last executing test programs:

10m41.916138481s ago: executing program 5 (id=206):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x3d, &(0x7f0000000000)='cgroup\x00\x8d\f\xf3\xcd\xc6X$\x01n-Hg\x144-.\xe2\x053\xe2\xf4\xbf[\xe9\xdddU\x91\x9d,\t\x8d\xc3@\x86,\x7f\xe2Z\xe8L\x80\xdbe~c\xbc\x9b\xcf\x9b\x1cH\x95\xf3'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="180000000000000000000000000000006112000000000000950000000000000051fa7824c74186dc02ec0696c37b64e3b24da3180100000005165c0f63cdc2e82818254950ee03568b8809a1ff4c7c4750eabfafcb9531b31e6a86827d1010c5a909ab98e00e19644a88e95ba26d1c9eecddb2d11c541418ceeb29b9b6829c6e433822bdb3cc85244aab60c1aae1314d7381fcfeb970bea672cf1e926f6a51479343144648a07a975bd89dc398712376610f6254f12495b4658319684387f6f3543205d4bc4ce05b8b961103673dff7f158052e62b20f05fd24108d8363d44fcd0f8f3647899762a17282a1914452d11f557c28f396eebdc858558db0276d14f9035f2b5f703e5be7e4acf8b78c2834ae5805fffee38a9a0033d520bcf6b08ede50899d4b9bdf85c71c5de2503dab358f42a2624c7daa9ed44039aab46419496362e54cfad05a0004ac71a003d7b85d07191bed4e5a890826300214146f7ed569985439baa355c2766dd056f5d79e454f3d873095e7a237bc06d035a8d601f21746d886419f38b34a495040000000071c2f0cce8c93cc17e9afa314fcb2ba15d646c66b0f65021829f87d988b4e2d71753b1549fa734f0b2e56dbd21ed2e09d0cddad721971637f384eed3034597c93e1c52f42cad0ed09c395dc6e9703660fefa1c80f467367c006f25caf0cbcefd13d68839893e39c588eb032905f91cafa4996dbf0c9be9654db05fb918086cc8228d02a3092c0830b8f587a5624515298b2d4eb2bde6f9a2eb83d53f717f13fa7552d92c51dbd32ea50c490ecd085d2811a7555c538cffffff7f00000000dd872244bfa64779e0f43a9c277e2910b7ccdc3d6726d34ad2101033a623ca2a49ad344884289130bc71cee2b7de62bf48129ae1af052a2d46a61625735a9eea7f793946b3229e861d8ea49806b3f7d4295f6b000000000000f337b1ceb2d8a65dcdcd895d7ba37098d2593fdaaef445af5bee02019c00000099b13ecda2a5b37de0519e974cba92ebaf0f701611a9b027ce04340bda4594cc9049c3f101629ab028145e004209ebe71a6fe84af50804000000000000004a27213354964e250a98fe357676f94b6947383e320fbb1118f586d5b9b1b977e1e1a4490ff67703a9b5900f8a6f8a805879dd91ec5ff435b219c53680c0ae04dcc4ef69b98fcb0d6b6a03a8b71a66b4e2876dc4b610444bf10000000000b046b6ae5d68156bcbd6d8793ade9a22ac8fc7857e5bbc14adc4e12b08f350c6789283b9990c72e64372a1f79769a8bdc632fc1a0b3417855d8b7d25ca4d404c23631ad3d2f55dcd385371c86170a4bca58c2b2b4eabc365f45bd10bb45b0c5bc354456a52be18d9b44014d20a3c51c8f013dade83562e73278662829e4f5a9ac00fd91178468c737f0872d97d38d11a176be5a0d7294c51eb161eddcfefa8837c7430721851ec2a107af0df6d43e732bbc01e76c66895eb85d36798d61622773591ee21ad9f6a1b73fa9cf3ffeb8a00b63af800a81d0fb8aa29df8b8ad6fbafefb5802a23cbdeeabceda5bfc5ff2fa5c1d61d04a1324794c6ed000696d9f04010c35474e690545c3d9bd836d4cef2585ba616e01c3d000000000000000000470ebc6f3453ecbf3047e4547d7632d3ad21798e730cb5d1da059b5bdb8107815dff995c0788906790406dfb4f8ee9f24ff94233e2e6e581e6e5de33a5f254c9a8b612547473c3001df3928dac9203b744619082421a8da7c00000000000000000000000000000018a73ef40cca690fb7595c6962984f8276677be6f66cbdbccf1896433808c9c84d74ac4a7c186a04a2250972f7acb156b21f9826b6acb7db32c4e3b3ec8b59fd972975edb1da872d81a35e4fda2f5cbde6b40bea20418c6e9dad30b791eea58f53e80fee4dd7fe08373ea2784fcd3a65261de71eb866458d2c22a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="180000000000000000000000000000006112000000000000950000000000000051fa7824c74186dc02ec0696c37b64e3b24da3180100000005165c0f63cdc2e82818254950ee03568b8809a1ff4c7c4750eabfafcb9531b31e6a86827d1010c5a909ab98e00e19644a88e95ba26d1c9eecddb2d11c541418ceeb29b9b6829c6e433822bdb3cc85244aab60c1aae1314d7381fcfeb970bea672cf1e926f6a51479343144648a07a975bd89dc398712376610f6254f12495b4658319684387f6f3543205d4bc4ce05b8b961103673dff7f158052e62b20f05fd24108d8363d44fcd0f8f3647899762a17282a1914452d11f557c28f396eebdc858558db0276d14f9035f2b5f703e5be7e4acf8b78c2834ae5805fffee38a9a0033d520bcf6b08ede50899d4b9bdf85c71c5de2503dab358f42a2624c7daa9ed44039aab46419496362e54cfad05a0004ac71a003d7b85d07191bed4e5a890826300214146f7ed569985439baa355c2766dd056f5d79e454f3d873095e7a237bc06d035a8d601f21746d886419f38b34a495040000000071c2f0cce8c93cc17e9afa314fcb2ba15d646c66b0f65021829f87d988b4e2d71753b1549fa734f0b2e56dbd21ed2e09d0cddad721971637f384eed3034597c93e1c52f42cad0ed09c395dc6e9703660fefa1c80f467367c006f25caf0cbcefd13d68839893e39c588eb032905f91cafa4996dbf0c9be9654db05fb918086cc8228d02a3092c0830b8f587a5624515298b2d4eb2bde6f9a2eb83d53f717f13fa7552d92c51dbd32ea50c490ecd085d2811a7555c538cffffff7f00000000dd872244bfa64779e0f43a9c277e2910b7ccdc3d6726d34ad2101033a623ca2a49ad344884289130bc71cee2b7de62bf48129ae1af052a2d46a61625735a9eea7f793946b3229e861d8ea49806b3f7d4295f6b000000000000f337b1ceb2d8a65dcdcd895d7ba37098d2593fdaaef445af5bee02019c00000099b13ecda2a5b37de0519e974cba92ebaf0f701611a9b027ce04340bda4594cc9049c3f101629ab028145e004209ebe71a6fe84af50804000000000000004a27213354964e250a98fe357676f94b6947383e320fbb1118f586d5b9b1b977e1e1a4490ff67703a9b5900f8a6f8a805879dd91ec5ff435b219c53680c0ae04dcc4ef69b98fcb0d6b6a03a8b71a66b4e2876dc4b610444bf10000000000b046b6ae5d68156bcbd6d8793ade9a22ac8fc7857e5bbc14adc4e12b08f350c6789283b9990c72e64372a1f79769a8bdc632fc1a0b3417855d8b7d25ca4d404c23631ad3d2f55dcd385371c86170a4bca58c2b2b4eabc365f45bd10bb45b0c5bc354456a52be18d9b44014d20a3c51c8f013dade83562e73278662829e4f5a9ac00fd91178468c737f0872d97d38d11a176be5a0d7294c51eb161eddcfefa8837c7430721851ec2a107af0df6d43e732bbc01e76c66895eb85d36798d61622773591ee21ad9f6a1b73fa9cf3ffeb8a00b63af800a81d0fb8aa29df8b8ad6fbafefb5802a23cbdeeabceda5bfc5ff2fa5c1d61d04a1324794c6ed000696d9f04010c35474e690545c3d9bd836d4cef2585ba616e01c3d000000000000000000470ebc6f3453ecbf3047e4547d7632d3ad21798e730cb5d1da059b5bdb8107815dff995c0788906790406dfb4f8ee9f24ff94233e2e6e581e6e5de33a5f254c9a8b612547473c3001df3928dac9203b744619082421a8da7c00000000000000000000000000000018a73ef40cca690fb7595c6962984f8276677be6f66cbdbccf1896433808c9c84d74ac4a7c186a04a2250972f7acb156b21f9826b6acb7db32c4e3b3ec8b59fd972975edb1da872d81a35e4fda2f5cbde6b40bea20418c6e9dad30b791eea58f53e80fee4dd7fe08373ea2784fcd3a65261de71eb866458d2c22a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000e40)=ANY=[@ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="0200000002"], 0x10)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000300)=ANY=[@ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="0200000002"], 0x10)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r4, r5, 0x2, 0x2, 0x0, @void, @value}, 0x10)
socketpair(0xa, 0x3, 0xff, &(0x7f0000000180))

10m41.446152111s ago: executing program 5 (id=208):
syz_usb_connect(0x0, 0x0, 0x0, &(0x7f0000000c40)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x403}}]})
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000012c0)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e24}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
r1 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4)
sendmsg$IPVS_CMD_GET_CONFIG(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[], 0x14}}, 0x0)
sendmsg$inet6(r0, &(0x7f0000001500)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000300)="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", 0xfb}, {&(0x7f0000000400)="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", 0x2d6}], 0x2}, 0x40001080)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000280)=@gcm_256={{0x303, 0x36}, "7221de4d120f747c", "e0fb3b37900597830d49c7df36e7d0e14744e319c4f11d6200", "e39382f8"}, 0x38)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r1)

10m39.306048679s ago: executing program 5 (id=214):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)={[{@utf8no}, {@utf8no}, {@utf8}, {@fat=@check_strict}, {@shortname_mixed}, {@numtail}, {@rodir}, {@fat=@codepage={'codepage', 0x3d, '1251'}}, {@numtail}, {@iocharset={'iocharset', 0x3d, 'macroman'}}, {@shortname_mixed}, {@shortname_winnt}, {@utf8no}, {@shortname_lower}]}, 0x26, 0x336, &(0x7f00000001c0)="$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")
getpeername$inet6(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x48, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000001c0)={0x0, &(0x7f0000000080)})
creat(&(0x7f0000003a80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10)
symlink(&(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000000)='./cgroup\x00')

10m7.629092356s ago: executing program 32 (id=249):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
close(0x4)
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/ipc\x00')
accept4$netrom(0xffffffffffffffff, 0x0, 0x0, 0x80800)
unshare(0x6a040000)
r1 = socket(0x8, 0x3, 0x0)
ioctl$sock_netrom_SIOCADDRT(r1, 0x6180, 0x0)
syz_mount_image$udf(&(0x7f0000000040), &(0x7f0000000000)='./file2\x00', 0x2000040, &(0x7f0000001b80)=ANY=[@ANYBLOB='gid=forget,umask=00000000000000000000003,gid=', @ANYRESDEC=r1, @ANYBLOB=',session=00000000000000043620,gid=ignore,iocharset=euc-jp,gid=', @ANYRESDEC=r0, @ANYBLOB="2c6164696e6963622c6d6f64653d30303030303030303030303030303030303030303030332c6e6f7374726963742c009b801a9990a34c426430bf3757fbcea5d9a21b29b4ae2c6d10e74873111016bc74ff654722640a72d8cc5e210fef2b359e9e61ade82c60025773de99df3af6548534bfdef68d88ae15c726", @ANYBLOB="4b80b72114429eaa837d4a74582a54b5105fb47c5205b2d1197faf7e519f6d4c1859b4417ee27635e02785225f1c60273bca42188f2e8b0de01208853c66e85a6cc666fbd222180a6bee54722a73f5af35742ae01d04232c038a3a4d76828982c2ba9747eb84f6ef9e7892a03f2f908f1ed2569e8c950c63dfb2dbeccd336dca517cf936910bc09c1acf72622f5d1279a2724a074449df7df82f124852d7320c5c4c22"], 0xfe, 0xc2d, &(0x7f0000000f40)="$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")
ioctl$DRM_IOCTL_DMA(0xffffffffffffffff, 0xc0406429, 0x0)
write$binfmt_script(r0, &(0x7f0000001dc0)={'#! ', './file0'}, 0xb)

10m2.417039137s ago: executing program 33 (id=259):
read$FUSE(0xffffffffffffffff, &(0x7f000000c3c0)={0x2020}, 0x2020)
write$FUSE_ATTR(0xffffffffffffffff, &(0x7f00000001c0)={0x78, 0x0, 0x0, {0x0, 0xc, 0x0, {0x0, 0x0, 0x6, 0x2, 0x0, 0x7}}}, 0x78)
prlimit64(0x0, 0xe, &(0x7f0000000300)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x4000000000000, 0x40, &(0x7f0000002300)=@raw={'raw\x00', 0xc01, 0x3, 0x2298, 0x1100, 0x5002004a, 0x0, 0x0, 0x0, 0x2200, 0x3c8, 0x3c8, 0x2200, 0x3c8, 0x3, 0x0, {[{{@uncond, 0x60, 0x10a0, 0x1100, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030}, {0x1, 0x0, 0x0, 0x0, './cgroup.cpu/syz1\x00'}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x1, [0x2, 0x1, 0x7], 0x6, 0x2}, {0x2, [0x0, 0x6, 0x4, 0x9, 0x0, 0x89ce99baffcf6900], 0x1, 0x1}}}}, {{@uncond, 0x0, 0x10a0, 0x1100, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030}, {0x0, 0x0, 0x1, 0x1, './cgroup.net/syz1\x00', 0x2, {0x5}}}]}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@loopback, [0xffffff00, 0xff000000, 0xff, 0xff0000ff], 0x4e22, 0x4c20, 0x4e24, 0x4e23, 0xc9, 0x0, 0x3b, 0x83, 0x25}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x22f8)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f0000000000)={0x2, 'vlan0\x00', 0x3}, 0x18)

9m46.434197595s ago: executing program 2 (id=314):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000200)='kfree_skb\x00', r1}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e8500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000080000000050000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='kfree_skb\x00', r3}, 0x10)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$tipc(r4, &(0x7f0000004440)={&(0x7f0000000ec0)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x2}}, 0x10, 0x0}, 0x0)

9m46.307872754s ago: executing program 2 (id=315):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000740)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x400}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000c00)={0x44, 0x0, &(0x7f0000000a80)=[@transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

9m46.148780693s ago: executing program 2 (id=316):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x1c000000}, {{0x18, 0x1, 0x1, 0x0, r3}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x2000}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1000000}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x6, 0x0, 0xd, 0x9, 0x0, 0x0, 0xffffff1f}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x7, 0x1, 0xb, 0x7, 0x2}, {0x7, 0x0, 0x0, 0x8, 0x0, 0x0, 0xfffffdff}, {0x7, 0x1, 0xb, 0x4, 0x9}, {}, {0x4, 0x0, 0x6}, {0x18, 0x2, 0x2, 0x0, r3}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

9m44.933858201s ago: executing program 2 (id=318):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x200000000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000000c0)={[{@errors_remount}, {@init_itable_val={'init_itable', 0x3d, 0x4}}, {@mblk_io_submit}, {@minixdf}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [], 0x2e}, 0x84, 0x450, &(0x7f0000000940)="$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")

9m43.015960804s ago: executing program 34 (id=291):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
syz_clone3(0x0, 0x0)
shmctl$IPC_SET(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
r1 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
connect$bt_rfcomm(r1, &(0x7f0000000040)={0x1f, @none, 0x2}, 0xa)
syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
pipe(0x0)
shutdown(r1, 0x1)

9m42.492497987s ago: executing program 2 (id=321):
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x1a3089, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
symlink(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
setpgid(r0, 0x0)
setpgid(0x0, r0)
mount(0x0, &(0x7f0000000300)='./file1\x00', &(0x7f0000000080)='tmpfs\x00', 0x800, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)

9m42.060028303s ago: executing program 2 (id=322):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'lo\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x44, 0x24, 0xd0f, 0x0, 0xffffffff, {0x60, 0x0, 0x0, r1, {0x0, 0xb}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_TARGET={0x8, 0x8, 0x8}, @TCA_CAKE_RTT={0x8, 0x7, 0x800}]}}]}, 0x44}}, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r2, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r2, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$RXRPC_MIN_SECURITY_LEVEL(0xffffffffffffffff, 0x110, 0x2, 0x0, 0x0)
sendmmsg$inet6(r3, &(0x7f0000003c40)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="03", 0x1}], 0x1}}], 0x1, 0x0)

9m26.875180196s ago: executing program 35 (id=322):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'lo\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x44, 0x24, 0xd0f, 0x0, 0xffffffff, {0x60, 0x0, 0x0, r1, {0x0, 0xb}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_TARGET={0x8, 0x8, 0x8}, @TCA_CAKE_RTT={0x8, 0x7, 0x800}]}}]}, 0x44}}, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r2, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r2, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$RXRPC_MIN_SECURITY_LEVEL(0xffffffffffffffff, 0x110, 0x2, 0x0, 0x0)
sendmmsg$inet6(r3, &(0x7f0000003c40)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="03", 0x1}], 0x1}}], 0x1, 0x0)

8m46.170556684s ago: executing program 5 (id=214):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)={[{@utf8no}, {@utf8no}, {@utf8}, {@fat=@check_strict}, {@shortname_mixed}, {@numtail}, {@rodir}, {@fat=@codepage={'codepage', 0x3d, '1251'}}, {@numtail}, {@iocharset={'iocharset', 0x3d, 'macroman'}}, {@shortname_mixed}, {@shortname_winnt}, {@utf8no}, {@shortname_lower}]}, 0x26, 0x336, &(0x7f00000001c0)="$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")
getpeername$inet6(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x48, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000001c0)={0x0, &(0x7f0000000080)})
creat(&(0x7f0000003a80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10)
symlink(&(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000000)='./cgroup\x00')

7m57.780794793s ago: executing program 6 (id=503):
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
pipe(0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet6(r1, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r1, &(0x7f00000001c0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0xfffffffd, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f0000000980)=0x9, 0x4)
recvmmsg(r1, &(0x7f0000003000)=[{{0x0, 0x0, 0x0}, 0x9}], 0x400000000000134, 0x103, 0x0)

7m54.978571968s ago: executing program 6 (id=506):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="180000000000000000000000000000006112000000000000950000000000000051fa7824c74186dc02ec0696c37b64e3b24da3180100000005165c0f63cdc2e82818254950ee03568b8809a1ff4c7c4750eabfafcb9531b31e6a86827d1010c5a909ab98e00e19644a88e95ba26d1c9eecddb2d11c541418ceeb29b9b6829c6e433822bdb3cc85244aab60c1aae1314d7381fcfeb970bea672cf1e926f6a51479343144648a07a975bd89dc398712376610f6254f12495b4658319684387f6f3543205d4bc4ce05b8b961103673dff7f158052e62b20f05fd24108d8363d44fcd0f8f3647899762a17282a1914452d11f557c28f396eebdc858558db0276d14f9035f2b5f703e5be7e4acf8b78c2834ae5805fffee38a9a0033d520bcf6b08ede50899d4b9bdf85c71c5de2503dab358f42a2624c7daa9ed44039aab46419496362e54cfad05a0004ac71a003d7b85d07191bed4e5a890826300214146f7ed569985439baa355c2766dd056f5d79e454f3d873095e7a237bc06d035a8d601f21746d886419f38b34a495040000000071c2f0cce8c93cc17e9afa314fcb2ba15d646c66b0f65021829f87d988b4e2d71753b1549fa734f0b2e56dbd21ed2e09d0cddad721971637f384eed3034597c93e1c52f42cad0ed09c395dc6e9703660fefa1c80f467367c006f25caf0cbcefd13d68839893e39c588eb032905f91cafa4996dbf0c9be9654db05fb918086cc8228d02a3092c0830b8f587a5624515298b2d4eb2bde6f9a2eb83d53f717f13fa7552d92c51dbd32ea50c490ecd085d2811a7555c538cffffff7f00000000dd872244bfa64779e0f43a9c277e2910b7ccdc3d6726d34ad2101033a623ca2a49ad344884289130bc71cee2b7de62bf48129ae1af052a2d46a61625735a9eea7f793946b3229e861d8ea49806b3f7d4295f6b000000000000f337b1ceb2d8a65dcdcd895d7ba37098d2593fdaaef445af5bee02019c00000099b13ecda2a5b37de0519e974cba92ebaf0f701611a9b027ce04340bda4594cc9049c3f101629ab028145e004209ebe71a6fe84af50804000000000000004a27213354964e250a98fe357676f94b6947383e320fbb1118f586d5b9b1b977e1e1a4490ff67703a9b5900f8a6f8a805879dd91ec5ff435b219c53680c0ae04dcc4ef69b98fcb0d6b6a03a8b71a66b4e2876dc4b610444bf10000000000b046b6ae5d68156bcbd6d8793ade9a22ac8fc7857e5bbc14adc4e12b08f350c6789283b9990c72e64372a1f79769a8bdc632fc1a0b3417855d8b7d25ca4d404c23631ad3d2f55dcd385371c86170a4bca58c2b2b4eabc365f45bd10bb45b0c5bc354456a52be18d9b44014d20a3c51c8f013dade83562e73278662829e4f5a9ac00fd91178468c737f0872d97d38d11a176be5a0d7294c51eb161eddcfefa8837c7430721851ec2a107af0df6d43e732bbc01e76c66895eb85d36798d61622773591ee21ad9f6a1b73fa9cf3ffeb8a00b63af800a81d0fb8aa29df8b8ad6fbafefb5802a23cbdeeabceda5bfc5ff2fa5c1d61d04a1324794c6ed000696d9f04010c35474e690545c3d9bd836d4cef2585ba616e01c3d000000000000000000470ebc6f3453ecbf3047e4547d7632d3ad21798e730cb5d1da059b5bdb8107815dff995c0788906790406dfb4f8ee9f24ff94233e2e6e581e6e5de33a5f254c9a8b612547473c3001df3928dac9203b744619082421a8da7c00000000000000000000000000000018a73ef40cca690fb7595c6962984f8276677be6f66cbdbccf1896433808c9c84d74ac4a7c186a04a2250972f7acb156b21f9826b6acb7db32c4e3b3ec8b59fd972975edb1da872d81a35e4fda2f5cbde6b40bea20418c6e9dad30b791eea58f53e80fee4dd7fe08373ea2784fcd3a65261de71eb866458d2c22a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000e40)=ANY=[@ANYRES32=r0, @ANYRES32=<r2=>r1, @ANYBLOB="0200000002"], 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="180000000000000000000000000000009500160000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='task_newtask\x00', r3}, 0x10)
r5 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
close(r5)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000680)=ANY=[@ANYRES32=r6, @ANYRES32=r2, @ANYBLOB="0200000006"], 0x10)

