last executing test programs:

9m12.115710322s ago: executing program 1 (id=266):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='.\x00', 0x0, 0x124)
r1 = fanotify_init(0x2, 0x1000)
fanotify_mark(r1, 0x541, 0x40001019, r0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0xa0, 0x0, 0x1, 0x0, 0x0)
symlinkat(&(0x7f0000000000)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00')
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x10, 0xffffffff)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000340)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
syz_mount_image$fuse(&(0x7f0000000140), &(0x7f00000002c0)='./bus\x00', 0x3220a0, &(0x7f0000000140)=ANY=[], 0xfe, 0x0, 0x0)
linkat(0xffffffffffffff9c, &(0x7f00000006c0)='./file2\x00', 0xffffffffffffff9c, &(0x7f0000000700)='./file7\x00', 0x400)
renameat2(0xffffffffffffff9c, &(0x7f0000000780)='./file7\x00', 0xffffffffffffff9c, &(0x7f00000007c0)='./file1\x00', 0x2)

9m11.827486966s ago: executing program 1 (id=269):
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x80)
r1 = bpf$ITER_CREATE(0xb, &(0x7f00000004c0)={r0}, 0x8)
close(r1)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r0, 0x8, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
syz_clone(0x400c0000, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000000)={r1, r3, 0x4, r4}, 0x10)

9m11.434070743s ago: executing program 1 (id=275):
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
writev(r0, &(0x7f00000006c0)=[{&(0x7f0000000540)="89e7ee0c7cdad9b4b47380c988cafbe863cac50580318bc98470cca6f706513d128a70dd249fd5c39c82dc902fab4d4d43bdad11b07d6bcf56f3d8", 0x3b}], 0x1)

9m10.298297111s ago: executing program 1 (id=286):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000680)='./bus\x00', 0x141842, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000980)=ANY=[@ANYRESOCT], 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000640), 0x3, 0x42f, &(0x7f0000000200)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_user\x00', 0x275a, 0x0)
copy_file_range(r1, 0x0, r0, 0x0, 0x81, 0x10000000000000)

9m8.46327679s ago: executing program 1 (id=296):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000008000000010001000900000001"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b708000002001e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000d00)='sched_switch\x00', r5}, 0x10)
getsockname$packet(r2, &(0x7f0000000140)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="3800000010000507000000000004000000000000", @ANYRES32=r3, @ANYBLOB="00000016010000001800120008000100736974000c00020008000300", @ANYRES16=r3], 0x38}, 0x1, 0x0, 0x0, 0x8c1}, 0x20000004)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000340)=ANY=[@ANYBLOB="58000000100039042cbd7000eaffffff000003e4", @ANYRES32=r6, @ANYBLOB="03000000cb1507003800128008000100736974002c00028008000100", @ANYRES32=r3, @ANYBLOB="08000300ac"], 0x58}, 0x1, 0x0, 0x0, 0x8000}, 0x4000040)

9m6.094616508s ago: executing program 1 (id=304):
syz_mount_image$erofs(&(0x7f0000000340), &(0x7f0000000240)='./file0\x00', 0x2000400, &(0x7f0000000940)=ANY=[], 0x1, 0x229, &(0x7f0000000000)="$eJzsmL9rFEEUx78zt7d3Z0S0SWFjYcCI5i6316QJGkGwEiHxV6WHWUO8S04uK5gDkWBjo52FYGPhP2ARMJWFnf+AoIUKgoJXWNikWXkzc3dzGc/dbNL5PsXwnXlvZt57N/uKA8Mw/y1fv/z+/OTczMJpAAcxgYJZ/54DhNBaWv6fnt879Wz2/IvXH1+9Wz30YGvnebQljocXiv+43wPwdi6Hh/2b+ru3SUyYyQIk6R+kL0PipFm/CoGy0TchccXoEALXjb5j6Rb5l8u3l5th+VaruUhimoYqDQENtZ3xdTcEFs08juNYWPa19U6j3myGbUt4xvYXUybRv6wx7tQvDx/dOZmHFR9V8drjRxs079VmWtdPUYVE1SRRg8C8WZ9BoVcbXRIr/6Pe4Pyck7+b7fYb5UuGpCSLWsz+2pdikfChxZGpbOdMUjpnXdNhZIkHw7vyGJiokvuT8sino4SX/BbPmB90d1eM0QO4mDaLpyUAe8qrkCrC3WYxJMa7W+9d07ek7bFIvkKkfz/FtDH3PsTsVS2h05B7qdiowD5s6v4RvxQ4YfUnz+oflWjlbmVtvTO1vFJfCpfC1SCoFca0TTWiihqdvjfozyXVnw5Y5+dH+PrSx/16FLWrevSFjxKiqB2oeWB9NvObrZ83zLYIFwAc1xNqm37/xJxzh/C1j1S+pCZdJ4ZhGIZhGIZhGIZhGIZhmEwcg1D/giYQXFLefwIAAP///cxfQA==")
open(0x0, 0x600000, 0x90)
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f0000000280)={[{@dmode={'dmode', 0x3d, 0x1}}, {@map_off}, {@nocompress}, {}, {@gid}, {@session={'session', 0x3d, 0x54}}, {@check_strict}, {@map_normal}, {@iocharset={'iocharset', 0x3d, 'cp936'}}, {@unhide}]}, 0x1, 0xa18, &(0x7f0000001300)="$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")
r0 = syz_open_procfs(0x0, &(0x7f0000000300)='attr/prev\x00')
r1 = fanotify_init(0x0, 0x80000)
r2 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x50)
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000040)=""/175, 0xaf}], 0x1)
fanotify_mark(r1, 0x1, 0x40001019, r2, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
getdents(r0, &(0x7f0000001200)=""/198, 0xc6)

9m5.788775512s ago: executing program 32 (id=304):
syz_mount_image$erofs(&(0x7f0000000340), &(0x7f0000000240)='./file0\x00', 0x2000400, &(0x7f0000000940)=ANY=[], 0x1, 0x229, &(0x7f0000000000)="$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")
open(0x0, 0x600000, 0x90)
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f0000000280)={[{@dmode={'dmode', 0x3d, 0x1}}, {@map_off}, {@nocompress}, {}, {@gid}, {@session={'session', 0x3d, 0x54}}, {@check_strict}, {@map_normal}, {@iocharset={'iocharset', 0x3d, 'cp936'}}, {@unhide}]}, 0x1, 0xa18, &(0x7f0000001300)="$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")
r0 = syz_open_procfs(0x0, &(0x7f0000000300)='attr/prev\x00')
r1 = fanotify_init(0x0, 0x80000)
r2 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x50)
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000040)=""/175, 0xaf}], 0x1)
fanotify_mark(r1, 0x1, 0x40001019, r2, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
getdents(r0, &(0x7f0000001200)=""/198, 0xc6)

7m52.60495527s ago: executing program 5 (id=552):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x1, 0xf, &(0x7f0000000480)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x7}, 0x4)
setsockopt$packet_int(r1, 0x107, 0x16, &(0x7f0000000000)=0x4, 0x4)
socket$nl_generic(0x11, 0x3, 0x10)
get_robust_list(0x0, &(0x7f0000000240)=&(0x7f0000000200)={&(0x7f0000000080)={&(0x7f0000000040)}, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)}}, &(0x7f0000000280)=0x18)
r2 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_RX_RING(r2, 0x11b, 0x2, &(0x7f0000000040)=0x100, 0x4)
setsockopt$XDP_TX_RING(r2, 0x11b, 0x3, &(0x7f0000001040)=0x8000, 0x4)
getsockopt$XDP_STATISTICS(r2, 0x11b, 0x7, &(0x7f0000000100), &(0x7f0000000140)=0x30)
syz_emit_ethernet(0xfdef, &(0x7f0000000180)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xfde1, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e22, 0xfdcd, 0x0, @wg=@data}}}}}, 0x0)

7m52.488659322s ago: executing program 5 (id=553):
r0 = syz_open_dev$loop(&(0x7f0000000100), 0xd79, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
write$UHID_INPUT(r1, &(0x7f00000010c0)={0x8, {"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", 0x1000}}, 0x1006)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x10}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GENEVE_REMOTE6={0x14, 0x7, @mcast1}]}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000}, 0x2000000)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f0000000540)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x4, 0x0, 0x0, 0x0, 0x22, 0x1c, "fee8a2ab78fcffffffffffffff2000b8785d960000000000000000000000000f000000000001000000000000000000000000000002002000", "2809e897bdb2128bfe82525edd7e5540f45f81a30198000000000400000000000000001600", "90beac50d5955bd878c6306003d8a0f4bd00", [0x8000000000000003, 0xfffffffffffffffc]}})
mount(&(0x7f0000000240)=@nullb, &(0x7f0000000080)='./cgroup\x00', &(0x7f0000000500)='bfs\x00', 0x8001, 0x0)
r3 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r3, 0xc0285700, &(0x7f0000000240)={0x0, "08000000000000000000000000000000000000b582000000010000000100"})
unshare(0x400)
r4 = socket$nl_rdma(0x10, 0x3, 0x14)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f00000000c0)={'dummy0\x00', &(0x7f0000000000)=@ethtool_gfeatures={0x3a, 0x7, [{}, {}, {}, {}, {}, {}, {}]}})

7m52.272492626s ago: executing program 5 (id=557):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
sendmmsg(r3, &(0x7f0000001c00), 0x400000000000159, 0x40840)

7m51.151295643s ago: executing program 5 (id=563):
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='configfs\x00', 0x0, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)

7m51.021996195s ago: executing program 5 (id=565):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x2, 0x1, 0x0, 0x2, 0x8, 0x0, 0x0, 0xfffffffc, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @private}}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @rand_addr=0x64010101}}]}, 0x40}}, 0x0)

7m49.073893426s ago: executing program 5 (id=579):
socket$netlink(0x10, 0x3, 0x0)
io_setup(0xc, &(0x7f0000000100)=<r0=>0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r1 = timerfd_create(0x0, 0x0)
io_submit(r0, 0x1, &(0x7f00000009c0)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}])
timerfd_settime(r1, 0x3, &(0x7f0000000080)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
socket$packet(0x11, 0x2, 0x300)
socket$igmp(0x2, 0x3, 0x2)
socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
clock_adjtime(0x0, &(0x7f0000000000)={0x3fd, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, 0x61, 0x0, 0x0, 0x100, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x4, 0x0, 0x9, 0x0, 0x9, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x1})

7m48.759511671s ago: executing program 33 (id=579):
socket$netlink(0x10, 0x3, 0x0)
io_setup(0xc, &(0x7f0000000100)=<r0=>0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r1 = timerfd_create(0x0, 0x0)
io_submit(r0, 0x1, &(0x7f00000009c0)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}])
timerfd_settime(r1, 0x3, &(0x7f0000000080)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
socket$packet(0x11, 0x2, 0x300)
socket$igmp(0x2, 0x3, 0x2)
socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
clock_adjtime(0x0, &(0x7f0000000000)={0x3fd, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, 0x61, 0x0, 0x0, 0x100, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x4, 0x0, 0x9, 0x0, 0x9, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x1})

7m11.773578081s ago: executing program 4 (id=723):
keyctl$dh_compute(0x17, &(0x7f00000001c0), 0x0, 0x0, &(0x7f0000000380)={0x0, &(0x7f0000000280)="ad2e63df7a2f767753d5a90f61dff579ee4aef3fcb3d6045b7a5fa37f24f91d5eb141e5995dc1973bb", 0x29})
r0 = socket$qrtr(0x2a, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'wlan1\x00'})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_emit_ethernet(0xf2, &(0x7f0000000000)={@local, @local, @void, {@x25={0x805, {0x1, 0x26, 0xf7, "f9ad93b433f65ccf4cebb884a9dc794444c4a93529b751b3c355fce36e865cce623b4b76db52ec57f1d173358c7073f23fdff779899e33d2fde14032d0d0703f48b3f6c553016984f600ca68f4164781b2b0b602abb5bc904ea4570c89f92c9dbcec503be1d87c6d79f6f15473ffaac87f18978be51ac17dc631d8bbfa0d3d897df961b45337b9473fb9ad79eafadcfd680a892c1dd68d88a84af985f06449c99cf245c99768dd19b1fd5242e222d9f2bdc7543a3339f244a11e1da83434e1da4fdc14f74f866adcc17487ca9c4565dbffecf4b9b0e970376ba5ee46a1b95a42df"}}}}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x7}]}, 0x24}}, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r5 = socket$inet(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8b04, &(0x7f0000000000)={'wlan1\x00'})

7m9.018193915s ago: executing program 4 (id=727):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
open$dir(&(0x7f00000002c0)='./control/file0\x00', 0x80040, 0x28)
r2 = open(&(0x7f0000022ff6)='./control\x00', 0x0, 0x0)
mkdirat(r2, &(0x7f0000000100)='./control\x00', 0x0)
getdents64(r2, &(0x7f0000fc4fbe)=""/80, 0x50)
unlink(&(0x7f00000001c0)='./control/file0\x00')
unlinkat(r2, &(0x7f0000000140)='./control\x00', 0x200)
rmdir(&(0x7f00000003c0)='./control\x00')

7m7.799870245s ago: executing program 4 (id=732):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = dup(r0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c)
sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f0000000180)="88", 0x1}], 0x1}, 0x4048043)
r2 = dup(r0)
sendmsg$inet6(r1, &(0x7f0000001bc0)={0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000840)="e5", 0x1}], 0x1}, 0x4000)
shutdown(r1, 0x1)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000000)='ip6gretap0\x00', 0x10)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e22, @empty}}, 0x8003, 0xbffc, 0xe652, 0x2, 0x4, 0x8, 0xff}, 0x9c)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0xce20, 0x5, @empty, 0x2d}}, 0x4, 0x1, 0xf06, 0x3, 0xb4, 0x7f, 0x9}, 0x9c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in6={{0xa, 0x4e60, 0xfffffff2, @empty, 0x3}}, 0x1000000, 0x31, 0xffff1896, 0x3, 0x6, 0x0, 0x1b}, 0x9c)

7m7.594621258s ago: executing program 4 (id=736):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mknod$loop(&(0x7f0000000080)='./bus\x00', 0x1, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000100)='./bus\x00', 0x2)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006300)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x20000000, 0x4041}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
r3 = syz_open_dev$loop(&(0x7f0000000000), 0x4, 0x2080)
ioctl$LOOP_SET_FD(r3, 0x4c00, r2)
dup2(r2, r0)

7m6.455890126s ago: executing program 4 (id=742):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
socket$key(0xf, 0x3, 0x2)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fcntl$lock(r1, 0x6, &(0x7f0000002000)={0x1})
fcntl$lock(r1, 0x26, &(0x7f00000031c0)={0x1})
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000080)='kmem_cache_free\x00', r2}, 0x18)
syz_emit_ethernet(0x3e, 0x0, 0x0)

7m2.982653732s ago: executing program 4 (id=759):
r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r1}, 0x18)
r2 = io_uring_setup(0x7d2e, &(0x7f0000000180)={0x0, 0xffffffff, 0x2})
io_uring_register$IORING_REGISTER_ENABLE_RINGS(r2, 0xc, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r2, 0x13, &(0x7f0000000540)=[0x7, 0xb09f], 0x2)
fsync(0xffffffffffffffff)
ioctl$VIDIOC_S_OUTPUT(r0, 0xc004562f, &(0x7f00000000c0)=0x1)
ioctl$VIDIOC_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000380)={0x0, @bt={0x2d0, 0x7c5, 0x1, 0x3, 0xd59f80, 0x4, 0x5, 0xb, 0x8, 0x5, 0x40722, 0xe72, 0xb0c, 0x8, 0x38, 0x35, {0xffff945a, 0x1}, 0x3, 0xed}})
syz_usb_disconnect(0xffffffffffffffff)
syz_usb_connect$hid(0x2, 0x3f, &(0x7f0000000000)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x10, 0x46d, 0xc70e, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x8, 0x80, 0x5, [{{0x9, 0x4, 0x0, 0x5, 0x1, 0x3, 0x1, 0x2, 0x8, {0x9, 0x21, 0x9, 0xc, 0x1, {0x22, 0xebb}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x6, 0x3, 0x4}}, [{{0x9, 0x5, 0x2, 0x3, 0x200, 0x0, 0x9f, 0x1}}]}}}]}}]}}, 0x0)

7m2.758560345s ago: executing program 34 (id=759):
r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r1}, 0x18)
r2 = io_uring_setup(0x7d2e, &(0x7f0000000180)={0x0, 0xffffffff, 0x2})
io_uring_register$IORING_REGISTER_ENABLE_RINGS(r2, 0xc, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r2, 0x13, &(0x7f0000000540)=[0x7, 0xb09f], 0x2)
fsync(0xffffffffffffffff)
ioctl$VIDIOC_S_OUTPUT(r0, 0xc004562f, &(0x7f00000000c0)=0x1)
ioctl$VIDIOC_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000380)={0x0, @bt={0x2d0, 0x7c5, 0x1, 0x3, 0xd59f80, 0x4, 0x5, 0xb, 0x8, 0x5, 0x40722, 0xe72, 0xb0c, 0x8, 0x38, 0x35, {0xffff945a, 0x1}, 0x3, 0xed}})
syz_usb_disconnect(0xffffffffffffffff)
syz_usb_connect$hid(0x2, 0x3f, &(0x7f0000000000)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x10, 0x46d, 0xc70e, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x8, 0x80, 0x5, [{{0x9, 0x4, 0x0, 0x5, 0x1, 0x3, 0x1, 0x2, 0x8, {0x9, 0x21, 0x9, 0xc, 0x1, {0x22, 0xebb}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x6, 0x3, 0x4}}, [{{0x9, 0x5, 0x2, 0x3, 0x200, 0x0, 0x9f, 0x1}}]}}}]}}]}}, 0x0)

49.906333173s ago: executing program 7 (id=2070):
r0 = socket(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
write(r0, &(0x7f0000000040)="240000001e005f0214ffff0600fffff8070000000000000000000100080003000b000000", 0x24)

48.611884894s ago: executing program 7 (id=2071):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ZERO(r1, 0x0, 0x48f, &(0x7f0000000000)={0x2c, @remote, 0x4e20, 0x0, 'none\x00', 0x32, 0x5, 0x3f}, 0x2c)
connect$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0xa43, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_GET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="300000000914e73f"], 0x30}, 0x1, 0x0, 0x0, 0xbe9b70533f0d9e1}, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001500)=[{&(0x7f0000000040)="d80000001a0081044e81f782db4cb904021d08007b490d4f1e81f8d815001000ff05143a13600e12080005007a010401a80016002000034004000000035c0461c9d67f6f940071342e875fab7cb6cec6cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b141993c034e653fe8efe7c9f877501000100683f5aeb4edbb57a5025ccca9ee5350db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a9295cbcd8bee", 0xd8}], 0x1}, 0x0)
recvfrom(r2, 0x0, 0x0, 0x20, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001380)={&(0x7f0000001440)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x26, 0x26, 0x4, [@datasec={0x2, 0x1, 0x0, 0xf, 0x1, [{}], 'D'}, @datasec={0x0, 0x0, 0x0, 0xf, 0x1, [], "84"}]}, {0x0, [0x0, 0x5f]}}, &(0x7f00000014c0)=""/2, 0x44, 0x2, 0x1}, 0x28)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000600), 0xffffffffffffffff)
sendmsg$WG_CMD_GET_DEVICE(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x28, r5, 0x301, 0x70bd2c, 0x25dfdbfe, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg1\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0xd0}, 0x20008000)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'veth0_to_bond\x00', 0x400})

