last executing test programs:

8m33.138455858s ago: executing program 3 (id=697):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x10000005)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000280), 0x0)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r5, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r6=>0x0}, &(0x7f00000000c0)=0x8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r4, 0x84, 0x70, &(0x7f0000000140)={r6, @in={{0x2, 0x4e22, @empty}}, [0x4, 0x0, 0xffffffffffff0000, 0x2, 0x9, 0x100000000, 0xef, 0x9, 0x8, 0x1ff, 0x10000, 0x2, 0x9, 0x7, 0x6]}, &(0x7f0000000240)=0x100)
bind$inet(0xffffffffffffffff, 0x0, 0x0)

8m32.379817855s ago: executing program 3 (id=699):
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x248, 0x9b99}, 0x3a, [0xfffffff8, 0x8, 0x5, 0x10009, 0x8, 0x155f, 0x6, 0x2, 0x25cd, 0x1, 0xb4, 0xa, 0xb2b9, 0x6, 0x8, 0xe4, 0x6, 0xfc000000, 0x3, 0xbbf, 0x1000, 0x1, 0x8, 0xd, 0x4, 0x12a0, 0x8000, 0x1, 0x7, 0x6, 0x7, 0x81, 0x8a, 0x79, 0x2, 0x10001, 0x5, 0x91, 0x4, 0x4, 0x16, 0x2, 0x5, 0x401, 0xfffffff5, 0x405, 0xa7, 0x81, 0x9, 0xf9a2, 0x80000001, 0xff, 0x2, 0x2, 0x2, 0x2, 0x7, 0x4, 0x7, 0x4, 0x4007f, 0xffffffff, 0x9], [0x9, 0x16e, 0x6, 0x9, 0x4, 0xc66, 0xa8a9, 0x20000073, 0x8e, 0xd50, 0x7, 0x5, 0xfffffffe, 0x80a, 0x401, 0xa7, 0x1000, 0x0, 0x200b395, 0x400000, 0x2, 0x4, 0x19, 0x7, 0x400001, 0x3, 0x3, 0x8, 0xffffff7f, 0x400, 0x6, 0x4c2336d3, 0x96, 0x0, 0xfffffff8, 0x401, 0x6, 0xf1, 0x4, 0xab00060, 0x5, 0x6, 0x2, 0x5, 0x3ff, 0x1ff, 0x868b, 0x7fff, 0x1, 0x1ce, 0x1, 0x80000004, 0x80000001, 0x6, 0x2, 0x9, 0x95, 0x80000000, 0x4, 0xfffffff9, 0x40000003, 0x1000, 0xfffff804, 0x5], [0x2, 0xfffffffe, 0xffff, 0xc, 0x2, 0x2e6bf783, 0x80000001, 0x5, 0x400005, 0x491, 0x8d3, 0x200006, 0x8, 0x400, 0x3, 0x400, 0x41, 0x6, 0xee4b, 0x2008004, 0x1, 0x8000003, 0x5, 0x89, 0x3, 0x3, 0x9, 0x3, 0xc7, 0xffe, 0x10000a, 0x8000, 0x401, 0x3e55, 0x5, 0xd3, 0x8, 0x3437, 0x3, 0xd, 0x7, 0x601, 0x101, 0xdd80, 0x60a0, 0x7f, 0x9d26, 0x10000, 0x1, 0x2, 0x2, 0x6, 0x8000, 0x0, 0x3, 0xd500, 0x8, 0x77, 0x9, 0x6, 0x10000, 0x3, 0x8, 0x1], [0xa772, 0x6, 0x5, 0x1afa, 0xbfc, 0x8, 0x5, 0x7f, 0x55, 0x40, 0xff, 0x1005, 0x1, 0x8000007, 0x1e, 0x9, 0x81, 0x3, 0x9d86, 0x9, 0xfffffff7, 0x8, 0x7, 0x5396, 0x939, 0x6, 0x80008001, 0x7777, 0x1, 0x2, 0x100, 0xffffffff, 0x7fffffff, 0x9, 0xc, 0x32d, 0x3, 0x1ff, 0x2000803, 0xffffffff, 0x10000, 0x0, 0x8004, 0x7fff, 0x0, 0x6, 0xf, 0xe, 0x5337, 0x26d, 0x6, 0xfffffff9, 0x4, 0xfffffff9, 0x9, 0xc, 0x463f, 0x4, 0xdaa, 0x8003, 0x8, 0x14000, 0x1, 0x9]}, 0x45c)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x40040, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0x0, 0x40000000000180, 0x2, 0x80000000, 0xf2, 0xd, 0x7fffffffffffe, 0x7, 0x5, 0x7, 0x0, 0x5, 0x4, 0x8], 0x25000, 0x304})
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r4, &(0x7f0000000240)={0x13, 0x10, 0x7, {0x0, r5, 0x2}}, 0x18)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r7 = dup(r6)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)

8m30.882098018s ago: executing program 3 (id=705):
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x9}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x6)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r3, &(0x7f0000000200)={0xa, 0x4e20, 0xeb, @remote, 0x4}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f0000000580), 0x3)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r3, 0x6, 0x1d, 0x0, 0x0)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x304}, "080200", "8a36c47a9c625dfaf08ace81c500", '\x00', "362d3017f069109d"}, 0x28)
syz_genetlink_get_family_id$fou(&(0x7f00000011c0), r3)
socket$netlink(0x10, 0x3, 0x10)
r4 = syz_open_dev$vim2m(0x0, 0x2000000f5, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r4, 0xc008561c, &(0x7f0000000400)={0xf0f071, 0x2})

8m29.368922223s ago: executing program 3 (id=708):
socket(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat2(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
r3 = syz_open_dev$video(&(0x7f0000000000), 0x485, 0x40000)
ioctl$VIDIOC_S_INPUT(r3, 0xc0045627, &(0x7f0000000080)=0x2)
ioctl$VIDIOC_S_SELECTION(r3, 0xc040565f, &(0x7f0000000040)={0x9, 0x100, 0x0, {0xffffffff, 0xbde, 0xb, 0x10000}})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x40080)
syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r4, 0x0, 0x0)

8m25.983985844s ago: executing program 3 (id=713):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x10000005)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x3)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x83, &(0x7f0000000000)=@assoc_value, &(0x7f00000000c0)=0x8)

8m23.654581927s ago: executing program 3 (id=718):
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000240)=0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
write$FUSE_WRITE(0xffffffffffffffff, 0x0, 0x0)
r3 = socket(0x8000000010, 0x2, 0x0)
write(r3, &(0x7f00000002c0)="fc0000001c000704ab5b2509b868030002ab087a0100000001481093210001c0f0030584050060100000000000039815fa2c53c28648000000b9d95662537a00bc000c00f0ff7f0000b400600033d44000040560916a0033f436313012dafd5a32e273fc83ab82d710f74cec184406f90d435ef8b29d3ef3d92c94170e5bba2e177312e081bea05d3a021e8ca062914a46ccfc510bb73c9455cdc8363ae4f5df77bc4cfd6239ec2a0f0d1bcae5fa0f5f9dcdd51af51af8502943283f4bb102b2b8f5566791cf190201ded815b2ccd243f395ed94e0ad91bd6433802e0784f2013cd1890058a10000c880ac801fe4af000049f0d4796f0000090548de", 0xfc)
r4 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r4, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r4, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x4000095, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, r3)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSARP(r5, 0x8955, &(0x7f00000003c0)={{0x2, 0x4e22, @empty}, {0x20000010304, @local}, 0x6, {0x2, 0x4e20, @rand_addr=0x64010101}})

8m6.035822028s ago: executing program 32 (id=718):
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000240)=0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
write$FUSE_WRITE(0xffffffffffffffff, 0x0, 0x0)
r3 = socket(0x8000000010, 0x2, 0x0)
write(r3, &(0x7f00000002c0)="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", 0xfc)
r4 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r4, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r4, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x4000095, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, r3)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSARP(r5, 0x8955, &(0x7f00000003c0)={{0x2, 0x4e22, @empty}, {0x20000010304, @local}, 0x6, {0x2, 0x4e20, @rand_addr=0x64010101}})

20.123294528s ago: executing program 4 (id=1604):
syz_usb_control_io$rtl8150(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x80)
r5 = openat$cgroup_procs(r4, 0x0, 0x2, 0x0)
write$cgroup_pid(r5, &(0x7f0000001c00), 0x12)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
r7 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101b01)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r7, 0x8108551b, &(0x7f0000002600)={0x0, 0x0, "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"})
bind$inet(r6, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r6, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10)
sendmmsg(r6, &(0x7f0000007fc0), 0x800001d, 0x0)
syz_usb_control_io$uac1(0xffffffffffffffff, 0x0, 0x0)

20.121223218s ago: executing program 5 (id=1614):
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x248, 0x9b99}, 0x3a, [0xfffffff8, 0x8, 0x5, 0x10009, 0x8, 0x155f, 0x6, 0x2, 0x25cd, 0x1, 0xb4, 0xa, 0xb2b9, 0x6, 0x8, 0xe4, 0x6, 0xfc000000, 0x3, 0xbbf, 0x1000, 0x1, 0x8, 0xd, 0x4, 0x12a0, 0x8000, 0x1, 0x7, 0x6, 0x7, 0x81, 0x8a, 0x79, 0x2, 0x10001, 0x5, 0x91, 0x4, 0x4, 0x16, 0x2, 0x5, 0x401, 0xfffffff5, 0x405, 0xa7, 0x81, 0x9, 0xf9a2, 0x80000001, 0xff, 0x2, 0x2, 0x2, 0x2, 0x7, 0x4, 0x7, 0x4, 0x4007f, 0xffffffff, 0x9], [0x9, 0x16e, 0x6, 0x9, 0x4, 0xc66, 0xa8a9, 0x20000073, 0x8e, 0xd50, 0x7, 0x5, 0xfffffffe, 0x80a, 0x401, 0xa7, 0x1000, 0x0, 0x200b395, 0x400000, 0x2, 0x4, 0x19, 0x7, 0x400001, 0x3, 0x3, 0x8, 0xffffff7f, 0x400, 0x6, 0x4c2336d3, 0x96, 0x0, 0xfffffff8, 0x401, 0x6, 0xf1, 0x4, 0xab00060, 0x5, 0x6, 0x2, 0x5, 0x3ff, 0x1ff, 0x868b, 0x7fff, 0x1, 0x1ce, 0x1, 0x80000004, 0x80000001, 0x6, 0x2, 0x9, 0x95, 0x80000000, 0x4, 0xfffffff9, 0x40000003, 0x1000, 0xfffff804, 0x5], [0x2, 0xfffffffe, 0xffff, 0xc, 0x2, 0x2e6bf783, 0x80000001, 0x5, 0x400005, 0x491, 0x8d3, 0x200006, 0x8, 0x400, 0x3, 0x400, 0x41, 0x6, 0xee4b, 0x2008004, 0x1, 0x8000003, 0x5, 0x89, 0x3, 0x3, 0x9, 0x3, 0xc7, 0xffe, 0x10000a, 0x8000, 0x401, 0x3e55, 0x5, 0xd3, 0x8, 0x3437, 0x3, 0xd, 0x7, 0x601, 0x101, 0xdd80, 0x60a0, 0x7f, 0x9d26, 0x10000, 0x1, 0x2, 0x2, 0x6, 0x8000, 0x0, 0x3, 0xd500, 0x8, 0x77, 0x9, 0x6, 0x10000, 0x3, 0x8, 0x1], [0xa772, 0x6, 0x5, 0x1afa, 0xbfc, 0x8, 0x5, 0x7f, 0x55, 0x40, 0xff, 0x1005, 0x1, 0x8000007, 0x1e, 0x9, 0x81, 0x3, 0x9d86, 0x9, 0xfffffff7, 0x8, 0x7, 0x5396, 0x939, 0x6, 0x80008001, 0x7777, 0x1, 0x2, 0x100, 0xffffffff, 0x7fffffff, 0x9, 0xc, 0x32d, 0x3, 0x1ff, 0x2000803, 0xffffffff, 0x10000, 0x0, 0x8004, 0x7fff, 0x0, 0x6, 0xf, 0xe, 0x5337, 0x26d, 0x6, 0xfffffff9, 0x4, 0xfffffff9, 0x9, 0xc, 0x463f, 0x4, 0xdaa, 0x8003, 0x8, 0x14000, 0x1, 0x9]}, 0x45c)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x40040, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0x0, 0x40000000000180, 0x2, 0x80000000, 0xf2, 0xd, 0x7fffffffffffe, 0x7, 0x5, 0x7, 0x0, 0x5, 0x4, 0x8], 0x25000, 0x304})
r4 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r4, &(0x7f0000000240)={0x13, 0x10, 0x7, {0x0, r5, 0x2}}, 0x18)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r7 = dup(r6)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)

19.77452289s ago: executing program 5 (id=1608):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = getpid()
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8004, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x80000000, 0x20000006, 0x4d, 0x6, 0x5d, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x9, 0x4, 0x0, 0x7, 0x3c5b, 0x1, 0x28, 0xd, 0x7, 0x0, 0xffffffff, 0xe661, 0x4, 0x7, 0x3, 0x8, 0x4c74, 0x80000000, 0x242, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x8c, 0x1000, 0xffff, 0x0, 0x8000, 0x4, 0x8008, 0x400, 0xd, 0x3, 0x5, 0x6, 0x8, 0x4, 0x3, 0x40], [0x10000007, 0x9, 0x8000012f, 0x2008004, 0x5, 0xfffffff3, 0x129432e5, 0xc488, 0xf9, 0xe, 0x2c0, 0x6c7, 0x9, 0xffffffff, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f2e, 0xd, 0x4e2, 0x2, 0x4, 0xb, 0x4, 0x9, 0x8, 0x9, 0x6, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x9, 0x3, 0x3, 0x9, 0x1, 0x3, 0x3, 0x81, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x7, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7dff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x7, 0x3e7, 0xf, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0xa5, 0x5, 0x6, 0xac6, 0xca, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x3c484551], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x93a, 0x6, 0x7, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x57, 0x5, 0x3, 0x101, 0x10000, 0x2000004, 0x7fff, 0xffff, 0xa620, 0x2, 0xfffffffd, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x5, 0x4, 0xc8, 0xfffffff9, 0xfffff000, 0x10000, 0x0, 0x7e, 0x100, 0x9602, 0x7, 0xaf, 0x5, 0x6, 0x226, 0x5, 0x4, 0x8, 0x30b1d693, 0xa1f, 0x4, 0x400, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb3e, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
timer_create(0x1, 0x0, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r4 = io_uring_setup(0x3450, &(0x7f0000000080)={0x0, 0x1539, 0x0, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mremap(&(0x7f00003eb000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000003000/0x1000)=nil)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r4, 0x10, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)=[{0x0}], 0x0, 0x1}, 0x20)
r5 = syz_pidfd_open(r3, 0x0)
setns(r5, 0x24020000)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x0, &(0x7f0000001dc0)={0x8c}, 0x20)

17.052351303s ago: executing program 5 (id=1610):
mkdir(&(0x7f00000003c0)='./file0\x00', 0x21)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fsopen(0x0, 0x1)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000300)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
mkdir(&(0x7f0000000200)='./bus\x00', 0x10)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f00000021c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chroot(&(0x7f0000000000)='./bus\x00')
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
r3 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
connect$rose(r3, 0x0, 0x0)

16.118929955s ago: executing program 4 (id=1611):
mkdir(&(0x7f00000003c0)='./file0\x00', 0x21)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fsopen(0x0, 0x1)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000300)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
mkdir(&(0x7f0000000200)='./bus\x00', 0x10)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f00000021c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chroot(&(0x7f0000000000)='./bus\x00')
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
r3 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
connect$rose(r3, 0x0, 0x0)

13.554136084s ago: executing program 4 (id=1615):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$eJzs3T9oM2UcB/DvXRJf+75BXnURxD8gIloor5vg8rooFKQUEUGFioiL0gq1xa1xcnHQWaWTSxE3q6N0KS6K4FS1Q10ELQ4WBx0iybVS24ja1Jz0Ph+43l3vee73HLnvkyyXBGisq0muJ2klmU7SSVIcb3B3tVw93F2f2l5I+v0nfiqG7ar9ylG/K0l6SR5KslUWeamdrG4+s/fLzmP3vbnSuff9zaenJnqRh/b3dh8/eG/ujY9mH1z94qsf5opcT/dP13X+ihH/axfJLf9Fsf+Jol33CPgn5l/78OtB7m9Ncs8w/52UqV68t5Zv2OrkgXf/qu/bP355+yTHCpy/fr8zeA/s9YHGKZN0U5QzSartspyZqT7Df9O6XL68tPzq9ItLK4sv1D1TAeelm+w++smlj6+cyP/3rSr/wMU1yP+T8xvfDrYPWnWPBpiIO6rVIP/Tz63dH/mHxpF/aC75h+aSf2gu+Yfmkn9oLvmHC6xztNEbeVj+obnkH5pL/qG5jucfAGiW/qW6n0AG6lL3/AMAAAAAAAAAAAAAAAAAAJy2PrW9cLRMquZn7yT7jyRpj6rfGv4ecXLj8O/ln4tBsz8UVbexPHvXmCcY0wc1P31903f11v/8znrrry0mvdeTXGu3T99/xeH9d3Y3/83xzvNjFviXihP7Dz812fon/bZRb/3ZneTTwfxzbdT8U+a24Xr0/NM9/hXLZ/TKr2OeAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIn5PQAA//8PK23M")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x400000}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
msgsnd(0x0, &(0x7f0000000180)=ANY=[@ANYRESOCT], 0x2000, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'team_slave_1\x00', <r3=>0x0})
syz_genetlink_get_family_id$team(&(0x7f0000000140), r2)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000040))
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x58, 0x0, 0x200, 0x70bd28, 0x25dfdbfd, {}, [@BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x2}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x2}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @multicast}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r3}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x5ddb}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x445}]}, 0x58}, 0x1, 0x0, 0x0, 0x80}, 0x4000800)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.parent_freezing\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000040), 0xfea7)

12.463844472s ago: executing program 0 (id=1619):
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x248, 0x9b99}, 0x3a, [0xfffffff8, 0x8, 0x5, 0x10009, 0x8, 0x155f, 0x6, 0x2, 0x25cd, 0x1, 0xb4, 0xa, 0xb2b9, 0x6, 0x8, 0xe4, 0x6, 0xfc000000, 0x3, 0xbbf, 0x1000, 0x1, 0x8, 0xd, 0x4, 0x12a0, 0x8000, 0x1, 0x7, 0x6, 0x7, 0x81, 0x8a, 0x79, 0x2, 0x10001, 0x5, 0x91, 0x4, 0x4, 0x16, 0x2, 0x5, 0x401, 0xfffffff5, 0x405, 0xa7, 0x81, 0x9, 0xf9a2, 0x80000001, 0xff, 0x2, 0x2, 0x2, 0x2, 0x7, 0x4, 0x7, 0x4, 0x4007f, 0xffffffff, 0x9], [0x9, 0x16e, 0x6, 0x9, 0x4, 0xc66, 0xa8a9, 0x20000073, 0x8e, 0xd50, 0x7, 0x5, 0xfffffffe, 0x80a, 0x401, 0xa7, 0x1000, 0x0, 0x200b395, 0x400000, 0x2, 0x4, 0x19, 0x7, 0x400001, 0x3, 0x3, 0x8, 0xffffff7f, 0x400, 0x6, 0x4c2336d3, 0x96, 0x0, 0xfffffff8, 0x401, 0x6, 0xf1, 0x4, 0xab00060, 0x5, 0x6, 0x2, 0x5, 0x3ff, 0x1ff, 0x868b, 0x7fff, 0x1, 0x1ce, 0x1, 0x80000004, 0x80000001, 0x6, 0x2, 0x9, 0x95, 0x80000000, 0x4, 0xfffffff9, 0x40000003, 0x1000, 0xfffff804, 0x5], [0x2, 0xfffffffe, 0xffff, 0xc, 0x2, 0x2e6bf783, 0x80000001, 0x5, 0x400005, 0x491, 0x8d3, 0x200006, 0x8, 0x400, 0x3, 0x400, 0x41, 0x6, 0xee4b, 0x2008004, 0x1, 0x8000003, 0x5, 0x89, 0x3, 0x3, 0x9, 0x3, 0xc7, 0xffe, 0x10000a, 0x8000, 0x401, 0x3e55, 0x5, 0xd3, 0x8, 0x3437, 0x3, 0xd, 0x7, 0x601, 0x101, 0xdd80, 0x60a0, 0x7f, 0x9d26, 0x10000, 0x1, 0x2, 0x2, 0x6, 0x8000, 0x0, 0x3, 0xd500, 0x8, 0x77, 0x9, 0x6, 0x10000, 0x3, 0x8, 0x1], [0xa772, 0x6, 0x5, 0x1afa, 0xbfc, 0x8, 0x5, 0x7f, 0x55, 0x40, 0xff, 0x1005, 0x1, 0x8000007, 0x1e, 0x9, 0x81, 0x3, 0x9d86, 0x9, 0xfffffff7, 0x8, 0x7, 0x5396, 0x939, 0x6, 0x80008001, 0x7777, 0x1, 0x2, 0x100, 0xffffffff, 0x7fffffff, 0x9, 0xc, 0x32d, 0x3, 0x1ff, 0x2000803, 0xffffffff, 0x10000, 0x0, 0x8004, 0x7fff, 0x0, 0x6, 0xf, 0xe, 0x5337, 0x26d, 0x6, 0xfffffff9, 0x4, 0xfffffff9, 0x9, 0xc, 0x463f, 0x4, 0xdaa, 0x8003, 0x8, 0x14000, 0x1, 0x9]}, 0x45c)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x40040, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0x0, 0x40000000000180, 0x2, 0x80000000, 0xf2, 0xd, 0x7fffffffffffe, 0x7, 0x5, 0x7, 0x0, 0x5, 0x4, 0x8], 0x25000, 0x304})
r4 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r4, &(0x7f0000000240)={0x13, 0x10, 0x7, {0x0, r5, 0x2}}, 0x18)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r7 = dup(r6)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)