7m54.962558929s ago: executing program 6 (id=507):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000000)='dctcp\x00', 0x6)
bind$inet6(r1, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback, 0x7}, 0x1c)
setsockopt$inet6_tcp_int(r1, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r1, &(0x7f0000000040)="008c", 0x2, 0x20000045, &(0x7f00000002c0)={0xa, 0x2, 0x395, @empty}, 0x1c)
syz_mount_image$nilfs2(&(0x7f0000000100), &(0x7f0000000080)='./file1\x00', 0x0, &(0x7f0000000400)=ANY=[], 0x1, 0xf04, &(0x7f0000000f40)="$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")
r2 = openat(0xffffffffffffff9c, 0x0, 0x105042, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x2, 0x11, r2, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='cubic\x00', 0x6)
shutdown(r1, 0x1)

7m54.961581965s ago: executing program 8 (id=508):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(r3, 0x0, 0x0, 0x1001f3)

7m53.685015112s ago: executing program 8 (id=510):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, 0x0)
socket(0x0, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, 0x0)
socket$packet(0x11, 0x2, 0x300)
r1 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000009e602206d0414c340000000000109022400010400a000090400000103010100093700086ce82201000905815f"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f0000000200)={0x24, &(0x7f0000000240)=ANY=[@ANYBLOB="400d10"], 0x0, 0x0, 0x0}, 0x0)
msgget(0x3, 0x280)
msgctl$IPC_STAT(0xffffffffffffffff, 0x2, 0x0)
getresuid(0x0, 0x0, 0x0)
chdir(0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x1, 0x9)

7m50.702293548s ago: executing program 8 (id=517):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f00000055c0), 0x400023c, 0x300, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0xe429, @none, 0x401}, 0xe)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000009, 0x200000006c832, 0xffffffffffffffff, 0x0)

7m47.959550348s ago: executing program 8 (id=522):
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc01064b5, 0x0)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002800), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000140))
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000001740)=""/192, &(0x7f0000000140)=""/92})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000001500)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=""/4096, 0xeeef0000})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)

7m47.659066814s ago: executing program 6 (id=524):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="580000001400192340834b8050d0e1cc6ba56aa800ff000000000000000058000b4824ca945f640094588a39e4e53a7827d5fb0affc4c3b500ff0325010ebc000000000000008000f0fffeffe809005300fff5dd000000100002", 0x5a}], 0x1)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=@newlink={0x4c, 0x10, 0x403, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x74, 0x0, 0x800, 0x55007}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_STARTUP_QUERY_CNT={0x8, 0x1d, 0xc}, @IFLA_BR_MCAST_LAST_MEMBER_CNT={0x8, 0x1c, 0x5}, @IFLA_BR_MCAST_HASH_MAX={0x8, 0x1b, 0x1}]}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x800}, 0x4044080)
ioctl$TCSETSW2(r2, 0x402c542c, &(0x7f0000000000)={0x0, 0x0, 0x0, 0xffffffff, 0x0, "01000000000e65300000000800000200"})
readv(r2, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/68, 0x44}], 0x1)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000240)=0x6)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x200045a, &(0x7f0000000100)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000", @ANYRES16, @ANYRESHEX], 0x1, 0x2a1, &(0x7f0000000f40)="$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")
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)

7m45.732531462s ago: executing program 8 (id=528):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)
creat(&(0x7f0000000240)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r4 = dup(r3)
write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r4, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x800000, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@noxattr}, {@cache_fscache}, {@cachetag={'cachetag', 0x3d, '/dev/ttyS3\x00'}}], [], 0x6b}})
chmod(&(0x7f0000000140)='./file0\x00', 0x0)
umount2(&(0x7f0000000540)='.\x00', 0x2)

7m43.652131186s ago: executing program 8 (id=532):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="6ee3b75adc0fb0a1236de98d42f16111b1b03163dd7c569e5d903c35c5f3d870a32c71f1a25a0ffaae3f0e9638edc312b85040fb1f0042a0967b2f03153b455d87f7d2997b7062271e3b6b6aaecd4d5124303208d1bb08f9511c58b6e225de4af1c158a63f419181d3167e274c418262f02966103f5b356237afe1aa7241933a33072f3eeb746539e115f1c71eb27d5a9852f6793c76b0e3708d173769ca4bcfabdd0f8eb83fb39f50f2b8f99936365094217ba1f90958cd3b18024050406a55304627704e0dcf7c500656e793a986"], 0x7c}}, 0x400c880)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xffffffff)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x10, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)

7m28.497990557s ago: executing program 36 (id=532):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="6ee3b75adc0fb0a1236de98d42f16111b1b03163dd7c569e5d903c35c5f3d870a32c71f1a25a0ffaae3f0e9638edc312b85040fb1f0042a0967b2f03153b455d87f7d2997b7062271e3b6b6aaecd4d5124303208d1bb08f9511c58b6e225de4af1c158a63f419181d3167e274c418262f02966103f5b356237afe1aa7241933a33072f3eeb746539e115f1c71eb27d5a9852f6793c76b0e3708d173769ca4bcfabdd0f8eb83fb39f50f2b8f99936365094217ba1f90958cd3b18024050406a55304627704e0dcf7c500656e793a986"], 0x7c}}, 0x400c880)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xffffffff)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x10, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)

7m9.141886218s ago: executing program 5 (id=214):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)={[{@utf8no}, {@utf8no}, {@utf8}, {@fat=@check_strict}, {@shortname_mixed}, {@numtail}, {@rodir}, {@fat=@codepage={'codepage', 0x3d, '1251'}}, {@numtail}, {@iocharset={'iocharset', 0x3d, 'macroman'}}, {@shortname_mixed}, {@shortname_winnt}, {@utf8no}, {@shortname_lower}]}, 0x26, 0x336, &(0x7f00000001c0)="$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")
getpeername$inet6(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x48, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000001c0)={0x0, &(0x7f0000000080)})
creat(&(0x7f0000003a80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10)
symlink(&(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000000)='./cgroup\x00')

7m8.008415935s ago: executing program 6 (id=524):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="580000001400192340834b8050d0e1cc6ba56aa800ff000000000000000058000b4824ca945f640094588a39e4e53a7827d5fb0affc4c3b500ff0325010ebc000000000000008000f0fffeffe809005300fff5dd000000100002", 0x5a}], 0x1)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=@newlink={0x4c, 0x10, 0x403, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x74, 0x0, 0x800, 0x55007}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_STARTUP_QUERY_CNT={0x8, 0x1d, 0xc}, @IFLA_BR_MCAST_LAST_MEMBER_CNT={0x8, 0x1c, 0x5}, @IFLA_BR_MCAST_HASH_MAX={0x8, 0x1b, 0x1}]}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x800}, 0x4044080)
ioctl$TCSETSW2(r2, 0x402c542c, &(0x7f0000000000)={0x0, 0x0, 0x0, 0xffffffff, 0x0, "01000000000e65300000000800000200"})
readv(r2, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/68, 0x44}], 0x1)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000240)=0x6)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x200045a, &(0x7f0000000100)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000", @ANYRES16, @ANYRESHEX], 0x1, 0x2a1, &(0x7f0000000f40)="$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")
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)

6m31.279305908s ago: executing program 7 (id=676):
socket$inet6_sctp(0xa, 0x5, 0x84)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './mnt\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x6, 0x8, 0x0, 0x3}, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000240)='net/unix\x00')
r2 = add_key$user(&(0x7f0000000000), &(0x7f00000001c0)={'syz', 0x0}, &(0x7f0000000540)="bc3009bb66682c9d4233b0cc644f5fdae5b9d17f7ada03bc77aea173022c18232e1fb162caf50d08fda40c6e9c515c4a2c7245660296c0460cbff563b781695432f5a83f5ab8979bf6fd1c17aaa22ada927f1feb5074053514edf5734d63b2b58edc5b848d6fa38f7956549438addc5e72bb0cdbce326b0b3f673b01749491", 0x7f, 0xfffffffffffffffe)
r3 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r2, r3, r2}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)

6m24.271159888s ago: executing program 7 (id=683):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(r3, 0x0, 0x0, 0x1001f3)

6m23.186367687s ago: executing program 7 (id=684):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r0, 0x0, 0x4}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)=ANY=[@ANYBLOB="200000002d00091327bd70000000000006"], 0x20}}, 0x84)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000007c0)=ANY=[@ANYBLOB="280300002d00090027bd70000000000004"], 0x328}}, 0x84)
readv(r1, &(0x7f0000000740)=[{&(0x7f0000000180)=""/198, 0xc6}], 0x1)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), r2)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(r1, &(0x7f00000005c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000580)={&(0x7f0000000800)={0x28, r3, 0x4, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x916, 0xf}}}}}, 0x28}}, 0x20004000)
r5 = fsmount(0xffffffffffffffff, 0x0, 0x7b)
sendmsg$DCCPDIAG_GETSOCK(r5, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8001}, 0x8004005)

6m20.263378577s ago: executing program 7 (id=692):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x891018, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
mount$bind(&(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x12f451, 0x0)
mount$bind(&(0x7f00000000c0)='.\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x80700e, 0x0)
umount2(&(0x7f0000000480)='./file0\x00', 0x2)

6m19.313770616s ago: executing program 7 (id=696):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x5, 0x1000086}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x43, &(0x7f0000000040)=0x2)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="a000000010"], 0xa0}}, 0x0)
ptrace(0x10, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000040)={r1, r1, r1}, &(0x7f0000001cc0)=""/199, 0xc7, &(0x7f00000000c0)={&(0x7f0000000000)={'sha512-ssse3\x00'}})

6m11.28722998s ago: executing program 7 (id=713):
r0 = fsopen(&(0x7f00000001c0)='devpts\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x7d7f, 0xfffffffc, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)

6m10.085591358s ago: executing program 37 (id=713):
r0 = fsopen(&(0x7f00000001c0)='devpts\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x7d7f, 0xfffffffc, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)

2m33.761867596s ago: executing program 0 (id=1188):
signalfd4(0xffffffffffffffff, &(0x7f0000000080), 0x8, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0xd, 0x10}}, [@qdisc_kind_options=@q_fq={{0x7}, {0xc, 0x2, [@TCA_FQ_FLOW_MAX_RATE={0x8, 0x7, 0x10001}]}}]}, 0x38}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r4, 0xfffffffc)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000c80)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}, {0xd, 0xfff2}}, [@qdisc_kind_options=@q_fq={{0x7}, {0xc, 0x2, [@TCA_FQ_BUCKETS_LOG={0x8, 0x8, 0x1}]}}]}, 0x38}}, 0x0)

2m32.626190886s ago: executing program 0 (id=1194):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x1, 0x0)
fchdir(r1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f000001aa40)=""/102400, 0x19000)
r3 = open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0)
ioctl$vim2m_VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, 0x0)
write$FUSE_CREATE_OPEN(r3, &(0x7f0000000180)={0xa0, 0xfffffffffffffff5, 0x0, {{0x4, 0x1, 0x5, 0x6, 0x3, 0x1, {0x1, 0x180, 0xff, 0x5, 0x100, 0x7cf4, 0x9, 0x7ffffffd, 0xfffffffe, 0x8000, 0x0, 0xee00, 0x0, 0x3ff, 0x1}}, {0x0, 0x11}}}, 0xa0)
sendfile(r3, r3, &(0x7f0000000080)=0x2, 0x7f03)

2m29.103574929s ago: executing program 0 (id=1198):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000000)=0x140, 0x4)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_test', 0x141a82, 0x4)
sendfile(r1, r1, &(0x7f0000000000)=0x1, 0x4)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
recvmsg(r3, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x42d681a14bc7351c)
connect$packet(r3, &(0x7f0000000000)={0x1f, 0xf8, 0x0, 0x1, 0x2, 0x6, @broadcast}, 0x14)
shutdown(r3, 0x1)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0x72, &(0x7f0000000140)={@multicast, @empty, @val={@void, {0x8100, 0x5, 0x0, 0x1}}, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "02adf7", 0x38, 0x3a, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @time_exceed={0x2, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "fd9063", 0x0, 0x3a, 0x0, @loopback, @rand_addr=' \x01\x00', [], "1e520b4c951ee12e"}}}}}}}, 0x0)
sendmmsg$inet(r0, &(0x7f0000003240)=[{{&(0x7f0000000100)={0x2, 0x4e23, @empty}, 0x10, &(0x7f00000016c0)=[{&(0x7f0000001540)="94", 0xffe3}], 0x1}}], 0x1, 0x4000800)
recvfrom(r0, &(0x7f0000000200)=""/131, 0xf92e58a67d38802c, 0x2101, 0x0, 0x0)

2m27.601487428s ago: executing program 0 (id=1201):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080", @ANYBLOB], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet(0xa, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f00000002c0)=@mangle={'mangle\x00', 0x44, 0x6, 0x410, 0x238, 0x238, 0x238, 0x98, 0x98, 0x378, 0x378, 0x378, 0x378, 0x378, 0x6, 0x0, {[{{@ip={@loopback, @multicast1=0xe0007600, 0x0, 0x0, 'gre0\x00', 'ip6gre0\x00', {}, {}, 0x0, 0x0, 0x11}, 0x7a00, 0x70, 0x98}, @inet=@DSCP={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0x0, 0x0, 'wg1\x00', 'nicvf0\x00', {}, {}, 0x11}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'vlan1\x00', 'nr0\x00'}, 0x0, 0xb8, 0x100, 0x0, {}, [@common=@unspec=@limit={{0x48}, {0x0, 0x28, 0x0, 0x0, 0x0, 0x1}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@dev={0xfe, 0x80, '\x00', 0x18}, 'veth0_virt_wifi\x00', {0x7}}}}, {{@ip={@rand_addr, @private, 0xffffffff, 0xff, 'syzkaller0\x00', 'veth1_to_team\x00', {}, {0xff}}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @empty}}}, {{@ip={@empty, @empty, 0xff000000, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x4, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x470)

2m26.158156051s ago: executing program 0 (id=1206):
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x400, 0xe5808380, 0x2, 0xffff, 0x0, 0x9, 0x0, 0x0, 0x8, 0x10008}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d838aae8c05dd22d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0)
io_setup(0x2, &(0x7f0000000200)=<r3=>0x0)
io_submit(r3, 0x140b, &(0x7f0000000700)=[&(0x7f0000000440)={0x18, 0x700fbff, 0x4, 0x1, 0x0, r2, &(0x7f0000000180)='\x00', 0x1001}])
dup3(r0, r2, 0x6700000000000000)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r4, 0xffffffffffffffff, 0x0)

2m25.720698208s ago: executing program 0 (id=1207):
r0 = accept4$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x0, @mcast1}, &(0x7f0000000100)=0x1c, 0x800)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000280)={<r1=>0x0, @in={{0x2, 0x4e22, @rand_addr=0x64010101}}, 0x3, 0x4, 0x9, 0xd47, 0xc2, 0xe, 0x5}, &(0x7f0000000140)=0x9c)
syz_mount_image$minix(&(0x7f00000000c0), &(0x7f0000000080)='./file1\x00', 0x1010002, &(0x7f00000005c0)=ANY=[], 0x1, 0x1da, &(0x7f00000007c0)="$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")
sync()
truncate(&(0x7f0000000040)='./file1\x00', 0x1001bfc)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f00000001c0)={r1, 0x6b, "ea61926cc0f008080da5180c7dfc3f34b41d42cd271b922f4f8f783440c0d35e68cf778907d76de9e7db30e1978536b8fecc813482e41c8ee77bfbc28b2e62e0a2cae00e57425d069d972c6334c7fee15af927908ec0730d7053967e8887dc35f74afb30c95c66d1926b50"}, &(0x7f0000000340)=0x73)
socket$inet_udp(0x2, 0x2, 0x0)
syz_mount_image$nilfs2(&(0x7f0000000140), &(0x7f0000000100)='./file0\x00', 0x1080c, &(0x7f0000000180)=ANY=[], 0x3, 0xa61, &(0x7f0000001c00)="$eJzs3U2MG1cdAPCxd735LHFKQkNa2oRCWwHdbXZD+IigqZoLUVNxq1RxidK0RKQBkUrQKockJ260isIN8SFOvVSAkOgFRT1xqUQjcempcOBAFKRIHKAlMVrve177H7tjZ3ft9fr3k8bPM+/Z7413Znbmzbz3CmBiVZuvtebrlbcvH/3nI//Ysvj+yVaKevN1um1uMXUlzU+H7/tgaim8dfP8yW5hpZhvvub54tkbrc9uK4riQrGvuFrUi71Xrr3x7vwzxy8eu7T/vTcPX1+LdQcAgEnz7auHD+7+21/u3/nhWw8eKTa1lufz83qa357O+4+kE/98/l8tOucrbVO7mZBuOk3VkG6qS7r2fGo53ebOz8X8Z8L31nqk21SS/1Tbsm7rDeMsb8f1olKd7ZivVmdnl67Ji+Z1/Uxl9uzpMy+eG1FBgVX374eKothnMk3a1NjR2glGXpbRTW2/AsBIxfuFd7gQaxZWpvVt0/3lf+OpavfPwyoY9vYv//j9neUYdv5l6/+bi444rJ7+t6bNa1qO1ZbXK+9H29N8vI8Qn18a9PiTv28qfF+tz3L2uo8wLvcXepVzasjluFu9yh+3i43qGynMv8M3Q3z7/hP/puPyNwa6+8+6q//fsly4kZdloGnzmJbbNMFTYzSHHWAMxOfmGkmOj8/1xfhNJfGbS+K3lMRvLYnfVhIPk+z3r/y0eL2yfJ0fr+lv3Tzf3Fn6rQ/L9Wz3pPATA5Yn1kcOWh8Xn/sd1Erzj88Tw3r2xxPPnfrqC89fW3r+v9La/m+n7X1fmq+nfetqSpDrC2O9euvZ/3pnPtUe6e4N5bmnS/rm+12d6Sq7lr+naDvO3FGOPZ2f29Er3QOd6eoh3ZY0xbsg8fxka/hcPv/Ix9X8e02H9a2F9ZgJ5cjHlZ0pHK+7MaxXeXvs9fx/3j73FLXKi6fPnHoizeft9M9TtU2Lyw8MudzAyvXb/mdP0dn+Z3trea3aflzYsby80n5cqIfl8z2WL6T5/H/uu1NbmstnT37/zAurvfIw4c69+tr3Tpw5c+qH3nizcd8Uxbooxji9GfWRCVhrc6+8/IO5c6++9vjpl0+8dOqlU2cXDh1amJ8/9LWFg3PN8/q59rN7YCNZ/qc/6pIAAAAAAAAAAAAA/frRsaPX/vrOV95fav+/3P4vt//PT/7m9v8/Ce3/Yzv53A4+twPc2SW+mSZ0sDoT0tXS9MlQ3l0hn93hc59KYWscv9T+P2cX+3XN5bkvLI/99+Z0oTuBzv5SunT+EccL/GwKL6Xw13d+BIan8vPui1NY1r913m/zpq9fivGU/265P5Pcj0lu/92rX6d8/N85hDKy+obRnHDU6wh096911//3Rp/arhhGXhbTeptuNRqNYebXaBjFA1gfRj3+Z673zOHZP31r8+KUk914qvN4GfsvhZUY9fiXI8s/VyxO6vr3mf9qj//ZGv+u7+NfGDGvfnf5/vcX199vy7bY22/+cf1zP9C7Bsv/w5R/XptHi/7yb/wq5B9vCPXpo5D/1j7zj+t/edCMU4b/S/nnn+2xh/vNf+kLKtXOcsR643z/L9YbZ7fC+ue+PQf++9/lQI23U/4wycZlnNmeegy0O8zxf6srGP+3l/gcxpfTfD4Q5ucc4ngng5Y/P1+R/w/sDt9fKfn/Zvzf8fb1FJbtD3n837w91rvMV9vma11+27E/1sAG84H7f6Yxn5pnNOugHOM4NRqNta3QKjHSzBn57z/q64RR5z/q379MHP83nsPH8X9jfBz/N8bH8X9jfLNe8aPlQXtjfBz/N/6ecfzfGH9fyDeOD7ynJP7TJfF7S+LvL4l/oCT+MyXx+0viHyyJf6gk/t6S+IdL4j9XEv/5kvhHSuIf+/j4hR+XfH6jy+1RJnX9YZLF9nn2f5gc+f5Pr/1/V0k8ML5+9taBp5//3XfqS+3/Z1r1Ifk+3pE0X0vXzvF6KdafTKW4d9L830P8eq/vgEkS+8+I/98fLYkHxld+zsv+DROo0r3Hnn77rep1ns94+UIKv5jCL6Xw8RTOpnAuhQdSOD+k8rE2nv7tHw6/Xlm+3t8R4vt9njy2B4r9RC30WZ5YPzDo8+yxH79BrTT/u2wOBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDLV5uvBg3sqRXHl7ctHnzt+em5xyZOtFPXm63TbXK31uaJ4IoVTKfxlenPr5vmT7eHtFFaK+aJSVFrLi2dvtHLaVhTFhWJfcbWoF3uvXHvj3flnjl88dmn/e28evr52vwAAAABsfP8PAAD//+abGAs=")
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file3\x00', 0x0, 0x0)
r2 = syz_open_dev$mouse(&(0x7f00000000c0), 0x0, 0x2042)
syz_open_dev$tty20(0xc, 0x4, 0x0)
r3 = syz_open_dev$evdev(&(0x7f0000000000), 0x3, 0x822b01)
read$FUSE(r2, 0x0, 0x0)
write$char_usb(r3, &(0x7f0000000040)="e2", 0x918)