47.176057027s ago: executing program 7 (id=2076):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = semget$private(0x0, 0x207, 0x0)
socket$inet6(0xa, 0x3, 0x5)
semctl$GETALL(r3, 0x0, 0xd, 0xfffffffffffffffe)

45.916063187s ago: executing program 7 (id=2080):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r1 = accept$packet(r0, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
setsockopt$packet_rx_ring(r1, 0x107, 0x5, 0x0, 0x0)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000100)={0x0, 0x0}, 0x10)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000900), 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r2, 0x107, 0x16, &(0x7f0000000100)={0x3, &(0x7f0000000180)=[{0x28, 0x0, 0x73, 0xfffff034}, {0x50, 0x0, 0x5, 0x2}, {0x6, 0x0, 0x2, 0xffffffff}]}, 0x10)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000280), 0x0)
syz_emit_ethernet(0x46, &(0x7f0000002040)={@empty, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x27}, @void, {@ipv6={0x86dd, @dccp_packet={0x4, 0x6, '\x00', 0x10, 0x21, 0x1, @local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', {[], {{0x4e24, 0x4e22, 0x4, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, "3badf5", 0x0, "a74ae1"}}}}}}}, 0x0)

45.727765829s ago: executing program 7 (id=2083):
r0 = socket(0x1, 0x1, 0x0)
ioctl$sock_ifreq(r0, 0x89f2, &(0x7f0000000040)={'bond0\x00', @ifru_flags=0x1})
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x101082)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x8003}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x90, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x68, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_OFFSET={0x8, 0x3, 0x1, 0x0, 0xe1}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x22}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x7}]}}}, {0x30, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0x20, 0x2, 0x0, 0x1, [@NFTA_BITWISE_LEN={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_BITWISE_SREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_BITWISE_DREG={0x8, 0x2, 0x1, 0x0, 0x12}, @NFTA_BITWISE_DATA={0x4}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x104}}, 0x0)
r2 = gettid()
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000100), r0)
sendmsg$BATADV_CMD_SET_HARDIF(r0, &(0x7f0000000300)={&(0x7f0000000080), 0xc, &(0x7f00000002c0)={&(0x7f0000000140)={0x3c, r3, 0x2, 0x70bd2b, 0x25dfdbfc, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x100}]}, 0x3c}}, 0x80)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
writev(r4, &(0x7f00000014c0)=[{&(0x7f00000001c0)="e4384d01", 0x4}, {&(0x7f0000000440)="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", 0xffc}], 0x2)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r5, 0xffffffffffffffff, 0x0)

43.318079318s ago: executing program 7 (id=2090):
socket$inet6(0xa, 0x80002, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
chdir(0x0)
r0 = socket$inet(0x2, 0x2, 0x1)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000000050005000200000c12000300686173683a6e65742c706f7274"], 0x4c}}, 0x2)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="50000000090601020000000000000000020000000900020073797a31000000000500010007000000280007800c00018008000140ffffffff0500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000070601080000001e000000000a0000040500010007"], 0x1c}, 0x1, 0x0, 0x0, 0x20000005}, 0x80)
syz_usb_disconnect(0xffffffffffffffff)
close_range(r0, 0xffffffffffffffff, 0x0)

27.091777427s ago: executing program 35 (id=2090):
socket$inet6(0xa, 0x80002, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
chdir(0x0)
r0 = socket$inet(0x2, 0x2, 0x1)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000000050005000200000c12000300686173683a6e65742c706f7274"], 0x4c}}, 0x2)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="50000000090601020000000000000000020000000900020073797a31000000000500010007000000280007800c00018008000140ffffffff0500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000070601080000001e000000000a0000040500010007"], 0x1c}, 0x1, 0x0, 0x0, 0x20000005}, 0x80)
syz_usb_disconnect(0xffffffffffffffff)
close_range(r0, 0xffffffffffffffff, 0x0)

11.841949131s ago: executing program 0 (id=2172):
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/custom0\x00', 0x1802, 0x0)
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r1, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x5}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000240)={0x42, 0x1}, 0x10)
bind$tipc(r0, 0x0, 0x0)
sendmsg$tipc(r1, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4010}, 0x8820)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
signalfd(r2, &(0x7f0000000040)={[0x23b9]}, 0x8)
ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x8)
close(0x3)

10.252072606s ago: executing program 2 (id=2176):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
fcntl$setlease(r2, 0x400, 0x1)
r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
io_setup(0x1, &(0x7f0000000b80)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f0000001d00)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0xfffc, r3, 0x0}])
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
r5 = gettid()
rt_sigtimedwait(&(0x7f0000000040)={[0xffffffff]}, 0x0, 0x0, 0x8)
timer_create(0x2, &(0x7f0000000180)={0x0, 0x4, 0x4, @tid=r5}, &(0x7f0000000140)=<r6=>0x0)
timer_settime(r6, 0xe54aef35e9c2845d, &(0x7f000006b000)={{0x77359400}, {0x0, 0x9}}, 0x0)

10.183736907s ago: executing program 0 (id=2177):
epoll_create1(0x0)
epoll_create1(0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0x40000}, 0x1c)
sendto$inet6(r0, &(0x7f0000000180)="af4fd73a", 0xffffffffffffff19, 0x840, 0x0, 0x0)
shutdown(r0, 0x1)
setsockopt$sock_int(r0, 0x1, 0x12, &(0x7f0000000340)=0x20000000, 0x4)
socket$inet6_udp(0xa, 0x2, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

9.950316811s ago: executing program 8 (id=2178):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000004000000000000000201801000020786c3500000000002020207b1af8ff00000000bfa10000000000000701000094ffffffb702000008000000b703000000000020850000002d000000850000002a00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000200)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x9}}, 0x18)
write$FUSE_DIRENTPLUS(r3, &(0x7f0000002c00)=ANY=[@ANYBLOB="b0"], 0xb0)
getresuid(&(0x7f0000000440), &(0x7f0000000480), &(0x7f00000004c0)=<r4=>0x0)
write$FUSE_CREATE_OPEN(r3, &(0x7f0000000280)={0xa0, 0x0, 0x0, {{0x20, 0x1, 0x5, 0x6, 0x1000, 0x6, {0x1, 0x0, 0x65cd, 0x0, 0xffffffffffff15ef, 0x9, 0x1, 0x7fff, 0x7, 0x4000, 0xe, r4, 0x0, 0x4, 0x10000}}, {0x0, 0x1}}}, 0xa0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3, @ANYBLOB=',privport,access=', @ANYRESDEC=r4])
mkdir(&(0x7f00000004c0)='./bus\x00', 0x92)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

9.859591202s ago: executing program 2 (id=2180):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bond0\x00'})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x200200b0)
r2 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f0000000100)='asymmetric\x00', &(0x7f0000000080)=@secondary)
keyctl$get_persistent(0x16, 0x0, r2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r3, 0x89f1, &(0x7f0000000600)={'ip6gre0\x00', &(0x7f0000000000)={'ip6gre0\x00', 0x0, 0x29, 0x0, 0x6, 0x0, 0x2a, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @ipv4={'\x00', '\xff\xff', @private=0xa010100}, 0x700, 0xba08}})
socketpair$unix(0x1, 0x1, 0x0, 0x0)
sendmsg$unix(0xffffffffffffffff, 0x0, 0x4004881)

9.719361865s ago: executing program 2 (id=2181):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000340), 0x302, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
r4 = socket(0x10, 0x803, 0x0)
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'veth0\x00', <r6=>0x0})
setsockopt$packet_add_memb(r5, 0x107, 0x1, &(0x7f0000000040)={r6, 0x1, 0x6, @local}, 0x10)
setsockopt$packet_drop_memb(r5, 0x107, 0x2, &(0x7f0000000100)={r6, 0x1, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3c}}, 0x10)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000001c0)=@newtfilter={0x68, 0x2c, 0xd27, 0x70bd2a, 0x8000002, {0x0, 0x0, 0x0, r8, {0x0, 0x6}, {}, {0x7, 0xa}}, [@filter_kind_options=@f_basic={{0xa}, {0x38, 0x2, [@TCA_BASIC_EMATCHES={0x34, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}, @TCA_EMATCH_TREE_LIST={0x28, 0x2, 0x0, 0x1, [@TCF_EM_CMP={0x10, 0x1, 0x0, 0x0, {{0xff, 0x1, 0x8001}, {0x8, 0x6a6, 0xffff, 0x5, 0x2, 0x2}}}, @TCF_EM_CONTAINER={0xc, 0x2, 0x0, 0x0, {{0xffff, 0x0, 0x7540}}}]}]}]}}]}, 0x68}, 0x1, 0x0, 0x0, 0x24008004}, 0x0)

9.718184795s ago: executing program 8 (id=2182):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_init_net_socket$llc(0x1a, 0x802, 0x0)
bind$llc(r3, &(0x7f0000000000)={0x1a, 0x0, 0x1, 0x0, 0x3, 0x4a}, 0x10)
close(r3)

9.522695708s ago: executing program 2 (id=2183):
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x101040)
faccessat(0xffffffffffffffff, 0x0, 0x1a0)
syz_io_uring_setup(0x5c2, &(0x7f0000000280)={0x0, 0x0, 0x3080, 0x8003, 0x25f}, &(0x7f0000000240)=<r1=>0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
r2 = socket(0x1e, 0x4, 0x0)
r3 = syz_io_uring_setup(0x890, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_CLOSE={0x13, 0x8, 0x0, r2})
io_uring_enter(r3, 0x47f6, 0x0, 0x2, 0x0, 0x0)

7.973058292s ago: executing program 8 (id=2186):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[], 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
bind$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000000040), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
flock(r0, 0x5)

7.938309023s ago: executing program 6 (id=2187):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
fcntl$notify(0xffffffffffffffff, 0x402, 0x5)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a00)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x34, 0x4, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, @cmp={{0x8}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_CMP_DATA={0x10, 0x3, 0x0, 0x1, [@NFTA_DATA_VALUE={0x9, 0x1, "000000fd80"}]}, @NFTA_CMP_SREG={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_CMP_OP={0x8, 0x2, 0x1, 0x0, 0x1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xd0}}, 0x0)

7.936665563s ago: executing program 0 (id=2188):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x3c)

5.895932136s ago: executing program 6 (id=2190):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000340)={r2, r1, 0x0, 0x0, 0x0}, 0x30)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x2, 0x1, 0x74}]}, &(0x7f0000000080)='syzkaller\x00', 0x4, 0x98, &(0x7f00000000c0)=""/152}, 0x80)

5.895558416s ago: executing program 0 (id=2191):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x24000800)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f000000c300)=ANY=[], 0x68}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmsg$NFT_MSG_GETFLOWTABLE(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="2c000000170a0101"], 0x2c}}, 0x0)
recvmsg(r2, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x1000)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000100)={0x0, 0x3, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a31000000001400078005001500070000000800124000000000050005000200000005000400000000000d000300686173683a6e6574"], 0x5c}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'macvlan0\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_tcp_int(r5, 0x6, 0x3, &(0x7f00000001c0), &(0x7f0000000280)=0x4)
sendmsg$IPSET_CMD_LIST(r1, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x40, 0x7, 0x6, 0x301, 0x0, 0x0, {0x2, 0x0, 0x5}, [@IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x4}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x40}}, 0x4080)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=r3, @ANYBLOB="00001700000000001c0037800b0001006970768a616e08000c0002800600010000000000050027"], 0x44}, 0x1, 0x0, 0x0, 0x4008010}, 0x8040)

5.877434296s ago: executing program 2 (id=2193):
syz_mount_image$hfs(&(0x7f00000001c0), &(0x7f0000000140)='./bus\x00', 0x14000, &(0x7f0000000000)=ANY=[], 0x4, 0x29b, &(0x7f00000010c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x105042, 0x1db)
truncate(&(0x7f0000000900)='./file1\x00', 0xbf39)
writev(r3, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x3fe00}], 0x1)

5.61208343s ago: executing program 8 (id=2194):
syz_open_dev$sndctrl(&(0x7f0000000440), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x69703000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f0000001000)={0x24, 0x0, 0x0, &(0x7f00000001c0), 0x0}, 0x0)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r3, &(0x7f0000000000), 0x10)
sendmsg$can_bcm(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x5, 0x0, 0x0, {0x0, 0x2710}, {0x77359400}, {}, 0x2, @can={{}, 0x0, 0x2, 0x0, 0x0, "3fd31340e92c4bb8"}}, 0x48}, 0x300}, 0x8040)

4.791771203s ago: executing program 2 (id=2195):
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
syz_open_dev$dri(0x0, 0x7ce, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket(0x840000000002, 0x3, 0x100)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f0000001900)=@raw={'raw\x00', 0x8, 0x3, 0x338, 0x1c0, 0xe138, 0x198, 0x1c0, 0x198, 0x2a0, 0x358, 0x358, 0x2a0, 0x358, 0x3, 0x0, {[{{@ip={@broadcast, @loopback, 0x0, 0x0, 'pimreg\x00', 'veth0_to_bond\x00'}, 0x0, 0x158, 0x1c0, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'fsm\x00', "0d0004000000000000000404fff0cf81dfd28c89544e14cd3e01dd24289831867846c88621039b284c3ff45c42995560a99952bed40cf5a8c1df6cdbdb7e2378d5afd35f4c16827f55b3af494e39e8fb330200000000000032b6a99a8d87298e88a94cb519f5c17631af916a0002000000000000000000000000000000000049", 0x8}}, @inet=@rpfilter={{0x28}, {0xc}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x98, 0xe0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x398)

4.778877343s ago: executing program 6 (id=2196):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x800, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
mmap$fb(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0xd8000)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000440)="97713b46fbaa2b1044f2d408ffca802db4d770eb9874f493e0ef367e4bde497c403b450c72ff2417d079bb892435a1e107fa5c0ecd207d9e6f2a209bf148e6bc56955cb53347d1499097488fcad724a1"})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000002c0)={0x44, 0x0, &(0x7f0000000740)=[@reply={0x40406301, {0x2, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000009c0)={0x0, 0x0, 0x0, 0x54, 0x0, &(0x7f0000000940)="6a408818f3131c56bfbd70d0773ae1401f78b2424e06600e26e898602ef3aaee955f7aa5f5efcfb14f6fc4c40b24396b7355b1371ca2b5d5ef71db87b223376fba2e6b1a43fab4bb785a3742f57ec1bc948904db"})

4.732149714s ago: executing program 3 (id=2197):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x2, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
r1 = socket$inet(0xa, 0x801, 0x84)
listen(r1, 0xfffffffe)
listen(r0, 0xfffffffd)
r2 = socket$inet(0xa, 0x801, 0x84)
listen(r2, 0x8)
r3 = socket$inet(0xa, 0x801, 0x84)
listen(r3, 0x8)
r4 = socket$inet6(0xa, 0x1, 0x8010000000000084)
listen(r4, 0x7)
r5 = socket$netlink(0x10, 0x3, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), r5)
writev(r5, &(0x7f0000000000)=[{&(0x7f0000000140)="480000001400190d09004beafd0d8c560a84476080ffe00600000000590000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed5e00000000000000", 0x40b}], 0x1)

4.587878206s ago: executing program 3 (id=2198):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
r0 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f00000000c0)=0x3a03, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0xfdfe, 0x7, @remote, 0x4}, 0x1c)
connect$pppl2tp(r3, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, r4, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newlink={0x28, 0x10, 0x1, 0x2, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x41101}, [@IFLA_GROUP={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x5}, 0x0)
writev(r3, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)

3.632558231s ago: executing program 6 (id=2199):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f00000000c0), 0x40000, 0x0)
ioctl$FBIOPUT_CON2FBMAP(r0, 0x4610, &(0x7f0000000100)={0x27, 0x1})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'tunl0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x70bd2c, 0xfffffffd, {0x0, 0x0, 0x0, r3, {0x0, 0xffe0}, {0xffff, 0xffff}, {0x0, 0xfff2}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}, @TCA_RATE={0x6, 0x5, {0x2, 0x8}}]}, 0x40}}, 0x4000010)
sendmmsg$inet(r1, &(0x7f0000005200)=[{{0x0, 0x4b, &(0x7f0000000000), 0x1}}], 0x1, 0x0)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x5, 0x7fff7ffc}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r5, 0x40182103, &(0x7f0000000180)={0x0, 0x1, r5, 0x5})
connect$bt_l2cap(r4, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
r6 = syz_clone3(&(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000100), {0xd}, &(0x7f00000001c0)=""/114, 0x72, &(0x7f0000000240)=""/217, &(0x7f0000000140)=[0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff], 0x4}, 0x58)
syz_open_procfs(r6, &(0x7f00000003c0)='projid_map\x00')
sendmsg$inet(r4, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001980)=[{&(0x7f0000001a80)="9c", 0x1}], 0x1}, 0x8014)

3.420013665s ago: executing program 0 (id=2200):
r0 = mmap$KVM_VCPU(&(0x7f0000ffc000/0x2000)=nil, 0x930, 0x1000002, 0x4018831, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
setresuid(0xee01, 0xee00, 0x0)
r2 = syz_io_uring_setup(0xa1, &(0x7f0000000640)={0x0, 0xe8ce, 0x0, 0x20, 0x40000333}, &(0x7f00000006c0)=<r3=>0x0, &(0x7f00000020c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x6007, @fd=r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001800)=""/211, 0xd3}], 0x1})
io_uring_enter(r2, 0x47ba, 0x0, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000002800)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x1})
r5 = syz_io_uring_setup(0x112, &(0x7f0000000140)={0x0, 0x24089, 0x80, 0x3}, &(0x7f0000000240)=<r6=>0x0, &(0x7f0000000040))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r5, 0x47f6, 0xb277, 0x0, 0x0, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f0000000000)="1eb3bf65654102f4af4d221c8bd458d1e7cbdaf3657d0f34e790c85bdba7931791f6d15c3e681411f7a496c0dace6a3c242f5b016f64b4ef8a9cedaf6bec340dee49474360b24cb8", 0x0, 0x48)

2.987393072s ago: executing program 8 (id=2201):
socket$inet_mptcp(0x2, 0x1, 0x106)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[], 0x32600)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000300)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}}, 0x0, 0x0, 0x34, 0x0, "f1f7882eade7f9ed59dd754ed3fa9513bc8d9662eaae6a87ea17d19cced73fca9d00b370eaefb2ecab4c20fb0d62c726cc3cb83d211da63fb4007c81ad7a2edac7859b8988028702e2027b84c554f86f"}, 0xd8)
setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000200)={@in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x4c, 0x0, "01deaba05ccc4fa00711be66bd584ecd190428efc9e569f4b222158b227692cebc00924f2deea371bafa061b8f2959b4b696b22e4881f40a0d8f4c2fdea78893bc2c160df3e41db4153cfd9221d01c79"}, 0xd8)
setsockopt$inet6_tcp_int(r1, 0x6, 0x2000000000000020, &(0x7f0000000040)=0xa, 0x1959cc36)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='contention_end\x00', r2}, 0x18)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000480)={@cgroup, 0x11, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0}, 0x40)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206010100000000000000000000000005000100070000000900020073797a300000000014000780050015000000000008001240000000000d000300686173683a6e657400000000050005000a000000050004"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="28000000030605000000000000000000000000000500010007"], 0x28}}, 0x40)

