last executing test programs:

11m3.192728339s ago: executing program 3 (id=11):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1000, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x4)
fcntl$setstatus(r0, 0x4, 0x42000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
fcntl$setstatus(r1, 0x4, 0x2400)
r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x20842, 0x4)
fcntl$setstatus(r2, 0x4, 0x42000)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
fcntl$setstatus(r3, 0x4, 0x2400)
close(0x3)

11m2.947222779s ago: executing program 3 (id=14):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58)
r1 = accept$alg(r0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000002f00)=[{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000040)='h4', 0x2}], 0x1, 0x0, 0x0, 0x40000}], 0x1, 0x8000)
r2 = fcntl$dupfd(r1, 0x406, r1)
read$FUSE(r2, &(0x7f0000004240)={0x2020, 0x0, 0x0, 0x0, <r3=>0x0}, 0xfffffd7d)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x8, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
setsockopt$sock_int(r2, 0x1, 0x20, &(0x7f0000000100)=0xeea, 0x4)
write$FUSE_ATTR(r2, &(0x7f0000000280)={0x78, 0xfffffffffffffff5, 0x0, {0x2, 0x3, 0x0, {0x0, 0x6, 0x400000000000000b, 0x0, 0x7ff, 0x2, 0x2, 0xd, 0x5, 0xa000, 0xa40, 0x0, r3, 0x3001, 0x2}}}, 0xffffff03)

11m2.604319547s ago: executing program 3 (id=17):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x52)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r3}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

11m2.44518917s ago: executing program 3 (id=19):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000002900)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000010, &(0x7f0000000180)=ANY=[@ANYRES8=0x0, @ANYRESOCT=0x0, @ANYRES8, @ANYRES64, @ANYRESOCT], 0x1, 0x6e7, &(0x7f0000001a40)="$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")
r0 = fsopen(&(0x7f0000000280)='proc\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x1)
fchdir(r1)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000240)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000e00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = open(&(0x7f00000003c0)='.\x00', 0x100, 0x97)
getdents(r3, &(0x7f0000001fc0)=""/184, 0xb8)

11m1.554765842s ago: executing program 3 (id=25):
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket(0x10, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000000)={'ip6gre0\x00', &(0x7f00000009c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x1, 0x2, 0x0, @loopback, @private1={0xfc, 0x1, '\x00', 0x1}}})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r1}, 0x0, &(0x7f0000000040)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000440)={'syztnl1\x00', &(0x7f0000000640)={'ip6_vti0\x00', 0x0, 0x0, 0x0, 0x3, 0x9, 0x0, @private2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0x0, 0xc0}})

11m0.750513497s ago: executing program 3 (id=28):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000340)={0x0, {{0xa, 0x0, 0x1, @mcast2, 0x1}}, {{0xa, 0x0, 0x6, @private2={0xfc, 0x2, '\x00', 0x1}, 0xfffffffd}}}, 0x108)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2f, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108)
r2 = getpid()
sched_setscheduler(r2, 0x5, &(0x7f0000000000)=0x7)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYBLOB="9feb01001800000000000000240000002400000008000000040000000000000700000000030000000000000f0100000000000000000000020200000000002e2e5f"], 0x0, 0x44}, 0x20)
ioctl$int_in(r0, 0x5452, &(0x7f0000000140)=0x1)
syz_emit_ethernet(0x3e, &(0x7f00000000c0)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x7, 0x4, 0x0, 0x4, 0x30, 0x0, 0x0, 0x0, 0x6, 0x0, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@cipso={0x86, 0x6}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)

10m59.651976985s ago: executing program 32 (id=28):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000340)={0x0, {{0xa, 0x0, 0x1, @mcast2, 0x1}}, {{0xa, 0x0, 0x6, @private2={0xfc, 0x2, '\x00', 0x1}, 0xfffffffd}}}, 0x108)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2f, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108)
r2 = getpid()
sched_setscheduler(r2, 0x5, &(0x7f0000000000)=0x7)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYBLOB="9feb01001800000000000000240000002400000008000000040000000000000700000000030000000000000f0100000000000000000000020200000000002e2e5f"], 0x0, 0x44}, 0x20)
ioctl$int_in(r0, 0x5452, &(0x7f0000000140)=0x1)
syz_emit_ethernet(0x3e, &(0x7f00000000c0)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x7, 0x4, 0x0, 0x4, 0x30, 0x0, 0x0, 0x0, 0x6, 0x0, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@cipso={0x86, 0x6}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)

10m24.635265195s ago: executing program 1 (id=260):
r0 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0)
flock(r0, 0x2)
r1 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0)
flock(r1, 0x2)
r2 = open(&(0x7f0000000180)='.\x00', 0x10000, 0x0)
flock(r2, 0x1)
flock(r2, 0x2)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r3, 0xffffffffffffffff, 0x0)

10m24.213067559s ago: executing program 1 (id=264):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1, 0x31, 0xffffffffffffffff, 0x8871b000)
mremap(&(0x7f00006bd000/0x2000)=nil, 0x2000, 0x4000, 0x3, &(0x7f0000721000/0x4000)=nil)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000c, 0x204031, 0xffffffffffffffff, 0xffffd000)
munmap(&(0x7f0000a88000/0x1000)=nil, 0x1000)
munmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000)
mremap(&(0x7f0000807000/0x3000)=nil, 0x3000, 0x1000, 0x0, &(0x7f0000ffe000/0x1000)=nil)
mremap(&(0x7f000061c000/0x13000)=nil, 0x13000, 0x4000, 0x3, &(0x7f0000fb0000/0x4000)=nil)
mremap(&(0x7f0000303000/0x3000)=nil, 0x3000, 0x3000, 0x3, &(0x7f0000968000/0x3000)=nil)
mremap(&(0x7f00009b2000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000769000/0x1000)=nil)
munmap(&(0x7f00003fe000/0xc00000)=nil, 0xc00000)

10m24.020473165s ago: executing program 1 (id=265):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x3, 0x0, 0x0}, 0x94)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x1, 0x9, @remote, 0x7}, 0x1c)
sendto$inet6(r0, &(0x7f00000001c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f35d4ea667817d90d532af065f2e398dd9081ea16f8b371a202a6f9e505bbc964a0d3880bf0104a0a0a2f0d311efee1637e85a0125b38f961918f99bf9c2c146e42327f178dc2b3d4936e7f7f0a79f74ba464d83ab41742d1186776dc", 0x81, 0x840, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000000)=0x40)

10m23.891140935s ago: executing program 1 (id=266):
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000, &(0x7f0000000000)={[{@errors_continue}]}, 0x1, 0x4be, &(0x7f0000000a00)="$eJzs3c9vG1UeAPCv7SZN0uz2x+5h28O22lbqQtW4TdQkQr30hIRUQO2BYxUSNypx4ih2ShPlkEoc4I6gEifEoX8Agis9cewVeoIzUgUhJUKikpHHdppfLgbSWMp8PtLUb+ZN/X0v1vdp5o3HE0Bqnar9k4noj4iHEXG4vrp5h1P1l7WVpfHakolq9fqPmWS/1ZWl8eauzf93KCKWI6InIq69GvF2Znvc8sLi1FixWJhrrOcr07P58sLi+VvTY5OFycLM0MjgyOjw8MjopV3r63t3rrzx0S9X3v/sm/vfvZP54kytWf2Nuo392E31rnfF0Q3bDkTE5RcRrANyjf70droh/CW1z+9fEXE6yf/DkUs+TSANqtVq9Wn1YKvq5Sqwb2WTY+BMdiAi6uVsdmCgfgz/7+jLFkvlyrmbpfmZifqx8pHoyt68VSxcaJwrHImuTG39YlJ+tj64ZX0oIjkG/jDXm6wPjJeKE3s71AFbHNqS/09y9fwHUsIpP6SX/If0kv+QXvIf0kv+Q3rJf0gv+Q/pJf8hveQ/pJf8h/SS/5BKb169Wluqa4373yduL8xPlW6fnyiUpwam58cHxktzswOTpdJkcs/O9B+9X7FUmh2Kmfk7+UqhXMmXFxZvTJfmZyo3kvv6bxS69qRXQDuOnnzwKBMRy6/0JktNd6NOrsL+Vq1motP3IAOdkev0AAR0jKk/SC/n+MAOP9G7SU+ritndbwuwN7LPii1THNifzh53/Q/Syvw/pJf5f0gvx/iA+X9In2ynGwB0TH+L53/9Y8Ozuy5ExD8j4ttc18Hms76A/SD7Q6bVPOCZiO7Mr8klgu6IePeT6x/fGatU5i7Wtv+0vr1yr7F9sP2o3bvWfqBdzTxt5jEAkF6rK0vjzWUv4z6+Uj/5qMVdayz1mgONucme5Bpl32pm0zlKy3OWP2n5bkT8J+LJytJ4c2lGqD/vvH7lo281ty3+scZrpv4WSXsPJM9Nj7a/Tv134h/fEP+/G+Kf2IW/C6TBg9r4c2H7+HewkdOxnn+bx5/+XfruRHP8W9s2/mXXx79ci/HvZJsxLuffWm0Z/27EiR3jN+P1JLG2xq+17Wyb8b/+4OeHreqqn9bfZ6f4TbVSvjI9my8vLJ5PfkdusjAzNDI4Mjo8PDJ6KZ/MUeebM9XbPfrf06+e1/++FvF36n/3hja91Gb/f7v35blTz4n//9M7f/7Hdojf1BsRL7cZ/7XPv7/Wqq4Wf6JF/7Mt4mcilmvbhtqMf/3+49fb3BUA2APlhcWpsWKxMKegoKCwXuj0yAS8aM+SvtMtAQAAAAAAAAAAANq1F18n7nQfAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD2g98DAAD//3wG2HA=")
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r1=>r0, {0x643}}, './file0\x00'})
getsockname$packet(r1, &(0x7f0000000240)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000002c0)=0x14)
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000700)={'filter\x00', 0x7, 0x4, 0x3e0, 0x0, 0xe8, 0xe8, 0x2f8, 0x2f8, 0x2f8, 0x4, &(0x7f0000000040), {[{{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@link_local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pim6reg\x00', 'nicvf0\x00'}, 0xc0, 0xe8}, @unspec=@NFQUEUE0={0x28}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @private, @broadcast}}}, {{@uncond, 0xc0, 0x100}, @unspec=@ERROR={0x20, 'ERROR\x00', 0x0, "d1b7201e6851dcc361a7eb546f513b69c23cd84d078ce2b4e1b29dcf3fb6"}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x430)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x8004587d, &(0x7f00000003c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x4})
r2 = socket$inet(0x2, 0x3, 0x6)
ioctl$sock_inet_SIOCSARP(r2, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @dev}, {0x1, @local}, 0x4a, {0x2, 0x0, @dev}})
r3 = socket$inet(0x2, 0x3, 0x6)
ioctl$sock_inet_SIOCSARP(r3, 0x8955, &(0x7f0000000000)={{0x2, 0x3, @local}, {0x1, @remote}, 0x4a, {0x2, 0x0, @remote}, 'veth1_to_bridge\x00'})
ioctl$sock_inet_SIOCSARP(r2, 0x8953, &(0x7f0000000000)={{0x2, 0x0, @dev}, {0x0, @local}, 0x4a, {0x2, 0x0, @multicast2}, 'syz_tun\x00'})

10m23.559245802s ago: executing program 1 (id=268):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="700200001300290a000000000000000007000000", @ANYBLOB="000000000000000010010c8013000c800ca3488008000000000000000800038064001d80050006000000000014000500714abbd2547de97cbbf6efb226f19bf90d0002003a288e5e5b5b5a40000000006000078014000400293a02149f3b75a67093c28fd6f55a2314000400e48f01e49713f0c2d839f940d9f088d8050006000000003bd00002006272696467655f736c6176655f30000007000200293a00000500060000000000080001000000000018002580140004004d2906d0880fc8acc30fe2020f9849675000028004000500a1085e7df341b9dc3d8008a2fe5bdaad140004009c7e472c916020fe41"], 0x270}, 0x1, 0x0, 0x0, 0x8015}, 0x4)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdir(&(0x7f0000000300)='./file0\x00', 0xfffffffffffffffe)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000004c0)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, &(0x7f0000000180))

10m22.625981897s ago: executing program 1 (id=275):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x3ff, 0x2, 0x5}, 0x1c)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r2, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x3ff, 0x2, 0x5}, 0x1c)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'ip6gretap0\x00', <r3=>0x0})
sendto$packet(r1, &(0x7f0000000240)="46a6", 0x2, 0x0, &(0x7f0000000200)={0x11, 0x8100, r3, 0x1, 0xe0}, 0x14)

10m19.902030097s ago: executing program 0 (id=291):
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={0xffffffffffffffff, 0x0, 0x1, 0x0, &(0x7f0000000440)='\\', 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r0 = syz_io_uring_setup(0x10d2, &(0x7f0000000480)={0x0, 0x57ee, 0x10, 0x2, 0x34f}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2e, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x50, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0)

10m19.709358753s ago: executing program 0 (id=293):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r0, &(0x7f0000000640)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003dc0)=""/226, 0xe2}, 0x7f}], 0x1, 0x832b, 0x0)
mprotect(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4a, &(0x7f0000000040)=0x7, 0x4)
setsockopt$inet6_int(r0, 0x29, 0x4d, &(0x7f0000000180)=0x8, 0x4)
r1 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x2409c8c1, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
sendto$inet6(r1, 0x0, 0x0, 0x0, 0x0, 0x0)

10m19.585646383s ago: executing program 0 (id=294):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x2}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
bind$tipc(r1, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x3, 0x4}}, 0x10)
bind$tipc(r1, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42, 0x4}}}, 0x10)
bind$tipc(r1, &(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x42, 0x2}}}, 0x10)
close(r0)

10m19.510784169s ago: executing program 0 (id=296):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000000500)={[{@dioread_nolock}, {@stripe={'stripe', 0x3d, 0x3}}, {@min_batch_time={'min_batch_time', 0x3d, 0x1}}, {@nogrpid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@errors_remount}, {@acl}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}]}, 0xfd, 0x573, &(0x7f0000000cc0)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000000080)='./bus\x00', 0x10040d0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f0000000440)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './bus'}}], [], 0x2c})
chdir(&(0x7f0000000140)='./file0\x00')
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x181101, 0x0)
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x200102, 0x0)
ioctl$TUNSETGROUP(r0, 0x400454ce, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x101142, 0xeafb)

10m19.012221629s ago: executing program 0 (id=297):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x20000000000001d2, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000001000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x30, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff52, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)

10m18.531286598s ago: executing program 0 (id=299):
socket$inet_udp(0x2, 0x2, 0x0)
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000140)={[0x157]}, 0x8)
r1 = syz_io_uring_setup(0x6934, &(0x7f0000000300)={0x0, 0x125a, 0x10100, 0xffffffff, 0x100000, 0x0, r0}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x3, r0, 0x0, 0x0, 0x0, 0x0, 0x0, {0xfffe}})
io_uring_enter(r1, 0x44fd, 0x3, 0x1, 0x0, 0x0)
r4 = gettid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc)=<r5=>0x0)
timer_settime(r5, 0x0, &(0x7f0000000240)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r6 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
mq_timedreceive(r6, &(0x7f0000004600)=""/102381, 0xfffffceb, 0x0, 0x0)

10m18.241986771s ago: executing program 33 (id=299):
socket$inet_udp(0x2, 0x2, 0x0)
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000140)={[0x157]}, 0x8)
r1 = syz_io_uring_setup(0x6934, &(0x7f0000000300)={0x0, 0x125a, 0x10100, 0xffffffff, 0x100000, 0x0, r0}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x3, r0, 0x0, 0x0, 0x0, 0x0, 0x0, {0xfffe}})
io_uring_enter(r1, 0x44fd, 0x3, 0x1, 0x0, 0x0)
r4 = gettid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc)=<r5=>0x0)
timer_settime(r5, 0x0, &(0x7f0000000240)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r6 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
mq_timedreceive(r6, &(0x7f0000004600)=""/102381, 0xfffffceb, 0x0, 0x0)

10m14.239801484s ago: executing program 5 (id=321):
r0 = memfd_create(&(0x7f00000005c0)=' \xc76\xbe\x91\x8d\x182)!\x9a%\xa2\xd28\xd6\x06\a\x0e\xfc\xfe\x12\x8f&\x13\xae%@T\xa3\xb0>\\\xec\xa9\xf9Q@6A\x10\x8cn|\x00\x00\x00\x00\x00\x00\x00\x00r\xbb\xdd\xe8\x87\x05=\xfb\x8b}\xfc\x1d\x03\xe1\xfcm\x9b\xf7fo\"i\xa1hk\x1f\xf5z\xc1\x7f\xa4\\]\xc4\xbe3\xf9\xa8\t?:\xd8\xda\x84\xeepI[\x1c\x00\x00\x00\x00\xf9v\x00\x00\x00\x00\x00T\xb6\xbe\x0f~\xc0\x92\xe9O{\xa8\x81(\x01\x14\xfc\x83\xf9\xfb\x05\x94T\x81@Lq]\xf9\x15zj\x87\xc4\x8e\xe8/\xb9-&R\x8e\xb2\xb3bBx\x1e1\x18\x8f\x19\xf7]#\xed,\xc7\x11\tp\xf4\xa3\xee\x00\x00\x00\x00\'}\x18\xe8O\xa8#K\xb6\xe4U\x92\xd2\x9d\xb8<X\xfa\xdd\x8a6\xa1\x82\xf7r\xd8z\x85\x8do\xa5\xed\xd4\xbc8U\x1e\xf2tl8\xfe\xd0\x94\xfe\xf5\x1c+\x00U\te\xfa6\xca\xb9\xb4Q\xd9\xee\r6\x861h{\xc7z\'F\xc7\x91\x06x\xe1`\xf1:\xcf+\xd5\f\xb2\xce\xa4\x06\x90\x90\x9b\x1d\xcaa\xf7\x8f\x9e\x80\x93\xafT\xdfl\xec\xc6\x8e\x96\r[n\xc6\x99\x1fr<\x06\xb3\xbcT\x00\xda6\x18/\x18l\xc1\x81\x8e8L\xcb*S_\xd0:\xa4V\xbd\xf1\xa4\x955\xa9\x9d\xe0\x9b\xd3\x95\xc88n:\x89>?2\xc8\xe7kovd\xa4\x1bl+\x14\x17\x14\x17C2! U\x04:\xd93F\xb9\xfc\x1b\xfd}\x05\xf9\x11\xf3)>q\x10\xd3\xf0\xaf>\xf8t(bX\xe3g\x05\xfe\b\xbcy\x95*\xca\a\xaf\xbb\xf9\xc3Y\xa2\x91\x90.\xc8\xbe\xb0\xa6\xbd\xbd\xfd\xfaf*\xb2&\x82\xa0\x17\xe7)\xf5\xa2\xccv\n\x1b\xd4\xf4\x11*\xc9\xc6*\xa4.\x94[$\xb8\xb3Q\xde\xd8A\xa4~c,`\x02\xb8\x01r\x89\x82\x13\xd0}C7\xfb\xf2\tM\x1e\xe9\xa5\v\xc5\xba(\x89\xb0l\x92H\x1cR\x1f>\xc4ie\xe0B\xf0[\xe2\xe1\x12\x1d\x8fR&\xd1\xa6#\xda.\x0f\xd7\xd7\xa4\x90\x14\x92I\xf82&\x16<\xf2RR\xc2\x02.Q\xef\x85\xef\xf9\xe5\x00\xe9\xca\xb1\x8c\x11\x11l\x9f\xc8\b\xf7A\xa6\x81\xad\xdc\x95\xc8\xef\x102\xa8\x87\x01\x00\\\xfee \n0F\xbc\x85\xc5C\xd0\x99\xe4\t\xab`\'t\xc2\xe9\x13\xcag\xea\xb3\xb5\x92\x00J\xc6y\x05\xcc\xde\xa0\xf6\xb9 \xe5\xdd\f\x18\xfc\xe0\xc3(\xd8\xeb\x1a6\xe6\xfa\x93\xc07R\x0f-\x9e\xf3\x87E\xa3\xd5o\x1bA\x88L/\xe7>45Q?\be\x7f\xa9\x9a\xcae\xd8Y\xdf]\x1bS\x825\xcb\x00\xa4}\x97\x84T\xad\x9b\x1e!\x8a\xbc\x02+#Q\xa9 \xe9\x05r\xe1\xec\x0f\xa7\xe6Of\x95\x02{', 0x4)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x400000bde)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
write$P9_RSTATu(0xffffffffffffffff, 0x0, 0x20e)
ftruncate(r0, 0x400000)
finit_module(r0, 0x0, 0x0)