11.664948669s ago: executing program 0 (id=1620):
syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
openat$userfaultfd(0xffffff9c, &(0x7f0000000000), 0x801, 0x0)
ioctl$VIDIOC_G_SLICED_VBI_CAP(0xffffffffffffffff, 0xc0745645, &(0x7f0000000100)={0xc, [0x5, 0x9, 0xffff, 0x8, 0x3, 0x76, 0xdffd, 0x7ff, 0xfffd, 0x200, 0xb34, 0x2, 0x9b5a, 0x6, 0x3, 0x5, 0x400, 0x5, 0x7, 0x2, 0xa, 0x1ff, 0x3, 0x1000, 0x2, 0x8, 0x2, 0xc, 0xffff, 0x4, 0xfffa, 0x5643, 0x1535, 0x5, 0x3ff, 0x9, 0x80, 0xf872, 0x1, 0x6, 0x4, 0x0, 0x40, 0x2, 0x401, 0x1, 0x4, 0x5], 0x5})
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x6)
r2 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r2, 0x7a7, &(0x7f0000000080)=0x10000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, &(0x7f0000000000)={@my=0x0})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0x3, 0xac5)
syz_clone3(&(0x7f0000000900)={0x23800000, 0x0, 0x0, 0x0, {0x27}, 0x0, 0x0, 0x0, 0x0}, 0x58)
io_setup(0x8, 0x0)
io_submit(0x0, 0x1, &(0x7f0000001300)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x6, 0xffffffffffffffff, 0x0}])
fchdir(r1)
mkdirat(r1, &(0x7f0000000100)='./file0\x00', 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x89901)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r4, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r5, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @broadcast}, 0x2}}, 0x2e)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200)

11.583882292s ago: executing program 2 (id=1621):
mount$bind(0x0, 0x0, 0x0, 0x2b4c47, 0xfeffffffffffffff)
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080), 0x121400, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{0x1}, 0x0, &(0x7f00000000c0)}, 0x20)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x42800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, 0x0, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r2, 0xffffffffffffffff, 0x0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
r3 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r3, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0)
close(0x4)
r4 = socket$netlink(0x10, 0x3, 0x0)
ioctl$OCFS2_IOC_GROUP_ADD64(0xffffffffffffffff, 0x40186f03, 0x0)
setsockopt$netlink_NETLINK_PKTINFO(r4, 0x10e, 0x3, &(0x7f0000002040)=0x4, 0x4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$phonet_pipe(0x23, 0x5, 0x2)

11.163324136s ago: executing program 1 (id=1622):
socket(0x2, 0x3, 0xff)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setgroups(0x0, 0x0)
setuid(0xee00)
shmget$private(0x0, 0x4000, 0x800, &(0x7f0000007000/0x4000)=nil)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr', 0x3)
sendto$inet(r0, &(0x7f0000000580)="17", 0xffffffffffffff99, 0x10008095, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x4, &(0x7f0000000000)=[{0x25, 0x6, 0x0, 0xfffffffd}, {0x0, 0x9, 0xa, 0xe}, {0xfffa, 0x9, 0x8, 0x9}, {0x6, 0x3, 0x0, 0xfffffffc}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0x4, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0xa}, [@call={0x85, 0x0, 0x0, 0x8b}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x34}, 0x94)
prctl$PR_SET_PTRACER(0x59616d61, 0x0)

10.598511826s ago: executing program 0 (id=1623):
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000780)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'team0\x00', <r0=>0x0})
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001140)=[{{0x0, 0x0, &(0x7f0000001780)}}, {{&(0x7f0000000500)=@ll={0x11, 0x16, r0, 0x1, 0x7, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3f}}, 0x80, &(0x7f00000007c0)=[{&(0x7f0000000600)="ea19a6cd956cec436c74787246d13ca11081dbabebcb76c1d2e8b7d0c8c1aabdd95fc51096c8d57e818ce768ccceed4d115abed88468be323c820ade265a87419a77736785f202fe11a5dd77773ba9a4c83087f956929503b1e1ff5b37da9fe53fb758af2d89f01e0df78efd88cf4a01c0b8766c480a0394b6c8fc9fc12099c5bb81de2cb7a9f7cda5c9b265453e575767fb58b840bfe5d709889eea7579a18472fdd1630e7fbbe9d68f75a7a51eb7e00854a1f71f", 0xb5}, {&(0x7f0000000580)="b309d3ef91dd92a3b7e1c73ff0a368ae33c77fd11e3c04fdf36d2f9461a7ee76290ce0f6449e8a16fb86ee80c6ae62ec109763ae520d", 0x36}, {&(0x7f0000000740)="efded85c2c542acacf9d79eea389735832330080b0afe68599b4b850531e65e89deb1e", 0x23}], 0x3}}, {{&(0x7f0000000880)=@pptp={0x18, 0x2, {0x3, @private=0xa010100}}, 0x80, &(0x7f00000010c0)=[{&(0x7f0000000900)="a590902a494aeaa8345cc36e3baafae8603b7dca66a102375bff06a96fefcb42def096636b07c90f4fcc1e603e4344945d65949f8060d29943d637225ae1487d0e50cd650ef42c634bf4c96a466cd6a0bbaad461e8da5295d6e67b041e597a6204a4ea5d177c0895cbc60f2c6edbe0cf5ce787ba93d8d070f7a7d51cf0b81f6c48aecbc944db5a735cff3816ec24f77a43b59b905350d778ecbf80411ee62619f8dfc9559f98ab1459ab9c9d4d66c660959e0ea4ceb914", 0xb7}, {&(0x7f0000001200)="e03edf555ccc657c1f51f2e2d556c56634e24d753289e65d5c7fbaaf2a49182660fdc72e77d70ab6e91175c5ad36269eeea9cd41439c1c5c9c2b067776", 0x3d}, {&(0x7f00000009c0)="ec542e6e546621be55daa06ed7f545e327ecd8c48d3f7b8ae050bff8c90a3cb00173b653bc4096d3851480366de66f4b99be156191f797f123a3f23be8a22e76a5bd01e1cc80b1d2c45b133bc3eecc580700004210c7136885", 0x59}, {&(0x7f0000001000)="18a8583924039aadf86313c609284663d89bbf4926f433da348624e066f55a2241069c638f862039561bc732a9a380a05c6a8ab5adb65188f24882cb13f9dd604ef15ea43abc5ccdfc9bfe6b966c343da49e10cebdd875ae8793f2398278658eacbed7b13eaa2fe77a74ee08c4986f8683af3caacbe3b6c0a5a10f1fed7418a7d4af3f5bd43d33ea14afed50e430cd8dcf38a33f2a10456eaaa71a611a4f87dff266de2087d21e996573b7cbe11072a797dda6a4", 0xb4}], 0x4}}], 0x3, 0x200000c0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB="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"], 0x340}}, {{&(0x7f0000000300)={0xa, 0x4e20, 0x80000000, @empty, 0x7}, 0x1c, &(0x7f0000000f00)=[{0x0}, {0x0}, {&(0x7f00000006c0)="138b9f8300af1d79", 0x8}, {&(0x7f0000000700)="e59c889c8be9e17c21882a76c6907239d44f6a0efb65359c6a8e5ede789aa995461e91d2", 0x24}, {&(0x7f0000000e80)="0e9129a2bae0d093a9c5091f0926391174e5aff7420b47b0cf1a8bbd7bb239460a6b26eb4f86fa48acdf54294bee3567a8ff0ed4f912a1aa059d62286db3e045dc31db292f5ab26a8f1466d90f0f98ff1a0e2b1018604ef19b", 0x59}], 0x5}}], 0x2, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000001440), 0x7953bb0c2b576ac9, 0x0)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0xeeee8000, 0x4, 0x3, 0xf1, 0x5, 0xfa, 0xd4, 0xd4, 0x0, 0x4, 0x7, 0x4f}, {0x26000, 0x2, 0xd, 0x9, 0x8, 0x3, 0x6, 0xb, 0x5, 0xf, 0x3, 0xc0}, {0xffff1000, 0xeeef0000, 0xb, 0x1, 0x2, 0x7, 0x6, 0x1, 0x81, 0x0, 0x6, 0x5}, {0xeeee8000, 0x2000, 0x8, 0xf8, 0x3, 0x46, 0x2, 0xd, 0x6, 0x0, 0x8, 0x1}, {0x100000, 0x4000, 0x9, 0x9, 0x3, 0x9, 0xd, 0x6, 0x5, 0x9, 0xc, 0x4b}, {0x6000, 0x0, 0x4, 0x6, 0x3, 0x7d, 0x1, 0xff, 0x4, 0x90, 0x1, 0xfc}, {0x8000000, 0x4000, 0x0, 0x9d, 0x3, 0x0, 0x0, 0xb, 0x5, 0x7, 0x9, 0xf8}, {0xf7f63004, 0x8000000, 0xf, 0x5, 0x28, 0x3, 0xa, 0x9, 0x54, 0x1, 0x2, 0x7}, {0xdddd1000, 0x5}, {0x4, 0x9}, 0x40030000, 0x0, 0x80a0000, 0x300, 0x1, 0x5800, 0xe6e70c00, [0x3, 0x401, 0x7, 0xc5]})
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

10.002509426s ago: executing program 1 (id=1624):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8004, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x80000000, 0x20000006, 0x4d, 0x6, 0x5d, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x9, 0x4, 0x0, 0x7, 0x3c5b, 0x1, 0x28, 0xd, 0x7, 0x0, 0xffffffff, 0xe661, 0x4, 0x7, 0x3, 0x8, 0x4c74, 0x80000000, 0x242, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x8c, 0x1000, 0xffff, 0x0, 0x8000, 0x4, 0x8008, 0x400, 0xd, 0x3, 0x5, 0x6, 0x8, 0x4, 0x3, 0x40], [0x10000007, 0x9, 0x8000012f, 0x2008004, 0x5, 0xfffffff3, 0x129432e5, 0xc488, 0xf9, 0xe, 0x2c0, 0x6c7, 0x9, 0xffffffff, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f2e, 0xd, 0x4e2, 0x2, 0x4, 0xb, 0x4, 0x9, 0x8, 0x9, 0x6, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x9, 0x3, 0x3, 0x9, 0x1, 0x3, 0x3, 0x81, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x7, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7dff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x7, 0x3e7, 0xf, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0xa5, 0x5, 0x6, 0xac6, 0xca, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x3c484551], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x93a, 0x6, 0x7, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x57, 0x5, 0x3, 0x101, 0x10000, 0x2000004, 0x7fff, 0xffff, 0xa620, 0x2, 0xfffffffd, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x5, 0x4, 0xc8, 0xfffffff9, 0xfffff000, 0x10000, 0x0, 0x7e, 0x100, 0x9602, 0x7, 0xaf, 0x5, 0x6, 0x226, 0x5, 0x4, 0x8, 0x30b1d693, 0xa1f, 0x4, 0x400, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb3e, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
timer_create(0x1, 0x0, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r3 = io_uring_setup(0x3450, &(0x7f0000000080)={0x0, 0x1539, 0x0, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mremap(&(0x7f00003eb000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000003000/0x1000)=nil)
r4 = syz_pidfd_open(0x0, 0x0)
setns(r4, 0x24020000)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x0, &(0x7f0000001dc0)={0x8c}, 0x20)

9.949464258s ago: executing program 2 (id=1625):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = getpid()
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8004, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x80000000, 0x20000006, 0x4d, 0x6, 0x5d, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x9, 0x4, 0x0, 0x7, 0x3c5b, 0x1, 0x28, 0xd, 0x7, 0x0, 0xffffffff, 0xe661, 0x4, 0x7, 0x3, 0x8, 0x4c74, 0x80000000, 0x242, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x8c, 0x1000, 0xffff, 0x0, 0x8000, 0x4, 0x8008, 0x400, 0xd, 0x3, 0x5, 0x6, 0x8, 0x4, 0x3, 0x40], [0x10000007, 0x9, 0x8000012f, 0x2008004, 0x5, 0xfffffff3, 0x129432e5, 0xc488, 0xf9, 0xe, 0x2c0, 0x6c7, 0x9, 0xffffffff, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f2e, 0xd, 0x4e2, 0x2, 0x4, 0xb, 0x4, 0x9, 0x8, 0x9, 0x6, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x9, 0x3, 0x3, 0x9, 0x1, 0x3, 0x3, 0x81, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x7, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7dff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x7, 0x3e7, 0xf, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0xa5, 0x5, 0x6, 0xac6, 0xca, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x3c484551], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x93a, 0x6, 0x7, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x57, 0x5, 0x3, 0x101, 0x10000, 0x2000004, 0x7fff, 0xffff, 0xa620, 0x2, 0xfffffffd, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x5, 0x4, 0xc8, 0xfffffff9, 0xfffff000, 0x10000, 0x0, 0x7e, 0x100, 0x9602, 0x7, 0xaf, 0x5, 0x6, 0x226, 0x5, 0x4, 0x8, 0x30b1d693, 0xa1f, 0x4, 0x400, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb3e, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
pipe2(0x0, 0x0)
timer_create(0x1, 0x0, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r4 = io_uring_setup(0x3450, &(0x7f0000000080)={0x0, 0x1539, 0x0, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mremap(&(0x7f00003eb000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000003000/0x1000)=nil)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r4, 0x10, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)=[{0x0}], 0x0, 0x1}, 0x20)
r5 = syz_pidfd_open(r3, 0x0)
setns(r5, 0x24020000)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x0, &(0x7f0000001dc0)={0x8c}, 0x20)

8.14289851s ago: executing program 1 (id=1626):
mkdir(&(0x7f00000003c0)='./file0\x00', 0x21)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fsopen(0x0, 0x1)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000300)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
mkdir(&(0x7f0000000200)='./bus\x00', 0x10)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f00000021c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chroot(&(0x7f0000000000)='./bus\x00')
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
r3 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
connect$rose(r3, 0x0, 0x0)

8.14230936s ago: executing program 2 (id=1627):
r0 = fsopen(&(0x7f0000000240)='ramfs\x00', 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
openat$sysfs(0xffffff9c, &(0x7f0000000540)='/sys/power/disk', 0x80900, 0x10a)
syz_io_uring_submit(0x0, 0x0, 0x0, &(0x7f0000000000))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2f)
mount(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x201000c, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x40000, 0x120)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x66)
r2 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_ENCAP(r2, 0x113, 0x1, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x16)
r3 = syz_open_procfs(0x0, &(0x7f0000000380)='clear_refs\x00')
writev(r3, &(0x7f00000000c0)=[{0x0}], 0x1)

8.086620462s ago: executing program 0 (id=1628):
keyctl$reject(0x13, 0x0, 0x800, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
syz_clone3(0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat$uinput(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close(0xffffffffffffffff)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000180), 0x127)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000680)=[{0x0}], 0x1}, 0x40000140)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a78000000060a09040000000000000000020000004c000480300001800e000100696d6d6564696174650000001c000280100002800c00028008000180000000000800014000000000180001800d00010073796e70726f787900000000040002800900010073797a30000000000900020073797a320000000014000000110001"], 0xa0}}, 0x0)
connect$phonet_pipe(0xffffffffffffffff, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000340)=ANY=[@ANYBLOB], 0x20)

7.437494084s ago: executing program 0 (id=1629):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = getpid()
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8004, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x80000000, 0x20000006, 0x4d, 0x6, 0x5d, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x9, 0x4, 0x0, 0x7, 0x3c5b, 0x1, 0x28, 0xd, 0x7, 0x0, 0xffffffff, 0xe661, 0x4, 0x7, 0x3, 0x8, 0x4c74, 0x80000000, 0x242, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x8c, 0x1000, 0xffff, 0x0, 0x8000, 0x4, 0x8008, 0x400, 0xd, 0x3, 0x5, 0x6, 0x8, 0x4, 0x3, 0x40], [0x10000007, 0x9, 0x8000012f, 0x2008004, 0x5, 0xfffffff3, 0x129432e5, 0xc488, 0xf9, 0xe, 0x2c0, 0x6c7, 0x9, 0xffffffff, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f2e, 0xd, 0x4e2, 0x2, 0x4, 0xb, 0x4, 0x9, 0x8, 0x9, 0x6, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x9, 0x3, 0x3, 0x9, 0x1, 0x3, 0x3, 0x81, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x7, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7dff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x7, 0x3e7, 0xf, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0xa5, 0x5, 0x6, 0xac6, 0xca, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x3c484551], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x93a, 0x6, 0x7, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x57, 0x5, 0x3, 0x101, 0x10000, 0x2000004, 0x7fff, 0xffff, 0xa620, 0x2, 0xfffffffd, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x5, 0x4, 0xc8, 0xfffffff9, 0xfffff000, 0x10000, 0x0, 0x7e, 0x100, 0x9602, 0x7, 0xaf, 0x5, 0x6, 0x226, 0x5, 0x4, 0x8, 0x30b1d693, 0xa1f, 0x4, 0x400, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb3e, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
pipe2(0x0, 0x0)
timer_create(0x1, 0x0, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r4 = io_uring_setup(0x3450, &(0x7f0000000080)={0x0, 0x1539, 0x0, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mremap(&(0x7f00003eb000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000003000/0x1000)=nil)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r4, 0x10, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)=[{0x0}], 0x0, 0x1}, 0x20)
r5 = syz_pidfd_open(r3, 0x0)
setns(r5, 0x24020000)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x0, &(0x7f0000001dc0)={0x8c}, 0x20)

7.147620904s ago: executing program 1 (id=1630):
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x248, 0x9b99}, 0x3a, [0xfffffff8, 0x8, 0x5, 0x10009, 0x8, 0x155f, 0x6, 0x2, 0x25cd, 0x1, 0xb4, 0xa, 0xb2b9, 0x6, 0x8, 0xe4, 0x6, 0xfc000000, 0x3, 0xbbf, 0x1000, 0x1, 0x8, 0xd, 0x4, 0x12a0, 0x8000, 0x1, 0x7, 0x6, 0x7, 0x81, 0x8a, 0x79, 0x2, 0x10001, 0x5, 0x91, 0x4, 0x4, 0x16, 0x2, 0x5, 0x401, 0xfffffff5, 0x405, 0xa7, 0x81, 0x9, 0xf9a2, 0x80000001, 0xff, 0x2, 0x2, 0x2, 0x2, 0x7, 0x4, 0x7, 0x4, 0x4007f, 0xffffffff, 0x9], [0x9, 0x16e, 0x6, 0x9, 0x4, 0xc66, 0xa8a9, 0x20000073, 0x8e, 0xd50, 0x7, 0x5, 0xfffffffe, 0x80a, 0x401, 0xa7, 0x1000, 0x0, 0x200b395, 0x400000, 0x2, 0x4, 0x19, 0x7, 0x400001, 0x3, 0x3, 0x8, 0xffffff7f, 0x400, 0x6, 0x4c2336d3, 0x96, 0x0, 0xfffffff8, 0x401, 0x6, 0xf1, 0x4, 0xab00060, 0x5, 0x6, 0x2, 0x5, 0x3ff, 0x1ff, 0x868b, 0x7fff, 0x1, 0x1ce, 0x1, 0x80000004, 0x80000001, 0x6, 0x2, 0x9, 0x95, 0x80000000, 0x4, 0xfffffff9, 0x40000003, 0x1000, 0xfffff804, 0x5], [0x2, 0xfffffffe, 0xffff, 0xc, 0x2, 0x2e6bf783, 0x80000001, 0x5, 0x400005, 0x491, 0x8d3, 0x200006, 0x8, 0x400, 0x3, 0x400, 0x41, 0x6, 0xee4b, 0x2008004, 0x1, 0x8000003, 0x5, 0x89, 0x3, 0x3, 0x9, 0x3, 0xc7, 0xffe, 0x10000a, 0x8000, 0x401, 0x3e55, 0x5, 0xd3, 0x8, 0x3437, 0x3, 0xd, 0x7, 0x601, 0x101, 0xdd80, 0x60a0, 0x7f, 0x9d26, 0x10000, 0x1, 0x2, 0x2, 0x6, 0x8000, 0x0, 0x3, 0xd500, 0x8, 0x77, 0x9, 0x6, 0x10000, 0x3, 0x8, 0x1], [0xa772, 0x6, 0x5, 0x1afa, 0xbfc, 0x8, 0x5, 0x7f, 0x55, 0x40, 0xff, 0x1005, 0x1, 0x8000007, 0x1e, 0x9, 0x81, 0x3, 0x9d86, 0x9, 0xfffffff7, 0x8, 0x7, 0x5396, 0x939, 0x6, 0x80008001, 0x7777, 0x1, 0x2, 0x100, 0xffffffff, 0x7fffffff, 0x9, 0xc, 0x32d, 0x3, 0x1ff, 0x2000803, 0xffffffff, 0x10000, 0x0, 0x8004, 0x7fff, 0x0, 0x6, 0xf, 0xe, 0x5337, 0x26d, 0x6, 0xfffffff9, 0x4, 0xfffffff9, 0x9, 0xc, 0x463f, 0x4, 0xdaa, 0x8003, 0x8, 0x14000, 0x1, 0x9]}, 0x45c)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x40040, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0x0, 0x40000000000180, 0x2, 0x80000000, 0xf2, 0xd, 0x7fffffffffffe, 0x7, 0x5, 0x7, 0x0, 0x5, 0x4, 0x8], 0x25000, 0x304})
r4 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r4, &(0x7f0000000240)={0x13, 0x10, 0x7, {0x0, r5, 0x2}}, 0x18)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r7 = dup(r6)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)

6.038520422s ago: executing program 2 (id=1631):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2a, 0xa9}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xfffff000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
symlink(0x0, &(0x7f0000000040)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mknodat(0xffffffffffffff9c, &(0x7f0000000140)='./file1/file2\x00', 0x1000, 0x0)
r3 = landlock_create_ruleset(&(0x7f00000002c0)={0x2001}, 0x18, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x200000, 0x13b)
landlock_restrict_self(r3, 0x0)
r4 = fanotify_init(0x200, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='net_prio.prioidx\x00', 0x275a, 0x0)
fanotify_mark(r4, 0x101, 0x4000106b, r5, 0x0)
r6 = creat(&(0x7f0000000040)='./bus\x00', 0x8)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000300)={'#! ', '', [], 0xa, "f3"}, 0x5)
copy_file_range(r7, 0x0, r6, 0x0, 0x8, 0x0)