2.975057763s ago: executing program 3 (id=2202):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000007b00000000000000000000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000080)='netlink_extack\x00', r4}, 0x10)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_SET(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="019b1d35eb76c40f13002f"], 0x34}}, 0x0)

2.933234773s ago: executing program 6 (id=2203):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100000b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup.cpu/cgroup.procs\x00', 0xa00, 0x1c2)
r2 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r2, r1, 0x0, 0x3a)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_open_dev$vim2m(&(0x7f0000000080), 0x0, 0x2)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x20000000000, 0x1, 0x4, 0x0, 0x71e, 0x4a}, 0x0, &(0x7f0000000000)={0x3ff, 0x4, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x8, 0xfffffffffffffffe}, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

2.719373306s ago: executing program 8 (id=2204):
socket$inet6(0xa, 0x80002, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
fchmodat(0xffffffffffffffff, 0x0, 0xc0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
chdir(0x0)
r0 = socket$inet(0x2, 0x2, 0x1)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000000050005000200000c12000300686173683a6e65742c706f7274"], 0x4c}}, 0x2)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="50000000090601020000000000000000020000000900020073797a31000000000500010007000000280007800c00018008000140ffffffff0500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000070601080000001e000000000a0000040500010007"], 0x1c}, 0x1, 0x0, 0x0, 0x20000005}, 0x80)
syz_usb_disconnect(0xffffffffffffffff)
close_range(r0, 0xffffffffffffffff, 0x0)

1.686729573s ago: executing program 3 (id=2205):
ioctl$sock_SIOCGSKNS(0xffffffffffffffff, 0x894c, 0x0)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x29, 0x1f, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000900)=@mangle={'mangle\x00', 0x44, 0x6, 0x430, 0x218, 0x218, 0x218, 0xe8, 0x0, 0x398, 0x398, 0x398, 0x398, 0x398, 0x6, 0x0, {[{{@ip={@remote, @initdev={0xac, 0x1e, 0x0, 0x0}, 0xff, 0xffffff00, 'macvlan1\x00', 'wlan0\x00', {0xff}, {0xff}, 0x62, 0x2, 0x10}, 0x0, 0xc0, 0xe8, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x5}}, @common=@ttl={{0x28}, {0x0, 0xfe}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xe8}}, {{@uncond, 0x0, 0x70, 0x98}, @ECN={0x28, 'ECN\x00', 0x0, {0x40, 0x91, 0x4}}}, {{@ip={@private=0xa010100, @loopback, 0x0, 0xffffffff, 'veth1_virt_wifi\x00', 'wlan1\x00', {0xff}, {}, 0x73, 0x0, 0x41}, 0x0, 0x70, 0x98}, @ECN={0x28, 'ECN\x00', 0x0, {0x0, 0x0, 0x4}}}, {{@ip={@empty, @dev, 0x0, 0x0, 'syzkaller0\x00', 'veth1_to_bond\x00', {}, {}, 0x73, 0x0, 0x30}, 0x0, 0x70, 0xb0}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x6, 0x8, @ipv4=@remote, 0x4e22}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @local, 0x6, 0xc, [0x29, 0x13, 0x3c, 0x25, 0x3e, 0x3b, 0x29, 0x2e, 0x14, 0x26, 0x10, 0x37, 0x2b, 0x38, 0x36, 0x2d], 0x2, 0x7ff, 0x80}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x490)
getsockopt$inet_mreqn(r0, 0x0, 0x24, &(0x7f0000000300)={@multicast1, @loopback}, &(0x7f0000000200)=0xc)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[], 0x50)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r1)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket(0x10, 0x3, 0x0)
sendmsg$NLBL_MGMT_C_ADDDEF(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000000000000000040000001400050003030000000a0000005dc00000000001080002000500000014000600ff01000a00f2f3f31f000a0000000001060001"], 0x4c}, 0x1, 0x0, 0x0, 0x8004}, 0x4040000)
getsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(0xffffffffffffffff, 0x84, 0x12, &(0x7f0000000400), &(0x7f0000000180)=0x4)
sendmsg$NLBL_MGMT_C_ADDDEF(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[], 0x4c}, 0x1, 0x0, 0x0, 0x24008000}, 0x4040000)

1.608098914s ago: executing program 6 (id=2206):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
gettid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000780)={'batadv0\x00', <r5=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x2c, r4, 0x277f826df11ec41b, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}, @BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x2c}}, 0x0)

1.596811284s ago: executing program 0 (id=2207):
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000100), 0x282800, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
shutdown(r0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000040)=0x5, 0x4)
recvmmsg(r0, &(0x7f0000008880), 0x45b, 0x2, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_mount_image$reiserfs(&(0x7f0000000140), &(0x7f0000001140)='./file6\x00', 0x98, &(0x7f0000000280), 0x1, 0x10ef, &(0x7f00000022c0)="$eJzs2DGLE0EYBuB3dg/kqshcvx5oYSHHHfEPXKGQxsLaLljZmUrJz/HnyFX2R3pTBOyVTQwJEhDJYuB4Hlh252Vmvp1yvgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEDvLPlekosmqdusSVKSrrubLJJ02/zx17ZJydv3k9mrj+PXs8209FmT0q9aj+vN01rHdVxv6suL22d19unzh3avZEmX+9V8ev5mOehR+trtoDsCAADAw/DzaKMT1wcAAAD+ZrBGAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAA6vajSVKSrrubLJJ0p/0tAAAA4EglTd6NDuWbNsDOi3wblZRHu+RH6edc58uB9QAAAMC/KXv38ec5z5O9/DJnubrajH+/srxN2iTXf+xzv5pP18/lfFr+5wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgF/swLEAAAAAgDB/6zQ6NgAAAAAAAAAAAAAAAGCqAAAA//9TGNII")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x2)
pwrite64(r2, &(0x7f0000000140)='2', 0x1, 0x8000c61)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000380)={'#! ', '\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/'}, 0x51)
write$UHID_INPUT(r3, &(0x7f0000001180)={0x8, {"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", 0x1000}}, 0x1006)

1.362807338s ago: executing program 3 (id=2208):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet6(0xa, 0x2, 0x0)
sendmsg$inet6(r4, &(0x7f00000000c0)={&(0x7f0000000080)={0xa, 0x4e21, 0x80000, @dev={0xfe, 0x80, '\x00', 0x14}}, 0x1c, 0x0, 0x0, &(0x7f0000004540)=[@hopopts={{0x18, 0x29, 0x36, {0x1}}}], 0x18}, 0x40)

0s ago: executing program 3 (id=2209):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000680)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={0x44, r5, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x7ff, 0x70}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syzkaller0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x81}, 0x24044884)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r7)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$rfkill(r0, &(0x7f0000000080)={0x0, 0x1, 0x3, 0x1}, 0x8)

kernel console output (not intermixed with test programs):