2m10.086083381s ago: executing program 38 (id=1207):
r0 = accept4$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x0, @mcast1}, &(0x7f0000000100)=0x1c, 0x800)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000280)={<r1=>0x0, @in={{0x2, 0x4e22, @rand_addr=0x64010101}}, 0x3, 0x4, 0x9, 0xd47, 0xc2, 0xe, 0x5}, &(0x7f0000000140)=0x9c)
syz_mount_image$minix(&(0x7f00000000c0), &(0x7f0000000080)='./file1\x00', 0x1010002, &(0x7f00000005c0)=ANY=[], 0x1, 0x1da, &(0x7f00000007c0)="$eJzs201u00AYxvHHTmKnBcr3hhUSC9gQQxoJuqMH4ALsqtZUFS4gyqYVEnTDPTgGO27CBRIJTmBkx1HiEE/8QeKE/H9Sm7cjPzMTqa87rloB2Fg34s+WLLXiKgzDz/clvXopqWmMOkvZIICFCa1h02dxZg+3zSkA66Hxa/a4m9ng30eFzV0AWGeD/UZ8DvhhST9/fzrsJx+tnOeHwb4tNZIvJvKO1M6Vv7Ti13tNqT+Rd5WewPqScX75Nsw/VDq/lXf/yfrbU/ntecHokSlyaccvjx6k81ckXZV0TdKOpOvJs9ZNSbdmrH80tf7dnPsHqoi++zqpkVxtm853DBe45nzUPa9PAv9JoVXHWkn+acm8k+S7FfO7JfNuku8cvguOMq96UXJ2wMz+q/+LMff/jiE5/vVhlf5vVux/YJOdnV+8OQgC/0Pxwi6Vyi7U/scTUtRajA6S0Uh0m56f+lp0iWj6FXinZYqt1dhGdlHvfQnA4nkfT997Z+cXj09OD479Y/9tt7f3vLfb7T3b8+JzuVfldA5glY1/6Oe73vwnQQAAAAAAAAAAAAAAoA63Jd2pexMAAAAAlmIZ/05U93sEAAAAAAAAAAAAAAAAAAAA/hd/AgAA//8kXzmB")
sync()
truncate(&(0x7f0000000040)='./file1\x00', 0x1001bfc)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f00000001c0)={r1, 0x6b, "ea61926cc0f008080da5180c7dfc3f34b41d42cd271b922f4f8f783440c0d35e68cf778907d76de9e7db30e1978536b8fecc813482e41c8ee77bfbc28b2e62e0a2cae00e57425d069d972c6334c7fee15af927908ec0730d7053967e8887dc35f74afb30c95c66d1926b50"}, &(0x7f0000000340)=0x73)
socket$inet_udp(0x2, 0x2, 0x0)
syz_mount_image$nilfs2(&(0x7f0000000140), &(0x7f0000000100)='./file0\x00', 0x1080c, &(0x7f0000000180)=ANY=[], 0x3, 0xa61, &(0x7f0000001c00)="$eJzs3U2MG1cdAPCxd735LHFKQkNa2oRCWwHdbXZD+IigqZoLUVNxq1RxidK0RKQBkUrQKockJ260isIN8SFOvVSAkOgFRT1xqUQjcempcOBAFKRIHKAlMVrve177H7tjZ3ft9fr3k8bPM+/Z7413Znbmzbz3CmBiVZuvtebrlbcvH/3nI//Ysvj+yVaKevN1um1uMXUlzU+H7/tgaim8dfP8yW5hpZhvvub54tkbrc9uK4riQrGvuFrUi71Xrr3x7vwzxy8eu7T/vTcPX1+LdQcAgEnz7auHD+7+21/u3/nhWw8eKTa1lufz83qa357O+4+kE/98/l8tOucrbVO7mZBuOk3VkG6qS7r2fGo53ebOz8X8Z8L31nqk21SS/1Tbsm7rDeMsb8f1olKd7ZivVmdnl67Ji+Z1/Uxl9uzpMy+eG1FBgVX374eKothnMk3a1NjR2glGXpbRTW2/AsBIxfuFd7gQaxZWpvVt0/3lf+OpavfPwyoY9vYv//j9neUYdv5l6/+bi444rJ7+t6bNa1qO1ZbXK+9H29N8vI8Qn18a9PiTv28qfF+tz3L2uo8wLvcXepVzasjluFu9yh+3i43qGynMv8M3Q3z7/hP/puPyNwa6+8+6q//fsly4kZdloGnzmJbbNMFTYzSHHWAMxOfmGkmOj8/1xfhNJfGbS+K3lMRvLYnfVhIPk+z3r/y0eL2yfJ0fr+lv3Tzf3Fn6rQ/L9Wz3pPATA5Yn1kcOWh8Xn/sd1Erzj88Tw3r2xxPPnfrqC89fW3r+v9La/m+n7X1fmq+nfetqSpDrC2O9euvZ/3pnPtUe6e4N5bmnS/rm+12d6Sq7lr+naDvO3FGOPZ2f29Er3QOd6eoh3ZY0xbsg8fxka/hcPv/Ix9X8e02H9a2F9ZgJ5cjHlZ0pHK+7MaxXeXvs9fx/3j73FLXKi6fPnHoizeft9M9TtU2Lyw8MudzAyvXb/mdP0dn+Z3trea3aflzYsby80n5cqIfl8z2WL6T5/H/uu1NbmstnT37/zAurvfIw4c69+tr3Tpw5c+qH3nizcd8Uxbooxji9GfWRCVhrc6+8/IO5c6++9vjpl0+8dOqlU2cXDh1amJ8/9LWFg3PN8/q59rN7YCNZ/qc/6pIAAAAAAAAAAAAA/frRsaPX/vrOV95fav+/3P4vt//PT/7m9v8/Ce3/Yzv53A4+twPc2SW+mSZ0sDoT0tXS9MlQ3l0hn93hc59KYWscv9T+P2cX+3XN5bkvLI/99+Z0oTuBzv5SunT+EccL/GwKL6Xw13d+BIan8vPui1NY1r913m/zpq9fivGU/265P5Pcj0lu/92rX6d8/N85hDKy+obRnHDU6wh096911//3Rp/arhhGXhbTeptuNRqNYebXaBjFA1gfRj3+Z673zOHZP31r8+KUk914qvN4GfsvhZUY9fiXI8s/VyxO6vr3mf9qj//ZGv+u7+NfGDGvfnf5/vcX199vy7bY22/+cf1zP9C7Bsv/w5R/XptHi/7yb/wq5B9vCPXpo5D/1j7zj+t/edCMU4b/S/nnn+2xh/vNf+kLKtXOcsR643z/L9YbZ7fC+ue+PQf++9/lQI23U/4wycZlnNmeegy0O8zxf6srGP+3l/gcxpfTfD4Q5ucc4ngng5Y/P1+R/w/sDt9fKfn/Zvzf8fb1FJbtD3n837w91rvMV9vma11+27E/1sAG84H7f6Yxn5pnNOugHOM4NRqNta3QKjHSzBn57z/q64RR5z/q379MHP83nsPH8X9jfBz/N8bH8X9jfLNe8aPlQXtjfBz/N/6ecfzfGH9fyDeOD7ynJP7TJfF7S+LvL4l/oCT+MyXx+0viHyyJf6gk/t6S+IdL4j9XEv/5kvhHSuIf+/j4hR+XfH6jy+1RJnX9YZLF9nn2f5gc+f5Pr/1/V0k8ML5+9taBp5//3XfqS+3/Z1r1Ifk+3pE0X0vXzvF6KdafTKW4d9L830P8eq/vgEkS+8+I/98fLYkHxld+zsv+DROo0r3Hnn77rep1ns94+UIKv5jCL6Xw8RTOpnAuhQdSOD+k8rE2nv7tHw6/Xlm+3t8R4vt9njy2B4r9RC30WZ5YPzDo8+yxH79BrTT/u2wOBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDLV5uvBg3sqRXHl7ctHnzt+em5xyZOtFPXm63TbXK31uaJ4IoVTKfxlenPr5vmT7eHtFFaK+aJSVFrLi2dvtHLaVhTFhWJfcbWoF3uvXHvj3flnjl88dmn/e28evr52vwAAAABsfP8PAAD//+abGAs=")
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file3\x00', 0x0, 0x0)
r2 = syz_open_dev$mouse(&(0x7f00000000c0), 0x0, 0x2042)
syz_open_dev$tty20(0xc, 0x4, 0x0)
r3 = syz_open_dev$evdev(&(0x7f0000000000), 0x3, 0x822b01)
read$FUSE(r2, 0x0, 0x0)
write$char_usb(r3, &(0x7f0000000040)="e2", 0x918)

1m42.638094882s ago: executing program 9 (id=1301):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000001c0)={&(0x7f0000000000)=""/96, 0x128000, 0x800}, 0x20)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000140)=0x20, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', <r2=>0x0})
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f00000003c0)=0x4000, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000100)=0x20, 0x4)
bind$xdp(r0, &(0x7f00000002c0)={0x2c, 0x0, r2}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
socket$inet(0x2b, 0x801, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = syz_open_dev$sndmidi(&(0x7f0000000200), 0x2, 0x141101)
dup(r3)
pselect6(0x40, &(0x7f0000000600)={0x6, 0x0, 0x0, 0x40, 0x2, 0x400000d, 0x0, 0x7}, 0x0, &(0x7f0000000680)={0x7ff, 0x7, 0x9, 0x7, 0x7, 0x200000000000000, 0x5, 0x7}, 0x0, 0x0)

1m42.341842846s ago: executing program 9 (id=1303):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f00000000c0)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000040)={@host})
ioctl$F2FS_IOC_GET_FEATURES(r0, 0x8004f50c, &(0x7f0000000100))
ioctl$IOCTL_VMCI_DATAGRAM_SEND(r0, 0x7ab, &(0x7f0000000000)={&(0x7f0000000540)={{@host=0x10}, {@host=0x10}, 0x400, "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"}, 0x418})
r1 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
r4 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r5, 0x1, 0x1b, &(0x7f0000000800), 0x4)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0x75fa, 0xe475, 0x0, 0x0, 0x0)

1m42.160163211s ago: executing program 9 (id=1304):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r0, 0x0, 0xd}, 0x18)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r3 = syz_io_uring_setup(0xa0, &(0x7f00000002c0)={0x0, 0x89b8, 0x8, 0x0, 0x207}, &(0x7f0000000040)=<r4=>0x0, &(0x7f00000000c0)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r2, 0xc000000, &(0x7f0000000000)=[{&(0x7f0000001600)=""/4096, 0x1000}], 0x1, 0x12})
io_uring_enter(r3, 0x847ba, 0x0, 0xe, 0x0, 0x0)

1m40.290105165s ago: executing program 9 (id=1306):
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc4c85512, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x804e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f00000004c0)=@nat={'nat\x00', 0x670, 0x5, 0x4e8, 0x450, 0x2c0, 0xffffffff, 0x3a8, 0x2c0, 0x450, 0x450, 0xffffffff, 0x450, 0x450, 0x5, 0x0, {[{{@uncond, 0x0, 0x1f0, 0x228, 0x48, {}, [@common=@unspec=@string={{0xc0}, {0x5, 0xc, 'kmp\x00', "0d01d3e4c6b2bfd892aa7400051624fa86999b13d39b99407a9b7abe75a728baa18da576811985de44110b8602025e1298ea55f1c5087ab16f67b18ca90ac68f0b3d6a068f727f7d23fa5fad26a59a5da2651212bdf9d29248ae63e2349b2470915eea2c39ade5129ff26b6fe772493180cfda2cdd49412e9469d85abdb467ba", 0x79, 0x2, {0x1}}}, @common=@unspec=@conntrack2={{0xc0}, {{@ipv6=@dev={0xfe, 0x80, '\x00', 0x10}, [0xffffff00, 0xff000000, 0x0, 0xffffff00], @ipv4=@dev={0xac, 0x14, 0x14, 0x29}, [0x0, 0xffffff00, 0xff000000, 0xffffffff], @ipv6=@local, [0xff000000, 0xff, 0x0, 0xff], @ipv4=@broadcast, [0xffffffff, 0xffffff00, 0xff], 0x3ff, 0x1, 0x5c, 0x4e20, 0x4e22, 0x4e24, 0x4e24, 0x804, 0x20c0}, 0x80, 0x2}}]}, @SNAT0={0x38, 'SNAT\x00', 0x0, {0x801, {0x0, @broadcast, @multicast2, @port=0x1, @port=0x4e24}}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xffffffffffffffff}}, {{@ip={@multicast2, @broadcast, 0x0, 0x0, 'virt_wifi0\x00', 'veth1_vlan\x00'}, 0x0, 0xa0, 0xe8, 0x0, {}, [@common=@addrtype={{0x30}, {0x890, 0x218, 0x0, 0x1}}]}, @unspec=@SNAT1={0x48, 'SNAT\x00', 0x1, {0xe, @ipv6=@ipv4={'\x00', '\xff\xff', @empty}, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @icmp_id=0x65, @port=0x4e21}}}, {{@ip={@private=0xa010100, @rand_addr, 0x0, 0x0, 'nicvf0\x00', 'nr0\x00'}, 0x0, 0x70, 0xa8}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x0, @rand_addr, @dev={0xac, 0x14, 0x14, 0x2a}, @icmp_id, @icmp_id}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x548)

1m39.291645888s ago: executing program 9 (id=1308):
socket$key(0xf, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x400c840)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_test', 0x141a82, 0x0)
sendfile(r3, r3, &(0x7f0000000000)=0x1, 0x4)

1m37.238572947s ago: executing program 9 (id=1311):
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
r1 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f0000002700)=ANY=[], 0x1015, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
pivot_root(0x0, 0x0)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0x2, 0x1}, 0x6)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x400000)
sync()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0))
lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000440)=@known='trusted.overlay.upper\x00', 0x0, 0x4000)

1m21.362016354s ago: executing program 39 (id=1311):
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
r1 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f0000002700)=ANY=[], 0x1015, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
pivot_root(0x0, 0x0)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0x2, 0x1}, 0x6)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x400000)
sync()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0))
lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000440)=@known='trusted.overlay.upper\x00', 0x0, 0x4000)

1m16.325645144s ago: executing program 5 (id=214):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)={[{@utf8no}, {@utf8no}, {@utf8}, {@fat=@check_strict}, {@shortname_mixed}, {@numtail}, {@rodir}, {@fat=@codepage={'codepage', 0x3d, '1251'}}, {@numtail}, {@iocharset={'iocharset', 0x3d, 'macroman'}}, {@shortname_mixed}, {@shortname_winnt}, {@utf8no}, {@shortname_lower}]}, 0x26, 0x336, &(0x7f00000001c0)="$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")
getpeername$inet6(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x48, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000001c0)={0x0, &(0x7f0000000080)})
creat(&(0x7f0000003a80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10)
symlink(&(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000000)='./cgroup\x00')

1m9.071059243s ago: executing program 6 (id=524):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="580000001400192340834b8050d0e1cc6ba56aa800ff000000000000000058000b4824ca945f640094588a39e4e53a7827d5fb0affc4c3b500ff0325010ebc000000000000008000f0fffeffe809005300fff5dd000000100002", 0x5a}], 0x1)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=@newlink={0x4c, 0x10, 0x403, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x74, 0x0, 0x800, 0x55007}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_STARTUP_QUERY_CNT={0x8, 0x1d, 0xc}, @IFLA_BR_MCAST_LAST_MEMBER_CNT={0x8, 0x1c, 0x5}, @IFLA_BR_MCAST_HASH_MAX={0x8, 0x1b, 0x1}]}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x800}, 0x4044080)
ioctl$TCSETSW2(r2, 0x402c542c, &(0x7f0000000000)={0x0, 0x0, 0x0, 0xffffffff, 0x0, "01000000000e65300000000800000200"})
readv(r2, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/68, 0x44}], 0x1)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000240)=0x6)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x200045a, &(0x7f0000000100)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000", @ANYRES16, @ANYRESHEX], 0x1, 0x2a1, &(0x7f0000000f40)="$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")
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)

12.461017386s ago: executing program 1 (id=1426):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r1 = epoll_create1(0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r3, &(0x7f0000000100)={0x20000014})
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r1, &(0x7f0000000000)={0xa0000001})
epoll_wait(r4, &(0x7f0000000340)=[{}], 0x1, 0x1000)

10.481824709s ago: executing program 4 (id=1429):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x400000000000000)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0xc3072, 0xffffffffffffffff, 0x200000)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x7, @loopback}, 0x1c)
prlimit64(0x0, 0xe, 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r1)
ptrace$poke(0x5, r1, &(0x7f0000000080), 0x0)

10.284042178s ago: executing program 1 (id=1430):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x5, &(0x7f0000000600)=ANY=[], &(0x7f00000000c0)='syzkaller\x00', 0x418, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000100)={0x5, 0x3}, 0x8, 0x10, &(0x7f0000000080)={0x1, 0xb, 0x8}, 0x10, 0x0, 0x0, 0x3, 0x0, &(0x7f0000000280)=[{0x1, 0x2, 0x3, 0xa}, {0x0, 0x3, 0x409, 0x4}, {0x3, 0x3, 0x6, 0x4}], 0x10, 0x3, @void, @value}, 0x94)
futex(0x0, 0x88, 0x1, 0x0, &(0x7f0000000000)=0x1, 0x0)
r0 = inotify_init1(0x0)
ioctl$INOTIFY_IOC_SETNEXTWD(r0, 0x40044900, 0x7)
r1 = openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$sysctl(r1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000180)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000340)=0x2)
read$msr(r2, &(0x7f0000019680)=""/102384, 0x18ff0)
syslog(0x4, &(0x7f0000000b00)=""/4096, 0x1000)
keyctl$set_reqkey_keyring(0xe, 0x5)
request_key(&(0x7f00000000c0)='logon\x00', &(0x7f0000000100)={'syz', 0x1}, &(0x7f0000000140)='![\'[\'^-.-]{$5#\x00', 0x0)

9.611627753s ago: executing program 1 (id=1432):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r2 = dup(r1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000007, 0x38011, r2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x1, 0x5, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002e000000850000002a00000095"], &(0x7f0000000200)='GPL\x00', 0xc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r3, 0x0, 0xe40, 0xffffffffffffff4f, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xeb)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000004c0)='dctcp\x00', 0x6)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback, 0x7}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r0, &(0x7f0000000240)=':', 0x1, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0x398, @empty}, 0x1c)
tkill(0xffffffffffffffff, 0x3a)
ioctl$SNDCTL_TMR_SELECT(0xffffffffffffffff, 0x40045408)
dup(r0)
syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1781, 0x898, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x2, 0xa0, 0x2, [{{0x9, 0x4, 0x0, 0x1, 0x1, 0x3, 0x1, 0x3, 0x7, {0x9, 0x21, 0x2, 0x6, 0x1, {0x22, 0x57d}}, {{{0x9, 0x5, 0x81, 0x3, 0x40, 0x0, 0x7, 0x9}}}}}]}}]}}, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0})
shutdown(r0, 0x1)

8.51560695s ago: executing program 4 (id=1433):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0xf, &(0x7f0000000340)=0xfffffffffffffff9, 0x4)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0xb8}, 0x1, 0x0, 0x0, 0x4000881}, 0x4001841)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x11}, 0x80)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="a800000000010904000500000000000002000000240001801400018008000100e000000108000200ac1e01010c0002800500010000000900240002"], 0xa8}}, 0x0)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

8.499918995s ago: executing program 1 (id=1434):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
syz_open_dev$video(&(0x7f0000000000), 0xc000, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f000000b1c0)="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", 0x2000, 0x0)
ioprio_set$uid(0x3, 0x0, 0x4004)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000040)={0x30, 0x0, 0x1, 0xffffffff, 0x0, {{}, {}, {0x14, 0x19, {0xfffffffe, 0x9}}}}, 0x30}}, 0x0)

8.400937426s ago: executing program 3 (id=1435):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x458, 0x0, 0x2b8, 0xb0000010, 0x2, 0x5c8f0200, 0x388, 0x3a8, 0x3a8, 0x388, 0x3a8, 0x3, 0x0, {[{{@ipv6={@private1, @local, [], [], 'vlan1\x00', 'veth0_to_team\x00'}, 0x0, 0x248, 0x290, 0x700, {}, [@common=@inet=@hashlimit3={{0x158}, {'geneve1\x00', {0xf1, 0x0, 0x33, 0x0, 0x0, 0x1, 0x7fffffff}}}, @common=@unspec=@limit={{0x48}, {0x0, 0x3}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x206, 'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@CONNSECMARK={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4b8)

7.331872916s ago: executing program 1 (id=1436):
socket(0x10, 0x2, 0x0)
mkdir(&(0x7f0000001c00)='./file0\x00', 0x8)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
link(&(0x7f00000000c0)='./file0/file1\x00', &(0x7f0000000180)='./file1\x00')
socket$inet_udp(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0xb, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$BLKPG(0xffffffffffffffff, 0x1269, &(0x7f0000000480)={0x1, 0x0, 0x98, &(0x7f00000003c0)={0xfffffffffffffafd, 0x2aa6, 0x3}})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bind$unix(r1, &(0x7f0000000240)=@file={0x1, './file0/file0/file0\x00'}, 0x6e)

5.807957307s ago: executing program 3 (id=1437):
openat$userio(0xffffffffffffff9c, 0x0, 0x100400, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x1, 0x3f, 0x40, 0x42, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000001a40), 0x1003, r3}, 0x38)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000600)={0x0, &(0x7f00000006c0)=""/145, &(0x7f0000000480), &(0x7f0000000780), 0x4, r3}, 0x38)

5.806539185s ago: executing program 1 (id=1438):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
socket$inet(0xa, 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0xd, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000080000000000000000000000180900002020702500000000002020207b1af8ff00000000bda004000000000027000000f8ffffffb702000008000000b7030000000004002500f8ff0600000095"], &(0x7f0000000040)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

5.634023399s ago: executing program 4 (id=1439):
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = epoll_create1(0x80000)
io_setup(0x2, &(0x7f0000002400)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000040)=[&(0x7f00000010c0)={0x0, 0x0, 0x0, 0x5, 0x2, r1, 0x0, 0x0, 0x0, 0x0, 0x2}])
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000002c0)=@framed, &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r3, 0x0, 0x0, 0x98, 0x0, &(0x7f0000000300)=""/152, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x5}, 0x50)
r4 = syz_io_uring_setup(0x22f, &(0x7f0000000080)={0x0, 0x5325, 0x10000, 0x0, 0x100002cc}, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000040)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xffffffffffffff31})
io_uring_enter(r4, 0x7a98, 0x0, 0x0, 0x0, 0x0)
r7 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r7, &(0x7f00000005c0)={0x4})

4.657525675s ago: executing program 3 (id=1440):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002024702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/timers\x00', 0x0, 0x0)
read$FUSE(r4, &(0x7f0000000a80)={0x2020}, 0x2020)

3.607770003s ago: executing program 4 (id=1441):
open(&(0x7f0000000100)='.\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0xc, 0x1a}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x1)
r0 = syz_open_dev$MSR(&(0x7f0000001140), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getpriority(0x2, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={0x0, <r2=>0x0}, &(0x7f00000000c0)=0x5)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
setresuid(r2, 0x0, r2)
setresuid(0x0, 0x0, 0x0)

3.406105597s ago: executing program 3 (id=1442):
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
openat$tun(0xffffffffffffff9c, 0x0, 0x40241, 0x0)
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f00000000c0)='xfrm0\x00', 0x10)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000180)=@l2tp={0x2, 0x0, @local}, 0x80, &(0x7f0000000440), 0x0, &(0x7f0000000f80)=""/4096, 0x1000}, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000f40)=[{{&(0x7f0000000040)={0x2, 0x0, @broadcast}, 0x10, 0x0}}], 0x68000, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$sock_bt_bnep_BNEPCONNDEL(r1, 0x400442c9, &(0x7f0000000300)={0x0, @broadcast})

1.667134723s ago: executing program 3 (id=1443):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
close(0xffffffffffffffff)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000100)=0x1, 0x4)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0200000004000000080000000100000080", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xc, 0x1c, &(0x7f0000000d80)=ANY=[@ANYBLOB="18080000e9ff0000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b70300002bb91a008500000008000000bc0900000000000045080100002000009500000000000000b7020000000000007b9af8ff00000000b5090000000000007baaf0ff00000000bf2700000000000007080000fffdffffbfa400000000000007040000f0ffffffc40200000800000018220000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7050000080000004608efff76000000bf9800000000000056090000000000008500000000020800b70000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

1.584632432s ago: executing program 4 (id=1444):
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3f, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="14"], &(0x7f0000000180), 0x0)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x7001)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
timer_create(0x2, 0x0, 0x0)