5.893664847s ago: executing program 4 (id=1632):
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000780)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000340))
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB="14000000000000002900000034000000040000000000000014000000000000002900000034000000fdffffff0000000000010000000000002900000004000000041c000000000000fe72f4a4a3142ee1e12b9826287997a6b33d89f3d60da1641d9fe3896c3c1b6c130ef4f01be8f5836d417874540898619050b14420ab124b11de36afb16ef4fc00f3f4e4fa0e647cd1b07b068d3894180b6aa7527a4a8252f6836a0d67a7782c675a838ea989e567e4774de1f52d188e0b0888c5801409e12e5f0b6bdcf72f2ec7008a15fa88b025e0ad0738000000010c7a0180050000000000000009000000000000000400000000000000060000000000000000040000000000000b0000000000000005020a7e00010005020bf4c910fc0200000000000000000000780e000000000000000000140000000000000029000000340000000000000000000000700100000000000029000000360000005e2a000000000000ff4150d650847249ad288702ebd0d654b985e8908defb7ec6c5ff115c58e128b9e3a21c34b45ef9de99984e143ca7c3509a971b2ec429ee1edc0bb903fe94b32c28f70000100000100010800000000000000000708000000030000ff0f07100000000002070600ff7f00000000000008c6c8a110995d439fbfac9716a99c357bcb2d59a850490739734f6b321d19b3754df39cc2dc26cf263cbebbddb9a7f17b6771f74c46623f9e38bd23e6f0a2fd3a9a017f66738394aca44d1a9f0b35d9df0a964360ab0900a5e6fcac1cd41c91c97f6826ff706c41edc4e00205bbb53218ed58a1122d993b55a1b9a870a17e7869e3fc704b388202add651f628963a90fea5d8196d5e0373fd"], 0x340}}, {{&(0x7f0000000300)={0xa, 0x4e20, 0x80000000, @empty, 0x7}, 0x1c, &(0x7f0000000f00)=[{0x0}, {0x0}, {&(0x7f00000006c0)="138b9f8300af1d79", 0x8}, {&(0x7f0000000700)="e59c889c8be9e17c21882a76c6907239d44f6a0efb65359c6a8e5ede789aa995461e91d2", 0x24}, {&(0x7f0000000e80)="0e9129a2bae0d093a9c5091f0926391174e5aff7420b47b0cf1a8bbd7bb239460a6b26eb4f86fa48acdf54294bee3567a8ff0ed4f912a1aa059d62286db3e045dc31db292f5ab26a8f1466d90f0f98ff1a0e2b1018604ef19b", 0x59}], 0x5}}], 0x2, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000001440), 0x7953bb0c2b576ac9, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0xeeee8000, 0x4, 0x3, 0xf1, 0x5, 0xfa, 0xd4, 0xd4, 0x0, 0x4, 0x7, 0x4f}, {0x26000, 0x2, 0xd, 0x9, 0x8, 0x3, 0x6, 0xb, 0x5, 0xf, 0x3, 0xc0}, {0xffff1000, 0xeeef0000, 0xb, 0x1, 0x2, 0x7, 0x6, 0x1, 0x81, 0x0, 0x6, 0x5}, {0xeeee8000, 0x2000, 0x8, 0xf8, 0x3, 0x46, 0x2, 0xd, 0x6, 0x0, 0x8, 0x1}, {0x100000, 0x4000, 0x9, 0x9, 0x3, 0x9, 0xd, 0x6, 0x5, 0x9, 0xc, 0x4b}, {0x6000, 0x0, 0x4, 0x6, 0x3, 0x7d, 0x1, 0xff, 0x4, 0x90, 0x1, 0xfc}, {0x8000000, 0x4000, 0x0, 0x9d, 0x3, 0x0, 0x0, 0xb, 0x5, 0x7, 0x9, 0xf8}, {0xf7f63004, 0x8000000, 0xf, 0x5, 0x28, 0x3, 0xa, 0x9, 0x54, 0x1, 0x2, 0x7}, {0xdddd1000, 0x5}, {0x4, 0x9}, 0x40030000, 0x0, 0x80a0000, 0x300, 0x1, 0x5800, 0xe6e70c00, [0x3, 0x401, 0x7, 0xc5]})
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="ea7c5828b87d70214008724bcae1ce6577c01031b19698ecb8a7f5183947918ce2cc9dc778dbfff9e28e1a6df7d8f95c3e45768a6786d6325bc0fe4ed394c8ed0edcbb9f917074251a7f5b6b24c52516a68f181592262dfd12b5af7386658c5fb6c36d86d5084624a302a155c0463b6c36e9fc88338b0f66e2713728a21d19d9a33da93d419df63d8a87fa100381ec74de8b7409f4977d3cd7a9f2fb03cec91c4277b39b2c9f227a9b74926a11960d085e2aaf98673d2a67fa95b8d9dcc72ca6181f6b9b2d1c402267e6cfef5599e1520077d9bc472fb5a5db42b1befd498ec7b8d519b12f065323b15280a2540bc7a4ffe508fc12f93707064caf4111e893142f9867b432b1e6258caa2ae081b8b646c25de7f5366a21f9dd257b84546cd316e17b79d22c4bcaf70e8a96d1e502b53c581c75482d1d63f0d5f3fb5bdbb714583f0798e0c4d6c9d99513e91a68a26612053290f15f5a2e06acfa229356e37b4d57697224e9561c0430a67fcb5dea72acc91e60751a5b07eb603548a646f082ce213347b4ee908bd95cc56775330aa09d4f19f48a8cb5d7f6346d82bab8ff019309684bd01eb4d90febe2269cd2a1100130c242a2995ce38638a3bbc9008ac0e820a1e0b9a9511af47aa7f3e30a69589985423f3b4ea98152433bf1aa53a0981f783f11c4cc50f70fe63b2043b74b9cb7da59caedadc1fa1f662831a353969893d4f93b919cda52a1ce2200a0a7895abb293c29d6d197cce98a4df8fc90c582014742a00b4bd09f1fcc5ff5753320d2b5593e657c0fb87a4cfa323ce59111eea806a6e020fb0c4fdd601087811e33e793975b5e9e936c16d243bdea757e0ee4508f5d5b496ed07b6f0f1f46ed752448f30d679b23ba8142d4ab25beb913ee77547866e5d9501a55e9797ba3407f3f4cc11398bdaf3ac4c2e79a5b133a09fcf8ae790bb985fa01daf2758fd8a77fde15a822227dddf64bb2ebc49a56ad025e01c6c59e4818abdf808789d9f87c103cf7f7d21d2a1345b9b7fd66b1cf96002343fbd62f8080d945e70bd93d4bf42b401477abed49065b4a8ccfb9d93724118168de2e8df4f78ccf3b9593f993423a619ef6bd8392a2cfc6424d3687fcdc67d33073db95d856f312b934d05a3c4e967217837920fee73b00757b617d1ef3bfc2e88a8a72f0948263db2c9e7bd491f059b6ee8d0ea3f2193314562910529869b248172bfe0f914f7a91a27c6e9e6c2e3455a7ae765392b48fc959958aa39a5a483b2a6e873ac76f8579515e42f7a3bbc82bcf71edaf12f7b40a2adc74d67ef793988cc8ac788185049e57fb84757bdc700ffde10afc19df290787ed98222f8afb2b6d11944666331350e2914466b398750acae526146373b2cbe1bdd1803e6c920a182a1ad118a3d09313c2ce2703a0a1c09215cab90c35b03b1c795cf704f42dd31ddff6be67bb355977b2e07609c5228299a170308e54705674384fc294cdfa4abf989d3c3bf3eabbbcf52a6a0646bf6db5b61ad027007464fd6fc10490ee2e9190c28ae5cb3733105cb782c0d53e5c79c3e455609d557d824154d01e282788ec8ae7c8a03fcd6cd4e37829b0f921c46d715454d5e1281c641cf0756a2f31b0369ce94e819e6254af95b88bffd7bb2cfe9469d303497fead174839b2789b5aa703176510eab1f46916b3b63f6f5b2df262fe7274a0cee9bd6e115e5f9f48ac1c09e5b3c546ae95b9916a633869854d3ee39d4acb800e876e7fc084ffd79a20fca8331caff657ec89b445c6012ff7eb9531eb1e8c90cdc66b82d6fd608310099503a9dcf50b40d10a3b1ab520477e20ad5f6405cd4b5b36d201e12088d7868c6e94737ea88db6ed5f7df4d31cbd2d0c4f21cdcc3b181f5aae7216dc4c06b2989bb44e5369ba96ce87f3e3abbb530d103a53d7e0b914115c302c935eea7d256a73aa851d84dec6d9112163be8135889c67fa90e796a6f050fba0a6a740618cd513748072daac9f3e25034772cc400a14834afbde835bc9fd7cf1113d67ebe99a3b78907596886ad5a1670ef572c18e26c98fe40194428de339cba7b8efc5fa7faf7512ef6b89a877f3e534fb4512729df686e14aece08fab3b42ea14acde0e18ffe5dc00e74288661c7463e00f3b942cddf3b71e1dcf71989f378b933df099316451cca296a4e117bbeb3b1e552e5a10f9731449ae830de14989049ce818f720e77e78a86c307c80450b26278bc25ee7390ce6d4c4dfc8d39b6b4b1ce6f3865dbdd1d37aedb555288bea9ef95c8600dea1cd10e9e42d15aa804f99a31bfaa5ea52185333d734c766e3bb4a9abf86cf4d840dc188167a25cc3054b65fd7ce053d38518474ab55e59c1ccaf34d57b4cd73b07ed63d754ab3d57dfc0f67bbdb22e33d9f63aa2b36cf0af338794d4acbd1b13669bde67f7bd032f9c6b400e8054a0cff77fc6e0591195b21715e42c881e23156b4ba504d7e1b6eb9c2ec9b9e382d85f7c52bd964d305da9496dbaa022880ddf236730c458f31258d64ae2668aa863b3fe558c7f8cfb3dabf42edcaf2891e9b9462c44153658eae85cd499abd9dca762adf26d9904d28b772b3fc3d066d56261474c944387ac7eb00059025ff25e34b8f7c2986db1ccc4297e1315c3ceeef1b8f98e0500bbb8bb0ab52d80f8c6c8fa5d24b9a05f5350e2fd59af4b9fa9a2b4339b61e208f227ba968d4dbd36246133de2078c6a15dd57754a3537c31d04da545f062dbf9cbaa0840e23974f441a4d5937fec23ff81c193bd951a7bacac8eb6d4705702cbe3c930f27869753ba6026455bbb7742c53644f1646d7545467091a207905f831505f214fbd818aea4455705b5e727850cdcac40620135b8dba85cb0c0f393af252ec082cba5c43385fbc2cc5682bc1994b064e29c8c5a20e7e6d15fbb13e6fd1a86b2fda666fbcd80fd08be00a7423fcafbdd8283bac88ead203bc10d1c1a13ca2fe853fa6cc8991b0476561be085b086b0d0e45f73e59f519342c13f368a37464cb55b8a13846f4cd610536d5c4b8704fcd347abe6712d3de67d7918e6954898f31647a8ea37ecc2e1bb02b1b26e7a60fbb2b0a48efc5795c12d5c4ac8dc4149dea0f2e085422ec69352882622711b74e1e32c7ead2cf3c554e8ff1648e8b66d0dc6997b6304b3b560a33d75aa49476175a386ca721156ea79bdba432d439dbceb0285561abd5d134badd9f38c04fae8fa920edfff15705371c907848c14acdfb0b22a4c7168e1840e8b8a50349dcee5f429b3cb34e30f0f67acf93604792b8574f36ea9409d422621f3c0c7b781fc8e23d1d46f04a9b44f633e5f72cb079fbde66a9745705666c6dab6238628e57ee6cffa8cfad616dac1abe2789c9efccb4fc7e65e490d9a4e49e7ce72a6980e72f70a17649e67de86f86b61a4b6219daefc939b5904e5712ecaf85c98484fc02585b1aa990b95173e4a2907cf877af696e528e6b2b634a4fb7d791cacc8644fa76e062148d411e18f0da5aed22116828cd700a28e8f46bca950550acb4ab05eddeb6b2dac24702cff4de0a3ece393cac879ed2f0c5b9645839cfdb79fb1df87596b14504cba9dddda51edaffcd0214b91b5898ea022774e699aa0caf0f646cc0cb8e8fc8b8be43c23aa7f6bd29fd0615c0b78f3514a52989d7f35ad08a4bd473e61da6657cc2e85d3b2b7d3fb51174a96f27038ddbc87a35e09a668e436aa40146c6a26dca87b39220f139b772719d80aadb752c622bf09acd6846838fb48a8817ba4aa72eaa32e82251b3789969d8518f9aa07cdcb9a355f73f119725c086168aaca262f13cd742e5f06c969a462638a557e15a4f5d43e3242c08f23b00d2b8d57c60d3636abd4068ec03a4be3429b95e41351ab5c58812e552df90c3e6c9d8779aa484e74f073ea9fcdce13b1dff8e7c101b2c6865c5cefe108e3559f520e2bc42c9dc39b57fddb44ca49f2689e10c1381c0740d20cbca46da475c62f513cb08398a5fd5d4f6b13ce839fe149df0d291a8f7267fe90a7e1845dace17cd927c2d1aeffbdc36bb983172ceff025e84b0419645fcc72897b992f5081c78756122391947f08ccd20806cfc2bded705b472fc52e84734e016cbd309aadebbbb4e8bdfed77b1e0b15ce0904838d9e4d64643df66f0353c377e554b428dc0f31189a134cdb8e66d2755e84c2b2409c3d63a81f5f05616baf6a243b09153a4f8289e15a5a4ffb007b0cbeffde25391bb2acd86b453e245643c0fa1dfe5d42e0e3f1c592a00b77f0133adf7989c6c2bf3ddc0b8a2b14f35d33f62f4ee2fc56166372058e997b9abe6bad8aa718f8d87ad095e8f354aaef540840437b5451771266a8358ed75954db52b38bca4a1c8696dca1de03b12627254409f8bb68c94eeaa1a8bcf894482b96e81b9ff5c2383a907537a191aff0bb5b5418ef5670cecca1cfbd41b61879b11a5a5053cd86cf5d61f8c2f7d7ad2034a1801b3b92a79ac3b4343c680008b1ba10577a35173cac6d4dbc1d00e436f238b57093b34d4ea19c225b84a2d6086cc6cf72595b980c88142d268bbf9c8375a93afe75c3583b3b9687368d78147985d209e6d89c335e948c51696a948f01ad062dcf84a99584466e24646b2e441fefb10ef962432f2925d6d98e790acf4ca7d9339a589a537aa3392ec79f34a6544144072ab8248e45ac560a78c70c5afcbf10909299dfcd67981c88780c1340c951e115ffec56d23b9ead6a55024e199238f4b133e3e1e0e84318b5037a3947ae09749c25c7e4887936ecf0ba9a807dfa471ea1f3350b70feb58dc9e2836365ce4db456a341e43410cac1253fe08e79c21fca932716f4c171fc957cb325737b70532d81f0eb2f0a16478c0d934165728f7b29a8a0ff6bc964e99dea26d3efd28336b00c112a26da7a2ea1c21a9688cc3a68293958edf27ae89e5f9b8348af4121028e760cf68c931af92906d27dad4d330df9201b5395ccce0c803806422883667ccb11438d9dbe1901d4ab98d89914b313338486deb6f748053517e2188c479adb1eabb8e8ed5d05bb3f66826fae83bbc5bce3615ee32d937ffbe8846a1156aaf7bf9b9d4189bdf290b3df254077688eeda824d6ea0a452f7e7f915c1a94ee250a3907ec035d7ba7bb0256811f04646ca156b8925506c774df4d4072c02929e985057a5f7ddc1469c7306e6fdb86b810ada1cc96f6bd389597dd27dd656f55c316fb2d56b2d13eddf893722e813934a19778719be99697c365222db64039f9caab1201c430e53df1af8a0321c8759fc33e8204150080979936d0717f6c4c9145fb828389acbb894a4600485e8b105c7165a40e814889343deead6d434a8da60eed1e50aa507ac2793b4a4c5517265f859f223bb4f6cadc6fb53430304baea18189e2b5ddd266c38f5c325ba391a50fcd34060d217c4118889c4275e40a8428099ddfa3cc0d8241c22fc1554318e922f3b1257f2046d70df460c5283a539487583ffca1972a19237b06480e0a56d9e185fe4dc3607666d81ed0d9d9f5c5c568a5a0a87160b6d35c73dae9c6177f2b25d90a2598042f4b43bc765fa86a831c401a01c391a8fdc8f8c742f2322a1b8ef18ec7d82f013893c981f6bd96ec57d8e73e1633ae3970721fcea055ecc836ce3", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

5.787025711s ago: executing program 0 (id=1633):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = getpid()
pipe2(0x0, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
timer_create(0x1, 0x0, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r4 = io_uring_setup(0x3450, &(0x7f0000000080)={0x0, 0x1539, 0x0, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mremap(&(0x7f00003eb000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000003000/0x1000)=nil)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r4, 0x10, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)=[{0x0}], 0x0, 0x1}, 0x20)
r5 = syz_pidfd_open(r3, 0x0)
setns(r5, 0x24020000)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x0, &(0x7f0000001dc0)={0x8c}, 0x20)

5.678859935s ago: executing program 5 (id=1634):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
r1 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x12400, 0x49)
read$msr(r1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f00000002c0)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000032680)=""/102400, 0x19000)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x21c0, 0x103)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001180), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r5, &(0x7f0000002100)={0x2020}, 0x2020)
syz_fuse_handle_req(r5, 0x0, 0x0, 0x0)
write$FUSE_INIT(r5, 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x40242, 0x1)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]})
close_range(r6, 0xffffffffffffffff, 0x0)

4.696365168s ago: executing program 5 (id=1635):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000040)=@nat={'nat\x00', 0x2, 0x5, 0x4b0, 0x310, 0xf0, 0xffffffff, 0xf0, 0xf0, 0x3e0, 0x3e0, 0xffffffff, 0x3e0, 0x3e0, 0x5, 0x0, {[{{@ipv6={@mcast2, @empty, [], [], 'batadv0\x00', 'veth0_to_batadv\x00', {}, {0xff}}, 0x0, 0xa8, 0xf0}, @REDIRECT={0x48, 'REDIRECT\x00', 0x0, {0x3, @ipv6=@mcast2, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @icmp_id=0x6b, @icmp_id=0x65}}}, {{@ipv6={@dev, @loopback, [], [], 'batadv0\x00', 'veth1_vlan\x00'}, 0x0, 0xe8, 0x130, 0x0, {}, [@common=@unspec=@connlimit={{0x40}, {[0x0, 0x0, 0x0, 0xffffff00]}}]}, @unspec=@SNAT1={0x48, 'SNAT\x00', 0x1, {0x0, @ipv4=@remote, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}, @icmp_id, @icmp_id}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @NETMAP={0x48, 'NETMAP\x00', 0x0, {0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x36}, @ipv4=@multicast2, @gre_key=0x400, @port=0x4e20}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE1={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x510)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/tcp6\x00')
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket(0xa, 0x5, 0x0)
setsockopt$inet6_IPV6_DSTOPTS(r3, 0x29, 0x3b, &(0x7f0000000000)=ANY=[], 0xf0)
sendto$inet6(r3, 0x0, 0x0, 0x400c804, &(0x7f0000000100)={0xa, 0x4e23, 0xfffffec1, @local, 0xffff8003}, 0x1c)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r3, 0x0, 0x48c, 0x0, 0x0)
r5 = socket(0x40000000015, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r5, 0x114, 0x8, &(0x7f00000008c0), 0x4)
r6 = syz_open_dev$I2C(&(0x7f0000000040), 0x0, 0x80)
ioctl$I2C_SMBUS(r6, 0x720, &(0x7f0000000100)={0x1, 0x4, 0x6, &(0x7f0000000080)={0x0, "14abd83463604d70b41d4008e300000000fcffffff000000000000006d803e8800"}})
preadv(r1, &(0x7f0000000240)=[{&(0x7f00000003c0)=""/200, 0xc8}], 0x1, 0x91, 0x2)

4.581875592s ago: executing program 2 (id=1636):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = getpid()
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8004, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x80000000, 0x20000006, 0x4d, 0x6, 0x5d, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x9, 0x4, 0x0, 0x7, 0x3c5b, 0x1, 0x28, 0xd, 0x7, 0x0, 0xffffffff, 0xe661, 0x4, 0x7, 0x3, 0x8, 0x4c74, 0x80000000, 0x242, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x8c, 0x1000, 0xffff, 0x0, 0x8000, 0x4, 0x8008, 0x400, 0xd, 0x3, 0x5, 0x6, 0x8, 0x4, 0x3, 0x40], [0x10000007, 0x9, 0x8000012f, 0x2008004, 0x5, 0xfffffff3, 0x129432e5, 0xc488, 0xf9, 0xe, 0x2c0, 0x6c7, 0x9, 0xffffffff, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f2e, 0xd, 0x4e2, 0x2, 0x4, 0xb, 0x4, 0x9, 0x8, 0x9, 0x6, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x9, 0x3, 0x3, 0x9, 0x1, 0x3, 0x3, 0x81, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x7, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7dff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x7, 0x3e7, 0xf, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0xa5, 0x5, 0x6, 0xac6, 0xca, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x3c484551], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x93a, 0x6, 0x7, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x57, 0x5, 0x3, 0x101, 0x10000, 0x2000004, 0x7fff, 0xffff, 0xa620, 0x2, 0xfffffffd, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x5, 0x4, 0xc8, 0xfffffff9, 0xfffff000, 0x10000, 0x0, 0x7e, 0x100, 0x9602, 0x7, 0xaf, 0x5, 0x6, 0x226, 0x5, 0x4, 0x8, 0x30b1d693, 0xa1f, 0x4, 0x400, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb3e, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
pipe2(0x0, 0x0)
timer_create(0x1, 0x0, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r4 = io_uring_setup(0x3450, &(0x7f0000000080)={0x0, 0x1539, 0x0, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mremap(&(0x7f00003eb000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000003000/0x1000)=nil)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r4, 0x10, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)=[{0x0}], 0x0, 0x1}, 0x20)
r5 = syz_pidfd_open(r3, 0x0)
setns(r5, 0x24020000)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x0, &(0x7f0000001dc0)={0x8c}, 0x20)