T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 46 @ nid 36
[  237.517455][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  237.530299][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 45 @ nid 36
[  237.539515][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  237.552491][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 44 @ nid 36
[  237.561694][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  237.574478][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 43 @ nid 36
[  237.583603][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  237.596377][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 42 @ nid 36
[  237.605516][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  237.618290][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 41 @ nid 36
[  237.627444][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  237.640244][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 40 @ nid 36
[  237.649440][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  237.662225][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 39 @ nid 36
[  237.671429][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  237.684310][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 38 @ nid 36
[  237.693449][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  237.706215][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 37 @ nid 36
[  237.715442][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  237.728209][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 36 @ nid 36
[  237.739387][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  237.752159][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 35 @ nid 36
[  237.761303][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  237.774073][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 34 @ nid 36
[  237.783175][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  237.795962][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 33 @ nid 36
[  237.805080][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  237.817839][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 32 @ nid 36
[  237.826961][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  237.839721][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 31 @ nid 36
[  237.848849][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  237.861693][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 30 @ nid 36
[  237.870898][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  237.884269][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 29 @ nid 36
[  237.893356][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  237.906258][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 28 @ nid 36
[  237.915327][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  237.928080][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 27 @ nid 36
[  237.937166][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  237.949956][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 26 @ nid 36
[  237.959518][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  237.972292][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 25 @ nid 36
[  237.981385][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  237.994283][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 24 @ nid 36
[  238.003376][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  238.016128][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 23 @ nid 36
[  238.025206][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  238.037942][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 22 @ nid 36
[  238.047043][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  238.059829][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 21 @ nid 36
[  238.068931][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  238.081708][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 20 @ nid 36
[  238.090929][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  238.103705][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 19 @ nid 36
[  238.112803][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  238.125571][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 18 @ nid 36
[  238.134669][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  238.147455][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 17 @ nid 36
[  238.156556][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  238.169345][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 16 @ nid 36
[  238.178442][ T6973] erofs: (device loop4): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36
[  238.191249][ T6973] erofs: (device loop4): z_erofs_readahead: readahead error at page 15 @ nid 36
[  238.238334][ T6980] netlink: 8 bytes leftover after parsing attributes in process `syz.3.681'.
[  238.421923][ T4238] usb 7-1: USB disconnect, device number 2
[  238.442338][ T6983] loop2: detected capacity change from 0 to 8192
[  238.476959][ T4238] usblp0: removed
[  238.491794][ T6986] loop4: detected capacity change from 0 to 256
[  238.500702][ T6983] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal
[  238.533595][ T6983] REISERFS (device loop2): using ordered data mode
[  238.547106][ T6983] reiserfs: using flush barriers
[  238.556129][ T6983] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  238.580017][ T6983] REISERFS (device loop2): checking transaction log (loop2)
[  238.628175][ T6983] REISERFS (device loop2): Using rupasov hash to sort names
[  238.638779][ T6983] REISERFS (device loop2): using 3.5.x disk format
[  238.654968][ T6983] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  238.668525][ T6983] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  238.686964][ T6986] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  238.700142][ T6983] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  238.718840][ T6986] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  238.729064][ T6983] REISERFS warning (device loop2): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 UNKNOWN] (nlink == 1) not found (pos 2)
[  238.773209][ T6983] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage.
[  238.874457][ T6983] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  238.921722][ T6983] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  239.024336][ T6983] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  239.459540][ T7007] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  239.602049][ T7009] tipc: Started in network mode
[  239.671722][ T7009] tipc: Node identity 4, cluster identity 4711
[  239.821308][ T7009] tipc: Node number set to 4
[  240.049685][ T7017] netlink: 20 bytes leftover after parsing attributes in process `syz.0.687'.
[  240.141191][ T7021] netlink: 20 bytes leftover after parsing attributes in process `syz.0.687'.
[  241.175977][ T7017] Can't find ip_set type 
[  241.337628][  T146] Bluetooth: hci2: unexpected event for opcode 0x0c24
[  241.415702][ T7044] loop2: detected capacity change from 0 to 256
[  241.491469][ T7044] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x628f4cac, utbl_chksum : 0xe619d30d)
[  241.896438][ T7066] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  243.994673][ T7100] netlink: 'syz.3.717': attribute type 4 has an invalid length.
[  244.043269][ T7100] netlink: 3657 bytes leftover after parsing attributes in process `syz.3.717'.
[  244.092996][ T7105] netlink: 12 bytes leftover after parsing attributes in process `syz.2.710'.
[  245.150771][ T7125] netlink: 16 bytes leftover after parsing attributes in process `syz.2.714'.
[  247.041471][ T7150] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.718'.
[  247.868732][ T7156] netlink: 45 bytes leftover after parsing attributes in process `syz.3.720'.
[  249.932686][ T7193] netlink: 8 bytes leftover after parsing attributes in process `syz.0.730'.
[  250.584230][ T7193] IPv6: ADDRCONF(NETDEV_CHANGE): gre2: link becomes ready
[  250.796656][ T7207] loop6: detected capacity change from 0 to 764
[  251.039405][ T7207] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  252.766499][ T7254] ip6t_rpfilter: unknown options
[  253.482114][   T26] audit: type=1804 audit(1753156318.255:13): pid=7250 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.747" name="/newroot/18/file1" dev="fuse" ino=1 res=1 errno=0
[  253.605730][ T7265] netlink: 4 bytes leftover after parsing attributes in process `syz.3.751'.
[  253.625762][ T7260] loop2: detected capacity change from 0 to 512
[  253.632218][   T26] audit: type=1800 audit(1753156318.264:14): pid=7250 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.747" name="/" dev="fuse" ino=1 res=0 errno=0
[  253.656343][ T7265] netlink: 12 bytes leftover after parsing attributes in process `syz.3.751'.
[  253.706869][ T7271] sctp: [Deprecated]: syz.6.752 (pid 7271) Use of int in max_burst socket option.
[  253.706869][ T7271] Use struct sctp_assoc_value instead
[  253.744226][ T7260] EXT4-fs (loop2): Ignoring removed nobh option
[  253.760632][   T26] audit: type=1804 audit(1753156318.264:15): pid=7247 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.747" name="/newroot/18/file1" dev="fuse" ino=1 res=1 errno=0
[  253.768876][ T7265] netlink: 156 bytes leftover after parsing attributes in process `syz.3.751'.
[  253.832967][   T26] audit: type=1800 audit(1753156318.264:16): pid=7247 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.747" name="/" dev="fuse" ino=1 res=0 errno=0
[  253.862345][ T7260] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #15: comm syz.2.750: iget: bad i_size value: 38620345925642
[  253.890241][ T7260] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.750: couldn't read orphan inode 15 (err -117)
[  254.057180][ T7260] EXT4-fs (loop2): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  254.097595][ T4231] Bluetooth: hci4: command 0x0406 tx timeout
[  255.302350][ T7277] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[  255.493189][ T7301] overlayfs: failed to clone upperpath
[  255.525979][ T5113] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 748 with error 28
[  255.566669][ T5113] EXT4-fs (loop2): This should not happen!! Data will be lost
[  255.566669][ T5113] 
[  255.609330][ T5113] EXT4-fs (loop2): Total free blocks count 0
[  255.615629][ T5113] EXT4-fs (loop2): Free/Dirty block details
[  255.648546][ T5113] EXT4-fs (loop2): free_blocks=0
[  255.656552][ T5113] EXT4-fs (loop2): dirty_blocks=748
[  255.665157][ T5113] EXT4-fs (loop2): Block reservation details
[  255.671315][ T5113] EXT4-fs (loop2): i_reserved_data_blocks=748
[  255.736078][ T7306] loop6: detected capacity change from 0 to 128
[  255.824871][ T7306] EXT4-fs (loop6): Ignoring removed nobh option
[  256.017166][ T7306] EXT4-fs (loop6): mounted filesystem without journal. Opts: nobh,inode_readahead_blks=0x0000000000008000,,errors=continue. Quota mode: none.
[  256.032586][ T7306] ext4 filesystem being mounted at /21/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  259.180259][   T23] Bluetooth: hci2: command 0x0409 tx timeout
[  260.832822][   T26] audit: type=1326 audit(1753156325.130:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7366 comm="syz.0.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5199c89a9 code=0x7fc00000
[  260.873082][ T7332] chnl_net:caif_netlink_parms(): no params data found
[  260.954300][   T26] audit: type=1326 audit(1753156325.195:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7366 comm="syz.0.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc5199c89a9 code=0x7fc00000
[  260.976849][   T26] audit: type=1326 audit(1753156325.214:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7366 comm="syz.0.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5199c89a9 code=0x7fc00000
[  261.015199][   T26] audit: type=1326 audit(1753156325.298:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7366 comm="syz.0.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5199c89a9 code=0x7fc00000
[  261.827443][ T4238] Bluetooth: hci2: command 0x041b tx timeout
[  262.142463][ T7332] bridge0: port 1(bridge_slave_0) entered blocking state
[  262.216532][ T7332] bridge0: port 1(bridge_slave_0) entered disabled state
[  262.271263][ T7332] device bridge_slave_0 entered promiscuous mode
[  262.285247][ T7399] device bond_slave_1 entered promiscuous mode
[  262.302322][   T26] audit: type=1326 audit(1753156326.514:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7402 comm="syz.0.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5199c89a9 code=0x7ffc0000
[  262.337307][ T7332] bridge0: port 2(bridge_slave_1) entered blocking state
[  262.347593][ T7332] bridge0: port 2(bridge_slave_1) entered disabled state
[  262.359979][ T7332] device bridge_slave_1 entered promiscuous mode
[  262.366584][   T26] audit: type=1326 audit(1753156326.514:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7402 comm="syz.0.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc5199c89a9 code=0x7ffc0000
[  262.433713][ T7396] netlink: 4 bytes leftover after parsing attributes in process `syz.6.779'.
[  262.507159][   T26] audit: type=1326 audit(1753156326.514:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7402 comm="syz.0.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5199c89a9 code=0x7ffc0000
[  262.583232][ T7396] bond0: (slave bond_slave_1): Releasing backup interface
[  262.594650][   T26] audit: type=1326 audit(1753156326.514:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7402 comm="syz.0.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5199c89a9 code=0x7ffc0000
[  262.620116][ T7396] device bond_slave_1 left promiscuous mode
[  262.850335][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  262.861585][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  263.051091][   T26] audit: type=1326 audit(1753156326.514:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7402 comm="syz.0.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc5199c89a9 code=0x7ffc0000
[  263.301580][ T7401] bridge0: port 1(syz_tun) entered blocking state
[  263.313527][ T7401] bridge0: port 1(syz_tun) entered disabled state
[  263.335904][   T26] audit: type=1326 audit(1753156326.514:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7402 comm="syz.0.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5199c89a9 code=0x7ffc0000
[  263.363765][ T7401] device syz_tun entered promiscuous mode
[  263.386415][ T7401] bridge0: port 1(syz_tun) entered blocking state
[  263.393068][ T7401] bridge0: port 1(syz_tun) entered forwarding state
[  263.548775][ T7332] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  263.577499][ T7332] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  264.055126][ T4238] Bluetooth: hci2: command 0x040f tx timeout
[  265.944039][ T7332] team0: Port device team_slave_0 added
[  265.982816][ T7332] team0: Port device team_slave_1 added
[  266.296273][ T4189] Bluetooth: hci2: command 0x0419 tx timeout
[  266.313302][ T7462] netlink: 12 bytes leftover after parsing attributes in process `syz.0.794'.
[  267.055637][ T7462] device bond4 entered promiscuous mode
[  267.090614][ T7462] 8021q: adding VLAN 0 to HW filter on device bond4
[  267.178812][ T7332] batman_adv: batadv0: Adding interface: batadv_slave_0
[  267.185961][ T7332] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  267.242395][ T7472] loop2: detected capacity change from 0 to 512
[  267.274047][ T7332] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  267.299032][ T7472] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  267.312470][ T7476] bridge0: port 3(vxlan0) entered blocking state
[  267.329940][ T7476] bridge0: port 3(vxlan0) entered disabled state
[  267.342259][ T7476] device vxlan0 entered promiscuous mode
[  267.370600][ T7472] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[  267.382635][ T7332] batman_adv: batadv0: Adding interface: batadv_slave_1
[  267.387205][ T7472] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.796: invalid indirect mapped block 2683928664 (level 1)
[  267.412697][ T7332] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  267.416061][ T7472] EXT4-fs (loop2): Remounting filesystem read-only
[  267.446407][ T7472] EXT4-fs (loop2): 1 truncate cleaned up
[  267.452084][ T7472] EXT4-fs (loop2): mounted filesystem without journal. Opts: noblock_validity,dioread_nolock,errors=remount-ro,minixdf,jqfmt=vfsv0,usrjquota=.". Quota mode: writeback.
[  267.491785][ T7483] netlink: 16 bytes leftover after parsing attributes in process `syz.0.798'.
[  267.545628][ T7332] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  267.595633][ T5102] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  267.717539][ T7332] device hsr_slave_0 entered promiscuous mode
[  267.741307][ T7332] device hsr_slave_1 entered promiscuous mode
[  267.761065][ T7332] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  267.776493][ T7332] Cannot create hsr debugfs directory
[  267.791926][ T5102] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  267.865400][ T5102] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  268.001408][ T5102] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  269.025538][ T5102] tipc: Left network mode
[  269.031337][ T7332] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  269.102179][ T7516] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  269.107370][ T7332] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  269.163103][ T7520] mmap: syz.2.806 (7520) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst.
[  269.243951][ T7332] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  269.264647][ T7332] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  269.784149][ T7535] netlink: 'syz.3.810': attribute type 10 has an invalid length.
[  269.792119][ T7535] netlink: 40 bytes leftover after parsing attributes in process `syz.3.810'.
[  269.802315][ T7535] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  269.811943][ T7535] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  269.820759][ T7535] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  269.829546][ T7535] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  269.846372][ T7535] team0: Port device geneve0 added
[  269.896816][ T7332] 8021q: adding VLAN 0 to HW filter on device bond0
[  269.964947][ T5114] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  269.998897][ T5114] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  270.125270][ T7332] 8021q: adding VLAN 0 to HW filter on device team0
[  270.708925][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  270.803255][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  271.048928][ T4974] bridge0: port 1(bridge_slave_0) entered blocking state
[  271.056088][ T4974] bridge0: port 1(bridge_slave_0) entered forwarding state
[  271.130951][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  271.187560][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  271.197313][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  271.205816][ T4974] bridge0: port 2(bridge_slave_1) entered blocking state
[  271.213053][ T4974] bridge0: port 2(bridge_slave_1) entered forwarding state
[  271.231890][ T7566] netlink: 'syz.3.817': attribute type 10 has an invalid length.
[  271.278515][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  271.358462][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  271.368238][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  271.393697][   T26] kauditd_printk_skb: 8 callbacks suppressed
[  271.393713][   T26] audit: type=1326 audit(1753156335.008:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.2.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f115a54f9a9 code=0x7ffc0000
[  271.397580][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  271.402743][   T26] audit: type=1326 audit(1753156335.026:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.2.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f115a54f9a9 code=0x7ffc0000
[  271.444226][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  271.471480][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  271.480471][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  271.490174][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  271.499057][   T26] audit: type=1326 audit(1753156335.073:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.2.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f115a54f9a9 code=0x7ffc0000
[  271.501881][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  271.534823][   T26] audit: type=1326 audit(1753156335.073:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.2.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f115a54f9a9 code=0x7ffc0000
[  271.541243][ T7332] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  271.573708][   T26] audit: type=1326 audit(1753156335.073:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.2.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f115a54f9a9 code=0x7ffc0000
[  271.605312][ T7332] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  271.608139][   T26] audit: type=1326 audit(1753156335.073:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.2.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=93 compat=0 ip=0x7f115a54f9a9 code=0x7ffc0000
[  271.638006][   T26] audit: type=1326 audit(1753156335.073:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.2.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f115a54f9a9 code=0x7ffc0000
[  271.663433][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  271.680742][   T26] audit: type=1326 audit(1753156335.073:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.2.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f115a54f9a9 code=0x7ffc0000
[  271.704942][   T26] audit: type=1326 audit(1753156335.073:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7578 comm="syz.2.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f115a54f9a9 code=0x7ffc0000
[  271.719797][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  272.113886][ T1235] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  272.131169][ T1235] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  272.147394][ T7332] 8021q: adding VLAN 0 to HW filter on device batadv0
[  272.167293][ T5102] device hsr_slave_0 left promiscuous mode
[  272.182082][ T5102] device hsr_slave_1 left promiscuous mode
[  272.197777][ T5102] rdma_rxe: ignoring netdev event = 10 for team_slave_0
[  272.261300][ T5102] device veth1_macvtap left promiscuous mode
[  272.267886][ T5102] device veth0_macvtap left promiscuous mode
[  272.323071][ T5102] device veth1_vlan left promiscuous mode
[  272.678098][ T7617] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  272.771185][ T5102] rdma_rxe: ignoring netdev event = 27 for team_slave_0
[  272.859309][ T5102] infiniband syz!: set down
[  273.135594][ T5102] bond2 (unregistering): Released all slaves
[  273.253581][ T5102] bond1 (unregistering): (slave macvlan2): Removing an active aggregator
[  273.281744][ T5102] bond1 (unregistering): (slave macvlan2): Releasing backup interface
[  273.309043][ T5102] bond1 (unregistering): Released all slaves
[  273.539807][ T5102] team0 (unregistering): Port device team_slave_1 removed
[  273.557772][ T5102] rdma_rxe: ignoring netdev event = 27 for team_slave_0
[  273.570622][ T5102] rdma_rxe: ignoring netdev event = 26 for team_slave_0
[  273.578667][ T5102] rdma_rxe: ignoring netdev event = 21 for team_slave_0
[  273.605946][ T5102] rdma_rxe: ignoring netdev event = 9 for team_slave_0
[  273.624122][ T5102] rdma_rxe: ignoring netdev event = 8 for team_slave_0
[  273.631394][ T5102] team0 (unregistering): Port device team_slave_0 removed
[  273.638793][    T7] Bluetooth: hci2: command 0x0411 tx timeout
[  273.663401][ T5114] smc: removing ib device syz!
[  273.781286][ T5102] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  273.844149][ T5102] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  274.793425][ T5102] bond0 (unregistering): (slave team0): Releasing backup interface
[  274.813727][ T4259] infiniband syz1: ib_query_port failed (-19)
[  274.873110][ T5102] bond0 (unregistering): Released all slaves
[  274.912225][ T4238] infiniband syz!: ib_query_port failed (-19)
[  274.941808][ T7633] device syz_tun entered promiscuous mode
[  274.960380][ T7633] device batadv_slave_0 entered promiscuous mode
[  274.976835][ T4231] bond0 speed is unknown, defaulting to 1000
[  274.993395][ T5074] IPv6: ADDRCONF(NETDEV_CHANGE): hsr1: link becomes ready
[  275.307716][ T7670] netlink: 8 bytes leftover after parsing attributes in process `syz.2.843'.