36.526442ms ago: executing program 3 (id=1445):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000400)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x40008)
r1 = socket$inet6(0xa, 0x3, 0x7)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, 0x0, 0x4044845)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x1e}, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x20}, {0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x4, 0x2}, {}, 0x0, 0x6e6bb9, 0x1}, {{@in=@broadcast, 0xfffffffc, 0x32}, 0x0, @in=@empty, 0x0, 0x0, 0x2, 0x7, 0x200}}, 0xe8)
sendmmsg(r1, &(0x7f0000000480), 0x2e9, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})

0s ago: executing program 4 (id=1446):
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket(0x2000000015, 0x80005, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$key(0xf, 0x3, 0x2)
r0 = syz_io_uring_setup(0x10d, &(0x7f0000000200)={0x0, 0x9e74, 0x0, 0x4}, &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$inet(r4, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r3, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000140), 0x100}, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r5, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9, 0x12, r5, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080), 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_WRITE={0x17, 0x0, 0x4007, @fd_index=0x7fffffd, 0x2, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r0, 0x3f70, 0x0, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

[ T8490] hsr_slave_0: entered promiscuous mode
[  432.606823][ T8848] netlink: 4 bytes leftover after parsing attributes in process `syz.1.678'.
[  432.856810][ T8490] hsr_slave_1: entered promiscuous mode
[  432.918273][ T8490] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  433.054439][ T8490] Cannot create hsr debugfs directory
[  433.093100][   T64] bridge_slave_1: left allmulticast mode
[  433.099949][   T64] bridge_slave_1: left promiscuous mode
[  433.138496][   T64] bridge0: port 2(bridge_slave_1) entered disabled state
[  433.224581][   T64] bridge_slave_0: left allmulticast mode
[  433.231377][   T64] bridge_slave_0: left promiscuous mode
[  433.265908][   T64] bridge0: port 1(bridge_slave_0) entered disabled state
[  438.590774][   T64] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  438.606374][   T64] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  438.618480][   T64] bond0 (unregistering): Released all slaves
[  438.950871][ T8848] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  439.112704][ T8848] batman_adv: batadv0: Removing interface: batadv_slave_0
[  439.223644][ T8848] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  439.242553][ T8848] batman_adv: batadv0: Removing interface: batadv_slave_1
[  439.319861][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  439.329482][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  440.157647][ T8875] netlink: 788 bytes leftover after parsing attributes in process `syz.7.684'.
[  440.483370][ T8885] netlink: 'syz.1.687': attribute type 4 has an invalid length.
[  440.595548][ T8889] netlink: 'syz.1.687': attribute type 4 has an invalid length.
[  441.358841][ T8890] loop9: detected capacity change from 0 to 1024
[  441.465969][ T8890] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  442.382828][   T64] hsr_slave_0: left promiscuous mode
[  442.604017][   T64] hsr_slave_1: left promiscuous mode
[  442.613899][   T64] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  442.623238][   T64] batman_adv: batadv0: Removing interface: batadv_slave_0
[  442.778251][   T64] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  442.791651][   T64] batman_adv: batadv0: Removing interface: batadv_slave_1
[  442.808077][ T5896] IPVS: starting estimator thread 0...
[  443.142990][   T64] veth1_macvtap: left promiscuous mode
[  443.149909][   T64] veth0_macvtap: left promiscuous mode
[  443.168073][   T64] veth1_vlan: left promiscuous mode
[  443.172497][ T8918] IPVS: using max 25 ests per chain, 60000 per kthread
[  443.189807][   T64] veth0_vlan: left promiscuous mode
[  446.308734][ T5845] Bluetooth: hci3: unexpected event for opcode 0x0c47
[  446.598238][ T8949] loop9: detected capacity change from 0 to 2048
[  446.621946][ T8949] EXT4-fs: Ignoring removed bh option
[  446.954531][ T8949] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  447.651846][ T8954] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  447.681513][ T8954] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  447.703129][ T8954] EXT4-fs (loop9): This should not happen!! Data will be lost
[  447.703129][ T8954] 
[  447.715366][ T8954] EXT4-fs (loop9): Total free blocks count 0
[  447.723029][ T8954] EXT4-fs (loop9): Free/Dirty block details
[  447.730268][ T8954] EXT4-fs (loop9): free_blocks=2415919104
[  447.737651][ T8954] EXT4-fs (loop9): dirty_blocks=48
[  447.744953][ T8954] EXT4-fs (loop9): Block reservation details
[  447.759964][ T8954] EXT4-fs (loop9): i_reserved_data_blocks=3
[  448.608705][ T6231] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  448.667974][   T64] team0 (unregistering): Port device team_slave_1 removed
[  448.880948][   T64] team0 (unregistering): Port device team_slave_0 removed
[  449.426723][ T5895] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  449.967110][ T5895] usb 10-1: config 0 has no interfaces?
[  449.988972][ T5895] usb 10-1: New USB device found, idVendor=1908, idProduct=1315, bcdDevice= 0.00
[  450.016062][ T5895] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  450.043638][ T5895] usb 10-1: config 0 descriptor??
[  450.286001][ T8966] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  450.301505][ T8966] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  450.363208][ T5845] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  450.379571][ T5845] Bluetooth: hci3: Injecting HCI hardware error event
[  450.395556][ T5845] Bluetooth: hci3: hardware error 0x00
[  450.459790][ T8966] 9pnet: p9_errstr2errno: server reported unknown error 18446744073709
[  450.540463][ T5895] usb 10-1: USB disconnect, device number 3
[  451.621702][ T5837] Bluetooth: hci3: unexpected event for opcode 0x0402
[  452.930478][   T10] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  453.062495][ T5845] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  453.305297][   T10] usb 1-1: Using ep0 maxpacket: 8
[  453.558665][   T10] usb 1-1: unable to get BOS descriptor or descriptor too short
[  453.579252][   T10] usb 1-1: unable to read config index 0 descriptor/start: -71
[  453.599564][   T10] usb 1-1: can't read configurations, error -71
[  454.019962][ T8990] loop9: detected capacity change from 0 to 32768
[  454.121587][ T8990] 
[  454.121587][ T8990]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  454.121587][ T8990] 
[  454.717232][ T5837] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  454.729489][ T5837] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  454.739121][ T5837] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  454.752322][ T5837] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  454.761563][ T5837] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  454.883577][ T7254] 
[  454.883577][ T7254]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  454.883577][ T7254] 
[  454.930190][ T7254] 
[  454.930190][ T7254]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  454.930190][ T7254] 
[  455.733993][   T64] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  456.831968][ T5837] Bluetooth: hci6: command tx timeout
[  456.961559][ T9036] binder: BINDER_SET_CONTEXT_MGR already set
[  457.021800][ T9036] binder: 9034:9036 ioctl 4018620d 200000000040 returned -16
[  457.128687][   T64] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.238829][ T9036] binder: 9034:9036 ioctl c0306201 200000000240 returned -11
[  457.513083][   T64] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.868649][ T9045] loop9: detected capacity change from 0 to 1764
[  457.883698][ T9045] iso9660: Bad value for 'uid'
[  457.889509][ T9045] iso9660: Bad value for 'uid'
[  458.911761][ T5837] Bluetooth: hci6: command tx timeout
[  459.218765][ T5845] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  459.231992][ T5845] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  459.263684][ T5845] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  459.278711][ T5845] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  459.288271][ T5845] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  459.396037][   T64] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.438851][ T5837] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  459.459147][ T5837] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  459.469482][ T5837] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  459.481110][ T5837] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  459.490272][ T5837] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  460.991919][ T5845] Bluetooth: hci6: command tx timeout
[  461.401770][ T5845] Bluetooth: hci7: command tx timeout
[  461.555529][ T5845] Bluetooth: hci8: command tx timeout
[  461.842536][ T9075] overlayfs: failed to clone upperpath
[  463.074070][ T5845] Bluetooth: hci6: command tx timeout
[  463.843946][ T5845] Bluetooth: hci7: command tx timeout
[  463.843985][ T5841] Bluetooth: hci8: command tx timeout
[  465.537617][ T9105] loop9: detected capacity change from 0 to 32768
[  465.549953][ T9107] ptrace attach of "./syz-executor exec"[5830] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   "[9107]
[  465.782396][ T9105] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop9 (7:9) scanned by syz.9.737 (9105)
[  465.872186][ T5837] Bluetooth: hci7: command tx timeout
[  465.879223][ T5837] Bluetooth: hci8: command tx timeout
[  466.195300][ T9105] BTRFS info (device loop9): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  466.208165][ T9105] BTRFS info (device loop9): using sha256 (sha256-x86_64) checksum algorithm
[  466.221253][ T9105] workqueue: max_active 16777219 requested for btrfs-worker is out of range, clamping between 1 and 2048
[  466.236070][ T9105] workqueue: max_active 16777219 requested for btrfs-delalloc is out of range, clamping between 1 and 2048
[  466.278079][ T9016] chnl_net:caif_netlink_parms(): no params data found
[  466.353740][ T9105] workqueue: max_active 16777219 requested for btrfs-endio is out of range, clamping between 1 and 2048
[  466.370066][ T9105] workqueue: max_active 16777219 requested for btrfs-endio-meta is out of range, clamping between 1 and 2048
[  466.385384][ T9105] workqueue: max_active 16777219 requested for btrfs-rmw is out of range, clamping between 1 and 2048
[  466.404351][ T9105] workqueue: max_active 16777219 requested for btrfs-endio-write is out of range, clamping between 1 and 2048
[  466.425570][ T9105] workqueue: max_active 16777219 requested for btrfs-compressed-write is out of range, clamping between 1 and 2048
[  466.548203][ T9105] BTRFS info (device loop9): rebuilding free space tree
[  466.548726][   T64] bridge_slave_1: left allmulticast mode
[  466.901061][   T64] bridge_slave_1: left promiscuous mode
[  466.901908][ T9105] BTRFS info (device loop9): disabling free space tree
[  466.931497][ T9105] BTRFS info (device loop9): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  466.961243][ T9105] BTRFS info (device loop9): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  467.342175][ T9119] net_ratelimit: 10 callbacks suppressed
[  467.342193][ T9119] sctp: failed to load transform for md5: -2
[  467.357611][   T64] bridge0: port 2(bridge_slave_1) entered disabled state
[  467.463578][   T64] bridge_slave_0: left allmulticast mode
[  467.518677][   T64] bridge_slave_0: left promiscuous mode
[  467.562197][ T9105] workqueue: max_active 16777219 requested for btrfs-scrub is out of range, clamping between 1 and 2048
[  467.576120][ T9105] BTRFS info (device loop9): scrub: started on devid 1
[  467.601394][   T64] bridge0: port 1(bridge_slave_0) entered disabled state
[  467.621720][ T9105] BTRFS info (device loop9): left=0, need=98304, flags=2
[  467.630519][ T9105] BTRFS info (device loop9): space_info SYSTEM (sub-group id 0) has 0 free, is not full
[  467.642581][ T9105] BTRFS info (device loop9): space_info total=4194304, used=4096, pinned=0, reserved=0, may_use=0, readonly=4190208 zone_unusable=0
[  467.660380][ T9105] BTRFS info (device loop9): global_block_rsv: size 1048576 reserved 1048576
[  467.671331][ T9105] BTRFS info (device loop9): trans_block_rsv: size 0 reserved 0
[  467.680481][ T9105] BTRFS info (device loop9): chunk_block_rsv: size 0 reserved 0
[  467.689727][ T9105] BTRFS info (device loop9): delayed_block_rsv: size 32768 reserved 32768
[  467.700101][ T9105] BTRFS info (device loop9): delayed_refs_rsv: size 0 reserved 0
[  467.733538][ T9105] BTRFS info (device loop9): scrub: finished on devid 1 with status: 0
[  467.951504][ T5837] Bluetooth: hci8: command tx timeout
[  467.959623][ T5841] Bluetooth: hci7: command tx timeout
[  468.168093][ T7254] BTRFS info (device loop9): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  472.384702][   T30] kauditd_printk_skb: 16 callbacks suppressed
[  472.384722][   T30] audit: type=1326 audit(1748794761.801:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9190 comm="syz.0.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5d38e969 code=0x7ffc0000
[  472.489299][ T9193] netlink: 76 bytes leftover after parsing attributes in process `syz.1.753'.
[  473.109000][   T30] audit: type=1326 audit(1748794761.801:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9190 comm="syz.0.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5d38e969 code=0x7ffc0000
[  473.270009][   T30] audit: type=1326 audit(1748794761.801:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9190 comm="syz.0.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2b5d38e969 code=0x7ffc0000
[  473.318303][   T30] audit: type=1326 audit(1748794761.801:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9190 comm="syz.0.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5d38e969 code=0x7ffc0000
[  473.347616][   T30] audit: type=1326 audit(1748794761.801:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9190 comm="syz.0.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5d38e969 code=0x7ffc0000
[  473.400476][   T30] audit: type=1326 audit(1748794761.801:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9190 comm="syz.0.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2b5d38e969 code=0x7ffc0000
[  473.446318][   T30] audit: type=1326 audit(1748794761.811:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9190 comm="syz.0.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5d38e969 code=0x7ffc0000
[  473.474217][   T30] audit: type=1326 audit(1748794761.811:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9190 comm="syz.0.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5d38e969 code=0x7ffc0000
[  473.502375][   T30] audit: type=1326 audit(1748794761.811:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9190 comm="syz.0.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2b5d38e969 code=0x7ffc0000
[  473.545179][   T30] audit: type=1326 audit(1748794761.811:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9190 comm="syz.0.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5d38e969 code=0x7ffc0000
[  473.655282][   T64] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  473.671963][   T64] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  473.707888][   T64] bond0 (unregistering): Released all slaves
[  473.991105][   T24] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  474.089923][ T9046] chnl_net:caif_netlink_parms(): no params data found
[  474.870786][   T24] usb 1-1: Using ep0 maxpacket: 8
[  474.879107][   T24] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  474.910912][   T24] usb 1-1: config 0 has no interfaces?
[  474.931112][ T1151] af_packet: tpacket_rcv: packet too big, clamped from 38 to 4294967286. macoff=82
[  474.993828][   T24] usb 1-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  475.005051][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  475.026994][   T24] usb 1-1: Product: syz
[  475.033768][   T24] usb 1-1: Manufacturer: syz
[  475.039483][   T24] usb 1-1: SerialNumber: syz
[  475.053361][   T24] usb 1-1: config 0 descriptor??
[  475.161415][ T9214] loop9: detected capacity change from 0 to 1024
[  475.369384][ T9214] hfsplus: inconsistency in B*Tree (9,1,255,1,0)
[  475.384773][   T10] usb 1-1: USB disconnect, device number 8
[  475.424427][ T9214] hfsplus: xattr searching failed
[  475.505135][ T9226] hfsplus: inconsistency in B*Tree (9,1,255,1,0)
[  475.568496][ T9226] hfsplus: xattr searching failed
[  475.610765][ T9227] hfsplus: inconsistency in B*Tree (9,1,255,1,0)
[  475.618745][ T9227] hfsplus: xattr search failed
[  475.652911][ T9234] overlayfs: failed to clone upperpath
[  475.707721][ T9227] hfsplus: inconsistency in B*Tree (9,1,255,1,0)
[  475.735244][ T9227] hfsplus: xattr search failed
[  475.847635][ T9053] chnl_net:caif_netlink_parms(): no params data found
[  475.936892][ T1139] hfsplus: b-tree write err: -5, ino 4
[  476.320200][ T9016] bridge0: port 1(bridge_slave_0) entered blocking state
[  477.178745][ T9016] bridge0: port 1(bridge_slave_0) entered disabled state
[  477.188206][ T9016] bridge_slave_0: entered allmulticast mode
[  477.203988][ T9016] bridge_slave_0: entered promiscuous mode
[  477.222194][ T9016] bridge0: port 2(bridge_slave_1) entered blocking state
[  477.230844][ T9016] bridge0: port 2(bridge_slave_1) entered disabled state
[  477.239538][ T9016] bridge_slave_1: entered allmulticast mode
[  477.248609][ T9016] bridge_slave_1: entered promiscuous mode
[  477.469613][ T9046] bridge0: port 1(bridge_slave_0) entered blocking state
[  477.481924][ T9046] bridge0: port 1(bridge_slave_0) entered disabled state
[  477.501139][ T9046] bridge_slave_0: entered allmulticast mode
[  477.510304][ T9046] bridge_slave_0: entered promiscuous mode
[  477.549218][ T9046] bridge0: port 2(bridge_slave_1) entered blocking state
[  477.655283][ T9046] bridge0: port 2(bridge_slave_1) entered disabled state
[  478.438358][ T9046] bridge_slave_1: entered allmulticast mode
[  478.460388][ T9046] bridge_slave_1: entered promiscuous mode
[  478.577340][ T5898] libceph: connect (1)[c::]:6789 error -101
[  478.602142][ T5898] libceph: mon0 (1)[c::]:6789 connect error
[  478.676877][ T9273] ceph: No mds server is up or the cluster is laggy
[  478.892682][ T5898] libceph: connect (1)[c::]:6789 error -101
[  479.666158][ T5898] libceph: mon0 (1)[c::]:6789 connect error
[  481.271748][ T9016] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  481.817285][ T9046] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  481.874139][ T9046] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  481.927347][ T9304] loop9: detected capacity change from 0 to 2048
[  481.970169][ T9304] NILFS (loop9): broken superblock, retrying with spare superblock (blocksize = 1024)
[  481.997375][ T9016] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  482.000678][ T9304] NILFS (loop9): mounting unchecked fs
[  482.069337][ T9307] netlink: 4 bytes leftover after parsing attributes in process `syz.0.777'.
[  482.113390][ T8909] udevd[8909]: incorrect nilfs2 checksum on /dev/loop9
[  482.137627][ T9304] NILFS (loop9): recovery complete
[  482.315764][    C0] vcan0: j1939_tp_rxtimer: 0xffff888023d3d800: rx timeout, send abort
[  482.817138][    C0] vcan0: j1939_tp_rxtimer: 0xffff888058eb1c00: rx timeout, send abort
[  482.827850][    C0] vcan0: j1939_tp_rxtimer: 0xffff888023d3d800: abort rx timeout. Force session deactivation
[  482.835711][ T8909] udevd[8909]: incorrect nilfs2 checksum on /dev/loop9
[  482.920070][ T9315] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  482.947172][   T64] hsr_slave_0: left promiscuous mode
[  483.036273][   T64] hsr_slave_1: left promiscuous mode
[  483.131240][   T64] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  483.156857][   T64] batman_adv: batadv0: Removing interface: batadv_slave_0
[  483.301732][   T64] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  483.327064][    C0] vcan0: j1939_tp_rxtimer: 0xffff888058eb1c00: abort rx timeout. Force session deactivation
[  483.480585][   T64] batman_adv: batadv0: Removing interface: batadv_slave_1
[  483.847008][   T64] veth1_macvtap: left promiscuous mode
[  483.896496][   T64] veth0_macvtap: left promiscuous mode
[  483.910587][   T64] veth1_vlan: left promiscuous mode
[  483.929368][   T64] veth0_vlan: left promiscuous mode
[  489.035217][   T64] team0 (unregistering): Port device team_slave_1 removed
[  490.151564][   T64] team0 (unregistering): Port device team_slave_0 removed
[  492.116984][ T9046] team0: Port device team_slave_0 added
[  492.379138][ T9016] team0: Port device team_slave_0 added
[  493.121979][ T9046] team0: Port device team_slave_1 added
[  493.304260][ T9016] team0: Port device team_slave_1 added
[  493.324808][ T9053] bridge0: port 1(bridge_slave_0) entered blocking state
[  493.390227][ T9053] bridge0: port 1(bridge_slave_0) entered disabled state
[  493.416264][ T9053] bridge_slave_0: entered allmulticast mode
[  493.435892][ T9053] bridge_slave_0: entered promiscuous mode
[  493.489413][ T9046] batman_adv: batadv0: Adding interface: batadv_slave_0
[  493.514573][ T9046] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  493.547139][ T9046] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  493.653248][ T9053] bridge0: port 2(bridge_slave_1) entered blocking state
[  493.680258][ T9053] bridge0: port 2(bridge_slave_1) entered disabled state
[  493.698514][ T9053] bridge_slave_1: entered allmulticast mode
[  493.708966][ T9053] bridge_slave_1: entered promiscuous mode
[  493.731774][ T9046] batman_adv: batadv0: Adding interface: batadv_slave_1
[  493.748651][ T9046] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  493.806035][ T9046] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  494.015708][ T9016] batman_adv: batadv0: Adding interface: batadv_slave_0
[  494.025803][ T9016] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  495.050394][ T9016] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  495.373217][ T9016] batman_adv: batadv0: Adding interface: batadv_slave_1
[  495.409629][ T9016] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  495.682587][ T9016] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  496.398060][ T9046] hsr_slave_0: entered promiscuous mode
[  496.432680][ T9046] hsr_slave_1: entered promiscuous mode
[  496.460446][ T9046] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  496.488438][ T9046] Cannot create hsr debugfs directory
[  497.602349][ T9053] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  497.743374][ T9016] hsr_slave_0: entered promiscuous mode
[  497.885075][ T9016] hsr_slave_1: entered promiscuous mode
[  497.979500][ T9016] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  498.052699][ T9016] Cannot create hsr debugfs directory
[  498.322805][ T9053] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  498.592637][ T9053] team0: Port device team_slave_0 added
[  499.147106][ T9053] team0: Port device team_slave_1 added
[  500.726304][ T9053] batman_adv: batadv0: Adding interface: batadv_slave_0
[  500.763565][ T9053] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  500.764059][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  500.815445][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  500.869852][ T9053] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  500.987013][ T9053] batman_adv: batadv0: Adding interface: batadv_slave_1
[  501.004501][ T9053] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  501.259707][ T9053] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  502.829224][ T5841] Bluetooth: hci5: command 0x0406 tx timeout
[  503.955140][ T9053] hsr_slave_0: entered promiscuous mode
[  503.985880][ T9493] overlayfs: failed to clone upperpath
[  504.006137][ T9053] hsr_slave_1: entered promiscuous mode
[  504.030132][ T9053] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  504.058828][ T9053] Cannot create hsr debugfs directory
[  505.297795][ T9504] Bluetooth: hci2: Frame reassembly failed (-90)
[  506.346411][   T64] bridge_slave_1: left allmulticast mode
[  506.370439][   T64] bridge_slave_1: left promiscuous mode
[  506.377430][   T64] bridge0: port 2(bridge_slave_1) entered disabled state
[  506.399665][   T64] bridge_slave_0: left allmulticast mode
[  506.406576][   T64] bridge_slave_0: left promiscuous mode
[  506.581879][   T64] bridge0: port 1(bridge_slave_0) entered disabled state
[  506.603568][   T64] bridge_slave_1: left allmulticast mode
[  506.613184][   T64] bridge_slave_1: left promiscuous mode
[  506.622625][   T64] bridge0: port 2(bridge_slave_1) entered disabled state
[  507.309443][ T5837] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  507.430453][   T64] bridge_slave_0: left allmulticast mode
[  507.437253][   T64] bridge_slave_0: left promiscuous mode
[  507.469122][   T64] bridge0: port 1(bridge_slave_0) entered disabled state
[  508.020690][   T64] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  508.047498][   T64] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  508.082920][   T64] bond0 (unregistering): Released all slaves
[  508.986655][   T64] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  509.202950][   T64] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  509.292441][   T64] bond0 (unregistering): Released all slaves
[  509.755085][ T9546] syz.0.842 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  510.156288][   T64] hsr_slave_0: left promiscuous mode
[  510.185462][   T64] hsr_slave_1: left promiscuous mode
[  510.206200][   T64] batman_adv: batadv0: Removing interface: batadv_slave_0
[  510.265682][   T64] batman_adv: batadv0: Removing interface: batadv_slave_1
[  510.291591][   T64] hsr_slave_0: left promiscuous mode
[  510.306114][   T64] hsr_slave_1: left promiscuous mode