10m11.757471125s ago: executing program 5 (id=333):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x5, 0x2, 0x4}, 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x1, 0x4, 0x4, 0x9}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000dc0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001c40)={0x14, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000001000000850000008600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f00000000c0)=r4, 0x4)
sendmsg$unix(r3, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)

10m11.677444152s ago: executing program 5 (id=335):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(des3_ede)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000000400)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe1a}], 0x1, &(0x7f0000000380)=[@op={0x18}], 0x18}], 0x4924924924924b9, 0x0)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000000c0)=""/73, 0x49}, {&(0x7f0000000200)=""/83, 0x53}], 0x3a}, 0x0)
ioctl$int_in(r1, 0x5452, &(0x7f0000000500)=0xd0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

10m10.895553025s ago: executing program 5 (id=340):
move_pages(0x0, 0x1efe, &(0x7f0000000080), 0x0, &(0x7f0000000040), 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000006c0)={[{@orlov}, {@noauto_da_alloc}, {@inlinecrypt}, {@dioread_lock}, {@data_err_ignore}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@data_err_ignore}, {@grpquota}, {@noblock_validity}, {@user_xattr}, {@resuid}, {@errors_remount}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
write$FUSE_INIT(r0, &(0x7f00000001c0)={0x50, 0xffffffffffffffda, 0x0, {0x7, 0x2b, 0x101, 0x12400000, 0x0, 0xff, 0xfff, 0x400, 0x0, 0x0, 0x2, 0x6}}, 0x50)
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x8005, 0x0, 0x0, 0x19, 0xd, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x8]})
pwritev2(r0, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5405, 0x0, 0x0)

10m10.142367666s ago: executing program 5 (id=350):
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(0xffffffffffffffff, 0xc02064b9, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
r3 = socket(0x11, 0x800000002, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000540)={'wlan0\x00', {0x2, 0x0, @private=0xf30a0000}})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001440)={0x1c, r2, 0x1, 0x0, 0x0, {{0x8}, {@val={0x8, 0x3, r1}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

10m9.737283108s ago: executing program 5 (id=354):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
unshare(0x22020400)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0)
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f00000000c0)='./file0\x00', 0x81000000)
inotify_add_watch(r0, &(0x7f0000000100)='./file0/bus\x00', 0xc4000100)
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
setns(r2, 0x24020000)

10m9.47670911s ago: executing program 34 (id=354):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
unshare(0x22020400)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0)
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f00000000c0)='./file0\x00', 0x81000000)
inotify_add_watch(r0, &(0x7f0000000100)='./file0/bus\x00', 0xc4000100)
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
setns(r2, 0x24020000)

10m7.37483891s ago: executing program 35 (id=275):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x3ff, 0x2, 0x5}, 0x1c)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r2, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x3ff, 0x2, 0x5}, 0x1c)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'ip6gretap0\x00', <r3=>0x0})
sendto$packet(r1, &(0x7f0000000240)="46a6", 0x2, 0x0, &(0x7f0000000200)={0x11, 0x8100, r3, 0x1, 0xe0}, 0x14)

9m13.587350026s ago: executing program 4 (id=565):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x400}}}]}, 0x38}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@gettfilter={0x24, 0x2e, 0x1, 0x70bd28, 0x25dfdbfb, {0x0, 0x0, 0x0, r5, {0x2, 0xa}, {0x1, 0xfff1}, {0x7, 0xc}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000090}, 0x4041080)
socket$packet(0x11, 0x2, 0x300)

9m13.346886425s ago: executing program 4 (id=568):
r0 = socket(0x2, 0x80805, 0x0)
close(0x3)
r1 = socket(0x2, 0x80805, 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r2, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000200)={<r3=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r2, 0x84, 0x7a, &(0x7f0000000340)={r3, @in={{0x2, 0xce23, @broadcast}}}, &(0x7f0000000040)=0x84)
sendmmsg$inet_sctp(r1, &(0x7f00000032c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="30000000000000008400000001000000000000017c"], 0x30}], 0x1, 0x0)
setsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f00000008c0)=@sack_info={0x0, 0x47, 0x6}, 0xc)

9m13.268233901s ago: executing program 4 (id=570):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f00000002c0)="cc", 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000580)={0x2, 0x0, 0x6, 0xffffffff}, 0x10)
sendto$inet6(r1, &(0x7f0000000200)='x', 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000000)={0x0, 0x6, 0x7a}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f00000005c0)={0x0, 0x2, 0x7a}, 0x39)

9m13.145379231s ago: executing program 4 (id=573):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2041, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000080)={0x49de, 0x0, 0xfffc, 0xbfff, 0x19, "ec28a144f13d7607"})
syz_open_procfs(0x0, &(0x7f0000000040)='net/icmp6\x00')
bind$inet6(0xffffffffffffffff, &(0x7f0000000240)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x43}}}, 0x1c)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x12, "0062ba5d8200"})
r1 = syz_open_pts(r0, 0x20800)
dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x44)
unshare(0x20000400)

9m12.194544658s ago: executing program 4 (id=576):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdir(&(0x7f0000000300)='./file0\x00', 0xfffffffffffffffe)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000004c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f00000002c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r1, 0x40049366, 0x0)

9m12.088953797s ago: executing program 4 (id=577):
syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000000)={0x0, &(0x7f00000001c0)=[@uexit={0x0, 0x18, 0x7fffffff}, @code={0xa, 0x58, {"66baf80cb8c0d3b581ef66bafc0cb873000000ef440f20c0350c000000440f22c0470f01cbc442f924e53e40a50f20d835200000000f22d8c46175e9290f09460f00d4430f2090"}}, @wr_crn={0x46, 0x20, {0x7, 0x49b}}, @wr_crn={0x46, 0x20, {0x3, 0xffffffffffffffc0}}, @uexit={0x0, 0x18, 0x80000000}, @rdmsr={0x32, 0x18, {0x10b4}}, @rdmsr={0x32, 0x18}, @wr_crn={0x46, 0x20, {0x2, 0x1400000000000}}, @wr_crn={0x46, 0x20, {0x3, 0xff}}, @cpuid={0x14, 0x18, {0x400, 0x5e6d4d46}}, @code={0xa, 0x66, {"460f0096550000006467660fc7b700080000400f78a4c2c800000066410f388033c7442400e9000000c744240200600000ff1c24c401a172d3000f01c3260f01cf66baf80cb82d70a386ef66bafc0cb090ee0f01c8"}}, @wr_crn={0x46, 0x20, {0x9, 0xae}}], 0x1d6})
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_udp_int(r0, 0x11, 0x68, &(0x7f0000000080)=0xa40, 0x4)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000b80)={'tunl0\x00', &(0x7f0000000380)={'syztnl2\x00', 0x0, 0x7800, 0x7, 0x7, 0x9, {{0x5, 0x4, 0x1, 0x0, 0x14, 0x64, 0x0, 0x3, 0x2f, 0x0, @loopback, @private=0xa010100}}}})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="0a000000bbbbbbbbbbbbaaaaaaaaaabb86dd6d002000001311ff00000000000000000000000000000000ff0200000003000000000000e9ffff004f194e20"], 0x4b)

8m57.009317422s ago: executing program 36 (id=577):
syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000000)={0x0, &(0x7f00000001c0)=[@uexit={0x0, 0x18, 0x7fffffff}, @code={0xa, 0x58, {"66baf80cb8c0d3b581ef66bafc0cb873000000ef440f20c0350c000000440f22c0470f01cbc442f924e53e40a50f20d835200000000f22d8c46175e9290f09460f00d4430f2090"}}, @wr_crn={0x46, 0x20, {0x7, 0x49b}}, @wr_crn={0x46, 0x20, {0x3, 0xffffffffffffffc0}}, @uexit={0x0, 0x18, 0x80000000}, @rdmsr={0x32, 0x18, {0x10b4}}, @rdmsr={0x32, 0x18}, @wr_crn={0x46, 0x20, {0x2, 0x1400000000000}}, @wr_crn={0x46, 0x20, {0x3, 0xff}}, @cpuid={0x14, 0x18, {0x400, 0x5e6d4d46}}, @code={0xa, 0x66, {"460f0096550000006467660fc7b700080000400f78a4c2c800000066410f388033c7442400e9000000c744240200600000ff1c24c401a172d3000f01c3260f01cf66baf80cb82d70a386ef66bafc0cb090ee0f01c8"}}, @wr_crn={0x46, 0x20, {0x9, 0xae}}], 0x1d6})
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_udp_int(r0, 0x11, 0x68, &(0x7f0000000080)=0xa40, 0x4)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000b80)={'tunl0\x00', &(0x7f0000000380)={'syztnl2\x00', 0x0, 0x7800, 0x7, 0x7, 0x9, {{0x5, 0x4, 0x1, 0x0, 0x14, 0x64, 0x0, 0x3, 0x2f, 0x0, @loopback, @private=0xa010100}}}})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="0a000000bbbbbbbbbbbbaaaaaaaaaabb86dd6d002000001311ff00000000000000000000000000000000ff0200000003000000000000e9ffff004f194e20"], 0x4b)

7m45.09792748s ago: executing program 8 (id=1001):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r0 = fanotify_init(0x8, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
fanotify_mark(r0, 0x61, 0x48001022, r1, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x275a, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0xc0189436, &(0x7f0000000140))

7m44.9695183s ago: executing program 8 (id=1003):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000900)=ANY=[@ANYRES32=r4, @ANYRES32=r3, @ANYBLOB='&'], 0x10)
r5 = openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
read$FUSE(r5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r4}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
recvmsg$unix(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0x33fe0}], 0x1, 0x0, 0x0, 0x300}, 0x0)
sendmsg$inet(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000b00)="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", 0xfff}, {&(0x7f0000000180)="dd43", 0x2}], 0x2}, 0x0)

7m44.764272016s ago: executing program 8 (id=1006):
ioctl$vim2m_VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, 0x0)
gettid()
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r0, 0xbf2d)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000500)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="070000000000000000000200000014000180060001000200000008000300ac1414aa"], 0x28}}, 0x0)
accept4(r0, 0x0, 0x0, 0x0)

7m43.143886148s ago: executing program 8 (id=1014):
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000500)='./bus\x00', 0x10418, &(0x7f0000000040)=ANY=[@ANYRES8=0x0, @ANYRESOCT=0x0], 0xfe, 0x4b1, &(0x7f0000001d00)="$eJzs201sVNUbx/HfM3c6TIf+/5YXCxgCTTSxgkBfsEBqYnix0YQXLVQj8SWVTrHSdkinKCUgLNWdC5Yu3bpwZdwaEpfGhcEYFibIxs2sxB3m3LlvM5TOjG1nKP1+CJx7zzx3OOc8c+ecM5kRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACQjrx6uLfPWt0KAADQTCdPj/QOMP8DALCmnGH/DwAAsJaYPP0u054LJTvhn5dlj0/OXLo8emx44cvaTaaUPD/e/c329Q/sf2nwwMGwXPz65bZNp06fOdx9tDB9cTZfLObHu0dnJs8VxvN1P8NSr6+2yx+A7ukLl8YnJord/XsHKh6+3Hlv3fquzqHB945mwtjRY8PDpxMx6bb//L8/5FEr/Iw8vSDTx99/ayclpbT0sajx2llp7X4ndvmdGD027HdkanJsZs49aKkgKlU5JplwjJqQiyVJSa5dllmePVubPP0g05F9JTslyQvHYbf/wXBd7WmFtNu6SurRKsjZY2ydPH0g0619nXojGFc//xnpaqsbhxWXDu7/gpXsTf/9wN1P7m3z+Fvdr89MFBKxlgruqNU+PzTTY/7elJWnU/4dX7IR7Wx1c9Bk7fI0LVPmq0/8dYX8delTQwd27DyUXGFsqfE8LnZvcHPVMye3BUsHS7k/y98v1Cdrnv6U6f5vWf+8J5wDpBsPFrvwj6Y0DyvNPE3J9M+1klnVvtRL7O8jq33uX9n2t2ePFi7Oz06e/2huwcdz2cMfFudmx84t/HB57+ola2rtY6ulGtuS5ay84/v801J0XbAH+F/5LG7NN1fj10JPVRlKvn7qOa57F9vAOsq1yczTXZkm3t9anmeUa3hs1gKX/2GZiqWfLcx0kP90+SyR/5fj8ctaZRnxc/v/8uda4Vpi29nNj6pfify7Nrn8vyPTkb+3Bp9plPPvVcW6uC6Z3r25PYhLZVxcOuxO+RknJqfyvS72gUwbfwpj5cfmgthNcWyfiy3K9MWtytj1QezmOLbfxd6W6c6vC8c+HccOuNh5l6873WFszsXuCGK74ti95wpT47WG1eW/X6a3r79mYZ8fmf/E/X+jqow8lPPFj5cr/52JuhtBXs8G+U/XyP+XMs3/tT3stz/24ctqg/9vnH+3Vv7uZmVsuKHcGMf21dutVnP53yDTvVduR30O+hacxhlK5v+ZdGUZjWuL8r8hUdcZtCvT4FisRcX5KxfGpqbysxxwwAEH0UGr35nQDG7+H3Gz+qBn4TommP87ymfxiun+Z/H8P1RVRlo0/29M1A0Fq5a2tJSdm77YtkXKFuev7JmcHjufP5+fGdg/2Nt/aH/vwMG2TLi4i4/qHrsngcv/bpmu/fhLtI+pXP8tvP7PVZWRFuV/U7JPFeuauodiTXL575Bp8O7taL+52Po/3P/3PFtZRvdfi/K/OVHXGbSro8GxAAAAAAAAAAAAAAAAAIDVJGeenpPp8siLFv6GqJ7v/41XlZHl//5X+YfJNb7/1ZWoG2/S7xoaGmgAAAAAAAAAAIAmScnT1zI9r5JddxUd0olkiSfavwEAAP//G6xIAA==")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000e00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x31)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000000)='tlb_flush\x00', r0}, 0x10)
r1 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x1)
fchdir(r2)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
pidfd_send_signal(r2, 0x3f, &(0x7f0000001300)={0x2a, 0x5, 0x2}, 0x0)
r3 = open(&(0x7f00000003c0)='.\x00', 0x100, 0x97)
getdents(r3, &(0x7f0000001fc0)=""/184, 0xb8)

7m42.634911839s ago: executing program 8 (id=1018):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000340)=0x2, 0xa2)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f000000e0c0), 0x10010)
ioctl$int_in(r2, 0x5452, &(0x7f00000001c0)=0x6)
sendfile(r2, r3, &(0x7f0000000100)=0x6, 0x100000000010001)

7m42.287620857s ago: executing program 8 (id=1019):
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={0xffffffffffffffff, 0x0, 0x0}, 0x20)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="070002000000fddbdf2505000000180001801400020073797a5f74756e00000000000000007d0800038004000380080005"], 0x3c}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xd, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
connect$inet(0xffffffffffffffff, &(0x7f0000000380)={0x2, 0x4e25, @dev={0xac, 0x14, 0x14, 0x3e}}, 0x10)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000300)="2e00000010008188040f80ec59acbc0413a181000b00000000010000000000000e000a000f000000028002002d1f", 0x2e}], 0x1}, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480f0000005e140602000000000e000a001000000002800000121f", 0x2e}], 0x1}, 0x800)

7m41.51420008s ago: executing program 37 (id=1019):
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={0xffffffffffffffff, 0x0, 0x0}, 0x20)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="070002000000fddbdf2505000000180001801400020073797a5f74756e00000000000000007d0800038004000380080005"], 0x3c}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xd, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
connect$inet(0xffffffffffffffff, &(0x7f0000000380)={0x2, 0x4e25, @dev={0xac, 0x14, 0x14, 0x3e}}, 0x10)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000300)="2e00000010008188040f80ec59acbc0413a181000b00000000010000000000000e000a000f000000028002002d1f", 0x2e}], 0x1}, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480f0000005e140602000000000e000a001000000002800000121f", 0x2e}], 0x1}, 0x800)

7.766384172s ago: executing program 2 (id=2728):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
syz_open_dev$dri(0x0, 0x0, 0x0)
openat$audio1(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r1 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0xffffffff, 0xffdffffe}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0x47f4, 0x0, 0x0, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x4e24, 0x0, @empty}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0)="95", 0x1, 0x0, &(0x7f0000000040)={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x20}, 0x80000000}, 0x1c)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, 0x0, 0x0)
shutdown(r0, 0x1)

7.238256894s ago: executing program 6 (id=2739):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
add_key(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r3, 0x84, 0x13, &(0x7f0000000040)={0x0, 0x81}, &(0x7f0000000080)=0x8)

7.180611859s ago: executing program 9 (id=2732):
syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="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"], 0x1, 0x23a, &(0x7f0000000540)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x81000)
renameat2(r3, &(0x7f0000000140)='./file1\x00', r3, &(0x7f0000000980)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

6.832957997s ago: executing program 2 (id=2733):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000002800000028000000020000000100000000000001e5ff0000400700000000000001000084060000000000000001"], 0x0, 0x42}, 0x20)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000380)={&(0x7f0000000040)="b64b6779e728a585fc6d831c9c111ee3bf867c7fa20663508d961b5b0bc1d4eded804b84c8ee0b5e7b55af44aa8bf4a16c4d4aaf896a13f650a3b4f737945a9a179a6ceb93adadb8dd841258d0f04b02868cd415ab9bc48b055a8b3f92b143cb16138c216513a045af2101e7e3c507bedee404330f1171812cdaeed17a0e89dd4863a4e6808ca6b7046c38f33b9a0417e1c8fae7a9e1b4c8161b02", 0x0, 0x0, 0x0}, 0x38)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000000)="d8000000310081044e81f782db44b904021d080005000000e8fe55a1180015000600142603600e120900210000000401a8001600a40001", 0x37}], 0x1}, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="2b40000048009125745c7388641f9c0e0a"], 0xfe33)
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000380)=ANY=[@ANYBLOB="61129000000000006113500000000000bf2000000000000007000000080000003d0301000000000095000000000000006926000000000000bf67000000000000150700000fff07003506000002000000170600000ee50000bf250000000000003d350000000000006507000002000000070700004c0001fa0f75000000000000bf54000000000000070400000400f9ff2d3501000000000095000000000000000500000000000000950007000000000001722fabb733a0c857c7c45402000000a2d23da04d1ffc187fa1a2ba7ba0e2d507b92de00435fd233cc0f0d9b2c3127c46b0f408398d09ee4dc258d72e690098804de235cf020e35245c9f5526d35df627a64ac7efde50fd7f1dd5b17ed764c33b06598bae66ea38541a7cd29032de94983dfab0e5043daf1b46bef5135c65377bdbe65d525743d88ef4b2ee62652b07f8a4b6e6155cecc13a5ddfab726eca91bd5fecb254ab358488c400330171128be291297947d474c570a385a459db8e7ada8ee987cc0000f6"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, &(0x7f0000000040), 0x1f1, 0x10, &(0x7f0000000000), 0x19f}, 0x48)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmsg(r3, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r4, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)

5.528855813s ago: executing program 6 (id=2734):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
r2 = gettid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)

5.528104603s ago: executing program 9 (id=2735):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
madvise(&(0x7f0000cf6000/0x4000)=nil, 0x4000, 0x16)
syz_clone3(&(0x7f0000000580)={0x3780, 0x0, 0x0, 0x0, {0x29}, 0x0, 0x0, 0x0, 0x0}, 0x58)