4.475439386s ago: executing program 4 (id=1637):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8004, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x80000000, 0x20000006, 0x4d, 0x6, 0x5d, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x9, 0x4, 0x0, 0x7, 0x3c5b, 0x1, 0x28, 0xd, 0x7, 0x0, 0xffffffff, 0xe661, 0x4, 0x7, 0x3, 0x8, 0x4c74, 0x80000000, 0x242, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x8c, 0x1000, 0xffff, 0x0, 0x8000, 0x4, 0x8008, 0x400, 0xd, 0x3, 0x5, 0x6, 0x8, 0x4, 0x3, 0x40], [0x10000007, 0x9, 0x8000012f, 0x2008004, 0x5, 0xfffffff3, 0x129432e5, 0xc488, 0xf9, 0xe, 0x2c0, 0x6c7, 0x9, 0xffffffff, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f2e, 0xd, 0x4e2, 0x2, 0x4, 0xb, 0x4, 0x9, 0x8, 0x9, 0x6, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x9, 0x3, 0x3, 0x9, 0x1, 0x3, 0x3, 0x81, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x7, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7dff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x7, 0x3e7, 0xf, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0xa5, 0x5, 0x6, 0xac6, 0xca, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x3c484551], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x93a, 0x6, 0x7, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x57, 0x5, 0x3, 0x101, 0x10000, 0x2000004, 0x7fff, 0xffff, 0xa620, 0x2, 0xfffffffd, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x5, 0x4, 0xc8, 0xfffffff9, 0xfffff000, 0x10000, 0x0, 0x7e, 0x100, 0x9602, 0x7, 0xaf, 0x5, 0x6, 0x226, 0x5, 0x4, 0x8, 0x30b1d693, 0xa1f, 0x4, 0x400, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb3e, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
timer_create(0x1, 0x0, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r3 = io_uring_setup(0x3450, &(0x7f0000000080)={0x0, 0x1539, 0x0, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mremap(&(0x7f00003eb000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000003000/0x1000)=nil)
r4 = syz_pidfd_open(0x0, 0x0)
setns(r4, 0x24020000)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x0, &(0x7f0000001dc0)={0x8c}, 0x20)

1.578369516s ago: executing program 2 (id=1638):
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000780)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'team0\x00', <r0=>0x0})
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001140)=[{{0x0, 0x0, &(0x7f0000001780)}}, {{&(0x7f0000000500)=@ll={0x11, 0x16, r0, 0x1, 0x7, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3f}}, 0x80, &(0x7f00000007c0)=[{&(0x7f0000000600)="ea19a6cd956cec436c74787246d13ca11081dbabebcb76c1d2e8b7d0c8c1aabdd95fc51096c8d57e818ce768ccceed4d115abed88468be323c820ade265a87419a77736785f202fe11a5dd77773ba9a4c83087f956929503b1e1ff5b37da9fe53fb758af2d89f01e0df78efd88cf4a01c0b8766c480a0394b6c8fc9fc12099c5bb81de2cb7a9f7cda5c9b265453e575767fb58b840bfe5d709889eea7579a18472fdd1630e7fbbe9d68f75a7a51eb7e00854a1f71f", 0xb5}, {&(0x7f0000000580)="b309d3ef91dd92a3b7e1c73ff0a368ae33c77fd11e3c04fdf36d2f9461a7ee76290ce0f6449e8a16fb86ee80c6ae62ec109763ae520d", 0x36}, {&(0x7f0000000740)="efded85c2c542acacf9d79eea389735832330080b0afe68599b4b850531e65e89deb1e", 0x23}], 0x3}}, {{&(0x7f0000000880)=@pptp={0x18, 0x2, {0x3, @private=0xa010100}}, 0x80, &(0x7f00000010c0)=[{&(0x7f0000000900)="a590902a494aeaa8345cc36e3baafae8603b7dca66a102375bff06a96fefcb42def096636b07c90f4fcc1e603e4344945d65949f8060d29943d637225ae1487d0e50cd650ef42c634bf4c96a466cd6a0bbaad461e8da5295d6e67b041e597a6204a4ea5d177c0895cbc60f2c6edbe0cf5ce787ba93d8d070f7a7d51cf0b81f6c48aecbc944db5a735cff3816ec24f77a43b59b905350d778ecbf80411ee62619f8dfc9559f98ab1459ab9c9d4d66c660959e0ea4ceb914", 0xb7}, {&(0x7f0000001200)="e03edf555ccc657c1f51f2e2d556c56634e24d753289e65d5c7fbaaf2a49182660fdc72e77d70ab6e91175c5ad36269eeea9cd41439c1c5c9c2b067776", 0x3d}, {&(0x7f00000009c0)="ec542e6e546621be55daa06ed7f545e327ecd8c48d3f7b8ae050bff8c90a3cb00173b653bc4096d3851480366de66f4b99be156191f797f123a3f23be8a22e76a5bd01e1cc80b1d2c45b133bc3eecc580700004210c7136885", 0x59}, {&(0x7f0000001000)="18a8583924039aadf86313c609284663d89bbf4926f433da348624e066f55a2241069c638f862039561bc732a9a380a05c6a8ab5adb65188f24882cb13f9dd604ef15ea43abc5ccdfc9bfe6b966c343da49e10cebdd875ae8793f2398278658eacbed7b13eaa2fe77a74ee08c4986f8683af3caacbe3b6c0a5a10f1fed7418a7d4af3f5bd43d33ea14afed50e430cd8dcf38a33f2a10456eaaa71a611a4f87dff266de2087d21e996573b7cbe11072a797dda6a4", 0xb4}], 0x4}}], 0x3, 0x200000c0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB="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"], 0x340}}, {{&(0x7f0000000300)={0xa, 0x4e20, 0x80000000, @empty, 0x7}, 0x1c, &(0x7f0000000f00)=[{0x0}, {0x0}, {&(0x7f00000006c0)="138b9f8300af1d79", 0x8}, {&(0x7f0000000700)="e59c889c8be9e17c21882a76c6907239d44f6a0efb65359c6a8e5ede789aa995461e91d2", 0x24}, {&(0x7f0000000e80)="0e9129a2bae0d093a9c5091f0926391174e5aff7420b47b0cf1a8bbd7bb239460a6b26eb4f86fa48acdf54294bee3567a8ff0ed4f912a1aa059d62286db3e045dc31db292f5ab26a8f1466d90f0f98ff1a0e2b1018604ef19b", 0x59}], 0x5}}], 0x2, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0xeeee8000, 0x4, 0x3, 0xf1, 0x5, 0xfa, 0xd4, 0xd4, 0x0, 0x4, 0x7, 0x4f}, {0x26000, 0x2, 0xd, 0x9, 0x8, 0x3, 0x6, 0xb, 0x5, 0xf, 0x3, 0xc0}, {0xffff1000, 0xeeef0000, 0xb, 0x1, 0x2, 0x7, 0x6, 0x1, 0x81, 0x0, 0x6, 0x5}, {0xeeee8000, 0x2000, 0x8, 0xf8, 0x3, 0x46, 0x2, 0xd, 0x6, 0x0, 0x8, 0x1}, {0x100000, 0x4000, 0x9, 0x9, 0x3, 0x9, 0xd, 0x6, 0x5, 0x9, 0xc, 0x4b}, {0x6000, 0x0, 0x4, 0x6, 0x3, 0x7d, 0x1, 0xff, 0x4, 0x90, 0x1, 0xfc}, {0x8000000, 0x4000, 0x0, 0x9d, 0x3, 0x0, 0x0, 0xb, 0x5, 0x7, 0x9, 0xf8}, {0xf7f63004, 0x8000000, 0xf, 0x5, 0x28, 0x3, 0xa, 0x9, 0x54, 0x1, 0x2, 0x7}, {0xdddd1000, 0x5}, {0x4, 0x9}, 0x40030000, 0x0, 0x80a0000, 0x300, 0x1, 0x5800, 0xe6e70c00, [0x3, 0x401, 0x7, 0xc5]})
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

1.470653729s ago: executing program 4 (id=1639):
keyctl$reject(0x13, 0x0, 0x800, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
syz_clone3(0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat$uinput(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close(0xffffffffffffffff)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000180), 0x127)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000680)=[{0x0}], 0x1}, 0x40000140)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a78000000060a09040000000000000000020000004c000480300001800e000100696d6d6564696174650000001c000280100002800c00028008000180000000000800014000000000180001800d00010073796e70726f787900000000040002800900010073797a30000000000900020073797a320000000014000000110001"], 0xa0}}, 0x0)
connect$phonet_pipe(0xffffffffffffffff, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000340)=ANY=[@ANYBLOB], 0x20)

1.16795782s ago: executing program 1 (id=1640):
mkdir(&(0x7f00000003c0)='./file0\x00', 0x21)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fsopen(0x0, 0x1)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000300)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
mkdir(&(0x7f0000000200)='./bus\x00', 0x10)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f00000021c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chroot(&(0x7f0000000000)='./bus\x00')
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
syz_emit_ethernet(0x6e, 0x0, 0x0)

86.084317ms ago: executing program 1 (id=1641):
r0 = fsopen(&(0x7f0000000240)='ramfs\x00', 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
openat$sysfs(0xffffff9c, &(0x7f0000000540)='/sys/power/disk', 0x80900, 0x10a)
syz_io_uring_submit(0x0, 0x0, 0x0, &(0x7f0000000000))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2f)
mount(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x201000c, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x40000, 0x120)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x66)
r2 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_ENCAP(r2, 0x113, 0x1, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x16)
r3 = syz_open_procfs(0x0, &(0x7f0000000380)='clear_refs\x00')
writev(r3, &(0x7f00000000c0)=[{0x0}], 0x1)

0s ago: executing program 5 (id=1642):
mkdir(&(0x7f00000003c0)='./file0\x00', 0x21)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fsopen(0x0, 0x1)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000300)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
mkdir(&(0x7f0000000200)='./bus\x00', 0x10)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f00000021c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chroot(&(0x7f0000000000)='./bus\x00')
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
syz_emit_ethernet(0x6e, 0x0, 0x0)

kernel console output (not intermixed with test programs):