[  510.313926][   T64] batman_adv: batadv0: Removing interface: batadv_slave_0
[  510.330343][   T64] batman_adv: batadv0: Removing interface: batadv_slave_1
[  510.469363][   T10] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  510.847861][   T64] team0 (unregistering): Port device team_slave_1 removed
[  510.857288][   T10] usb 1-1: config 0 has no interfaces?
[  511.607840][   T10] usb 1-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  511.620350][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  511.639343][   T10] usb 1-1: config 0 descriptor??
[  511.804030][   T64] team0 (unregistering): Port device team_slave_0 removed
[  511.968848][   T10] usb 1-1: USB disconnect, device number 9
[  512.457578][ T9569] xt_TPROXY: Can be used only with -p tcp or -p udp
[  512.671080][   T64] team0 (unregistering): Port device team_slave_1 removed
[  513.459200][   T64] team0 (unregistering): Port device team_slave_0 removed
[  514.764603][ T5841] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  514.785294][ T5841] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  514.798132][ T5841] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  514.820417][ T5841] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  514.833886][ T5841] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  515.514758][ T9046] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  516.682240][ T9046] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  516.915069][ T5841] Bluetooth: hci2: command tx timeout
[  519.008400][ T5841] Bluetooth: hci2: command tx timeout
[  519.190753][ T9587] chnl_net:caif_netlink_parms(): no params data found
[  521.216260][ T5841] Bluetooth: hci2: command tx timeout
[  521.542895][ T5837] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  521.556526][ T5837] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  521.568789][ T5837] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  521.580422][ T5837] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  521.595139][ T5837] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  521.857810][ T5841] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  521.876558][ T5841] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  521.906529][ T5841] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  521.937052][ T5841] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  521.975389][ T5841] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  522.487032][ T9587] bridge0: port 1(bridge_slave_0) entered blocking state
[  522.533816][ T9587] bridge0: port 1(bridge_slave_0) entered disabled state
[  522.564506][ T9587] bridge_slave_0: entered allmulticast mode
[  522.580364][ T9587] bridge_slave_0: entered promiscuous mode
[  522.608795][ T9587] bridge0: port 2(bridge_slave_1) entered blocking state
[  522.648565][ T9587] bridge0: port 2(bridge_slave_1) entered disabled state
[  522.657316][ T9587] bridge_slave_1: entered allmulticast mode
[  522.690172][ T9587] bridge_slave_1: entered promiscuous mode
[  523.097602][ T9587] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  523.167468][ T9587] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  523.228817][ T5841] Bluetooth: hci2: command tx timeout
[  523.556603][ T9587] team0: Port device team_slave_0 added
[  523.696407][ T5841] Bluetooth: hci4: command tx timeout
[  524.112385][ T5841] Bluetooth: hci7: command tx timeout
[  525.551896][ T9587] team0: Port device team_slave_1 added
[  525.804941][ T5841] Bluetooth: hci4: command tx timeout
[  526.188220][ T5841] Bluetooth: hci7: command tx timeout
[  526.231230][ T9674] futex_wake_op: syz.0.880 tries to shift op by 32; fix this program
[  527.868143][ T5841] Bluetooth: hci4: command tx timeout
[  528.124999][ T9587] batman_adv: batadv0: Adding interface: batadv_slave_0
[  528.141719][ T9587] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  528.191978][ T9587] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  528.267893][ T5841] Bluetooth: hci7: command tx timeout
[  528.280475][ T9587] batman_adv: batadv0: Adding interface: batadv_slave_1
[  528.297720][ T9587] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  529.126943][ T9587] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  529.304351][   T30] kauditd_printk_skb: 19 callbacks suppressed
[  529.304379][   T30] audit: type=1326 audit(1748794818.764:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9709 comm="syz.9.891" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd71918e969 code=0x0
[  529.362021][ T9643] chnl_net:caif_netlink_parms(): no params data found
[  529.496762][ T9637] chnl_net:caif_netlink_parms(): no params data found
[  530.452347][ T5841] Bluetooth: hci4: command tx timeout
[  530.464310][ T5841] Bluetooth: hci7: command tx timeout
[  531.826671][ T9587] hsr_slave_0: entered promiscuous mode
[  531.837073][ T9587] hsr_slave_1: entered promiscuous mode
[  531.846734][ T9587] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  531.865213][ T9587] Cannot create hsr debugfs directory
[  532.579030][   T64] bridge_slave_1: left allmulticast mode
[  532.585859][   T64] bridge_slave_1: left promiscuous mode
[  532.794048][   T64] bridge0: port 2(bridge_slave_1) entered disabled state
[  532.868100][   T64] bridge_slave_0: left allmulticast mode
[  532.875667][ T9736] netfs: Couldn't get user pages (rc=-14)
[  532.884971][   T64] bridge_slave_0: left promiscuous mode
[  532.892901][   T64] bridge0: port 1(bridge_slave_0) entered disabled state
[  534.018290][   T64] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  534.972980][   T64] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  535.046442][   T64] bond0 (unregistering): Released all slaves
[  537.187660][ T2148] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  537.443804][ T2148] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  537.461878][ T2148] usb 1-1: config 0 has no interface number 0
[  537.480379][ T2148] usb 1-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  537.508010][   T64] hsr_slave_0: left promiscuous mode
[  537.528454][   T64] hsr_slave_1: left promiscuous mode
[  537.544389][ T2148] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  537.555720][   T64] batman_adv: batadv0: Removing interface: batadv_slave_0
[  537.568004][ T2148] usb 1-1: Product: syz
[  537.573012][ T2148] usb 1-1: Manufacturer: syz
[  537.588127][   T64] batman_adv: batadv0: Removing interface: batadv_slave_1
[  537.612018][ T2148] usb 1-1: SerialNumber: syz
[  537.653447][ T2148] usb 1-1: config 0 descriptor??
[  538.906031][ T2148] dvb_usb_ec168 1-1:0.1: probe with driver dvb_usb_ec168 failed with error -110
[  539.399974][   T64] team0 (unregistering): Port device team_slave_1 removed
[  539.746554][   T64] team0 (unregistering): Port device team_slave_0 removed
[  541.952178][ T5895] usb 1-1: USB disconnect, device number 10
[  542.357431][ T9637] bridge0: port 1(bridge_slave_0) entered blocking state
[  542.395986][ T9637] bridge0: port 1(bridge_slave_0) entered disabled state
[  542.438938][ T9637] bridge_slave_0: entered allmulticast mode
[  542.708340][ T9637] bridge_slave_0: entered promiscuous mode
[  543.718686][ T9643] bridge0: port 1(bridge_slave_0) entered blocking state
[  543.740914][ T9643] bridge0: port 1(bridge_slave_0) entered disabled state
[  543.750839][ T9643] bridge_slave_0: entered allmulticast mode
[  544.213272][ T9643] bridge_slave_0: entered promiscuous mode
[  544.258124][ T9637] bridge0: port 2(bridge_slave_1) entered blocking state
[  544.267499][ T9637] bridge0: port 2(bridge_slave_1) entered disabled state
[  544.278054][ T9637] bridge_slave_1: entered allmulticast mode
[  544.289022][ T9637] bridge_slave_1: entered promiscuous mode
[  544.297619][ T9643] bridge0: port 2(bridge_slave_1) entered blocking state
[  544.310117][ T9643] bridge0: port 2(bridge_slave_1) entered disabled state
[  544.319960][ T9643] bridge_slave_1: entered allmulticast mode
[  544.329675][ T9643] bridge_slave_1: entered promiscuous mode
[  545.627363][ T9637] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  545.662372][ T9643] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  546.581566][ T9643] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  546.613904][ T9637] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  547.132060][ T9637] team0: Port device team_slave_0 added
[  547.158360][ T9643] team0: Port device team_slave_0 added
[  547.202736][ T9643] team0: Port device team_slave_1 added
[  547.296254][ T9637] team0: Port device team_slave_1 added
[  549.734911][ T9587] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  550.655968][   T24] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  550.794699][   T64] bridge_slave_1: left allmulticast mode
[  550.854749][   T64] bridge_slave_1: left promiscuous mode
[  550.862668][   T64] bridge0: port 2(bridge_slave_1) entered disabled state
[  550.939340][   T24] usb 1-1: Using ep0 maxpacket: 16
[  550.961348][   T24] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  550.989666][   T64] bridge_slave_0: left allmulticast mode
[  551.003330][   T64] bridge_slave_0: left promiscuous mode
[  551.010542][   T64] bridge0: port 1(bridge_slave_0) entered disabled state
[  551.022979][   T24] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  551.048351][   T64] bridge_slave_1: left allmulticast mode
[  551.055148][   T64] bridge_slave_1: left promiscuous mode
[  551.057786][   T24] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  551.068436][   T64] bridge0: port 2(bridge_slave_1) entered disabled state
[  551.116838][   T64] bridge_slave_0: left allmulticast mode
[  551.123786][   T64] bridge_slave_0: left promiscuous mode
[  551.134104][   T64] bridge0: port 1(bridge_slave_0) entered disabled state
[  551.296882][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  551.308193][   T24] usb 1-1: Product: syz
[  551.313201][   T24] usb 1-1: Manufacturer: syz
[  551.318945][   T24] usb 1-1: SerialNumber: syz
[  551.688736][   T24] usb 1-1: 0:2 : does not exist
[  551.958638][   T24] usb 1-1: 5:0: failed to get current value for ch 0 (-22)
[  552.090180][   T24] usb 1-1: USB disconnect, device number 11
[  552.168586][   T64] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  552.203174][   T64] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  552.242476][   T64] bond0 (unregistering): Released all slaves
[  552.270011][ T9893] udevd[9893]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  552.483244][   T64] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  552.506020][   T64] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  552.539185][   T64] bond0 (unregistering): Released all slaves
[  552.612118][ T9643] batman_adv: batadv0: Adding interface: batadv_slave_0
[  552.628455][ T9643] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  552.662644][ T9643] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  552.898007][ T9643] batman_adv: batadv0: Adding interface: batadv_slave_1
[  552.906437][ T9643] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  552.938885][ T9643] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  552.977021][ T9587] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  553.794345][ T9587] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  553.883745][ T9637] batman_adv: batadv0: Adding interface: batadv_slave_0
[  553.893634][ T9637] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  553.925338][ T9637] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  553.955062][   T64] hsr_slave_0: left promiscuous mode
[  553.966267][   T64] hsr_slave_1: left promiscuous mode
[  553.980676][ T9907] trusted_key: syz.9.946 sent an empty control message without MSG_MORE.
[  553.985569][   T64] batman_adv: batadv0: Removing interface: batadv_slave_0
[  554.009542][   T64] batman_adv: batadv0: Removing interface: batadv_slave_1
[  554.028594][   T64] hsr_slave_0: left promiscuous mode
[  554.040800][   T64] hsr_slave_1: left promiscuous mode
[  554.052657][   T64] batman_adv: batadv0: Removing interface: batadv_slave_0
[  554.070303][   T64] batman_adv: batadv0: Removing interface: batadv_slave_1
[  554.445826][   T64] team0 (unregistering): Port device team_slave_1 removed
[  555.331041][   T64] team0 (unregistering): Port device team_slave_0 removed
[  555.543818][ T9919] netlink: 4 bytes leftover after parsing attributes in process `syz.9.949'.
[  556.710612][   T64] team0 (unregistering): Port device team_slave_1 removed
[  556.802878][   T64] team0 (unregistering): Port device team_slave_0 removed
[  559.562335][ T9951] random: crng reseeded on system resumption
[  560.281413][ T9587] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  560.316915][ T9637] batman_adv: batadv0: Adding interface: batadv_slave_1
[  560.330852][ T9637] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  560.362665][ T9637] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  561.029328][ T9643] hsr_slave_0: entered promiscuous mode
[  561.053592][ T9643] hsr_slave_1: entered promiscuous mode
[  561.069117][ T9643] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  561.084709][ T9643] Cannot create hsr debugfs directory
[  561.657815][ T9637] hsr_slave_0: entered promiscuous mode
[  561.690168][ T9637] hsr_slave_1: entered promiscuous mode
[  561.713607][ T9637] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  561.742799][ T9637] Cannot create hsr debugfs directory
[  562.335891][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  562.345934][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  565.668963][ T9587] 8021q: adding VLAN 0 to HW filter on device bond0
[  565.993486][ T9587] 8021q: adding VLAN 0 to HW filter on device team0
[  567.142818][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  567.151423][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  567.193602][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  567.202256][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  567.240992][ T9587] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  567.254710][ T9587] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  568.558335][ T9637] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  568.668605][ T9637] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  568.775558][ T9637] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  569.516059][ T9637] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  570.664549][ T9587] 8021q: adding VLAN 0 to HW filter on device batadv0
[  571.435114][T10060] bridge1: entered allmulticast mode
[  571.553882][ T9643] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  571.603010][ T9643] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  571.798639][ T9643] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  572.633186][ T9643] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  574.235839][ T9637] 8021q: adding VLAN 0 to HW filter on device bond0
[  574.920422][ T9637] 8021q: adding VLAN 0 to HW filter on device team0
[  574.950791][   T30] audit: type=1800 audit(1748798959.405:107): pid=10096 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.999" name="/" dev="9p" ino=2 res=0 errno=0
[  574.973481][    C0] vkms_vblank_simulate: vblank timer overrun
[  575.040786][T10096] netfs: Couldn't get user pages (rc=-14)
[  575.105751][ T6387] bridge0: port 1(bridge_slave_0) entered blocking state
[  575.114457][ T6387] bridge0: port 1(bridge_slave_0) entered forwarding state
[  575.228109][ T6387] bridge0: port 2(bridge_slave_1) entered blocking state
[  575.236738][ T6387] bridge0: port 2(bridge_slave_1) entered forwarding state
[  575.487433][ T9643] 8021q: adding VLAN 0 to HW filter on device bond0
[  576.173722][ T5841] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  576.191598][ T5841] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  576.209084][ T5841] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  576.222712][ T5841] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  576.234334][ T5841] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  576.448061][ T9643] 8021q: adding VLAN 0 to HW filter on device team0
[  577.942711][ T6385] bridge0: port 1(bridge_slave_0) entered blocking state
[  577.951375][ T6385] bridge0: port 1(bridge_slave_0) entered forwarding state
[  578.027507][ T6385] bridge0: port 2(bridge_slave_1) entered blocking state
[  578.036152][ T6385] bridge0: port 2(bridge_slave_1) entered forwarding state
[  578.266283][ T5841] Bluetooth: hci6: command tx timeout
[  578.494422][ T9637] 8021q: adding VLAN 0 to HW filter on device batadv0
[  580.346453][ T5841] Bluetooth: hci6: command tx timeout
[  580.703697][T10157] Zero length message leads to an empty skb
[  580.819767][ T5837] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  580.830788][ T5837] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  580.841054][ T5837] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  580.857495][ T5837] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  580.878304][ T5837] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  582.425071][ T5837] Bluetooth: hci6: command tx timeout
[  582.594222][ T5841] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  582.625383][ T5841] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  582.926797][ T5841] Bluetooth: hci2: command tx timeout
[  582.939364][ T5841] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  582.958703][ T5841] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  582.991762][ T5841] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  583.620905][ T1151] bridge_slave_1: left allmulticast mode
[  583.641494][ T1151] bridge_slave_1: left promiscuous mode
[  583.654003][ T1151] bridge0: port 2(bridge_slave_1) entered disabled state
[  583.678466][ T1151] bridge_slave_0: left allmulticast mode
[  583.685464][ T1151] bridge_slave_0: left promiscuous mode
[  583.692418][ T1151] bridge0: port 1(bridge_slave_0) entered disabled state
[  584.530191][ T5841] Bluetooth: hci6: command tx timeout
[  584.984561][ T5841] Bluetooth: hci2: command tx timeout
[  585.064647][ T5841] Bluetooth: hci4: command tx timeout
[  586.546995][ T1151] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  587.525341][ T5845] Bluetooth: hci4: command tx timeout
[  587.531971][ T5841] Bluetooth: hci2: command tx timeout
[  587.583340][ T1151] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  587.716854][ T1151] bond0 (unregistering): Released all slaves
[  589.823520][ T5841] Bluetooth: hci4: command tx timeout
[  589.825603][ T5837] Bluetooth: hci2: command tx timeout
[  590.751193][T10108] chnl_net:caif_netlink_parms(): no params data found
[  591.306281][ T1151] hsr_slave_0: left promiscuous mode
[  591.393760][ T1151] hsr_slave_1: left promiscuous mode
[  591.519488][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_0
[  591.701007][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_1
[  591.868755][ T5837] Bluetooth: hci4: command tx timeout
[  592.084201][T10273] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1029'.
[  592.122733][T10273] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1029'.
[  593.339289][T10286] sctp: failed to load transform for md5: -2
[  594.298887][ T1151] team0 (unregistering): Port device team_slave_1 removed
[  595.306785][ T1151] team0 (unregistering): Port device team_slave_0 removed
[  600.985545][ T5837] Bluetooth: hci5: unexpected event for opcode 0x1804
[  601.211775][T10160] chnl_net:caif_netlink_parms(): no params data found
[  601.942459][T10108] bridge0: port 1(bridge_slave_0) entered blocking state
[  601.972587][T10108] bridge0: port 1(bridge_slave_0) entered disabled state
[  602.013780][T10108] bridge_slave_0: entered allmulticast mode
[  602.055811][T10108] bridge_slave_0: entered promiscuous mode
[  602.092226][T10108] bridge0: port 2(bridge_slave_1) entered blocking state
[  602.119428][T10108] bridge0: port 2(bridge_slave_1) entered disabled state
[  602.130803][T10108] bridge_slave_1: entered allmulticast mode
[  602.146351][T10108] bridge_slave_1: entered promiscuous mode
[  603.488047][T10108] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  603.520437][T10108] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  603.805227][T10177] chnl_net:caif_netlink_parms(): no params data found
[  604.644782][T10108] team0: Port device team_slave_0 added
[  604.735827][T10108] team0: Port device team_slave_1 added
[  604.833754][T10160] bridge0: port 1(bridge_slave_0) entered blocking state
[  604.842325][T10160] bridge0: port 1(bridge_slave_0) entered disabled state
[  604.858813][T10160] bridge_slave_0: entered allmulticast mode
[  604.870270][T10160] bridge_slave_0: entered promiscuous mode
[  605.070556][ T5837] Bluetooth: hci5: Controller not accepting commands anymore: ncmd = 0
[  605.084687][ T5837] Bluetooth: hci5: Injecting HCI hardware error event
[  605.098510][ T5841] Bluetooth: hci5: hardware error 0x00
[  605.744292][T10160] bridge0: port 2(bridge_slave_1) entered blocking state
[  605.762625][T10160] bridge0: port 2(bridge_slave_1) entered disabled state
[  605.820765][T10160] bridge_slave_1: entered allmulticast mode
[  605.830008][T10160] bridge_slave_1: entered promiscuous mode
[  605.912707][T10108] batman_adv: batadv0: Adding interface: batadv_slave_0
[  605.914969][T10428] overlayfs: failed to clone lowerpath
[  605.933330][T10108] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  605.964963][T10108] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  605.997720][T10108] batman_adv: batadv0: Adding interface: batadv_slave_1
[  606.054975][T10108] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  606.130722][   T30] audit: type=1326 audit(1748798990.567:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10435 comm="syz.0.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5d38e969 code=0x7ffc0000
[  606.232132][   T30] audit: type=1326 audit(1748798990.597:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10435 comm="syz.0.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f2b5d38e969 code=0x7ffc0000
[  606.263841][T10108] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  606.306790][   T30] audit: type=1326 audit(1748798990.597:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10435 comm="syz.0.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5d38e969 code=0x7ffc0000
[  606.340726][   T30] audit: type=1326 audit(1748798990.597:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10435 comm="syz.0.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5d38e969 code=0x7ffc0000
[  607.089312][T10460] overlayfs: failed to clone upperpath
[  607.224028][T10461] overlayfs: failed to clone upperpath
[  607.409518][ T5841] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[  607.723256][   T30] audit: type=1326 audit(1748798990.597:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10435 comm="syz.0.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f2b5d38e969 code=0x7ffc0000
[  607.930830][   T30] audit: type=1326 audit(1748798990.597:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10435 comm="syz.0.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5d38e969 code=0x7ffc0000
[  607.959789][   T30] audit: type=1326 audit(1748798990.597:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10435 comm="syz.0.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5d38e969 code=0x7ffc0000
[  608.016352][   T30] audit: type=1326 audit(1748798990.597:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10435 comm="syz.0.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f2b5d38e969 code=0x7ffc0000
[  608.772369][   T30] audit: type=1326 audit(1748798990.597:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10435 comm="syz.0.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5d38e969 code=0x7ffc0000
[  608.860696][   T30] audit: type=1326 audit(1748798990.597:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10435 comm="syz.0.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f2b5d38e969 code=0x7ffc0000
[  610.105083][T10177] bridge0: port 1(bridge_slave_0) entered blocking state
[  610.147130][T10177] bridge0: port 1(bridge_slave_0) entered disabled state
[  610.158569][T10177] bridge_slave_0: entered allmulticast mode
[  610.172306][T10177] bridge_slave_0: entered promiscuous mode
[  610.328669][T10160] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  613.538809][T10108] hsr_slave_0: entered promiscuous mode
[  613.604304][T10108] hsr_slave_1: entered promiscuous mode
[  613.724785][T10108] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  613.768803][T10108] Cannot create hsr debugfs directory
[  613.787644][T10177] bridge0: port 2(bridge_slave_1) entered blocking state
[  613.819332][T10177] bridge0: port 2(bridge_slave_1) entered disabled state
[  613.846037][T10177] bridge_slave_1: entered allmulticast mode
[  613.881386][T10177] bridge_slave_1: entered promiscuous mode
[  614.034551][T10160] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  614.872679][T10177] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  616.310974][T10160] team0: Port device team_slave_0 added
[  618.297493][T10177] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  618.479536][T10160] team0: Port device team_slave_1 added
[  618.671151][T10177] team0: Port device team_slave_0 added
[  618.737116][T10160] batman_adv: batadv0: Adding interface: batadv_slave_0
[  618.738701][T10582] netlink: 'syz.9.1093': attribute type 14 has an invalid length.
[  618.754707][T10160] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  618.790981][T10160] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  618.862205][T10177] team0: Port device team_slave_1 added
[  619.035930][T10160] batman_adv: batadv0: Adding interface: batadv_slave_1
[  619.059812][T10160] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  619.175051][T10160] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  620.055095][T10595] overlayfs: failed to clone upperpath
[  620.062141][T10177] batman_adv: batadv0: Adding interface: batadv_slave_0
