, 0x0, 0x20000000}, {0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x292}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, {0x0, 0x5, 0x0, 0x0, 0x0, 0xbe2}, {0x0, 0x5}, {0x0, 0x0, 0x0, 0x0, 0x80}, {0x10000000, 0x0, 0x0, 0x4, 0x4}, {0x0, 0x2e9c, 0x0, 0x0, 0x7}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x3}, {0x0, 0x0, 0x0, 0xb, 0x0, 0x7fffffff}, {}, {0x0, 0x0, 0x0, 0x8, 0x0, 0x6}, {}, {}, {}, {0xfffffffe, 0x0, 0x0, 0x0, 0x8000, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x0, 0x8000}, {0x0, 0x0, 0x10000, 0x0, 0xfffffffc, 0x2}, {0x0, 0x80000000, 0x0, 0x7dff800}], [{}, {}, {}, {}, {}, {0x3}, {}, {0x0, 0x1}, {}, {}, {}, {0x1}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x4}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x1, 0x1}, {}, {}, {}, {0x0, 0x1}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x1}, {}, {}, {}, {}, {}, {0x3}, {0x0, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x5}, {}, {}, {0x7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x1}, {}, {0x5}, {}, {0x3}, {}, {}, {}, {0x4}, {}, {0x2, 0x1}, {}, {}, {}, {0x3}, {}, {}, {}, {0x4}, {0x2}, {}, {0x5}, {0x4}, {0x3}, {}, {}, {0x0, 0x1}, {0x2}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)

1.35587203s ago: executing program 0 (id=535):
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
syz_emit_ethernet(0x7a, 0x0, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=@bridge_getlink={0x20, 0x12, 0x800, 0x1c, 0x0, {0x7, 0x0, 0x0, 0x0, 0x8000, 0x8400}}, 0x20}, 0x1, 0x0, 0x0, 0xc084}, 0x44040)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x109801, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000000000)=0x74000000)
write$dsp(r1, &(0x7f0000002000)='`', 0x88020)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f0000000040), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$IOC_WATCH_QUEUE_SET_FILTER(0xffffffffffffffff, 0x5761, &(0x7f00000009c0)=ANY=[])
r3 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="18060000000000008f5b1f3dfeec000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7070000000000009500000000000000"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x28000, 0x102)
r5 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
fchdir(r5)
timer_create(0x8, &(0x7f0000000340)={0x0, 0x39, 0x1, @thr={0x0, 0x0}}, &(0x7f0000000380)=<r6=>0x0)
timer_gettime(r6, &(0x7f0000000000)={{}, {<r7=>0x0}})
r8 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout_data(r8, 0x107, 0x16, &(0x7f0000000100)={0x3, &(0x7f0000000180)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x50}, {0x6}]}, 0x10)
syz_emit_ethernet(0x36, &(0x7f00000003c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa54200113ffffffffffff08004500002800000000000000000004cd88ef75b39e93c87200020000000000e454632a4805134e7f0d64e512bc7dd7b022f499a990d8f34cbb58", @ANYRESOCT=r7, @ANYRESDEC=r4, @ANYRES64=r2], 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(0xffffffffffffffff, 0x40085112, &(0x7f0000000d80)=@e={0xff, 0x9, 0x1, 0x0, @SEQ_CONTROLLER=0xff, 0x51})

1.227866042s ago: executing program 4 (id=536):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="b702000000000000bfa30000000000000703000000feffff7a0af0fff8ffff1971a4f0ff00000000b7060000080000001e6400000000000045040400010000001704000001000a00b7040000000100006a0af2fe00000000850000001a000000b7000000000000009500000000000000455781a5feee5e1ce784909b849d5550adf200000000000000b61d69f2ffdaa10350e11cb97c8ad51bcda0c4ee6d9674c77404ceb9971e43405d621ffbc9a4fd39b0631f6dde53a9a53608c10556e5734eb84049761471ce540c772e2d9f8004e26f7fcc059c062234d5595f6dba87b81d0806fb0289ce67a66afd9ac3d09e29a9d542ca9d85a5c9c88474895d679838def0a83a733dc6a39b63a5ed69d32394c53361d7480884bd8048a967d9b912ef9f1dcc4ff8546fee53f5b2e7b91c61ced1ebad000000000000e8122a793c080a882add4e1179bd4a44f231b6d753a7be428ba953df4aece69311687f4122073a236c3ad198e3f3a532efa04137d452ff47d2638da3261c8362bb7c7824be6195a66d2e17e122040e11e3bd4a69fc6e8d9f7043e09b9e10dc7777bfae5884e4ba1e9cc4a2bbe99e30816127f46a1aae33d4d63d716c0975e1ce4a655362e7062ff6ab3934555c0184021b829472adefa06d3482c7b2711b98eabdca89b77efd13e6dba4a431ce47910000118093b6cabaa17a57727474e1785ee234835088445aa4a9b677d3d342640e328504aea02a2d727e62b7f097a02dbf8fe1d704765de7482040b2fc3000000000000000008947baeaaf954aff687deaa2f80492461d273ee26d8115cbca081a14cba24788779291745083fccdddc90d7af35c528df8000000d8d79c79ddca066da478c197d4a550470557bc99cca336bd88cd28a5ee651627e3a6fbf6ea53b95ddb64c69c7d8d2f4baddc239828760459564124bad68209d2a1d16ad085886c017679cfcda8b1e152ac1e2bcc5ede5b5687aa418abfa29acd7339e73b2cd185c9eb5fb34fccd20ffa155b16c0c309ed6f6663677df37de0ec0d0f54"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=ANY=[@ANYBLOB="7000000010000304000080000000000000007400", @ANYRES32=r2, @ANYBLOB="0000000003120100500012800b000100627269646765000040000280080005000100000006002700000000000800010015000800050025000000000008000400000000000c002e00"], 0x70}, 0x1, 0x0, 0x0, 0x800}, 0x40)

1.153235436s ago: executing program 2 (id=537):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='mpol=interleave,mpol=local'])
open$dir(&(0x7f0000000000)='./file0/file0\x00', 0x101042, 0x1)

1.093602118s ago: executing program 3 (id=538):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000780)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x1, 0x32}, 0x9c)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)='\x00', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000b80)="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", 0x390}, {&(0x7f00000009c0)="f6c90cdedc37cdb39eae133fb46bb0b986be85321a17fc6e8ea85f018f6e81d55fa08f6896", 0x25}], 0x2}}], 0x2, 0x4048884)

1.04407113s ago: executing program 1 (id=539):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="c0020000100063d10000000000000000fe8000000000000000000000000000bbfe8000000000000000000000000000aa0000000000000000000000003a000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc01000000000000000000000000000000000000330000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000b000000000000000000000000000000ffffffffffffffff000000000000000003000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001600000000020000000000000000000000bf010100636d6163286165"], 0x2c0}, 0x1, 0x0, 0x0, 0x40000}, 0x4004)

761.419165ms ago: executing program 4 (id=540):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, r0, {0x2, 0x0, @multicast1}, 0xa, 0x0, 0xfffd}}, 0x26)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmmsg$inet(r1, &(0x7f0000005f80)=[{{0x0, 0x0, &(0x7f0000005dc0)=[{&(0x7f00000010c0)="7d5107673289eeae3f806c5c62db497a0299399ab6101c3b", 0x1}], 0x1}}], 0x4000000000001ce, 0x8040)

723.397306ms ago: executing program 2 (id=541):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000001000000000000000000018110000", @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000400), 0x101201, 0x0)
ioctl$IMADDTIMER(r2, 0x80044940, &(0x7f0000000600)=0x14)
ioctl$IMADDTIMER(r2, 0x80044940, &(0x7f0000000080)=0x14)
r3 = socket$netlink(0x10, 0x3, 0x0)
writev(r3, &(0x7f00000003c0)=[{&(0x7f0000000240)="3900000013000318680907070000000f0000ff3f04000000170a001700000000040037000f00030001332564aaee7b1d58b9a64411f6bbf44d", 0x39}], 0x1)
close(r2)

697.470331ms ago: executing program 1 (id=542):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000900)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}, @NFT_MSG_NEWSETELEM={0x48, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x1c, 0x3, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}, @NFTA_SET_ELEM_KEY={0x4}]}, {0x4}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xac}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

499.002878ms ago: executing program 1 (id=543):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="09000000030000000400010005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b7030000000000fd850000000400000018110000", @ANYRES32=<r1=>r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x9}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000180)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
accept4$llc(0xffffffffffffffff, 0x0, 0x0, 0x80800)

269.106516ms ago: executing program 4 (id=544):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = inotify_init1(0x0)
read(r4, 0x0, 0x0)

206.314229ms ago: executing program 2 (id=545):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000100)={0x0, r0}, 0x8)
listen(0xffffffffffffffff, 0x5)
ioctl$sock_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, 0x0)

172.454879ms ago: executing program 1 (id=546):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
r1 = socket(0x15, 0x5, 0x0)
getsockopt(r1, 0x200000000114, 0x2714, 0x0, &(0x7f0000000000))
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000003c0)={r3}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0xc2e00, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/sys/net/ipv4/vs/sync_sock_size\x00', 0x2, 0x0)
r4 = getpid()
process_vm_readv(r4, &(0x7f0000008400)=[{&(0x7f0000000300)=""/53, 0x35}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0)
sendfile(r0, r2, 0x0, 0x7b4)
openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
syz_pidfd_open(0x0, 0x0)

171.005774ms ago: executing program 5 (id=547):
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x4000, 0x0, 0x865d, 0xfd, "ffff00"})
r1 = syz_open_pts(r0, 0x0)
io_setup(0x7, &(0x7f0000000000)=<r2=>0x0)
r3 = eventfd(0x10)
io_submit(r2, 0x1, &(0x7f00000006c0)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4, r1, &(0x7f00000003c0)='z', 0x1, 0xcead, 0x0, 0x5, r3}])
close_range(r0, 0xffffffffffffffff, 0x0)

0s ago: executing program 2 (id=548):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
acct(0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.140' (ED25519) to the list of known hosts.