4.344332478s ago: executing program 6 (id=2736):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000340)={<r2=>0x0})
r3 = io_uring_setup(0xad5, &(0x7f0000000100))
close(r3)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f0000000180))
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r1, 0xc0182101, &(0x7f0000000180)={r2, 0x0, 0x7f})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000080)={<r5=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f0000000140)={r5, 0x3, r0})

4.344128378s ago: executing program 7 (id=2737):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
timer_settime(r2, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pread64(r0, 0x0, 0x0, 0xce2)
r3 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
openat$cgroup_procs(r3, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f0000000040), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000200)={@dev}, 0x14)

4.331443399s ago: executing program 9 (id=2738):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r1, 0xfffffffc)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)={0x34, r4, 0x1, 0x0, 0x80000000, {}, [@MPTCP_PM_ATTR_ADDR={0x20, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}]}]}, 0x34}, 0x1, 0x0, 0x0, 0xaa34a4cfdf933201}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x28, r6, 0x1, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1f}]}]}, 0x28}}, 0x0)

4.140403375s ago: executing program 9 (id=2740):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000340)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket(0xa, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @private=0xa010501, 0x0, 0x0, 'none\x00'}, 0x2c)
setsockopt$IP_VS_SO_SET_FLUSH(r3, 0x0, 0x485, 0x0, 0x0)

4.134414155s ago: executing program 7 (id=2741):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0xb00, 0x2000000000000006})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x800, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a, 0x2})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x4, 0xfffffffffffffffc, &(0x7f00000005c0)="b35690f3"})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000440)="97713b46fbaa2b1044f2d408ffca802db4d770eb9874f493e0ef367e4bde497c403b450c72ff2417d079bb892435a1e107fa5c0ecd207d9e6f2a209bf148e6bc56955cb53347d1499097488fcad724a1"})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000300)={0x4c, 0x0, &(0x7f0000000140)=[@reply_sg={0x40486312, {0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

3.95687089s ago: executing program 7 (id=2742):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
recvmmsg(r0, &(0x7f0000001740)=[{{0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000400)=""/4096, 0x10c4}], 0x1}}], 0x4000210, 0x2, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[], 0xc4}}, 0x0)
socket$packet(0x11, 0x3, 0x300)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x400}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0xfffffffffffffffc, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff, 0x6ec}, 0x0, 0x0)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x9, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0)

3.95656024s ago: executing program 2 (id=2743):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0xc)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='freezer.state\x00', 0x275a, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000c40))
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x1)
unshare(0x64000600)

3.278986035s ago: executing program 7 (id=2744):
socket$nl_sock_diag(0x10, 0x3, 0x4)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$igmp(0x2, 0x3, 0x2)
socket$inet6(0xa, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)

3.277835205s ago: executing program 6 (id=2745):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
readlink(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xd3513000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)

3.056287752s ago: executing program 9 (id=2746):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000001a300)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
unshare(0x8000000)
semget$private(0x0, 0x4000, 0x0)
semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000740))

2.889059346s ago: executing program 2 (id=2747):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
r2 = gettid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)

1.178545304s ago: executing program 6 (id=2748):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
madvise(&(0x7f0000cf6000/0x4000)=nil, 0x4000, 0x16)
syz_clone3(&(0x7f0000000580)={0x3780, 0x0, 0x0, 0x0, {0x29}, 0x0, 0x0, 0x0, 0x0}, 0x58)

1.178380875s ago: executing program 7 (id=2749):
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000280)={'syz', 0x1}, &(0x7f00000002c0)="1d", 0xfe3a, 0xfffffffffffffffe)
keyctl$read(0xb, r3, &(0x7f0000001300)=""/4096, 0xffffffffffffffd2)

1.178155584s ago: executing program 9 (id=2750):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000002800000028000000020000000100000000000001e5ff0000400700000000000001000084060000000000000001"], 0x0, 0x42}, 0x20)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000380)={&(0x7f0000000040)="b64b6779e728a585fc6d831c9c111ee3bf867c7fa20663508d961b5b0bc1d4eded804b84c8ee0b5e7b55af44aa8bf4a16c4d4aaf896a13f650a3b4f737945a9a179a6ceb93adadb8dd841258d0f04b02868cd415ab9bc48b055a8b3f92b143cb16138c216513a045af2101e7e3c507bedee404330f1171812cdaeed17a0e89dd4863a4e6808ca6b7046c38f33b9a0417e1c8fae7a9e1b4c8161b02", 0x0, 0x0, 0x0}, 0x38)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000000)="d8000000310081044e81f782db44b904021d080005000000e8fe55a1180015000600142603600e120900210000000401a8001600a40001", 0x37}], 0x1}, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="2b40000048009125745c7388641f9c0e0a"], 0xfe33)
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, &(0x7f0000000040), 0x1f1, 0x10, &(0x7f0000000000), 0x19f}, 0x48)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmsg(r3, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r4, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)

196.415294ms ago: executing program 2 (id=2751):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0xb00, 0x2000000000000006})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x800, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a, 0x2})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x4, 0xfffffffffffffffc, &(0x7f00000005c0)="b35690f3"})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000440)="97713b46fbaa2b1044f2d408ffca802db4d770eb9874f493e0ef367e4bde497c403b450c72ff2417d079bb892435a1e107fa5c0ecd207d9e6f2a209bf148e6bc56955cb53347d1499097488fcad724a1"})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000300)={0x4c, 0x0, &(0x7f0000000140)=[@reply_sg={0x40486312, {0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

10.962059ms ago: executing program 2 (id=2752):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000340)={<r2=>0x0})
r3 = io_uring_setup(0xad5, &(0x7f0000000100))
close(r3)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f0000000180))
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r1, 0xc0182101, &(0x7f0000000180)={r2, 0x0, 0x7f})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000080)={<r5=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f0000000140)={r5, 0x3, r0})

8.948999ms ago: executing program 7 (id=2760):
syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="666c7573682c6e66732c74696d655f6f66667365743d3078303030303030303030303030303264372c6e6f646f74732c6e6f646f74732c00e94f858cc5add951be5560b2b10409b2caf19b89679412fda54378d58ee92ed254f0ee62ee26a42300865e346b9c349298940af1212e42e147254d296cc87c0fff526f02d3d27b3fdae5f61f56327ce1550b9cba5ed94e8f20d24a6aeeeec50293b0502f374fe82af745ee1f0144f8a3cd0457108ee9d704fe5006f654869d47ff89fc07c9b596ff9a0d699fc32c8560a169c602f8cf64e7d3e40c77cf4142be55286340a06982efc5f0b146917e62e58bccd84474f5663625bbfbeda91e4d1c790bef56ced41571be91666e7a833cee2aed45925de5c02a93"], 0x1, 0x23a, &(0x7f0000000540)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x81000)
renameat2(r3, &(0x7f0000000140)='./file1\x00', r3, &(0x7f0000000980)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

0s ago: executing program 6 (id=2761):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = epoll_create1(0x0)
r2 = epoll_create1(0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, 0x0)
epoll_pwait(r1, 0x0, 0x0, 0x80000000, 0x0, 0x0)
connect$inet(r0, &(0x7f00000003c0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x23}}, 0x10)
ioctl$sock_kcm_SIOCKCMATTACH(0xffffffffffffffff, 0x89e0, 0x0)

kernel console output (not intermixed with test programs):

 layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  286.325559][ T9074] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  287.170426][ T9074] hsr_slave_0: entered promiscuous mode
[  287.191300][ T9074] hsr_slave_1: entered promiscuous mode
[  287.457437][ T5788] Bluetooth: hci0: command tx timeout
[  287.598185][ T5788] Bluetooth: hci4: ISO packet for unknown connection handle 0
[  287.608147][ T5788] Bluetooth: hci4: unexpected event for opcode 0x2042
[  287.614479][ T9162] netlink: 'syz.6.1049': attribute type 5 has an invalid length.
[  287.906118][ T6965] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  290.394070][ T6965] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  290.445648][ T9174] netlink: 28 bytes leftover after parsing attributes in process `syz.7.1053'.
[  290.468895][ T9174] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1053'.
[  290.571704][ T6965] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  290.654118][ T9074] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  290.688141][ T9074] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  290.799435][ T6965] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  290.830845][ T9074] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  290.845655][ T9074] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  291.595368][ T9074] 8021q: adding VLAN 0 to HW filter on device bond0
[  291.618159][ T5788] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  291.629637][ T5788] Bluetooth: hci4: Injecting HCI hardware error event
[  291.640173][ T5788] Bluetooth: hci4: hardware error 0x00
[  291.738328][ T9074] 8021q: adding VLAN 0 to HW filter on device team0
[  291.765810][ T6970] bridge0: port 1(bridge_slave_0) entered blocking state
[  291.773093][ T6970] bridge0: port 1(bridge_slave_0) entered forwarding state
[  293.178883][ T7040] bridge0: port 2(bridge_slave_1) entered blocking state
[  293.186116][ T7040] bridge0: port 2(bridge_slave_1) entered forwarding state
[  293.442505][ T9211] netlink: 24 bytes leftover after parsing attributes in process `syz.7.1062'.
[  293.790171][ T5788] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  293.833844][ T9074] 8021q: adding VLAN 0 to HW filter on device batadv0
[  294.374914][ T9231] loop2: detected capacity change from 0 to 512
[  294.394968][ T9231] ext4: Unknown parameter '"'
[  294.562912][ T9074] veth0_vlan: entered promiscuous mode
[  294.629037][ T9074] veth1_vlan: entered promiscuous mode
[  294.754891][ T9235] kvm: pic: non byte write
[  294.763735][ T9235] kvm: pic: non byte write
[  294.772898][ T9235] kvm: pic: non byte write
[  294.786883][ T9235] kvm: pic: non byte write
[  294.792063][ T9235] kvm: pic: non byte write
[  294.796922][ T9235] kvm: pic: non byte write
[  294.803113][ T9235] kvm: pic: non byte write
[  294.815797][ T6965] hsr_slave_0: left promiscuous mode
[  294.822298][ T9235] kvm: pic: non byte write
[  294.828757][ T6965] hsr_slave_1: left promiscuous mode
[  294.830331][ T9235] kvm: pic: non byte write
[  294.840398][ T6965] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  294.861692][ T6965] batman_adv: batadv0: Removing interface: batadv_slave_0
[  294.884554][ T6965] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  294.893334][ T6965] batman_adv: batadv0: Removing interface: batadv_slave_1
[  294.919988][ T6965] bridge_slave_1: left allmulticast mode
[  294.935258][ T6965] bridge_slave_1: left promiscuous mode
[  294.944093][ T6965] bridge0: port 2(bridge_slave_1) entered disabled state
[  294.967857][ T6965] bridge0: port 1(bridge_slave_0) entered disabled state
[  295.051746][ T6965] veth1_macvtap: left promiscuous mode
[  295.062066][ T6965] veth0_macvtap: left promiscuous mode
[  295.071390][ T6965] veth1_vlan: left promiscuous mode
[  295.081040][ T6965] veth0_vlan: left promiscuous mode
[  295.481249][ T6965] bond1 (unregistering): (slave bridge1): Removing an active aggregator
[  295.522712][ T6965] bond1 (unregistering): (slave bridge1): Releasing backup interface
[  295.558469][ T6965] bridge1 (unregistering): left promiscuous mode
[  295.564891][ T6965] bridge1 (unregistering): left allmulticast mode
[  296.029240][ T9245] loop6: detected capacity change from 0 to 32768
[  296.088592][ T6965] bond1 (unregistering): Released all slaves
[  296.095823][ T9245] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  296.193544][ T9245] XFS (loop6): Ending clean mount
[  296.220095][ T9245] XFS (loop6): Quotacheck needed: Please wait.
[  296.312405][ T9245] XFS (loop6): Quotacheck: Done.
[  296.391113][   T27] kauditd_printk_skb: 11 callbacks suppressed
[  296.391134][   T27] audit: type=1800 audit(1755851400.110:216): pid=9245 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1071" name="file1" dev="loop6" ino=9286 res=0 errno=0
[  297.187697][ T6959] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  297.233005][ T6965] team0 (unregistering): Port device team_slave_1 removed
[  297.406085][ T6965] team0 (unregistering): Port device team_slave_0 removed
[  297.502854][ T6965] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  297.603251][ T6965] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  298.439505][ T6965] bond0 (unregistering): Released all slaves
[  298.626721][ T9074] veth0_macvtap: entered promiscuous mode
[  298.663686][ T9074] veth1_macvtap: entered promiscuous mode
[  298.737444][ T9074] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  298.786310][ T9074] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  298.805690][ T9291] loop2: detected capacity change from 0 to 2048
[  298.813735][ T9074] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  298.827493][ T9074] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  298.838205][ T9074] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  298.854494][ T9074] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  298.870809][ T9291] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  298.928147][ T9291] capability: warning: `syz.2.1079' uses deprecated v2 capabilities in a way that may be insecure
[  298.951156][ T9074] batman_adv: batadv0: Interface activated: batadv_slave_0
[  298.975764][ T9074] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  298.998605][ T9074] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  299.011389][ T9074] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  299.022105][ T9074] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  299.033333][ T9074] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  299.043934][ T9074] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  299.067639][ T9074] batman_adv: batadv0: Interface activated: batadv_slave_1
[  299.121017][ T9074] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  299.142580][ T9074] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  299.154557][ T9074] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  299.163693][ T9074] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  299.374250][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  299.393758][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  299.477890][ T6970] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  299.502435][ T6970] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  300.960442][ T9324] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  301.176686][ T9324] tipc: Resetting bearer <eth:syzkaller0>
[  301.286039][ T9332] netlink: 35 bytes leftover after parsing attributes in process `syz.9.1093'.
[  301.332034][ T9323] tipc: Resetting bearer <eth:syzkaller0>
[  303.294996][ T9345] loop9: detected capacity change from 0 to 512
[  303.462094][ T9345] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  303.506235][ T9345] ext4 filesystem being mounted at /7/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  307.380272][ T9323] tipc: Disabling bearer <eth:syzkaller0>
[  307.766219][ T9074] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  309.709711][ T9401] loop6: detected capacity change from 0 to 1024
[  309.921754][ T9401] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  309.992806][ T9401] ext4 filesystem being mounted at /206/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  311.041839][ T9401] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  311.125789][ T9401] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 319 with max blocks 1 with error 28
[  311.147352][ T9401] EXT4-fs (loop6): This should not happen!! Data will be lost
[  311.147352][ T9401] 
[  311.157926][ T9401] EXT4-fs (loop6): Total free blocks count 0
[  311.164055][ T9401] EXT4-fs (loop6): Free/Dirty block details
[  311.177117][ T9401] EXT4-fs (loop6): free_blocks=4293918720
[  311.182961][ T9401] EXT4-fs (loop6): dirty_blocks=16
[  311.197163][ T9401] EXT4-fs (loop6): Block reservation details
[  311.203312][ T9401] EXT4-fs (loop6): i_reserved_data_blocks=1
[  311.371074][ T6959] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  311.500342][ T9413] netlink: 35 bytes leftover after parsing attributes in process `syz.2.1124'.
[  313.451269][ T9440] netlink: 'syz.7.1126': attribute type 1 has an invalid length.
[  313.534713][ T9440] bond3: entered promiscuous mode
[  313.540643][ T9440] 8021q: adding VLAN 0 to HW filter on device bond3
[  313.783260][ T9440] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  313.791315][ T9440] IPv6: NLM_F_CREATE should be set when creating new route
[  313.798744][ T9440] IPv6: NLM_F_CREATE should be set when creating new route
[  313.807400][ T9440] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  313.991820][ T9442] 8021q: adding VLAN 0 to HW filter on device bond3
[  314.012316][ T9442] bond3: (slave wireguard0): The slave device specified does not support setting the MAC address
[  314.053940][ T9442] bond3: (slave wireguard0): Setting fail_over_mac to active for active-backup mode
[  314.098015][ T9442] bond3: (slave wireguard0): making interface the new active one
[  314.105815][ T9442] wireguard0: entered promiscuous mode
[  314.115284][ T9442] bond3: (slave wireguard0): Enslaving as an active interface with an up link
[  314.131235][ T9440] bond3: (slave wireguard1): The slave device specified does not support setting the MAC address
[  314.145602][ T9440] bond3: (slave wireguard1): Enslaving as a backup interface with an up link
[  314.242221][ T9455] netlink: 'syz.9.1131': attribute type 12 has an invalid length.
[  315.497986][ T7040] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  317.162026][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  317.168862][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  317.745517][ T9485] tipc: Failed to remove unknown binding: 66,1,1/4:1639226266/1639226268
[  317.845183][ T9485] tipc: Failed to remove unknown binding: 66,1,1/4:1639226266/1639226268
[  317.917145][ T9485] tipc: Failed to remove unknown binding: 66,1,1/4:1639226266/1639226268
[  318.302724][ T9478] loop9: detected capacity change from 0 to 32768
[  318.549032][ T9478] XFS (loop9): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  319.590585][ T9478] XFS (loop9): Ending clean mount
[  319.622024][ T9478] XFS (loop9): Quotacheck needed: Please wait.
[  319.756185][ T9478] XFS (loop9): Quotacheck: Done.
[  319.869343][ T9074] XFS (loop9): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  321.007471][ T9508] bridge0: port 2(bridge_slave_1) entered disabled state
[  321.014895][ T9508] bridge0: port 1(bridge_slave_0) entered disabled state
[  321.077191][ T9509] bridge_slave_1: left allmulticast mode
[  321.083379][ T9509] bridge_slave_1: left promiscuous mode
[  321.116556][ T9509] bridge0: port 2(bridge_slave_1) entered disabled state
[  321.171254][ T9509] bridge_slave_0: left allmulticast mode
[  321.184032][ T9509] bridge_slave_0: left promiscuous mode
[  321.197529][ T9509] bridge0: port 1(bridge_slave_0) entered disabled state
[  322.360157][ T9521] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1149'.
[  322.833818][ T9526] netlink: 'syz.6.1150': attribute type 1 has an invalid length.
[  323.100920][ T9526] 8021q: adding VLAN 0 to HW filter on device bond2
[  323.330952][ T9528] bond2: (slave geneve2): making interface the new active one
[  323.408084][ T9528] bond2: (slave geneve2): Enslaving as an active interface with an up link
[  323.763940][ T9541] loop2: detected capacity change from 0 to 1024
[  323.773424][ T9541] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  323.786570][ T9541] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  323.798534][ T9541] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (53380!=20869)
[  323.809849][ T9541] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  323.821421][ T9541] EXT4-fs error (device loop2): ext4_get_journal_inode:5805: comm syz.2.1153: inode #1: comm syz.2.1153: iget: illegal inode #
[  323.836083][ T9541] EXT4-fs (loop2): no journal found
[  324.416821][ T9550] netlink: 'syz.2.1157': attribute type 2 has an invalid length.
[  324.443081][ T9550] netlink: 119 bytes leftover after parsing attributes in process `syz.2.1157'.
[  325.269248][ T9560] netlink: 32 bytes leftover after parsing attributes in process `syz.7.1160'.
[  325.389948][ T9560] netlink: 32 bytes leftover after parsing attributes in process `syz.7.1160'.
[  325.921131][ T9578] xt_addrtype: both incoming and outgoing interface limitation cannot be selected
[  328.289673][ T9591] loop9: detected capacity change from 0 to 256
[  328.304268][ T9591] exfat: Deprecated parameter 'namecase'
[  328.394340][ T9598] Driver unsupported XDP return value 0 on prog  (id 321) dev N/A, expect packet loss!
[  328.446243][ T9591] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  329.692593][ T9609] netdevsim netdevsim9 netdevsim0: entered promiscuous mode
[  334.044508][ T9661] trusted_key: encrypted_key: insufficient parameters specified
[  334.054003][   T27] audit: type=1326 audit(1755851437.770:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9659 comm="syz.6.1196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  334.123541][   T27] audit: type=1326 audit(1755851437.770:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9659 comm="syz.6.1196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  334.183950][   T27] audit: type=1326 audit(1755851437.780:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9659 comm="syz.6.1196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  334.233927][   T27] audit: type=1326 audit(1755851437.780:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9659 comm="syz.6.1196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  334.307833][   T27] audit: type=1326 audit(1755851437.780:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9659 comm="syz.6.1196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  334.366829][   T27] audit: type=1326 audit(1755851437.780:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9659 comm="syz.6.1196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  334.454457][   T27] audit: type=1326 audit(1755851437.780:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9659 comm="syz.6.1196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  334.511880][   T27] audit: type=1326 audit(1755851437.780:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9659 comm="syz.6.1196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  334.550347][   T27] audit: type=1326 audit(1755851437.780:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9659 comm="syz.6.1196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  334.595091][   T27] audit: type=1326 audit(1755851437.780:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9659 comm="syz.6.1196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  335.182044][ T9680] bridge_slave_0: left allmulticast mode
[  335.188539][ T9680] bridge_slave_0: left promiscuous mode
[  335.194621][ T9680] bridge0: port 1(bridge_slave_0) entered disabled state
[  335.212055][ T9680] bridge_slave_1: left allmulticast mode
[  335.220357][ T9680] bridge_slave_1: left promiscuous mode
[  335.226727][ T9680] bridge0: port 2(bridge_slave_1) entered disabled state
[  335.239760][ T9680] bond0: (slave bond_slave_0): Releasing backup interface
[  335.316902][ T9680] bond0: (slave bond_slave_1): Releasing backup interface
[  335.450792][ T9680] team0: Port device team_slave_0 removed
[  335.492446][ T9680] team0: Port device team_slave_1 removed
[  335.517634][ T9680] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  335.534305][ T9680] batman_adv: batadv0: Removing interface: batadv_slave_0
[  335.554624][ T9680] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  335.571632][ T9680] batman_adv: batadv0: Removing interface: batadv_slave_1
[  335.584651][ T9686] loop2: detected capacity change from 0 to 8192
[  335.602494][ T9680] bond1: (slave bridge2): Releasing backup interface
[  335.633257][ T9686]  loop2: p1 p2[DM] p4
[  335.643461][ T9686] loop2: p1 size 196608 extends beyond EOD, truncated
[  335.651888][ T9680] bond2: (slave veth3): Releasing active interface
[  335.661742][ T9686] loop2: p2 start 4292936063 is beyond EOD, truncated
[  335.681937][ T9686] loop2: p4 size 50331648 extends beyond EOD, truncated
[  335.692875][ T9680] bond3: (slave wireguard0): Releasing backup interface
[  335.701677][ T9680] wireguard0: left promiscuous mode
[  335.709784][ T9680] bond3: (slave wireguard1): making interface the new active one
[  335.719087][ T9680] wireguard1: entered promiscuous mode
[  335.735739][ T9680] bond3: (slave wireguard1): Releasing backup interface
[  335.751539][ T9680] wireguard1: left promiscuous mode
[  335.906495][ T9683] A link change request failed with some changes committed already. Interface bond2 may have been left with an inconsistent configuration, please check.
[  336.442440][ T9703] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1212'.
[  336.952764][ T9711] Set syz1 is full, maxelem 1038 reached
[  337.053194][ T9710] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1212'.
[  337.917803][ T9713] syzkaller0: entered promiscuous mode
[  337.923359][ T9713] syzkaller0: entered allmulticast mode
[  341.990099][ T9769] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1233'.
[  343.598018][ T9767] vlan2: entered promiscuous mode
[  343.603440][ T9767] bridge0: entered promiscuous mode
[  343.608901][ T9767] vlan2: entered allmulticast mode
[  343.614040][ T9767] bridge0: entered allmulticast mode
[  344.791261][ T9768] netdevsim netdevsim7 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  344.804202][ T9768] netdevsim netdevsim7 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  344.814522][ T9768] netdevsim netdevsim7 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  344.823814][ T9768] netdevsim netdevsim7 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  344.944564][ T9768] netdevsim netdevsim7 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  344.953747][ T9768] netdevsim netdevsim7 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  344.963039][ T9768] netdevsim netdevsim7 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  344.972182][ T9768] netdevsim netdevsim7 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  345.051633][ T9769] bridge_slave_0: left allmulticast mode
[  345.070891][ T9769] bridge_slave_0: left promiscuous mode
[  345.083929][ T9769] bridge0: port 1(bridge_slave_0) entered disabled state
[  345.095572][ T9769] bridge_slave_1: left allmulticast mode
[  345.102044][ T9769] bridge_slave_1: left promiscuous mode
[  345.108566][ T9769] bridge0: port 2(bridge_slave_1) entered disabled state
[  345.122555][ T9769] bond0: (slave bond_slave_0): Releasing backup interface
[  345.136297][ T9769] bond0: (slave bond_slave_1): Releasing backup interface
[  345.172085][ T9769] team0: Port device team_slave_0 removed
[  345.194314][ T9769] team0: Port device team_slave_1 removed
[  345.209629][ T9769] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  345.218005][ T9769] batman_adv: batadv0: Removing interface: batadv_slave_0
[  345.226136][ T9769] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  345.233858][ T9769] batman_adv: batadv0: Removing interface: batadv_slave_1
[  345.283294][ T9789] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1238'.
[  345.317262][ T9792] netlink: 'syz.6.1240': attribute type 4 has an invalid length.
[  345.359061][ T9793] netlink: 'syz.6.1240': attribute type 4 has an invalid length.
[  345.422110][ T9802] Set syz1 is full, maxelem 1038 reached
[  346.590936][ T9822] netlink: 'syz.9.1251': attribute type 10 has an invalid length.
[  346.636526][ T9822] team0: Port device dummy0 added
[  346.654370][ T9822] netlink: 'syz.9.1251': attribute type 10 has an invalid length.
[  346.687760][ T9822] team0: Port device dummy0 removed
[  346.700062][ T9822] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  347.107791][   T27] kauditd_printk_skb: 14 callbacks suppressed
[  347.107810][   T27] audit: type=1326 audit(1755851450.840:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9842 comm="syz.9.1259" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe78f38ebe9 code=0x0
[  348.520157][ T9861] bond0: (slave 
5
@ÿ): Releasing backup interface
[  348.554066][ T9861] bond0: (slave bond_slave_1): Releasing backup interface
[  348.777894][ T9861] team0: Port device team_slave_0 removed
[  348.891120][ T9861] team0: Port device team_slave_1 removed
[  348.940662][ T9861] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  348.981040][ T9861] batman_adv: batadv0: Removing interface: batadv_slave_0
[  349.021653][ T9861] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  349.076436][ T9861] batman_adv: batadv0: Removing interface: batadv_slave_1
[  349.127788][ T9861] bond1: (slave veth3): Releasing active interface
[  349.171190][ T9861] bond2: (slave geneve2): Releasing active interface
[  349.384831][ T9863] A link change request failed with some changes committed already. Interface bond1 may have been left with an inconsistent configuration, please check.
[  350.796888][ T9880] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1278'.
[  350.826758][ T9880] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1278'.
[  356.249359][ T9930] overlayfs: failed to clone upperpath
[  357.845761][ T9949] loop2: detected capacity change from 0 to 1024
[  357.864501][ T9949] ext4: Unknown parameter 'fsmagic'
[  358.907489][ T9960] dummy0: left allmulticast mode
[  358.912796][ T9960] bridge0: port 3(dummy0) entered disabled state
[  358.923865][ T9960] bridge_slave_0: left allmulticast mode
[  358.933895][ T9960] bridge_slave_0: left promiscuous mode
[  358.940291][ T9960] bridge0: port 1(bridge_slave_0) entered disabled state
[  358.963977][ T9960] bridge_slave_1: left allmulticast mode
[  358.972102][ T9960] bridge_slave_1: left promiscuous mode
[  358.980171][ T9960] bridge0: port 2(bridge_slave_1) entered disabled state
[  358.999331][ T9960] bond0: (slave bond_slave_0): Releasing backup interface
[  359.020467][ T9960] bond0: (slave bond_slave_1): Releasing backup interface
[  359.215227][ T9960] team0: Port device team_slave_0 removed
[  359.241403][ T9960] team0: Port device team_slave_1 removed
[  359.260322][ T9960] bond1: (slave veth1): Releasing active interface
[  359.347340][ T9960] bond2: (slave veth3): Releasing active interface
[  359.669482][ T9961] A link change request failed with some changes committed already. Interface bond1 may have been left with an inconsistent configuration, please check.
[  360.169252][ T9967] netlink: 1347 bytes leftover after parsing attributes in process `syz.6.1297'.
[  361.339026][ T9987] loop2: detected capacity change from 0 to 1024
[  361.376731][ T9987] ext4: Unknown parameter 'fsmagic'
[  363.420487][T10008] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1312'.
[  363.713463][T10014] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  363.965636][T10022] netlink: 6 bytes leftover after parsing attributes in process `syz.2.1316'.
[  363.989792][T10022] netlink: 6 bytes leftover after parsing attributes in process `syz.2.1316'.
[  364.053983][T10022] loop2: detected capacity change from 0 to 512
[  364.098541][T10022] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  364.127326][T10022] ext4 filesystem being mounted at /341/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  364.394017][ T5782] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  365.341535][T10037] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1321'.
[  365.521859][   T27] audit: type=1326 audit(1755851469.260:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10041 comm="syz.6.1322" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5145d8ebe9 code=0x0