[  620.108863][T10177] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  620.160887][T10177] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  620.190695][T10177] batman_adv: batadv0: Adding interface: batadv_slave_1
[  620.205547][T10177] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  620.338880][T10177] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  621.146957][T10160] hsr_slave_0: entered promiscuous mode
[  621.184863][T10160] hsr_slave_1: entered promiscuous mode
[  621.192314][T10160] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  621.736937][T10160] Cannot create hsr debugfs directory
[  621.783596][T10177] hsr_slave_0: entered promiscuous mode
[  621.791432][T10177] hsr_slave_1: entered promiscuous mode
[  621.808022][T10177] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  621.820376][T10177] Cannot create hsr debugfs directory
[  623.633451][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  623.645318][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  625.549447][T10642] Process accounting resumed
[  625.962823][   T30] kauditd_printk_skb: 21 callbacks suppressed
[  625.962843][   T30] audit: type=1326 audit(1748799010.428:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10648 comm="syz.9.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd71918e969 code=0x7ffc0000
[  626.753910][   T30] audit: type=1326 audit(1748799010.438:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10648 comm="syz.9.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fd71918e969 code=0x7ffc0000
[  626.973380][   T30] audit: type=1326 audit(1748799010.438:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10648 comm="syz.9.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd71918e969 code=0x7ffc0000
[  627.018000][   T30] audit: type=1326 audit(1748799010.438:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10648 comm="syz.9.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd71918e969 code=0x7ffc0000
[  627.062976][   T30] audit: type=1326 audit(1748799010.438:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10648 comm="syz.9.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd71918e969 code=0x7ffc0000
[  627.116277][   T30] audit: type=1326 audit(1748799010.438:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10648 comm="syz.9.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd71918e969 code=0x7ffc0000
[  627.144510][   T30] audit: type=1326 audit(1748799010.478:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10648 comm="syz.9.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd71918e969 code=0x7ffc0000
[  627.251474][   T30] audit: type=1326 audit(1748799010.488:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10648 comm="syz.9.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd71918e969 code=0x7ffc0000
[  627.372256][   T30] audit: type=1326 audit(1748799010.508:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10648 comm="syz.9.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7fd71918e969 code=0x7ffc0000
[  627.422200][   T30] audit: type=1326 audit(1748799010.508:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10648 comm="syz.9.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd71918e969 code=0x7ffc0000
[  633.131917][T10108] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  633.224715][ T1151] bridge_slave_1: left allmulticast mode
[  633.231528][ T1151] bridge_slave_1: left promiscuous mode
[  633.313986][ T1151] bridge0: port 2(bridge_slave_1) entered disabled state
[  633.430747][ T1151] bridge_slave_0: left allmulticast mode
[  633.448635][ T1151] bridge_slave_0: left promiscuous mode
[  633.482154][ T1151] bridge0: port 1(bridge_slave_0) entered disabled state
[  633.645329][ T1151] bridge_slave_1: left allmulticast mode
[  633.676990][ T1151] bridge_slave_1: left promiscuous mode
[  633.693957][ T1151] bridge0: port 2(bridge_slave_1) entered disabled state
[  633.954169][ T1151] bridge_slave_0: left allmulticast mode
[  633.960986][ T1151] bridge_slave_0: left promiscuous mode
[  634.013902][ T1151] bridge0: port 1(bridge_slave_0) entered disabled state
[  634.309418][ T5841] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  634.332753][ T5841] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  634.349521][ T5841] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  634.368561][ T5841] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  634.378322][ T5841] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  636.651846][ T5837] Bluetooth: hci7: command tx timeout
[  638.661618][ T5837] Bluetooth: hci7: command tx timeout
[  638.836053][   T30] kauditd_printk_skb: 12 callbacks suppressed
[  638.836078][   T30] audit: type=1326 audit(1748799023.309:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.9.1134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd71918e969 code=0x7ffc0000
[  638.911565][   T30] audit: type=1326 audit(1748799023.349:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.9.1134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd71918e969 code=0x7ffc0000
[  638.942382][   T30] audit: type=1326 audit(1748799023.349:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.9.1134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd71918e969 code=0x7ffc0000
[  638.971180][   T30] audit: type=1326 audit(1748799023.349:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.9.1134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd71918e969 code=0x7ffc0000
[  639.024671][   T30] audit: type=1326 audit(1748799023.349:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.9.1134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd71918e969 code=0x7ffc0000
[  639.087712][ T6013] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  639.271833][ T6013] usb 1-1: Using ep0 maxpacket: 32
[  639.429144][ T6013] usb 1-1: config 0 has no interfaces?
[  639.499827][ T6013] usb 1-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=6f.be
[  639.637594][ T6013] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  639.742849][ T6013] usb 1-1: config 0 descriptor??
[  639.957905][T10748] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  639.968436][T10748] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  639.995769][ T1151] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  640.015724][ T5894] usb 1-1: USB disconnect, device number 12
[  640.062344][ T1151] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  640.101122][ T1151] bond0 (unregistering): Released all slaves
[  640.461181][ T5841] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  640.482316][ T5841] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  640.494978][ T5841] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  640.507942][ T5841] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  640.517217][ T5841] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  640.752149][ T5841] Bluetooth: hci7: command tx timeout
[  640.795416][ T1151] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  640.825175][ T1151] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  641.083826][ T1151] bond0 (unregistering): Released all slaves
[  642.661749][ T5841] Bluetooth: hci6: command tx timeout
[  642.823467][ T5841] Bluetooth: hci7: command tx timeout
[  643.473997][ T5837] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  643.499170][ T5837] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  643.508682][ T5837] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  643.522326][ T5837] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  643.532539][ T5837] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  644.741565][ T5837] Bluetooth: hci6: command tx timeout
[  645.691240][ T5837] Bluetooth: hci8: command tx timeout
[  645.951402][ T1151] hsr_slave_0: left promiscuous mode
[  645.970008][ T1151] hsr_slave_1: left promiscuous mode
[  645.991466][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_0
[  646.063781][T10817] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1148'.
[  646.829214][ T5837] Bluetooth: hci6: command tx timeout
[  646.841930][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_1
[  646.941223][ T1151] hsr_slave_0: left promiscuous mode
[  646.986841][ T1151] hsr_slave_1: left promiscuous mode
[  647.002173][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_0
[  647.018883][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_1
[  647.981130][ T5841] Bluetooth: hci8: command tx timeout
[  648.911012][ T5837] Bluetooth: hci6: command tx timeout
[  650.023446][ T5837] Bluetooth: hci8: command tx timeout
[  651.524453][ T5851] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  651.680896][ T5851] usb 1-1: Using ep0 maxpacket: 8
[  651.702104][ T5851] usb 1-1: New USB device found, idVendor=04a5, idProduct=3003, bcdDevice=3a.b2
[  651.713557][ T5851] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  651.723269][ T5851] usb 1-1: Product: syz
[  651.728346][ T5851] usb 1-1: Manufacturer: syz
[  651.733964][ T5851] usb 1-1: SerialNumber: syz
[  651.750377][ T5851] usb 1-1: config 0 descriptor??
[  651.974225][ T5851] gspca_main: sunplus-2.14.0 probing 04a5:3003
[  651.984624][ T1151] team0 (unregistering): Port device team_slave_1 removed
[  652.035761][ T1151] team0 (unregistering): Port device team_slave_0 removed
[  652.105766][ T5837] Bluetooth: hci8: command tx timeout
[  653.175099][ T5851] gspca_sunplus: reg_w_riv err -71
[  653.200982][ T5851] sunplus 1-1:0.0: probe with driver sunplus failed with error -71
[  653.237711][ T5851] usb 1-1: USB disconnect, device number 13
[  653.681508][ T1151] team0 (unregistering): Port device team_slave_1 removed
[  653.761268][ T1151] team0 (unregistering): Port device team_slave_0 removed
[  657.302567][T10858] bridge_slave_0: left allmulticast mode
[  657.309387][T10858] bridge_slave_0: left promiscuous mode
[  657.370344][T10858] bridge0: port 1(bridge_slave_0) entered disabled state
[  657.406865][T10858] bridge_slave_1: left allmulticast mode
[  657.420769][T10858] bridge_slave_1: left promiscuous mode
[  657.435360][T10858] bridge0: port 2(bridge_slave_1) entered disabled state
[  657.453410][T10858] bond0: (slave bond_slave_0): Releasing backup interface
[  657.482960][T10858] bond0: (slave bond_slave_1): Releasing backup interface
[  657.544665][T10858] team0: Port device team_slave_0 removed
[  657.675563][T10898] overlayfs: failed to resolve './file0': -2
[  657.696232][T10858] team0: Port device team_slave_1 removed
[  657.712522][T10858] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  657.721793][T10858] batman_adv: batadv0: Removing interface: batadv_slave_0
[  658.552361][T10858] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  658.574172][T10858] batman_adv: batadv0: Removing interface: batadv_slave_1
[  658.665346][T10858] syz.9.1159 (10858) used greatest stack depth: 19928 bytes left
[  666.453191][T10960] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1184'.
[  666.631001][T10960] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1184'.
[  668.679661][T10960] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  668.696118][T10960] ip6gretap0: entered promiscuous mode
[  668.788801][T10979] netlink: 392 bytes leftover after parsing attributes in process `syz.9.1187'.
[  669.480261][T10712] chnl_net:caif_netlink_parms(): no params data found
[  669.695684][T10755] chnl_net:caif_netlink_parms(): no params data found
[  669.771922][T11001] overlayfs: failed to clone upperpath
[  675.069588][T10782] chnl_net:caif_netlink_parms(): no params data found
[  676.115534][ T5841] Bluetooth: hci8: command 0x0405 tx timeout
[  676.128440][T11061] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  676.445634][T10755] bridge0: port 1(bridge_slave_0) entered blocking state
[  676.459556][T10755] bridge0: port 1(bridge_slave_0) entered disabled state
[  676.484119][T10755] bridge_slave_0: entered allmulticast mode
[  676.497989][T10755] bridge_slave_0: entered promiscuous mode
[  676.509090][T10712] bridge0: port 1(bridge_slave_0) entered blocking state
[  676.518828][T10712] bridge0: port 1(bridge_slave_0) entered disabled state
[  676.529084][T10712] bridge_slave_0: entered allmulticast mode
[  676.540223][T10712] bridge_slave_0: entered promiscuous mode
[  676.587001][T10755] bridge0: port 2(bridge_slave_1) entered blocking state
[  676.597313][T10755] bridge0: port 2(bridge_slave_1) entered disabled state
[  676.607256][T10755] bridge_slave_1: entered allmulticast mode
[  676.616807][T10755] bridge_slave_1: entered promiscuous mode
[  676.644784][T10712] bridge0: port 2(bridge_slave_1) entered blocking state
[  676.653952][T10712] bridge0: port 2(bridge_slave_1) entered disabled state
[  676.663288][T10712] bridge_slave_1: entered allmulticast mode
[  676.673254][T10712] bridge_slave_1: entered promiscuous mode
[  676.783329][T10755] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  677.096068][T10782] bridge0: port 1(bridge_slave_0) entered blocking state
[  677.196695][T10782] bridge0: port 1(bridge_slave_0) entered disabled state
[  677.218515][T10782] bridge_slave_0: entered allmulticast mode
[  677.257902][T10782] bridge_slave_0: entered promiscuous mode
[  677.284259][T10755] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  677.302647][T10712] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  677.391894][T10782] bridge0: port 2(bridge_slave_1) entered blocking state
[  677.407357][T10782] bridge0: port 2(bridge_slave_1) entered disabled state
[  677.431223][T10782] bridge_slave_1: entered allmulticast mode
[  677.496708][T10782] bridge_slave_1: entered promiscuous mode
[  678.161277][T10712] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  679.532423][T10755] team0: Port device team_slave_0 added
[  680.436631][T11109] overlayfs: failed to clone upperpath
[  680.504295][T10782] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  680.584241][T10782] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  680.607562][T10755] team0: Port device team_slave_1 added
[  680.765105][T10712] team0: Port device team_slave_0 added
[  680.838305][T10712] team0: Port device team_slave_1 added
[  681.699758][T10782] team0: Port device team_slave_0 added
[  681.744395][T10782] team0: Port device team_slave_1 added
[  681.782346][T10755] batman_adv: batadv0: Adding interface: batadv_slave_0
[  681.817547][T10755] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  682.022017][T10755] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  682.048077][T10755] batman_adv: batadv0: Adding interface: batadv_slave_1
[  682.097716][T10755] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  682.567913][T10755] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  682.805501][T10712] batman_adv: batadv0: Adding interface: batadv_slave_0
[  682.832952][T10712] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  682.898157][T10712] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  683.257282][T11144] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1218'.
[  683.910655][T10712] batman_adv: batadv0: Adding interface: batadv_slave_1
[  683.943790][T10712] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  684.009100][T10712] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  684.026074][T10782] batman_adv: batadv0: Adding interface: batadv_slave_0
[  684.050948][T10782] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  684.109585][T10782] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  684.153058][T11144] : entered promiscuous mode
[  684.372024][T10782] batman_adv: batadv0: Adding interface: batadv_slave_1
[  684.390564][T10782] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  684.479818][T10782] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  684.681071][T10755] hsr_slave_0: entered promiscuous mode
[  684.704891][T10755] hsr_slave_1: entered promiscuous mode
[  684.722344][T10755] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  684.754053][T10755] Cannot create hsr debugfs directory
[  684.984067][T10712] hsr_slave_0: entered promiscuous mode
[  684.992623][T10712] hsr_slave_1: entered promiscuous mode
[  685.009879][T10712] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  685.140766][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  685.644004][T10712] Cannot create hsr debugfs directory
[  685.644476][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  685.867634][T10782] hsr_slave_0: entered promiscuous mode
[  685.904829][T10782] hsr_slave_1: entered promiscuous mode
[  685.923092][T10782] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  685.952754][T10782] Cannot create hsr debugfs directory
[  688.088109][ T1151] bridge_slave_1: left allmulticast mode
[  688.098252][ T1151] bridge_slave_1: left promiscuous mode
[  688.114680][ T1151] bridge0: port 2(bridge_slave_1) entered disabled state
[  688.127213][ T1151] bridge_slave_0: left allmulticast mode
[  688.141635][ T1151] bridge_slave_0: left promiscuous mode
[  688.148559][ T1151] bridge0: port 1(bridge_slave_0) entered disabled state
[  688.203926][T11197] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1230'.
[  688.221183][ T1151] bridge_slave_1: left allmulticast mode
[  688.233422][ T1151] bridge_slave_1: left promiscuous mode
[  688.247544][ T1151] bridge0: port 2(bridge_slave_1) entered disabled state
[  688.295179][ T1151] bridge_slave_0: left allmulticast mode
[  688.307889][ T1151] bridge_slave_0: left promiscuous mode
[  688.317975][ T1151] bridge0: port 1(bridge_slave_0) entered disabled state
[  688.336446][ T1151] bridge_slave_1: left allmulticast mode
[  688.343461][ T1151] bridge_slave_1: left promiscuous mode
[  688.350819][ T1151] bridge0: port 2(bridge_slave_1) entered disabled state
[  688.363301][ T1151] bridge_slave_0: left allmulticast mode
[  688.374495][ T1151] bridge_slave_0: left promiscuous mode
[  688.385272][ T1151] bridge0: port 1(bridge_slave_0) entered disabled state
[  688.564537][ T1151] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  688.578015][ T1151] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  688.596417][ T1151] bond0 (unregistering): Released all slaves
[  688.786854][ T1151] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  688.805953][ T1151] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  688.835491][ T1151] bond0 (unregistering): Released all slaves
[  689.042776][ T1151] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  689.056420][ T1151] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  689.078211][ T1151] bond0 (unregistering): Released all slaves
[  689.426567][ T1151] hsr_slave_0: left promiscuous mode
[  689.467716][ T1151] hsr_slave_1: left promiscuous mode
[  689.479559][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_0
[  689.523181][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_1
[  690.454300][ T1151] hsr_slave_0: left promiscuous mode
[  690.516733][ T1151] hsr_slave_1: left promiscuous mode
[  690.555538][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_0
[  690.625292][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_1
[  690.684513][ T1151] hsr_slave_0: left promiscuous mode
[  690.738187][ T1151] hsr_slave_1: left promiscuous mode
[  690.754897][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_0
[  690.775777][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_1
[  691.186377][   T30] audit: type=1326 audit(1748799075.652:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11230 comm="syz.9.1234" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd71918e969 code=0x7ffc0000
[  691.216796][   T30] audit: type=1326 audit(1748799075.652:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11230 comm="syz.9.1234" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd71918e969 code=0x7ffc0000
[  692.366918][ T1151] team0 (unregistering): Port device team_slave_1 removed
[  692.598716][ T1151] team0 (unregistering): Port device team_slave_0 removed
[  693.942954][ T5837] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  693.993062][ T5837] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  694.007586][ T5837] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  694.029748][ T5837] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  694.142163][ T5837] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  694.935272][ T1151] team0 (unregistering): Port device team_slave_1 removed
[  695.000328][ T1151] team0 (unregistering): Port device team_slave_0 removed
[  695.169809][ T5841] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  695.181841][ T5841] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  695.194451][ T5841] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  695.206887][ T5841] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  695.219002][ T5841] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  695.483805][ T1151] team0 (unregistering): Port device team_slave_1 removed
[  695.526887][ T1151] team0 (unregistering): Port device team_slave_0 removed
[  695.856648][T11262] bridge0: port 1(bridge_slave_0) entered disabled state
[  695.901590][T11262] bridge0: port 2(bridge_slave_1) entered disabled state
[  696.273487][ T5837] Bluetooth: hci2: command tx timeout
[  697.319729][ T5837] Bluetooth: hci4: command tx timeout
[  698.338605][ T5837] Bluetooth: hci2: command tx timeout
[  698.493758][T11289] overlayfs: failed to clone lowerpath
[  698.617045][T10755] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  698.638004][T10755] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  698.791530][T11295] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1251'.
[  698.860434][T11295] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1251'.
[  698.863349][T10755] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  698.875792][T11295] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1251'.
[  698.893423][T11296] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1251'.
[  698.989932][T11296] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1251'.
[  699.381214][ T5837] Bluetooth: hci4: command tx timeout
[  699.565589][T10755] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  699.654092][T11250] chnl_net:caif_netlink_parms(): no params data found
[  700.102489][T10782] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  700.137085][T11264] chnl_net:caif_netlink_parms(): no params data found
[  700.223781][T10782] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  700.276324][T11250] bridge0: port 1(bridge_slave_0) entered blocking state
[  700.298168][T11250] bridge0: port 1(bridge_slave_0) entered disabled state
[  700.306863][T11250] bridge_slave_0: entered allmulticast mode
[  700.331228][T11250] bridge_slave_0: entered promiscuous mode
[  700.350528][T10782] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  700.390992][T11250] bridge0: port 2(bridge_slave_1) entered blocking state
[  700.402286][T11250] bridge0: port 2(bridge_slave_1) entered disabled state
[  700.411886][T11250] bridge_slave_1: entered allmulticast mode
[  700.429322][ T5837] Bluetooth: hci2: command tx timeout
[  700.448603][T11250] bridge_slave_1: entered promiscuous mode
[  700.532808][T10782] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  700.656075][T11250] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  700.711382][T11250] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  701.018840][T11264] bridge0: port 1(bridge_slave_0) entered blocking state
[  701.027505][T11264] bridge0: port 1(bridge_slave_0) entered disabled state
[  701.037694][T11264] bridge_slave_0: entered allmulticast mode
[  701.047590][T11264] bridge_slave_0: entered promiscuous mode
[  701.063743][T11250] team0: Port device team_slave_0 added
[  701.080959][T11250] team0: Port device team_slave_1 added
[  701.099945][T11264] bridge0: port 2(bridge_slave_1) entered blocking state
[  701.108788][T11264] bridge0: port 2(bridge_slave_1) entered disabled state
[  701.118832][T11264] bridge_slave_1: entered allmulticast mode
[  701.128189][T11264] bridge_slave_1: entered promiscuous mode
[  701.233767][T11264] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  701.318554][T11250] batman_adv: batadv0: Adding interface: batadv_slave_0
[  701.326908][T11250] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  701.398330][T11250] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  701.430976][T11250] batman_adv: batadv0: Adding interface: batadv_slave_1
[  701.445841][T11250] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  701.508909][T11250] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  701.541495][T11264] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  701.618468][ T5841] Bluetooth: hci4: command tx timeout
[  701.670396][ T5837] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  701.681994][ T5837] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  701.692431][ T5837] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  701.715908][ T5837] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  701.728663][ T5837] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  701.789578][T11264] team0: Port device team_slave_0 added
[  701.801073][T11264] team0: Port device team_slave_1 added
[  701.983913][T11250] hsr_slave_0: entered promiscuous mode
[  702.009661][T11250] hsr_slave_1: entered promiscuous mode
[  702.017308][T11250] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  702.049619][T11250] Cannot create hsr debugfs directory
[  703.050502][ T5841] Bluetooth: hci2: command tx timeout
[  703.159108][ T5837] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  703.174050][ T5837] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  703.184815][ T5837] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  703.200814][ T5837] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  703.256748][ T5837] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  703.282272][T11264] batman_adv: batadv0: Adding interface: batadv_slave_0
[  703.318197][T11264] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  703.383624][T11264] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  703.455275][T11264] batman_adv: batadv0: Adding interface: batadv_slave_1