021q: adding VLAN 0 to HW filter on device batadv0
[   57.340945][ T4262] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.380564][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   57.389156][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   57.398196][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   57.408171][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   57.417056][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   57.432822][ T4262] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.444482][ T4262] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.455383][ T4262] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.464213][ T4262] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.478516][ T4274] device veth0_macvtap entered promiscuous mode
[   57.513199][ T4272] device veth0_vlan entered promiscuous mode
[   57.541863][ T4274] device veth1_macvtap entered promiscuous mode
[   57.561757][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   57.569911][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   57.579093][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   57.588573][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   57.598448][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   57.607381][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   57.621310][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   57.634635][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   57.656892][ T4266] device veth0_vlan entered promiscuous mode
[   57.689207][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   57.698039][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   57.706489][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   57.715805][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   57.726056][ T4272] device veth1_vlan entered promiscuous mode
[   57.748095][ T4266] device veth1_vlan entered promiscuous mode
[   57.775709][ T4274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   57.787917][ T4274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   57.799864][ T4274] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.842020][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   57.863314][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   57.876884][ T4274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   57.887751][ T4274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   57.901346][ T4274] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.940343][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   57.949010][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   57.962887][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.972675][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.980714][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   57.994609][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   58.003982][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   58.019547][ T4274] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.029317][ T4274] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.040182][ T4274] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.048874][ T4274] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.077274][ T4272] device veth0_macvtap entered promiscuous mode
[   58.088026][ T4272] device veth1_macvtap entered promiscuous mode
[   58.105752][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   58.114309][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   58.122809][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   58.131689][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   58.150205][ T4270] Bluetooth: hci0: command 0x040f tx timeout
[   58.161096][ T4271] device veth0_vlan entered promiscuous mode
[   58.177395][ T4314] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.186152][ T4314] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.201703][ T4271] device veth1_vlan entered promiscuous mode
[   58.208577][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   58.217086][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   58.225640][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   58.233205][ T4263] Bluetooth: hci1: command 0x040f tx timeout
[   58.240862][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   58.248507][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   58.257581][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   58.266057][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   58.273901][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   58.286418][ T4266] device veth0_macvtap entered promiscuous mode
[   58.296112][ T4272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   58.306708][ T4272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.317707][ T4270] Bluetooth: hci4: command 0x040f tx timeout
[   58.320541][ T4263] Bluetooth: hci2: command 0x040f tx timeout
[   58.324016][ T4272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   58.342183][ T4272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.354058][ T4272] batman_adv: batadv0: Interface activated: batadv_slave_0
[   58.385185][ T4266] device veth1_macvtap entered promiscuous mode
[   58.391658][ T4270] Bluetooth: hci3: command 0x040f tx timeout
[   58.398660][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   58.416470][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   58.425590][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   58.440827][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   58.462470][ T4272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   58.473489][ T4272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.483369][ T4272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   58.493825][ T4272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.505339][ T4272] batman_adv: batadv0: Interface activated: batadv_slave_1
[   58.526560][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   58.536394][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   58.553328][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   58.575209][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   58.585496][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   58.602263][ T4271] device veth0_macvtap entered promiscuous mode
[   58.612945][ T4272] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.623292][ T4272] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.633007][ T4272] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.641956][ T4272] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.664252][ T4266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   58.677644][ T4266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.690356][ T4266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   58.701739][ T4266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.715556][ T4266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   58.729714][ T4266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.811286][ T4266] batman_adv: batadv0: Interface activated: batadv_slave_0
[   59.122614][ T4316] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   59.172111][ T4316] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   59.368951][ T4271] device veth1_macvtap entered promiscuous mode
[   59.376262][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   59.384562][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   59.394829][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   59.403573][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   59.412371][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   59.439689][ T4271] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   59.451439][ T4271] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.463918][ T4271] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   59.474533][ T4271] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.485900][ T4271] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   59.496925][ T4271] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.530829][ T4271] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   59.541536][ T4271] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.553525][ T4271] batman_adv: batadv0: Interface activated: batadv_slave_0
[   59.559749][ T4350] loop0: detected capacity change from 0 to 16
[   59.566018][ T4266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.584042][ T4266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.591700][ T4350] erofs: (device loop0): erofs_read_inode: unsupported datalayout 6 of nid 36
[   59.595552][ T4266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.640005][ T4266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.649844][ T4266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.665618][ T4266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.677739][ T4266] batman_adv: batadv0: Interface activated: batadv_slave_1
[   59.735817][ T4266] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   59.762093][ T4266] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   59.775032][ T4266] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   59.808978][ T4266] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   59.826292][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   59.836062][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   59.846351][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   60.061976][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   60.194837][ T4271] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   60.232383][ T4271] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.243563][ T4263] Bluetooth: hci0: command 0x0419 tx timeout
[   60.310330][ T4270] Bluetooth: hci1: command 0x0419 tx timeout
[   60.321291][ T4271] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   60.366007][ T4271] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.450084][ T4270] Bluetooth: hci4: command 0x0419 tx timeout
[   60.456148][ T4270] Bluetooth: hci2: command 0x0419 tx timeout
[   60.463682][ T4271] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   60.474725][ T4270] Bluetooth: hci3: command 0x0419 tx timeout
[   60.486674][ T4271] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.521245][ T4271] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   60.535915][ T4271] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.548335][ T4271] batman_adv: batadv0: Interface activated: batadv_slave_1
[   60.627728][   T39] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.637761][   T39] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.660518][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   60.686150][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   60.745266][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   60.927727][ T4271] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.047317][ T4271] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.140660][ T4271] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.228677][ T4271] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.591680][ T4355] sctp: failed to load transform for md5: -2
[   61.760005][    T0] NOHZ tick-stop error: local softirq work is pending, handler #8a!!!
[   61.779988][    T0] NOHZ tick-stop error: local softirq work is pending, handler #8a!!!
[   61.789991][    T0] NOHZ tick-stop error: local softirq work is pending, handler #8a!!!
[   61.799985][    T0] NOHZ tick-stop error: local softirq work is pending, handler #8a!!!
[   63.460454][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   63.516468][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   63.634015][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   63.661446][ T4359] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   63.746894][ T4359] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.417970][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   64.459726][ T4388] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.463216][   T39] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.477659][ T4388] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.487915][   T39] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.492202][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   64.509000][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   64.715360][ T4348] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.725483][ T4360] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.737951][ T4348] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.759125][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   64.934528][ T4360] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   65.229297][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   67.290408][ T4426] Zero length message leads to an empty skb
[   68.611040][ T4430] loop2: detected capacity change from 0 to 32768
[   68.818227][ T4429] read_mapping_page failed!
[   68.822987][ T4429] ERROR: (device loop2): txCommit: 
[   68.822987][ T4429] 
[   68.926938][ T4274] ERROR: (device loop2): diFree: numfree > numinos
[   68.926938][ T4274] 
[   68.968331][ T4434] loop0: detected capacity change from 0 to 512
[   69.010930][ T4434] EXT4-fs: inline encryption not supported
[   69.050547][ T4434] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   69.927718][ T4434] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   70.001789][ T4434] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c118, mo2=0002]
[   70.215405][ T4434] System zones: 1-12
[   70.246890][ T4434] EXT4-fs (loop0): 1 truncate cleaned up
[   70.253991][ T4434] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[   71.341982][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[   71.356999][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[   72.062231][ T4460] netlink: 8 bytes leftover after parsing attributes in process `syz.3.22'.
[   72.263327][ T4464] xt_TCPMSS: Only works on TCP SYN packets
[   72.532134][ T4465] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[   73.451073][ T4456] netlink: 'syz.2.19': attribute type 10 has an invalid length.
[   73.528637][ T4456] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   73.560283][ T4469] netlink: 'syz.4.23': attribute type 12 has an invalid length.
[   74.096596][ T4481] loop2: detected capacity change from 0 to 32768
[   74.104024][ T4481] =======================================================
[   74.104024][ T4481] WARNING: The mand mount option has been deprecated and
[   74.104024][ T4481]          and is ignored by this kernel. Remove the mand
[   74.104024][ T4481]          option from the mount to silence this warning.
[   74.104024][ T4481] =======================================================
[   74.138897][    C1] vkms_vblank_simulate: vblank timer overrun
[   74.394036][ T4262] EXT4-fs (loop0): unmounting filesystem.
[   75.245133][ T4481] XFS (loop2): Mounting V5 Filesystem
[   75.688929][ T4489] loop3: detected capacity change from 0 to 4096
[   75.841510][ T4499] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   75.934093][ T4481] XFS (loop2): Ending clean mount
[   75.964781][ T4481] XFS (loop2): Quotacheck needed: Please wait.
[   76.259964][    T0] NOHZ tick-stop error: local softirq work is pending, handler #18a!!!
[   76.289964][    T0] NOHZ tick-stop error: local softirq work is pending, handler #18a!!!
[   76.369963][    T0] NOHZ tick-stop error: local softirq work is pending, handler #18a!!!
[   76.529962][    T0] NOHZ tick-stop error: local softirq work is pending, handler #18a!!!
[   76.689967][    T0] NOHZ tick-stop error: local softirq work is pending, handler #18a!!!
[   76.759969][    T0] NOHZ tick-stop error: local softirq work is pending, handler #18a!!!
[   76.806500][    T7] cfg80211: failed to load regulatory.db
[   76.938633][ T4507] NILFS (loop3): error -2 preparing GC: cannot delete virtual blocks from DAT file
[   77.319919][ T4481] XFS (loop2): Quotacheck: Done.
[   78.008827][ T4274] XFS (loop2): Unmounting Filesystem
[   78.023847][ T4509] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   78.267837][ T4518] sd 0:0:1:0: device reset
[   81.568532][ T4533] sched: RT throttling activated
[   81.588288][ T4539] syz.1.37 uses obsolete (PF_INET,SOCK_PACKET)
[   82.096101][ T4542] ubi31: attaching mtd0
[   82.111213][ T4542] ubi31: scanning is finished
[   82.116010][ T4542] ubi31: empty MTD device detected
[   82.989540][ T4542] ubi31 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt31d", error -4
[   83.487537][ T4550] Malformed UNC in devname
[   83.487537][ T4550] 
[   83.494510][ T4550] CIFS: VFS: Malformed UNC in devname
[   84.703092][ T4557] loop0: detected capacity change from 0 to 256
[   85.247343][ T4553] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[   85.259240][ T4553] FAT-fs (loop0): Filesystem has been set read-only
[   85.266077][ T4553] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[   85.276851][ T4553] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[   85.288399][   T26] audit: type=1800 audit(1774716154.489:2): pid=4553 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.44" name="file1" dev="loop0" ino=1048595 res=0 errno=0
[   85.289766][ T4553] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000001)
[   85.444080][ T4559] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   85.449024][ T4564] loop2: detected capacity change from 0 to 256
[   85.490079][ T4564] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   85.542018][ T4553] syz.0.44 (4553) used greatest stack depth: 20664 bytes left
[   85.610404][ T4564] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[   85.659327][ T4564] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[   85.893251][ T4574] process 'syz.1.45' launched '/dev/fd/6' with NULL argv: empty string added
[   88.608376][ T4596] x_tables: ip_tables: icmp match: only valid for protocol 1
[   93.501466][ T4632] No such timeout policy "syz1"
[   93.720251][   T22] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   93.729622][    C1] raw-gadget.0 gadget.1: ignoring, device is not running
[   93.890209][   T22] usb 2-1: device descriptor read/64, error -32
[   94.160049][   T22] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   94.364549][   T22] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   94.390010][   T22] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   94.399787][   T22] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[   94.479277][   T22] usb 2-1: New USB device found, idVendor=054c, idProduct=05c4, bcdDevice= 0.00
[   94.501435][   T22] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   94.576588][   T22] usb 2-1: config 0 descriptor??
[   94.601534][   T22] usb 2-1: can't set config #0, error -71
[   94.640512][   T22] usb 2-1: USB disconnect, device number 3
[   95.654660][ T4647] netlink: 'syz.3.59': attribute type 10 has an invalid length.
[   96.706396][ T4647] 8021q: adding VLAN 0 to HW filter on device batadv0
[   96.716221][ T4647] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   97.444538][ T4662] trusted_key: encrypted_key: insufficient parameters specified
[  103.244133][ T4706] xt_recent: Unsupported userspace flags (000000de)
[  106.509063][ T4729] loop4: detected capacity change from 0 to 512
[  106.802549][ T4733] netlink: 'syz.2.81': attribute type 4 has an invalid length.
[  106.810597][ T4733] netlink: 152 bytes leftover after parsing attributes in process `syz.2.81'.
[  107.013605][ T4733] wlan1: mtu less than device minimum
[  107.034485][ T4736] loop3: detected capacity change from 0 to 1764
[  108.363437][ T4729] fscrypt: Error allocating hmac(sha512): -2
[  108.470502][ T4747] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size
[  109.234706][ T4759] zonefs (nullb0) ERROR: Not a zoned block device
[  109.255925][ T4758] afs: Unknown parameter 'autocelÿÿ'
[  110.901153][ T4775] netlink: 'syz.4.90': attribute type 12 has an invalid length.
[  112.131661][ T4782] loop0: detected capacity change from 0 to 1024
[  114.434161][ T4782] hfsplus: failed to load extents file
[  115.771344][ T4802] zonefs (nullb0) ERROR: Not a zoned block device
[  116.920274][ T4814] netlink: 'syz.1.102': attribute type 12 has an invalid length.
[  118.693915][ T4821] sctp: failed to load transform for md5: -2
[  120.421402][ T4831] loop3: detected capacity change from 0 to 32768
[  120.478227][ T4831] read_mapping_page failed!
[  120.483050][ T4831] ERROR: (device loop3): txCommit: 
[  120.483050][ T4831] 
[  121.291455][ T4841] trusted_key: encrypted_key: insufficient parameters specified
[  121.352184][ T4266] ERROR: (device loop3): diFree: numfree > numinos
[  121.352184][ T4266] 
[  121.475131][ T4848] loop0: detected capacity change from 0 to 1764
[  121.506180][ T4255] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  121.716572][ T4849] netlink: 'syz.1.107': attribute type 10 has an invalid length.
[  122.005873][ T4849] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  125.215460][ T4872] zonefs (nullb0) ERROR: Not a zoned block device
[  126.888302][ T4881] sctp: failed to load transform for md5: -4
[  130.485188][ T4908] loop2: detected capacity change from 0 to 1764
[  130.588549][ T4252] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  133.142722][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  133.149041][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  135.409345][ T4940] loop3: detected capacity change from 0 to 512
[  135.483823][ T4946] netlink: 'syz.0.113': attribute type 12 has an invalid length.
[  136.178850][ T4940] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  136.311289][ T4940] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2800: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  136.420555][ T4940] EXT4-fs (loop3): 1 truncate cleaned up
[  136.426246][ T4940] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  139.475398][ T4266] EXT4-fs (loop3): unmounting filesystem.
[  139.675816][ T4962] netlink: 8 bytes leftover after parsing attributes in process `syz.1.135'.
[  139.760863][ T4968] capability: warning: `syz.0.148' uses deprecated v2 capabilities in a way that may be insecure
[  141.480542][ T3104] block nbd2: Attempted send on invalid socket
[  141.488149][ T3104] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  141.501533][ T4978] efs: cannot read volume header
[  145.669180][ T5006] netlink: 'syz.0.150': attribute type 12 has an invalid length.
[  148.218108][ T5019] loop1: detected capacity change from 0 to 8
[  148.476682][   T52] block nbd4: Attempted send on invalid socket
[  148.483066][   T52] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  148.492816][ T5025] efs: cannot read volume header
[  149.678999][ T5030] loop0: detected capacity change from 0 to 512
[  149.740094][   T22] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  150.140838][ T5030] EXT4-fs error (device loop0): ext4_iget_extra_inode:4752: inode #15: comm syz.0.156: corrupted in-inode xattr
[  150.161434][ T5030] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.156: couldn't read orphan inode 15 (err -117)
[  150.186571][   T22] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  150.210385][   T22] usb 4-1: New USB device found, idVendor=050d, idProduct=011b, bcdDevice=6f.a4
[  150.229726][   T22] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  150.249733][   T22] usb 4-1: config 0 descriptor??
[  150.251955][ T5030] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  150.267570][   T22] usb 4-1: bad CDC descriptors
[  150.275494][   T22] usb 4-1: bad CDC descriptors
[  150.526962][ T4310] usb 4-1: USB disconnect, device number 2
[  151.541988][ T5033] EXT4-fs error (device loop0): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[  152.820320][ T4262] EXT4-fs (loop0): unmounting filesystem.
[  153.101409][ T5058] netlink: 'syz.0.161': attribute type 12 has an invalid length.
[  154.327055][ T5064] netlink: 'syz.0.163': attribute type 12 has an invalid length.
[  155.502074][ T5070] zonefs (nullb0) ERROR: Not a zoned block device
[  157.226442][ T5076] syz.0.166 (5076) used greatest stack depth: 16368 bytes left
[  158.244871][ T5095] loop3: detected capacity change from 0 to 128
[  159.719113][ T5095] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  159.731804][ T5095] hpfs: filesystem error: improperly stopped
[  159.737818][ T5095] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  159.750136][ T5095] hpfs: You really don't want any checks? You are crazy...
[  159.771131][ T5095] hpfs: hpfs_map_sector(): read error
[  159.776533][ T5095] hpfs: code page support is disabled
[  160.870757][ T5095] hpfs: hpfs_map_4sectors(): unaligned read
[  160.950871][ T5095] hpfs: hpfs_map_4sectors(): unaligned read
[  160.956816][ T5095] hpfs: filesystem error: unable to find root dir
[  161.309412][ T5113] loop2: detected capacity change from 0 to 4096
[  161.350956][ T5113] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512)
[  162.442887][ T5118] loop2: detected capacity change from 0 to 512
[  163.099233][ T5118] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  163.444443][ T5128] netlink: 'syz.0.174': attribute type 12 has an invalid length.
[  163.597139][ T4274] EXT4-fs (loop2): unmounting filesystem.
[  165.052186][ T5138] zonefs (nullb0) ERROR: Not a zoned block device
[  169.012489][ T5161] loop4: detected capacity change from 0 to 1764
[  173.932947][ T5190] zonefs (nullb0) ERROR: Not a zoned block device
[  175.510145][ T4263] Bluetooth: hci0: command 0x0406 tx timeout
[  175.516170][ T4263] Bluetooth: hci4: command 0x0406 tx timeout
[  176.647011][ T4263] Bluetooth: hci1: command 0x0406 tx timeout
[  176.647031][ T4270] Bluetooth: hci2: command 0x0406 tx timeout
[  176.647058][ T4270] Bluetooth: hci3: command 0x0406 tx timeout
[  177.193983][ T5203] ubi31: attaching mtd0
[  177.205007][ T5203] ubi31: scanning is finished
[  177.830417][ T5203] ubi31 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt31d", error -4
[  178.689432][ T5211] netlink: 'syz.3.198': attribute type 7 has an invalid length.
[  178.717460][ T5211] netlink: 'syz.3.198': attribute type 8 has an invalid length.
[  181.382091][ T5223] loop2: detected capacity change from 0 to 4096
[  181.591493][ T5232] netlink: 'syz.0.202': attribute type 12 has an invalid length.
[  181.815118][ T5234] netlink: 44 bytes leftover after parsing attributes in process `syz.1.196'.
[  182.830771][ T5223] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  183.984306][ T4274] EXT4-fs (loop2): unmounting filesystem.
[  185.308830][ T5251] loop1: detected capacity change from 0 to 128
[  188.117373][ T5251] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  188.270648][ T5251] hpfs: filesystem error: improperly stopped
[  188.493501][ T5251] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  188.623613][ T5251] hpfs: You really don't want any checks? You are crazy...
[  189.088021][ T5267] ubi31: attaching mtd0
[  189.098285][ T5267] ubi31: scanning is finished
[  189.710098][ T5267] ubi31 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt31d", error -4
[  189.719753][ T5251] hpfs: hpfs_map_sector(): read error
[  189.820438][ T5251] hpfs: code page support is disabled
[  189.826975][ T5251] hpfs: hpfs_map_4sectors(): unaligned read
[  189.847430][ T5251] hpfs: hpfs_map_4sectors(): unaligned read
[  189.881910][ T5251] hpfs: filesystem error: unable to find root dir
[  189.942077][ T5274] netlink: 'syz.3.210': attribute type 12 has an invalid length.
[  190.930428][ T5282] netlink: 'syz.0.213': attribute type 12 has an invalid length.
[  193.361912][ T3104] block nbd0: Attempted send on invalid socket
[  193.368188][ T3104] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  193.378189][ T5299] efs: cannot read volume header
[  193.648461][ T5300] loop3: detected capacity change from 0 to 128
[  193.889648][ T5303] loop4: detected capacity change from 0 to 8
[  193.906215][ T5300] FAT-fs (loop3): Invalid FSINFO signature: 0x41000006, 0x61417272 (sector = 1)
[  193.925588][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  194.041263][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  196.207394][ T5318] loop4: detected capacity change from 0 to 1024
[  196.352230][ T5337] netlink: 'syz.3.225': attribute type 12 has an invalid length.
[  197.316385][ T5318] EXT4-fs: Ignoring removed oldalloc option
[  197.470819][ T5321] ubi31: attaching mtd0
[  197.636692][ T5318] EXT4-fs: Ignoring removed bh option
[  197.883535][ T5318] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  197.895537][ T5321] ubi31: scanning is finished
[  197.989691][ T5318] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  199.766434][ T4271] EXT4-fs (loop4): unmounting filesystem.
[  199.864630][ T5321] ubi31 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt31d", error -4
[  201.952965][ T5364] xt_connbytes: Forcing CT accounting to be enabled
[  201.960243][ T5364] x_tables: ip_tables: sctp match: only valid for protocol 132