[  101.432066][   T10] cfg80211: failed to load regulatory.db
[  102.079149][ T5845] cgroup: Unknown subsys name 'net'
[  102.235661][ T5845] cgroup: Unknown subsys name 'cpuset'
[  102.245805][ T5845] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[  103.958760][ T5845] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  107.105189][ T5882] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  107.113570][ T5880] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  107.125428][ T5880] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  107.141477][ T5880] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  107.149663][ T5883] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  107.158307][ T5883] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  107.164024][ T5882] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  107.166334][ T5880] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  107.173332][ T5882] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  107.180602][ T5883] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  107.187923][ T5882] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  107.193361][ T5880] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  107.202006][ T5882] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  107.209692][ T5880] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  107.215235][ T5885] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  107.229344][ T5885] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  107.230947][ T5880] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  107.237868][ T5885] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  107.243707][ T5880] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  107.251736][ T5885] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  107.257396][ T5883] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  107.273903][ T5883] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  107.284304][ T5883] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  107.284796][ T5885] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  107.293373][ T5883] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  107.299294][ T5885] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  107.313808][ T5885] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  107.321375][   T51] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  107.330601][ T5869] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  107.331630][ T5885] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  108.184488][ T5863] chnl_net:caif_netlink_parms(): no params data found
[  108.285297][ T5862] chnl_net:caif_netlink_parms(): no params data found
[  108.328430][ T5866] chnl_net:caif_netlink_parms(): no params data found
[  108.501483][ T5865] chnl_net:caif_netlink_parms(): no params data found
[  108.551492][ T5864] chnl_net:caif_netlink_parms(): no params data found
[  108.696353][ T5863] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.703600][ T5863] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.712350][ T5863] bridge_slave_0: entered allmulticast mode
[  108.721483][ T5863] bridge_slave_0: entered promiscuous mode
[  108.739494][ T5863] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.746906][ T5863] bridge0: port 2(bridge_slave_1) entered disabled state
[  108.754615][ T5863] bridge_slave_1: entered allmulticast mode
[  108.762256][ T5863] bridge_slave_1: entered promiscuous mode
[  108.812553][ T5866] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.819751][ T5866] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.827590][ T5866] bridge_slave_0: entered allmulticast mode
[  108.835514][ T5866] bridge_slave_0: entered promiscuous mode
[  108.844142][ T5866] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.851775][ T5866] bridge0: port 2(bridge_slave_1) entered disabled state
[  108.858974][ T5866] bridge_slave_1: entered allmulticast mode
[  108.866727][ T5866] bridge_slave_1: entered promiscuous mode
[  108.913135][ T5862] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.920363][ T5862] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.927943][ T5862] bridge_slave_0: entered allmulticast mode
[  108.936186][ T5862] bridge_slave_0: entered promiscuous mode
[  109.007443][ T5862] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.014924][ T5862] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.022467][ T5862] bridge_slave_1: entered allmulticast mode
[  109.030002][ T5862] bridge_slave_1: entered promiscuous mode
[  109.127457][ T5863] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  109.176182][ T5866] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  109.190321][ T5866] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  109.234148][ T5863] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  109.265314][ T5862] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  109.275687][ T5876] Bluetooth: hci5: command tx timeout
[  109.279701][ T5862] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  109.327157][ T5864] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.337890][ T5864] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.345376][ T5864] bridge_slave_0: entered allmulticast mode
[  109.354277][ T5864] bridge_slave_0: entered promiscuous mode
[  109.356023][ T5876] Bluetooth: hci0: command tx timeout
[  109.382505][ T5863] team0: Port device team_slave_0 added
[  109.405480][ T5865] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.413157][ T5865] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.420358][ T5865] bridge_slave_0: entered allmulticast mode
[  109.428148][ T5865] bridge_slave_0: entered promiscuous mode
[  109.430733][ T5876] Bluetooth: hci3: command tx timeout
[  109.439530][ T5876] Bluetooth: hci4: command tx timeout
[  109.440561][ T5879] Bluetooth: hci1: command tx timeout
[  109.445339][ T5876] Bluetooth: hci2: command tx timeout
[  109.458341][ T5870] chnl_net:caif_netlink_parms(): no params data found
[  109.473599][ T5866] team0: Port device team_slave_0 added
[  109.496363][ T5864] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.503833][ T5864] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.511288][ T5864] bridge_slave_1: entered allmulticast mode
[  109.518849][ T5864] bridge_slave_1: entered promiscuous mode
[  109.527776][ T5863] team0: Port device team_slave_1 added
[  109.566648][ T5865] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.574267][ T5865] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.582024][ T5865] bridge_slave_1: entered allmulticast mode
[  109.589591][ T5865] bridge_slave_1: entered promiscuous mode
[  109.599041][ T5866] team0: Port device team_slave_1 added
[  109.656473][ T5862] team0: Port device team_slave_0 added
[  109.722559][ T5863] batman_adv: batadv0: Adding interface: batadv_slave_0
[  109.729538][ T5863] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  109.755819][ T5863] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  109.769476][ T5862] team0: Port device team_slave_1 added
[  109.816215][ T5864] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  109.826126][ T5863] batman_adv: batadv0: Adding interface: batadv_slave_1
[  109.833274][ T5863] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  109.860115][ T5863] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  109.899297][ T5865] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  109.909189][ T5866] batman_adv: batadv0: Adding interface: batadv_slave_0
[  109.916575][ T5866] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  109.942551][ T5866] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  109.963409][ T5864] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  110.024190][ T5862] batman_adv: batadv0: Adding interface: batadv_slave_0
[  110.031302][ T5862] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.057546][ T5862] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  110.073055][ T5865] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  110.099801][ T5866] batman_adv: batadv0: Adding interface: batadv_slave_1
[  110.107108][ T5866] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.133143][ T5866] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  110.161113][ T5870] bridge0: port 1(bridge_slave_0) entered blocking state
[  110.168341][ T5870] bridge0: port 1(bridge_slave_0) entered disabled state
[  110.175996][ T5870] bridge_slave_0: entered allmulticast mode
[  110.184248][ T5870] bridge_slave_0: entered promiscuous mode
[  110.193088][ T5870] bridge0: port 2(bridge_slave_1) entered blocking state
[  110.200226][ T5870] bridge0: port 2(bridge_slave_1) entered disabled state
[  110.207795][ T5870] bridge_slave_1: entered allmulticast mode
[  110.216271][ T5870] bridge_slave_1: entered promiscuous mode
[  110.224044][ T5862] batman_adv: batadv0: Adding interface: batadv_slave_1
[  110.231739][ T5862] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.258811][ T5862] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  110.378316][ T5865] team0: Port device team_slave_0 added
[  110.387704][ T5865] team0: Port device team_slave_1 added
[  110.396636][ T5864] team0: Port device team_slave_0 added
[  110.409629][ T5863] hsr_slave_0: entered promiscuous mode
[  110.416523][ T5863] hsr_slave_1: entered promiscuous mode
[  110.443600][ T5870] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  110.521847][ T5864] team0: Port device team_slave_1 added
[  110.533697][ T5870] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  110.549151][ T5866] hsr_slave_0: entered promiscuous mode
[  110.556437][ T5866] hsr_slave_1: entered promiscuous mode
[  110.562863][ T5866] debugfs: 'hsr0' already exists in 'hsr'
[  110.568653][ T5866] Cannot create hsr debugfs directory
[  110.575005][ T5865] batman_adv: batadv0: Adding interface: batadv_slave_0
[  110.582402][ T5865] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.608511][ T5865] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  110.702012][ T5865] batman_adv: batadv0: Adding interface: batadv_slave_1
[  110.708994][ T5865] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.735330][ T5865] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  110.814137][ T5870] team0: Port device team_slave_0 added
[  110.824883][ T5864] batman_adv: batadv0: Adding interface: batadv_slave_0
[  110.831953][ T5864] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.858794][ T5864] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  110.884443][ T5864] batman_adv: batadv0: Adding interface: batadv_slave_1
[  110.897559][ T5864] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.948491][ T5864] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  110.967309][ T5862] hsr_slave_0: entered promiscuous mode
[  110.974301][ T5862] hsr_slave_1: entered promiscuous mode
[  110.986556][ T5862] debugfs: 'hsr0' already exists in 'hsr'
[  110.995559][ T5862] Cannot create hsr debugfs directory
[  111.051760][ T5870] team0: Port device team_slave_1 added
[  111.200028][ T5865] hsr_slave_0: entered promiscuous mode
[  111.207322][ T5865] hsr_slave_1: entered promiscuous mode
[  111.214978][ T5865] debugfs: 'hsr0' already exists in 'hsr'
[  111.220760][ T5865] Cannot create hsr debugfs directory
[  111.264887][ T5870] batman_adv: batadv0: Adding interface: batadv_slave_0
[  111.272023][ T5870] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.298645][ T5870] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  111.351469][ T5876] Bluetooth: hci5: command tx timeout
[  111.410137][ T5870] batman_adv: batadv0: Adding interface: batadv_slave_1
[  111.418231][ T5870] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.433610][ T5876] Bluetooth: hci0: command tx timeout
[  111.445069][ T5870] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  111.511327][ T5876] Bluetooth: hci2: command tx timeout
[  111.516802][ T5876] Bluetooth: hci1: command tx timeout
[  111.517754][ T5885] Bluetooth: hci4: command tx timeout
[  111.522344][ T5876] Bluetooth: hci3: command tx timeout
[  111.569971][ T5864] hsr_slave_0: entered promiscuous mode
[  111.577159][ T5864] hsr_slave_1: entered promiscuous mode
[  111.583680][ T5864] debugfs: 'hsr0' already exists in 'hsr'
[  111.589420][ T5864] Cannot create hsr debugfs directory
[  111.790092][ T5870] hsr_slave_0: entered promiscuous mode
[  111.797065][ T5870] hsr_slave_1: entered promiscuous mode
[  111.803922][ T5870] debugfs: 'hsr0' already exists in 'hsr'
[  111.809651][ T5870] Cannot create hsr debugfs directory
[  112.099613][ T5862] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  112.115148][ T5862] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  112.156112][ T5862] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  112.194451][ T5862] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  112.318559][ T5863] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  112.335049][ T5863] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  112.375716][ T5863] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  112.400141][ T5863] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  112.483007][ T5866] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  112.504904][ T5866] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  112.517332][ T5866] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  112.565842][ T5866] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  112.622645][ T5865] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  112.636985][ T5865] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  112.649633][ T5865] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  112.671606][ T5865] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  112.834648][ T5864] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  112.852665][ T5864] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  112.866283][ T5864] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  112.881789][ T5864] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  112.925105][ T5862] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.007983][ T5863] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.054917][ T5870] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  113.067331][ T5870] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  113.082600][ T5870] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  113.098088][ T5870] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  113.134668][ T5862] 8021q: adding VLAN 0 to HW filter on device team0
[  113.161607][ T5863] 8021q: adding VLAN 0 to HW filter on device team0
[  113.199266][   T59] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.206604][   T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[  113.219211][   T59] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.226378][   T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[  113.292062][   T59] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.299234][   T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[  113.309283][   T59] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.316427][   T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[  113.404978][ T5866] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.431523][ T5885] Bluetooth: hci5: command tx timeout
[  113.512674][ T5885] Bluetooth: hci0: command tx timeout
[  113.528428][ T5866] 8021q: adding VLAN 0 to HW filter on device team0
[  113.580308][ T5864] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.598401][ T5885] Bluetooth: hci3: command tx timeout
[  113.598424][ T5879] Bluetooth: hci1: command tx timeout
[  113.604632][ T5885] Bluetooth: hci4: command tx timeout
[  113.612562][ T5879] Bluetooth: hci2: command tx timeout
[  113.625432][ T1125] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.632572][ T1125] bridge0: port 1(bridge_slave_0) entered forwarding state
[  113.668618][ T5870] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.680331][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.687506][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  113.747081][ T5865] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.777525][ T5870] 8021q: adding VLAN 0 to HW filter on device team0
[  113.809673][ T5864] 8021q: adding VLAN 0 to HW filter on device team0
[  113.827896][ T1125] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.835093][ T1125] bridge0: port 1(bridge_slave_0) entered forwarding state
[  113.878358][ T5865] 8021q: adding VLAN 0 to HW filter on device team0
[  113.923927][ T1125] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.931145][ T1125] bridge0: port 1(bridge_slave_0) entered forwarding state
[  114.012049][ T1125] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.019223][ T1125] bridge0: port 2(bridge_slave_1) entered forwarding state
[  114.038048][ T1125] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.045342][ T1125] bridge0: port 1(bridge_slave_0) entered forwarding state
[  114.120299][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.127566][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  114.189822][   T59] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.197032][   T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[  114.243701][ T5862] 8021q: adding VLAN 0 to HW filter on device batadv0
[  114.436039][ T5863] 8021q: adding VLAN 0 to HW filter on device batadv0
[  114.518316][ T5864] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  114.749498][ T5863] veth0_vlan: entered promiscuous mode
[  114.859233][ T5863] veth1_vlan: entered promiscuous mode
[  114.969477][ T5863] veth0_macvtap: entered promiscuous mode
[  115.086059][ T5863] veth1_macvtap: entered promiscuous mode
[  115.176138][ T5863] batman_adv: batadv0: Interface activated: batadv_slave_0
[  115.249174][ T5863] batman_adv: batadv0: Interface activated: batadv_slave_1
[  115.286135][ T5866] 8021q: adding VLAN 0 to HW filter on device batadv0
[  115.328657][   T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  115.371981][ T5986] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  115.382311][ T5986] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  115.427997][ T5986] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  115.462502][ T5862] veth0_vlan: entered promiscuous mode
[  115.492680][ T5864] 8021q: adding VLAN 0 to HW filter on device batadv0
[  115.516234][ T5876] Bluetooth: hci5: command tx timeout
[  115.536071][ T5870] 8021q: adding VLAN 0 to HW filter on device batadv0
[  115.591307][ T5876] Bluetooth: hci0: command tx timeout
[  115.598435][ T5865] 8021q: adding VLAN 0 to HW filter on device batadv0
[  115.618337][ T5862] veth1_vlan: entered promiscuous mode
[  115.636718][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.671640][ T5876] Bluetooth: hci4: command tx timeout
[  115.677063][ T5876] Bluetooth: hci1: command tx timeout
[  115.683702][ T5879] Bluetooth: hci3: command tx timeout
[  115.683723][ T5885] Bluetooth: hci2: command tx timeout
[  115.694987][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.736615][ T5866] veth0_vlan: entered promiscuous mode
[  115.857330][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.877792][ T5866] veth1_vlan: entered promiscuous mode
[  115.891069][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.946088][ T5862] veth0_macvtap: entered promiscuous mode
[  115.963640][ T5870] veth0_vlan: entered promiscuous mode
[  116.003645][ T5862] veth1_macvtap: entered promiscuous mode
[  116.024053][ T5865] veth0_vlan: entered promiscuous mode
[  116.043005][ T5870] veth1_vlan: entered promiscuous mode
[  116.079598][ T5863] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  116.108636][ T5865] veth1_vlan: entered promiscuous mode
[  116.169934][ T5862] batman_adv: batadv0: Interface activated: batadv_slave_0
[  116.180016][ T5866] veth0_macvtap: entered promiscuous mode
[  116.205257][ T5866] veth1_macvtap: entered promiscuous mode
[  116.238229][ T5862] batman_adv: batadv0: Interface activated: batadv_slave_1
[  116.323486][ T5986] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  116.338294][ T5986] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  116.354170][ T5870] veth0_macvtap: entered promiscuous mode
[  116.363280][ T6006] loop2: detected capacity change from 0 to 2048
[  116.369945][ T5866] batman_adv: batadv0: Interface activated: batadv_slave_0
[  116.379698][ T5986] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  116.419497][ T5866] batman_adv: batadv0: Interface activated: batadv_slave_1
[  116.429066][ T5986] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  116.454972][ T5870] veth1_macvtap: entered promiscuous mode
[  116.476056][ T5865] veth0_macvtap: entered promiscuous mode
[  116.484630][ T6006] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.509072][ T5986] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  116.551758][ T6006] =======================================================
[  116.551758][ T6006] WARNING: The mand mount option has been deprecated and
[  116.551758][ T6006]          and is ignored by this kernel. Remove the mand
[  116.551758][ T6006]          option from the mount to silence this warning.