[  365.560959][T10039] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1319'.
[  365.570754][T10039] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1319'.
[  365.760083][T10048] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1324'.
[  365.779827][T10048] netlink: 'syz.9.1324': attribute type 5 has an invalid length.
[  365.797362][T10048] netlink: 28 bytes leftover after parsing attributes in process `syz.9.1324'.
[  365.825026][T10048] netdevsim netdevsim9 netdevsim0: set [1, 1] type 2 family 0 port 256 - 0
[  365.834383][T10048] netdevsim netdevsim9 netdevsim1: set [1, 1] type 2 family 0 port 256 - 0
[  365.854556][T10048] netdevsim netdevsim9 netdevsim2: set [1, 1] type 2 family 0 port 256 - 0
[  365.882042][T10048] netdevsim netdevsim9 netdevsim3: set [1, 1] type 2 family 0 port 256 - 0
[  365.894728][T10048] geneve2: entered promiscuous mode
[  365.903287][T10048] geneve2: entered allmulticast mode
[  366.490395][T10069] Device name cannot be null; rc = [-22]
[  367.302539][T10077] netlink: 16 bytes leftover after parsing attributes in process `syz.9.1336'.
[  367.737193][T10094] netlink: 'syz.6.1344': attribute type 10 has an invalid length.
[  367.783777][T10094] 8021q: adding VLAN 0 to HW filter on device batadv0
[  368.009549][T10106] overlayfs: missing 'workdir'
[  368.401401][T10110] bridge_slave_0: default FDB implementation only supports local addresses
[  368.423206][T10110] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1348'.
[  368.442502][T10110] bridge_slave_0: default FDB implementation only supports local addresses
[  370.870848][T10136] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1364'.
[  371.011047][T10138] bond0: (slave dummy0): Releasing backup interface
[  371.108288][T10142] 8021q: adding VLAN 0 to HW filter on device bond4
[  371.116948][T10142] bond3: (slave bond4): Enslaving as an active interface with an up link
[  372.155587][T10144] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1364'.
[  372.212072][T10144] bond3 (unregistering): (slave bond4): Releasing backup interface
[  372.276281][T10144] bond3 (unregistering): Released all slaves
[  372.522570][T10158] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1363'.
[  373.030683][T10165] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  373.232819][T10165] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  373.440820][T10165] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  373.600572][T10165] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  373.786683][T10165] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  373.820888][T10165] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  373.853170][T10165] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  373.900239][T10165] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  375.363899][T10188] netlink: 'syz.7.1375': attribute type 10 has an invalid length.
[  375.715458][T10202] ip6t_rpfilter: unknown options
[  375.791253][   T23] kernel read not supported for file [userfaultfd] (pid: 23 comm: kworker/1:0)
[  378.508114][ T5788] Bluetooth: hci0: command tx timeout
[  378.529235][T10260] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1400'.
[  378.594592][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  378.602234][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  379.078238][T10272] block device autoloading is deprecated and will be removed.
[  380.046935][T10278] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  381.849864][T10322] netlink: 24 bytes leftover after parsing attributes in process `syz.9.1419'.
[  384.318240][T10381] netlink: 156 bytes leftover after parsing attributes in process `syz.7.1425'.
[  386.647554][T10421] netlink: 'syz.6.1439': attribute type 1 has an invalid length.
[  387.338573][T10421] 8021q: adding VLAN 0 to HW filter on device bond3
[  387.412153][T10423] vlan2: entered allmulticast mode
[  387.517113][T10423] veth1: entered allmulticast mode
[  387.601952][T10431] all: renamed from bridge_slave_0
[  387.840313][T10434] netlink: 9275 bytes leftover after parsing attributes in process `syz.7.1443'.
[  388.569693][T10438] loop2: detected capacity change from 0 to 32768
[  388.751396][T10438] Dev loop2: unable to read RDB block 8
[  388.766089][T10438]  loop2: unable to read partition table
[  388.775803][T10438] loop_reread_partitions: partition scan of loop2 () failed (rc=-5)
[  391.939172][T10480] netlink: 96 bytes leftover after parsing attributes in process `syz.9.1458'.
[  392.606761][T10497] xt_nat: multiple ranges no longer supported
[  393.612306][T10507] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1470'.
[  395.522654][T10527] vlan0: entered promiscuous mode
[  395.529285][T10532] overlayfs: failed to clone upperpath
[  395.642040][T10536] netlink: 'syz.2.1478': attribute type 13 has an invalid length.
[  399.815099][T10574] xt_HMARK: proto mask must be zero with L3 mode
[  401.659823][T10536] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  401.668702][T10536] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  401.677950][T10536] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  401.686438][T10536] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  402.086097][T10563] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  402.108232][T10591] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1496'.
[  402.191872][T10592] bridge7: port 1(veth5) entered blocking state
[  402.203180][T10592] bridge7: port 1(veth5) entered disabled state
[  402.210947][T10592] veth5: entered allmulticast mode
[  402.218347][T10592] veth5: entered promiscuous mode
[  402.229344][T10593] bridge7: port 2(veth0_to_bond) entered blocking state
[  402.236496][T10593] bridge7: port 2(veth0_to_bond) entered disabled state
[  402.247410][T10593] veth0_to_bond: entered allmulticast mode
[  402.255379][T10593] veth0_to_bond: entered promiscuous mode
[  402.748938][T10606] xt_cgroup: path and classid specified
[  403.834264][T10624] netlink: 96 bytes leftover after parsing attributes in process `syz.7.1506'.
[  403.976526][T10619] cgroup: fork rejected by pids controller in /syz9
[  407.868561][T10703] lo: entered promiscuous mode
[  407.873545][T10703] lo: entered allmulticast mode
[  407.880593][T10703] tunl0: entered promiscuous mode
[  407.885812][T10703] tunl0: entered allmulticast mode
[  407.893718][T10703] gre0: entered promiscuous mode
[  407.898964][T10703] gre0: entered allmulticast mode
[  407.907615][T10703] gretap0: entered promiscuous mode
[  407.913000][T10703] gretap0: entered allmulticast mode
[  407.920213][T10703] erspan0: entered promiscuous mode
[  407.925560][T10703] erspan0: entered allmulticast mode
[  407.932832][T10703] ip_vti0: entered promiscuous mode
[  407.938303][T10703] ip_vti0: entered allmulticast mode
[  407.945867][T10703] ip6_vti0: entered promiscuous mode
[  407.951484][T10703] ip6_vti0: entered allmulticast mode
[  408.088092][T10703] sit0: entered promiscuous mode
[  408.094109][T10703] sit0: entered allmulticast mode
[  408.101391][T10703] ip6tnl0: entered promiscuous mode
[  408.106762][T10703] ip6tnl0: entered allmulticast mode
[  408.114509][T10703] ip6gre0: entered promiscuous mode
[  408.119899][T10703] ip6gre0: entered allmulticast mode
[  408.127128][T10703] syz_tun: entered promiscuous mode
[  408.132477][T10703] syz_tun: entered allmulticast mode
[  408.139540][T10703] ip6gretap0: entered promiscuous mode
[  408.145181][T10703] ip6gretap0: entered allmulticast mode
[  408.154614][T10703] vcan0: entered promiscuous mode
[  408.161528][T10703] vcan0: entered allmulticast mode
[  408.167977][T10703] bond0: entered promiscuous mode
[  408.173081][T10703] bond0: entered allmulticast mode
[  408.181349][T10703] team0: entered promiscuous mode
[  408.186548][T10703] team0: entered allmulticast mode
[  408.289871][T10703] dummy0: entered promiscuous mode
[  408.295272][T10703] dummy0: entered allmulticast mode
[  408.305246][T10703] nlmon0: entered promiscuous mode
[  408.310652][T10703] nlmon0: entered allmulticast mode
[  410.290939][T10703] caif0: entered promiscuous mode
[  410.296069][T10703] caif0: entered allmulticast mode
[  410.301348][T10703] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  410.325318][T10711] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  410.585784][T10728] ipt_ECN: cannot use operation on non-tcp rule
[  414.618714][T10793] batadv_slave_1: entered promiscuous mode
[  414.651470][T10793] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1542'.
[  414.851467][T10789] batadv_slave_1: left promiscuous mode
[  417.154787][T10829] netlink: 20 bytes leftover after parsing attributes in process `syz.9.1553'.
[  417.165706][T10829] netlink: 16 bytes leftover after parsing attributes in process `syz.9.1553'.
[  418.449318][T10840] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  419.261175][T10855] xt_NFQUEUE: number of queues (65532) out of range (got 66665)
[  419.833441][T10856] tipc: Started in network mode
[  419.877234][T10856] tipc: Node identity ac1414aa, cluster identity 4711
[  419.964241][T10856] tipc: Enabled bearer <udp:syz2>, priority 10
[  419.994189][T10743] Set syz1 is full, maxelem 65536 reached
[  420.029808][T10861] tipc: Enabled bearer <eth:team0>, priority 0
[  421.080626][  T787] tipc: Node number set to 2886997162
[  421.215995][T10875] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1568'.
[  421.835307][T10881] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1571'.
[  424.372828][T10937] loop2: detected capacity change from 0 to 2048
[  424.439215][T10937]  loop2: p1 < > p3
[  424.450079][T10937] loop2: p3 size 134217728 extends beyond EOD, truncated
[  425.642569][   T27] audit: type=1326 audit(1755851529.380:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10943 comm="syz.6.1591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  425.747248][   T27] audit: type=1326 audit(1755851529.410:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10943 comm="syz.6.1591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  425.860576][   T27] audit: type=1326 audit(1755851529.410:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10943 comm="syz.6.1591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  425.990524][   T27] audit: type=1326 audit(1755851529.420:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10943 comm="syz.6.1591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  426.103005][   T27] audit: type=1326 audit(1755851529.420:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10943 comm="syz.6.1591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  426.125885][   T27] audit: type=1326 audit(1755851529.420:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10943 comm="syz.6.1591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  426.148800][   T27] audit: type=1326 audit(1755851529.420:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10943 comm="syz.6.1591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  426.172034][   T27] audit: type=1326 audit(1755851529.420:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10943 comm="syz.6.1591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  426.195084][   T27] audit: type=1326 audit(1755851529.420:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10943 comm="syz.6.1591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  426.221405][   T27] audit: type=1326 audit(1755851529.420:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10943 comm="syz.6.1591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  426.365358][T10965] 9pnet: p9_errstr2errno: server reported unknown error 18446744073
[  426.690822][T10975] netlink: 'syz.7.1604': attribute type 4 has an invalid length.
[  427.189993][T10989] xt_nfacct: accounting object `syz1' does not exist
[  428.910904][T11001] Invalid ELF header magic: != ELF
[  429.045717][T11001] loop2: detected capacity change from 0 to 1024
[  429.064287][T11001] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  429.315850][ T5782] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  430.190138][T11023] netlink: 'syz.6.1616': attribute type 4 has an invalid length.
[  430.198378][T11023] netlink: 17 bytes leftover after parsing attributes in process `syz.6.1616'.
[  432.938947][T11060] netlink: 'syz.2.1627': attribute type 1 has an invalid length.
[  433.031071][T11060] 8021q: adding VLAN 0 to HW filter on device bond3
[  433.111657][T11064] 8021q: adding VLAN 0 to HW filter on device bond3
[  433.139673][T11064] bond3: (slave vti0): The slave device specified does not support setting the MAC address
[  433.187778][T11064] bond3: (slave vti0): Error -95 calling set_mac_address
[  433.273518][T11060] bond3: (slave gretap2): making interface the new active one
[  433.304532][T11060] bond3: (slave gretap2): Enslaving as an active interface with an up link
[  434.972338][   T27] kauditd_printk_skb: 10 callbacks suppressed
[  434.972356][   T27] audit: type=1326 audit(1755851538.710:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11091 comm="syz.7.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  435.143001][   T27] audit: type=1326 audit(1755851538.710:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11091 comm="syz.7.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  435.161354][T11097] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1638'.
[  435.175799][   T27] audit: type=1326 audit(1755851538.710:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11091 comm="syz.7.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  435.231057][   T27] audit: type=1326 audit(1755851538.710:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11091 comm="syz.7.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  435.260521][   T27] audit: type=1326 audit(1755851538.750:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11091 comm="syz.7.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  435.301539][   T27] audit: type=1326 audit(1755851538.750:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11091 comm="syz.7.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  435.348396][   T27] audit: type=1326 audit(1755851538.750:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11091 comm="syz.7.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  435.378901][   T27] audit: type=1326 audit(1755851538.750:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11091 comm="syz.7.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  435.402879][   T27] audit: type=1326 audit(1755851538.750:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11091 comm="syz.7.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  435.436080][   T27] audit: type=1326 audit(1755851538.750:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11091 comm="syz.7.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  435.567702][T11103] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  437.147415][T11115] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  437.242253][T11117] gtp0: entered promiscuous mode
[  439.670751][T11156] netlink: 'syz.9.1658': attribute type 1 has an invalid length.
[  439.789154][T11156] bond1: entered promiscuous mode
[  439.794302][T11156] bond1: entered allmulticast mode
[  439.813334][T11160] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1658'.
[  439.831577][T11160] bridge1: the hash_elasticity option has been deprecated and is always 16
[  439.845749][T11160] bond1: (slave bridge1): making interface the new active one
[  439.856274][T11160] bridge1: entered promiscuous mode
[  439.863787][T11160] bridge1: entered allmulticast mode
[  439.885594][T11160] bond1: (slave bridge1): Enslaving as an active interface with an up link
[  439.907275][T11166] netlink: 24 bytes leftover after parsing attributes in process `syz.9.1658'.
[  439.960297][T11166] 8021q: adding VLAN 0 to HW filter on device bond1
[  440.026464][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  440.033224][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  440.163234][T11182] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1664'.
[  440.204208][T11182] veth1: entered promiscuous mode
[  440.217145][T11182] bridge4: entered promiscuous mode
[  440.224629][T11182] hsr1: Slave A (veth1) is not up; please bring it up to get a fully working HSR network
[  440.248380][T11182] hsr1: entered promiscuous mode
[  440.265122][T11185] netlink: 44 bytes leftover after parsing attributes in process `syz.7.1666'.
[  440.277181][T11185] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1666'.
[  440.300484][T11185] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1666'.
[  441.581579][T11194] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  443.192789][T11232] netlink: 'syz.9.1684': attribute type 10 has an invalid length.
[  443.201065][T11232] tipc: Resetting bearer <eth:team0>
[  443.260041][T11232] team0: left promiscuous mode
[  443.298938][T11232] team0: left allmulticast mode
[  443.349355][T11232] tipc: Resetting bearer <eth:team0>
[  443.366722][T11232] 8021q: adding VLAN 0 to HW filter on device team0
[  443.375385][T11232] team0: entered promiscuous mode
[  443.380779][T11232] team0: entered allmulticast mode
[  443.395909][T11232] tipc: Resetting bearer <eth:team0>
[  443.624088][T11232] tipc: Resetting bearer <eth:team0>
[  443.732880][T11235] netlink: 'syz.9.1684': attribute type 10 has an invalid length.
[  443.958832][T11235] syz_tun: left promiscuous mode
[  443.985976][T11235] syz_tun: left allmulticast mode
[  444.053045][T11235] syz_tun: entered promiscuous mode
[  444.075442][T11235] syz_tun: entered allmulticast mode
[  444.194162][T11236] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  444.215919][T11236] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  448.148579][T11281] netlink: 'syz.7.1697': attribute type 10 has an invalid length.
[  448.174629][T11281] macvlan0: entered promiscuous mode
[  448.721957][T11282] bond0 (unregistering): Released all slaves
[  449.295238][T11299] loop2: detected capacity change from 0 to 1024
[  449.303423][T11299] EXT4-fs: Ignoring removed bh option
[  449.309745][T11299] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  449.352104][T11299] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  449.440954][ T5782] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  450.204134][T11336] loop2: detected capacity change from 0 to 1024
[  450.244283][T11336] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  451.486223][ T5782] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  453.249408][T11324] netdevsim netdevsim9 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  453.261185][T11324] netdevsim netdevsim9 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  453.270272][T11324] netdevsim netdevsim9 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  453.286238][T11324] netdevsim netdevsim9 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  453.465702][T11324] netdevsim netdevsim9 netdevsim0: unset [1, 1] type 2 family 0 port 256 - 0
[  453.478659][T11324] netdevsim netdevsim9 netdevsim1: unset [1, 1] type 2 family 0 port 256 - 0
[  453.491297][T11324] netdevsim netdevsim9 netdevsim2: unset [1, 1] type 2 family 0 port 256 - 0
[  453.502300][T11324] netdevsim netdevsim9 netdevsim3: unset [1, 1] type 2 family 0 port 256 - 0
[  453.668114][T11367] netlink: 'syz.2.1728': attribute type 10 has an invalid length.
[  453.676008][T11367] dummy0: left promiscuous mode
[  453.947112][T11367] team0: Port device dummy0 added
[  454.090202][T11369] netlink: 'syz.2.1728': attribute type 10 has an invalid length.
[  454.329750][T11369] team0: Port device dummy0 removed
[  454.518927][T11378] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  455.884388][T11395] netlink: 'syz.7.1737': attribute type 10 has an invalid length.
[  455.894216][T11395] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1737'.
[  458.471105][T11435] loop2: detected capacity change from 0 to 2048
[  458.540969][T11435]  loop2: p1 < > p3
[  458.549039][T11435] loop2: p3 size 134217728 extends beyond EOD, truncated
[  459.372317][ T5788] Bluetooth: hci0: Malformed Event: 0x2f
[  459.786418][T11407] netdevsim netdevsim6 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  459.795982][T11407] netdevsim netdevsim6 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  459.804710][T11407] netdevsim netdevsim6 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  459.813282][T11407] netdevsim netdevsim6 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  459.911024][T11438] vlan2: entered allmulticast mode
[  460.023345][   T27] kauditd_printk_skb: 13 callbacks suppressed
[  460.023360][   T27] audit: type=1326 audit(1755851563.760:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11460 comm="syz.7.1758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  460.056642][   T27] audit: type=1326 audit(1755851563.760:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11460 comm="syz.7.1758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  460.086362][   T27] audit: type=1326 audit(1755851563.760:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11460 comm="syz.7.1758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  460.107278][T11463] netlink: 'syz.7.1759': attribute type 1 has an invalid length.
[  460.113881][   T27] audit: type=1326 audit(1755851563.760:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11460 comm="syz.7.1758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  460.140712][   T27] audit: type=1326 audit(1755851563.760:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11460 comm="syz.7.1758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  460.163566][   T27] audit: type=1326 audit(1755851563.760:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11460 comm="syz.7.1758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  460.177113][T11463] 8021q: adding VLAN 0 to HW filter on device bond0
[  460.187211][   T27] audit: type=1326 audit(1755851563.760:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11460 comm="syz.7.1758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  460.215441][   T27] audit: type=1326 audit(1755851563.760:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11460 comm="syz.7.1758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  460.238698][   T27] audit: type=1326 audit(1755851563.760:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11460 comm="syz.7.1758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  460.239585][T11465] 8021q: adding VLAN 0 to HW filter on device bond0
[  460.261501][   T27] audit: type=1326 audit(1755851563.760:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11460 comm="syz.7.1758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  460.292984][T11465] bond0: (slave vxcan3): The slave device specified does not support setting the MAC address
[  460.305052][T11465] bond0: (slave vxcan3): Error -95 calling set_mac_address
[  460.332554][T11463] macvlan2: entered promiscuous mode
[  460.338444][T11463] macvlan2: entered allmulticast mode
[  460.344585][T11463] bond0: entered promiscuous mode
[  460.350531][T11463] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  460.362258][T11463] bond0: left promiscuous mode
[  461.004880][T11486] syz.2.1768[11486] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  461.005032][T11486] syz.2.1768[11486] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  461.031217][T11488] netlink: 28 bytes leftover after parsing attributes in process `syz.9.1769'.
[  461.061513][T11488] netlink: 28 bytes leftover after parsing attributes in process `syz.9.1769'.
[  465.212751][   T27] kauditd_printk_skb: 17 callbacks suppressed
[  465.212767][   T27] audit: type=1326 audit(1755851568.950:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11549 comm="syz.9.1792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78f38ebe9 code=0x7ffc0000
[  465.334851][   T27] audit: type=1326 audit(1755851568.990:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11549 comm="syz.9.1792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78f38ebe9 code=0x7ffc0000
[  465.387664][   T27] audit: type=1326 audit(1755851568.990:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11549 comm="syz.9.1792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe78f38ebe9 code=0x7ffc0000
[  465.496280][   T27] audit: type=1326 audit(1755851569.000:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11549 comm="syz.9.1792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78f38ebe9 code=0x7ffc0000
[  465.614600][   T27] audit: type=1326 audit(1755851569.000:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11549 comm="syz.9.1792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78f38ebe9 code=0x7ffc0000