[  204.430010][ T4341] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  204.493139][ T5385] netlink: 'syz.0.237': attribute type 12 has an invalid length.
[  208.663305][ T5408] loop2: detected capacity change from 0 to 8
[  211.166327][ T5431] netlink: 'syz.2.249': attribute type 12 has an invalid length.
[  211.300359][ T5432] dlm: non-version read from control device 0
[  213.500089][ T4308] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  213.692990][ T4308] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  213.704731][ T4308] usb 2-1: New USB device found, idVendor=050d, idProduct=011b, bcdDevice=6f.a4
[  213.714230][ T4308] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  213.741062][ T4308] usb 2-1: config 0 descriptor??
[  213.752332][ T4308] usb 2-1: bad CDC descriptors
[  213.758173][ T4308] usb 2-1: bad CDC descriptors
[  214.040327][  T128] usb 2-1: USB disconnect, device number 4
[  217.800668][ T5478] netlink: 'syz.2.260': attribute type 12 has an invalid length.
[  222.921789][ T5495] loop0: detected capacity change from 0 to 8
[  223.262836][ T5502] netlink: 16 bytes leftover after parsing attributes in process `syz.2.265'.
[  225.930413][   T41] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  226.131672][   T41] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  226.640559][   T41] usb 1-1: New USB device found, idVendor=050d, idProduct=011b, bcdDevice=6f.a4
[  226.700571][   T41] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  226.747013][   T41] usb 1-1: config 0 descriptor??
[  226.794959][   T41] usb 1-1: bad CDC descriptors
[  226.811046][   T41] usb 1-1: bad CDC descriptors
[  227.022675][ T5525] fuse: Bad value for 'fd'
[  227.559033][   T22] usb 1-1: USB disconnect, device number 2
[  227.775207][ T5529] loop2: detected capacity change from 0 to 256
[  227.861640][ T5529] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x1d73664b, utbl_chksum : 0xe619d30d)
[  231.283200][ T5559] ubi31: attaching mtd0
[  231.291270][ T5559] ubi31: scanning is finished
[  232.118852][ T5559] ubi31 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt31d", error -4
[  234.124713][ T5590] loop1: detected capacity change from 0 to 4096
[  234.155779][ T5590] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512)
[  235.617278][ T5606] loop0: detected capacity change from 0 to 4096
[  236.035367][ T5606] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512)
[  236.639673][   T41] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  237.554211][   T41] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  238.161585][   T41] usb 3-1: New USB device found, idVendor=050d, idProduct=011b, bcdDevice=6f.a4
[  238.182269][   T41] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  238.206645][   T41] usb 3-1: config 0 descriptor??
[  238.267196][   T41] usb 3-1: bad CDC descriptors
[  238.277037][   T41] usb 3-1: bad CDC descriptors
[  238.502379][ T4308] usb 3-1: USB disconnect, device number 2
[  242.684269][ T5651] loop0: detected capacity change from 0 to 1024
[  242.691073][ T5651] EXT4-fs: Ignoring removed oldalloc option
[  242.696958][ T5651] EXT4-fs: Ignoring removed bh option
[  242.705065][ T5651] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  242.916736][ T5651] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  243.676471][   T26] audit: type=1804 audit(1774716312.869:3): pid=5651 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.298" name="/newroot/73/file1/bus" dev="loop0" ino=18 res=1 errno=0
[  244.166658][ T4262] EXT4-fs (loop0): unmounting filesystem.
[  244.807601][ T5686] netlink: 'syz.0.304': attribute type 12 has an invalid length.
[  246.290141][   T22] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  246.481768][   T22] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  247.013688][   T22] usb 5-1: New USB device found, idVendor=050d, idProduct=011b, bcdDevice=6f.a4
[  247.080613][   T22] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  247.105338][   T22] usb 5-1: config 0 descriptor??
[  247.140048][   T22] usb 5-1: bad CDC descriptors
[  247.154045][   T22] usb 5-1: bad CDC descriptors
[  247.365717][ T5701] netlink: 'syz.3.303': attribute type 12 has an invalid length.
[  248.084535][   T22] usb 5-1: USB disconnect, device number 3
[  250.300098][   T22] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  250.865012][   T22] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  250.920764][   T22] usb 1-1: New USB device found, idVendor=050d, idProduct=011b, bcdDevice=6f.a4
[  250.952738][   T22] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  251.775507][   T22] usb 1-1: config 0 descriptor??
[  252.233068][   T22] usb 1-1: can't set config #0, error -71
[  252.243919][   T22] usb 1-1: USB disconnect, device number 3
[  255.483846][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  255.490665][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  255.808411][ T5763] netlink: 'syz.0.320': attribute type 12 has an invalid length.
[  257.929022][ T5775] netlink: 'syz.1.323': attribute type 12 has an invalid length.
[  258.694222][ T5779] loop1: detected capacity change from 0 to 1024
[  258.701018][ T5779] EXT4-fs: Ignoring removed oldalloc option
[  258.706902][ T5779] EXT4-fs: Ignoring removed bh option
[  258.713764][ T5779] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  259.690834][ T5779] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  259.709218][   T26] audit: type=1804 audit(1774716328.899:4): pid=5779 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.330" name="/newroot/66/file1/bus" dev="loop1" ino=18 res=1 errno=0
[  259.838964][ T5789] loop0: detected capacity change from 0 to 256
[  261.648069][ T4272] EXT4-fs (loop1): unmounting filesystem.
[  261.695655][ T5802] loop0: detected capacity change from 0 to 128
[  261.791787][ T5802] FAT-fs (loop0): Invalid FSINFO signature: 0x41000006, 0x61417272 (sector = 1)
[  262.002865][ T5809] loop1: detected capacity change from 0 to 512
[  262.062770][ T5809] EXT4-fs: Ignoring removed bh option
[  262.068572][ T5809] ext3: Unknown parameter 'fowner'
[  262.571785][ T5811] netlink: 'syz.3.338': attribute type 12 has an invalid length.
[  263.331851][ T5815] dlm: non-version read from control device 0
[  265.323609][ T5825] netlink: 'syz.4.341': attribute type 12 has an invalid length.
[  269.187528][ T5856] loop4: detected capacity change from 0 to 128
[  269.242833][ T5856] FAT-fs (loop4): Invalid FSINFO signature: 0x41000006, 0x61417272 (sector = 1)
[  272.343758][ T5881] netlink: 16 bytes leftover after parsing attributes in process `syz.3.353'.
[  272.917999][ T5883] netlink: 'syz.1.356': attribute type 12 has an invalid length.
[  278.826350][ T5924] netlink: 'syz.0.368': attribute type 12 has an invalid length.
[  285.107109][ T5968] netlink: 'syz.3.379': attribute type 12 has an invalid length.
[  286.225311][ T5982] hub 9-0:1.0: USB hub found
[  286.231803][ T5982] hub 9-0:1.0: 1 port detected
[  295.767370][ T6055] IPVS: set_ctl: invalid protocol: 60 255.255.255.255:20002
[  295.866549][ T6057] mmap: syz.1.404 (6057) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  295.970991][ T6071] netlink: 'syz.2.396': attribute type 12 has an invalid length.
[  296.862440][ T6075] device syzkaller0 entered promiscuous mode
[  298.975094][ T6096] loop1: detected capacity change from 0 to 1024
[  299.006092][ T6096] EXT4-fs: Ignoring removed mblk_io_submit option
[  299.149239][ T6096] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  300.463668][ T4272] EXT4-fs (loop1): unmounting filesystem.
[  302.020970][ T6140] dlm: non-version read from control device 0
[  307.587971][ T6191] dlm: non-version read from control device 0
[  311.518811][ T6224] netlink: 16 bytes leftover after parsing attributes in process `syz.3.445'.
[  313.398543][ T6244] loop2: detected capacity change from 0 to 1024
[  313.445044][ T6244] EXT4-fs: Ignoring removed mblk_io_submit option
[  313.580757][ T6244] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  315.328811][ T4274] EXT4-fs (loop2): unmounting filesystem.
[  317.704204][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  317.710610][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  322.243781][ T6301] netlink: 'syz.2.462': attribute type 12 has an invalid length.
[  324.879816][ T6317] loop1: detected capacity change from 0 to 4096
[  324.887699][ T6317] ntfs3: Unknown parameter 'windows_names'
[  325.129697][ T4252] I/O error, dev loop1, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  328.554288][ T6339] loop1: detected capacity change from 0 to 256
[  328.601455][ T6339] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x1d73664b, utbl_chksum : 0xe619d30d)
[  340.477761][ T6462] autofs4:pid:6462:autofs_fill_super: called with bogus options
[  341.795654][ T6474] overlayfs: failed to clone upperpath
[  344.234239][ T6493] loop1: detected capacity change from 0 to 4096
[  344.301949][ T6493] ntfs3: Unknown parameter 'windows_names'
[  346.527052][ T4265] Bluetooth: Unexpected continuation frame (len 10)
[  347.916547][ T6525] overlayfs: failed to clone upperpath
[  348.732912][ T6532] dlm: non-version read from control device 0
[  351.980352][ T6570] netlink: 'syz.4.534': attribute type 12 has an invalid length.
[  356.836043][ T6611] dlm: non-version read from control device 0
[  358.805167][ T6630] netlink: 8 bytes leftover after parsing attributes in process `syz.3.549'.
[  358.814183][ T6630] netlink: 'syz.3.549': attribute type 30 has an invalid length.
[  358.822011][ T6630] netlink: 12 bytes leftover after parsing attributes in process `syz.3.549'.
[  361.465532][ T6650] loop2: detected capacity change from 0 to 4096
[  361.472854][ T6650] ntfs3: Unknown parameter 'windows_names'
[  361.503795][ T6598] I/O error, dev loop2, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  367.677576][ T6720] overlayfs: failed to clone upperpath
[  368.946099][ T6732] netlink: 'syz.1.576': attribute type 12 has an invalid length.
[  374.953603][ T6783] netlink: 'syz.2.592': attribute type 12 has an invalid length.
[  378.247972][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  378.254334][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  380.721814][ T6828] overlayfs: failed to clone upperpath
[  382.660015][ T6843] loop1: detected capacity change from 0 to 4096
[  382.860860][ T6843] ntfs: volume version 3.1.
[  382.948474][ T6851] netlink: 'syz.0.605': attribute type 12 has an invalid length.
[  384.488487][ T6858] xt_TCPMSS: Only works on TCP SYN packets
[  387.065985][ T6875] loop1: detected capacity change from 0 to 512
[  387.675322][ T6875] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  387.712862][ T6875] EXT4-fs (loop1): Cannot use DAX on a filesystem that may contain inline data
[  388.652626][ T6890] xt_CT: You must specify a L4 protocol and not use inversions on it
[  389.592054][ T6898] netlink: 'syz.3.623': attribute type 12 has an invalid length.
[  391.465224][ T6917] autofs4:pid:6917:autofs_fill_super: called with bogus options
[  391.864905][ T6925] loop1: detected capacity change from 0 to 1024
[  394.886496][ T6943] netlink: 'syz.2.634': attribute type 12 has an invalid length.
[  404.835454][ T7042] loop2: detected capacity change from 0 to 256
[  405.617730][ T7051] netlink: 'syz.0.661': attribute type 12 has an invalid length.
[  409.235781][ T7080] netlink: 'syz.4.671': attribute type 12 has an invalid length.
[  413.154488][ T7116] xt_TCPMSS: Only works on TCP SYN packets
[  414.422855][ T7129] netlink: 'syz.0.682': attribute type 12 has an invalid length.
[  414.451195][ T7130] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[  414.460324][ T7130] overlayfs: missing 'lowerdir'
[  415.007110][ T7128] netlink: 8 bytes leftover after parsing attributes in process `syz.4.684'.
[  416.840654][ T7144] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  416.848847][ T7144] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  416.857389][ T7144] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  417.860670][ T7145] delete_channel: no stack
[  419.939171][ T7190] netlink: 'syz.0.696': attribute type 12 has an invalid length.
[  428.334011][ T7257] netlink: 'syz.2.714': attribute type 12 has an invalid length.
[  436.132333][ T7298] loop1: detected capacity change from 0 to 32768
[  436.393978][ T7298] XFS (loop1): Mounting V5 Filesystem
[  436.468712][ T7310] fuse: Unknown parameter '0x0000000000000006'
[  436.518440][ T7310] loop2: detected capacity change from 0 to 512
[  436.527478][ T7310] EXT4-fs: Ignoring removed nomblk_io_submit option
[  436.668127][ T7310] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8817e02c, mo2=0002]
[  436.731039][ T7310] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.724: invalid indirect mapped block 2683928664 (level 1)
[  436.750655][ T7310] EXT4-fs (loop2): Remounting filesystem read-only
[  436.761042][ T7310] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.724: bg 0: block 361: padding at end of block bitmap is not set
[  436.777345][ T7310] EXT4-fs (loop2): Remounting filesystem read-only
[  436.784046][ T7310] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6180: Corrupt filesystem
[  436.794653][ T7310] EXT4-fs (loop2): Remounting filesystem read-only
[  436.804478][ T7310] EXT4-fs (loop2): 1 truncate cleaned up
[  436.810911][ T7310] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  437.084750][ T7298] XFS (loop1): Ending clean mount
[  437.111424][ T7298] XFS (loop1): Quotacheck needed: Please wait.
[  437.392408][ T7298] XFS (loop1): Quotacheck: Done.
[  438.151590][ T4274] EXT4-fs (loop2): unmounting filesystem.
[  438.168229][ T7319] netlink: 'syz.3.718': attribute type 12 has an invalid length.
[  438.306917][ T4272] XFS (loop1): Unmounting Filesystem
[  439.140186][ T4265] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  439.874071][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  439.880932][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  440.719691][ T7338] IPVS: sync thread started: state = MASTER, mcast_ifn = syz_tun, syncid = 1, id = 0
[  444.629974][ T7361] ptrace attach of "./syz-executor exec"[4272] was attempted by ""[7361]
[  446.971323][   T22] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  448.854250][ T7382] tmpfs: Unknown parameter 'noswap'
[  449.390832][ T4270] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  449.400570][ T4270] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  449.410095][ T7393] netlink: 'syz.0.748': attribute type 12 has an invalid length.
[  449.418293][ T4270] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  449.514355][ T4270] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  449.528496][ T4270] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  449.536697][ T4270] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  451.590217][ T4270] Bluetooth: hci5: command 0x0409 tx timeout
[  451.658268][ T4585] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  451.766578][ T4585] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  451.836570][ T7389] chnl_net:caif_netlink_parms(): no params data found
[  451.893790][ T4585] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  452.004806][ T4585] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  452.281238][ T7389] bridge0: port 1(bridge_slave_0) entered blocking state
[  452.309443][ T7389] bridge0: port 1(bridge_slave_0) entered disabled state
[  452.335631][ T7389] device bridge_slave_0 entered promiscuous mode
[  452.435397][ T7389] bridge0: port 2(bridge_slave_1) entered blocking state
[  452.443655][ T7389] bridge0: port 2(bridge_slave_1) entered disabled state
[  452.495902][ T7389] device bridge_slave_1 entered promiscuous mode
[  452.718205][ T7389] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  452.849317][ T7389] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  454.149640][ T4270] Bluetooth: hci5: command 0x041b tx timeout
[  454.188961][ T7441] bridge0: port 3(syz_tun) entered blocking state
[  454.195633][ T7441] bridge0: port 3(syz_tun) entered disabled state
[  454.204108][ T7441] device syz_tun entered promiscuous mode
[  454.211693][ T7441] bridge0: port 3(syz_tun) entered blocking state
[  454.218420][ T7441] bridge0: port 3(syz_tun) entered forwarding state
[  454.255527][ T7389] team0: Port device team_slave_0 added
[  454.424644][ T7389] team0: Port device team_slave_1 added
[  454.607405][ T7389] batman_adv: batadv0: Adding interface: batadv_slave_0
[  454.676038][ T7389] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  454.814849][ T7448] loop2: detected capacity change from 0 to 512
[  454.830128][ T7389] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  454.879321][ T7389] batman_adv: batadv0: Adding interface: batadv_slave_1
[  454.928455][ T7448] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.760: inode has both inline data and extents flags
[  455.482646][ T7448] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.760: couldn't read orphan inode 15 (err -117)
[  455.495836][ T7448] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  455.610908][ T7389] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  455.776623][ T7389] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  456.048725][ T7389] device hsr_slave_0 entered promiscuous mode
[  456.128524][ T4274] EXT4-fs (loop2): unmounting filesystem.
[  456.154990][ T7389] device hsr_slave_1 entered promiscuous mode
[  456.195133][ T7389] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  456.223486][ T7389] Cannot create hsr debugfs directory
[  456.230506][ T4265] Bluetooth: hci5: command 0x040f tx timeout
[  456.340182][ T7469] netlink: 'syz.4.762': attribute type 12 has an invalid length.
[  458.890224][ T4270] Bluetooth: hci5: command 0x0419 tx timeout
[  459.643384][ T7513] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0.
[  459.964490][ T7389] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  460.066852][ T7389] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  460.212225][ T7389] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  460.498441][ T7526] 9pnet_virtio: no channels available for device syz
[  460.505775][ T7526] futex_wake_op: syz.0.777 tries to shift op by 36; fix this program
[  460.609977][ T7389] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  460.772804][ T4585] device hsr_slave_0 left promiscuous mode
[  460.831852][ T4585] device hsr_slave_1 left promiscuous mode
[  460.844211][ T4585] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  460.885867][ T4585] batman_adv: batadv0: Removing interface: batadv_slave_0
[  460.978954][ T4585] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  460.986935][ T4585] batman_adv: batadv0: Removing interface: batadv_slave_1
[  461.308663][ T4585] device bridge_slave_1 left promiscuous mode
[  461.321028][ T4585] bridge0: port 2(bridge_slave_1) entered disabled state
[  461.337913][ T4585] device bridge_slave_0 left promiscuous mode
[  461.344580][ T4585] bridge0: port 1(bridge_slave_0) entered disabled state
[  461.896090][ T4585] device veth1_macvtap left promiscuous mode
[  461.939593][ T4585] device veth0_macvtap left promiscuous mode
[  461.959234][ T4585] device veth1_vlan left promiscuous mode
[  462.020883][ T4585] device veth0_vlan left promiscuous mode
[  466.546539][ T4585] team0 (unregistering): Port device team_slave_1 removed
[  466.628061][ T4585] team0 (unregistering): Port device team_slave_0 removed
[  466.690675][ T4585] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  466.750986][ T4585] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  467.177284][ T4585] bond0 (unregistering): (slave batadv0): Releasing backup interface
[  467.289126][ T4585] bond0 (unregistering): Released all slaves
[  467.393266][ T7535] netlink: 8 bytes leftover after parsing attributes in process `syz.2.779'.
[  467.411705][ T7561] netlink: 'syz.0.784': attribute type 12 has an invalid length.
[  467.552760][ T7389] 8021q: adding VLAN 0 to HW filter on device bond0
[  467.606281][ T4388] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  467.640608][ T4388] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  467.695651][ T7389] 8021q: adding VLAN 0 to HW filter on device team0
[  467.742831][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  467.786714][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  467.808199][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[  467.815436][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[  467.851475][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  467.867668][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  467.889031][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  467.909674][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  467.916847][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  467.942037][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  467.978514][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  468.004293][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  468.047593][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  468.076422][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  468.094123][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  468.104203][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  468.128706][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  468.155671][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  468.197893][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  468.209699][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  468.237770][ T7389] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  468.496886][ T7612] loop2: detected capacity change from 0 to 32768
[  469.143498][ T7612] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop2 scanned by syz.2.792 (7612)
[  469.183494][ T7612] BTRFS info (device loop2): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  469.194165][ T7612] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  469.204042][ T7612] BTRFS info (device loop2): enabling disk space caching
[  469.211155][ T7612] BTRFS info (device loop2): force clearing of disk cache
[  469.218559][ T7612] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  469.228408][ T7612] BTRFS info (device loop2): use zstd compression, level 3
[  469.235680][ T7612] BTRFS info (device loop2): disk space caching is enabled
[  469.579296][ T7612] BTRFS info (device loop2): enabling ssd optimizations
[  469.602241][ T7612] BTRFS info (device loop2): rebuilding free space tree
[  469.677875][ T7612] BTRFS info (device loop2): disabling free space tree
[  469.684945][ T7612] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  469.694922][ T7612] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  471.396218][ T4274] BTRFS info (device loop2): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  471.732610][ T7657] loop1: detected capacity change from 0 to 256
[  472.387084][ T4513] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  472.426268][ T4513] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  472.524227][ T7389] 8021q: adding VLAN 0 to HW filter on device batadv0
[  475.441475][ T7695] ptrace attach of "./syz-executor exec"[4271] was attempted by ""[7695]
[  476.147521][ T4513] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  476.178795][ T4513] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  476.243966][ T7389] device veth0_vlan entered promiscuous mode
[  476.286974][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  476.306414][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  477.088505][ T7389] device veth1_vlan entered promiscuous mode
[  477.305200][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  477.334531][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  477.541556][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  477.808402][ T7770] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  477.817330][ T7770] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  477.885109][ T7773] netlink: 'syz.1.800': attribute type 12 has an invalid length.
[  478.088271][ T7389] device veth0_macvtap entered promiscuous mode
[  478.479148][ T7389] device veth1_macvtap entered promiscuous mode
[  479.570023][ T7770] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  479.578512][ T7770] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  479.749928][ T7389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  479.841611][ T7389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  479.874784][ T7389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  479.899936][ T7389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  479.935090][ T7389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  479.959912][ T7389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  479.996102][ T7389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  480.034953][ T7389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  480.066649][ T7389] batman_adv: batadv0: Interface activated: batadv_slave_0
[  480.094909][ T7747] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  480.117617][ T7747] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  480.156422][ T7389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  480.177786][ T7389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  480.210703][ T7389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  480.230578][ T7389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  480.250646][ T7389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  480.282821][ T7389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  480.316244][ T7389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  480.375049][ T7389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  480.401604][ T7389] batman_adv: batadv0: Interface activated: batadv_slave_1
[  480.429181][ T7763] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  480.446836][ T7763] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  480.468269][ T7389] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  480.485133][ T7389] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  480.518564][ T7389] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  480.546775][ T7389] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  481.608672][ T4674] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  481.655464][ T4674] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  482.654991][ T7763] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  482.718463][ T7763] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  482.873124][ T4674] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  482.923366][ T4674] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  484.212290][ T7829] dlm: non-version read from control device 0
[  485.455982][ T7838] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  485.697762][ T7843] netlink: 'syz.2.817': attribute type 12 has an invalid length.
[  491.887841][ T7909] netlink: 'syz.0.828': attribute type 12 has an invalid length.
[  492.063233][ T7905] loop1: detected capacity change from 0 to 40427
[  492.200279][ T7905] F2FS-fs (loop1): invalid crc value
[  492.266688][ T7905] F2FS-fs (loop1): Found nat_bits in checkpoint
[  492.528778][ T7915] loop5: detected capacity change from 0 to 32768
[  492.550270][ T7915] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop5 scanned by syz.5.830 (7915)
[  492.576709][ T7905] F2FS-fs (loop1): Start checkpoint disabled!
[  492.584065][ T7915] BTRFS info (device loop5): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  492.594339][ T7915] BTRFS info (device loop5): using crc32c (crc32c-intel) checksum algorithm
[  492.603413][ T7915] BTRFS info (device loop5): enabling disk space caching
[  492.610512][ T7915] BTRFS info (device loop5): force clearing of disk cache
[  492.618208][ T7915] BTRFS info (device loop5): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  492.629506][ T7915] BTRFS info (device loop5): use zstd compression, level 3
[  492.636818][ T7915] BTRFS info (device loop5): disk space caching is enabled
[  492.659228][ T7905] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  493.469450][   T26] audit: type=1800 audit(1774716562.659:5): pid=7905 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.829" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  493.885319][ T7915] BTRFS info (device loop5): enabling ssd optimizations
[  493.903389][ T7915] BTRFS info (device loop5): rebuilding free space tree
[  494.004590][ T7915] BTRFS info (device loop5): disabling free space tree
[  494.012298][ T7915] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  494.022086][ T7915] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  494.054872][   T26] audit: type=1800 audit(1774716562.799:6): pid=7933 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.829" name="bus" dev="loop1" ino=10 res=0 errno=0