[  116.551758][ T6006] =======================================================
[  116.568073][ T5865] veth1_macvtap: entered promiscuous mode
[  116.599754][ T6006] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  116.615684][ T5986] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  116.675897][ T5863] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.732071][ T5870] batman_adv: batadv0: Interface activated: batadv_slave_0
[  116.742914][ T5864] veth0_vlan: entered promiscuous mode
[  116.767144][ T5986] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  116.794883][ T5986] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  116.921921][ T5865] batman_adv: batadv0: Interface activated: batadv_slave_0
[  116.963516][ T6013] loop2: detected capacity change from 0 to 2364
[  116.977669][ T5870] batman_adv: batadv0: Interface activated: batadv_slave_1
[  117.023714][ T5864] veth1_vlan: entered promiscuous mode
[  117.029321][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.054879][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.075752][ T5865] batman_adv: batadv0: Interface activated: batadv_slave_1
[  117.100575][ T6013] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  117.107244][ T6013] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  117.123698][ T6013] vhci_hcd vhci_hcd.0: Device attached
[  117.132052][ T6011] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(11)
[  117.138672][ T6011] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  117.139636][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  117.165964][ T6011] vhci_hcd vhci_hcd.0: Device attached
[  117.176658][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  117.186370][ T6011] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  117.204076][ T6011] vhci_hcd vhci_hcd.0: pdev(2) rhport(3) sockfd(14)
[  117.210684][ T6011] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  117.222895][ T1125] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.244132][ T1125] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.245177][ T6011] vhci_hcd vhci_hcd.0: Device attached
[  117.269816][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  117.288401][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  117.297750][ T6018] vhci_hcd: connection closed
[  117.298209][ T6014] vhci_hcd: connection closed
[  117.299355][ T6016] vhci_hcd: connection closed
[  117.308347][ T3761] vhci_hcd: stop threads
[  117.323531][ T3761] vhci_hcd: release socket
[  117.328575][ T3761] vhci_hcd: disconnect device
[  117.337172][ T3761] vhci_hcd: stop threads
[  117.342652][ T3761] vhci_hcd: release socket
[  117.347205][ T3761] vhci_hcd: disconnect device
[  117.353614][ T3761] vhci_hcd: stop threads
[  117.358149][ T3761] vhci_hcd: release socket
[  117.367441][   T12] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  117.368333][ T3761] vhci_hcd: disconnect device
[  117.377730][   T12] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  117.387854][   T24] usb 37-1: new low-speed USB device number 2 using vhci_hcd
[  117.389595][   T12] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  117.406765][   T24] usb 37-1: enqueue for inactive port 0
[  117.437509][   T12] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  117.454433][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.455392][ T5864] veth0_macvtap: entered promiscuous mode
[  117.462361][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.485575][   T24] vhci_hcd: vhci_device speed not set
[  117.491311][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.507483][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.528466][ T5864] veth1_macvtap: entered promiscuous mode
[  117.743882][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.815582][ T5864] batman_adv: batadv0: Interface activated: batadv_slave_0
[  117.925735][ T5864] batman_adv: batadv0: Interface activated: batadv_slave_1
[  118.001169][ T6024] netlink: 'syz.1.2': attribute type 4 has an invalid length.
[  118.030960][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.039032][ T6024] netlink: 152 bytes leftover after parsing attributes in process `syz.1.2'.
[  118.082323][ T5980] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.088307][   T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  118.090250][ T5980] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.065925][   T12] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  119.158359][ T6024] .`: renamed from bond0 (while UP)
[  119.279148][   T30] audit: type=1326 audit(1756016824.515:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6033 comm="syz.2.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1400b8ebe9 code=0x7ffc0000
[  119.351346][   T30] audit: type=1326 audit(1756016824.515:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6033 comm="syz.2.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1400b8ebe9 code=0x7ffc0000
[  119.380720][   T12] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  119.437174][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.437435][   T12] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  119.450621][   T30] audit: type=1326 audit(1756016824.525:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6033 comm="syz.2.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1400b8ebe9 code=0x7ffc0000
[  119.485020][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.494386][   T30] audit: type=1326 audit(1756016824.525:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6033 comm="syz.2.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1400b8ebe9 code=0x7ffc0000
[  119.522611][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.539598][   T30] audit: type=1326 audit(1756016824.525:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6033 comm="syz.2.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1400b8ebe9 code=0x7ffc0000
[  119.558807][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.606106][   T30] audit: type=1326 audit(1756016824.525:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6033 comm="syz.2.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1400b8ebe9 code=0x7ffc0000
[  119.646390][   T30] audit: type=1326 audit(1756016824.525:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6033 comm="syz.2.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1400b8ebe9 code=0x7ffc0000
[  119.677411][   T30] audit: type=1326 audit(1756016824.525:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6033 comm="syz.2.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1400b8ebe9 code=0x7ffc0000
[  119.714512][   T30] audit: type=1326 audit(1756016824.545:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6033 comm="syz.2.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1400b8ebe9 code=0x7ffc0000
[  119.738732][   T30] audit: type=1326 audit(1756016824.545:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6033 comm="syz.2.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1400b8ebe9 code=0x7ffc0000
[  119.984293][ T6041] loop2: detected capacity change from 0 to 128
[  120.023121][ T1125] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.082312][ T1125] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.100467][ T6041] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[  120.116481][ T6041] System zones: 1-3, 19-19, 35-36
[  120.191980][ T6041] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  120.294882][ T6041] ext4 filesystem being mounted at /6/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  120.306957][ T3761] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.306986][ T3761] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.349826][ T6051] loop3: detected capacity change from 0 to 1024
[  120.354640][ T6053] lo speed is unknown, defaulting to 1000
[  120.354766][ T6053] lo speed is unknown, defaulting to 1000
[  120.356643][ T6053] lo speed is unknown, defaulting to 1000
[  120.357001][ T6051] EXT4-fs: Ignoring removed oldalloc option
[  120.363001][ T6051] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  120.386086][ T6051] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  120.410149][ T6053] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  120.446302][ T6053] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  120.751868][ T5863] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  120.916785][ T6059] 9pnet: Could not find request transport: fd0x0000000000000009
[  120.937693][ T5865] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.101064][ T6064] netlink: 60 bytes leftover after parsing attributes in process `syz.2.17'.
[  121.101342][ T6064] unsupported nlmsg_type 40
[  121.227811][ T6053] lo speed is unknown, defaulting to 1000
[  121.230081][ T6053] lo speed is unknown, defaulting to 1000
[  121.246035][ T6053] lo speed is unknown, defaulting to 1000
[  121.373363][ T6053] lo speed is unknown, defaulting to 1000
[  121.375848][ T6053] lo speed is unknown, defaulting to 1000
[  121.455549][ T6053] lo speed is unknown, defaulting to 1000
[  121.969685][ T6044] tty tty20: ldisc open failed (-12), clearing slot 19
[  122.300162][ T6074] bridge0: port 2(bridge_slave_1) entered disabled state
[  122.308570][ T6074] bridge0: port 1(bridge_slave_0) entered disabled state
[  122.331539][ T6081] netlink: 212376 bytes leftover after parsing attributes in process `syz.5.23'.
[  122.639612][ T6086] loop0: detected capacity change from 0 to 128
[  122.733302][ T6074] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  122.778917][ T6074] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  122.789846][ T6087] syz.0.25: attempt to access beyond end of device
[  122.789846][ T6087] loop0: rw=2049, sector=145, nr_sectors = 16 limit=128
[  122.822266][ T6087] syz.0.25: attempt to access beyond end of device
[  122.822266][ T6087] loop0: rw=2049, sector=169, nr_sectors = 8 limit=128
[  122.865782][ T6087] syz.0.25: attempt to access beyond end of device
[  122.865782][ T6087] loop0: rw=2049, sector=185, nr_sectors = 8 limit=128
[  122.920143][ T6087] syz.0.25: attempt to access beyond end of device
[  122.920143][ T6087] loop0: rw=2049, sector=201, nr_sectors = 8 limit=128
[  122.949603][ T6087] syz.0.25: attempt to access beyond end of device
[  122.949603][ T6087] loop0: rw=2049, sector=217, nr_sectors = 8 limit=128
[  122.968517][ T6087] syz.0.25: attempt to access beyond end of device
[  122.968517][ T6087] loop0: rw=2049, sector=233, nr_sectors = 8 limit=128
[  123.003545][ T6089] input: syz0 as /devices/virtual/input/input5
[  123.202176][ T6087] syz.0.25: attempt to access beyond end of device
[  123.202176][ T6087] loop0: rw=2049, sector=249, nr_sectors = 8 limit=128
[  123.216489][ T6087] syz.0.25: attempt to access beyond end of device
[  123.216489][ T6087] loop0: rw=2049, sector=265, nr_sectors = 8 limit=128
[  123.252101][ T6087] syz.0.25: attempt to access beyond end of device
[  123.252101][ T6087] loop0: rw=2049, sector=281, nr_sectors = 8 limit=128
[  123.573404][   T12] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  123.629284][   T12] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  123.682091][ T6098] netlink: 4 bytes leftover after parsing attributes in process `syz.4.31'.
[  123.722857][ T6096] vlan2: entered promiscuous mode
[  123.728105][ T6096] vlan2: entered allmulticast mode
[  123.804265][ T6096] hsr_slave_1: entered allmulticast mode
[  123.834624][   T12] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  123.876609][   T12] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  124.075859][ T6106] netlink: 'syz.0.35': attribute type 30 has an invalid length.
[  124.823857][ T6125] netlink: 28 bytes leftover after parsing attributes in process `syz.0.43'.
[  124.968855][ T6129] lo speed is unknown, defaulting to 1000
[  125.001821][ T6129] lo speed is unknown, defaulting to 1000
[  125.022330][ T6129] lo speed is unknown, defaulting to 1000
[  125.135377][ T6132] netlink: 4172 bytes leftover after parsing attributes in process `syz.4.45'.