[  465.667585][   T27] audit: type=1326 audit(1755851569.000:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11549 comm="syz.9.1792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe78f38ebe9 code=0x7ffc0000
[  465.717158][   T27] audit: type=1326 audit(1755851569.000:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11549 comm="syz.9.1792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78f38ebe9 code=0x7ffc0000
[  465.744305][   T27] audit: type=1326 audit(1755851569.000:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11549 comm="syz.9.1792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fe78f38ebe9 code=0x7ffc0000
[  465.774968][   T27] audit: type=1326 audit(1755851569.000:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11549 comm="syz.9.1792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78f38ebe9 code=0x7ffc0000
[  465.801752][   T27] audit: type=1326 audit(1755851569.000:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11549 comm="syz.9.1792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fe78f38ebe9 code=0x7ffc0000
[  467.160819][T11582] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1804'.
[  469.499257][T11621] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1819'.
[  470.194246][T11630] loop2: detected capacity change from 0 to 32768
[  470.201977][T11630] XFS: ikeep mount option is deprecated.
[  470.225112][T11630] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  470.363571][T11630] XFS (loop2): Ending clean mount
[  470.375649][T11630] XFS (loop2): Quotacheck needed: Please wait.
[  470.457585][T11630] XFS (loop2): Quotacheck: Done.
[  473.148520][ T5782] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  473.446043][T11657] netlink: 'syz.9.1828': attribute type 3 has an invalid length.
[  473.454285][T11657] netlink: 20 bytes leftover after parsing attributes in process `syz.9.1828'.
[  474.119962][T11662] tc_dump_action: action bad kind
[  475.934039][T11686] input: syz1 as /devices/virtual/input/input5
[  477.173762][T11703] overlayfs: failed to clone upperpath
[  477.328123][T11707] netlink: 6 bytes leftover after parsing attributes in process `syz.7.1845'.
[  477.371772][T11707] netlink: 6 bytes leftover after parsing attributes in process `syz.7.1845'.
[  479.865128][T11745] netlink: 16 bytes leftover after parsing attributes in process `syz.9.1858'.
[  482.223444][T11770] netlink: 20 bytes leftover after parsing attributes in process `syz.9.1868'.
[  482.290858][T11775] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1867'.
[  482.351751][T11774] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  485.407704][T11809] netlink: zone id is out of range
[  485.413023][T11809] netlink: set zone limit has 4 unknown bytes
[  486.252591][T11838] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  486.941832][T11848] veth0_to_team: entered promiscuous mode
[  486.948169][T11848] veth0_to_team: entered allmulticast mode
[  487.372440][T11852] xt_CT: You must specify a L4 protocol and not use inversions on it
[  489.974278][T11894] bridge_slave_0: default FDB implementation only supports local addresses
[  489.996590][T11894] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1919'.
[  490.005930][T11894] bridge_slave_0: default FDB implementation only supports local addresses
[  490.016286][T11892] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1910'.
[  490.054845][T11892] netlink: 'syz.7.1910': attribute type 5 has an invalid length.
[  490.066508][T11892] netlink: 28 bytes leftover after parsing attributes in process `syz.7.1910'.
[  490.088662][T11892] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 256 - 0
[  490.098122][T11892] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 256 - 0
[  490.107567][T11892] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 256 - 0
[  490.116513][T11892] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 256 - 0
[  490.125644][T11892] geneve2: entered promiscuous mode
[  490.217455][T11892] geneve2: entered allmulticast mode
[  490.404478][T11902] netlink: 'syz.9.1912': attribute type 33 has an invalid length.
[  490.412554][T11902] netlink: 152 bytes leftover after parsing attributes in process `syz.9.1912'.
[  493.501733][T11976] overlayfs: failed to clone upperpath
[  493.815130][T11981] netlink: 24 bytes leftover after parsing attributes in process `syz.9.1926'.
[  493.869463][T11981] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1926'.
[  493.933937][T11988] batadv_slave_0: entered promiscuous mode
[  496.251296][T12014] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  496.306564][T12014] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  497.993580][T12044] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1944'.
[  498.128912][T12044] 8021q: adding VLAN 0 to HW filter on device bond5
[  498.163341][T12044] bond4: (slave bond5): Enslaving as an active interface with an up link
[  498.228592][T12048] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1944'.
[  498.267226][T12048] bond4 (unregistering): (slave bond5): Releasing backup interface
[  498.327692][T12048] bond4 (unregistering): Released all slaves
[  498.391590][   T27] kauditd_printk_skb: 20 callbacks suppressed
[  498.391608][   T27] audit: type=1800 audit(1755851602.130:343): pid=12054 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.1947" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  498.391702][T12050] netlink: 24 bytes leftover after parsing attributes in process `syz.9.1946'.
[  500.358616][T12089] netlink: 'syz.7.1958': attribute type 4 has an invalid length.
[  500.378435][T12089] netlink: 'syz.7.1958': attribute type 4 has an invalid length.
[  501.507695][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  501.514125][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  501.862223][T12103] cgroup: subsys name conflicts with all
[  503.621239][T12098] Bluetooth: hci0: command 0x0406 tx timeout
[  504.332236][T12143] netlink: 'syz.6.1976': attribute type 10 has an invalid length.
[  506.182348][T12155] netlink: 'syz.2.1978': attribute type 10 has an invalid length.
[  507.558682][T12179] loop2: detected capacity change from 0 to 8192
[  507.576648][T12179] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  509.327842][   T27] audit: type=1800 audit(1755851613.070:344): pid=12179 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1988" name="file1" dev="loop2" ino=1048619 res=0 errno=0
[  509.980689][T12209] bridge: RTM_NEWNEIGH with invalid ether address
[  510.068716][T12211] wg2: entered promiscuous mode
[  510.073662][T12211] wg2: entered allmulticast mode
[  511.548942][T12247] netem: incorrect ge model size
[  511.574529][T12247] netem: change failed
[  511.698019][ T5837] page_pool_release_retry() stalled pool shutdown 1 inflight 60 sec
[  512.513701][    T8] page_pool_release_retry() stalled pool shutdown 7 inflight 60 sec
[  513.537090][    T8] page_pool_release_retry() stalled pool shutdown 2 inflight 60 sec
[  515.274734][T12288] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2023'.
[  516.309325][T12289] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  516.524007][T12289] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  516.700821][T12289] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  516.939109][T12289] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  518.065247][T12289] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 256 - 0
[  519.084935][T12289] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 256 - 0
[  519.162582][T12289] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 256 - 0
[  519.165415][T12329] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  519.215224][T12289] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 256 - 0
[  519.605858][T12343] binder: 12342:12343 ioctl c0306201 0 returned -14
[  520.537131][T12349] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2050'.
[  522.996202][T12393] netlink: 'syz.2.2055': attribute type 1 has an invalid length.
[  523.031779][T12393] 8021q: adding VLAN 0 to HW filter on device bond4
[  523.124896][T12393] vlan3: entered allmulticast mode
[  523.196986][T12393] veth1: entered allmulticast mode
[  523.207664][T12393] bond4: (slave vlan3): Opening slave failed
[  526.604684][T12445] netlink: 96 bytes leftover after parsing attributes in process `syz.7.2069'.
[  528.770594][T12469] netlink: 24 bytes leftover after parsing attributes in process `syz.7.2080'.
[  531.783493][T12501] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2088'.
[  533.922610][T12520] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  534.723057][T12533] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2102'.
[  534.868039][T12533] bridge5: port 1(veth11) entered blocking state
[  534.876047][T12533] bridge5: port 1(veth11) entered disabled state
[  534.895187][T12533] veth11: entered allmulticast mode
[  534.905865][T12533] veth11: entered promiscuous mode
[  534.946115][T12538] bridge5: port 2(veth0_to_bond) entered blocking state
[  534.982585][T12538] bridge5: port 2(veth0_to_bond) entered disabled state
[  534.990082][T12538] veth0_to_bond: entered allmulticast mode
[  535.021104][T12538] veth0_to_bond: entered promiscuous mode
[  535.037690][  T787] kernel read not supported for file [userfaultfd] (pid: 787 comm: kworker/1:2)
[  535.780424][T12558] xt_nat: multiple ranges no longer supported
[  536.635773][T12562] netlink: 9275 bytes leftover after parsing attributes in process `syz.9.2110'.
[  536.753943][T12557] loop2: detected capacity change from 0 to 128
[  536.975193][T12563] syz.2.2108: attempt to access beyond end of device
[  536.975193][T12563] loop2: rw=2049, sector=145, nr_sectors = 896 limit=128
[  537.648806][T12579] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2116'.
[  540.049571][T12603] xt_cgroup: path and classid specified
[  541.467059][T12613] xt_HMARK: proto mask must be zero with L3 mode
[  543.992326][T12639] xt_nfacct: accounting object `syz1' does not exist
[  544.802416][T12643] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2136'.
[  546.462922][T12643] netlink: 'syz.2.2136': attribute type 5 has an invalid length.
[  546.789916][T12643] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2136'.
[  546.842676][T12643] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 256 - 0
[  546.871045][T12643] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 256 - 0
[  546.879856][T12643] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 256 - 0
[  546.888188][T12643] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 256 - 0
[  546.898710][T12643] geneve2: entered promiscuous mode
[  546.907459][T12643] geneve2: entered allmulticast mode
[  546.918347][T12649] lo: entered promiscuous mode
[  546.923734][T12649] lo: entered allmulticast mode
[  546.931371][T12649] tunl0: entered promiscuous mode
[  546.936658][T12649] tunl0: entered allmulticast mode
[  546.943939][T12649] gre0: entered promiscuous mode
[  546.949406][T12649] gre0: entered allmulticast mode
[  546.956306][T12649] gretap0: entered promiscuous mode
[  546.961612][T12649] gretap0: entered allmulticast mode
[  546.969365][T12649] erspan0: entered promiscuous mode
[  546.974650][T12649] erspan0: entered allmulticast mode
[  546.980978][T12649] ip_vti0: entered promiscuous mode
[  546.986412][T12649] ip_vti0: entered allmulticast mode
[  546.993591][T12649] ip6_vti0: entered promiscuous mode
[  546.999772][T12649] ip6_vti0: entered allmulticast mode
[  547.006583][T12649] sit0: entered promiscuous mode
[  547.011850][T12649] sit0: entered allmulticast mode
[  547.020236][T12649] ip6tnl0: entered promiscuous mode
[  547.025511][T12649] ip6tnl0: entered allmulticast mode
[  547.031927][T12649] ip6gre0: entered promiscuous mode
[  547.037496][T12649] ip6gre0: entered allmulticast mode
[  547.043934][T12649] ip6gretap0: entered promiscuous mode
[  547.049595][T12649] ip6gretap0: entered allmulticast mode
[  547.056189][T12649] vcan0: entered promiscuous mode
[  547.061437][T12649] vcan0: entered allmulticast mode
[  547.067561][T12649] team0: entered promiscuous mode
[  547.072678][T12649] team0: entered allmulticast mode
[  547.078456][T12649] 8021q: adding VLAN 0 to HW filter on device team0
[  547.085793][T12649] dummy0: entered promiscuous mode
[  547.091057][T12649] dummy0: entered allmulticast mode
[  547.097647][T12649] nlmon0: entered promiscuous mode
[  547.102816][T12649] nlmon0: entered allmulticast mode
[  547.109200][T12649] caif0: entered promiscuous mode
[  547.114537][T12649] caif0: entered allmulticast mode
[  547.120014][T12649] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  547.571896][T12658] sch_tbf: burst 4398 is lower than device lo mtu (11337746) !
[  548.817141][T12658] tipc: Enabled bearer <udp:syz1>, priority 10
[  551.713835][T12695] netlink: 'syz.7.2159': attribute type 1 has an invalid length.
[  551.745281][T12695] bond4: entered promiscuous mode
[  551.750491][T12695] bond4: entered allmulticast mode
[  551.876988][T12701] loop2: detected capacity change from 0 to 1024
[  551.889757][T12701] EXT4-fs: Ignoring removed i_version option
[  551.952237][T12701] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  551.974875][T12698] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2151'.
[  552.109772][T12701] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:478: comm syz.2.2152: Invalid block bitmap block 0 in block_group 0
[  552.130069][T12701] Quota error (device loop2): write_blk: dquota write failed
[  552.138790][T12701] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  552.149427][T12701] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.2152: Failed to acquire dquot type 0
[  552.178146][T12701] EXT4-fs error (device loop2): ext4_free_blocks:6681: comm syz.2.2152: Freeing blocks not in datazone - block = 0, count = 4096
[  552.216671][T12701] EXT4-fs error (device loop2): ext4_read_inode_bitmap:140: comm syz.2.2152: Invalid inode bitmap blk 0 in block_group 0
[  552.237906][T11943] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-8
[  552.249801][T12701] EXT4-fs error (device loop2) in ext4_free_inode:363: Corrupt filesystem
[  552.259722][T12701] EXT4-fs (loop2): 1 orphan inode deleted
[  552.275571][T12701] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  552.509104][T12698] netlink: 'syz.6.2151': attribute type 5 has an invalid length.
[  552.569785][T11943] EXT4-fs error (device loop2): ext4_release_dquot:6974: comm kworker/u4:39: Failed to release dquot type 0
[  553.047174][T12698] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2151'.
[  553.101779][T12698] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 256 - 0
[  553.136816][T12698] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 256 - 0
[  553.193447][T12698] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 256 - 0
[  553.218812][T12698] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 256 - 0
[  553.244391][T12698] geneve3: entered promiscuous mode
[  553.261016][T12698] geneve3: entered allmulticast mode
[  553.280020][T12701] lo: entered promiscuous mode
[  553.284901][T12701] lo: entered allmulticast mode
[  553.292061][T12701] tunl0: entered promiscuous mode
[  553.297287][T12701] tunl0: entered allmulticast mode
[  553.304075][T12701] gre0: entered promiscuous mode
[  553.309147][T12701] gre0: entered allmulticast mode
[  553.319896][T12701] gretap0: entered promiscuous mode
[  553.325252][T12701] gretap0: entered allmulticast mode
[  553.332530][T12701] erspan0: entered promiscuous mode
[  553.338009][T12701] erspan0: entered allmulticast mode
[  553.345769][T12701] ip_vti0: entered promiscuous mode
[  553.351503][T12701] ip_vti0: entered allmulticast mode
[  553.358324][T12701] ip6_vti0: entered promiscuous mode
[  553.364173][T12701] ip6_vti0: entered allmulticast mode
[  553.371568][T12701] sit0: entered promiscuous mode
[  553.376558][T12701] sit0: entered allmulticast mode
[  553.387818][T12701] ip6tnl0: entered promiscuous mode
[  553.393084][T12701] ip6tnl0: entered allmulticast mode
[  553.400438][T12701] ip6gre0: entered promiscuous mode
[  553.405682][T12701] ip6gre0: entered allmulticast mode
[  553.412852][T12701] ip6gretap0: entered allmulticast mode
[  553.421105][T12701] bridge0: entered promiscuous mode
[  553.426348][T12701] bridge0: entered allmulticast mode
[  553.434009][T12701] vcan0: entered promiscuous mode
[  553.439138][T12701] vcan0: entered allmulticast mode
[  553.445347][T12701] bond0: entered promiscuous mode
[  553.450487][T12701] bond0: entered allmulticast mode
[  553.459257][T12701] 8021q: adding VLAN 0 to HW filter on device bond0
[  553.467337][T12701] team0: entered promiscuous mode
[  553.472407][T12701] team0: entered allmulticast mode
[  553.478484][T12701] 8021q: adding VLAN 0 to HW filter on device team0
[  553.486325][T12701] dummy0: entered promiscuous mode
[  553.491537][T12701] dummy0: entered allmulticast mode
[  553.498750][T12701] nlmon0: entered promiscuous mode
[  553.503907][T12701] nlmon0: entered allmulticast mode
[  553.511277][T12701] caif0: entered promiscuous mode
[  553.516491][T12701] caif0: entered allmulticast mode
[  553.522812][T12701] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  553.539353][T12695] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2159'.
[  553.556053][T12695] bridge0: the hash_elasticity option has been deprecated and is always 16
[  553.570845][T12695] bond4: (slave bridge0): making interface the new active one
[  553.578594][T12695] bridge0: entered promiscuous mode
[  553.583986][T12695] bridge0: entered allmulticast mode
[  553.592586][T12695] bond4: (slave bridge0): Enslaving as an active interface with an up link
[  553.602422][T12704] netlink: 24 bytes leftover after parsing attributes in process `syz.7.2159'.
[  553.616871][T12704] 8021q: adding VLAN 0 to HW filter on device bond4
[  553.679258][ T1187] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  553.778678][T11939] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  554.146129][T12709] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2162'.
[  555.187422][T12709] netlink: 'syz.6.2162': attribute type 5 has an invalid length.
[  555.195235][T12709] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2162'.
[  556.248635][ T1187] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  556.311428][ T5782] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  556.329406][T11939] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  556.383453][T11939] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  556.536673][    T8] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  557.695029][T12739] netlink: 'syz.6.2164': attribute type 10 has an invalid length.
[  557.709942][T12739] macvlan0: entered promiscuous mode
[  558.217680][T12739] bond0 (unregistering): Released all slaves
[  558.544270][T12749] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2169'.
[  558.557048][T12749] netlink: 'syz.9.2169': attribute type 5 has an invalid length.
[  558.565006][T12749] netlink: 28 bytes leftover after parsing attributes in process `syz.9.2169'.
[  560.480298][T12755] lo: entered promiscuous mode
[  560.485307][T12755] lo: entered allmulticast mode
[  560.508371][T12755] tunl0: entered promiscuous mode
[  560.513553][T12755] tunl0: entered allmulticast mode
[  560.525597][T12755] gre0: entered promiscuous mode
[  560.531248][T12755] gre0: entered allmulticast mode
[  560.556161][T12755] gretap0: entered promiscuous mode
[  560.667025][T12755] gretap0: entered allmulticast mode
[  560.679732][T12755] erspan0: entered promiscuous mode
[  560.685031][T12755] erspan0: entered allmulticast mode
[  560.698588][T12755] ip_vti0: entered promiscuous mode
[  560.703910][T12755] ip_vti0: entered allmulticast mode
[  560.715793][T12755] ip6_vti0: entered promiscuous mode
[  560.721264][T12755] ip6_vti0: entered allmulticast mode
[  560.735407][T12755] sit0: entered promiscuous mode
[  560.741200][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  560.749435][T12755] sit0: entered allmulticast mode
[  560.779653][T12755] ip6tnl0: entered promiscuous mode
[  560.784993][T12755] ip6tnl0: entered allmulticast mode
[  560.881602][T12755] ip6gre0: entered promiscuous mode
[  560.886968][T12755] ip6gre0: entered allmulticast mode
[  560.896007][T12755] ip6gretap0: entered promiscuous mode
[  560.901641][T12755] ip6gretap0: entered allmulticast mode
[  560.909335][T12755] team0: entered promiscuous mode
[  560.914439][T12755] team0: entered allmulticast mode
[  560.920455][T12755] 8021q: adding VLAN 0 to HW filter on device team0
[  560.928465][T12755] dummy0: entered promiscuous mode
[  560.933624][T12755] dummy0: entered allmulticast mode
[  560.942559][T12755] nlmon0: entered promiscuous mode
[  560.947786][T12755] nlmon0: entered allmulticast mode
[  561.458822][T12755] caif0: entered promiscuous mode
[  561.464109][T12755] caif0: entered allmulticast mode
[  561.469428][T12755] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  563.212097][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  563.218903][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  563.949705][T12770] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  565.050445][T12779] bond0: entered promiscuous mode
[  567.104713][T12801] netlink: 'syz.6.2184': attribute type 10 has an invalid length.
[  567.136100][T12801] team0: left promiscuous mode
[  567.158561][T12801] team0: left allmulticast mode
[  567.196678][T12803] netlink: 'syz.9.2185': attribute type 1 has an invalid length.
[  567.302605][T12803] 8021q: adding VLAN 0 to HW filter on device bond2
[  567.332926][T12804] netlink: 'syz.6.2184': attribute type 10 has an invalid length.
[  567.444265][T12807] 8021q: adding VLAN 0 to HW filter on device bond2
[  567.452958][T12807] bond2: (slave vti0): The slave device specified does not support setting the MAC address
[  567.478341][T12807] bond2: (slave vti0): Error -95 calling set_mac_address
[  569.297182][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  571.753122][T12803] bond2: (slave gretap1): making interface the new active one
[  571.776523][T12803] bond2: (slave gretap1): Enslaving as an active interface with an up link
[  572.487141][ T5837] page_pool_release_retry() stalled pool shutdown 1 inflight 120 sec
[  573.233299][T12813] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  573.360010][ T5786] page_pool_release_retry() stalled pool shutdown 7 inflight 121 sec
[  574.796821][T12848] team0: entered promiscuous mode
[  574.802058][T12848] team0: entered allmulticast mode
[  574.808467][T12848] 8021q: adding VLAN 0 to HW filter on device team0
[  574.819181][ T5786] page_pool_release_retry() stalled pool shutdown 2 inflight 122 sec
[  576.475125][T12848] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  576.786617][T12854] netlink: 'syz.7.2196': attribute type 4 has an invalid length.
[  576.804488][T12854] netlink: 17 bytes leftover after parsing attributes in process `syz.7.2196'.
[  576.857393][T12862] overlayfs: failed to clone upperpath
[  581.088882][T12917] netlink: 24 bytes leftover after parsing attributes in process `syz.9.2216'.
[  581.406640][T12927] overlayfs: failed to clone upperpath
[  583.854960][   T27] audit: type=1326 audit(1755851687.590:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12949 comm="syz.9.2226" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe78f38ebe9 code=0x0
[  585.937170][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  586.620596][T12976] netlink: 'syz.9.2245': attribute type 4 has an invalid length.
[  586.641308][T12976] netlink: 'syz.9.2245': attribute type 4 has an invalid length.
[  587.713296][T12991] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2239'.
[  588.343913][T13000] xt_nat: multiple ranges no longer supported
[  588.901517][T12991] 8021q: adding VLAN 0 to HW filter on device bond6
[  588.920237][T12991] bond5: (slave bond6): Enslaving as an active interface with an up link
[  588.947805][T12990] netlink: 'syz.9.2249': attribute type 4 has an invalid length.
[  588.969272][T12990] netlink: 17 bytes leftover after parsing attributes in process `syz.9.2249'.
[  588.978642][T12991] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2239'.
[  588.995398][T12991] bond5 (unregistering): (slave bond6): Releasing backup interface
[  589.015407][T12991] bond5 (unregistering): Released all slaves
[  590.839283][T13026] Set syz1 is full, maxelem 1038 reached
[  592.317279][T13054] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2266'.
[  592.474682][T13054] bridge1: port 1(veth13) entered blocking state