[  703.474872][T11264] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  703.508146][T11264] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  703.697931][ T5837] Bluetooth: hci4: command tx timeout
[  703.780705][ T5837] Bluetooth: hci6: command tx timeout
[  704.606752][T11264] hsr_slave_0: entered promiscuous mode
[  704.640614][T11264] hsr_slave_1: entered promiscuous mode
[  704.669439][T11264] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  704.714030][T11264] Cannot create hsr debugfs directory
[  705.747873][ T5837] Bluetooth: hci7: command tx timeout
[  705.857838][ T5837] Bluetooth: hci6: command tx timeout
[  706.264326][T11314] chnl_net:caif_netlink_parms(): no params data found
[  707.780264][ T5837] Bluetooth: hci7: command tx timeout
[  708.027806][ T5837] Bluetooth: hci6: command tx timeout
[  708.305458][T11314] bridge0: port 1(bridge_slave_0) entered blocking state
[  708.320696][T11314] bridge0: port 1(bridge_slave_0) entered disabled state
[  708.343445][T11314] bridge_slave_0: entered allmulticast mode
[  708.364781][T11314] bridge_slave_0: entered promiscuous mode
[  708.375329][T11314] bridge0: port 2(bridge_slave_1) entered blocking state
[  708.385048][T11314] bridge0: port 2(bridge_slave_1) entered disabled state
[  708.394074][T11314] bridge_slave_1: entered allmulticast mode
[  708.403610][T11314] bridge_slave_1: entered promiscuous mode
[  709.375285][T11314] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  709.410536][ T1151] bridge_slave_1: left allmulticast mode
[  709.417325][ T1151] bridge_slave_1: left promiscuous mode
[  709.428306][ T1151] bridge0: port 2(bridge_slave_1) entered disabled state
[  709.664594][ T1151] bridge_slave_0: left allmulticast mode
[  709.671672][ T1151] bridge_slave_0: left promiscuous mode
[  709.679556][ T1151] bridge0: port 1(bridge_slave_0) entered disabled state
[  709.720713][ T1151] bridge_slave_1: left allmulticast mode
[  709.728259][ T1151] bridge_slave_1: left promiscuous mode
[  709.736360][ T1151] bridge0: port 2(bridge_slave_1) entered disabled state
[  709.857783][ T1151] bridge_slave_0: left allmulticast mode
[  709.868120][ T5837] Bluetooth: hci7: command tx timeout
[  709.945021][ T1151] bridge_slave_0: left promiscuous mode
[  710.035071][ T1151] bridge0: port 1(bridge_slave_0) entered disabled state
[  710.098224][ T5837] Bluetooth: hci6: command tx timeout
[  710.622851][ T1151] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  710.649031][ T1151] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  710.673676][ T1151] bond0 (unregistering): Released all slaves
[  710.833954][ T1151] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  710.868070][ T1151] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  710.890268][ T1151] bond0 (unregistering): Released all slaves
[  711.121413][T11314] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  711.938718][ T5837] Bluetooth: hci7: command tx timeout
[  711.981072][T11412] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1278'.
[  713.156395][T11314] team0: Port device team_slave_0 added
[  713.329165][ T1151] hsr_slave_0: left promiscuous mode
[  713.344587][ T1151] hsr_slave_1: left promiscuous mode
[  713.357716][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_0
[  713.385140][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_1
[  713.419837][ T1151] hsr_slave_0: left promiscuous mode
[  713.437398][ T1151] hsr_slave_1: left promiscuous mode
[  713.488917][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_0
[  713.519375][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_1
[  715.395754][ T1151] team0 (unregistering): Port device team_slave_1 removed
[  715.649310][ T1151] team0 (unregistering): Port device team_slave_0 removed
[  717.260723][ T1151] team0 (unregistering): Port device team_slave_1 removed
[  717.326042][ T1151] team0 (unregistering): Port device team_slave_0 removed
[  718.182568][T11314] team0: Port device team_slave_1 added
[  719.370611][T11314] batman_adv: batadv0: Adding interface: batadv_slave_0
[  719.396236][T11314] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  719.441358][T11314] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  719.614737][T11335] chnl_net:caif_netlink_parms(): no params data found
[  719.669850][T11314] batman_adv: batadv0: Adding interface: batadv_slave_1
[  719.697353][T11314] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  719.767116][T11314] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  720.131147][T11314] hsr_slave_0: entered promiscuous mode
[  720.168201][T11314] hsr_slave_1: entered promiscuous mode
[  720.211875][T11314] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  720.227869][T11314] Cannot create hsr debugfs directory
[  720.730669][T11335] bridge0: port 1(bridge_slave_0) entered blocking state
[  720.746275][T11335] bridge0: port 1(bridge_slave_0) entered disabled state
[  720.756661][T11335] bridge_slave_0: entered allmulticast mode
[  720.767412][T11335] bridge_slave_0: entered promiscuous mode
[  720.819879][T11335] bridge0: port 2(bridge_slave_1) entered blocking state
[  720.830914][T11335] bridge0: port 2(bridge_slave_1) entered disabled state
[  720.840410][T11335] bridge_slave_1: entered allmulticast mode
[  720.853138][T11335] bridge_slave_1: entered promiscuous mode
[  720.860212][   T30] audit: type=1326 audit(1748799105.324:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11481 comm="syz.1.1302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f459df8e969 code=0x7fc00000
[  720.993257][T11250] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  721.020005][T11335] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  721.056446][T11335] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  721.134611][T11250] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  722.271288][T11335] team0: Port device team_slave_0 added
[  722.506110][T11250] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  722.952398][T11503] xt_nat: multiple ranges no longer supported
[  722.993397][T11335] team0: Port device team_slave_1 added
[  723.008762][T11250] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  723.260356][T11335] batman_adv: batadv0: Adding interface: batadv_slave_0
[  723.274570][T11335] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  723.542492][T11335] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  723.564482][T11335] batman_adv: batadv0: Adding interface: batadv_slave_1
[  724.555227][T11335] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  724.617193][T11335] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  725.703105][T11335] hsr_slave_0: entered promiscuous mode
[  725.720566][T11335] hsr_slave_1: entered promiscuous mode
[  725.729184][T11335] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  725.738579][T11335] Cannot create hsr debugfs directory
[  725.933119][T11264] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  725.945711][T11264] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  725.958784][T11264] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  725.974892][T11264] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  726.329943][ T1151] bridge_slave_1: left allmulticast mode
[  726.369922][ T1151] bridge_slave_1: left promiscuous mode
[  726.384618][ T1151] bridge0: port 2(bridge_slave_1) entered disabled state
[  726.397194][ T1151] bridge_slave_0: left allmulticast mode
[  726.405612][ T1151] bridge_slave_0: left promiscuous mode
[  726.414638][ T1151] bridge0: port 1(bridge_slave_0) entered disabled state
[  726.703999][ T1151] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  726.722562][ T1151] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  727.381490][ T1151] bond0 (unregistering): Released all slaves
[  727.563042][ T1151] hsr_slave_0: left promiscuous mode
[  727.575973][ T1151] hsr_slave_1: left promiscuous mode
[  727.584142][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_0
[  727.593667][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_1
[  728.527844][ T1151] team0 (unregistering): Port device team_slave_1 removed
[  728.669751][ T1151] team0 (unregistering): Port device team_slave_0 removed
[  728.941868][T11250] 8021q: adding VLAN 0 to HW filter on device bond0
[  729.519711][T11250] 8021q: adding VLAN 0 to HW filter on device team0
[  729.831652][   T64] bridge0: port 1(bridge_slave_0) entered blocking state
[  729.840283][   T64] bridge0: port 1(bridge_slave_0) entered forwarding state
[  729.880044][   T64] bridge0: port 2(bridge_slave_1) entered blocking state
[  729.888597][   T64] bridge0: port 2(bridge_slave_1) entered forwarding state
[  729.987653][T11314] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  730.025183][T11264] 8021q: adding VLAN 0 to HW filter on device bond0
[  730.077480][T11314] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  730.105069][T11314] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  730.133276][T11250] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  730.200539][T11314] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  730.248072][T11264] 8021q: adding VLAN 0 to HW filter on device team0
[  730.323770][ T1151] bridge0: port 1(bridge_slave_0) entered blocking state
[  730.332405][ T1151] bridge0: port 1(bridge_slave_0) entered forwarding state
[  730.466154][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  730.474740][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  730.923287][T11335] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  730.944606][T11335] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  731.000982][T11335] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  731.052344][T11335] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  731.113044][T11314] 8021q: adding VLAN 0 to HW filter on device bond0
[  731.149810][T11250] 8021q: adding VLAN 0 to HW filter on device batadv0
[  731.265814][T11314] 8021q: adding VLAN 0 to HW filter on device team0
[  731.343857][T10514] bridge0: port 1(bridge_slave_0) entered blocking state
[  731.352519][T10514] bridge0: port 1(bridge_slave_0) entered forwarding state
[  731.404424][ T1151] bridge0: port 2(bridge_slave_1) entered blocking state
[  731.413042][ T1151] bridge0: port 2(bridge_slave_1) entered forwarding state
[  731.484109][T11250] veth0_vlan: entered promiscuous mode
[  731.543596][T11250] veth1_vlan: entered promiscuous mode
[  731.635188][T11264] 8021q: adding VLAN 0 to HW filter on device batadv0
[  731.674707][T11250] veth0_macvtap: entered promiscuous mode
[  731.732188][T11250] veth1_macvtap: entered promiscuous mode
[  731.823282][T11335] 8021q: adding VLAN 0 to HW filter on device bond0
[  731.881904][T11250] batman_adv: batadv0: Interface activated: batadv_slave_0
[  731.951390][T11250] batman_adv: batadv0: Interface activated: batadv_slave_1
[  732.009458][T11335] 8021q: adding VLAN 0 to HW filter on device team0
[  732.064460][T11250] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  732.101069][T11250] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  732.126862][T11250] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  732.139689][T11250] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  732.204681][T10514] bridge0: port 1(bridge_slave_0) entered blocking state
[  732.213303][T10514] bridge0: port 1(bridge_slave_0) entered forwarding state
[  732.294930][T10514] bridge0: port 2(bridge_slave_1) entered blocking state
[  732.303581][T10514] bridge0: port 2(bridge_slave_1) entered forwarding state
[  732.736484][T11314] 8021q: adding VLAN 0 to HW filter on device batadv0
[  732.792323][ T6231] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  732.813303][T11579] tipc: Failed to remove unknown binding: 66,1,1/0:2403446841/2403446843
[  732.846448][ T6231] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  732.985955][T10524] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  733.001582][T11264] veth0_vlan: entered promiscuous mode
[  733.017114][T10524] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  733.072314][T11264] veth1_vlan: entered promiscuous mode
[  733.292631][T11264] veth0_macvtap: entered promiscuous mode
[  733.368644][T11264] veth1_macvtap: entered promiscuous mode
[  734.204305][T11264] batman_adv: batadv0: Interface activated: batadv_slave_0
[  734.406002][T11264] batman_adv: batadv0: Interface activated: batadv_slave_1
[  734.455241][T11264] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  734.886484][T11264] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  734.988430][T11264] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  735.133308][T11264] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  735.890131][T11614] loop3: detected capacity change from 0 to 256
[  736.765134][T11314] veth0_vlan: entered promiscuous mode
[  736.776154][ T6387] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  736.804458][ T6387] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  736.955651][T11314] veth1_vlan: entered promiscuous mode
[  737.182039][   T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  737.214584][   T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  738.282416][T11335] 8021q: adding VLAN 0 to HW filter on device batadv0
[  739.413513][T11314] veth0_macvtap: entered promiscuous mode
[  739.533564][T11314] veth1_macvtap: entered promiscuous mode
[  739.839793][T11314] batman_adv: batadv0: Interface activated: batadv_slave_0
[  739.857146][T11648] loop3: detected capacity change from 0 to 16
[  739.908316][T11648] erofs (device loop3): mounted with root inode @ nid 36.
[  739.981682][T11314] batman_adv: batadv0: Interface activated: batadv_slave_1
[  740.256982][T11314] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  740.286177][T11314] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  740.395589][T11653] syz.3.1324: attempt to access beyond end of device
[  740.395589][T11653] loop3: rw=0, sector=14546590680, nr_sectors = 16 limit=16
[  740.413906][T11653] erofs (device loop3): read error -5 @ 43 of nid 36
[  741.068341][T11314] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  741.151867][T11314] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  742.239272][T10524] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  742.296052][T10524] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  742.512923][T11672] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1329'.
[  743.332719][T10524] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  743.434410][T10524] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  743.567402][ T5841] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  743.602851][ T5841] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  743.617086][ T5841] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  743.633445][T11335] veth0_vlan: entered promiscuous mode
[  743.642254][ T5841] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  743.661568][ T5841] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  745.056996][T11335] veth1_vlan: entered promiscuous mode
[  745.460577][T11335] veth0_macvtap: entered promiscuous mode
[  745.776207][ T5841] Bluetooth: hci8: command tx timeout
[  746.168573][T11335] veth1_macvtap: entered promiscuous mode
[  746.507324][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  746.515990][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  746.734323][   T36] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  746.867203][T11335] batman_adv: batadv0: Interface activated: batadv_slave_0
[  746.942179][T11335] batman_adv: batadv0: Interface activated: batadv_slave_1
[  747.182674][   T36] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  747.320179][T11335] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  747.331041][T11335] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  747.351494][T11335] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  747.362343][T11335] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  747.562090][   T36] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  747.857924][ T5841] Bluetooth: hci8: command tx timeout
[  748.464379][   T36] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  748.537333][T11726] loop4: detected capacity change from 0 to 40427
[  748.553702][T11726] F2FS-fs (loop4): invalid crc value
[  748.708185][T11726] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  748.726826][   T64] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  748.806083][T11682] chnl_net:caif_netlink_parms(): no params data found
[  749.001200][   T64] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  749.122372][T11741] syz.4.1338: attempt to access beyond end of device
[  749.122372][T11741] loop4: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[  749.966523][ T5841] Bluetooth: hci8: command tx timeout
[  749.998260][T11264] syz-executor: attempt to access beyond end of device
[  749.998260][T11264] loop4: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  750.061745][T11264] CPU: 0 UID: 0 PID: 11264 Comm: syz-executor Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  750.061782][T11264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  750.061798][T11264] Call Trace:
[  750.061808][T11264]  <TASK>
[  750.061819][T11264]  dump_stack_lvl+0x189/0x250
[  750.061869][T11264]  ? __pfx_dump_stack_lvl+0x10/0x10
[  750.061907][T11264]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  750.061937][T11264]  ? __pfx_queue_work_on+0x10/0x10
[  750.061974][T11264]  ? srso_alias_return_thunk+0x5/0xfbef5
[  750.062002][T11264]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  750.062031][T11264]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  750.062061][T11264]  ? srso_alias_return_thunk+0x5/0xfbef5
[  750.062089][T11264]  ? f2fs_hw_is_readonly+0x39b/0x470
[  750.062124][T11264]  f2fs_handle_critical_error+0x37c/0x540
[  750.062162][T11264]  f2fs_write_end_io+0x495/0x810
[  750.062191][T11264]  ? blkg_put+0x22/0x240
[  750.062244][T11264]  __submit_merged_bio+0x27a/0x6a0
[  750.062282][T11264]  __submit_merged_write_cond+0x255/0x530
[  750.062337][T11264]  f2fs_write_data_pages+0x261d/0x3000
[  750.062417][T11264]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  750.062518][T11264]  ? __mod_zone_page_state+0xd7/0x140
[  750.062563][T11264]  ? srso_alias_return_thunk+0x5/0xfbef5
[  750.062589][T11264]  ? folios_put_refs+0x560/0x640
[  750.062630][T11264]  ? __pfx_folios_put_refs+0x10/0x10
[  750.062654][T11264]  ? rcu_is_watching+0x15/0xb0
[  750.062699][T11264]  ? srso_alias_return_thunk+0x5/0xfbef5
[  750.062724][T11264]  ? __lock_acquire+0xab9/0xd20
[  750.062778][T11264]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  750.062808][T11264]  do_writepages+0x32e/0x550
[  750.062849][T11264]  ? srso_alias_return_thunk+0x5/0xfbef5
[  750.062882][T11264]  ? srso_alias_return_thunk+0x5/0xfbef5
[  750.062908][T11264]  ? do_raw_spin_unlock+0x122/0x240
[  750.062939][T11264]  filemap_fdatawrite+0x191/0x230
[  750.062975][T11264]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  750.063073][T11264]  ? srso_alias_return_thunk+0x5/0xfbef5
[  750.063107][T11264]  ? do_raw_spin_unlock+0x122/0x240
[  750.063138][T11264]  f2fs_sync_dirty_inodes+0x31f/0x830
[  750.063193][T11264]  f2fs_write_checkpoint+0x94a/0x1de0
[  750.063260][T11264]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  750.063364][T11264]  ? kill_f2fs_super+0x298/0x6c0
[  750.063404][T11264]  kill_f2fs_super+0x2c3/0x6c0
[  750.063445][T11264]  ? __pfx_kill_f2fs_super+0x10/0x10
[  750.063483][T11264]  ? radix_tree_delete_item+0x2b6/0x400
[  750.063524][T11264]  ? srso_alias_return_thunk+0x5/0xfbef5
[  750.063550][T11264]  ? shrinker_free+0x2ce/0x3e0
[  750.063583][T11264]  deactivate_locked_super+0xbc/0x130
[  750.063618][T11264]  cleanup_mnt+0x425/0x4c0
[  750.063647][T11264]  ? srso_alias_return_thunk+0x5/0xfbef5
[  750.063674][T11264]  ? lockdep_hardirqs_on+0x9c/0x150
[  750.063709][T11264]  task_work_run+0x1d4/0x260
[  750.063740][T11264]  ? __pfx_task_work_run+0x10/0x10
[  750.063762][T11264]  ? __x64_sys_umount+0x122/0x160
[  750.063806][T11264]  ? exit_to_user_mode_loop+0x40/0x110
[  750.063842][T11264]  exit_to_user_mode_loop+0xec/0x110
[  750.063873][T11264]  do_syscall_64+0x2bd/0x3b0
[  750.063908][T11264]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  750.063930][T11264]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  750.063963][T11264]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  750.063986][T11264] RIP: 0033:0x7f3f8138fc97
[  750.064008][T11264] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  750.064028][T11264] RSP: 002b:00007ffd25fe28f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  750.064053][T11264] RAX: 0000000000000000 RBX: 00007f3f8141089d RCX: 00007f3f8138fc97
[  750.064070][T11264] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd25fe29b0
[  750.064085][T11264] RBP: 00007ffd25fe29b0 R08: 0000000000000000 R09: 0000000000000000
[  750.064101][T11264] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd25fe3a40
[  750.064117][T11264] R13: 00007f3f8141089d R14: 00000000000b6dd2 R15: 00007ffd25fe3a80
[  750.064162][T11264]  </TASK>
[  750.064173][T11264] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  750.883683][ T5837] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  750.894909][ T5837] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  750.907773][ T5837] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  750.951449][ T5837] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  750.965714][ T5837] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  751.364380][T10529] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  752.155825][ T5837] Bluetooth: hci8: command tx timeout
[  752.266585][T10529] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  753.055369][ T5841] Bluetooth: hci6: command tx timeout
[  753.386190][T11682] bridge0: port 1(bridge_slave_0) entered blocking state
[  753.415141][T11682] bridge0: port 1(bridge_slave_0) entered disabled state
[  753.455346][T11682] bridge_slave_0: entered allmulticast mode
[  753.464539][T11682] bridge_slave_0: entered promiscuous mode
[  753.571395][T11682] bridge0: port 2(bridge_slave_1) entered blocking state
[  753.625418][T11682] bridge0: port 2(bridge_slave_1) entered disabled state
[  753.665538][T11682] bridge_slave_1: entered allmulticast mode
[  753.698582][T11682] bridge_slave_1: entered promiscuous mode
[  754.129135][T11682] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  754.172084][   T36] bridge_slave_1: left allmulticast mode
[  754.182941][   T36] bridge_slave_1: left promiscuous mode
[  754.205545][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  754.236165][   T36] bridge_slave_0: left allmulticast mode
[  754.242983][   T36] bridge_slave_0: left promiscuous mode
[  754.413202][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  755.136947][ T5841] Bluetooth: hci6: command tx timeout
[  756.828944][T11807] loop3: detected capacity change from 0 to 128
[  757.223905][ T5841] Bluetooth: hci6: command tx timeout
[  757.677551][ T5837] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  757.690973][ T5837] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  757.711043][ T5837] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  757.722923][ T5837] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  757.725829][ T6013] usb 5-1: new full-speed USB device number 3 using dummy_hcd
[  757.746395][ T5837] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  758.052215][ T6013] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  758.102171][ T6013] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  758.203027][ T6013] usb 5-1: New USB device found, idVendor=046d, idProduct=c531, bcdDevice= 0.00
[  758.504724][ T6013] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  758.525421][ T6013] usb 5-1: config 0 descriptor??
[  759.098713][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  759.122096][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  759.156847][   T36] bond0 (unregistering): Released all slaves
[  759.272277][T11682] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  759.299384][ T5837] Bluetooth: hci6: command tx timeout
[  759.451786][T11823] netlink: 'syz.3.1350': attribute type 17 has an invalid length.
[  759.560028][ T5898] usb 5-1: USB disconnect, device number 3
[  759.697416][T11868] random: crng reseeded on system resumption
[  759.736036][T11867] Restarting kernel threads ...
[  759.742833][T11682] team0: Port device team_slave_0 added
[  759.743548][T11867] Done restarting kernel threads.
[  759.898610][T11682] team0: Port device team_slave_1 added
[  759.947438][ T5837] Bluetooth: hci7: command tx timeout
[  759.969397][   T36] hsr_slave_0: left promiscuous mode
[  759.982290][   T36] hsr_slave_1: left promiscuous mode
[  759.996524][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  760.005668][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  760.015277][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  760.024326][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  760.049292][   T36] veth1_macvtap: left promiscuous mode
[  760.056172][   T36] veth0_macvtap: left promiscuous mode
[  760.062972][   T36] veth1_vlan: left promiscuous mode
[  760.070118][   T36] veth0_vlan: left promiscuous mode
[  760.444795][T11021] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  760.634803][T11021] usb 5-1: Using ep0 maxpacket: 16
[  760.678055][T11021] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  760.727656][T11021] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  760.772263][T11021] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  760.800989][T11021] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  760.812045][T11021] usb 5-1: Product: syz
[  760.819115][T11021] usb 5-1: Manufacturer: syz
[  760.826613][T11021] usb 5-1: SerialNumber: syz
[  762.006908][   T36] team0 (unregistering): Port device team_slave_1 removed
[  762.017839][ T5837] Bluetooth: hci7: command tx timeout
[  762.168851][T11889] netlink: 88 bytes leftover after parsing attributes in process `syz.1.1360'.