[  125.185007][ T6129] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  125.404000][ T6129] lo speed is unknown, defaulting to 1000
[  125.457518][ T6129] lo speed is unknown, defaulting to 1000
[  125.484277][ T6136] loop2: detected capacity change from 0 to 1024
[  125.489817][ T6129] lo speed is unknown, defaulting to 1000
[  125.513250][ T6129] lo speed is unknown, defaulting to 1000
[  125.533936][ T6136] EXT4-fs: Ignoring removed oldalloc option
[  125.570247][ T6129] lo speed is unknown, defaulting to 1000
[  125.584764][ T6142] Bluetooth: MGMT ver 1.23
[  125.592821][ T6136] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  125.610909][ T6141] netlink: 8 bytes leftover after parsing attributes in process `syz.1.51'.
[  125.658174][ T6136] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  125.665283][ T6129] lo speed is unknown, defaulting to 1000
[  126.073156][ T5863] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.161518][   T30] kauditd_printk_skb: 14 callbacks suppressed
[  126.161543][   T30] audit: type=1326 audit(1756016831.405:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6157 comm="syz.1.55" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f696d18ebe9 code=0x7ffc0000
[  126.446009][   T30] audit: type=1326 audit(1756016831.405:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6157 comm="syz.1.55" exe="/root/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7f696d18ebe9 code=0x7ffc0000
[  126.514382][ T6161] netlink: 4 bytes leftover after parsing attributes in process `syz.5.58'.
[  126.590455][   T30] audit: type=1326 audit(1756016831.405:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6157 comm="syz.1.55" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f696d18ebe9 code=0x7ffc0000
[  126.664965][   T30] audit: type=1326 audit(1756016831.595:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6157 comm="syz.1.55" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f696d18ebe9 code=0x7ffc0000
[  126.763583][ T6169] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.60'.
[  126.796787][   T30] audit: type=1326 audit(1756016831.765:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6163 comm="syz.4.57" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  126.846034][ T6161] hsr_slave_1 (unregistering): left promiscuous mode
[  126.877920][   T30] audit: type=1326 audit(1756016831.765:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6163 comm="syz.4.57" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  126.906766][   T30] audit: type=1326 audit(1756016831.815:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6163 comm="syz.4.57" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  126.940661][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  126.978980][   T30] audit: type=1326 audit(1756016831.815:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6163 comm="syz.4.57" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  127.070466][   T30] audit: type=1326 audit(1756016831.815:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6163 comm="syz.4.57" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  127.130718][   T30] audit: type=1326 audit(1756016831.855:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6163 comm="syz.4.57" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  127.389562][ T6177] sd 0:0:1:0: device reset
[  127.512384][ T6175] kernel profiling enabled (shift: 5)
[  127.782681][   T43] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  127.796943][   T43] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  127.850542][   T43] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  127.857956][   T43] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  127.925556][   T43] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  127.952652][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  127.971395][   T43] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  127.979959][   T43] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  128.030534][   T43] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  128.036237][ T6187] vlan2: entered allmulticast mode
[  128.037942][   T43] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  128.053403][ T6187] dummy0: entered allmulticast mode
[  128.067531][ T6189] loop0: detected capacity change from 0 to 1024
[  128.109234][ T6189] EXT4-fs: Ignoring removed oldalloc option
[  128.117388][   T43] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  128.158441][ T6189] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  128.176899][   T43] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  128.253390][ T6189] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  128.302182][ T6187] Zero length message leads to an empty skb
[  128.509183][ T6195] fido_id[6195]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  128.586964][ T5870] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.036005][ T6202] netlink: 'syz.0.72': attribute type 10 has an invalid length.
[  129.096528][ T6202] veth1_macvtap: left promiscuous mode
[  129.620256][ T6185] loop5: detected capacity change from 0 to 512
[  129.746244][ T6210] loop4: detected capacity change from 0 to 2048
[  129.777853][ T6210] EXT4-fs: Ignoring removed mblk_io_submit option
[  129.866913][ T6217] netlink: 4 bytes leftover after parsing attributes in process `syz.0.80'.
[  129.905338][ T6185] EXT4-fs error (device loop5): ext4_validate_block_bitmap:440: comm syz.5.67: bg 0: block 393: padding at end of block bitmap is not set
[  129.932990][ T6210] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.005138][ T6185] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  130.109181][ T6226] loop2: detected capacity change from 0 to 2048
[  130.118587][ T6185] EXT4-fs (loop5): 2 truncates cleaned up
[  130.160695][ T6217] hsr_slave_1 (unregistering): left promiscuous mode
[  130.180268][ T6185] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.209543][ T6228] loop3: detected capacity change from 0 to 512
[  130.241178][ T6226] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.281884][ T6229] netlink: 4 bytes leftover after parsing attributes in process `syz.4.77'.
[  130.297415][ T6228] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  130.452829][ T6228] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  130.555380][ T6228] EXT4-fs (loop3): 1 truncate cleaned up
[  130.609552][ T6228] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.651981][ T5864] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.856149][ T5862] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.924324][ T6237] loop5: detected capacity change from 0 to 1024
[  130.963477][ T6237] EXT4-fs: Ignoring removed oldalloc option
[  130.993306][ T5863] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.042324][ T6237] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  131.143078][ T6237] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.304470][ T5865] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.498434][ T5864] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.508126][ T5951] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  131.690570][ T5951] usb 5-1: Using ep0 maxpacket: 32
[  131.819814][ T5951] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  131.860546][ T5951] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  131.899222][ T5951] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  131.958923][ T5951] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  132.031925][ T5951] usb 5-1: config 0 descriptor??
[  132.103428][ T5951] hub 5-1:0.0: USB hub found
[  132.132035][ T6256] netlink: 5 bytes leftover after parsing attributes in process `syz.1.93'.
[  132.152498][ T6256] 0{X功: renamed from gretap0
[  132.216858][ T6256] 0{X功: entered allmulticast mode
[  132.236040][   T30] kauditd_printk_skb: 7 callbacks suppressed
[  132.236063][   T30] audit: type=1326 audit(1756016837.465:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.0.95" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86f958ebe9 code=0x7ffc0000
[  132.269820][ T5951] hub 5-1:0.0: config failed, can't read hub descriptor (err -22)
[  132.322932][ T6256] A link change request failed with some changes committed already. Interface 
30{X功 may have been left with an inconsistent configuration, please check.
[  132.367449][ T5951] usbhid 5-1:0.0: can't add hid device: -71
[  132.369806][   T30] audit: type=1326 audit(1756016837.465:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.0.95" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7f86f958ebe9 code=0x7ffc0000
[  132.389292][ T5951] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  132.406088][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  132.531001][ T5951] usb 5-1: USB disconnect, device number 2
[  132.542926][   T30] audit: type=1326 audit(1756016837.465:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.0.95" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86f958ebe9 code=0x7ffc0000
[  132.697279][   T30] audit: type=1326 audit(1756016837.465:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.0.95" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f86f958ebe9 code=0x7ffc0000
[  132.731056][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  132.937283][   T30] audit: type=1326 audit(1756016837.475:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.0.95" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86f958ebe9 code=0x7ffc0000
[  133.109890][   T30] audit: type=1326 audit(1756016837.525:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.0.95" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86f958ebe9 code=0x7ffc0000
[  133.260584][   T30] audit: type=1326 audit(1756016837.525:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.0.95" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f86f958ebe9 code=0x7ffc0000
[  133.309234][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  133.335404][   T30] audit: type=1326 audit(1756016837.525:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86f958ebe9 code=0x7ffc0000
[  133.427983][   T30] audit: type=1326 audit(1756016837.525:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f86f958ebe9 code=0x7ffc0000
[  133.467959][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  133.472089][ T6282] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  133.476756][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  133.556891][   T30] audit: type=1326 audit(1756016837.525:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86f958ebe9 code=0x7ffc0000
[  133.580132][ T6282] netlink: 4 bytes leftover after parsing attributes in process `syz.2.102'.
[  133.769848][ T6287] input: syz0 as /devices/virtual/input/input6
[  133.861078][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  133.870753][    T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!!
[  133.879138][    T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!!
[  134.330147][ T6282] loop2: detected capacity change from 0 to 8192
[  136.277272][ T6282] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  136.747949][ T6305] netlink: 5 bytes leftover after parsing attributes in process `syz.4.110'.
[  136.808795][ T6305] 0{X功: renamed from gretap0 (while UP)
[  136.900132][ T6305] 0{X功: entered allmulticast mode
[  136.927616][ T6305] A link change request failed with some changes committed already. Interface 
30{X功 may have been left with an inconsistent configuration, please check.
[  137.385230][ T6315] netlink: 4 bytes leftover after parsing attributes in process `syz.2.112'.
[  137.671324][ T6324] mmap: syz.5.117 (6324) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  138.024892][ T6333] netlink: 'syz.4.121': attribute type 10 has an invalid length.
[  138.126017][ T6335] netlink: 464 bytes leftover after parsing attributes in process `syz.3.122'.
[  138.276407][ T6341] netlink: 'syz.0.120': attribute type 4 has an invalid length.
[  138.284185][ T6341] netlink: 17 bytes leftover after parsing attributes in process `syz.0.120'.
[  139.198443][ T6347] loop3: detected capacity change from 0 to 512
[  139.387302][ T6347] EXT4-fs: Ignoring removed oldalloc option
[  139.508704][ T6347] EXT4-fs error (device loop3): ext4_xattr_inode_iget:432: comm syz.3.125: Parent and EA inode have the same ino 15
[  139.640872][ T6347] EXT4-fs (loop3): 1 orphan inode deleted
[  139.682816][ T6347] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.885904][ T6354] loop1: detected capacity change from 0 to 256
[  139.906135][ T6333] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  140.021974][ T6354] FAT-fs (loop1): Invalid FSINFO signature: 0x0ffffff8, 0x00000000 (sector = 33)
[  140.121366][ T6354] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 1, start df000002)
[  140.201044][ T6354] FAT-fs (loop1): Filesystem has been set read-only
[  140.209951][ T5865] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.489019][ T6357] loop4: detected capacity change from 0 to 256
[  140.561245][ T6361] netlink: 5 bytes leftover after parsing attributes in process `syz.3.128'.
[  140.570227][ T6361] 0{X功: renamed from gretap0 (while UP)
[  140.612898][ T6361] 0{X功: entered allmulticast mode
[  140.642578][ T6361] A link change request failed with some changes committed already. Interface 
30{X功 may have been left with an inconsistent configuration, please check.
[  140.669908][ T6364] loop0: detected capacity change from 0 to 2048
[  140.883724][ T6364] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  141.016361][   T30] kauditd_printk_skb: 26 callbacks suppressed
[  141.016385][   T30] audit: type=1800 audit(1756016846.255:79): pid=6364 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.132" name="bus" dev="loop0" ino=18 res=0 errno=0
[  141.164716][ T6379] netlink: 60 bytes leftover after parsing attributes in process `syz.4.135'.
[  141.264777][ T5870] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.457779][ T6382] netlink: 464 bytes leftover after parsing attributes in process `syz.2.138'.
[  141.494998][ T6383] netlink: 4 bytes leftover after parsing attributes in process `syz.1.139'.
[  141.604923][ T6387] syz.0.137 uses obsolete (PF_INET,SOCK_PACKET)
[  141.760069][ T6383] .`: (slave bond_slave_1): Releasing backup interface
[  142.036305][ T6390] loop1: detected capacity change from 0 to 8192
[  142.155773][ T6390] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  142.401024][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  142.407486][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  142.687552][ T6407] netlink: 5 bytes leftover after parsing attributes in process `syz.0.148'.
[  142.751209][ T6407] 0{X功: renamed from gretap0 (while UP)
[  142.782609][ T6407] 0{X功: entered allmulticast mode
[  142.814717][ T6407] A link change request failed with some changes committed already. Interface 
30{X功 may have been left with an inconsistent configuration, please check.
[  142.983502][ T6409] loop4: detected capacity change from 0 to 2048
[  143.193483][ T6409] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.361747][   T30] audit: type=1800 audit(1756016848.605:80): pid=6409 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.149" name="bus" dev="loop4" ino=18 res=0 errno=0
[  143.433675][ T6428] netlink: 464 bytes leftover after parsing attributes in process `syz.0.155'.