[  275.348202][ T7670] IPv6: ADDRCONF(NETDEV_CHANGE): gre2: link becomes ready
[  276.817560][ T1235] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  276.873040][ T1235] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  276.962362][ T7684] netlink: 12 bytes leftover after parsing attributes in process `syz.2.846'.
[  278.657880][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  278.775735][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  279.008445][ T7332] device veth0_vlan entered promiscuous mode
[  279.612002][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  279.627755][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  280.001984][ T7332] device veth1_vlan entered promiscuous mode
[  280.192398][ T7332] device veth0_macvtap entered promiscuous mode
[  280.242547][ T7332] device veth1_macvtap entered promiscuous mode
[  280.257921][ T4932] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  280.317029][ T4932] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  280.346984][ T4932] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  280.382875][ T4932] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  280.426748][ T7332] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  280.484902][ T7332] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.510525][ T7332] batman_adv: batadv0: Interface activated: batadv_slave_0
[  280.521715][ T5074] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  280.551281][ T5074] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  280.580685][ T7332] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  280.614398][ T7332] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.642158][ T7332] batman_adv: batadv0: Interface activated: batadv_slave_1
[  280.663476][ T5074] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  280.679737][ T5074] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  280.712384][ T7332] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  280.730542][ T7332] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  280.745445][ T7332] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  280.760162][ T7332] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  280.980540][ T4317] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  280.995093][ T4317] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  281.034798][ T5114] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  281.090587][ T4276] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  281.103021][ T4276] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  281.137770][ T5074] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  281.412557][   T26] audit: type=1326 audit(1753156344.380:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7774 comm="syz.3.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  281.484234][   T26] audit: type=1326 audit(1753156344.380:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7774 comm="syz.3.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  281.538589][   T26] audit: type=1326 audit(1753156344.380:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7774 comm="syz.3.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  281.609101][   T26] audit: type=1326 audit(1753156344.390:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7774 comm="syz.3.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=86 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  281.636346][ T7787] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability
[  281.690787][   T26] audit: type=1326 audit(1753156344.390:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7774 comm="syz.3.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  282.614183][ T7823] loop7: detected capacity change from 0 to 64
[  283.176680][ T7823] attempt to access beyond end of device
[  283.176680][ T7823] loop7: rw=2049, want=66, limit=64
[  283.188539][ T7823] Buffer I/O error on dev loop7, logical block 65, lost async page write
[  283.197212][ T7823] attempt to access beyond end of device
[  283.197212][ T7823] loop7: rw=2049, want=67, limit=64
[  283.207963][ T7823] Buffer I/O error on dev loop7, logical block 66, lost async page write
[  283.216620][ T7823] attempt to access beyond end of device
[  283.216620][ T7823] loop7: rw=2049, want=68, limit=64
[  283.227371][ T7823] Buffer I/O error on dev loop7, logical block 67, lost async page write
[  283.237027][ T7823] attempt to access beyond end of device
[  283.237027][ T7823] loop7: rw=2049, want=69, limit=64
[  283.248278][ T7823] Buffer I/O error on dev loop7, logical block 68, lost async page write
[  283.256818][ T7823] attempt to access beyond end of device
[  283.256818][ T7823] loop7: rw=2049, want=73, limit=64
[  283.267621][ T7823] Buffer I/O error on dev loop7, logical block 72, lost async page write
[  283.276133][ T7823] attempt to access beyond end of device
[  283.276133][ T7823] loop7: rw=2049, want=74, limit=64
[  283.287060][ T7823] Buffer I/O error on dev loop7, logical block 73, lost async page write
[  283.295638][ T7823] attempt to access beyond end of device
[  283.295638][ T7823] loop7: rw=2049, want=77, limit=64
[  283.306623][ T7823] Buffer I/O error on dev loop7, logical block 76, lost async page write
[  283.315194][ T7823] attempt to access beyond end of device
[  283.315194][ T7823] loop7: rw=2049, want=78, limit=64
[  283.325966][ T7823] Buffer I/O error on dev loop7, logical block 77, lost async page write
[  283.336429][ T7823] attempt to access beyond end of device
[  283.336429][ T7823] loop7: rw=2049, want=838, limit=64
[  283.502903][ T7826] sch_tbf: burst 1023 is lower than device lo mtu (65550) !
[  283.583572][ T7826] netlink: 12 bytes leftover after parsing attributes in process `syz.3.873'.
[  283.630809][ T7829] netlink: 'syz.0.864': attribute type 21 has an invalid length.
[  283.639525][ T7829] netlink: 132 bytes leftover after parsing attributes in process `syz.0.864'.
[  283.669160][ T7829] netlink: 'syz.0.864': attribute type 1 has an invalid length.
[  283.712632][ T7829] netlink: 12 bytes leftover after parsing attributes in process `syz.0.864'.
[  283.759034][ T7833] bridge_slave_0: vlans aren't supported yet for dev_uc|mc_add()
[  286.371627][ T7881] loop6: detected capacity change from 0 to 64
[  287.391326][ T7875] attempt to access beyond end of device
[  287.391326][ T7875] loop6: rw=2049, want=66, limit=64
[  287.402147][ T7875] Buffer I/O error on dev loop6, logical block 65, lost async page write
[  287.411493][ T7875] Buffer I/O error on dev loop6, logical block 66, lost async page write
[  289.620648][ T7895] bond1: option mode: unable to set because the bond device is up
[  289.826560][ T7895] 8021q: adding VLAN 0 to HW filter on device macvlan0
[  292.256293][ T7895] bond1: (slave macvlan0): making interface the new active one
[  292.266580][ T7895] bond1: (slave macvlan0): Enslaving as an active interface with an up link
[  292.496483][ T5074] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready
[  294.201235][ T7895] netlink: 48 bytes leftover after parsing attributes in process `syz.3.882'.
[  294.320134][   T26] audit: type=1800 audit(1753156356.447:49): pid=7923 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.888" name="file0" dev="fuse" ino=2 res=0 errno=0
[  294.434742][   T26] audit: type=1326 audit(1753156356.494:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7920 comm="syz.2.888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f115a54f9a9 code=0x7ffc0000
[  301.703338][   T26] audit: type=1800 audit(1753156363.360:51): pid=8001 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.905" name="file0" dev="fuse" ino=2 res=0 errno=0
[  301.769312][   T26] audit: type=1326 audit(1753156363.378:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8000 comm="syz.7.905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60453c39a9 code=0x7ffc0000
[  301.803525][ T4189] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  301.835592][   T26] audit: type=1326 audit(1753156363.378:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8000 comm="syz.7.905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60453c39a9 code=0x7ffc0000
[  302.084576][   T26] audit: type=1326 audit(1753156363.378:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8000 comm="syz.7.905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f60453c39a9 code=0x7ffc0000
[  302.087658][ T4189] usb 3-1: Using ep0 maxpacket: 8
[  302.130518][   T26] audit: type=1326 audit(1753156363.378:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8000 comm="syz.7.905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60453c39a9 code=0x7ffc0000
[  302.672493][   T26] audit: type=1326 audit(1753156363.378:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8000 comm="syz.7.905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60453c39a9 code=0x7ffc0000
[  302.891523][   T26] audit: type=1326 audit(1753156363.378:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8000 comm="syz.7.905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=86 compat=0 ip=0x7f60453c39a9 code=0x7ffc0000
[  302.931641][   T26] audit: type=1326 audit(1753156363.378:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8000 comm="syz.7.905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60453c39a9 code=0x7ffc0000
[  302.963729][   T26] audit: type=1326 audit(1753156363.378:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8000 comm="syz.7.905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60453c39a9 code=0x7ffc0000
[  303.047564][ T8023] netlink: 8 bytes leftover after parsing attributes in process `syz.7.912'.
[  303.065223][ T4189] usb 3-1: config 0 has no interfaces?
[  303.325086][ T4189] usb 3-1: string descriptor 0 read error: -22
[  303.340179][ T4189] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  303.380143][ T4189] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  303.423122][ T4189] usb 3-1: config 0 descriptor??
[  304.511613][ T4295] usb 3-1: USB disconnect, device number 4
[  304.850794][   T23] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  305.291069][   T23] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  305.370102][   T23] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  305.536386][   T23] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  305.716511][   T23] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[  305.747308][   T23] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[  305.756783][   T23] usb 8-1: Product: syz
[  305.772265][   T23] usb 8-1: Manufacturer: syz
[  305.776940][   T23] usb 8-1: SerialNumber: syz
[  307.236342][ T8066] loop2: detected capacity change from 0 to 32768
[  307.271142][   T23] usblp 8-1:1.0: usblp0: USB Unidirectional printer dev 2 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  307.583436][ T8066] XFS (loop2): Mounting V5 Filesystem
[  307.590436][ T8051] netlink: 47 bytes leftover after parsing attributes in process `syz.7.916'.
[  307.731229][ T8066] XFS (loop2): Ending clean mount
[  307.763993][ T8066] XFS (loop2): Quotacheck needed: Please wait.
[  307.866226][ T8066] XFS (loop2): Quotacheck: Done.
[  308.014788][ T8136] netlink: 8 bytes leftover after parsing attributes in process `syz.3.932'.
[  308.138472][ T4184] XFS (loop2): Unmounting Filesystem
[  308.382726][ T8151] loop6: detected capacity change from 0 to 1024
[  308.421346][ T8151] hfsplus: creator requires a 4 character value
[  308.438424][ T8151] hfsplus: unable to parse mount options
[  308.449000][ T8154] device vlan0 entered promiscuous mode
[  308.485609][ T8154] device syz_tun entered promiscuous mode
[  308.788389][ T8164] loop2: detected capacity change from 0 to 128
[  308.823412][ T4238] usb 8-1: USB disconnect, device number 2
[  308.855186][ T4238] usblp0: removed
[  311.793011][ T8212] team0: Port device ip6gretap1 added
[  314.444338][ T8252] autofs4:pid:8252:autofs_fill_super: called with bogus options
[  315.957565][ T8265] netlink: 4 bytes leftover after parsing attributes in process `syz.7.963'.
[  315.981405][ T8271] netlink: 12 bytes leftover after parsing attributes in process `syz.7.963'.
[  316.079140][ T8265] netlink: 'syz.7.963': attribute type 1 has an invalid length.
[  316.301636][ T8282] netlink: 'syz.0.968': attribute type 10 has an invalid length.
[  316.378347][ T8282] netlink: 40 bytes leftover after parsing attributes in process `syz.0.968'.
[  316.524820][ T8282] team0: Port device geneve0 added
[  316.929328][ T8267] loop2: detected capacity change from 0 to 32768
[  317.019458][ T8267] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.964 (8267)
[  317.144340][ T8267] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  317.172390][ T8267] BTRFS info (device loop2): using free space tree
[  317.188657][ T8267] BTRFS info (device loop2): has skinny extents
[  317.425967][ T8267] BTRFS info (device loop2): enabling ssd optimizations
[  318.719900][ T8356] 8021q: adding VLAN 0 to HW filter on device bond1
[  318.853331][ T8357] device bond_slave_0 entered promiscuous mode
[  319.284691][ T8357] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  319.662054][ T8371] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  319.742726][ T8357] bond1: (slave macvlan2): Enslaving as a backup interface with an up link
[  319.758140][ T8358] netlink: 48 bytes leftover after parsing attributes in process `syz.6.978'.
[  319.887308][ T8379] netlink: 12 bytes leftover after parsing attributes in process `syz.3.984'.
[  321.273758][   T26] audit: type=1326 audit(1753156381.675:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.6.993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3657a5e9a9 code=0x7ffc0000
[  321.586855][ T8408] Invalid ELF header magic: != ELF
[  321.967998][   T26] audit: type=1326 audit(1753156381.731:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.6.993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f3657a5e9a9 code=0x7ffc0000
[  322.378617][ T8414] netlink: 4 bytes leftover after parsing attributes in process `syz.6.994'.
[  322.390380][   T26] audit: type=1326 audit(1753156381.731:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.6.993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3657a5e9a9 code=0x7ffc0000
[  322.480903][   T26] audit: type=1326 audit(1753156381.731:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.6.993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=333 compat=0 ip=0x7f3657a5e9a9 code=0x7ffc0000
[  322.517894][   T26] audit: type=1326 audit(1753156381.731:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.6.993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3657a5e9a9 code=0x7ffc0000
[  322.818551][   T26] audit: type=1326 audit(1753156381.731:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.6.993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3657a5e9a9 code=0x7ffc0000
[  323.157657][   T26] audit: type=1326 audit(1753156381.731:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.6.993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3657a5e9a9 code=0x7ffc0000
[  323.584451][ T8414] device syz_tun left promiscuous mode
[  323.719348][ T8420] netlink: 48 bytes leftover after parsing attributes in process `syz.7.996'.
[  323.887230][ T8451] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  324.283558][ T8451] team0: Port device bond0 removed
[  324.591286][ T8451] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  324.612661][ T8451] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  324.759040][ T8460] overlayfs: failed to clone upperpath
[  324.772559][ T8451] team0: Port device geneve0 removed
[  324.794497][ T4238] kernel read not supported for file [userfaultfd] (pid: 4238 comm: kworker/1:6)
[  324.807389][ T8451] bridge0: port 1(netdevsim0) entered disabled state
[  324.858293][ T8451] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[  324.906462][ T8451] bond2: (slave bond3): Releasing backup interface
[  324.976580][ T8451] IPv6: ADDRCONF(NETDEV_CHANGE): gre2: link becomes ready
[  326.118368][ T8474] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  326.153821][ T8474] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  327.368899][ T8492] loop2: detected capacity change from 0 to 131072
[  327.475346][ T8492] F2FS-fs (loop2): Wrong CP boundary, start(512) end(1536) blocks(0)
[  327.484048][ T8492] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  327.554323][ T8492] F2FS-fs (loop2): invalid crc value
[  328.256324][ T8492] F2FS-fs (loop2): Found nat_bits in checkpoint
[  328.557644][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  329.422494][ T8492] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  329.429677][ T8492] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  329.916840][ T8534] loop7: detected capacity change from 0 to 1024
[  330.199907][ T8534] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945)
[  330.286808][ T8534] EXT4-fs (loop7): revision level too high, forcing read-only mode
[  330.416824][ T8534] EXT4-fs (loop7): orphan cleanup on readonly fs
[  330.474447][ T8534] EXT4-fs error (device loop7): ext4_read_inode_bitmap:168: comm syz.7.1018: Inode bitmap for bg 0 marked uninitialized
[  330.567820][ T8534] EXT4-fs (loop7): Remounting filesystem read-only
[  330.691487][ T8534] EXT4-fs (loop7): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000000000080,errors=remount-ro,usrjquota=,lazytime,. Quota mode: writeback.
[  330.864099][ T8561] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  332.616219][ T8570] netlink: 'syz.2.1027': attribute type 10 has an invalid length.
[  332.677284][ T8570] bond0: (slave bridge_slave_1): Enslaving as an active interface with an up link
[  332.800800][ T1235] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  335.233826][ T8590] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1032'.
[  335.350337][ T8594] netlink: 'syz.7.1034': attribute type 10 has an invalid length.
[  335.393415][ T8594] netlink: 40 bytes leftover after parsing attributes in process `syz.7.1034'.
[  335.608963][ T8594] team0: Port device geneve0 added
[  338.342469][ T8632] netlink: 'syz.0.1044': attribute type 10 has an invalid length.
[  338.448650][ T8632] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  338.469915][ T8634] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1044'.
[  338.624150][ T8634] bond0: (slave bridge0): Releasing backup interface
[  340.005423][ T8646] loop2: detected capacity change from 0 to 512
[  341.790987][ T8646] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  341.818674][ T8646] ext4 filesystem being mounted at /193/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  341.984338][ T8670] loop6: detected capacity change from 0 to 16
[  342.115546][ T8670] erofs: (device loop6): mounted with root inode @ nid 36.
[  348.163567][ T8424] Bluetooth: hci0: command 0x0406 tx timeout
[  348.435380][ T8743] loop7: detected capacity change from 0 to 16
[  349.347539][ T8743] erofs: (device loop7): mounted with root inode @ nid 36.
[  349.401203][ T8757] loop2: detected capacity change from 0 to 164
[  349.446662][ T8743] overlayfs: failed to get redirect (-117)
[  350.304073][ T8807] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1080'.
[  351.519941][ T8815] loop2: detected capacity change from 0 to 32768
[  351.794024][ T8815] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.1084 (8815)
[  352.380822][ T8815] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  352.389945][ T8815] BTRFS info (device loop2): using free space tree
[  352.396551][ T8815] BTRFS info (device loop2): has skinny extents
[  353.519897][ T8815] BTRFS info (device loop2): enabling ssd optimizations
[  354.016977][ T8869] crypto_alloc_aead failed rc=-4
[  354.035947][ T8883] netlink: 'syz.3.1096': attribute type 21 has an invalid length.
[  354.062121][ T8815] BTRFS info (device loop2): turning off barriers
[  354.069539][ T8815] BTRFS info (device loop2): use zlib compression, level 3
[  354.077168][ T8815] BTRFS info (device loop2): doing ref verification
[  354.083868][ T8815] BTRFS info (device loop2): not using ssd optimizations
[  354.099124][ T8883] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1096'.
[  354.114452][ T8883] netlink: 'syz.3.1096': attribute type 1 has an invalid length.
[  354.122361][ T8883] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1096'.
[  354.154520][ T8883] bridge_slave_0: vlans aren't supported yet for dev_uc|mc_add()
[  354.173042][ T8889] BTRFS error (device loop2): trying to do action 2 to bytenr 5255168 num_bytes 4096 but there is no existing entry!
[  354.186311][ T8889] BTRFS error (device loop2):   Ref action 2, root 5, ref_root 5, parent 0, owner 1, offset 0, num_refs 18446744073709551615
[  354.199813][ T8889]    btrfs_force_cow_block+0xccd/0x17c0
[  354.205475][ T8889]    btrfs_cow_block+0x3c8/0x7c0
[  354.210540][ T8889]    btrfs_search_slot+0xa4a/0x20a0
[  354.215782][ T8889]    btrfs_insert_empty_items+0x321/0x3d0
[  354.221638][ T8889]    btrfs_new_inode+0x888/0x1740
[  354.226702][ T8889]    btrfs_mkdir+0x29b/0x590
[  354.231669][ T8889]    vfs_mkdir+0x387/0x570
[  354.236123][ T8889]    do_mkdirat+0x1d7/0x5a0
[  354.240674][ T8889]    __x64_sys_mkdir+0x6a/0x80
[  354.245934][ T8889]    do_syscall_64+0x4c/0xa0
[  354.250565][ T8889]    entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  355.136695][ T8902] IPv6: sit1: Disabled Multicast RS
[  355.151460][ T8893] loop6: detected capacity change from 0 to 4096
[  355.448255][ T8912] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  355.496934][ T8904] bridge0: port 1(bridge_slave_0) entered disabled state
[  356.279994][ T8904] bridge0: port 2(bridge_slave_1) entered disabled state
[  356.548174][ T8911] netlink: 'syz.7.1100': attribute type 16 has an invalid length.
[  356.581481][ T8911] netlink: 'syz.7.1100': attribute type 17 has an invalid length.
[  356.720600][ T8911] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  356.815405][ T8911] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  356.934480][ T8911] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  357.070502][ T8911] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  357.408321][ T8911] bridge0: port 1(bridge_slave_0) entered blocking state
[  357.415542][ T8911] bridge0: port 1(bridge_slave_0) entered forwarding state
[  357.514321][ T8911] bridge0: port 2(bridge_slave_1) entered blocking state
[  357.521765][ T8911] bridge0: port 2(bridge_slave_1) entered forwarding state
[  358.533173][ T8947] futex_wake_op: syz.3.1111 tries to shift op by 36; fix this program
[  358.636322][ T8947] netlink: 'syz.3.1111': attribute type 4 has an invalid length.
[  358.644124][ T8947] netlink: 17 bytes leftover after parsing attributes in process `syz.3.1111'.
[  360.261341][ T8959] device veth1_macvtap left promiscuous mode
[  360.542657][ T8959] device macsec0 entered promiscuous mode
[  361.142619][ T8969] loop7: detected capacity change from 0 to 32768
[  361.574678][ T8969] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop7 scanned by syz.7.1114 (8969)
[  361.766649][ T8969] BTRFS info (device loop7): using crc32c (crc32c-intel) checksum algorithm
[  361.775723][ T8969] BTRFS info (device loop7): using free space tree
[  361.782504][ T8969] BTRFS info (device loop7): has skinny extents
[  361.832362][ T8974] device wlan0 entered promiscuous mode
[  362.580185][ T8969] BTRFS info (device loop7): enabling ssd optimizations
[  362.653752][ T9009] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  366.081780][ T9048] loop6: detected capacity change from 0 to 8192
[  366.291423][ T9048] REISERFS (device loop6): found reiserfs format "3.5" with non-standard journal
[  366.308999][ T9048] REISERFS (device loop6): using ordered data mode
[  366.329924][ T9048] reiserfs: using flush barriers
[  366.624143][ T9048] REISERFS (device loop6): journal params: device loop6, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  367.164850][ T9048] REISERFS (device loop6): checking transaction log (loop6)
[  367.198569][ T9048] REISERFS (device loop6): Using rupasov hash to sort names
[  367.235444][ T9048] REISERFS (device loop6): using 3.5.x disk format
[  367.289816][ T9048] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  367.318576][ T9048] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  367.337629][ T9048] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  367.367664][ T9048] REISERFS warning (device loop6): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 UNKNOWN] (nlink == 1) not found (pos 2)