[  762.180153][T11889] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1360'.
[  762.236925][   T36] team0 (unregistering): Port device team_slave_0 removed
[  762.349332][T11021] usb 5-1: 0:2 : does not exist
[  762.360840][T11021] usb 5-1: unit 4 not found!
[  762.406986][T11021] usb 5-1: USB disconnect, device number 4
[  763.126751][T11893] hfsplus: unable to find HFS+ superblock
[  763.956583][T11682] batman_adv: batadv0: Adding interface: batadv_slave_0
[  763.996021][T11682] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  764.011974][   T30] audit: type=1800 audit(2000000022.471:169): pid=11889 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1360" name="regulatory.db" dev="sda1" ino=448 res=0 errno=0
[  764.036207][T11889] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[  764.097263][T11897] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  764.097263][T11897] The task syz.4.1362 (11897) triggered the difference, watch for misbehavior.
[  764.113008][ T5837] Bluetooth: hci7: command tx timeout
[  764.147416][T11889] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[  764.155199][T11682] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  764.175235][T11682] batman_adv: batadv0: Adding interface: batadv_slave_1
[  764.183594][T11682] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  764.223685][T11889] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  764.234224][T11682] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  765.676733][T11911] loop3: detected capacity change from 0 to 1024
[  765.959852][T11682] hsr_slave_0: entered promiscuous mode
[  765.968033][T11682] hsr_slave_1: entered promiscuous mode
[  765.975674][T11682] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  765.984934][T11682] Cannot create hsr debugfs directory
[  766.174388][ T5837] Bluetooth: hci7: command tx timeout
[  767.209710][T11749] chnl_net:caif_netlink_parms(): no params data found
[  767.442730][ T6386] hfsplus: b-tree write err: -5, ino 4
[  767.598508][T11944] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1370'.
[  767.713996][T11944] hsr_slave_1: entered allmulticast mode
[  767.843323][T11822] chnl_net:caif_netlink_parms(): no params data found
[  770.796498][T11749] bridge0: port 1(bridge_slave_0) entered blocking state
[  770.874280][T11749] bridge0: port 1(bridge_slave_0) entered disabled state
[  770.883018][T11749] bridge_slave_0: entered allmulticast mode
[  770.935489][T11749] bridge_slave_0: entered promiscuous mode
[  773.574053][T11749] bridge0: port 2(bridge_slave_1) entered blocking state
[  773.583328][T11749] bridge0: port 2(bridge_slave_1) entered disabled state
[  773.614108][T11749] bridge_slave_1: entered allmulticast mode
[  773.623400][T11749] bridge_slave_1: entered promiscuous mode
[  775.087893][ T6231] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  777.818019][   T30] audit: type=1804 audit(2000000036.302:170): pid=12039 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.1387" name="/newroot/20/bus/bus" dev="overlay" ino=134 res=1 errno=0
[  777.920207][   T30] audit: type=1804 audit(2000000036.372:171): pid=12039 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1387" name="/newroot/20/bus/bus" dev="overlay" ino=134 res=1 errno=0
[  778.347624][T11749] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  778.377360][T11749] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  783.222314][ T6231] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  784.285698][   T30] audit: type=1326 audit(2000000042.772:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12079 comm="syz.1.1395" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f459df8e969 code=0x0
[  787.095767][ T6231] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  787.160353][T11749] team0: Port device team_slave_0 added
[  787.378657][T11822] bridge0: port 1(bridge_slave_0) entered blocking state
[  787.511132][T11822] bridge0: port 1(bridge_slave_0) entered disabled state
[  787.511349][T11822] bridge_slave_0: entered allmulticast mode
[  787.513878][T11822] bridge_slave_0: entered promiscuous mode
[  787.520008][T11822] bridge0: port 2(bridge_slave_1) entered blocking state
[  787.520124][T11822] bridge0: port 2(bridge_slave_1) entered disabled state
[  787.520304][T11822] bridge_slave_1: entered allmulticast mode
[  787.522131][T11822] bridge_slave_1: entered promiscuous mode
[  787.631734][T12108] netlink: 'syz.4.1401': attribute type 1 has an invalid length.
[  789.159612][T12111] loop4: detected capacity change from 0 to 256
[  789.174618][T11749] team0: Port device team_slave_1 added
[  789.194346][T12111] exfat: Deprecated parameter 'utf8'
[  789.223149][T12111] exfat: Deprecated parameter 'utf8'
[  789.313369][T12111] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  789.428370][ T6231] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  790.600108][T11822] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  791.844227][T11749] batman_adv: batadv0: Adding interface: batadv_slave_0
[  791.852613][T11749] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  792.273860][T11749] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  792.907354][T11822] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  794.850233][T12142] sctp: failed to load transform for md5: -2
[  795.110364][T11749] batman_adv: batadv0: Adding interface: batadv_slave_1
[  795.122635][T11749] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  795.235399][T11749] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  796.573121][T11822] team0: Port device team_slave_0 added
[  796.798869][T12150] team_slave_0: entered promiscuous mode
[  796.806066][T12150] team_slave_1: entered promiscuous mode
[  796.823132][T12150] vlan2: entered promiscuous mode
[  796.840306][T12150] team0: entered promiscuous mode
[  800.079695][T11822] team0: Port device team_slave_1 added
[  800.657124][T11749] hsr_slave_0: entered promiscuous mode
[  800.828962][T11749] hsr_slave_1: entered promiscuous mode
[  800.836635][T11749] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  800.847447][T11749] Cannot create hsr debugfs directory
[  804.561272][T12220] binder: 12217:12220 ioctl 4018620d 0 returned -22
[  804.580657][T12220] binder: 12217:12220 ioctl c0306201 0 returned -14
[  804.594510][T12220] binder: 12217:12220 ioctl c0306201 0 returned -14
[  806.323116][T11822] batman_adv: batadv0: Adding interface: batadv_slave_0
[  808.372935][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  808.732326][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  808.752870][T11822] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  808.859120][T11822] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  808.891314][T11822] batman_adv: batadv0: Adding interface: batadv_slave_1
[  808.922042][T11822] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  809.001299][T11822] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  809.108735][ T5841] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  809.285263][ T5841] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  809.298231][ T5841] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  809.320186][ T5841] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  809.345060][ T5841] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  811.855070][ T5841] Bluetooth: hci9: command tx timeout
[  811.883229][ T6231] bridge_slave_1: left allmulticast mode
[  811.890014][ T6231] bridge_slave_1: left promiscuous mode
[  811.962394][ T6231] bridge0: port 2(bridge_slave_1) entered disabled state
[  811.976398][T12244] loop3: detected capacity change from 0 to 128
[  812.059170][T12244] qnx6: Unknown parameter 'euid'
[  812.262903][ T6231] bridge_slave_0: left allmulticast mode
[  812.270467][ T6231] bridge_slave_0: left promiscuous mode
[  812.304033][T12249] hugetlbfs: syz.3.1428 (12249): Using mlock ulimits for SHM_HUGETLB is obsolete
[  812.366651][ T6231] bridge0: port 1(bridge_slave_0) entered disabled state
[  813.951832][ T5841] Bluetooth: hci9: command tx timeout
[  814.950685][ T5837] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  815.019385][ T5837] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  815.105804][ T5837] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  815.116999][ T5837] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  815.126392][ T5837] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  815.818482][T12281] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  816.011631][ T5837] Bluetooth: hci9: command tx timeout
[  816.505486][ T6231] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  816.520547][ T6231] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  816.534181][ T6231] bond0 (unregistering): Released all slaves
[  817.610922][ T5837] Bluetooth: hci8: command tx timeout
[  818.099183][ T5837] Bluetooth: hci9: command tx timeout
[  819.425442][T12328] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  819.691334][T12328] Bluetooth: hci8: command tx timeout
[  820.340993][T12328] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  820.358762][T12328] Bluetooth: hci4: command 0x0406 tx timeout
[  820.383900][T12328] Bluetooth: hci2: command 0x0406 tx timeout
[  820.509982][T12328] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  820.781588][T12328] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  820.819056][ T5837] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  821.787842][ T5841] Bluetooth: hci8: command tx timeout
[  822.661821][   T31] INFO: task syz.0.1207:11083 blocked for more than 143 seconds.
[  822.693919][   T31]       Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  822.722522][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  822.751214][   T31] task:syz.0.1207      state:D stack:26984 pid:11083 tgid:11082 ppid:5830   task_flags:0x400040 flags:0x00004004
[  822.825932][   T31] Call Trace:
[  822.829920][   T31]  <TASK>
[  822.891234][   T31]  __schedule+0x16f5/0x4d00
[  822.894859][ T5841] Bluetooth: hci6: command tx timeout
[  822.958561][   T31]  ? __lock_acquire+0xab9/0xd20
[  822.991218][   T31]  ? schedule+0x165/0x360
[  822.996483][   T31]  ? __pfx___schedule+0x10/0x10
[  823.023423][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  823.030255][   T31]  ? schedule+0x91/0x360
[  823.209878][   T31]  schedule+0x165/0x360
[  823.215004][   T31]  ? rwsem_down_read_slowpath+0x568/0x880
[  823.221950][   T31]  schedule_preempt_disabled+0x13/0x30
[  823.228522][   T31]  rwsem_down_read_slowpath+0x552/0x880
[  823.235323][   T31]  ? __pfx_rwsem_down_read_slowpath+0x10/0x10
[  823.243514][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  823.250299][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  823.257761][   T31]  down_read+0x98/0x2e0
[  823.271360][   T31]  super_lock+0x2a9/0x3b0
[  823.276609][   T31]  ? __pfx_super_lock+0x10/0x10
[  823.291074][   T31]  ? do_raw_spin_lock+0x121/0x290
[  823.297148][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  823.328189][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  823.341280][   T31]  ? do_raw_spin_unlock+0x122/0x240
[  823.361088][   T31]  __iterate_supers+0x126/0x250
[  823.366974][   T31]  ? __pfx_sync_inodes_one_sb+0x10/0x10
[  823.391128][   T31]  ksys_sync+0x94/0x150
[  823.396168][   T31]  ? __pfx_ksys_sync+0x10/0x10
[  823.411161][   T31]  ? rcu_is_watching+0x15/0xb0
[  823.416934][   T31]  ? do_syscall_64+0xbe/0x3b0
[  823.437699][   T31]  __ia32_sys_sync+0xe/0x20
[  823.457945][   T31]  do_syscall_64+0xfa/0x3b0
[  823.463732][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  823.470200][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  823.491071][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  823.497874][   T31]  ? exc_page_fault+0x9f/0xf0
[  823.506821][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  823.514360][   T31] RIP: 0033:0x7f2b5d38e969
[  823.519670][   T31] RSP: 002b:00007f2b5e2b7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a2
[  823.530831][   T31] RAX: ffffffffffffffda RBX: 00007f2b5d5b5fa0 RCX: 00007f2b5d38e969
[  823.554883][   T31] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  823.567917][   T31] RBP: 00007f2b5d5b5fa0 R08: 0000000000000000 R09: 0000000000000000
[  823.582711][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  823.600709][   T31] R13: 0000000000000000 R14: 00007f2b5d5b5fa0 R15: 00007ffce6569a98
[  823.613250][   T31]  </TASK>
[  823.891031][ T5841] Bluetooth: hci8: command tx timeout
[  824.121186][   T31] 
[  824.121186][   T31] Showing all locks held in the system:
[  824.130496][   T31] 1 lock held by khungtaskd/31:
[  824.181031][   T31]  #0: ffffffff8e13d080 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[  824.221372][   T31] 2 locks held by kworker/0:3/974:
[  824.227558][   T31] 2 locks held by kworker/u8:7/1139:
[  824.251080][   T31]  #0: ffff888145ab0148 ((wq_completion)iou_exit){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  824.281532][   T31]  #1: ffffc90003adfbc0 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  824.322934][   T31] 2 locks held by getty/5586:
[  824.328582][   T31]  #0: ffff88814ccf00a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  824.341051][   T31]  #1: ffffc90002fee2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400
[  824.353592][   T31] 3 locks held by kworker/1:3/5894:
[  824.359839][   T31]  #0: ffff88801a478d48 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  824.380151][   T31]  #1: ffffc9000510fbc0 (free_ipc_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  824.396820][   T31]  #2: ffffffff8e142bb8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x2f4/0x730
[  824.421088][   T31] 5 locks held by kworker/u8:9/6231:
[  824.427451][   T31]  #0: ffff88801b2f6148 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  824.478595][   T31]  #1: ffffc9000be87bc0 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  824.541312][   T31]  #2: ffffffff8f4fe650 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xf7/0x800
[  824.561302][   T31]  #3: ffffffff8f50b248 (rtnl_mutex){+.+.}-{4:4}, at: default_device_exit_batch+0xdc/0x890
[  824.611206][   T31]  #4: ffffffff8e142bb8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x3b7/0x730
[  824.651275][   T31] 1 lock held by syz-executor/7107:
[  824.657593][   T31]  #0: ffff888034ec80e0 (&type->s_umount_key#91){++++}-{4:4}, at: deactivate_super+0xa9/0xe0
[  824.714306][   T31] 1 lock held by syz.0.1207/11083:
[  824.720464][   T31]  #0: ffff888034ec80e0 (&type->s_umount_key#91){++++}-{4:4}, at: super_lock+0x2a9/0x3b0
[  824.751026][   T31] 1 lock held by syz.1.1271/11387:
[  824.757450][   T31]  #0: ffffffff8f50b248 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x3e/0x1c0
[  824.781782][   T31] 1 lock held by syz.9.1311/11519:
[  824.787968][   T31]  #0: ffff888034ec80e0 (&type->s_umount_key#91){++++}-{4:4}, at: super_lock+0x2a9/0x3b0
[  824.825919][   T31] 2 locks held by syz-executor/12226:
[  824.832636][   T31]  #0: ffffffff8f4fe650 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x304/0x4d0
[  824.852874][   T31]  #1: ffffffff8f50b248 (rtnl_mutex){+.+.}-{4:4}, at: ops_undo_list+0x2a4/0x990
[  824.868631][   T31] 4 locks held by syz-executor/12275:
[  824.877558][   T31]  #0: ffff88805fcc8d80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_unregister_dev+0x1fe/0x500
[  824.898904][   T31]  #1: ffff88805fcc8078 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x66a/0x1330
[  824.911853][   T31]  #2: ffffffff8f673268 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_hash_flush+0xa1/0x230
[  824.924003][   T31]  #3: ffff888068998338 (&conn->lock#2){+.+.}-{4:4}, at: l2cap_conn_del+0x70/0x680
[  824.935375][   T31] 2 locks held by syz-executor/12326:
[  824.941887][   T31]  #0: ffffffff8f4fe650 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x304/0x4d0
[  824.954546][   T31]  #1: ffffffff8f50b248 (rtnl_mutex){+.+.}-{4:4}, at: ops_undo_list+0x2a4/0x990
[  824.965814][   T31] 3 locks held by syz.4.1446/12343:
[  824.971133][ T5841] Bluetooth: hci6: command tx timeout
[  824.972470][   T31]  #0: ffff88807b098d80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_unregister_dev+0x1fe/0x500
[  824.991792][   T31]  #1: ffff88807b098078 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x66a/0x1330
[  825.008883][   T31]  #2: ffffffff8f673268 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_hash_flush+0xa1/0x230
[  825.021397][   T31] 1 lock held by syz.3.1445/12345:
[  825.027544][   T31]  #0: ffffffff8f50b248 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x3e/0x1c0
[  825.038930][   T31] 2 locks held by dhcpcd-run-hook/12367:
[  825.047975][   T31] 
[  825.056208][   T31] =============================================
[  825.056208][   T31] 
[  825.069786][   T31] NMI backtrace for cpu 0
[  825.069805][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  825.069833][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  825.069848][   T31] Call Trace:
[  825.069857][   T31]  <TASK>
[  825.069867][   T31]  dump_stack_lvl+0x189/0x250
[  825.069908][   T31]  ? __wake_up_klogd+0xd9/0x110
[  825.069930][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  825.069961][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  825.070000][   T31]  ? __pfx__printk+0x10/0x10
[  825.070042][   T31]  nmi_cpu_backtrace+0x39e/0x3d0
[  825.070072][   T31]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  825.070095][   T31]  ? _printk+0xcf/0x120
[  825.070126][   T31]  ? __pfx__printk+0x10/0x10
[  825.070155][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  825.070187][   T31]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[  825.070216][   T31]  watchdog+0xfee/0x1030
[  825.070247][   T31]  ? watchdog+0x1de/0x1030
[  825.070284][   T31]  kthread+0x711/0x8a0
[  825.070310][   T31]  ? __pfx_watchdog+0x10/0x10
[  825.070336][   T31]  ? __pfx_kthread+0x10/0x10
[  825.070356][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  825.070387][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  825.070415][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  825.070442][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  825.070471][   T31]  ? __pfx_kthread+0x10/0x10
[  825.070495][   T31]  ret_from_fork+0x3fc/0x770
[  825.070538][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  825.070576][   T31]  ? __switch_to_asm+0x39/0x70
[  825.070600][   T31]  ? __switch_to_asm+0x33/0x70
[  825.070624][   T31]  ? __pfx_kthread+0x10/0x10
[  825.070648][   T31]  ret_from_fork_asm+0x1a/0x30
[  825.070692][   T31]  </TASK>
[  825.070700][   T31] Sending NMI from CPU 0 to CPUs 1:
[  825.292990][    C1] NMI backtrace for cpu 1
[  825.293008][    C1] CPU: 1 UID: 0 PID: 12371 Comm: sed Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  825.293035][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  825.293049][    C1] RIP: 0010:qlist_free_all+0x46/0x140
[  825.293084][    C1] Code: 45 31 ed 49 89 ef 4d 89 f4 4d 85 f6 75 40 4c 8b 25 87 fd 94 0b 4c 89 ff e8 67 6a 50 ff 48 c1 e8 06 48 83 e0 c0 49 8b 4c 04 08 <f6> c1 01 75 53 49 01 c4 0f 1f 44 00 00 41 0f b6 44 24 33 c1 e0 18
[  825.293104][    C1] RSP: 0018:ffffc9000413f330 EFLAGS: 00000202
[  825.293124][    C1] RAX: 0000000000a4c440 RBX: ffffc9000413f368 RCX: ffff88801a441780
[  825.293140][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  825.293154][    C1] RBP: ffff888029311d40 R08: 000000000000000b R09: ffff88804b653220
[  825.293170][    C1] R10: 0000000000000000 R11: fffffbfff1f4179f R12: ffffea0000000000
[  825.293186][    C1] R13: 0000000000000000 R14: 0000000000000000 R15: ffff888029311d40
[  825.293203][    C1] FS:  0000000000000000(0000) GS:ffff888125d5f000(0000) knlGS:0000000000000000
[  825.293222][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  825.293238][    C1] CR2: 00007fc794c27fe8 CR3: 0000000040007000 CR4: 0000000000350ef0
[  825.293256][    C1] Call Trace:
[  825.293263][    C1]  <TASK>
[  825.293276][    C1]  kasan_quarantine_reduce+0x148/0x160
[  825.293310][    C1]  __kasan_slab_alloc+0x22/0x80
[  825.293343][    C1]  kmem_cache_alloc_noprof+0x1c1/0x3c0
[  825.293376][    C1]  ? vm_area_dup+0x2b/0x680
[  825.293401][    C1]  vm_area_dup+0x2b/0x680
[  825.293425][    C1]  __split_vma+0x1a0/0x9b0
[  825.293454][    C1]  ? mas_next_slot+0xc20/0xcf0
[  825.293487][    C1]  ? __pfx___split_vma+0x10/0x10
[  825.293532][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  825.293566][    C1]  vms_gather_munmap_vmas+0x4ab/0x12b0
[  825.293609][    C1]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  825.293646][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  825.293679][    C1]  mmap_region+0x678/0x1f30
[  825.293707][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  825.293747][    C1]  ? __pfx_mmap_region+0x10/0x10
[  825.293777][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  825.293802][    C1]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  825.293835][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  825.293872][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  825.293897][    C1]  ? rcu_is_watching+0x15/0xb0
[  825.293928][    C1]  ? process_measurement+0x15c3/0x1a40
[  825.293996][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  825.294021][    C1]  ? mm_get_unmapped_area_vmflags+0xb3/0xe0
[  825.294059][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  825.294084][    C1]  ? thp_get_unmapped_area_vmflags+0x161/0x310
[  825.294122][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  825.294146][    C1]  ? cap_mmap_addr+0xb0/0x100
[  825.294172][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  825.294198][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  825.294223][    C1]  ? security_mmap_addr+0x71/0x270
[  825.294247][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  825.294274][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  825.294299][    C1]  ? shmem_mapping+0xd/0x50
[  825.294321][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  825.294347][    C1]  ? memfd_check_seals_mmap+0xc5/0x200
[  825.294375][    C1]  do_mmap+0xc45/0x10d0
[  825.294415][    C1]  ? __pfx_do_mmap+0x10/0x10
[  825.294444][    C1]  ? down_write_killable+0x178/0x230
[  825.294477][    C1]  ? end_current_label_crit_section+0x152/0x180
[  825.294508][    C1]  ? __pfx_down_write_killable+0x10/0x10
[  825.294545][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  825.294579][    C1]  vm_mmap_pgoff+0x31b/0x4c0
[  825.294612][    C1]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  825.294641][    C1]  ? __fget_files+0x2a/0x420
[  825.294665][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  825.294690][    C1]  ? __fget_files+0x3a0/0x420
[  825.294710][    C1]  ? __fget_files+0x2a/0x420
[  825.294734][    C1]  ksys_mmap_pgoff+0x51f/0x760
[  825.294771][    C1]  do_syscall_64+0xfa/0x3b0
[  825.294800][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  825.294828][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  825.294848][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  825.294874][    C1]  ? exc_page_fault+0x9f/0xf0
[  825.294903][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  825.294924][    C1] RIP: 0033:0x7fc794ef9242
[  825.294942][    C1] Code: 08 00 04 00 00 eb e2 90 41 f7 c1 ff 0f 00 00 75 27 55 89 cd 53 48 89 fb 48 85 ff 74 33 41 89 ea 48 89 df b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 5e 5b 5d c3 0f 1f 00 c7 05 46 40 01 00 16 00
[  825.294961][    C1] RSP: 002b:00007ffc3b906938 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[  825.294982][    C1] RAX: ffffffffffffffda RBX: 00007fc794c17000 RCX: 00007fc794ef9242
[  825.294999][    C1] RDX: 0000000000000001 RSI: 0000000000001000 RDI: 00007fc794c17000
[  825.295014][    C1] RBP: 0000000000000812 R08: 0000000000000003 R09: 0000000000004000
[  825.295028][    C1] R10: 0000000000000812 R11: 0000000000000206 R12: 00007ffc3b9069c0
[  825.295042][    C1] R13: 00007fc794ece050 R14: 00007ffc3b906d70 R15: 00000fff87720d2a
[  825.295072][    C1]  </TASK>
[  825.920685][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  825.928957][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  825.942706][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  825.954772][   T31] Call Trace:
[  825.958695][   T31]  <TASK>
[  825.962202][   T31]  dump_stack_lvl+0x99/0x250
[  825.967718][   T31]  ? __asan_memcpy+0x40/0x70
[  825.973233][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  825.979477][   T31]  ? __pfx__printk+0x10/0x10
[  825.984987][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  825.991743][   T31]  panic+0x2db/0x790
[  825.996422][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  826.003177][   T31]  ? __pfx_panic+0x10/0x10
[  826.008478][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  826.015236][   T31]  ? nmi_backtrace_stall_check+0x433/0x440
[  826.022205][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  826.028954][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  826.035400][   T31]  ? nmi_trigger_cpumask_backtrace+0x2b6/0x300
[  826.042804][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  826.049561][   T31]  watchdog+0x102d/0x1030
[  826.054752][   T31]  ? watchdog+0x1de/0x1030
[  826.060136][   T31]  kthread+0x711/0x8a0
[  826.065020][   T31]  ? __pfx_watchdog+0x10/0x10
[  826.070741][   T31]  ? __pfx_kthread+0x10/0x10
[  826.076241][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  826.082998][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  826.089228][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  826.095980][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  826.102225][   T31]  ? __pfx_kthread+0x10/0x10
[  826.107724][   T31]  ret_from_fork+0x3fc/0x770
[  826.113258][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  826.119396][   T31]  ? __switch_to_asm+0x39/0x70
[  826.125107][   T31]  ? __switch_to_asm+0x33/0x70
[  826.130814][   T31]  ? __pfx_kthread+0x10/0x10
[  826.136317][   T31]  ret_from_fork_asm+0x1a/0x30
[  826.142041][   T31]  </TASK>
[  826.145879][   T31] Kernel Offset: disabled
[  826.151058][   T31] Rebooting in 86400 seconds..