[  143.586287][ T5862] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.835776][ T6432] loop3: detected capacity change from 0 to 1024
[  143.899374][ T6432] EXT4-fs: Ignoring removed oldalloc option
[  143.959903][ T6432] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  144.082240][ T6432] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.214932][ T6442] netlink: 5 bytes leftover after parsing attributes in process `syz.4.159'.
[  144.260577][ T6442] 1{X功: renamed from 
30{X功 (while UP)
[  144.366476][ T6442] A link change request failed with some changes committed already. Interface 
31{X功 may have been left with an inconsistent configuration, please check.
[  144.592692][ T5865] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.667867][ T6455] loop2: detected capacity change from 0 to 128
[  144.688597][ T6454] loop5: detected capacity change from 0 to 164
[  144.723456][ T6455] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  144.772332][ T6455] ext4 filesystem being mounted at /35/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  144.895721][ T6455] EXT4-fs warning (device loop2): ext4_dirblock_csum_verify:375: inode #2: comm syz.2.167: No space for directory leaf checksum. Please run e2fsck -D.
[  144.903368][ T6454] process 'syz.5.166' launched '/dev/fd/7' with NULL argv: empty string added
[  144.912145][ T6455] EXT4-fs error (device loop2): __ext4_find_entry:1624: inode #2: comm syz.2.167: checksumming directory block 0
[  144.957720][ T6454] syz.5.166: attempt to access beyond end of device
[  144.957720][ T6454] loop5: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  145.018425][ T6454] syz.5.166: attempt to access beyond end of device
[  145.018425][ T6454] loop5: rw=0, sector=263328, nr_sectors = 4 limit=164
[  145.226479][ T6461] netlink: 5 bytes leftover after parsing attributes in process `syz.3.168'.
[  145.281163][ T5863] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  145.337288][ T6461] 1{X功: renamed from 
30{X功 (while UP)
[  145.421809][ T6461] A link change request failed with some changes committed already. Interface 
31{X功 may have been left with an inconsistent configuration, please check.
[  145.647204][ T6466] input: syz0 as /devices/virtual/input/input7
[  145.765876][   T30] audit: type=1326 audit(1756016851.005:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6469 comm="syz.4.172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  145.846047][ T6472] netlink: 464 bytes leftover after parsing attributes in process `syz.0.173'.
[  145.855485][   T30] audit: type=1326 audit(1756016851.005:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6469 comm="syz.4.172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  145.974243][   T30] audit: type=1326 audit(1756016851.025:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6469 comm="syz.4.172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  146.122108][   T30] audit: type=1326 audit(1756016851.035:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6469 comm="syz.4.172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  146.205766][ T6480] loop1: detected capacity change from 0 to 1024
[  146.213584][   T30] audit: type=1326 audit(1756016851.035:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6469 comm="syz.4.172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  146.248801][ T6480] EXT4-fs: Ignoring removed oldalloc option
[  146.261400][   T30] audit: type=1326 audit(1756016851.045:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6469 comm="syz.4.172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  146.273207][ T6483] unsupported nla_type 52263
[  146.284901][   T30] audit: type=1326 audit(1756016851.075:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6469 comm="syz.4.172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  146.313048][   T30] audit: type=1326 audit(1756016851.075:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6469 comm="syz.4.172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  146.335687][ T6480] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  146.390084][   T30] audit: type=1326 audit(1756016851.075:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6469 comm="syz.4.172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  146.396346][ T6480] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.413793][   T30] audit: type=1326 audit(1756016851.075:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6469 comm="syz.4.172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  146.449110][   T30] audit: type=1326 audit(1756016851.085:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6469 comm="syz.4.172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  146.471580][   T30] audit: type=1326 audit(1756016851.115:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6469 comm="syz.4.172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  146.814781][ T5866] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.498503][ T6508] netlink: 5 bytes leftover after parsing attributes in process `syz.4.186'.
[  147.550026][ T6508] 0{X功: renamed from 
31{X功 (while UP)
[  147.642311][ T6508] A link change request failed with some changes committed already. Interface 
30{X功 may have been left with an inconsistent configuration, please check.
[  148.040592][ T6520] input: syz0 as /devices/virtual/input/input8
[  148.448656][ T6527] loop4: detected capacity change from 0 to 1024
[  148.495254][ T6532] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.196'.
[  148.498599][ T6527] EXT4-fs: Ignoring removed oldalloc option
[  148.537421][ T6533] random: crng reseeded on system resumption
[  148.549173][ T6527] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  148.597172][ T6533] netlink: 224 bytes leftover after parsing attributes in process `syz.0.197'.
[  148.599892][ T6527] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  148.650351][ T6533] ksmbd: Unknown IPC event: 4, ignore.
[  148.659011][ T6533] Restarting kernel threads ...
[  148.667447][ T6533] Done restarting kernel threads.
[  148.836031][ T5862] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.242347][ T6549] netlink: 5 bytes leftover after parsing attributes in process `syz.1.203'.
[  149.286407][ T6549] 1{X功: renamed from 
30{X功 (while UP)
[  149.314737][ T6549] A link change request failed with some changes committed already. Interface 
31{X功 may have been left with an inconsistent configuration, please check.
[  149.734135][ T6562] input: syz0 as /devices/virtual/input/input9
[  150.087699][ T6568] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.211'.
[  150.437258][ T6576] loop4: detected capacity change from 0 to 1024
[  150.564792][ T6576] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  151.406550][ T6598] loop2: detected capacity change from 0 to 1024
[  151.542518][ T6598] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: none.
[  151.778380][ T5863] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[  152.152789][ T6610] netlink: 60 bytes leftover after parsing attributes in process `syz.1.225'.
[  152.407540][ T6613] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.588321][ T6613] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.786240][ T6613] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.929408][ T6613] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  153.404356][   T36] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  153.452043][   T36] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  153.558240][ T5986] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  153.598234][ T5986] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  153.651667][ T6630] netlink: 4 bytes leftover after parsing attributes in process `syz.1.232'.
[  154.016659][ T6630] hsr_slave_1 (unregistering): left promiscuous mode
[  154.491612][ T6647] netlink: 'syz.3.238': attribute type 10 has an invalid length.
[  154.581150][ T6647] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  155.107058][ T6655] netlink: 20 bytes leftover after parsing attributes in process `syz.5.242'.
[  155.150798][ T6655] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  155.411129][ T6658] netlink: 5 bytes leftover after parsing attributes in process `syz.1.243'.
[  155.463931][ T6658] 0{X功: renamed from 
31{X功 (while UP)
[  155.552620][ T6658] A link change request failed with some changes committed already. Interface 
30{X功 may have been left with an inconsistent configuration, please check.
[  155.892245][ T6665] loop5: detected capacity change from 0 to 1024
[  156.205053][ T6672] openvswitch: netlink: Flow actions attr not present in new flow.
[  156.933709][ T6665] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.240427][   T30] audit: type=1800 audit(1756017118.477:93): pid=6665 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.246" name="bus" dev="loop5" ino=18 res=0 errno=0
[  157.524659][ T5864] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.784675][ T6685] netlink: 'syz.1.254': attribute type 10 has an invalid length.
[  157.859419][ T6685] .`: (slave dummy0): Enslaving as an active interface with an up link
[  157.934358][ T6688] netlink: 4 bytes leftover after parsing attributes in process `syz.5.253'.
[  158.171517][ T6700] netlink: 464 bytes leftover after parsing attributes in process `syz.2.258'.
[  158.620616][ T6709] netlink: 96 bytes leftover after parsing attributes in process `syz.2.261'.
[  158.879307][   T30] audit: type=1326 audit(1756017120.107:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6712 comm="syz.2.263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1400b8ebe9 code=0x7ffc0000
[  159.270492][   T30] audit: type=1326 audit(1756017120.107:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6712 comm="syz.2.263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1400b8ebe9 code=0x7ffc0000
[  159.297139][ T6719] netlink: 212376 bytes leftover after parsing attributes in process `syz.5.265'.
[  159.350732][   T30] audit: type=1326 audit(1756017120.167:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6712 comm="syz.2.263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1400b8ebe9 code=0x7ffc0000
[  159.476150][   T30] audit: type=1326 audit(1756017120.167:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6712 comm="syz.2.263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1400b8ebe9 code=0x7ffc0000
[  159.500233][ T6723] loop1: detected capacity change from 0 to 1024
[  159.588258][   T30] audit: type=1326 audit(1756017120.177:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6712 comm="syz.2.263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=132 compat=0 ip=0x7f1400b8ebe9 code=0x7ffc0000
[  159.708207][ T6723] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  159.721649][ T6723] ext4 filesystem being mounted at /51/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  159.740688][   T30] audit: type=1326 audit(1756017120.177:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6712 comm="syz.2.263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1400b8ebe9 code=0x7ffc0000
[  159.790508][   T30] audit: type=1326 audit(1756017120.177:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6712 comm="syz.2.263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1400b8ebe9 code=0x7ffc0000
[  159.840463][   T30] audit: type=1326 audit(1756017120.187:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6710 comm="syz.0.262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86f958ebe9 code=0x7ffc0000
[  159.911878][ T6732] netlink: 4 bytes leftover after parsing attributes in process `syz.5.269'.
[  159.960505][   T30] audit: type=1326 audit(1756017120.187:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6710 comm="syz.0.262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7f86f958ebe9 code=0x7ffc0000
[  159.991263][ T6723] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: block 1: comm syz.1.267: lblock 1 mapped to illegal pblock 1 (length 3)
[  160.041165][ T6723] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 3 with error 117
[  160.055774][ T6723] EXT4-fs (loop1): This should not happen!! Data will be lost
[  160.055774][ T6723] 
[  160.098633][   T43] hid_parser_main: 33 callbacks suppressed
[  160.098660][   T43] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x4
[  160.152326][   T43] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x2
[  160.177027][   T43] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x3
[  160.219105][   T43] hid-generic 0000:3000000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  160.291373][ T5866] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.617531][ T6739] fido_id[6739]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  160.739604][ T5862] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.825162][ T6753] netlink: 4 bytes leftover after parsing attributes in process `syz.0.278'.
[  160.907079][ T6754] netlink: 5 bytes leftover after parsing attributes in process `syz.1.280'.
[  160.917044][ T6754] 1{X功: renamed from 
30{X功 (while UP)
[  160.991376][ T6754] A link change request failed with some changes committed already. Interface 
31{X功 may have been left with an inconsistent configuration, please check.
[  161.028082][ T6757] netlink: 16 bytes leftover after parsing attributes in process `syz.4.279'.
[  162.121549][ T6764] netlink: 212376 bytes leftover after parsing attributes in process `syz.5.282'.
[  162.407168][   T30] kauditd_printk_skb: 9 callbacks suppressed
[  162.407191][   T30] audit: type=1326 audit(1756017123.647:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6767 comm="syz.1.284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f696d18ebe9 code=0x7ffc0000
[  162.600667][   T30] audit: type=1326 audit(1756017123.677:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6767 comm="syz.1.284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f696d18ebe9 code=0x7ffc0000
[  162.628830][   T30] audit: type=1326 audit(1756017123.677:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6767 comm="syz.1.284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7f696d18ebe9 code=0x7ffc0000
[  162.666228][   T30] audit: type=1326 audit(1756017123.677:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6767 comm="syz.1.284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f696d18ebe9 code=0x7ffc0000
[  162.725181][   T30] audit: type=1326 audit(1756017123.687:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6767 comm="syz.1.284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f696d18ebe9 code=0x7ffc0000
[  162.805996][   T30] audit: type=1326 audit(1756017123.687:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6767 comm="syz.1.284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f696d18ebe9 code=0x7ffc0000
[  162.849930][   T30] audit: type=1326 audit(1756017123.687:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6767 comm="syz.1.284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f696d18ebe9 code=0x7ffc0000
[  162.908060][   T30] audit: type=1326 audit(1756017123.687:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6767 comm="syz.1.284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f696d18ebe9 code=0x7ffc0000
[  162.946333][   T30] audit: type=1326 audit(1756017123.687:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6767 comm="syz.1.284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f696d18ebe9 code=0x7ffc0000
[  163.063341][   T30] audit: type=1326 audit(1756017123.687:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6767 comm="syz.1.284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f696d18ebe9 code=0x7ffc0000
[  163.088586][ T6781] netlink: 12 bytes leftover after parsing attributes in process `syz.4.290'.