[  592.487426][T13054] bridge1: port 1(veth13) entered disabled state
[  592.504595][T13054] veth13: entered allmulticast mode
[  592.515893][T13054] veth13: entered promiscuous mode
[  592.535121][T13056] bridge1: port 2(veth0_to_bond) entered blocking state
[  592.547422][T13056] bridge1: port 2(veth0_to_bond) entered disabled state
[  592.599864][T13056] veth0_to_bond: entered allmulticast mode
[  592.638229][T13056] veth0_to_bond: entered promiscuous mode
[  595.770790][T13089] loop2: detected capacity change from 0 to 128
[  595.784315][T13089] FAT-fs (loop2): Unrecognized mount option "ÿÿ" or missing value
[  595.852111][T13089] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  596.867821][T13099] batadv_slave_1: entered promiscuous mode
[  596.906598][T13099] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2269'.
[  597.887586][T13097] batadv_slave_1: left promiscuous mode
[  597.973717][T13113] netlink: 9275 bytes leftover after parsing attributes in process `syz.6.2281'.
[  598.062738][T13118] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2273'.
[  598.283403][T13123] netlink: 'syz.9.2274': attribute type 10 has an invalid length.
[  598.320849][T13123] 8021q: adding VLAN 0 to HW filter on device batadv0
[  598.344396][T13123] batadv0: entered promiscuous mode
[  598.359520][T13123] batadv0: entered allmulticast mode
[  598.376751][T13126] Set syz1 is full, maxelem 1038 reached
[  599.230226][T13137] lo: left promiscuous mode
[  599.234907][T13137] lo: left allmulticast mode
[  599.247605][T13137] tunl0: left promiscuous mode
[  599.252639][T13137] tunl0: left allmulticast mode
[  599.258253][T13137] gre0: left promiscuous mode
[  599.267014][T13137] gre0: left allmulticast mode
[  599.272501][T13137] gretap0: left promiscuous mode
[  599.286944][T13137] gretap0: left allmulticast mode
[  599.292697][T13137] erspan0: left promiscuous mode
[  599.311198][T13137] erspan0: left allmulticast mode
[  599.328572][T13137] ip_vti0: left promiscuous mode
[  599.333701][T13137] ip_vti0: left allmulticast mode
[  599.340420][T13137] ip6_vti0: left promiscuous mode
[  599.345655][T13137] ip6_vti0: left allmulticast mode
[  599.357751][T13137] sit0: left promiscuous mode
[  599.362668][T13137] sit0: left allmulticast mode
[  599.373357][T13137] ip6tnl0: left promiscuous mode
[  599.383002][T13137] ip6tnl0: left allmulticast mode
[  599.393633][T13137] ip6gre0: left promiscuous mode
[  599.403237][T13137] ip6gre0: left allmulticast mode
[  599.413983][T13137] ip6gretap0: left allmulticast mode
[  599.424035][T13137] bridge0: left promiscuous mode
[  599.433696][T13137] bridge0: left allmulticast mode
[  599.444805][T13137] vcan0: left promiscuous mode
[  599.450277][ T5786] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  599.477402][T13137] vcan0: left allmulticast mode
[  599.483059][T13137] bond0: left promiscuous mode
[  599.497799][T13137] bond0: left allmulticast mode
[  599.503744][T13137] team0: left promiscuous mode
[  599.508783][T13137] team0: left allmulticast mode
[  599.520583][T13137] dummy0: left promiscuous mode
[  599.536472][T13137] dummy0: left allmulticast mode
[  599.542201][T13137] nlmon0: left promiscuous mode
[  599.557303][T13137] nlmon0: left allmulticast mode
[  599.563539][T13137] caif0: left promiscuous mode
[  599.572597][T13137] caif0: left allmulticast mode
[  599.582764][T13137] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  600.741203][ T5786] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  600.830175][T13150] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  603.109492][T13180] netlink: 'syz.6.2289': attribute type 1 has an invalid length.
[  603.830841][T13180] bond0: entered promiscuous mode
[  603.840956][T13180] bond0: entered allmulticast mode
[  603.851945][T13183] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2289'.
[  603.869168][T13186] netlink: 9275 bytes leftover after parsing attributes in process `syz.2.2290'.
[  603.884813][T13183] bridge2: the hash_elasticity option has been deprecated and is always 16
[  603.941129][T13183] bond0: (slave bridge2): making interface the new active one
[  603.967881][T13183] bridge2: entered promiscuous mode
[  603.972113][T13188] netlink: 44 bytes leftover after parsing attributes in process `syz.9.2291'.
[  603.973306][T13183] bridge2: entered allmulticast mode
[  604.018629][T13183] bond0: (slave bridge2): Enslaving as an active interface with an up link
[  604.040044][T13184] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2289'.
[  604.074789][T13184] 8021q: adding VLAN 0 to HW filter on device bond0
[  604.088163][T13188] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2291'.
[  604.110641][T13188] netlink: 16 bytes leftover after parsing attributes in process `syz.9.2291'.
[  604.371181][T13197] tipc: Enabled bearer <udp:syz2>, priority 10
[  604.424789][T13197] tipc: Enabled bearer <eth:team0>, priority 0
[  605.502379][T13205] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  606.515425][T13220] 9pnet: p9_errstr2errno: server reported unknown error 1844674407370
[  606.967535][T13223] 9pnet: p9_errstr2errno: server reported unknown error 18446744073
[  606.999819][T13226] netlink: 'syz.2.2302': attribute type 1 has an invalid length.
[  607.088258][T13226] bond6: entered promiscuous mode
[  607.094703][T13226] bond6: entered allmulticast mode
[  607.110318][T13228] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2302'.
[  607.155767][T13228] bridge6: the hash_elasticity option has been deprecated and is always 16
[  607.221889][T13228] bond6: (slave bridge6): making interface the new active one
[  607.247843][T13228] bridge6: entered promiscuous mode
[  607.269844][T13228] bridge6: entered allmulticast mode
[  607.308576][T13228] bond6: (slave bridge6): Enslaving as an active interface with an up link
[  607.524107][T13229] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2302'.
[  607.859750][T13229] 8021q: adding VLAN 0 to HW filter on device bond6
[  613.025900][T13279] batadv_slave_1: entered promiscuous mode
[  613.051609][T13279] netlink: 16 bytes leftover after parsing attributes in process `syz.9.2317'.
[  613.288739][T13278] batadv_slave_1: left promiscuous mode
[  614.383100][T13289] netlink: 'syz.7.2320': attribute type 1 has an invalid length.
[  614.461805][T13289] bond5: entered promiscuous mode
[  614.467232][T13289] bond5: entered allmulticast mode
[  614.473679][T13293] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2320'.
[  614.492206][T13293] bridge8: the hash_elasticity option has been deprecated and is always 16
[  614.507265][T13293] bond5: (slave bridge8): making interface the new active one
[  614.515139][T13293] bridge8: entered promiscuous mode
[  614.521913][T13293] bridge8: entered allmulticast mode
[  614.530272][T13293] bond5: (slave bridge8): Enslaving as an active interface with an up link
[  614.669392][T13289] netlink: 24 bytes leftover after parsing attributes in process `syz.7.2320'.
[  614.692358][T13289] 8021q: adding VLAN 0 to HW filter on device bond5
[  616.424443][T13311] loop2: detected capacity change from 0 to 512
[  616.626198][T13311] EXT4-fs (loop2): Test dummy encryption mode enabled
[  616.645524][T13311] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  616.710395][T13316] xt_nfacct: accounting object `syz1' does not exist
[  617.564558][T13311] EXT4-fs (loop2): 1 truncate cleaned up
[  617.591940][T13311] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  617.937148][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  618.652090][T13311] fscrypt: AES-256-XTS using implementation "xts-aes-aesni"
[  618.722497][ T5782] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  619.132923][T13337] xt_NFQUEUE: number of queues (65532) out of range (got 66665)
[  623.265713][T13372] netlink: 'syz.7.2343': attribute type 10 has an invalid length.
[  624.241007][   T27] audit: type=1326 audit(1755851727.950:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13377 comm="syz.6.2353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  624.337964][   T27] audit: type=1326 audit(1755851727.950:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13377 comm="syz.6.2353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  624.347576][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  624.362729][   T27] audit: type=1326 audit(1755851727.960:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13377 comm="syz.6.2353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  624.368512][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  624.776055][   T27] audit: type=1326 audit(1755851727.960:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13377 comm="syz.6.2353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  625.018438][   T27] audit: type=1326 audit(1755851727.960:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13377 comm="syz.6.2353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  625.121424][   T27] audit: type=1326 audit(1755851728.380:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13377 comm="syz.6.2353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  625.226226][   T27] audit: type=1326 audit(1755851728.380:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13377 comm="syz.6.2353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  625.318352][   T27] audit: type=1326 audit(1755851728.390:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13377 comm="syz.6.2353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  625.420064][   T27] audit: type=1326 audit(1755851728.410:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13377 comm="syz.6.2353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  625.557725][   T27] audit: type=1326 audit(1755851728.410:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13377 comm="syz.6.2353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5145d8ebe9 code=0x7ffc0000
[  627.401391][T13403] netlink: 'syz.2.2350': attribute type 10 has an invalid length.
[  627.411209][T13403] macvlan0: entered promiscuous mode
[  627.573675][T13403] bond0 (unregistering): Released all slaves
[  627.867586][T13410] loop2: detected capacity change from 0 to 2048
[  627.899791][T13410] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found
[  627.918507][T13410] UDF-fs: Scanning with blocksize 512 failed
[  627.972252][T13410] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  628.048509][T13412] sch_tbf: burst 4398 is lower than device lo mtu (11337746) !
[  628.302035][T13412] tipc: Enabled bearer <udp:syz1>, priority 10
[  629.159553][T13408] UDF-fs: error (device loop2): udf_truncate_tail_extent: Extent after EOF in inode 818
[  629.248180][   T27] kauditd_printk_skb: 37 callbacks suppressed
[  629.248197][   T27] audit: type=1326 audit(1755851732.990:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13417 comm="syz.7.2355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  629.250518][T11953] kworker/u4:49: attempt to access beyond end of device
[  629.250518][T11953] loop2: rw=1, sector=2048, nr_sectors = 2 limit=2048
[  629.254594][   T27] audit: type=1326 audit(1755851732.990:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13417 comm="syz.7.2355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  629.281960][T11953] Buffer I/O error on dev loop2, logical block 1024, lost async page write
[  629.293253][   T27] audit: type=1326 audit(1755851733.040:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13417 comm="syz.7.2355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=428 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  629.850876][   T27] audit: type=1326 audit(1755851733.040:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13417 comm="syz.7.2355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  629.888542][   T27] audit: type=1326 audit(1755851733.040:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13417 comm="syz.7.2355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  629.927321][T11953] kworker/u4:49: attempt to access beyond end of device
[  629.927321][T11953] loop2: rw=1, sector=2048, nr_sectors = 2 limit=2048
[  629.937321][   T27] audit: type=1326 audit(1755851733.660:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13417 comm="syz.7.2355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=429 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  629.955736][T11953] Buffer I/O error on dev loop2, logical block 1024, lost async page write
[  629.976789][T11953] kworker/u4:49: attempt to access beyond end of device
[  629.976789][T11953] loop2: rw=1, sector=2048, nr_sectors = 2 limit=2048
[  629.987030][   T27] audit: type=1326 audit(1755851733.660:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13417 comm="syz.7.2355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  629.994638][T11953] Buffer I/O error on dev loop2, logical block 1024, lost async page write
[  630.023708][T11953] kworker/u4:49: attempt to access beyond end of device
[  630.023708][T11953] loop2: rw=1, sector=2048, nr_sectors = 2 limit=2048
[  630.047557][T11953] Buffer I/O error on dev loop2, logical block 1024, lost async page write
[  630.056623][T11953] kworker/u4:49: attempt to access beyond end of device
[  630.056623][T11953] loop2: rw=1, sector=2050, nr_sectors = 2 limit=2048
[  630.110512][   T27] audit: type=1326 audit(1755851733.660:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13417 comm="syz.7.2355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  630.159253][T11953] Buffer I/O error on dev loop2, logical block 1025, lost async page write
[  630.186631][T11953] kworker/u4:49: attempt to access beyond end of device
[  630.186631][T11953] loop2: rw=1, sector=2050, nr_sectors = 2 limit=2048
[  630.255749][T11953] Buffer I/O error on dev loop2, logical block 1025, lost async page write
[  630.284880][T11953] kworker/u4:49: attempt to access beyond end of device
[  630.284880][T11953] loop2: rw=1, sector=2050, nr_sectors = 2 limit=2048
[  630.303305][T13435] netlink: 9275 bytes leftover after parsing attributes in process `syz.6.2362'.
[  630.308950][T11953] Buffer I/O error on dev loop2, logical block 1025, lost async page write
[  630.338880][T11953] kworker/u4:49: attempt to access beyond end of device
[  630.338880][T11953] loop2: rw=1, sector=2050, nr_sectors = 2 limit=2048
[  630.373647][T11953] Buffer I/O error on dev loop2, logical block 1025, lost async page write
[  630.395631][T11953] kworker/u4:49: attempt to access beyond end of device
[  630.395631][T11953] loop2: rw=1, sector=2052, nr_sectors = 2 limit=2048
[  630.443185][T11953] Buffer I/O error on dev loop2, logical block 1026, lost async page write
[  630.463612][T11953] kworker/u4:49: attempt to access beyond end of device
[  630.463612][T11953] loop2: rw=1, sector=2052, nr_sectors = 2 limit=2048
[  630.501788][T11953] Buffer I/O error on dev loop2, logical block 1026, lost async page write
[  630.686369][T13443] veth0_to_team: entered promiscuous mode
[  630.700527][T13443] veth0_to_team: entered allmulticast mode
[  631.270142][T13429] netlink: zone id is out of range
[  631.285412][T13429] netlink: set zone limit has 4 unknown bytes
[  631.771986][T13448] netlink: 'syz.9.2363': attribute type 10 has an invalid length.
[  631.779944][T13448] macvlan0: entered promiscuous mode
[  631.856218][T13448] macvlan0: entered allmulticast mode
[  631.898029][T13448] veth1_vlan: entered allmulticast mode
[  631.958263][T13448] veth1_vlan: left allmulticast mode
[  632.646383][T13450] bond0 (unregistering): Released all slaves
[  632.946697][T13459] sch_tbf: burst 4398 is lower than device lo mtu (11337746) !
[  633.021864][T13459] tipc: Enabled bearer <udp:syz1>, priority 10
[  633.138272][  T787] page_pool_release_retry() stalled pool shutdown 1 inflight 181 sec
[  634.099851][    T8] page_pool_release_retry() stalled pool shutdown 7 inflight 181 sec
[  634.243126][   T27] audit: type=1326 audit(1755851737.980:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13471 comm="syz.2.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f778ebe9 code=0x7ffc0000
[  634.291599][   T27] audit: type=1326 audit(1755851737.980:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13471 comm="syz.2.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f778ebe9 code=0x7ffc0000
[  634.346572][   T27] audit: type=1326 audit(1755851737.980:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13471 comm="syz.2.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc8f778ebe9 code=0x7ffc0000
[  634.372386][   T27] audit: type=1326 audit(1755851737.990:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13471 comm="syz.2.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f778ebe9 code=0x7ffc0000
[  634.438284][   T27] audit: type=1326 audit(1755851737.990:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13471 comm="syz.2.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc8f778ebe9 code=0x7ffc0000
[  634.505812][T13478] netem: incorrect ge model size
[  634.512154][   T27] audit: type=1326 audit(1755851737.990:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13471 comm="syz.2.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f778ebe9 code=0x7ffc0000
[  634.513791][T13478] netem: change failed
[  634.549536][   T27] audit: type=1326 audit(1755851737.990:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13471 comm="syz.2.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f778ebe9 code=0x7ffc0000
[  634.574983][   T27] audit: type=1326 audit(1755851737.990:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13471 comm="syz.2.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fc8f778ebe9 code=0x7ffc0000
[  635.199868][   T27] audit: type=1326 audit(1755851737.990:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13471 comm="syz.2.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f778ebe9 code=0x7ffc0000
[  635.319975][   T27] audit: type=1326 audit(1755851737.990:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13471 comm="syz.2.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f778ebe9 code=0x7ffc0000
[  635.468510][   T27] audit: type=1326 audit(1755851737.990:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13471 comm="syz.2.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fc8f778ebe9 code=0x7ffc0000
[  635.528128][T13487] netlink: 'syz.6.2377': attribute type 10 has an invalid length.
[  636.278721][    T8] page_pool_release_retry() stalled pool shutdown 2 inflight 183 sec
[  636.593480][T13487] bond0 (unregistering): (slave bridge2): Releasing active interface
[  636.627133][T13487] bridge2: left promiscuous mode
[  636.657508][T13487] bridge2: left allmulticast mode
[  636.715923][T13487] bond0 (unregistering): Released all slaves
[  640.170698][T13517] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2386'.
[  640.915683][T13527] loop2: detected capacity change from 0 to 256
[  641.094259][T13529] sch_tbf: burst 4398 is lower than device lo mtu (11337746) !
[  641.140836][T13529] tipc: Enabling of bearer <udp:syz1> rejected, already enabled
[  641.480813][T13540] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2394'.
[  648.241646][T13603] mmap: syz.2.2415 (13603): VmData 45854720 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  649.773500][T13630] syz.9.2426[13630] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  649.773764][T13630] syz.9.2426[13630] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  653.391222][T13681] netlink: 'syz.6.2443': attribute type 10 has an invalid length.
[  659.619811][T13751] ecryptfs_parse_options: eCryptfs: unrecognized option [³(]
[  659.627449][T13751] ecryptfs_parse_options: eCryptfs: unrecognized option [{\)]
[  659.635034][T13751] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[  659.651457][T13751] Error parsing options; rc = [-22]
[  662.517363][T13770] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2469'.
[  662.818950][T13774] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2470'.
[  662.899860][T13770] loop2: detected capacity change from 0 to 2048
[  663.097174][T13770] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  663.128119][T13770] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  663.156918][T13770] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 not in group (block 1)!
[  663.197537][T13770] EXT4-fs (loop2): group descriptors corrupted!
[  665.113466][T13795] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  665.376540][T13801] netlink: 'syz.2.2479': attribute type 1 has an invalid length.
[  665.421142][T13801] bond0: entered promiscuous mode
[  665.430009][T13801] 8021q: adding VLAN 0 to HW filter on device bond0
[  665.479751][T13803] 8021q: adding VLAN 0 to HW filter on device bond0
[  665.499334][T13803] bond0: (slave ip6gre2): The slave device specified does not support setting the MAC address
[  665.558012][T13803] bond0: (slave ip6gre2): Setting fail_over_mac to active for active-backup mode
[  665.582016][T13803] bond0: (slave ip6gre2): making interface the new active one
[  665.602588][T13803] ip6gre2: entered promiscuous mode
[  665.620929][T13803] bond0: (slave ip6gre2): Enslaving as an active interface with an up link
[  668.180898][T13828] 9pnet: Could not find request transport: 0xffffffffffffffff
[  668.384353][T13842] bridge3: entered allmulticast mode
[  668.583001][  T787] IPVS: starting estimator thread 0...
[  668.687285][T13851] IPVS: using max 23 ests per chain, 55200 per kthread
[  672.531223][T13920] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2525'.
[  672.562145][   T27] kauditd_printk_skb: 23 callbacks suppressed
[  672.562165][   T27] audit: type=1326 audit(1755851776.300:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13916 comm="syz.7.2524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7fc00000
[  673.218987][   T27] audit: type=1326 audit(1755851776.960:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13916 comm="syz.7.2524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7fc00000
[  674.189083][  T787] usb 3-1: new full-speed USB device number 5 using dummy_hcd
[  674.523397][  T787] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  674.545091][  T787] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  674.570048][  T787] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  674.591187][  T787] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  674.618485][  T787] usb 3-1: config 0 descriptor??
[  675.094294][   T27] audit: type=1326 audit(1755851778.830:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13968 comm="syz.7.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  675.137787][  T787] savu 0003:1E7D:2D5A.0003: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.2-1/input0
[  675.147322][   T27] audit: type=1326 audit(1755851778.830:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13968 comm="syz.7.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  675.207188][   T27] audit: type=1326 audit(1755851778.860:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13968 comm="syz.7.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  675.250230][   T27] audit: type=1326 audit(1755851778.860:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13968 comm="syz.7.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  675.273827][   T27] audit: type=1326 audit(1755851778.860:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13968 comm="syz.7.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  675.327221][   T27] audit: type=1326 audit(1755851778.860:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13968 comm="syz.7.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  675.376596][   T27] audit: type=1326 audit(1755851778.860:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13968 comm="syz.7.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  675.399943][   T27] audit: type=1326 audit(1755851778.860:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13968 comm="syz.7.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7f613078ebe9 code=0x7ffc0000
[  675.487780][ T1187] usb 3-1: USB disconnect, device number 5
[  675.773978][T13985] Device name cannot be null; rc = [-22]
[  675.944794][T13995] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2547'.
[  678.224459][ T5788] Bluetooth: hci0: unexpected cc 0x203e length: 2 > 1
[  678.234857][ T5788] Bluetooth: hci0: unexpected event for opcode 0x203e
[  679.168348][T14061] netlink: 'syz.6.2563': attribute type 2 has an invalid length.
[  679.636004][T14087] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2570'.
[  679.646439][T14087] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2570'.