[  367.489530][ T8431] usb 3-1: new full-speed USB device number 5 using dummy_hcd
[  367.522693][ T9048] REISERFS (device loop6): Created .reiserfs_priv - reserved for xattr storage.
[  367.822725][ T9100] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  367.851864][ T9048] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  368.868856][ T9048] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  368.903182][ T9048] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  369.415107][ T9104] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  369.635487][ T8431] usb 3-1: config 1 has an invalid interface number: 164 but max is 0
[  369.647216][ T8431] usb 3-1: config 1 has no interface number 0
[  369.660240][ T8431] usb 3-1: config 1 interface 164 has no altsetting 0
[  369.860324][ T8431] usb 3-1: New USB device found, idVendor=0411, idProduct=003d, bcdDevice=36.c4
[  369.940585][ T8431] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  369.960309][ T8431] usb 3-1: Product: syz
[  369.964715][ T8431] usb 3-1: Manufacturer: syz
[  369.981318][ T8431] usb 3-1: SerialNumber: syz
[  371.220957][ T8431] asix 3-1:1.164 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  371.240870][ T8431] asix: probe of 3-1:1.164 failed with error -71
[  371.254283][ T8431] usb 3-1: USB disconnect, device number 5
[  371.538886][ T9143] 9pnet: Insufficient options for proto=fd
[  372.602357][ T9166] xt_TCPMSS: Only works on TCP SYN packets
[  373.196543][ T9173] netlink: 'syz.3.1169': attribute type 16 has an invalid length.
[  373.204816][ T9173] netlink: 'syz.3.1169': attribute type 17 has an invalid length.
[  374.509378][ T9201] netlink: 277 bytes leftover after parsing attributes in process `syz.3.1163'.
[  374.748682][ T9179] loop7: detected capacity change from 0 to 32768
[  374.841738][ T9179] XFS (loop7): Mounting V5 Filesystem
[  375.026557][ T9179] XFS (loop7): Ending clean mount
[  375.069547][ T9179] XFS (loop7): Quotacheck needed: Please wait.
[  375.359554][ T9179] XFS (loop7): Quotacheck: Done.
[  375.957424][   T26] audit: type=1326 audit(1753156432.822:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9223 comm="syz.3.1182" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0ea857a9a9 code=0x0
[  376.053945][ T9225] bridge0: port 1(syz_tun) entered disabled state
[  377.644118][ T7332] XFS (loop7): Unmounting Filesystem
[  378.471898][ T9228] netlink: 'syz.2.1173': attribute type 16 has an invalid length.
[  378.558046][ T9228] netlink: 'syz.2.1173': attribute type 17 has an invalid length.
[  378.873424][ T9228] bridge0: port 1(syz_tun) entered blocking state
[  378.879991][ T9228] bridge0: port 1(syz_tun) entered forwarding state
[  379.176573][ T9228] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  379.347059][ T9228] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  379.591993][ T9228] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  379.619185][ T9228] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  379.650432][ T9228] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  379.723321][ T9228] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  379.825878][ T9228] IPv6: ADDRCONF(NETDEV_CHANGE): gre2: link becomes ready
[  379.833282][ T9228] IPv6: ADDRCONF(NETDEV_CHANGE): gre2: link becomes ready
[  379.859194][ T9247] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1177'.
[  379.916283][ T9252] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  380.076043][ T9252] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  380.085258][ T9252] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  380.094811][ T9252] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  381.726835][ T9252] device vlan2 left promiscuous mode
[  381.755884][ T9266] loop2: detected capacity change from 0 to 64
[  381.798888][ T9267] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  382.203074][ T9266] loop2: detected capacity change from 0 to 4096
[  382.282144][ T9281] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  390.084147][ T9327] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  394.716933][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  394.807959][ T9384] loop2: detected capacity change from 0 to 24
[  395.308955][ T4201] udevd[4201]: incorrect romfs checksum on /dev/loop2
[  396.698576][ T9384] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  396.811538][ T9384] romfs: bad initial checksum on dev loop2.
[  397.300294][ T9403] loop6: detected capacity change from 0 to 1024
[  397.622311][ T9403] EXT4-fs (loop6): Ignoring removed orlov option
[  397.980060][ T9403] EXT4-fs (loop6): mounted filesystem without journal. Opts: orlov,min_batch_time=0x0000000000000004,,errors=continue. Quota mode: writeback.
[  398.122347][   T26] audit: type=1804 audit(1753156453.551:68): pid=9403 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.1223" name="/newroot/116/bus/bus" dev="loop6" ino=18 res=1 errno=0
[  398.729272][ T9435] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1230'.
[  399.914620][ T9446] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  401.039825][ T9454] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1238'.
[  401.067248][ T9456] device ip6gretap1 entered promiscuous mode
[  401.076176][ T9456] bond0: (slave ip6gretap1): Enslaving as an active interface with an up link
[  401.092212][ T9460] netlink: 132 bytes leftover after parsing attributes in process `syz.6.1239'.
[  401.103606][ T9460] netlink: 132 bytes leftover after parsing attributes in process `syz.6.1239'.
[  401.146171][ T9456] loop6: detected capacity change from 0 to 512
[  402.060345][   T23] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  402.122309][ T9456] netlink: 132 bytes leftover after parsing attributes in process `syz.6.1239'.
[  404.315857][   T23] usb 8-1: unable to get BOS descriptor or descriptor too short
[  404.410482][   T23] usb 8-1: unable to read config index 0 descriptor/start: -71
[  404.419812][   T23] usb 8-1: can't read configurations, error -71
[  404.578997][ T9497] netlink: 'syz.6.1252': attribute type 10 has an invalid length.
[  404.638446][ T9497] device wlan1 entered promiscuous mode
[  404.645069][ T9497] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  405.548561][ T9514] loop2: detected capacity change from 0 to 512
[  405.670513][ T9514] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  405.758480][ T9522] loop7: detected capacity change from 0 to 512
[  407.178151][ T9532] overlayfs: failed to get inode (-116)
[  407.201420][ T9532] overlayfs: failed to look up (bus) for ino (-116)
[  408.399085][ T8431] Bluetooth: hci2: command 0x0406 tx timeout
[  408.798063][ T9522] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  408.869805][ T9522] ext4 filesystem being mounted at /68/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  408.993592][ T9560] netlink: zone id is out of range
[  409.004910][ T9560] netlink: zone id is out of range
[  409.012837][ T9560] netlink: zone id is out of range
[  409.018353][ T9560] netlink: zone id is out of range
[  409.024350][ T9560] netlink: zone id is out of range
[  409.030043][ T9560] netlink: zone id is out of range
[  409.036056][ T9560] netlink: zone id is out of range
[  409.041654][ T9560] netlink: zone id is out of range
[  409.046970][ T9560] netlink: zone id is out of range
[  409.052842][ T9560] netlink: zone id is out of range
[  410.159759][ T9580] binder: BINDER_SET_CONTEXT_MGR already set
[  410.199183][ T9580] binder: 9578:9580 ioctl 4018620d 200000000040 returned -16
[  410.221911][ T9580] binder: 9578:9580 ioctl c0306201 200000000240 returned -11
[  410.564015][ T9598] ieee802154 phy0 wpan0: encryption failed: -22
[  410.802390][ T9603] loop7: detected capacity change from 0 to 8
[  411.036334][ T9603] SQUASHFS error: Unable to read directory block [249:c]
[  411.087517][ T9607] team0: No ports can be present during mode change
[  411.122709][ T9607] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1288'.
[  411.434546][ T9607] team0 (unregistering): Port device team_slave_0 removed
[  411.538858][ T9618] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  411.565625][ T9618] CIFS mount error: No usable UNC path provided in device string!
[  411.565625][ T9618] 
[  411.576269][ T9618] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  412.271714][ T9607] team0 (unregistering): Port device team_slave_1 removed
[  412.344822][ T9622] fuse: Bad value for 'fd'
[  412.496013][ T9627] loop7: detected capacity change from 0 to 512
[  412.965427][ T9627] EXT4-fs (loop7): mounted filesystem without journal. Opts: sysvgroups,journal_ioprio=0x0000000000000001,journal_ioprio=0x0000000000000003,,errors=continue. Quota mode: writeback.
[  413.702299][ T9627] ext4 filesystem being mounted at /71/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  414.728953][ T9637] kthread_run failed with err -4
[  414.945909][ T9657] loop7: detected capacity change from 0 to 16
[  415.161782][ T9657] erofs: (device loop7): mounted with root inode @ nid 36.
[  416.445322][ T9664] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1305'.
[  421.639483][ T9704] loop6: detected capacity change from 0 to 24
[  421.842328][ T9704] MTD: Attempt to mount non-MTD device "/dev/loop6"
[  421.875817][ T9716] netlink: 'syz.0.1320': attribute type 10 has an invalid length.
[  422.026888][ T9704] romfs: bad initial checksum on dev loop6.
[  422.074430][ T4201] udevd[4201]: incorrect romfs checksum on /dev/loop6
[  422.534203][ T9734] loop7: detected capacity change from 0 to 64
[  423.326484][ T9745] loop6: detected capacity change from 0 to 128
[  429.415960][ T9796] block device autoloading is deprecated and will be removed.
[  429.481821][ T9799] block device autoloading is deprecated and will be removed.
[  431.901690][ T9834] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1354'.
[  431.918441][ T9834] device ipvlan0 entered promiscuous mode
[  433.316029][ T9839] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1355'.
[  433.376052][ T9839] netlink: 80 bytes leftover after parsing attributes in process `syz.7.1355'.
[  433.454060][ T9853] overlayfs: failed to clone upperpath
[  435.798681][   T26] audit: type=1107 audit(1753156488.787:69): pid=9880 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  436.621623][ T9908] netlink: 92 bytes leftover after parsing attributes in process `syz.6.1379'.
[  437.976322][ T9923] netlink: 'syz.6.1384': attribute type 4 has an invalid length.
[  438.569039][   T26] audit: type=1326 audit(1753156491.360:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9926 comm="syz.2.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f115a54f9a9 code=0x7fc00000
[  439.408598][   T26] audit: type=1326 audit(1753156492.089:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9926 comm="syz.2.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f115a4ebb89 code=0x7fc00000
[  439.495861][ T9942] kAFS: unparsable volume name
[  442.949327][ T8431] usb 7-1: new full-speed USB device number 3 using dummy_hcd
[  442.968358][ T9972] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1401'.
[  443.048652][ T9977] netlink: 80 bytes leftover after parsing attributes in process `syz.0.1401'.
[  443.564781][ T8431] usb 7-1: config 0 has no interfaces?
[  443.754420][ T8431] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  444.180980][ T8431] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  444.357928][ T8431] usb 7-1: Product: syz
[  444.378250][ T8431] usb 7-1: Manufacturer: syz
[  444.423810][ T8431] usb 7-1: SerialNumber: syz
[  444.609474][ T8431] usb 7-1: config 0 descriptor??
[  445.209075][ T8431] usb 7-1: USB disconnect, device number 3
[  445.231926][ T9998] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1407'.
[  447.224483][T10033] netlink: 'syz.2.1417': attribute type 1 has an invalid length.
[  447.688351][T10033] 8021q: adding VLAN 0 to HW filter on device bond3
[  447.766400][T10036] bond3: (slave gretap1): making interface the new active one
[  447.890466][T10036] bond3: (slave gretap1): Enslaving as an active interface with an up link
[  447.983248][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): bond3: link becomes ready
[  450.173065][T10063] loop6: detected capacity change from 0 to 2048
[  450.363494][T10071] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1428'.
[  450.812114][T10063] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  451.411104][T10093] netlink: 'syz.0.1434': attribute type 1 has an invalid length.
[  451.460017][T10093] 8021q: adding VLAN 0 to HW filter on device bond5
[  452.392607][T10093] bond5: (slave gretap1): making interface the new active one
[  452.427874][T10093] bond5: (slave gretap1): Enslaving as an active interface with an up link
[  452.437113][ T5074] IPv6: ADDRCONF(NETDEV_CHANGE): bond5: link becomes ready
[  452.652293][T10105] overlayfs: failed to resolve './file0': -2
[  455.014737][T10130] ptrace attach of "./syz-executor exec"[4183] was attempted by "./syz-executor exec"[10130]
[  456.223045][T10149] netlink: 'syz.7.1450': attribute type 1 has an invalid length.
[  456.249454][T10149] 8021q: adding VLAN 0 to HW filter on device bond1
[  456.296010][T10149] 8021q: adding VLAN 0 to HW filter on device bond1
[  456.306822][T10149] bond1: (slave vti0): The slave device specified does not support setting the MAC address
[  456.321402][T10149] bond1: (slave vti0): Error -95 calling set_mac_address
[  456.360367][T10154] bond1: (slave gretap1): making interface the new active one
[  456.371578][T10154] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  459.833085][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  461.345942][T10222] netlink: 'syz.3.1474': attribute type 10 has an invalid length.
[  461.382506][T10222] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1474'.
[  461.410313][T10222] device dummy0 entered promiscuous mode
[  461.449908][T10222] bridge0: port 1(dummy0) entered blocking state
[  461.467396][T10222] bridge0: port 1(dummy0) entered disabled state
[  463.860537][T10269] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1489'.
[  464.061100][T10274] netlink: 'syz.3.1490': attribute type 1 has an invalid length.
[  464.263558][T10275] loop7: detected capacity change from 0 to 8
[  465.100967][T10281] loop6: detected capacity change from 0 to 512
[  465.116127][T10274] 8021q: adding VLAN 0 to HW filter on device bond3
[  465.207048][T10276] 8021q: adding VLAN 0 to HW filter on device bond3
[  465.319506][T10276] bond3: (slave vti0): The slave device specified does not support setting the MAC address
[  465.376855][T10276] bond3: (slave vti0): Error -95 calling set_mac_address
[  465.448731][T10280] bond3: (slave gretap1): making interface the new active one
[  465.525029][T10280] bond3: (slave gretap1): Enslaving as an active interface with an up link
[  465.543715][   T26] audit: type=1326 audit(1753156516.616:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10286 comm="syz.2.1495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f115a54f9a9 code=0x7ffc0000
[  465.592221][   T26] audit: type=1326 audit(1753156516.616:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10286 comm="syz.2.1495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f115a54f9a9 code=0x7ffc0000
[  465.638654][   T26] audit: type=1326 audit(1753156516.616:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10286 comm="syz.2.1495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f115a54f9a9 code=0x7ffc0000
[  465.697529][   T26] audit: type=1326 audit(1753156516.616:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10286 comm="syz.2.1495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f115a54f9a9 code=0x7ffc0000
[  465.723125][   T26] audit: type=1326 audit(1753156516.616:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10286 comm="syz.2.1495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7f115a54f9a9 code=0x7ffc0000
[  465.748270][   T26] audit: type=1326 audit(1753156516.616:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10286 comm="syz.2.1495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f115a54f9a9 code=0x7ffc0000
[  465.772982][   T26] audit: type=1326 audit(1753156516.616:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10286 comm="syz.2.1495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=120 compat=0 ip=0x7f115a54f9a9 code=0x7ffc0000
[  465.806488][   T26] audit: type=1326 audit(1753156516.616:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10286 comm="syz.2.1495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f115a54f9a9 code=0x7ffc0000
[  465.831583][   T26] audit: type=1326 audit(1753156516.700:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10286 comm="syz.2.1495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=104 compat=0 ip=0x7f115a54f9a9 code=0x7ffc0000
[  465.856478][   T26] audit: type=1326 audit(1753156516.700:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10286 comm="syz.2.1495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f115a54f9a9 code=0x7ffc0000
[  466.688231][    C0] vcan0: j1939_tp_rxtimer: 0xffff88806115e400: rx timeout, send abort
[  467.224334][    C0] vcan0: j1939_tp_rxtimer: 0xffff888060ed4400: rx timeout, send abort
[  467.307208][    C0] vcan0: j1939_tp_rxtimer: 0xffff88806115e400: abort rx timeout. Force session deactivation
[  467.767141][    C0] vcan0: j1939_tp_rxtimer: 0xffff888060ed4400: abort rx timeout. Force session deactivation
[  468.581681][T10338] overlayfs: failed to clone upperpath
[  470.677382][T10373] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1521'.
[  472.260423][T10402] 8021q: VLANs not supported on vcan0
[  473.409337][T10402] netlink: 788 bytes leftover after parsing attributes in process `syz.3.1531'.
[  473.551581][T10415] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[  473.611284][T10415] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[  473.632760][T10415] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[  473.678507][T10415] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready
[  473.706874][T10415] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[  473.745027][T10415] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[  473.821734][T10432] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1538'.
[  474.073378][T10435] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1539'.
[  474.096748][T10435] bridge0: port 1(syz_tun) entered disabled state
[  474.119704][T10435] device syz_tun left promiscuous mode
[  474.125351][T10435] bridge0: port 1(syz_tun) entered disabled state
[  477.412906][T10451] tipc: Failed to remove unknown binding: 66,1,1/4:2578182104/2578182106
[  477.434196][T10451] tipc: Failed to remove unknown binding: 66,1,1/4:2578182104/2578182106
[  477.453007][T10460] bond1: option mode: unable to set because the bond device has slaves
[  477.498451][T10460] 8021q: adding VLAN 0 to HW filter on device macvlan1
[  477.541813][T10469] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  477.561975][T10460] bond1: (slave macvlan1): Enslaving as an active interface with an up link
[  478.237188][T10479] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1553'.
[  479.971877][T10490] netlink: 20 bytes leftover after parsing attributes in process `syz.7.1556'.
[  479.987535][T10490] netlink: 20 bytes leftover after parsing attributes in process `syz.7.1556'.
[  486.457116][T10596] loop6: detected capacity change from 0 to 512
[  486.525275][T10596] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  486.597655][T10596] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  486.607348][T10596] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a04ec0a8, mo2=0002]
[  486.627023][T10596] System zones: 0-3, 34-34
[  486.635392][T10596] EXT4-fs (loop6): orphan cleanup on readonly fs
[  486.641911][T10596] EXT4-fs error (device loop6): ext4_orphan_get:1427: comm syz.6.1588: bad orphan inode 1039
[  486.688917][T10596] EXT4-fs (loop6): Remounting filesystem read-only
[  486.696818][T10596] EXT4-fs (loop6): mounted filesystem without journal. Opts: debug,errors=remount-ro,quota,errors=remount-ro,minixdf,sb=0x0000000000000009,. Quota mode: writeback.
[  486.916038][T10611] 9pnet: Insufficient options for proto=fd
[  487.238594][T10612] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1591'.
[  489.615837][T10620] loop7: detected capacity change from 0 to 4096
[  489.821602][T10620] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  489.874817][   T26] kauditd_printk_skb: 34 callbacks suppressed
[  489.874833][   T26] audit: type=1326 audit(1753156539.383:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10639 comm="syz.3.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  489.907885][T10620] EXT4-fs (loop7): shut down requested (1)
[  489.949552][   T26] audit: type=1326 audit(1753156539.383:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10639 comm="syz.3.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  489.977532][   T26] audit: type=1326 audit(1753156539.383:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10639 comm="syz.3.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  490.106909][   T26] audit: type=1326 audit(1753156539.383:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10639 comm="syz.3.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  490.135719][   T26] audit: type=1326 audit(1753156539.383:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10639 comm="syz.3.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  490.244229][   T26] audit: type=1326 audit(1753156539.383:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10639 comm="syz.3.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  490.275921][   T26] audit: type=1326 audit(1753156539.383:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10639 comm="syz.3.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  490.654930][   T26] audit: type=1326 audit(1753156539.383:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10639 comm="syz.3.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  490.926323][   T26] audit: type=1326 audit(1753156539.383:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10639 comm="syz.3.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  491.026901][   T26] audit: type=1326 audit(1753156539.383:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10639 comm="syz.3.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  491.344012][T10675] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1610'.
[  493.535282][T10686] overlayfs: failed to clone upperpath
[  493.865092][T10703] MPTCP: kernel_bind error, err=-99
[  494.498966][T10721] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1624'.
[  495.817229][ T4189] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  496.831644][T10753] loop6: detected capacity change from 0 to 1024
[  496.883592][T10755] netlink: 'syz.3.1634': attribute type 1 has an invalid length.
[  496.892749][ T4189] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  496.940816][ T4189] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  496.984280][T10755] 8021q: adding VLAN 0 to HW filter on device bond4
[  497.019136][ T4189] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  497.043183][ T4189] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  497.075618][T10763] hfsplus: request for non-existent node 33423360 in B*Tree
[  497.198016][T10763] hfsplus: request for non-existent node 33423360 in B*Tree
[  497.237006][ T4189] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  497.287178][T10760] bond4: (slave veth5): Enslaving as an active interface with a down link
[  497.314031][ T4189] usb 8-1: string descriptor 0 read error: -71
[  497.320300][ T4189] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  497.326283][T10753] hfsplus: request for non-existent node 33423360 in B*Tree
[  497.350566][ T4189] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  497.377656][T10753] hfsplus: request for non-existent node 33423360 in B*Tree
[  497.397325][T10755] bond4: (slave vlan0): Opening slave failed
[  497.405111][ T4189] usb 8-1: can't set config #1, error -71
[  497.414594][T10764] hfsplus: request for non-existent node 33423360 in B*Tree
[  497.423719][ T4189] usb 8-1: USB disconnect, device number 5
[  497.430989][T10764] hfsplus: request for non-existent node 33423360 in B*Tree
[  497.455473][T10767] netlink: 'syz.7.1636': attribute type 10 has an invalid length.