[  494.952115][ T4316] kworker/u4:6: attempt to access beyond end of device
[  494.952115][ T4316] loop1: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  495.295226][ T7389] BTRFS info (device loop5): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  495.463940][ T7949] dlm: non-version read from control device 0
[  497.373625][ T7973] bridge0: port 3(syz_tun) entered blocking state
[  497.381140][ T7973] bridge0: port 3(syz_tun) entered disabled state
[  497.395342][ T7973] device syz_tun entered promiscuous mode
[  497.402927][ T7973] bridge0: port 3(syz_tun) entered blocking state
[  497.409415][ T7973] bridge0: port 3(syz_tun) entered forwarding state
[  500.806357][ T8002] netlink: 'syz.0.842': attribute type 12 has an invalid length.
[  501.407418][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  501.413785][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  503.628347][ T8023] fuse: Unknown parameter '0x0000000000000004'
[  503.807499][ T8032] bridge0: port 3(syz_tun) entered blocking state
[  503.814155][ T8032] bridge0: port 3(syz_tun) entered disabled state
[  503.823125][ T8032] device syz_tun entered promiscuous mode
[  503.829284][ T8032] bridge0: port 3(syz_tun) entered blocking state
[  503.835792][ T8032] bridge0: port 3(syz_tun) entered forwarding state
[  506.694113][ T8050] loop2: detected capacity change from 0 to 128
[  507.346020][ T8050] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  507.364340][ T8050] ext4 filesystem being mounted at /155/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  507.955649][ T8060] netlink: 'syz.1.855': attribute type 12 has an invalid length.
[  508.962710][ T4274] EXT4-fs (loop2): unmounting filesystem.
[  509.273858][ T8070] loop1: detected capacity change from 0 to 4096
[  510.130847][ T8071] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  512.651430][ T8098] bridge0: port 3(syz_tun) entered blocking state
[  512.658580][ T8098] bridge0: port 3(syz_tun) entered disabled state
[  512.670480][ T8098] device syz_tun entered promiscuous mode
[  512.678555][ T8098] bridge0: port 3(syz_tun) entered blocking state
[  512.685070][ T8098] bridge0: port 3(syz_tun) entered forwarding state
[  516.184689][ T8130] netlink: 'syz.0.868': attribute type 12 has an invalid length.
[  516.253552][ T8126] autofs4:pid:8126:autofs_fill_super: called with bogus options
[  516.706919][ T8126] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  516.756992][ T8126] batman_adv: batadv0: Removing interface: batadv_slave_0
[  516.806373][ T8126] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  516.857938][ T8126] batman_adv: batadv0: Removing interface: batadv_slave_1
[  517.238860][ T8143] IPVS: sync thread started: state = MASTER, mcast_ifn = syz_tun, syncid = 1, id = 0
[  518.962865][ T8163] vivid-000: disconnect
[  519.840979][ T8156] vivid-000: reconnect
[  521.228023][ T8181] netlink: 'syz.4.876': attribute type 10 has an invalid length.
[  521.309961][ T7963] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  522.467546][ T8181] bridge0: port 3(syz_tun) entered disabled state
[  522.474381][ T8181] bridge0: port 2(bridge_slave_1) entered disabled state
[  522.481521][ T8181] bridge0: port 1(bridge_slave_0) entered disabled state
[  522.496270][ T8181] bridge0: port 3(syz_tun) entered blocking state
[  522.502768][ T8181] bridge0: port 3(syz_tun) entered forwarding state
[  522.510030][ T8181] bridge0: port 2(bridge_slave_1) entered blocking state
[  522.517084][ T8181] bridge0: port 2(bridge_slave_1) entered forwarding state
[  522.524369][ T8181] bridge0: port 1(bridge_slave_0) entered blocking state
[  522.531433][ T8181] bridge0: port 1(bridge_slave_0) entered forwarding state
[  522.541906][ T8181] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  525.191096][ T8222] No such timeout policy "syz1"
[  525.214300][ T8222] autofs4:pid:8222:autofs_fill_super: called with bogus options
[  527.474638][ T8256] netlink: 'syz.1.891': attribute type 12 has an invalid length.
[  530.038072][ T8278] loop2: detected capacity change from 0 to 256
[  530.358898][ T8278] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  530.369079][ T8278] FAT-fs (loop2): Filesystem has been set read-only
[  530.376878][ T8278] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  530.387151][ T8278] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  530.402447][ T8278] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000001)
[  530.453903][   T26] audit: type=1800 audit(1774716599.589:7): pid=8278 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.896" name="file1" dev="loop2" ino=1048618 res=0 errno=0
[  531.519588][ T8284] netlink: 180 bytes leftover after parsing attributes in process `syz.4.897'.
[  538.158248][ T8353] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  542.101371][ T8387] netlink: 180 bytes leftover after parsing attributes in process `syz.0.917'.
[  542.113894][ T8387] overlayfs: failed to clone upperpath
[  545.937326][ T8424] loop2: detected capacity change from 0 to 4096
[  546.570419][ T8426] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  548.894848][ T8461] device batadv0 entered promiscuous mode
[  548.908297][ T8461] device bond0 entered promiscuous mode
[  548.926408][ T8461] device bond_slave_0 entered promiscuous mode
[  548.937092][ T8461] device bond_slave_1 entered promiscuous mode
[  548.944862][ T8461] device bridge0 entered promiscuous mode
[  548.956770][ T8461] 8021q: adding VLAN 0 to HW filter on device hsr1
[  548.975876][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): hsr1: link becomes ready
[  550.089303][ T4270] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  551.219426][ T8484] vxcan0: tx drop: invalid sa for name 0x0000000000000002
[  553.812166][ T8510] capability: warning: `syz.2.937' uses 32-bit capabilities (legacy support in use)
[  557.255693][ T8544] loop5: detected capacity change from 0 to 512
[  557.458345][ T8544] EXT4-fs: test_dummy_encryption requires encrypt feature
[  558.410651][ T8557] loop2: detected capacity change from 0 to 1024
[  559.994613][ T8568] loop5: detected capacity change from 0 to 2368
[  560.723244][ T8551] netlink: 'syz.0.941': attribute type 12 has an invalid length.
[  560.743698][ T8567] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  560.751204][ T8567] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  560.788527][ T8567] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  560.968793][ T8557] fscrypt: Error allocating hmac(sha512): -2
[  561.078453][ T8577] loop5: detected capacity change from 0 to 128
[  561.220424][ T8577] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  561.304524][ T8577] ext4 filesystem being mounted at /24/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  562.019287][    T7] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  562.061966][ T7389] EXT4-fs (loop5): unmounting filesystem.
[  562.227961][ T8589] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  562.331110][    T7] usb 3-1: device descriptor read/64, error -71
[  562.554849][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  562.565602][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  562.769939][    T7] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  563.432255][    T7] usb 3-1: device descriptor read/64, error -71
[  563.550793][    T7] usb usb3-port1: attempt power cycle
[  563.990274][    T7] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  564.046892][    T7] usb 3-1: device descriptor read/8, error -71
[  564.381294][    T7] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  564.718591][    T7] usb 3-1: device descriptor read/8, error -71
[  564.910334][    T7] usb usb3-port1: unable to enumerate USB device
[  565.748765][ T8615] IPVS: sync thread started: state = MASTER, mcast_ifn = syz_tun, syncid = 1, id = 0
[  569.818983][ T8662] netlink: 'syz.4.967': attribute type 12 has an invalid length.
[  570.950705][ T7742] Bluetooth: (null): Invalid header checksum
[  571.377627][ T8676] loop1: detected capacity change from 0 to 512
[  571.401932][ T8676] EXT4-fs: test_dummy_encryption requires encrypt feature
[  572.202732][ T8682] netlink: 180 bytes leftover after parsing attributes in process `syz.5.970'.
[  573.234406][ T8686] loop5: detected capacity change from 0 to 512
[  573.357387][ T8686] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  573.783463][ T8686] EXT4-fs (loop5): bad geometry: first data block 1 is beyond end of filesystem (0)
[  573.871494][ T8686] tipc: Failed to remove unknown binding: 66,0,0/0:2891772163/2891772164
[  573.945949][ T8695] tipc: Failed to remove unknown binding: 66,0,0/0:2891772163/2891772164
[  574.031813][ T8699] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready
[  574.869851][ T4265] Bluetooth: hci5: command 0x0406 tx timeout
[  575.132020][ T8710] Device name cannot be null; rc = [-22]
[  575.141907][ T8710] netlink: 96 bytes leftover after parsing attributes in process `syz.0.975'.
[  577.085390][ T8730] loop1: detected capacity change from 0 to 164
[  577.675692][ T8728] iso9660: Corrupted directory entry in block 2 of inode 1920
[  578.969952][ T8743] loop1: detected capacity change from 0 to 128
[  580.795852][ T8743] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  580.834240][ T8743] ext4 filesystem being mounted at /182/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  581.566337][ T8757] loop2: detected capacity change from 0 to 512
[  581.591563][ T8757] EXT4-fs: test_dummy_encryption requires encrypt feature
[  582.092242][ T4272] EXT4-fs (loop1): unmounting filesystem.
[  582.108632][ T8548] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  583.160836][ T8767] netlink: 8 bytes leftover after parsing attributes in process `syz.5.983'.
[  586.900479][ T8807] loop5: detected capacity change from 0 to 164
[  586.932792][ T8807] iso9660: Corrupted directory entry in block 2 of inode 1920
[  590.648136][ T8824] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0.
[  591.479357][ T8826] loop5: detected capacity change from 0 to 128
[  591.703566][ T8826] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  591.850354][ T8826] ext4 filesystem being mounted at /38/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  593.140341][ T8841] netlink: 'syz.0.1001': attribute type 12 has an invalid length.
[  593.340655][ T7389] EXT4-fs (loop5): unmounting filesystem.
[  598.838438][ T8894] netlink: 180 bytes leftover after parsing attributes in process `syz.5.1008'.
[  601.670312][ T8926] netlink: 'syz.0.1014': attribute type 12 has an invalid length.
[  604.754087][ T8944] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  604.766795][ T8944] dlm: non-version read from control device 0
[  608.335984][ T8973] tipc: Failed to remove unknown binding: 66,0,0/0:1317053508/1317053509
[  608.373421][ T8973] tipc: Failed to remove unknown binding: 66,0,0/0:1317053508/1317053509
[  612.997148][ T8997] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  615.717999][ T9020] loop1: detected capacity change from 0 to 128
[  615.798756][ T9020] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  615.944045][ T9020] ext4 filesystem being mounted at /189/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  617.938983][ T4272] EXT4-fs (loop1): unmounting filesystem.
[  618.787683][ T9048] netlink: 'syz.1.1043': attribute type 2 has an invalid length.
[  618.866972][ T9048] device 0 entered promiscuous mode
[  618.914257][ T9049] netlink: 'syz.1.1043': attribute type 2 has an invalid length.
[  618.936291][ T9049] netlink: 10 bytes leftover after parsing attributes in process `syz.1.1043'.
[  620.783665][ T9067] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0.
[  620.818222][ T9066] loop1: detected capacity change from 0 to 4096
[  620.825607][ T9066] ntfs3: Unknown parameter 'windows_names'
[  621.118234][ T9072] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  621.131300][ T9072] dlm: non-version read from control device 0
[  623.099360][ T9101] netlink: 'syz.4.1054': attribute type 12 has an invalid length.
[  623.993728][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  624.000970][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  624.835254][ T9119] loop1: detected capacity change from 0 to 128
[  625.270585][ T9127] Bluetooth: MGMT ver 1.22
[  625.970733][ T9119] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  626.086194][ T9119] ext4 filesystem being mounted at /196/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  626.910531][ T4272] EXT4-fs (loop1): unmounting filesystem.
[  634.165770][ T9187] loop1: detected capacity change from 0 to 128
[  634.683097][ T9187] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  635.000335][ T9187] ext4 filesystem being mounted at /200/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  636.563561][ T4272] EXT4-fs (loop1): unmounting filesystem.
[  644.036525][ T9290] loop5: detected capacity change from 0 to 164
[  644.328248][ T9290] iso9660: Corrupted directory entry in block 2 of inode 1920
[  647.729774][ T4267] libceph: connect (1)[c::]:6789 error -101
[  647.825807][ T4267] libceph: mon0 (1)[c::]:6789 connect error
[  647.933976][ T9321] ceph: No mds server is up or the cluster is laggy
[  648.543462][ T9331] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1110'.
[  650.101106][ T9355] loop2: detected capacity change from 0 to 164
[  650.193516][ T9355] iso9660: Corrupted directory entry in block 2 of inode 1920
[  652.061051][ T9369] loop2: detected capacity change from 0 to 4096
[  652.068202][ T9369] ntfs3: Unknown parameter 'windows_names'
[  652.301735][ T9374] loop5: detected capacity change from 0 to 256
[  652.355619][ T9080] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  653.396539][ T9382] loop5: detected capacity change from 0 to 128
[  654.008549][ T9382] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  654.065489][ T9382] ext4 filesystem being mounted at /62/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  654.790768][ T7389] EXT4-fs (loop5): unmounting filesystem.
[  654.924576][ T9395] loop5: detected capacity change from 0 to 128
[  655.057295][ T9395] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  655.152619][ T9395] ext4 filesystem being mounted at /63/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  656.180058][ T7389] EXT4-fs (loop5): unmounting filesystem.
[  657.430468][ T9419] loop5: detected capacity change from 0 to 128
[  657.521455][ T9419] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  657.585355][ T9419] ext4 filesystem being mounted at /65/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  657.946840][ T9425] loop2: detected capacity change from 0 to 128
[  658.823345][ T7389] EXT4-fs (loop5): unmounting filesystem.
[  658.925206][ T9425] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  658.980031][ T9425] ext4 filesystem being mounted at /209/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  659.969030][ T4274] EXT4-fs (loop2): unmounting filesystem.
[  661.485648][ T7747] Bluetooth: (null): Invalid header checksum
[  661.700873][ T7747] Bluetooth: (null): Invalid header checksum
[  661.835474][ T7747] Bluetooth: (null): Invalid header checksum
[  661.950115][ T7747] Bluetooth: (null): Invalid header checksum
[  662.032110][ T7747] Bluetooth: (null): Invalid header checksum
[  664.415875][ T9471] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1145'.
[  665.747556][ T9489] loop2: detected capacity change from 0 to 512
[  665.765564][ T9489] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  665.814948][ T9489] EXT4-fs (loop2): 1 orphan inode deleted
[  665.820827][ T9489] EXT4-fs (loop2): 1 truncate cleaned up
[  665.826482][ T9489] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  666.043341][ T9495] wg1 speed is unknown, defaulting to 1000
[  666.050038][ T9495] wg1 speed is unknown, defaulting to 1000
[  666.058014][ T9495] wg1 speed is unknown, defaulting to 1000
[  666.069398][ T9495] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  666.081187][ T9495] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  666.108670][ T9495] wg1 speed is unknown, defaulting to 1000
[  666.115909][ T9495] wg1 speed is unknown, defaulting to 1000
[  666.122352][ T9495] wg1 speed is unknown, defaulting to 1000
[  666.128583][ T9495] wg1 speed is unknown, defaulting to 1000
[  666.134832][ T9495] wg1 speed is unknown, defaulting to 1000
[  667.142540][ T4274] EXT4-fs (loop2): unmounting filesystem.
[  667.377294][ T9507] loop2: detected capacity change from 0 to 128
[  667.481148][ T4265] Bluetooth: Frame is too long (len 18, expected len 4)
[  668.145357][ T9507] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  668.155464][ T9507] ext4 filesystem being mounted at /216/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  668.180853][ T9511] netlink: 'syz.1.1153': attribute type 12 has an invalid length.
[  668.876479][ T4274] EXT4-fs (loop2): unmounting filesystem.
[  669.901425][ T9529] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  673.646922][ T9551] loop2: detected capacity change from 0 to 128
[  673.714988][ T9551] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  673.770774][ T9551] ext4 filesystem being mounted at /219/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  675.294691][ T4274] EXT4-fs (loop2): unmounting filesystem.
[  680.799850][ T9601] bridge0: port 3(syz_tun) entered disabled state
[  680.806683][ T9601] bridge0: port 2(bridge_slave_1) entered disabled state
[  680.815295][ T9601] bridge0: port 1(bridge_slave_0) entered disabled state
[  680.847538][ T9605] loop1: detected capacity change from 0 to 128
[  680.883766][ T9605] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  680.916497][ T9605] ext4 filesystem being mounted at /211/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  681.249437][ T9613] loop5: detected capacity change from 0 to 128
[  681.702219][ T9613] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  681.770238][ T9613] ext4 filesystem being mounted at /72/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  681.866100][ T4272] EXT4-fs (loop1): unmounting filesystem.
[  683.359137][ T7389] EXT4-fs (loop5): unmounting filesystem.
[  684.721973][ T9641] vxcan1 speed is unknown, defaulting to 1000
[  684.740540][ T9641] vxcan1 speed is unknown, defaulting to 1000
[  684.751774][ T9641] vxcan1 speed is unknown, defaulting to 1000
[  685.001430][   T26] audit: type=1326 audit(1774716753.969:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9637 comm="syz.2.1183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2eb79c819 code=0x7ffc0000
[  685.006068][ T9641] infiniband syz2: set active
[  685.028842][ T9641] infiniband syz2: added vxcan1
[  685.034877][ T9641] rdma_rxe: unable to create cq
[  685.040317][ T9641] infiniband syz2: Couldn't create ib_mad CQ
[  685.046927][ T9641] infiniband syz2: Couldn't open port 1
[  685.061072][ T4267] vxcan1 speed is unknown, defaulting to 1000
[  685.075956][ T9641] RDS/IB: syz2: added
[  685.080879][ T9641] smc: adding ib device syz2 with port count 1
[  685.087513][ T9641] smc:    ib device syz2 port 1 has pnetid 
[  685.229185][   T26] audit: type=1326 audit(1774716753.969:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9637 comm="syz.2.1183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2eb79c819 code=0x7ffc0000
[  685.519213][ T9650] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1184'.
[  685.568212][ T9650] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1184'.
[  685.680349][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  685.719319][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  685.851951][   T26] audit: type=1326 audit(1774716753.969:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9637 comm="syz.2.1183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7fd2eb79c819 code=0x7ffc0000
[  686.001339][ T9641] vxcan1 speed is unknown, defaulting to 1000
[  686.099606][ T9641] vxcan1 speed is unknown, defaulting to 1000
[  686.177684][ T4267] vxcan1 speed is unknown, defaulting to 1000
[  686.246101][ T9641] vxcan1 speed is unknown, defaulting to 1000
[  686.302851][ T9641] vxcan1 speed is unknown, defaulting to 1000
[  686.352224][ T9641] vxcan1 speed is unknown, defaulting to 1000
[  687.122252][   T26] audit: type=1326 audit(1774716753.969:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9637 comm="syz.2.1183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2eb79c819 code=0x7ffc0000
[  687.210722][   T26] audit: type=1326 audit(1774716753.969:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9637 comm="syz.2.1183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2eb79c819 code=0x7ffc0000
[  687.429742][   T26] audit: type=1326 audit(1774716753.969:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9637 comm="syz.2.1183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=235 compat=0 ip=0x7fd2eb79c819 code=0x7ffc0000
[  687.509843][   T26] audit: type=1326 audit(1774716753.969:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9637 comm="syz.2.1183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2eb79c819 code=0x7ffc0000
[  687.599427][   T26] audit: type=1326 audit(1774716753.969:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9637 comm="syz.2.1183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2eb79c819 code=0x7ffc0000
[  687.629989][   T26] audit: type=1326 audit(1774716753.969:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9637 comm="syz.2.1183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7fd2eb79c819 code=0x7ffc0000
[  687.693634][   T26] audit: type=1326 audit(1774716753.969:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9637 comm="syz.2.1183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2eb79c819 code=0x7ffc0000
[  689.376451][ T4265] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  689.653083][ T9674] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1191'.
[  689.789895][ T4265] Bluetooth: hci4: Injecting HCI hardware error event
[  689.799043][ T4265] Bluetooth: hci4: hardware error 0x00
[  692.185247][ T9701] loop1: detected capacity change from 0 to 128
[  692.220677][ T9701] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  692.229889][ T4265] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  692.280533][ T9701] ext4 filesystem being mounted at /216/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  692.527614][ T9712] loop2: detected capacity change from 0 to 128
[  692.553723][ T9712] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  694.000045][ T9712] ext4 filesystem being mounted at /225/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  694.609828][ T4272] EXT4-fs (loop1): unmounting filesystem.
[  695.012335][ T4274] EXT4-fs (loop2): unmounting filesystem.
[  695.253333][ T9729] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  695.311393][ T9732] netlink: 'syz.2.1204': attribute type 12 has an invalid length.
[  696.283639][ T9736] loop1: detected capacity change from 0 to 256
[  696.357798][ T9733] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  697.142844][ T9744] netlink: 'syz.4.1208': attribute type 12 has an invalid length.
[  702.030788][ T9799] netlink: 'syz.0.1219': attribute type 12 has an invalid length.
[  702.771484][ T9810] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  710.199084][ T9851] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1238'.
[  710.692256][ T9864] rdma_rxe: rxe_register_device failed with error -23
[  710.699949][ T9864] rdma_rxe: failed to add vxcan1
[  710.727398][   T26] kauditd_printk_skb: 10 callbacks suppressed
[  710.727935][   T26] audit: type=1326 audit(1774716779.899:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.1.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae7f19c819 code=0x7ffc0000
[  710.846051][   T26] audit: type=1326 audit(1774716779.909:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.1.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7fae7f19c819 code=0x7ffc0000
[  712.369601][   T26] audit: type=1326 audit(1774716779.909:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.1.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae7f19c819 code=0x7ffc0000
[  712.931411][   T26] audit: type=1326 audit(1774716779.909:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.1.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=235 compat=0 ip=0x7fae7f19c819 code=0x7ffc0000
[  713.359996][   T26] audit: type=1326 audit(1774716779.909:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.1.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae7f19c819 code=0x7ffc0000
[  713.847234][   T26] audit: type=1326 audit(1774716779.909:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.1.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7fae7f19c819 code=0x7ffc0000
[  714.148078][   T26] audit: type=1326 audit(1774716779.909:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.1.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae7f19c819 code=0x7ffc0000
[  714.814265][ T4265] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  714.823756][ T4265] Bluetooth: hci3: Injecting HCI hardware error event
[  714.832889][ T9675] Bluetooth: hci3: hardware error 0x00
[  714.859817][   T26] audit: type=1326 audit(1774716779.909:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.1.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fae7f19c819 code=0x7ffc0000
[  714.882533][   T26] audit: type=1326 audit(1774716779.919:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.1.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae7f19c819 code=0x7ffc0000
[  714.905359][   T26] audit: type=1326 audit(1774716779.919:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.1.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fae7f19c819 code=0x7ffc0000
[  719.055771][ T9675] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  720.595305][ T9921] loop1: detected capacity change from 0 to 128
[  721.059607][ T9918] rdma_rxe: rxe_register_device failed with error -23
[  721.066564][ T9918] rdma_rxe: failed to add vxcan1
[  721.077501][   T26] kauditd_printk_skb: 4 callbacks suppressed
[  721.077512][   T26] audit: type=1326 audit(1774716790.269:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9913 comm="syz.4.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1c139c819 code=0x7ffc0000
[  721.140427][ T9921] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  721.152302][   T26] audit: type=1326 audit(1774716790.269:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9913 comm="syz.4.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1c139c819 code=0x7ffc0000
[  721.180430][ T9921] ext4 filesystem being mounted at /227/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  721.267789][   T26] audit: type=1326 audit(1774716790.299:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9913 comm="syz.4.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7fb1c139c819 code=0x7ffc0000
[  721.291423][   T26] audit: type=1326 audit(1774716790.299:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9913 comm="syz.4.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1c139c819 code=0x7ffc0000
[  721.315494][   T26] audit: type=1326 audit(1774716790.299:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9913 comm="syz.4.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1c139c819 code=0x7ffc0000
[  721.613238][   T26] audit: type=1326 audit(1774716790.299:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9913 comm="syz.4.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=235 compat=0 ip=0x7fb1c139c819 code=0x7ffc0000
[  722.138231][   T26] audit: type=1326 audit(1774716790.299:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9913 comm="syz.4.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1c139c819 code=0x7ffc0000
[  722.320043][ T9941] overlayfs: missing 'workdir'
[  722.814788][   T26] audit: type=1326 audit(1774716790.299:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9913 comm="syz.4.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1c139c819 code=0x7ffc0000
[  722.893339][   T26] audit: type=1326 audit(1774716790.299:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9913 comm="syz.4.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7fb1c139c819 code=0x7ffc0000
[  724.911360][ T4272] EXT4-fs (loop1): unmounting filesystem.
[  724.939806][   T26] audit: type=1326 audit(1774716790.299:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9913 comm="syz.4.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1c139c819 code=0x7ffc0000
[  725.231362][ T9675] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  725.240382][ T9675] Bluetooth: hci2: Injecting HCI hardware error event
[  725.250665][ T9675] Bluetooth: hci2: hardware error 0x00
[  725.651242][ T9962] loop1: detected capacity change from 0 to 128
[  725.706399][ T9962] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  726.401394][ T9962] ext4 filesystem being mounted at /228/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  727.073978][ T4272] EXT4-fs (loop1): unmounting filesystem.