[  163.292585][ T6787] netlink: 60 bytes leftover after parsing attributes in process `syz.3.293'.
[  164.272774][ T6792] loop4: detected capacity change from 0 to 512
[  164.522984][ T6797] netlink: 5 bytes leftover after parsing attributes in process `syz.2.297'.
[  164.555082][ T6797] 0{X功: renamed from gretap0 (while UP)
[  164.561987][ T6794] loop5: detected capacity change from 0 to 512
[  164.608476][ T6794] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  165.248015][ T6794] EXT4-fs (loop5): 1 truncate cleaned up
[  165.318915][ T6801] netlink: 64 bytes leftover after parsing attributes in process `syz.1.298'.
[  165.397551][ T6794] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  165.432484][ T6797] 0{X功: entered allmulticast mode
[  165.489589][ T6797] A link change request failed with some changes committed already. Interface 
30{X功 may have been left with an inconsistent configuration, please check.
[  166.001197][ T6819] netlink: 4 bytes leftover after parsing attributes in process `syz.0.303'.
[  167.167317][ T6828] loop2: detected capacity change from 0 to 1024
[  167.244448][ T6828] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.283990][ T6825] loop0: detected capacity change from 0 to 8192
[  167.334213][ T6828] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1286: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  167.382490][ T6825] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  167.456255][ T6819] bond0: (slave bond_slave_1): Releasing backup interface
[  167.456803][ T6828] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2847: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  167.485641][ T6834] netlink: 8 bytes leftover after parsing attributes in process `syz.3.307'.
[  167.699107][ T6842] input: syz0 as /devices/virtual/input/input10
[  167.753942][ T5864] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.782171][ T6834] bridge0: port 2(bridge_slave_1) entered disabled state
[  167.790999][ T6834] bridge0: port 1(bridge_slave_0) entered disabled state
[  167.943289][ T5863] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.169276][ T6846] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.312'.
[  168.253525][ T6848] netlink: 5 bytes leftover after parsing attributes in process `syz.1.314'.
[  168.298057][ T6848] 0{X功: renamed from 
31{X功 (while UP)
[  168.354932][ T6848] A link change request failed with some changes committed already. Interface 
30{X功 may have been left with an inconsistent configuration, please check.
[  169.380283][ T6864] netlink: 464 bytes leftover after parsing attributes in process `syz.0.318'.
[  169.416879][   T30] kauditd_printk_skb: 24 callbacks suppressed
[  169.416902][   T30] audit: type=1326 audit(1756017130.657:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6865 comm="syz.3.320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  169.563959][   T30] audit: type=1326 audit(1756017130.697:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6865 comm="syz.3.320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  169.580728][ T6871] netlink: 'syz.5.322': attribute type 10 has an invalid length.
[  169.680635][   T30] audit: type=1326 audit(1756017130.697:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6865 comm="syz.3.320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  169.736740][ T6871] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  169.775321][   T30] audit: type=1326 audit(1756017130.697:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6865 comm="syz.3.320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  169.850188][ T6874] vlan2: entered allmulticast mode
[  169.896119][   T30] audit: type=1326 audit(1756017130.697:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6865 comm="syz.3.320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  169.951703][ T6877] input: syz0 as /devices/virtual/input/input11
[  169.974404][ T6881] netlink: 4 bytes leftover after parsing attributes in process `syz.4.325'.
[  169.995882][   T30] audit: type=1326 audit(1756017130.697:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6865 comm="syz.3.320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  170.161777][   T30] audit: type=1326 audit(1756017130.697:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6865 comm="syz.3.320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  170.321110][   T30] audit: type=1326 audit(1756017130.697:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6865 comm="syz.3.320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  170.427889][   T30] audit: type=1326 audit(1756017130.697:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6865 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  170.749256][ T6881] bond0: (slave bond_slave_1): Releasing backup interface
[  171.215737][   T30] audit: type=1326 audit(1756017130.697:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6865 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  171.367909][ T6900] netlink: 5 bytes leftover after parsing attributes in process `syz.5.334'.
[  171.389178][ T6884] loop4: detected capacity change from 0 to 8192
[  171.454423][ T6884] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  171.609332][ T6908] netlink: 464 bytes leftover after parsing attributes in process `syz.2.337'.
[  171.610082][ T6900] 0{X功: renamed from gretap0 (while UP)
[  171.675822][ T6900] 0{X功: entered allmulticast mode
[  171.683490][ T6900] A link change request failed with some changes committed already. Interface 
30{X功 may have been left with an inconsistent configuration, please check.
[  172.399937][ T6923] openvswitch: netlink: Flow actions attr not present in new flow.
[  174.286444][ T6951] netlink: 464 bytes leftover after parsing attributes in process `syz.4.354'.
[  174.537391][ T6958] netlink: 5 bytes leftover after parsing attributes in process `syz.4.357'.
[  174.568082][ T6958] 1{X功: renamed from 
30{X功 (while UP)
[  174.592038][ T6958] A link change request failed with some changes committed already. Interface 
31{X功 may have been left with an inconsistent configuration, please check.
[  174.608311][ T6961] netlink: 60 bytes leftover after parsing attributes in process `syz.3.358'.
[  175.123579][ T6971] loop3: detected capacity change from 0 to 2048
[  175.131798][ T6972] netlink: 'syz.4.361': attribute type 4 has an invalid length.
[  175.139502][ T6972] netlink: 17 bytes leftover after parsing attributes in process `syz.4.361'.
[  175.176142][ T6971] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  175.246230][ T6973] netlink: 8 bytes leftover after parsing attributes in process `syz.5.362'.
[  175.400122][ T6973] bridge0: port 2(bridge_slave_1) entered disabled state
[  175.407937][ T6973] bridge0: port 1(bridge_slave_0) entered disabled state
[  175.551802][   T30] kauditd_printk_skb: 44 callbacks suppressed
[  175.551827][   T30] audit: type=1800 audit(1756017136.777:200): pid=6971 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.363" name="bus" dev="loop3" ino=18 res=0 errno=0
[  175.813592][ T6988] program syz.1.367 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  175.895609][ T6991] netlink: 464 bytes leftover after parsing attributes in process `syz.4.370'.
[  175.972338][ T5865] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.091027][ T6994] netlink: 5 bytes leftover after parsing attributes in process `syz.5.373'.
[  176.120680][ T6994] 1{X功: renamed from 
30{X功 (while UP)
[  176.396210][ T6994] A link change request failed with some changes committed already. Interface 
31{X功 may have been left with an inconsistent configuration, please check.
[  176.618460][ T7006] loop0: detected capacity change from 0 to 512
[  176.992217][ T7006] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  177.005948][ T7006] ext4 filesystem being mounted at /58/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  177.805435][ T7013] loop3: detected capacity change from 0 to 2364
[  178.066322][ T7018] netlink: 'syz.2.380': attribute type 4 has an invalid length.
[  178.400176][ T7018] netlink: 152 bytes leftover after parsing attributes in process `syz.2.380'.
[  178.432177][ T7022] openvswitch: netlink: Flow actions attr not present in new flow.
[  178.476265][ T7013] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  178.482834][ T7013] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  178.622328][ T7013] vhci_hcd vhci_hcd.0: Device attached
[  178.668200][ T7018] .`: renamed from bond0 (while UP)
[  178.695639][ T7026] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(11)
[  178.702296][ T7026] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  178.845561][ T7026] vhci_hcd vhci_hcd.0: Device attached
[  178.859395][ T5870] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.876416][   T43] usb 39-1: new low-speed USB device number 2 using vhci_hcd
[  178.891476][ T7031] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  178.973990][ T7011] vhci_hcd vhci_hcd.0: pdev(3) rhport(3) sockfd(14)
[  178.980650][ T7011] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  179.003210][ T7011] vhci_hcd vhci_hcd.0: Device attached
[  179.052788][ T7023] vhci_hcd: connection reset by peer
[  179.053847][ T7032] vhci_hcd: connection closed
[  179.061240][   T36] vhci_hcd: stop threads
[  179.063326][ T7027] vhci_hcd: connection closed
[  179.065944][   T36] vhci_hcd: release socket
[  179.078519][   T36] vhci_hcd: disconnect device
[  179.091067][   T36] vhci_hcd: stop threads
[  179.095334][   T36] vhci_hcd: release socket
[  179.141321][   T36] vhci_hcd: disconnect device
[  179.162710][   T36] vhci_hcd: stop threads
[  179.172582][   T36] vhci_hcd: release socket
[  179.190547][   T36] vhci_hcd: disconnect device
[  179.348093][ T7042] netlink: 8 bytes leftover after parsing attributes in process `syz.1.386'.
[  179.365926][ T7037] loop0: detected capacity change from 0 to 2048
[  179.493749][ T7043] netlink: 'syz.4.384': attribute type 4 has an invalid length.
[  179.501493][ T7043] netlink: 17 bytes leftover after parsing attributes in process `syz.4.384'.
[  179.548368][ T7037] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  179.594722][   T30] audit: type=1326 audit(1756017140.817:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7047 comm="syz.2.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1400b8ebe9 code=0x7ffc0000
[  179.635649][ T7050] loop1: detected capacity change from 0 to 512
[  179.639040][   T30] audit: type=1326 audit(1756017140.817:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7047 comm="syz.2.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=90 compat=0 ip=0x7f1400b8ebe9 code=0x7ffc0000
[  179.665005][   T30] audit: type=1326 audit(1756017140.817:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7047 comm="syz.2.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1400b8ebe9 code=0x7ffc0000
[  179.730970][ T7050] EXT4-fs (loop1): orphan cleanup on readonly fs
[  179.732975][   T30] audit: type=1326 audit(1756017140.827:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7047 comm="syz.2.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1400b8ebe9 code=0x7ffc0000
[  179.741429][ T7050] EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.388: bad orphan inode 13
[  179.767832][   T30] audit: type=1800 audit(1756017140.927:205): pid=7037 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.383" name="bus" dev="loop0" ino=18 res=0 errno=0
[  179.852911][ T7053] netlink: 464 bytes leftover after parsing attributes in process `syz.2.389'.
[  179.903206][ T7050] ext4_test_bit(bit=12, block=18) = 1
[  179.917981][ T5870] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.955947][ T7050] is_bad_inode(inode)=0
[  180.038332][ T7050] NEXT_ORPHAN(inode)=2130706432
[  180.046716][ T7050] max_ino=32
[  180.076057][ T7050] i_nlink=1
[  180.092716][ T7050] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  180.296106][ T5866] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.359647][ T7063] netlink: 5 bytes leftover after parsing attributes in process `syz.4.393'.
[  180.385509][ T7063] 0{X功: renamed from 
31{X功 (while UP)
[  180.453147][ T7063] A link change request failed with some changes committed already. Interface 
30{X功 may have been left with an inconsistent configuration, please check.
[  180.779917][ T7070] loop1: detected capacity change from 0 to 2048
[  180.846943][ T7073] loop0: detected capacity change from 0 to 512
[  180.868281][ T7070] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  180.955040][ T7073] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  180.975707][ T7077] netlink: 'syz.4.399': attribute type 10 has an invalid length.
[  180.990662][ T7073] ext4 filesystem being mounted at /61/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  181.395530][ T7083] syz.3.398 (7083) used greatest stack depth: 19048 bytes left
[  181.411778][ T5870] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.444516][ T5866] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.617683][ T7087] loop2: detected capacity change from 0 to 1024
[  181.671963][ T7087] EXT4-fs: Ignoring removed orlov option
[  181.690750][ T7093] netlink: 16 bytes leftover after parsing attributes in process `syz.5.405'.
[  181.741153][ T7096] netlink: 4 bytes leftover after parsing attributes in process `syz.0.401'.