[  680.314386][T14095] netlink: 'syz.7.2573': attribute type 1 has an invalid length.
[  680.720601][   T27] kauditd_printk_skb: 49 callbacks suppressed
[  680.720619][   T27] audit: type=1326 audit(1755851784.450:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14097 comm="syz.9.2574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78f38ebe9 code=0x7ffc0000
[  680.815261][   T27] audit: type=1326 audit(1755851784.460:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14097 comm="syz.9.2574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78f38ebe9 code=0x7ffc0000
[  680.892168][   T27] audit: type=1326 audit(1755851784.460:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14097 comm="syz.9.2574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7fe78f38ebe9 code=0x7ffc0000
[  680.962594][   T27] audit: type=1326 audit(1755851784.460:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14097 comm="syz.9.2574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78f38ebe9 code=0x7ffc0000
[  681.038236][   T27] audit: type=1326 audit(1755851784.460:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14097 comm="syz.9.2574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78f38ebe9 code=0x7ffc0000
[  681.102818][   T27] audit: type=1326 audit(1755851784.460:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14097 comm="syz.9.2574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7fe78f38ebe9 code=0x7ffc0000
[  681.149981][   T27] audit: type=1326 audit(1755851784.460:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14097 comm="syz.9.2574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78f38ebe9 code=0x7ffc0000
[  681.208174][   T27] audit: type=1326 audit(1755851784.460:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14097 comm="syz.9.2574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78f38ebe9 code=0x7ffc0000
[  682.277406][ T5788] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  682.288239][ T5788] Bluetooth: hci0: Injecting HCI hardware error event
[  682.298351][ T5788] Bluetooth: hci0: hardware error 0x00
[  682.746705][T14120] loop2: detected capacity change from 0 to 512
[  682.770162][T14120] FAT-fs (loop2): bogus sectors per cluster 69
[  682.776394][T14120] FAT-fs (loop2): Can't find a valid FAT filesystem
[  682.964278][T14126] netlink: 'syz.6.2583': attribute type 1 has an invalid length.
[  683.070959][T14126] bond0: (slave ip6gretap1): Enslaving as a backup interface with an up link
[  683.131997][T14126] veth17: entered promiscuous mode
[  683.143313][T14126] bond0: (slave veth17): Enslaving as a backup interface with a down link
[  684.426634][ T5788] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  684.491224][T14139] netlink: 'syz.7.2587': attribute type 9 has an invalid length.
[  684.870319][T14145] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2589'.
[  684.880887][T14145] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2589'.
[  685.782827][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  685.782866][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  685.800764][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  687.548099][T14163] ptrace attach of "./syz-executor exec"[14164] was attempted by "./syz-executor exec"[14163]
[  688.600971][ T1187] IPVS: starting estimator thread 0...
[  688.697062][T14174] IPVS: using max 16 ests per chain, 38400 per kthread
[  689.265889][T14185] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  689.715080][T14191] overlayfs: failed to get inode (-116)
[  689.723748][T14191] overlayfs: failed to look up (bus) for ino (-116)
[  691.270072][T14214] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  691.564912][T14218] tipc: Resetting bearer <eth:team0>
[  691.572898][T14218] tipc: Resetting bearer <eth:team0>
[  691.650206][T14218] tipc: Resetting bearer <eth:team0>
[  691.657431][T14218] veth0_to_bond: left allmulticast mode
[  691.663224][T14218] veth0_to_bond: left promiscuous mode
[  691.671335][T14218] bridge1: port 2(veth0_to_bond) entered disabled state
[  691.685159][T14218] veth13: left allmulticast mode
[  691.691984][T14218] veth13: left promiscuous mode
[  691.700862][T14218] bridge1: port 1(veth13) entered disabled state
[  691.715026][T14218] bond0: (slave ip6gretap1): Releasing backup interface
[  691.722218][T14218] bond0: (slave ip6gretap1): the permanent HWaddr of slave - f6:e7:cc:ea:58:04 - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  691.750980][T14218] bond0: (slave veth17): Releasing backup interface
[  692.680067][T14230] netlink: 36 bytes leftover after parsing attributes in process `syz.9.2616'.
[  692.710724][T14232] netlink: 'syz.6.2617': attribute type 5 has an invalid length.
[  693.787638][   T23] page_pool_release_retry() stalled pool shutdown 1 inflight 242 sec
[  693.952247][T14240] loop2: detected capacity change from 0 to 1024
[  693.962334][T14240] EXT4-fs: Ignoring removed orlov option
[  693.986014][T14240] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  694.080068][ T5782] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  694.312563][T14249] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  694.339550][T14249] CIFS mount error: No usable UNC path provided in device string!
[  694.339550][T14249] 
[  694.350021][T14249] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  694.912347][T14250] tipc: Resetting bearer <eth:team0>
[  694.933843][ T5786] page_pool_release_retry() stalled pool shutdown 7 inflight 242 sec
[  696.976995][ T5786] page_pool_release_retry() stalled pool shutdown 2 inflight 244 sec
[  697.059882][T14280] 9pnet_fd: Insufficient options for proto=fd
[  697.097571][T14282] netlink: zone id is out of range
[  697.126288][T14282] netlink: zone id is out of range
[  697.132365][T14282] netlink: zone id is out of range
[  697.151347][T14282] netlink: zone id is out of range
[  697.171060][T14282] netlink: zone id is out of range
[  697.190572][T14282] netlink: zone id is out of range
[  697.207854][T14282] netlink: zone id is out of range
[  697.223748][T14282] netlink: zone id is out of range
[  697.238865][T14282] netlink: zone id is out of range
[  697.240449][T14284] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  697.248971][T14282] netlink: zone id is out of range
[  697.251287][T14284] IPv6: NLM_F_CREATE should be set when creating new route
[  697.308335][T14284] lo: left promiscuous mode
[  697.380104][T14284] tunl0: left promiscuous mode
[  697.398875][T14284] gre0: left promiscuous mode
[  697.418551][T14289] sctp: [Deprecated]: syz.2.2637 (pid 14289) Use of int in max_burst socket option.
[  697.418551][T14289] Use struct sctp_assoc_value instead
[  697.454198][T14284] gretap0: left promiscuous mode
[  697.509236][T14284] erspan0: left promiscuous mode
[  697.534845][T14284] ip_vti0: left promiscuous mode
[  697.572124][T14284] ip6_vti0: left promiscuous mode
[  697.621351][T14284] sit0: left promiscuous mode
[  697.723423][T14284] ip6tnl0: left promiscuous mode
[  697.751680][T14284] ip6gre0: left promiscuous mode
[  697.819184][T14284] ip6gretap0: left promiscuous mode
[  697.834583][T14284] tipc: Resetting bearer <eth:team0>
[  697.871311][T14284] team0: left promiscuous mode
[  697.921632][T14284] dummy0: left promiscuous mode
[  698.743434][T14284] nlmon0: left promiscuous mode
[  698.757991][T14284] caif0: left promiscuous mode
[  698.817447][T14284] veth0: entered allmulticast mode
[  698.822967][T14284] wg0: entered allmulticast mode
[  698.856636][T14284] wg1: entered allmulticast mode
[  698.885403][T14284] wg2: left promiscuous mode
[  698.898331][T14284] veth0_to_bridge: entered allmulticast mode
[  698.904663][T14284] bridge_slave_0: entered allmulticast mode
[  698.920663][T14284] veth1_to_bridge: entered allmulticast mode
[  698.937243][T14284] bridge_slave_1: entered allmulticast mode
[  698.944014][T14284] veth0_to_bond: entered allmulticast mode
[  698.951209][T14284] 
@ÿ: entered allmulticast mode
[  698.956469][T14284] veth1_to_bond: entered allmulticast mode
[  698.977409][T14284] bond_slave_1: entered allmulticast mode
[  698.983382][T14284] veth0_to_team: left promiscuous mode
[  698.992770][T14284] team_slave_0: entered allmulticast mode
[  699.004937][T14284] veth1_to_team: entered allmulticast mode
[  699.017706][T14284] team_slave_1: entered allmulticast mode
[  699.034041][T14284] veth0_to_batadv: entered allmulticast mode
[  699.044155][T14284] batadv_slave_0: entered allmulticast mode
[  699.058287][T14284] veth1_to_batadv: entered allmulticast mode
[  699.076863][T14284] batadv_slave_1: entered allmulticast mode
[  699.092350][T14284] xfrm0: entered allmulticast mode
[  699.104194][T14284] veth0_to_hsr: entered allmulticast mode
[  699.118792][T14284] hsr_slave_0: entered allmulticast mode
[  699.133242][T14284] veth1_to_hsr: entered allmulticast mode
[  699.146777][T14284] hsr_slave_1: entered allmulticast mode
[  699.154030][T14284] hsr0: entered allmulticast mode
[  699.154765][T14315] loop2: detected capacity change from 0 to 4096
[  699.167999][T14284] veth1_virt_wifi: entered allmulticast mode
[  699.168621][T14315] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512).
[  699.174227][T14284] veth0_virt_wifi: entered allmulticast mode
[  699.190074][T14284] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[  699.199134][T14284] veth1_vlan: entered allmulticast mode
[  699.205023][T14284] veth0_vlan: entered allmulticast mode
[  699.211064][T14284] vlan0: entered allmulticast mode
[  699.216470][T14284] vlan1: entered allmulticast mode
[  699.364311][T14284] macvlan0: left promiscuous mode
[  699.371906][T14284] macvlan0: entered allmulticast mode
[  699.391250][T14284] macvlan1: entered allmulticast mode
[  699.465385][T14284] ipvlan0: entered allmulticast mode
[  699.524081][T14284] ipvlan1: entered allmulticast mode
[  699.588672][T14284] veth1_macvtap: entered allmulticast mode
[  699.661939][T14284] veth0_macvtap: entered allmulticast mode
[  699.718384][T14284] macvtap0: entered allmulticast mode
[  699.800358][T14284] macsec0: entered allmulticast mode
[  699.814482][T14284] geneve0: entered allmulticast mode
[  699.827196][T14284] geneve1: entered allmulticast mode
[  699.841610][T14284] mac80211_hwsim hwsim14 wlan0: entered allmulticast mode
[  699.859576][T14284] mac80211_hwsim hwsim15 wlan1: entered allmulticast mode
[  699.879038][T14284] bond1: left promiscuous mode
[  699.891847][T14284] veth2: entered allmulticast mode
[  699.903523][T14284] veth3: entered allmulticast mode
[  699.918682][T14284] ip6tnl1: left promiscuous mode
[  699.930714][T14284] ip6tnl1: entered allmulticast mode
[  699.944128][T14284] syztnl2: entered allmulticast mode
[  699.956561][T14284] mac80211_hwsim hwsim15 pimreg: entered allmulticast mode
[  699.975528][T14284] bond2: entered allmulticast mode
[  699.980942][T14284] geneve2: entered allmulticast mode
[  699.986444][T14284] bridge0: entered allmulticast mode
[  699.992020][T14284] bond4: entered allmulticast mode
[  699.997335][T14284] veth4: entered allmulticast mode
[  700.008261][T14284] veth5: entered allmulticast mode
[  700.013621][T14284] netdevsim netdevsim6 eth0: entered allmulticast mode
[  700.022450][T14284] netdevsim netdevsim6 eth1: entered allmulticast mode
[  700.029623][T14284] netdevsim netdevsim6 eth2: entered allmulticast mode
[  700.036711][T14284] netdevsim netdevsim6 eth3: entered allmulticast mode
[  700.043912][T14284] veth6: entered allmulticast mode
[  700.049388][T14284] veth7: entered allmulticast mode
[  700.054722][T14284] bond3: entered allmulticast mode
[  700.060230][T14284] veth8: entered allmulticast mode
[  700.065528][T14284] veth9: entered allmulticast mode
[  700.071012][T14284] veth10: entered allmulticast mode
[  700.076496][T14284] veth11: entered allmulticast mode
[  700.082205][T14284] vlan0001: entered allmulticast mode
[  700.097843][T14284] netdevsim netdevsim6 eth0: unset [1, 0] type 2 family 0 port 256 - 0
[  700.106474][T14284] netdevsim netdevsim6 eth1: unset [1, 0] type 2 family 0 port 256 - 0
[  700.126949][T14284] netdevsim netdevsim6 eth2: unset [1, 0] type 2 family 0 port 256 - 0
[  700.135347][T14284] netdevsim netdevsim6 eth3: unset [1, 0] type 2 family 0 port 256 - 0
[  700.157381][T14284] geneve3: left promiscuous mode
[  700.170711][T14284] bridge1: entered allmulticast mode
[  700.185483][T14284] veth12: entered allmulticast mode
[  700.201802][T14284] veth13: entered allmulticast mode
[  700.209750][T14284] bridge2: entered allmulticast mode
[  700.215510][T14284] veth14: entered allmulticast mode
[  700.221361][T14284] veth15: entered allmulticast mode
[  700.244016][T14284] syztnl1: entered allmulticast mode
[  700.256881][T14284] bond0: entered allmulticast mode
[  700.271695][T14284] ip6gretap1: entered allmulticast mode
[  700.279726][T14284] veth16: entered allmulticast mode
[  700.285314][T14284] veth17: left promiscuous mode
[  700.292187][T14284] veth17: entered allmulticast mode
[  701.018772][T14332] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2652'.
[  702.656963][    C1] net_ratelimit: 25 callbacks suppressed
[  702.656981][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  703.697202][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  704.177434][T14380] xt_CT: You must specify a L4 protocol and not use inversions on it
[  704.737272][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  704.851274][T14386] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2668'.
[  704.890966][T14391] netlink: 'syz.9.2669': attribute type 5 has an invalid length.
[  705.777076][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  706.817032][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  707.856978][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  708.897196][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  709.300262][ T1187] IPVS: starting estimator thread 0...
[  709.407097][T14428] IPVS: using max 23 ests per chain, 55200 per kthread
[  709.936967][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  710.098492][T14435] netlink: 'syz.6.2688': attribute type 9 has an invalid length.
[  710.976975][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  712.017315][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  713.056959][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  714.096971][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  715.146960][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  715.573867][T14484] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2697'.
[  716.124179][T14496] netlink: 'syz.2.2708': attribute type 1 has an invalid length.
[  716.162398][T14496] 8021q: adding VLAN 0 to HW filter on device bond7
[  716.187101][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  716.225935][T14498] 8021q: adding VLAN 0 to HW filter on device bond7
[  716.267502][T14498] bond7: (slave vxcan1): The slave device specified does not support setting the MAC address
[  716.298719][T14498] bond7: (slave vxcan1): Error -95 calling set_mac_address
[  716.563480][T14496] macvlan2: entered promiscuous mode
[  716.586684][T14496] macvlan2: entered allmulticast mode
[  716.600760][T14496] bond7: entered promiscuous mode
[  716.622337][T14496] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  717.217304][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  718.068133][T14496] bond7: left promiscuous mode
[  718.257318][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  718.861552][T14523] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2707'.
[  718.889404][T14524] sch_tbf: burst 4398 is lower than device lo mtu (39799) !
[  718.926463][T14523] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2707'.
[  718.957284][T14524] tipc: Enabling of bearer <udp:syz1> rejected, already enabled
[  719.297079][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  719.664655][T14530] ptrace attach of "./syz-executor exec"[14531] was attempted by "./syz-executor exec"[14530]
[  720.346951][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  721.386927][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  722.416964][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  723.456962][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  723.872511][T14556] vlan3: entered promiscuous mode
[  723.892632][T14556] vlan3: entered allmulticast mode
[  723.912719][T14556] hsr_slave_1: entered allmulticast mode
[  724.497133][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  725.537425][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  726.577071][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  727.395061][T14574] ptrace attach of ""[14575] was attempted by "./syz-executor exec"[14574]
[  727.616967][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  728.656981][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  728.962195][T14576] bond1: (slave bridge1): Releasing active interface
[  728.977953][T14576] bridge1: left promiscuous mode
[  728.983147][T14576] bridge1: left allmulticast mode
[  729.013129][T14576] bond2: (slave gretap1): Releasing active interface
[  729.696952][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  730.736957][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  731.776972][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  732.817011][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  733.319230][T14623] netlink: 9275 bytes leftover after parsing attributes in process `syz.2.2733'.
[  733.866947][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  734.697114][   T27] audit: type=1326 audit(1755851838.440:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14635 comm="syz.6.2736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5145d8ebe9 code=0x7fc00000
[  734.897101][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  735.335414][   T27] audit: type=1326 audit(1755851839.070:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14635 comm="syz.6.2736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5145d8ebe9 code=0x7fc00000
[  735.916691][T14657] veth0_to_bond: left promiscuous mode
[  735.930869][T14657] bridge7: port 2(veth0_to_bond) entered disabled state
[  735.938343][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  736.976978][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  737.205451][T14657] veth5: left allmulticast mode
[  737.219941][T14657] veth5: left promiscuous mode
[  737.231620][T14657] bridge7: port 1(veth5) entered disabled state
[  737.251200][T14657] bond4: (slave bridge0): Releasing active interface
[  737.260495][T14657] bridge0: left promiscuous mode
[  737.265847][T14657] bridge0: left allmulticast mode
[  737.299527][T14657] bond5: (slave bridge8): Releasing active interface
[  737.316667][T14657] bridge8: left promiscuous mode
[  737.330892][T14657] bridge8: left allmulticast mode
[  737.830018][T14676] netlink: 9275 bytes leftover after parsing attributes in process `syz.9.2750'.
[  738.016935][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  738.877579][ T6961] ------------[ cut here ]------------
[  738.883931][ T6961] WARNING: CPU: 0 PID: 6961 at io_uring/io_uring.c:3213 io_ring_exit_work+0x39e/0x7e0
[  738.893763][ T6961] Modules linked in:
[  738.897884][ T6961] CPU: 0 PID: 6961 Comm: kworker/u4:10 Not tainted 6.6.102-syzkaller #0
[  738.906248][ T6961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  738.916919][ T6961] Workqueue: iou_exit io_ring_exit_work
[  738.922720][ T6961] RIP: 0010:io_ring_exit_work+0x39e/0x7e0
[  738.928741][ T6961] Code: e8 27 a4 20 f7 48 89 df 48 c7 c6 10 da 64 8a 4c 8b 24 24 4c 89 e2 b9 01 00 00 00 e8 ec 79 b5 f9 e9 64 ff ff ff e8 02 a4 20 f7 <0f> 0b b8 70 17 00 00 48 89 44 24 08 eb a6 89 d9 80 e1 07 80 c1 03
[  738.948764][ T6961] RSP: 0000:ffffc90003247a40 EFLAGS: 00010293
[  738.954881][ T6961] RAX: ffffffff8a64e71e RBX: 000000010000aabe RCX: ffff888079d88000
[  738.963300][ T6961] RDX: 0000000000000000 RSI: fffffffffffffffc RDI: 0000000000000000
[  738.971761][ T6961] RBP: ffffc90003247bb0 R08: ffffc900032479c7 R09: 1ffff92000648f38
[  738.980376][ T6961] R10: dffffc0000000000 R11: fffff52000648f39 R12: 000000010000aaba
[  738.988494][ T6961] R13: ffff888065ff8288 R14: ffff888065ff8510 R15: dffffc0000000000
[  738.996535][ T6961] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  739.005684][ T6961] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  739.012457][ T6961] CR2: 0000200000519000 CR3: 00000000614b2000 CR4: 00000000003506f0
[  739.021060][ T6961] Call Trace:
[  739.024384][ T6961]  <TASK>
[  739.027567][ T6961]  ? io_ring_ctx_wait_and_kill+0x2a0/0x2a0
[  739.033459][ T6961]  ? _raw_spin_unlock_irq+0x23/0x50
[  739.039163][ T6961]  ? process_scheduled_works+0x957/0x15b0
[  739.044939][ T6961]  ? process_scheduled_works+0x957/0x15b0
[  739.051133][ T6961]  process_scheduled_works+0xa45/0x15b0
[  739.056786][ T6961]  ? assign_work+0x400/0x400
[  739.056984][    C1] 0: reclassify loop, rule prio 0, protocol 800
[  739.068277][ T6961]  ? assign_work+0x39e/0x400
[  739.072941][ T6961]  worker_thread+0xa55/0xfc0
[  739.077898][ T6961]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  739.083857][ T6961]  ? _raw_spin_unlock+0x40/0x40
[  739.089122][ T6961]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[  739.095277][ T6961]  kthread+0x2fa/0x390
[  739.099787][ T6961]  ? pr_cont_work+0x560/0x560
[  739.104529][ T6961]  ? kthread_blkcg+0xd0/0xd0
[  739.109451][ T6961]  ret_from_fork+0x48/0x80
[  739.113929][ T6961]  ? kthread_blkcg+0xd0/0xd0
[  739.119260][ T6961]  ret_from_fork_asm+0x11/0x20
[  739.124273][ T6961]  </TASK>
[  739.127791][ T6961] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  739.135120][ T6961] CPU: 0 PID: 6961 Comm: kworker/u4:10 Not tainted 6.6.102-syzkaller #0
[  739.143592][ T6961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  739.153693][ T6961] Workqueue: iou_exit io_ring_exit_work
[  739.159310][ T6961] Call Trace:
[  739.162628][ T6961]  <TASK>
[  739.165600][ T6961]  dump_stack_lvl+0x16c/0x230
[  739.170319][ T6961]  ? show_regs_print_info+0x20/0x20
[  739.175569][ T6961]  ? load_image+0x3b0/0x3b0
[  739.180134][ T6961]  panic+0x2c0/0x710
[  739.184079][ T6961]  ? bpf_jit_dump+0xd0/0xd0
[  739.188627][ T6961]  ? ret_from_fork_asm+0x11/0x20
[  739.193597][ T6961]  __warn+0x2e0/0x470
[  739.197686][ T6961]  ? io_ring_exit_work+0x39e/0x7e0
[  739.202830][ T6961]  ? io_ring_exit_work+0x39e/0x7e0
[  739.207954][ T6961]  report_bug+0x2be/0x4f0
[  739.212290][ T6961]  ? io_ring_exit_work+0x39e/0x7e0
[  739.217420][ T6961]  ? io_ring_exit_work+0x39e/0x7e0
[  739.222541][ T6961]  ? io_ring_exit_work+0x3a0/0x7e0
[  739.227670][ T6961]  handle_bug+0xcf/0x120
[  739.231924][ T6961]  exc_invalid_op+0x1a/0x50
[  739.236433][ T6961]  asm_exc_invalid_op+0x1a/0x20
[  739.241476][ T6961] RIP: 0010:io_ring_exit_work+0x39e/0x7e0
[  739.247219][ T6961] Code: e8 27 a4 20 f7 48 89 df 48 c7 c6 10 da 64 8a 4c 8b 24 24 4c 89 e2 b9 01 00 00 00 e8 ec 79 b5 f9 e9 64 ff ff ff e8 02 a4 20 f7 <0f> 0b b8 70 17 00 00 48 89 44 24 08 eb a6 89 d9 80 e1 07 80 c1 03
[  739.266834][ T6961] RSP: 0000:ffffc90003247a40 EFLAGS: 00010293
[  739.272907][ T6961] RAX: ffffffff8a64e71e RBX: 000000010000aabe RCX: ffff888079d88000
[  739.280884][ T6961] RDX: 0000000000000000 RSI: fffffffffffffffc RDI: 0000000000000000
[  739.288949][ T6961] RBP: ffffc90003247bb0 R08: ffffc900032479c7 R09: 1ffff92000648f38
[  739.296936][ T6961] R10: dffffc0000000000 R11: fffff52000648f39 R12: 000000010000aaba
[  739.304912][ T6961] R13: ffff888065ff8288 R14: ffff888065ff8510 R15: dffffc0000000000
[  739.312898][ T6961]  ? io_ring_exit_work+0x39e/0x7e0
[  739.318043][ T6961]  ? io_ring_ctx_wait_and_kill+0x2a0/0x2a0
[  739.323874][ T6961]  ? _raw_spin_unlock_irq+0x23/0x50
[  739.329085][ T6961]  ? process_scheduled_works+0x957/0x15b0
[  739.334815][ T6961]  ? process_scheduled_works+0x957/0x15b0
[  739.340544][ T6961]  process_scheduled_works+0xa45/0x15b0
[  739.346230][ T6961]  ? assign_work+0x400/0x400
[  739.350841][ T6961]  ? assign_work+0x39e/0x400
[  739.355442][ T6961]  worker_thread+0xa55/0xfc0
[  739.360042][ T6961]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  739.365947][ T6961]  ? _raw_spin_unlock+0x40/0x40
[  739.370838][ T6961]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[  739.376775][ T6961]  kthread+0x2fa/0x390
[  739.380955][ T6961]  ? pr_cont_work+0x560/0x560
[  739.385664][ T6961]  ? kthread_blkcg+0xd0/0xd0
[  739.390277][ T6961]  ret_from_fork+0x48/0x80
[  739.394706][ T6961]  ? kthread_blkcg+0xd0/0xd0
[  739.399303][ T6961]  ret_from_fork_asm+0x11/0x20
[  739.404099][ T6961]  </TASK>
[  739.407440][ T6961] Kernel Offset: disabled
[  739.411853][ T6961] Rebooting in 86400 seconds..