[  498.569216][T10767] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  498.691732][T10782] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1640'.
[  498.773829][T10787] mmap: syz.3.1642 (10787): VmData 49119232 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  499.089753][T10795] sg_write: data in/out 524252/17 bytes for SCSI command 0x1-- guessing data in;
[  499.089753][T10795]    program syz.7.1644 not setting count and/or reply_len properly
[  501.386904][T10802] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  501.509689][T10785] loop6: detected capacity change from 0 to 32768
[  501.541851][T10785] XFS (loop6): Mounting V5 Filesystem
[  501.610669][T10785] XFS (loop6): Ending clean mount
[  501.663207][ T6463] XFS (loop6): Unmounting Filesystem
[  502.769599][    C1] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  503.111661][T10838] loop6: detected capacity change from 0 to 256
[  503.491138][T10838] exfat: Unknown parameter 'fsmagic'
[  504.643900][T10871] netlink: 96 bytes leftover after parsing attributes in process `syz.6.1661'.
[  509.128883][T10936] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  509.136724][T10936] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  509.150016][T10936] device bridge_slave_0 left promiscuous mode
[  509.173803][T10936] bridge0: port 1(bridge_slave_0) entered disabled state
[  509.195909][T10936] device bridge_slave_1 left promiscuous mode
[  509.349763][T10940] CIFS mount error: No usable UNC path provided in device string!
[  509.349763][T10940] 
[  509.360055][T10940] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  509.767182][T10936] bridge0: port 2(bridge_slave_1) entered disabled state
[  510.051561][T10936] bond0: (slave bond_slave_0): Releasing backup interface
[  510.099742][T10936] bond0: (slave bond_slave_1): Releasing backup interface
[  510.217759][T10936] team0: Port device team_slave_0 removed
[  510.249002][ T8431] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  510.356236][T10936] team0: Port device team_slave_1 removed
[  510.363909][T10936] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  510.379989][T10936] batman_adv: batadv0: Removing interface: batadv_slave_0
[  510.392436][T10936] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  510.413994][T10936] batman_adv: batadv0: Removing interface: batadv_slave_1
[  510.519388][T10936] team0: Port device geneve0 removed
[  510.543774][T10936] bond0: (slave wlan1): Releasing backup interface
[  510.548267][ T8431] usb 8-1: Using ep0 maxpacket: 16
[  510.584398][T10965] MPTCP: kernel_bind error, err=-99
[  510.587760][T10936] team0: Port device ip6gretap1 removed
[  510.616925][T10936] bond1: (slave gretap1): Releasing active interface
[  510.647609][T10938] netlink: 'syz.7.1682': attribute type 33 has an invalid length.
[  510.665877][T10938] netlink: 152 bytes leftover after parsing attributes in process `syz.7.1682'.
[  510.708879][ T8431] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  510.730997][ T8431] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  510.751350][ T8431] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  510.843470][T10971] device vlan1 entered promiscuous mode
[  510.854545][T10971] device bond0 entered promiscuous mode
[  510.865083][T10971] device wlan1 entered promiscuous mode
[  510.952234][T10978] lo speed is unknown, defaulting to 1000
[  510.971060][T10978] lo speed is unknown, defaulting to 1000
[  510.986939][T10978] lo speed is unknown, defaulting to 1000
[  510.999591][ T8431] usb 8-1: New USB device found, idVendor=0c72, idProduct=000c, bcdDevice=f6.59
[  511.015608][T10978] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  511.036594][ T8431] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  511.053375][ T8431] usb 8-1: Product: syz
[  511.060639][ T8431] usb 8-1: Manufacturer: syz
[  511.073850][T10978] lo speed is unknown, defaulting to 1000
[  511.092712][T10978] lo speed is unknown, defaulting to 1000
[  511.106893][T10978] lo speed is unknown, defaulting to 1000
[  511.163267][T10978] lo speed is unknown, defaulting to 1000
[  511.219450][T10978] lo speed is unknown, defaulting to 1000
[  511.235475][ T8431] usb 8-1: SerialNumber: syz
[  511.272719][ T8431] usb 8-1: config 0 descriptor??
[  512.316575][ T8431] peak_usb 8-1:0.0 can0: sending cmd f=0x6 n=0x1 failure: -8
[  512.328952][ T8431] peak_usb 8-1:0.0: unable to read PCAN-USB serial number (err -8)
[  512.787503][T10993] futex_wake_op: syz.0.1701 tries to shift op by -1; fix this program
[  512.879925][T11003] CIFS mount error: No usable UNC path provided in device string!
[  512.879925][T11003] 
[  512.890145][T11003] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  512.977109][ T8431] peak_usb: probe of 8-1:0.0 failed with error -8
[  513.873366][ T8431] usb 8-1: USB disconnect, device number 6
[  514.150563][T10999] netlink: 48 bytes leftover after parsing attributes in process `syz.7.1702'.
[  515.901882][T11035] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1711'.
[  518.396662][T11045] netlink: 'syz.2.1715': attribute type 8 has an invalid length.
[  518.561057][T11050] netlink: 'syz.0.1716': attribute type 1 has an invalid length.
[  518.609061][T11050] 8021q: adding VLAN 0 to HW filter on device bond6
[  518.638176][T11056] bond6: (slave vlan0): making interface the new active one
[  518.705325][T11056] bond6: (slave vlan0): Enslaving as an active interface with an up link
[  519.193878][T11052] bond6: (slave veth7): Enslaving as an active interface with a down link
[  519.589000][ T5114] IPv6: ADDRCONF(NETDEV_CHANGE): bond6: link becomes ready
[  519.899982][T11067] lo speed is unknown, defaulting to 1000
[  525.859625][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  526.568607][T11114] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1732'.
[  526.636247][T11123] netlink: 'syz.6.1735': attribute type 1 has an invalid length.
[  527.654510][T11123] 8021q: adding VLAN 0 to HW filter on device bond2
[  527.677690][T11128] lo speed is unknown, defaulting to 1000
[  527.705674][T11129] bond2: (slave veth7): Enslaving as an active interface with a down link
[  528.023820][T11145] loop7: detected capacity change from 0 to 8
[  528.964761][T11154] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1744'.
[  530.451481][T11167] loop6: detected capacity change from 0 to 32768
[  530.458410][ T4238] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  530.498453][T11167] XFS: ikeep mount option is deprecated.
[  530.775864][ T4238] usb 8-1: Using ep0 maxpacket: 32
[  530.856174][T11167] XFS (loop6): Mounting V5 Filesystem
[  530.914148][ T4238] usb 8-1: config 0 interface 0 has no altsetting 0
[  530.924324][ T4238] usb 8-1: New USB device found, idVendor=1b1c, idProduct=1c09, bcdDevice= 0.00
[  530.983667][ T4238] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  531.013650][ T4238] usb 8-1: config 0 descriptor??
[  531.149647][T11167] XFS (loop6): Ending clean mount
[  531.159154][T11167] XFS (loop6): Quotacheck needed: Please wait.
[  531.268267][T11182] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1748'.
[  531.352341][ T4238] usbhid 8-1:0.0: can't add hid device: -71
[  531.358413][ T4238] usbhid: probe of 8-1:0.0 failed with error -71
[  531.418024][ T4238] usb 8-1: USB disconnect, device number 7
[  531.427615][T11167] XFS (loop6): Quotacheck: Done.
[  532.208866][ T6463] XFS (loop6): Unmounting Filesystem
[  533.784926][T11207] device vlan2 entered promiscuous mode
[  538.298291][T11238] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.1766'.
[  538.755361][T11240] loop7: detected capacity change from 0 to 32768
[  538.847197][T11240] XFS: ikeep mount option is deprecated.
[  539.054659][T11240] XFS (loop7): Mounting V5 Filesystem
[  539.535595][    C1] vcan0: j1939_tp_rxtimer: 0xffff888060b11c00: rx timeout, send abort
[  539.649375][T11240] XFS (loop7): Ending clean mount
[  539.770113][T11240] XFS (loop7): Quotacheck needed: Please wait.
[  540.070209][    C1] vcan0: j1939_tp_rxtimer: 0xffff888060b13400: rx timeout, send abort
[  540.097241][    C1] vcan0: j1939_tp_rxtimer: 0xffff888060b11c00: abort rx timeout. Force session deactivation
[  540.159436][T11240] XFS (loop7): Quotacheck: Done.
[  540.613026][    C1] vcan0: j1939_tp_rxtimer: 0xffff888060b13400: abort rx timeout. Force session deactivation
[  542.111138][ T7332] XFS (loop7): Unmounting Filesystem
[  544.808239][T11315] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1793'.
[  544.822033][T11315] device team0 entered promiscuous mode
[  544.828923][T11315] 8021q: adding VLAN 0 to HW filter on device macvlan0
[  544.839311][T11315] device team0 left promiscuous mode
[  548.678322][T11329] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1785'.
[  551.510121][T11356] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1792'.
[  551.715863][T11356] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  551.725424][T11356] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  551.734668][T11356] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  551.743639][T11356] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  552.960384][T11356] device vxlan0 entered promiscuous mode
[  561.558018][T11472] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1828'.
[  563.304815][T11482] overlayfs: failed to clone upperpath
[  564.467620][T11510] net_ratelimit: 23 callbacks suppressed
[  564.467670][T11510] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  565.322557][   T26] kauditd_printk_skb: 22 callbacks suppressed
[  565.322573][   T26] audit: type=1326 audit(1753159187.951:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11513 comm="syz.0.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5199c89a9 code=0x7ffc0000
[  565.440595][T11520] bridge0: port 1(bridge_slave_0) entered disabled state
[  565.449985][T11521] overlayfs: failed to clone upperpath
[  565.481883][T11520] loop6: detected capacity change from 0 to 8
[  565.484274][   T26] audit: type=1326 audit(1753159188.007:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11513 comm="syz.0.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc5199c89a9 code=0x7ffc0000
[  565.534700][T11520] unable to read id index table
[  565.608887][T11528] bridge0: failed insert local address into bridge forwarding table
[  565.614556][   T26] audit: type=1326 audit(1753159188.007:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11513 comm="syz.0.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5199c89a9 code=0x7ffc0000
[  565.679597][   T26] audit: type=1326 audit(1753159188.007:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11513 comm="syz.0.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5199c89a9 code=0x7ffc0000
[  565.763997][T11531] input: syz0 as /devices/virtual/input/input8
[  565.789781][T11533] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1848'.
[  565.797850][   T26] audit: type=1326 audit(1753159188.007:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11513 comm="syz.0.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fc5199c89a9 code=0x7ffc0000
[  565.889509][   T26] audit: type=1326 audit(1753159188.007:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11513 comm="syz.0.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5199c89a9 code=0x7ffc0000
[  565.950929][   T26] audit: type=1326 audit(1753159188.007:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11513 comm="syz.0.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5199c89a9 code=0x7ffc0000
[  566.008328][   T26] audit: type=1326 audit(1753159188.007:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11513 comm="syz.0.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7fc5199c89a9 code=0x7ffc0000
[  566.063541][   T26] audit: type=1326 audit(1753159188.007:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11513 comm="syz.0.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5199c89a9 code=0x7ffc0000
[  566.089925][   T26] audit: type=1326 audit(1753159188.007:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11513 comm="syz.0.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5199c89a9 code=0x7ffc0000
[  566.327449][T11541] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1850'.
[  567.909861][T11563] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1856'.
[  567.922975][T11563] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1856'.
[  569.532617][T11590] xt_CT: You must specify a L4 protocol and not use inversions on it
[  575.781657][T11659] netlink: 24 bytes leftover after parsing attributes in process `syz.7.1880'.
[  576.118310][T11653] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1879'.
[  578.563091][T11678] xt_CT: You must specify a L4 protocol and not use inversions on it
[  579.668968][T11699] trusted_key: encrypted_key: insufficient parameters specified
[  580.920748][T11709] loop7: detected capacity change from 0 to 256
[  582.201952][T11720] loop6: detected capacity change from 0 to 764
[  582.302423][T11720] rock: directory entry would overflow storage
[  582.329829][T11720] rock: sig=0x5850, size=36, remaining=22
[  582.351229][T11709] FAT-fs (loop7): Directory bread(block 64) failed
[  582.389317][T11709] FAT-fs (loop7): Directory bread(block 65) failed
[  582.431590][T11709] FAT-fs (loop7): Directory bread(block 66) failed
[  582.488850][T11709] FAT-fs (loop7): Directory bread(block 67) failed
[  582.504222][T11709] FAT-fs (loop7): Directory bread(block 68) failed
[  582.518069][T11709] FAT-fs (loop7): Directory bread(block 69) failed
[  582.530237][T11709] FAT-fs (loop7): Directory bread(block 70) failed
[  582.541534][T11735] netlink: 'syz.3.1900': attribute type 10 has an invalid length.
[  582.541812][T11709] FAT-fs (loop7): Directory bread(block 71) failed
[  582.567197][T11709] FAT-fs (loop7): Directory bread(block 72) failed
[  582.578896][T11709] FAT-fs (loop7): Directory bread(block 73) failed
[  584.196363][T11756] netlink: 'syz.3.1909': attribute type 39 has an invalid length.
[  585.474646][T11773] loop6: detected capacity change from 0 to 2048
[  585.589917][T11777] netlink: 'syz.0.1915': attribute type 10 has an invalid length.
[  585.638059][T11773] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  585.724182][T11788] device bond0 entered promiscuous mode
[  588.577006][T11823] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  588.588729][T11823] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  588.709747][T11823] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  588.743461][T11838] loop6: detected capacity change from 0 to 1024
[  588.768213][T11823] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  588.810091][T11838] EXT4-fs (loop6): mounted filesystem without journal. Opts: noauto_da_alloc,nojournal_checksum,barrier=0x0000000000010002,dioread_lock,data_err=ignore,mb_optimize_scan=0x0000000000000000,noquota,nobarrier,abort,user_xattr,norecovery,errors=remount-ro,. Quota mode: none.
[  588.881816][T11823] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  588.903386][T11823] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  589.180391][T11823] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  589.205756][T11823] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  589.950012][T11823] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  589.973946][T11823] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  590.030543][T11823] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  590.049704][T11823] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  590.064290][T11823] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  590.077070][T11823] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  590.091943][T11823] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  590.100542][T11823] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  590.170474][T11856] bridge0: the hash_elasticity option has been deprecated and is always 16
[  590.703765][T11871] syz.7.1939[11871] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  590.705415][T11871] syz.7.1939[11871] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  592.529923][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  593.579407][T11878] netlink: zone id is out of range
[  595.232323][T11909] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  596.045285][T11904] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1958'.
[  596.120259][T11913] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1958'.
[  596.287325][T11909] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  596.407395][T11909] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  596.650600][ T8431] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  596.992767][ T8431] usb 7-1: Using ep0 maxpacket: 8
[  597.133518][T11909] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  597.154995][ T8431] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  597.281296][ T8431] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[  597.314380][ T8431] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  597.366472][ T8431] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  597.429681][ T8431] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  597.442849][ T8431] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  598.895625][T11947] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1959'.
[  598.898397][ T8431] hub 7-1:1.0: bad descriptor, ignoring hub
[  598.911433][ T8431] hub: probe of 7-1:1.0 failed with error -5
[  598.918038][ T8431] cdc_wdm 7-1:1.0: skipping garbage
[  598.923285][ T8431] cdc_wdm 7-1:1.0: skipping garbage
[  598.934948][ T8431] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  598.941147][ T8431] cdc_wdm 7-1:1.0: Unknown control protocol
[  599.014497][T11909] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  599.036773][T11909] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  599.056366][T11909] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  599.075468][T11909] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  599.881338][ T8435] usb 7-1: USB disconnect, device number 4
[  600.278146][T11958] netlink: 'syz.2.1964': attribute type 1 has an invalid length.
[  600.372775][T11958] 8021q: adding VLAN 0 to HW filter on device bond4
[  600.517585][T11963] 8021q: adding VLAN 0 to HW filter on device bond4
[  600.575312][T11963] bond4: (slave vxcan1): The slave device specified does not support setting the MAC address
[  600.587327][T11963] bond4: (slave vxcan1): Error -22 calling dev_set_mtu
[  601.822244][T11973] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1966'.
[  601.861486][T11973] loop6: detected capacity change from 0 to 256
[  601.953752][T11973] FAT-fs (loop6): Directory bread(block 64) failed
[  601.983794][T11973] FAT-fs (loop6): Directory bread(block 65) failed
[  602.020606][T11973] FAT-fs (loop6): Directory bread(block 66) failed
[  602.035883][T11973] FAT-fs (loop6): Directory bread(block 67) failed
[  602.054007][T11973] FAT-fs (loop6): Directory bread(block 68) failed
[  602.075370][T11973] FAT-fs (loop6): Directory bread(block 69) failed
[  602.090895][T11973] FAT-fs (loop6): Directory bread(block 70) failed
[  602.098293][T11973] FAT-fs (loop6): Directory bread(block 71) failed
[  602.108506][T11973] FAT-fs (loop6): Directory bread(block 72) failed
[  602.118057][T11977] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1968'.
[  602.150709][T11973] FAT-fs (loop6): Directory bread(block 73) failed
[  603.028971][T11996] netlink: 'syz.7.1973': attribute type 10 has an invalid length.
[  603.063644][T11996] bond0: (slave bridge_slave_1): Enslaving as an active interface with an up link
[  603.092439][T11996] netlink: 14 bytes leftover after parsing attributes in process `syz.7.1973'.
[  603.152311][T11996] bond0 (unregistering): (slave bridge_slave_1): Releasing backup interface
[  603.190435][T11996] bond0 (unregistering): Released all slaves
[  605.977370][T12003] loop6: detected capacity change from 0 to 8192
[  607.024985][T12024] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1983'.
[  607.050228][T12024] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1983'.
[  608.189377][T12044] netlink: 'syz.6.1986': attribute type 3 has an invalid length.
[  608.973467][T12052] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1987'.
[  609.081365][T12051] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1986'.
[  610.385287][T12061] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  610.398153][T12061] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  610.519252][T12072] netlink: 'syz.3.1994': attribute type 12 has an invalid length.
[  614.557675][T12107] atomic_op ffff888024b08998 conn xmit_atomic 0000000000000000
[  614.977739][T12102] netlink: 'syz.6.2001': attribute type 12 has an invalid length.
[  615.038226][   T26] kauditd_printk_skb: 21 callbacks suppressed
[  615.038243][   T26] audit: type=1326 audit(1753159234.449:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12112 comm="syz.3.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  615.072839][   T26] audit: type=1326 audit(1753159234.449:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12112 comm="syz.3.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  615.110773][   T26] audit: type=1326 audit(1753159234.515:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12112 comm="syz.3.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  615.148052][   T26] audit: type=1326 audit(1753159234.515:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12112 comm="syz.3.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  615.181768][   T26] audit: type=1326 audit(1753159234.515:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12112 comm="syz.3.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  615.291120][   T26] audit: type=1326 audit(1753159234.515:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12112 comm="syz.3.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  615.331857][   T26] audit: type=1326 audit(1753159234.515:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12112 comm="syz.3.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  615.450676][   T26] audit: type=1326 audit(1753159234.515:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12112 comm="syz.3.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  615.477620][   T26] audit: type=1326 audit(1753159234.524:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12112 comm="syz.3.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  615.501394][T12128] cgroup: Unknown subsys name 'obj_role'
[  615.512741][   T26] audit: type=1326 audit(1753159234.524:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12112 comm="syz.3.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ea857a9a9 code=0x7ffc0000
[  618.099022][T12163] netlink: 64 bytes leftover after parsing attributes in process `syz.6.2019'.
[  618.120423][T12163] netlink: 'syz.6.2019': attribute type 11 has an invalid length.
[  618.136667][T12163] netlink: 428 bytes leftover after parsing attributes in process `syz.6.2019'.
[  618.304896][T12167] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  618.312336][T12167] IPv6: NLM_F_CREATE should be set when creating new route
[  618.412870][T12175] syz.0.2024[12175] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  618.412966][T12175] syz.0.2024[12175] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  618.429075][T12175] syz.0.2024[12175] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  618.441515][T12175] syz.0.2024[12175] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  618.713886][T12182] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2027'.
[  618.812085][T12183] netlink: 20 bytes leftover after parsing attributes in process `syz.7.2027'.
[  621.174131][   T26] kauditd_printk_skb: 47 callbacks suppressed
[  621.174151][   T26] audit: type=1804 audit(1753161818.192:236): pid=12222 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2038" name="file1" dev="ramfs" ino=55421 res=1 errno=0
[  622.001292][T12231] nftables ruleset with unbound chain
[  622.257017][    T7] usb 7-1: new full-speed USB device number 5 using dummy_hcd
[  623.459147][T12245] ÿÿÿÿÿÿ: renamed from vlan1
[  623.525713][    T7] usb 7-1: not running at top speed; connect to a high speed hub
[  623.543602][T12250] overlayfs: failed to clone upperpath
[  623.622730][    T7] usb 7-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  623.631766][    T7] usb 7-1: config 1 has no interface number 1