[  181.760163][ T7087] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  181.845187][   T30] audit: type=1326 audit(1756017143.077:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7097 comm="syz.4.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  181.993706][   T30] audit: type=1326 audit(1756017143.077:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7097 comm="syz.4.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  182.114665][   T30] audit: type=1326 audit(1756017143.117:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7097 comm="syz.4.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  182.173354][   T30] audit: type=1326 audit(1756017143.117:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7097 comm="syz.4.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  182.173460][   T30] audit: type=1326 audit(1756017143.117:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7097 comm="syz.4.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  182.173533][   T30] audit: type=1326 audit(1756017143.117:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7097 comm="syz.4.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  182.173601][   T30] audit: type=1326 audit(1756017143.117:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7097 comm="syz.4.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  182.173670][   T30] audit: type=1326 audit(1756017143.117:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7097 comm="syz.4.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  182.173737][   T30] audit: type=1326 audit(1756017143.137:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7097 comm="syz.4.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  182.173806][   T30] audit: type=1326 audit(1756017143.137:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7097 comm="syz.4.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85ffd8ebe9 code=0x7ffc0000
[  182.321429][ T5863] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.483696][ T7111] Driver unsupported XDP return value 0 on prog  (id 194) dev N/A, expect packet loss!
[  182.848935][ T7119] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.414'.
[  183.696471][ T7136] netlink: 60 bytes leftover after parsing attributes in process `syz.0.420'.
[  184.060596][   T43] vhci_hcd: vhci_device speed not set
[  184.248646][ T7145] loop4: detected capacity change from 0 to 512
[  184.385646][ T7145] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c02c, mo2=0002]
[  184.446122][ T7145] System zones: 0-7
[  184.485538][ T7145] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  184.860338][ T5862] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  185.418332][ T7159] futex_wake_op: syz.4.428 tries to shift op by -1; fix this program
[  185.852469][ T7166] netlink: 212376 bytes leftover after parsing attributes in process `syz.4.431'.
[  186.306286][ T7175] netlink: 240 bytes leftover after parsing attributes in process `syz.0.433'.
[  186.333798][ T7168] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  186.693144][ T7177] netlink: 60 bytes leftover after parsing attributes in process `syz.0.435'.
[  187.016331][ T7180] program syz.1.436 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  187.118386][ T7183] random: crng reseeded on system resumption
[  187.261614][ T7183] Restarting kernel threads ...
[  187.287811][ T7183] Done restarting kernel threads.
[  187.835848][ T7190] loop2: detected capacity change from 0 to 2048
[  187.981762][ T7190] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  188.005485][   T30] kauditd_printk_skb: 76 callbacks suppressed
[  188.005508][   T30] audit: type=1800 audit(1756017149.247:292): pid=7190 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.441" name="bus" dev="loop2" ino=18 res=0 errno=0
[  188.103974][ T7205] netlink: 'syz.3.445': attribute type 10 has an invalid length.
[  188.213169][ T5863] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.577717][ T7208] netlink: 'syz.3.447': attribute type 4 has an invalid length.
[  188.585953][ T7208] netlink: 17 bytes leftover after parsing attributes in process `syz.3.447'.
[  188.671956][ T7211] netlink: 60 bytes leftover after parsing attributes in process `syz.4.450'.
[  188.822499][ T7217] input: syz0 as /devices/virtual/input/input12
[  190.912364][   T30] audit: type=1326 audit(1756017152.137:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.3.451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  191.003712][   T30] audit: type=1326 audit(1756017152.147:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.3.451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  191.088067][ T7225] loop4: detected capacity change from 0 to 1024
[  191.104818][   T30] audit: type=1326 audit(1756017152.147:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.3.451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  191.190974][ T7225] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  191.231135][   T30] audit: type=1326 audit(1756017152.147:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.3.451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  191.254934][   T30] audit: type=1326 audit(1756017152.147:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.3.451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  191.289600][   T30] audit: type=1326 audit(1756017152.147:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.3.451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  191.312324][   T30] audit: type=1326 audit(1756017152.147:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.3.451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  191.335011][   T30] audit: type=1326 audit(1756017152.147:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.3.451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  191.357735][   T30] audit: type=1326 audit(1756017152.187:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.3.451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  191.694493][ T7245] netlink: 'syz.0.460': attribute type 10 has an invalid length.
[  191.734462][ T7245] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  191.852954][ T7249] netlink: 4 bytes leftover after parsing attributes in process `syz.2.463'.
[  192.093805][ T5862] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.239424][ T7249] .`: (slave bond_slave_1): Releasing backup interface
[  192.246059][ T7261] input: syz0 as /devices/virtual/input/input13
[  192.263952][ T7260] netlink: 12 bytes leftover after parsing attributes in process `syz.3.467'.
[  193.426932][ T7252] loop2: detected capacity change from 0 to 8192
[  194.227700][ T7252] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  194.399363][ T7273] netlink: 'syz.1.470': attribute type 10 has an invalid length.
[  194.428381][   T30] kauditd_printk_skb: 12 callbacks suppressed
[  194.428406][   T30] audit: type=1326 audit(1756017155.657:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.3.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  194.696504][   T30] audit: type=1326 audit(1756017155.667:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.3.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  194.857793][   T30] audit: type=1326 audit(1756017155.667:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.3.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  194.974615][   T30] audit: type=1326 audit(1756017155.667:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.3.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  195.039332][   T30] audit: type=1326 audit(1756017155.667:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.3.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  195.125643][   T30] audit: type=1326 audit(1756017155.677:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.3.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  195.260547][   T30] audit: type=1326 audit(1756017155.677:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  195.335465][   T30] audit: type=1326 audit(1756017155.677:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  195.424148][   T30] audit: type=1326 audit(1756017155.677:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  195.492237][   T30] audit: type=1326 audit(1756017155.687:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  196.266578][ T7307] loop1: detected capacity change from 0 to 164
[  196.523930][ T7307] ISOFS: primary root directory is empty. Disabling Rock Ridge and switching to Joliet.
[  196.664286][ T7309] netlink: 5 bytes leftover after parsing attributes in process `syz.2.484'.
[  196.732771][ T7309] 1{X功: renamed from 
30{X功 (while UP)
[  196.803907][ T6039] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x4
[  196.814043][ T7309] A link change request failed with some changes committed already. Interface 
31{X功 may have been left with an inconsistent configuration, please check.
[  196.843734][ T6039] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x2
[  196.979579][ T7318] netlink: 4 bytes leftover after parsing attributes in process `syz.0.487'.
[  197.139129][ T6039] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x3
[  197.173843][ T6039] hid-generic 0000:3000000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  198.458169][ T7318] loop0: detected capacity change from 0 to 8192
[  198.544478][ T7330] loop1: detected capacity change from 0 to 128
[  198.559837][ T7318] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  198.673519][ T7330] serio: Serial port ptm0
[  198.887798][ T7333] veth1_macvtap: left promiscuous mode
[  198.918980][ T7333] macsec0: entered allmulticast mode
[  199.077500][ T7343] loop4: detected capacity change from 0 to 512
[  199.124788][ T7343] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  199.220673][ T7343] EXT4-fs (loop4): 1 truncate cleaned up
[  199.228361][ T7343] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  199.252419][ T7352] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.497'.
[  199.332690][ T7356] netlink: 5 bytes leftover after parsing attributes in process `syz.1.503'.
[  199.342196][ T7356] 1{X功: renamed from 
30{X功 (while UP)
[  200.140885][ T7356] A link change request failed with some changes committed already. Interface 
31{X功 may have been left with an inconsistent configuration, please check.
[  200.207518][ T7365] loop5: detected capacity change from 0 to 1024
[  200.265820][ T7365] EXT4-fs: Ignoring removed bh option
[  200.298066][ T7365] EXT4-fs: Ignoring removed nomblk_io_submit option
[  200.313624][ T7361] netlink: 'syz.3.500': attribute type 4 has an invalid length.
[  200.321658][ T7361] netlink: 17 bytes leftover after parsing attributes in process `syz.3.500'.
[  200.358091][ T5862] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.370004][ T7365] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  201.823076][ T5864] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.052089][ T7392] loop3: detected capacity change from 0 to 1024
[  202.101549][ T7392] EXT4-fs: Ignoring removed orlov option
[  202.175414][ T7392] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.308999][   T30] kauditd_printk_skb: 77 callbacks suppressed
[  202.309025][   T30] audit: type=1326 audit(1756017163.547:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7390 comm="syz.3.513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  202.952481][   T30] audit: type=1326 audit(1756017163.577:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7390 comm="syz.3.513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=63 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  203.216263][   T30] audit: type=1326 audit(1756017163.587:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7390 comm="syz.3.513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  203.238648][   T30] audit: type=1326 audit(1756017163.587:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7390 comm="syz.3.513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  203.262913][   T30] audit: type=1326 audit(1756017163.587:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7390 comm="syz.3.513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  203.285574][   T30] audit: type=1326 audit(1756017163.597:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7390 comm="syz.3.513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=160 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  203.308052][   T30] audit: type=1326 audit(1756017163.597:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7390 comm="syz.3.513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  203.383881][   T30] audit: type=1326 audit(1756017163.597:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7390 comm="syz.3.513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  203.435588][ T7410] loop9: detected capacity change from 0 to 7
[  203.443563][ T7410] Buffer I/O error on dev loop9, logical block 0, async page read
[  203.461426][   T30] audit: type=1326 audit(1756017163.597:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7390 comm="syz.3.513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  203.486612][ T5865] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.496131][ T7410] Buffer I/O error on dev loop9, logical block 0, async page read
[  203.504726][ T7410] Buffer I/O error on dev loop9, logical block 0, async page read
[  203.521944][ T7410] Buffer I/O error on dev loop9, logical block 0, async page read
[  203.529884][   T30] audit: type=1326 audit(1756017163.597:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7390 comm="syz.3.513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe54d58ebe9 code=0x7ffc0000
[  203.581423][ T7410] Buffer I/O error on dev loop9, logical block 0, async page read
[  203.630644][ T7410] Buffer I/O error on dev loop9, logical block 0, async page read
[  203.694611][ T7414] netlink: 5 bytes leftover after parsing attributes in process `syz.0.520'.
[  203.715163][ T7410] Buffer I/O error on dev loop9, logical block 0, async page read
[  203.725476][ T7414] 1{X功: renamed from 
30{X功 (while UP)
[  203.762241][ T7414] A link change request failed with some changes committed already. Interface 
31{X功 may have been left with an inconsistent configuration, please check.
[  203.770515][ T7410] ldm_validate_partition_table(): Disk read failed.
[  203.828224][ T7410] Buffer I/O error on dev loop9, logical block 0, async page read
[  203.842736][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  203.842829][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  203.884779][ T7410] Buffer I/O error on dev loop9, logical block 0, async page read
[  203.894757][ T7422] loop2: detected capacity change from 0 to 764
[  203.929940][ T7410] Buffer I/O error on dev loop9, logical block 0, async page read
[  203.948664][ T7410] Dev loop9: unable to read RDB block 0
[  203.998355][ T7422] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  204.024210][ T7410]  loop9: unable to read partition table
[  204.045605][ T7410] loop9: partition table beyond EOD, truncated
[  204.090495][ T7410] loop_reread_partitions: partition scan of loop9 (x�熝鵂�诂ЫdGご鄸冚’牆夥�
[  204.090495][ T7410] 
) failed (rc=-5)
[  204.353765][ T7438] netlink: 224 bytes leftover after parsing attributes in process `syz.2.531'.
[  204.386493][ T7438] ksmbd: Unknown IPC event: 4, ignore.
[  204.501843][ T7448] netlink: 4 bytes leftover after parsing attributes in process `syz.5.532'.
[  204.645746][ T7452] netlink: 8 bytes leftover after parsing attributes in process `syz.4.536'.
[  204.689760][ T7452] bridge0: port 2(bridge_slave_1) entered disabled state
[  204.697456][ T7452] bridge0: port 1(bridge_slave_0) entered disabled state
[  204.813748][ T7458] netlink: 16 bytes leftover after parsing attributes in process `syz.1.539'.
[  205.186109][ T7465] netlink: 5 bytes leftover after parsing attributes in process `syz.2.541'.
[  205.224398][ T7465] 0{X功: renamed from 
31{X功 (while UP)
[  205.272847][ T7465] A link change request failed with some changes committed already. Interface 
30{X功 may have been left with an inconsistent configuration, please check.