[  727.132858][ T9979] loop5: detected capacity change from 0 to 128
[  727.192706][ T9979] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  727.549560][ T9675] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  728.153382][ T9979] ext4 filesystem being mounted at /89/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  728.298816][ T9997] netlink: 164 bytes leftover after parsing attributes in process `syz.4.1269'.
[  728.454606][ T9997] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1269'.
[  729.379241][ T7389] EXT4-fs (loop5): unmounting filesystem.
[  730.258156][T10018] loop2: detected capacity change from 0 to 128
[  731.030560][T10018] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  731.039342][T10018] ext4 filesystem being mounted at /239/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  732.252320][ T4274] EXT4-fs (loop2): unmounting filesystem.
[  733.216934][T10036] loop2: detected capacity change from 0 to 128
[  733.669576][T10036] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  733.855109][T10036] ext4 filesystem being mounted at /240/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  737.134832][ T4274] EXT4-fs (loop2): unmounting filesystem.
[  739.565357][T10076] delete_channel: no stack
[  739.749791][T10086] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  745.603376][T10108] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  746.872380][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  746.879206][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  748.410060][T10148] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  752.212893][T10174] loop1: detected capacity change from 0 to 164
[  754.544189][T10185] xt_cgroup: invalid path, errno=-2
[  754.648629][T10187] rdma_rxe: rxe_register_device failed with error -23
[  754.656396][T10187] rdma_rxe: failed to add vxcan1
[  754.683889][   T26] kauditd_printk_skb: 10 callbacks suppressed
[  754.683978][   T26] audit: type=1326 audit(1774716823.859:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10179 comm="syz.0.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabc8b9c819 code=0x7ffc0000
[  755.107735][   T26] audit: type=1326 audit(1774716823.859:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10179 comm="syz.0.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7fabc8b9c819 code=0x7ffc0000
[  756.110239][   T26] audit: type=1326 audit(1774716823.869:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10179 comm="syz.0.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabc8b9c819 code=0x7ffc0000
[  756.180382][   T26] audit: type=1326 audit(1774716823.869:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10179 comm="syz.0.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=235 compat=0 ip=0x7fabc8b9c819 code=0x7ffc0000
[  756.230461][   T26] audit: type=1326 audit(1774716823.869:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10179 comm="syz.0.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabc8b9c819 code=0x7ffc0000
[  756.661971][T10203] overlayfs: failed to clone lowerpath
[  756.706981][T10204] overlayfs: failed to clone upperpath
[  757.285009][T10207] loop5: detected capacity change from 0 to 128
[  757.300249][T10207] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  757.309070][T10207] ext4 filesystem being mounted at /102/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  757.422108][   T26] audit: type=1326 audit(1774716823.869:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10179 comm="syz.0.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7fabc8b9c819 code=0x7ffc0000
[  757.479946][   T26] audit: type=1326 audit(1774716823.869:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10179 comm="syz.0.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabc8b9c819 code=0x7ffc0000
[  758.297405][   T26] audit: type=1326 audit(1774716823.869:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10179 comm="syz.0.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fabc8b9c819 code=0x7ffc0000
[  758.322806][   T26] audit: type=1326 audit(1774716823.869:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10179 comm="syz.0.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabc8b9c819 code=0x7ffc0000
[  758.373184][   T26] audit: type=1326 audit(1774716823.869:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10179 comm="syz.0.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fabc8b9c819 code=0x7ffc0000
[  758.413096][ T7389] EXT4-fs (loop5): unmounting filesystem.
[  758.711175][ T9675] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  759.040270][ T9675] Bluetooth: hci0: Injecting HCI hardware error event
[  759.049927][ T4265] Bluetooth: hci0: hardware error 0x00
[  759.510746][T10231] No such timeout policy "syz1"
[  759.520734][T10231] autofs4:pid:10231:autofs_fill_super: called with bogus options
[  761.348862][ T4265] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  764.644293][T10262] xt_CT: You must specify a L4 protocol and not use inversions on it
[  767.997090][T10271] loop1: detected capacity change from 0 to 128
[  768.605059][T10271] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  768.735379][T10271] ext4 filesystem being mounted at /243/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  769.783835][ T4272] EXT4-fs (loop1): unmounting filesystem.
[  770.305380][T10300] rdma_rxe: rxe_register_device failed with error -23
[  770.313769][T10300] rdma_rxe: failed to add vxcan1
[  771.169755][   T26] kauditd_printk_skb: 4 callbacks suppressed
[  771.169773][   T26] audit: type=1326 audit(1774716839.529:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.5.1343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1554b9c819 code=0x7ffc0000
[  773.403999][   T26] audit: type=1326 audit(1774716839.539:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.5.1343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7f1554b9c819 code=0x7ffc0000
[  773.474994][T10317] loop2: detected capacity change from 0 to 128
[  773.636385][   T26] audit: type=1326 audit(1774716839.549:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.5.1343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1554b9c819 code=0x7ffc0000
[  774.678648][T10317] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  774.686626][   T26] audit: type=1326 audit(1774716839.559:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.5.1343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=235 compat=0 ip=0x7f1554b9c819 code=0x7ffc0000
[  774.718238][   T26] audit: type=1326 audit(1774716839.569:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.5.1343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1554b9c819 code=0x7ffc0000
[  774.840580][T10329] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1350'.
[  774.840919][ T4265] Bluetooth: hci5: Controller not accepting commands anymore: ncmd = 0
[  774.860385][ T4265] Bluetooth: hci5: Injecting HCI hardware error event
[  774.960356][ T9675] Bluetooth: hci5: hardware error 0x00
[  775.016891][   T26] audit: type=1326 audit(1774716839.569:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.5.1343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7f1554b9c819 code=0x7ffc0000
[  775.023310][T10317] ext4 filesystem being mounted at /250/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  775.039830][   T26] audit: type=1326 audit(1774716839.579:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.5.1343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1554b9c819 code=0x7ffc0000
[  775.081700][T10330] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  775.438514][   T26] audit: type=1326 audit(1774716839.589:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.5.1343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1554b9c819 code=0x7ffc0000
[  775.939921][   T26] audit: type=1326 audit(1774716839.599:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.5.1343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1554b9c819 code=0x7ffc0000
[  776.056555][   T26] audit: type=1326 audit(1774716839.609:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10293 comm="syz.5.1343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1554b9c819 code=0x7ffc0000
[  776.151041][ T4274] EXT4-fs (loop2): unmounting filesystem.
[  777.361863][T10348] loop2: detected capacity change from 0 to 128
[  777.412951][T10348] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  777.593316][T10348] ext4 filesystem being mounted at /251/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  778.159952][ T9675] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[  779.085390][ T4274] EXT4-fs (loop2): unmounting filesystem.
[  782.591884][T10399] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  786.793224][T10410] loop5: detected capacity change from 0 to 128
[  787.416932][T10410] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  787.738346][T10410] ext4 filesystem being mounted at /112/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  788.983583][T10434] overlayfs: failed to clone upperpath
[  789.663308][T10435] overlayfs: failed to clone upperpath
[  790.274328][ T7389] EXT4-fs (loop5): unmounting filesystem.
[  790.881170][T10445] loop1: detected capacity change from 0 to 4096
[  792.100773][T10450] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  795.540638][T10480] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1383'.
[  797.127413][T10500] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  801.107778][T10528] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  801.114808][T10528] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  801.127989][T10528] vhci_hcd vhci_hcd.0: Device attached
[  802.224613][T10529] vhci_hcd: connection closed
[  802.241470][    T9] vhci_hcd: stop threads
[  802.786930][    T9] vhci_hcd: release socket
[  802.814548][    T9] vhci_hcd: disconnect device
[  802.861919][ T7963] vhci_hcd: vhci_device speed not set
[  804.164475][T10550] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  804.948824][T10564] loop2: detected capacity change from 0 to 128
[  806.452471][T10564] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  806.592632][T10564] ext4 filesystem being mounted at /262/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  808.233254][ T4274] EXT4-fs (loop2): unmounting filesystem.
[  808.339742][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  808.346499][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  810.465699][T10603] loop1: detected capacity change from 0 to 128
[  810.500764][T10603] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  810.854575][T10603] ext4 filesystem being mounted at /257/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  810.957666][T10616] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  812.439111][ T4272] EXT4-fs (loop1): unmounting filesystem.
[  814.731717][T10636] loop5: detected capacity change from 0 to 128
[  814.819387][T10636] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  816.267176][T10636] ext4 filesystem being mounted at /119/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  817.087962][ T7389] EXT4-fs (loop5): unmounting filesystem.
[  818.347280][T10671] loop5: detected capacity change from 0 to 128
[  819.294996][T10671] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  819.310098][T10671] ext4 filesystem being mounted at /121/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  819.564842][T10690] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  820.338481][ T7389] EXT4-fs (loop5): unmounting filesystem.
[  820.875767][T10706] loop2: detected capacity change from 0 to 128
[  823.295839][T10706] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  823.408863][T10706] ext4 filesystem being mounted at /267/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  823.626971][T10721] loop1: detected capacity change from 0 to 128
[  823.683340][T10721] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  823.713466][T10721] ext4 filesystem being mounted at /262/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  824.817563][ T4272] EXT4-fs (loop1): unmounting filesystem.
[  824.826050][ T4274] EXT4-fs (loop2): unmounting filesystem.
[  825.120380][T10737] loop1: detected capacity change from 0 to 128
[  826.055658][T10737] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  826.097190][T10737] ext4 filesystem being mounted at /263/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  827.201931][ T4272] EXT4-fs (loop1): unmounting filesystem.
[  828.866560][T10771] loop2: detected capacity change from 0 to 128
[  829.054287][T10771] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  829.083284][T10771] ext4 filesystem being mounted at /269/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  829.160412][T10778] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  829.892096][T10767] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1452'.
[  830.203595][ T4274] EXT4-fs (loop2): unmounting filesystem.
[  833.458730][T10807] Bluetooth: MGMT ver 1.22
[  833.502709][T10807] Bluetooth: hci0: unsupported parameter 255
[  833.540862][T10807] Bluetooth: hci0: unsupported parameter 255
[  838.315069][T10842] loop5: detected capacity change from 0 to 128
[  838.338574][T10842] FAT-fs (loop5): error, fat_free: invalid cluster chain (i_pos 52)
[  838.347310][T10842] FAT-fs (loop5): Filesystem has been set read-only
[  838.411902][T10842] FAT-fs (loop5): error, fat_free: invalid cluster chain (i_pos 52)
[  838.421225][ T7962] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  838.573471][T10846] overlayfs: failed to clone lowerpath
[  838.593481][T10846] overlayfs: failed to clone upperpath
[  839.352629][ T7962] usb 3-1: config 9 has an invalid interface number: 182 but max is 0
[  839.361652][ T7962] usb 3-1: config 9 has no interface number 0
[  839.415138][ T7962] usb 3-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.10
[  841.019366][ T7962] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  841.098769][ T7962] usb 3-1: Product: syz
[  841.137133][ T7962] usb 3-1: Manufacturer: syz
[  841.162126][ T7962] usb 3-1: SerialNumber: syz
[  841.242142][ T7962] usb 3-1: can't set config #9, error -71
[  842.611153][ T7962] usb 3-1: USB disconnect, device number 7
[  847.581880][T10906] overlayfs: failed to clone lowerpath
[  847.633316][T10907] overlayfs: failed to clone upperpath
[  854.797225][T10945] loop2: detected capacity change from 0 to 64
[  854.828749][T10945] hfs: type requires a 4 character value
[  854.834922][T10945] hfs: unable to parse mount options
[  856.277820][T10925] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  856.288221][T10943] loop2: detected capacity change from 0 to 64
[  861.352235][T10982] overlayfs: failed to clone lowerpath
[  861.366349][T10982] overlayfs: failed to clone upperpath
[  870.391372][T11037] overlayfs: failed to clone lowerpath
[  870.405916][T11032] overlayfs: failed to clone upperpath
[  870.417468][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  870.432207][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  871.949713][T11049] overlayfs: failed to clone lowerpath
[  872.057044][T11050] overlayfs: failed to clone upperpath
[  872.792143][T11055] overlayfs: failed to clone lowerpath
[  872.800673][T11055] overlayfs: failed to clone upperpath
[  877.487203][T11081] netlink: 'syz.4.1531': attribute type 1 has an invalid length.
[  879.480366][T11105] overlayfs: failed to clone lowerpath
[  879.537323][T11106] overlayfs: failed to clone upperpath
[  880.057586][T11104] loop1: detected capacity change from 0 to 128
[  880.559941][T11104] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  880.579040][T11104] ext4 filesystem being mounted at /280/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  882.161522][T11131] overlayfs: failed to clone lowerpath
[  882.205322][T11132] overlayfs: failed to clone upperpath
[  883.284764][ T4272] EXT4-fs (loop1): unmounting filesystem.
[  883.352261][T11139] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  883.364813][T11139] dlm: non-version read from control device 0
[  886.525195][T11174] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  891.622176][T11215] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  897.311348][T11266] overlayfs: failed to clone lowerpath
[  897.363270][T11266] overlayfs: failed to clone upperpath
[  897.421006][T11269] loop2: detected capacity change from 0 to 128
[  897.453646][T11269] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  897.496953][T11269] ext4 filesystem being mounted at /289/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  898.638414][ T4274] EXT4-fs (loop2): unmounting filesystem.
[  901.079527][T11291] overlayfs: failed to clone lowerpath
[  901.212173][T11291] overlayfs: failed to clone upperpath
[  902.364271][T11305] loop2: detected capacity change from 0 to 128
[  902.570488][T11305] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  902.690706][T11305] ext4 filesystem being mounted at /291/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  904.030345][T11320] loop1: detected capacity change from 0 to 128
[  904.129414][T11320] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  904.201539][T11320] ext4 filesystem being mounted at /291/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  905.202083][ T4272] EXT4-fs (loop1): unmounting filesystem.
[  905.513757][T11348] overlayfs: failed to clone lowerpath
[  906.370372][T11352] overlayfs: failed to clone upperpath
[  908.013303][T11363] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  908.141885][T11363] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  908.149389][T11363] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  908.169561][T11363] device bridge_slave_0 left promiscuous mode
[  908.179533][T11363] bridge0: port 1(bridge_slave_0) entered disabled state
[  908.371898][T11377] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  908.394201][T11377] dlm: non-version read from control device 0
[  908.623901][T11363] device bridge_slave_1 left promiscuous mode
[  908.643386][T11363] bridge0: port 2(bridge_slave_1) entered disabled state
[  909.082401][T11363] bond0: (slave bond_slave_0): Releasing backup interface
[  909.184054][ T4274] EXT4-fs (loop2): unmounting filesystem.
[  909.264548][T11363] bond0: (slave bond_slave_1): Releasing backup interface
[  909.366102][T11363] team0: Port device team_slave_0 removed
[  909.392226][T11363] team0: Port device team_slave_1 removed
[  909.429115][T11363] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  909.817647][T11363] batman_adv: batadv0: Removing interface: batadv_slave_0
[  910.011033][T11363] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  910.060540][T11363] batman_adv: batadv0: Removing interface: batadv_slave_1
[  910.087223][T11369] netlink: 'syz.0.1593': attribute type 10 has an invalid length.
[  910.133057][T11369] 8021q: adding VLAN 0 to HW filter on device bond0
[  910.165564][T11369] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  910.250364][ T4316] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  918.083331][T11445] overlayfs: failed to clone lowerpath
[  918.137594][T11446] overlayfs: failed to clone upperpath
[  918.535716][T11452] overlayfs: failed to clone lowerpath
[  918.546896][T11452] overlayfs: failed to clone upperpath
[  919.825519][T11467] overlayfs: failed to clone lowerpath
[  919.882283][T11468] overlayfs: failed to clone upperpath
[  925.300531][T11514] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  931.286010][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  931.292359][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  932.138727][T11560] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  933.446340][    C1] ------------[ cut here ]------------
[  933.451872][    C1] WARNING: CPU: 1 PID: 0 at net/mac80211/tx.c:4944 __ieee80211_beacon_get+0x1233/0x1600
[  933.461740][    C1] Modules linked in:
[  933.465650][    C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted syzkaller #0
[  933.472698][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  933.482782][    C1] RIP: 0010:__ieee80211_beacon_get+0x1233/0x1600
[  933.489130][    C1] Code: 24 4c 89 e7 e8 8e 2e 0a f8 45 31 f6 4c 8b bc 24 a0 00 00 00 e9 7a fe ff ff e8 a9 8f d1 f7 0f 0b e9 f6 f7 ff ff e8 9d 8f d1 f7 <0f> 0b e9 48 fb ff ff e8 91 8f d1 f7 48 c7 c7 90 dc fa 8d 4c 89 e6
[  933.508780][    C1] RSP: 0018:ffffc900001e0a30 EFLAGS: 00010246
[  933.514884][    C1] RAX: ffffffff89b0e4f3 RBX: ffffffff89b0d2f6 RCX: ffff888017731dc0
[  933.522893][    C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  933.530890][    C1] RBP: 0000000000000000 R08: ffff888017731dc0 R09: 0000000000000003
[  933.538870][    C1] R10: 0000000000000007 R11: 0000000000000100 R12: ffff888056e06228
[  933.546888][    C1] R13: dffffc0000000000 R14: ffff888056e06760 R15: ffff8880791af024
[  933.554918][    C1] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  933.563885][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  933.570507][    C1] CR2: 00007f9a326e2afb CR3: 000000003d7ab000 CR4: 00000000003526e0
[  933.578493][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  933.586492][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  933.594494][    C1] Call Trace:
[  933.597788][    C1]  <IRQ>
[  933.600660][    C1]  ? __ieee80211_beacon_get+0x36/0x1600
[  933.606230][    C1]  ieee80211_beacon_get_tim+0x63/0x4e0
[  933.611751][    C1]  mac80211_hwsim_beacon_tx+0x21c/0xae0
[  933.617387][    C1]  ? read_lock_is_recursive+0x10/0x10
[  933.622862][    C1]  __iterate_interfaces+0x243/0x500
[  933.628084][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[  933.634369][    C1]  ? ieee80211_iterate_active_interfaces_atomic+0x26/0x170
[  933.641607][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[  933.647862][    C1]  ieee80211_iterate_active_interfaces_atomic+0xd7/0x170
[  933.654935][    C1]  mac80211_hwsim_beacon+0xb7/0x1b0
[  933.660232][    C1]  __hrtimer_run_queues+0x54a/0xd50
[  933.665510][    C1]  ? hw_scan_work+0xf50/0xf50
[  933.670237][    C1]  ? hrtimer_interrupt+0x9c0/0x9c0
[  933.675360][    C1]  ? ktime_get_update_offsets_now+0x3ce/0x3e0
[  933.681474][    C1]  hrtimer_run_softirq+0x183/0x2a0
[  933.686603][    C1]  handle_softirqs+0x2a1/0x930
[  933.691457][    C1]  ? __irq_exit_rcu+0x13b/0x230
[  933.696322][    C1]  ? do_softirq+0x210/0x210
[  933.700860][    C1]  ? irqtime_account_irq+0xb2/0x1b0
[  933.706074][    C1]  __irq_exit_rcu+0x13b/0x230
[  933.710788][    C1]  ? irq_exit_rcu+0x20/0x20
[  933.715312][    C1]  irq_exit_rcu+0x5/0x20
[  933.719585][    C1]  sysvec_apic_timer_interrupt+0xa0/0xc0
[  933.725251][    C1]  </IRQ>
[  933.728186][    C1]  <TASK>
[  933.731154][    C1]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  933.737219][    C1] RIP: 0010:default_idle+0xb/0x10
[  933.742277][    C1] Code: 48 89 df e8 47 c2 9b f7 e9 44 ff ff ff e8 3d 07 f6 ff 00 00 cc cc 00 00 cc cc 00 00 cc cc 00 66 90 0f 00 2d 57 eb 4e 00 fb f4 <c3> 0f 1f 40 00 41 57 41 56 53 49 be 00 00 00 00 00 fc ff df 65 48
[  933.761918][    C1] RSP: 0018:ffffc90000177de8 EFLAGS: 000002c6
[  933.768001][    C1] RAX: 4f3b23de41d09200 RBX: ffffffff8a37c257 RCX: 4f3b23de41d09200
[  933.776009][    C1] RDX: 0000000000000001 RSI: ffffffff8a8c10a0 RDI: ffffffff8adf0d20
[  933.784012][    C1] RBP: ffffc90000177f20 R08: ffff8880b8f3580b R09: 1ffff110171e6b01
[  933.792016][    C1] R10: dffffc0000000000 R11: ffffed10171e6b02 R12: 0000000000000000
[  933.800016][    C1] R13: dffffc0000000000 R14: ffff888017731dc0 R15: 1ffff9200002efc8
[  933.808021][    C1]  ? default_idle_call+0x77/0xc0
[  933.813010][    C1]  default_idle_call+0x84/0xc0
[  933.817783][    C1]  do_idle+0x3a2/0x680
[  933.821962][    C1]  ? idle_inject_timer_fn+0x60/0x60
[  933.827187][    C1]  ? do_idle+0x8/0x680
[  933.831303][    C1]  cpu_startup_entry+0x3f/0x60
[  933.836080][    C1]  start_secondary+0xe4/0xf0
[  933.840768][    C1]  secondary_startup_64_no_verify+0xcf/0xdb
[  933.846737][    C1]  </TASK>
[  933.849791][    C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  933.857081][    C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted syzkaller #0
[  933.864125][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  933.874182][    C1] Call Trace:
[  933.877463][    C1]  <IRQ>
[  933.880310][    C1]  dump_stack_lvl+0x188/0x24e
[  933.885022][    C1]  ? memcpy+0x3c/0x60
[  933.889067][    C1]  ? show_regs_print_info+0x12/0x12
[  933.894284][    C1]  ? load_image+0x400/0x400
[  933.898821][    C1]  panic+0x2e5/0x730
[  933.902728][    C1]  ? bpf_jit_dump+0xd0/0xd0
[  933.907248][    C1]  ? secondary_startup_64_no_verify+0xcf/0xdb
[  933.913339][    C1]  __warn+0x2f8/0x4f0
[  933.917326][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[  933.923063][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[  933.928795][    C1]  report_bug+0x2ba/0x4f0
[  933.933197][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[  933.938926][    C1]  handle_bug+0x3a/0x70
[  933.943098][    C1]  exc_invalid_op+0x16/0x40
[  933.947609][    C1]  asm_exc_invalid_op+0x16/0x20
[  933.952468][    C1] RIP: 0010:__ieee80211_beacon_get+0x1233/0x1600
[  933.958804][    C1] Code: 24 4c 89 e7 e8 8e 2e 0a f8 45 31 f6 4c 8b bc 24 a0 00 00 00 e9 7a fe ff ff e8 a9 8f d1 f7 0f 0b e9 f6 f7 ff ff e8 9d 8f d1 f7 <0f> 0b e9 48 fb ff ff e8 91 8f d1 f7 48 c7 c7 90 dc fa 8d 4c 89 e6
[  933.978418][    C1] RSP: 0018:ffffc900001e0a30 EFLAGS: 00010246
[  933.984492][    C1] RAX: ffffffff89b0e4f3 RBX: ffffffff89b0d2f6 RCX: ffff888017731dc0
[  933.992467][    C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  934.000453][    C1] RBP: 0000000000000000 R08: ffff888017731dc0 R09: 0000000000000003
[  934.008449][    C1] R10: 0000000000000007 R11: 0000000000000100 R12: ffff888056e06228
[  934.016446][    C1] R13: dffffc0000000000 R14: ffff888056e06760 R15: ffff8880791af024
[  934.024434][    C1]  ? __ieee80211_beacon_get+0x36/0x1600
[  934.030002][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[  934.035741][    C1]  ? __ieee80211_beacon_get+0x36/0x1600
[  934.041301][    C1]  ieee80211_beacon_get_tim+0x63/0x4e0
[  934.046778][    C1]  mac80211_hwsim_beacon_tx+0x21c/0xae0
[  934.052336][    C1]  ? read_lock_is_recursive+0x10/0x10
[  934.057723][    C1]  __iterate_interfaces+0x243/0x500
[  934.062936][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[  934.069192][    C1]  ? ieee80211_iterate_active_interfaces_atomic+0x26/0x170
[  934.076407][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[  934.082652][    C1]  ieee80211_iterate_active_interfaces_atomic+0xd7/0x170
[  934.089690][    C1]  mac80211_hwsim_beacon+0xb7/0x1b0
[  934.094906][    C1]  __hrtimer_run_queues+0x54a/0xd50
[  934.100124][    C1]  ? hw_scan_work+0xf50/0xf50
[  934.104823][    C1]  ? hrtimer_interrupt+0x9c0/0x9c0
[  934.109942][    C1]  ? ktime_get_update_offsets_now+0x3ce/0x3e0
[  934.116027][    C1]  hrtimer_run_softirq+0x183/0x2a0
[  934.121165][    C1]  handle_softirqs+0x2a1/0x930
[  934.125944][    C1]  ? __irq_exit_rcu+0x13b/0x230
[  934.130809][    C1]  ? do_softirq+0x210/0x210
[  934.135320][    C1]  ? irqtime_account_irq+0xb2/0x1b0
[  934.140526][    C1]  __irq_exit_rcu+0x13b/0x230
[  934.145211][    C1]  ? irq_exit_rcu+0x20/0x20
[  934.149736][    C1]  irq_exit_rcu+0x5/0x20
[  934.153991][    C1]  sysvec_apic_timer_interrupt+0xa0/0xc0
[  934.159630][    C1]  </IRQ>
[  934.162565][    C1]  <TASK>
[  934.165498][    C1]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  934.171491][    C1] RIP: 0010:default_idle+0xb/0x10
[  934.176521][    C1] Code: 48 89 df e8 47 c2 9b f7 e9 44 ff ff ff e8 3d 07 f6 ff 00 00 cc cc 00 00 cc cc 00 00 cc cc 00 66 90 0f 00 2d 57 eb 4e 00 fb f4 <c3> 0f 1f 40 00 41 57 41 56 53 49 be 00 00 00 00 00 fc ff df 65 48
[  934.196135][    C1] RSP: 0018:ffffc90000177de8 EFLAGS: 000002c6
[  934.202213][    C1] RAX: 4f3b23de41d09200 RBX: ffffffff8a37c257 RCX: 4f3b23de41d09200
[  934.210191][    C1] RDX: 0000000000000001 RSI: ffffffff8a8c10a0 RDI: ffffffff8adf0d20
[  934.218169][    C1] RBP: ffffc90000177f20 R08: ffff8880b8f3580b R09: 1ffff110171e6b01
[  934.226149][    C1] R10: dffffc0000000000 R11: ffffed10171e6b02 R12: 0000000000000000
[  934.234127][    C1] R13: dffffc0000000000 R14: ffff888017731dc0 R15: 1ffff9200002efc8
[  934.242112][    C1]  ? default_idle_call+0x77/0xc0
[  934.247076][    C1]  default_idle_call+0x84/0xc0
[  934.251848][    C1]  do_idle+0x3a2/0x680
[  934.255947][    C1]  ? idle_inject_timer_fn+0x60/0x60
[  934.261175][    C1]  ? do_idle+0x8/0x680
[  934.265260][    C1]  cpu_startup_entry+0x3f/0x60
[  934.270037][    C1]  start_secondary+0xe4/0xf0
[  934.274639][    C1]  secondary_startup_64_no_verify+0xcf/0xdb
[  934.280559][    C1]  </TASK>
[  934.283883][    C1] Kernel Offset: disabled
[  934.288226][    C1] Rebooting in 86400 seconds..