[  623.871479][    T7] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  623.884466][    T7] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  623.905084][    T7] usb 7-1: Product: syz
[  623.918500][    T7] usb 7-1: Manufacturer: syz
[  623.928086][    T7] usb 7-1: SerialNumber: syz
[  624.546836][    T7] usb 7-1: 2:1 : UAC_AS_GENERAL descriptor not found
[  624.687723][    T7] usb 7-1: USB disconnect, device number 5
[  624.734088][T12293] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2053'.
[  625.626057][T11729] udevd[11729]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  626.096346][T12314] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2061'.
[  629.865039][T12360] IPVS: set_ctl: invalid protocol: 44 172.20.20.187:20000
[  630.016778][T12361] netlink: 'syz.7.2071': attribute type 16 has an invalid length.
[  630.063408][T12361] netlink: 'syz.7.2071': attribute type 3 has an invalid length.
[  630.111120][T12361] netlink: 132 bytes leftover after parsing attributes in process `syz.7.2071'.
[  631.335834][T12377] netlink: 1 bytes leftover after parsing attributes in process `syz.3.2075'.
[  634.698278][T12423] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2087'.
[  635.279986][T12434] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  635.287452][T12434] IPv6: NLM_F_CREATE should be set when creating new route
[  639.944706][T12469] loop6: detected capacity change from 0 to 8
[  640.071929][T12469] SQUASHFS error: xz decompression failed, data probably corrupt
[  640.103767][T12469] SQUASHFS error: Failed to read block 0x108: -5
[  640.110740][T12469] SQUASHFS error: Unable to read metadata cache entry [106]
[  640.128162][T12469] SQUASHFS error: Unable to read inode 0x11f
[  641.359732][   T26] audit: type=1804 audit(1753161837.082:237): pid=12484 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2104" name="file1" dev="ramfs" ino=55744 res=1 errno=0
[  641.378488][T12486] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2106'.
[  641.456196][T12488] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2106'.
[  641.700531][T12486] team0 (unregistering): Port device geneve0 removed
[  646.373265][T12545] loop6: detected capacity change from 0 to 128
[  647.173378][T12545] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  651.179063][T12589] MPTCP: kernel_bind error, err=-99
[  651.192772][T12589] siw: device registration error -23
[  652.111061][T12592] netlink: 'syz.6.2133': attribute type 10 has an invalid length.
[  652.256597][T12592] netlink: 40 bytes leftover after parsing attributes in process `syz.6.2133'.
[  652.463676][T12592] netlink: 'syz.6.2133': attribute type 10 has an invalid length.
[  652.486635][T12592] netlink: 40 bytes leftover after parsing attributes in process `syz.6.2133'.
[  652.572299][T12600] lo speed is unknown, defaulting to 1000
[  653.301261][T12611] lo speed is unknown, defaulting to 1000
[  653.324966][T12611] lo speed is unknown, defaulting to 1000
[  653.340341][T12611] lo speed is unknown, defaulting to 1000
[  653.757517][T12611] infiniband syz0: set down
[  653.762099][T12611] infiniband syz0: added lo
[  653.820385][T12611] infiniband syz0: Couldn't open port 1
[  653.844002][T12611] RDS/IB: syz0: added
[  653.848125][T12611] smc: adding ib device syz0 with port count 1
[  653.854387][T12611] smc:    ib device syz0 port 1 has pnetid 
[  653.946381][T12611] lo speed is unknown, defaulting to 1000
[  654.076993][T12611] lo speed is unknown, defaulting to 1000
[  654.221765][T11607] netdevsim netdevsim7 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  654.307868][ T4238] lo speed is unknown, defaulting to 1000
[  654.312582][T12600] chnl_net:caif_netlink_parms(): no params data found
[  654.350457][   T23] lo speed is unknown, defaulting to 1000
[  654.357658][T12623] xt_TPROXY: Can be used only with -p tcp or -p udp
[  654.382043][T12611] lo speed is unknown, defaulting to 1000
[  654.551464][T12611] lo speed is unknown, defaulting to 1000
[  654.623733][T12611] lo speed is unknown, defaulting to 1000
[  654.664167][T11607] netdevsim netdevsim7 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  654.700458][   T23] Bluetooth: hci2: command 0x0409 tx timeout
[  654.817925][T12611] lo speed is unknown, defaulting to 1000
[  655.019855][T11607] netdevsim netdevsim7 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  655.094819][T12600] bridge0: port 1(bridge_slave_0) entered blocking state
[  655.102398][T12600] bridge0: port 1(bridge_slave_0) entered disabled state
[  655.128779][T12600] device bridge_slave_0 entered promiscuous mode
[  655.144675][T11607] netdevsim netdevsim7 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  655.158794][T12600] bridge0: port 2(bridge_slave_1) entered blocking state
[  655.166850][T12600] bridge0: port 2(bridge_slave_1) entered disabled state
[  655.178894][T12600] device bridge_slave_1 entered promiscuous mode
[  655.213009][T12600] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  655.234021][T12600] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  655.299272][T12600] team0: Port device team_slave_0 added
[  655.339974][T12600] team0: Port device team_slave_1 added
[  655.471688][T12600] batman_adv: batadv0: Adding interface: batadv_slave_0
[  655.493102][T12600] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  655.542603][T12600] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  655.580180][T12600] batman_adv: batadv0: Adding interface: batadv_slave_1
[  655.593441][T12600] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  655.624328][T12600] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  655.683779][T12600] device hsr_slave_0 entered promiscuous mode
[  655.692910][T12600] device hsr_slave_1 entered promiscuous mode
[  655.703961][T12600] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  655.714322][T12600] Cannot create hsr debugfs directory
[  655.887938][T12600] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  655.903831][T12600] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  655.933420][T12600] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  655.945622][T12600] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  655.992780][T12600] bridge0: port 2(bridge_slave_1) entered blocking state
[  655.999943][T12600] bridge0: port 2(bridge_slave_1) entered forwarding state
[  656.008086][T12600] bridge0: port 1(bridge_slave_0) entered blocking state
[  656.015411][T12600] bridge0: port 1(bridge_slave_0) entered forwarding state
[  656.114926][T12600] 8021q: adding VLAN 0 to HW filter on device bond0
[  656.135177][T12579] bridge0: port 1(bridge_slave_0) entered disabled state
[  656.146026][T12579] bridge0: port 2(bridge_slave_1) entered disabled state
[  656.161896][T12579] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  656.178446][T12579] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  656.195730][T12579] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  656.209467][T12600] 8021q: adding VLAN 0 to HW filter on device team0
[  656.244320][ T1235] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  656.253146][ T1235] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  656.262203][ T1235] bridge0: port 1(bridge_slave_0) entered blocking state
[  656.269342][ T1235] bridge0: port 1(bridge_slave_0) entered forwarding state
[  656.295061][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  656.311055][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  656.320197][ T4974] bridge0: port 2(bridge_slave_1) entered blocking state
[  656.327287][ T4974] bridge0: port 2(bridge_slave_1) entered forwarding state
[  656.335389][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  656.361866][T12574] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  656.373192][ T1235] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  656.389713][ T1235] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  656.400191][ T1235] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  656.437152][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  656.445976][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  656.464605][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  656.477294][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  656.495064][T12600] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  656.509118][T12600] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  656.526924][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  656.544667][ T4974] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  656.643285][T11607] device hsr_slave_0 left promiscuous mode
[  656.673981][T11607] device veth1_macvtap left promiscuous mode
[  656.680078][T11607] device veth0_macvtap left promiscuous mode
[  656.686693][T11607] device veth1_vlan left promiscuous mode
[  656.694210][T11607] device veth0_vlan left promiscuous mode
[  656.824100][T11607] bond1 (unregistering): Released all slaves
[  656.865755][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  656.867035][ T8935] Bluetooth: hci2: command 0x041b tx timeout
[  657.170535][T12600] 8021q: adding VLAN 0 to HW filter on device batadv0
[  657.203199][T12574] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  657.215446][T12574] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  657.441616][T12580] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  657.450559][T12580] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  657.481475][T12600] device veth0_vlan entered promiscuous mode
[  657.515602][T12574] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  657.524293][T12574] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  657.542519][T12600] device veth1_vlan entered promiscuous mode
[  657.550417][T12574] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  657.559753][T12574] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  657.567784][T12574] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  657.600496][T12574] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  657.616902][T12574] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  657.630019][T12574] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  657.644430][T12600] device veth0_macvtap entered promiscuous mode
[  657.662734][T12600] device veth1_macvtap entered promiscuous mode
[  657.684957][T12600] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  657.700110][T12600] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  657.711372][T12600] batman_adv: batadv0: Interface activated: batadv_slave_0
[  657.729616][T12574] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  657.746341][T12574] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  657.754916][T12574] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  657.763855][T12574] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  657.781076][T12600] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  657.792306][T12600] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  657.805482][T12600] batman_adv: batadv0: Interface activated: batadv_slave_1
[  657.813568][T12574] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  657.823267][T12574] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  657.837179][T12600] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  657.845963][T12600] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  657.856327][T12600] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  657.867114][T12600] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  657.955672][T12580] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  657.974058][T12580] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  658.012422][T12574] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  658.025060][T12580] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  658.038283][T12580] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  658.059441][T12574] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  659.243245][ T8435] Bluetooth: hci2: command 0x040f tx timeout
[  659.441387][T12728] loop8: detected capacity change from 0 to 8
[  659.575528][T12728] SQUASHFS error: xz decompression failed, data probably corrupt
[  659.610354][T12728] SQUASHFS error: Failed to read block 0x108: -5
[  659.635136][T12728] SQUASHFS error: Unable to read metadata cache entry [106]
[  659.667320][T12728] SQUASHFS error: Unable to read inode 0x11f
[  660.057358][T12742] IPVS: set_ctl: invalid protocol: 44 172.20.20.187:20000
[  660.106952][T12742] netlink: 'syz.2.2139': attribute type 16 has an invalid length.
[  660.125319][T12748] loop8: detected capacity change from 0 to 128
[  660.145078][T12742] netlink: 'syz.2.2139': attribute type 3 has an invalid length.
[  660.204217][T12742] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2139'.
[  660.213759][T12748] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256
[  660.455240][T12756] loop6: detected capacity change from 0 to 128
[  660.695813][ T8417] Process accounting resumed
[  660.713670][ T8417] FAT-fs (loop6): error, corrupted file size (i_pos 548, 512)
[  660.876656][ T8417] FAT-fs (loop6): Filesystem has been set read-only
[  661.655954][ T8435] Bluetooth: hci2: command 0x0419 tx timeout
[  661.914950][T12775] overlayfs: failed to clone upperpath
[  662.628439][T12800] loop8: detected capacity change from 0 to 1024
[  663.057968][T12808] hfsplus: invalid extended attribute record
[  663.391723][T12807] overlayfs: failed to clone upperpath
[  663.721036][T12580] hfsplus: b-tree write err: -5, ino 4
[  664.476638][T12824] IPVS: set_ctl: invalid protocol: 44 172.20.20.187:20000
[  664.566586][T12825] netlink: 'syz.8.2167': attribute type 16 has an invalid length.
[  664.578215][T12825] netlink: 'syz.8.2167': attribute type 3 has an invalid length.
[  664.589266][T12825] netlink: 132 bytes leftover after parsing attributes in process `syz.8.2167'.
[  664.896679][T12836] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2168'.
[  666.397325][T12836] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2168'.
[  666.797630][T12860] tipc: Failed to remove unknown binding: 66,1,1/2886997162:1488129360/1488129362
[  667.611288][T12860] tipc: Failed to remove unknown binding: 66,1,1/2886997162:1488129360/1488129362
[  668.445783][T12886] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  668.640535][T12891] device veth0 entered promiscuous mode
[  668.684431][T12890] device veth0 left promiscuous mode
[  673.593149][T12939] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2191'.
[  675.159673][T12957] device vlan1 left promiscuous mode
[  675.168431][T12957] device bond0 left promiscuous mode
[  675.187198][T12957] device wlan1 left promiscuous mode
[  675.355352][T12966] xt_CT: You must specify a L4 protocol and not use inversions on it
[  675.458564][T12974] netlink: 12 bytes leftover after parsing attributes in process `syz.8.2201'.
[  678.350487][T13002] ------------[ cut here ]------------
[  678.409352][T13002] wlan0: Failed check-sdata-in-driver check, flags: 0x4
[  678.451814][T13002] WARNING: CPU: 0 PID: 13002 at net/mac80211/driver-ops.h:172 ieee80211_bss_info_change_notify+0x37b/0x550
[  678.533821][T13002] Modules linked in:
[  678.564263][T13002] CPU: 0 PID: 13002 Comm: syz.3.2209 Not tainted 5.15.189-syzkaller #0
[  678.604179][T13002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  678.614577][T13002] RIP: 0010:ieee80211_bss_info_change_notify+0x37b/0x550
[  678.622222][T13002] Code: 88 8e f8 49 8b 84 24 00 06 00 00 49 81 c4 20 06 00 00 48 85 c0 4c 0f 45 e0 48 c7 c7 80 64 18 8b 4c 89 e6 89 ea e8 95 c8 6f 00 <0f> 0b e9 07 fd ff ff e8 b9 24 4a f8 0f 0b e9 b1 fe ff ff e8 ad 24
[  678.642950][T13002] RSP: 0018:ffffc900033af248 EFLAGS: 00010246
[  678.650228][T13002] RAX: e89260d0aa36d400 RBX: 0000000000400000 RCX: 0000000000080000
[  678.658814][T13002] RDX: ffffc90003591000 RSI: 0000000000004d5e RDI: 0000000000004d5f
[  678.667422][T13002] RBP: 0000000000000004 R08: dffffc0000000000 R09: ffffed10172067a8
[  678.676963][T13002] R10: ffffed10172067a8 R11: 1ffff110172067a7 R12: ffff88805fb04000
[  678.685724][T13002] R13: ffff88805fb05290 R14: ffff888075950da0 R15: ffff88805fb06298
[  678.724229][T13002] FS:  00007f0ea63e26c0(0000) GS:ffff8880b9100000(0000) knlGS:0000000000000000
[  678.733733][T13002] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  678.746392][T13002] CR2: 00007fc519bbf338 CR3: 0000000067ffe000 CR4: 00000000003506e0
[  678.759623][T13002] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  678.776744][T13002] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  678.794443][T13002] Call Trace:
[  678.801544][T13002]  <TASK>
[  678.809565][T13002]  ? netif_carrier_on+0xc1/0x120
[  678.828124][T13002]  ieee80211_ocb_leave+0x26f/0x320
[  678.852129][T13002]  __cfg80211_leave_ocb+0x219/0x3f0
[  678.863913][T13002]  cfg80211_leave_ocb+0x53/0x70
[  678.869029][T13002]  cfg80211_change_iface+0x4f1/0xeb0
[  678.878318][T13002]  nl80211_set_interface+0x598/0x7d0
[  678.891066][T13002]  ? nl80211_dump_interface+0x5c0/0x5c0
[  678.904227][T13002]  ? mutex_lock_nested+0x17/0x20
[  678.914364][T13002]  genl_rcv_msg+0xbc6/0xf40
[  678.925183][T13002]  ? genl_bind+0x370/0x370
[  678.940317][T13002]  ? verify_lock_unused+0x140/0x140
[  678.951435][T13002]  ? verify_lock_unused+0x140/0x140
[  678.962914][T13002]  ? nl80211_dump_interface+0x5c0/0x5c0
[  678.974911][T13002]  netlink_rcv_skb+0x1e0/0x430
[  678.985919][T13002]  ? genl_bind+0x370/0x370
[  678.996517][T13002]  ? netlink_ack+0xb60/0xb60
[  679.007427][T13002]  ? __lock_acquire+0x7c60/0x7c60
[  679.018815][T13002]  ? preempt_count_add+0x8d/0x190
[  679.030334][T13002]  ? down_read+0x1aa/0x2e0
[  679.040115][T13002]  genl_rcv+0x24/0x40
[  679.049151][T13002]  netlink_unicast+0x774/0x920
[  679.063681][T13002]  netlink_sendmsg+0x8ab/0xbc0
[  679.080743][T13002]  ? netlink_getsockopt+0x560/0x560
[  679.086733][T13002]  ? aa_sock_msg_perm+0x94/0x150
[  679.091938][T13002]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  679.097825][T13002]  ? security_socket_sendmsg+0x7c/0xa0
[  679.103547][T13002]  ? netlink_getsockopt+0x560/0x560
[  679.109315][T13002]  ____sys_sendmsg+0x5a2/0x8c0
[  679.114258][T13002]  ? memset+0x1e/0x40
[  679.118906][T13002]  ? __sys_sendmsg_sock+0x30/0x30
[  679.124123][T13002]  ? import_iovec+0x6f/0xa0
[  679.129523][T13002]  ___sys_sendmsg+0x1f0/0x260
[  679.134387][T13002]  ? __sys_sendmsg+0x250/0x250
[  679.139672][T13002]  ? sock_do_ioctl+0x27c/0x2f0
[  679.144815][T13002]  ? __fdget+0x18b/0x210
[  679.169845][T13002]  __se_sys_sendmsg+0x190/0x250
[  679.178426][T13002]  ? __x64_sys_sendmsg+0x80/0x80
[  679.216639][T13002]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  679.233611][T13002]  ? lockdep_hardirqs_on+0x94/0x140
[  679.244389][T13002]  do_syscall_64+0x4c/0xa0
[  679.248942][T13002]  ? clear_bhb_loop+0x30/0x80
[  679.265954][T13002]  ? clear_bhb_loop+0x30/0x80
[  679.287517][T13002]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  679.296877][T13002] RIP: 0033:0x7f0ea857a9a9
[  679.312904][T13002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  679.352214][T13002] RSP: 002b:00007f0ea63e2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  679.374246][T13002] RAX: ffffffffffffffda RBX: 00007f0ea87a1fa0 RCX: 00007f0ea857a9a9
[  679.412451][T13002] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[  679.427628][T13002] RBP: 00007f0ea85fcd69 R08: 0000000000000000 R09: 0000000000000000
[  679.435795][T13002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  679.444707][T13002] R13: 0000000000000000 R14: 00007f0ea87a1fa0 R15: 00007ffe6b956a18
[  679.455536][T13002]  </TASK>
[  679.458639][T13002] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  679.465932][T13002] CPU: 0 PID: 13002 Comm: syz.3.2209 Not tainted 5.15.189-syzkaller #0
[  679.474178][T13002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  679.484248][T13002] Call Trace:
[  679.487542][T13002]  <TASK>
[  679.490490][T13002]  dump_stack_lvl+0x168/0x230
[  679.495179][T13002]  ? show_regs_print_info+0x20/0x20
[  679.500393][T13002]  ? load_image+0x3b0/0x3b0
[  679.504918][T13002]  panic+0x2c9/0x7f0
[  679.508848][T13002]  ? bpf_jit_dump+0xd0/0xd0
[  679.513380][T13002]  ? ieee80211_bss_info_change_notify+0x37b/0x550
[  679.519822][T13002]  __warn+0x248/0x2b0
[  679.523823][T13002]  ? ieee80211_bss_info_change_notify+0x37b/0x550
[  679.530269][T13002]  report_bug+0x1b7/0x2e0
[  679.534728][T13002]  handle_bug+0x3a/0x70
[  679.538928][T13002]  exc_invalid_op+0x16/0x40
[  679.543458][T13002]  asm_exc_invalid_op+0x16/0x20
[  679.548342][T13002] RIP: 0010:ieee80211_bss_info_change_notify+0x37b/0x550
[  679.555376][T13002] Code: 88 8e f8 49 8b 84 24 00 06 00 00 49 81 c4 20 06 00 00 48 85 c0 4c 0f 45 e0 48 c7 c7 80 64 18 8b 4c 89 e6 89 ea e8 95 c8 6f 00 <0f> 0b e9 07 fd ff ff e8 b9 24 4a f8 0f 0b e9 b1 fe ff ff e8 ad 24
[  679.575002][T13002] RSP: 0018:ffffc900033af248 EFLAGS: 00010246
[  679.581076][T13002] RAX: e89260d0aa36d400 RBX: 0000000000400000 RCX: 0000000000080000
[  679.589065][T13002] RDX: ffffc90003591000 RSI: 0000000000004d5e RDI: 0000000000004d5f
[  679.597065][T13002] RBP: 0000000000000004 R08: dffffc0000000000 R09: ffffed10172067a8
[  679.605043][T13002] R10: ffffed10172067a8 R11: 1ffff110172067a7 R12: ffff88805fb04000
[  679.613026][T13002] R13: ffff88805fb05290 R14: ffff888075950da0 R15: ffff88805fb06298
[  679.621044][T13002]  ? ieee80211_bss_info_change_notify+0x37b/0x550
[  679.627472][T13002]  ? netif_carrier_on+0xc1/0x120
[  679.632428][T13002]  ieee80211_ocb_leave+0x26f/0x320
[  679.637581][T13002]  __cfg80211_leave_ocb+0x219/0x3f0
[  679.642804][T13002]  cfg80211_leave_ocb+0x53/0x70
[  679.647722][T13002]  cfg80211_change_iface+0x4f1/0xeb0
[  679.653186][T13002]  nl80211_set_interface+0x598/0x7d0
[  679.658513][T13002]  ? nl80211_dump_interface+0x5c0/0x5c0
[  679.664259][T13002]  ? mutex_lock_nested+0x17/0x20
[  679.669212][T13002]  genl_rcv_msg+0xbc6/0xf40
[  679.673738][T13002]  ? genl_bind+0x370/0x370
[  679.678189][T13002]  ? verify_lock_unused+0x140/0x140
[  679.683402][T13002]  ? verify_lock_unused+0x140/0x140
[  679.688623][T13002]  ? nl80211_dump_interface+0x5c0/0x5c0
[  679.694202][T13002]  netlink_rcv_skb+0x1e0/0x430
[  679.699007][T13002]  ? genl_bind+0x370/0x370
[  679.703462][T13002]  ? netlink_ack+0xb60/0xb60
[  679.708089][T13002]  ? __lock_acquire+0x7c60/0x7c60
[  679.713147][T13002]  ? preempt_count_add+0x8d/0x190
[  679.718188][T13002]  ? down_read+0x1aa/0x2e0
[  679.722614][T13002]  genl_rcv+0x24/0x40
[  679.726615][T13002]  netlink_unicast+0x774/0x920
[  679.731416][T13002]  netlink_sendmsg+0x8ab/0xbc0
[  679.736199][T13002]  ? netlink_getsockopt+0x560/0x560
[  679.741409][T13002]  ? aa_sock_msg_perm+0x94/0x150
[  679.746363][T13002]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  679.751655][T13002]  ? security_socket_sendmsg+0x7c/0xa0
[  679.757126][T13002]  ? netlink_getsockopt+0x560/0x560
[  679.762338][T13002]  ____sys_sendmsg+0x5a2/0x8c0
[  679.767122][T13002]  ? memset+0x1e/0x40
[  679.771121][T13002]  ? __sys_sendmsg_sock+0x30/0x30
[  679.776186][T13002]  ? import_iovec+0x6f/0xa0
[  679.780708][T13002]  ___sys_sendmsg+0x1f0/0x260
[  679.785420][T13002]  ? __sys_sendmsg+0x250/0x250
[  679.790211][T13002]  ? sock_do_ioctl+0x27c/0x2f0
[  679.795004][T13002]  ? __fdget+0x18b/0x210
[  679.799265][T13002]  __se_sys_sendmsg+0x190/0x250
[  679.804165][T13002]  ? __x64_sys_sendmsg+0x80/0x80
[  679.809110][T13002]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  679.815109][T13002]  ? lockdep_hardirqs_on+0x94/0x140
[  679.820322][T13002]  do_syscall_64+0x4c/0xa0
[  679.824747][T13002]  ? clear_bhb_loop+0x30/0x80
[  679.829428][T13002]  ? clear_bhb_loop+0x30/0x80
[  679.834118][T13002]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  679.840041][T13002] RIP: 0033:0x7f0ea857a9a9
[  679.844469][T13002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  679.864103][T13002] RSP: 002b:00007f0ea63e2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  679.872528][T13002] RAX: ffffffffffffffda RBX: 00007f0ea87a1fa0 RCX: 00007f0ea857a9a9
[  679.880519][T13002] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[  679.888528][T13002] RBP: 00007f0ea85fcd69 R08: 0000000000000000 R09: 0000000000000000
[  679.896523][T13002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  679.904509][T13002] R13: 0000000000000000 R14: 00007f0ea87a1fa0 R15: 00007ffe6b956a18
[  679.912515][T13002]  </TASK>
[  679.915918][T13002] Kernel Offset: disabled
[  679.920682][T13002] Rebooting in 86400 seconds..