[  205.681258][ T7476] ------------[ cut here ]------------
[  205.686744][ T7476] verifier bug: REG INVARIANTS VIOLATION (true_reg1): range bounds violation u64=[0xffffdfcd, 0xffffffffffffdfcc] s64=[0x80000000ffffdfcd, 0x7fffffffffffdfcc] u32=[0xffffdfcd, 0xffffdfcc] s32=[0xffffdfcd, 0xffffdfcc] var_off=(0xffffdfcc, 0xffffffff00000000)(1)
[  205.729389][ T7476] WARNING: CPU: 1 PID: 7476 at kernel/bpf/verifier.c:2722 reg_bounds_sanity_check+0x62b/0x1200
[  205.739987][ T7476] Modules linked in:
[  205.744120][ T7476] CPU: 1 UID: 0 PID: 7476 Comm: syz.1.546 Not tainted syzkaller #0 PREEMPT(full) 
[  205.753539][ T7476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  205.763726][ T7476] RIP: 0010:reg_bounds_sanity_check+0x62b/0x1200
[  205.770103][ T7476] Code: 45 ac 50 8b 45 b0 50 8b 45 b4 50 ff 75 b8 4c 8b 4d c0 4c 8b 45 c8 48 8b 95 58 ff ff ff 48 8b b5 60 ff ff ff e8 b6 67 ab ff 90 <0f> 0b 90 90 48 8b 95 40 ff ff ff 48 83 c4 38 48 b8 00 00 00 00 00
[  205.789903][ T7476] RSP: 0018:ffffc9000b3572f8 EFLAGS: 00010286
[  205.796002][ T7476] RAX: 0000000000000000 RBX: 00000000ffffdfcd RCX: ffffc9000c3ca000
[  205.804440][ T7476] RDX: 0000000000080000 RSI: ffffffff817a3365 RDI: 0000000000000001
[  205.812966][ T7476] RBP: ffffc9000b3573f0 R08: 0000000000000001 R09: 0000000000000000
[  205.821455][ T7476] R10: 0000000000000001 R11: 0000000000000000 R12: ffff888051850000
[  205.829792][ T7476] R13: ffff88807c2302ac R14: ffff88807c2302a4 R15: ffff88807c230258
[  205.837801][ T7476] FS:  00007f696df506c0(0000) GS:ffff8881247bd000(0000) knlGS:0000000000000000
[  205.846768][ T7476] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  205.853370][ T7476] CR2: 00007f696df4ff98 CR3: 0000000057bb1000 CR4: 0000000000350ef0
[  205.861375][ T7476] Call Trace:
[  205.864645][ T7476]  <TASK>
[  205.867597][ T7476]  reg_set_min_max+0x183/0x2c0
[  205.872412][ T7476]  check_cond_jmp_op+0x19b0/0x72d0
[  205.877583][ T7476]  ? __pfx_check_cond_jmp_op+0x10/0x10
[  205.883091][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  205.888733][ T7476]  ? kfree+0x2b4/0x4d0
[  205.892846][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  205.898509][ T7476]  ? compute_scc_callchain+0x2d2/0x3a0
[  205.904632][ T7476]  ? do_check_common+0x4f21/0xb410
[  205.909801][ T7476]  do_check_common+0xa13e/0xb410
[  205.915223][ T7476]  ? __pfx_do_check_common+0x10/0x10
[  205.920569][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  205.926208][ T7476]  ? lockdep_hardirqs_on+0x51/0x110
[  205.931444][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  205.937083][ T7476]  ? kfree+0x2b4/0x4d0
[  205.941187][ T7476]  ? bpf_check+0x7cf8/0xc4d0
[  205.945823][ T7476]  bpf_check+0x8763/0xc4d0
[  205.950289][ T7476]  ? __pfx_bpf_check+0x10/0x10
[  205.955102][ T7476]  ? __lock_acquire+0xb97/0x1ce0
[  205.960107][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  205.965787][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  205.971469][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  205.977131][ T7476]  ? __asan_memset+0x23/0x50
[  205.981789][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  205.987427][ T7476]  ? bpf_obj_name_cpy+0x14a/0x1a0
[  205.992577][ T7476]  bpf_prog_load+0xe41/0x2490
[  205.997270][ T7476]  ? __pfx_bpf_prog_load+0x10/0x10
[  206.002682][ T7476]  ? find_held_lock+0x2b/0x80
[  206.007939][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.013969][ T7476]  __sys_bpf+0x4a3f/0x4de0
[  206.018398][ T7476]  ? __pfx___sys_bpf+0x10/0x10
[  206.023374][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.029099][ T7476]  ? css_rstat_updated+0x1c2/0x510
[  206.034281][ T7476]  ? __pfx_css_rstat_updated+0x10/0x10
[  206.039784][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.045457][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.051163][ T7476]  ? do_user_addr_fault+0x843/0x1370
[  206.056459][ T7476]  __x64_sys_bpf+0x78/0xc0
[  206.060920][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.066565][ T7476]  ? lockdep_hardirqs_on+0x7c/0x110
[  206.072290][ T7476]  do_syscall_64+0xcd/0x4c0
[  206.076815][ T7476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.082794][ T7476] RIP: 0033:0x7f696d18ebe9
[  206.087210][ T7476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  206.106841][ T7476] RSP: 002b:00007f696df50038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  206.115779][ T7476] RAX: ffffffffffffffda RBX: 00007f696d3b5fa0 RCX: 00007f696d18ebe9
[  206.124150][ T7476] RDX: 0000000000000048 RSI: 00002000000054c0 RDI: 0000000000000005
[  206.132171][ T7476] RBP: 00007f696d211e19 R08: 0000000000000000 R09: 0000000000000000
[  206.140136][ T7476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  206.148151][ T7476] R13: 00007f696d3b6038 R14: 00007f696d3b5fa0 R15: 00007ffd265d1588
[  206.156203][ T7476]  </TASK>
[  206.159218][ T7476] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  206.167181][ T7476] CPU: 1 UID: 0 PID: 7476 Comm: syz.1.546 Not tainted syzkaller #0 PREEMPT(full) 
[  206.176373][ T7476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  206.186418][ T7476] Call Trace:
[  206.189682][ T7476]  <TASK>
[  206.192602][ T7476]  dump_stack_lvl+0x3d/0x1f0
[  206.197206][ T7476]  vpanic+0x6e8/0x7a0
[  206.201204][ T7476]  ? __pfx_vpanic+0x10/0x10
[  206.205726][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.211370][ T7476]  ? reg_bounds_sanity_check+0x62b/0x1200
[  206.217152][ T7476]  panic+0xca/0xd0
[  206.220890][ T7476]  ? __pfx_panic+0x10/0x10
[  206.225337][ T7476]  check_panic_on_warn+0xab/0xb0
[  206.230290][ T7476]  __warn+0xf6/0x3c0
[  206.234199][ T7476]  ? reg_bounds_sanity_check+0x62b/0x1200
[  206.239954][ T7476]  report_bug+0x3c3/0x580
[  206.244292][ T7476]  ? reg_bounds_sanity_check+0x62b/0x1200
[  206.250027][ T7476]  handle_bug+0x184/0x210
[  206.254372][ T7476]  exc_invalid_op+0x17/0x50
[  206.258893][ T7476]  asm_exc_invalid_op+0x1a/0x20
[  206.263739][ T7476] RIP: 0010:reg_bounds_sanity_check+0x62b/0x1200
[  206.270079][ T7476] Code: 45 ac 50 8b 45 b0 50 8b 45 b4 50 ff 75 b8 4c 8b 4d c0 4c 8b 45 c8 48 8b 95 58 ff ff ff 48 8b b5 60 ff ff ff e8 b6 67 ab ff 90 <0f> 0b 90 90 48 8b 95 40 ff ff ff 48 83 c4 38 48 b8 00 00 00 00 00
[  206.289681][ T7476] RSP: 0018:ffffc9000b3572f8 EFLAGS: 00010286
[  206.295744][ T7476] RAX: 0000000000000000 RBX: 00000000ffffdfcd RCX: ffffc9000c3ca000
[  206.303727][ T7476] RDX: 0000000000080000 RSI: ffffffff817a3365 RDI: 0000000000000001
[  206.311694][ T7476] RBP: ffffc9000b3573f0 R08: 0000000000000001 R09: 0000000000000000
[  206.319657][ T7476] R10: 0000000000000001 R11: 0000000000000000 R12: ffff888051850000
[  206.327623][ T7476] R13: ffff88807c2302ac R14: ffff88807c2302a4 R15: ffff88807c230258
[  206.335602][ T7476]  ? __warn_printk+0x1a5/0x350
[  206.340392][ T7476]  ? reg_bounds_sanity_check+0x62a/0x1200
[  206.346184][ T7476]  reg_set_min_max+0x183/0x2c0
[  206.350965][ T7476]  check_cond_jmp_op+0x19b0/0x72d0
[  206.356112][ T7476]  ? __pfx_check_cond_jmp_op+0x10/0x10
[  206.361590][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.367225][ T7476]  ? kfree+0x2b4/0x4d0
[  206.371296][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.376932][ T7476]  ? compute_scc_callchain+0x2d2/0x3a0
[  206.382397][ T7476]  ? do_check_common+0x4f21/0xb410
[  206.387528][ T7476]  do_check_common+0xa13e/0xb410
[  206.392517][ T7476]  ? __pfx_do_check_common+0x10/0x10
[  206.397812][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.403446][ T7476]  ? lockdep_hardirqs_on+0x51/0x110
[  206.408656][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.414291][ T7476]  ? kfree+0x2b4/0x4d0
[  206.418368][ T7476]  ? bpf_check+0x7cf8/0xc4d0
[  206.422982][ T7476]  bpf_check+0x8763/0xc4d0
[  206.427463][ T7476]  ? __pfx_bpf_check+0x10/0x10
[  206.432236][ T7476]  ? __lock_acquire+0xb97/0x1ce0
[  206.437202][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.442859][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.448504][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.454139][ T7476]  ? __asan_memset+0x23/0x50
[  206.458741][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.464373][ T7476]  ? bpf_obj_name_cpy+0x14a/0x1a0
[  206.469400][ T7476]  bpf_prog_load+0xe41/0x2490
[  206.474085][ T7476]  ? __pfx_bpf_prog_load+0x10/0x10
[  206.479196][ T7476]  ? find_held_lock+0x2b/0x80
[  206.483905][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.489544][ T7476]  __sys_bpf+0x4a3f/0x4de0
[  206.494143][ T7476]  ? __pfx___sys_bpf+0x10/0x10
[  206.498938][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.504570][ T7476]  ? css_rstat_updated+0x1c2/0x510
[  206.509712][ T7476]  ? __pfx_css_rstat_updated+0x10/0x10
[  206.515215][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.520865][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.526501][ T7476]  ? do_user_addr_fault+0x843/0x1370
[  206.531790][ T7476]  __x64_sys_bpf+0x78/0xc0
[  206.536209][ T7476]  ? srso_alias_return_thunk+0x5/0xfbef5
[  206.541846][ T7476]  ? lockdep_hardirqs_on+0x7c/0x110
[  206.547051][ T7476]  do_syscall_64+0xcd/0x4c0
[  206.551567][ T7476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.557457][ T7476] RIP: 0033:0x7f696d18ebe9
[  206.561864][ T7476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  206.581468][ T7476] RSP: 002b:00007f696df50038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  206.589877][ T7476] RAX: ffffffffffffffda RBX: 00007f696d3b5fa0 RCX: 00007f696d18ebe9
[  206.597840][ T7476] RDX: 0000000000000048 RSI: 00002000000054c0 RDI: 0000000000000005
[  206.605804][ T7476] RBP: 00007f696d211e19 R08: 0000000000000000 R09: 0000000000000000
[  206.613766][ T7476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  206.621733][ T7476] R13: 00007f696d3b6038 R14: 00007f696d3b5fa0 R15: 00007ffd265d1588
[  206.629741][ T7476]  </TASK>
[  206.633012][ T7476] Kernel Offset: disabled
[  206.637334][ T7476] Rebooting in 86400 seconds..