last executing test programs:

10m7.456143873s ago: executing program 4 (id=652):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001800)=@RTM_NEWNSID={0x14, 0x58, 0x821, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4001}, 0x20040040)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETSW2(r4, 0x402c542c, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x54, r7, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @loopback}}, {0x14, 0x2, @in={0x2, 0x0, @multicast2}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)
sendmsg$TIPC_NL_KEY_SET(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={0x58, r7, 0x1, 0x70bd2d, 0x0, {}, [@TIPC_NLA_NODE={0x44, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x3c, 0x4, {'gcm(aes)\x00', 0x14, "e3de3d7b4cd07ec3ee777de774fc7987cca41989"}}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x4}, 0x4000004)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, 0x0, 0x4000004)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000e40), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r8, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000000)={0x6c, r9, 0x1, 0x0, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x0, 0x0, @loopback}}, {0x20, 0x2, @in6={0xa, 0x0, 0x0, @remote}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x6c}}, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff, 0xf, 0x0, @void}, 0x10)

10m4.962935053s ago: executing program 4 (id=656):
prlimit64(0x0, 0xe, 0x0, 0x0)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = getpid()
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x1, 0x4}, 0x4)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x2}, 0x4)
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="5c0000002000010000000000000000000220000400000000000000000500150002000000080009000000000008000b0005000000080017004e214e22080001"], 0x5c}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5)

9m56.622321879s ago: executing program 4 (id=677):
syz_open_dev$tty1(0xc, 0x4, 0x2)
r0 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
ftruncate(r0, 0x8000000000000000)
r1 = syz_open_dev$vim2m(&(0x7f0000000580), 0x0, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f0000000440)={0x2, @pix={0x80000000, 0xbb46, 0x33524742, 0x8, 0x0, 0x100000, 0x9, 0x8}})
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000400)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket(0x10, 0x803, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd29, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x2, 0xfff3}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000840)=@newtfilter={0x34, 0x2c, 0xd2b, 0x70bd2b, 0x25dfdbfb, {0x0, 0x0, 0x0, r7, {0x10}, {}, {0x4, 0x9}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}}, 0x40014)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r8=>0xffffffffffffffff})
setsockopt$inet_mreq(0xffffffffffffffff, 0x0, 0x24, 0x0, 0x0)
getpeername$packet(r8, 0x0, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r9 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
listen(r9, 0x0)
ioctl$SIOCX25SFACILITIES(r9, 0x89e3, &(0x7f0000002200)={0x36, 0x8001, 0xc, 0xc, 0x0, 0x81})

9m55.622905786s ago: executing program 4 (id=681):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000180)=0x2, 0x4)
bind$inet(r0, &(0x7f0000000280)={0x2, 0x5e21, @empty}, 0x10)
connect$inet(r0, 0x0, 0x0)
socket$inet(0x2, 0x2, 0x0)
close(0x4)

9m55.403626635s ago: executing program 4 (id=685):
socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socket(0x10, 0x80002, 0x0)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp384-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000047c0)=[{{0x0, 0x0, &(0x7f0000002ac0)=[{&(0x7f0000000340)=""/1, 0x30}], 0x1}, 0xe75}], 0x3aa0, 0x60002000, 0x0)

9m49.327046017s ago: executing program 4 (id=704):
socket$nl_generic(0x10, 0x3, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x1c0)
r3 = mq_open(&(0x7f0000000000)='batadv_slaveo1\x00', 0x8c2, 0x0, 0x0)
mq_notify(r3, &(0x7f0000000200)={0x0, 0x25, 0x1, @thr={0x0, 0x0}})
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x141341)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r4, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0xd, 0x0, &(0x7f0000000300))
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in6={{0xa, 0x4e22, 0x6, @empty, 0x7}}, 0x0, 0x0, 0x0, 0x0, 0xd4}, 0x9c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r4, 0x84, 0x85, &(0x7f0000000000)={0x0, @in6={{0xa, 0x4e23, 0x400, @private2, 0x4}}, 0x5b, 0xfb0f}, 0x90)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r5, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0xfe, 0x60000e1e}, 0x50)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)

9m33.765634574s ago: executing program 32 (id=704):
socket$nl_generic(0x10, 0x3, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x1c0)
r3 = mq_open(&(0x7f0000000000)='batadv_slaveo1\x00', 0x8c2, 0x0, 0x0)
mq_notify(r3, &(0x7f0000000200)={0x0, 0x25, 0x1, @thr={0x0, 0x0}})
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x141341)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r4, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0xd, 0x0, &(0x7f0000000300))
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in6={{0xa, 0x4e22, 0x6, @empty, 0x7}}, 0x0, 0x0, 0x0, 0x0, 0xd4}, 0x9c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r4, 0x84, 0x85, &(0x7f0000000000)={0x0, @in6={{0xa, 0x4e23, 0x400, @private2, 0x4}}, 0x5b, 0xfb0f}, 0x90)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r5, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0xfe, 0x60000e1e}, 0x50)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)

7m15.3571169s ago: executing program 5 (id=1238):
r0 = socket$inet6(0xa, 0x5, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e21, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
setsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000180)={0x0, 0xbb, 0x3, 0x7f}, 0x10)

7m15.244760811s ago: executing program 5 (id=1239):
socket$packet(0x11, 0x2, 0x300)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=@base={0x5, 0x4, 0x5, 0xc, 0x0, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket(0x10, 0x803, 0x0)
socket$unix(0x1, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000480)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$packet_buf(r0, 0x107, 0x5, &(0x7f0000000180), 0x0)
r4 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8b18, &(0x7f0000000000)={'wlan0\x00'})

7m9.645296521s ago: executing program 5 (id=1245):
r0 = gettid()
timer_create(0x1, &(0x7f0000533fa0)={0x0, 0x11, 0x4, @tid=r0}, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
futex(&(0x7f0000000240)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)

7m9.573836444s ago: executing program 5 (id=1246):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x7)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0xc, &(0x7f0000000140)={[{@grpid}, {@jqfmt_vfsv1}]}, 0x2, 0x53a, &(0x7f00000011c0)="$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")
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
r2 = open(&(0x7f00000001c0)='./bus\x00', 0x4c27e, 0x2)
fallocate(r2, 0x0, 0x0, 0x1000f4)
sendfile(r2, r2, 0x0, 0x400000000008004)

7m9.34346786s ago: executing program 5 (id=1249):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
ioprio_set$pid(0x2, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x40000, 0x120)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'})

7m8.464698186s ago: executing program 5 (id=1251):
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000640)={0x0, 0x40}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
openat$binderfs(0xffffff9c, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000100)=0x5)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000032680)=""/102392, 0x18ff8)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})

6m52.6358487s ago: executing program 33 (id=1251):
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000640)={0x0, 0x40}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
openat$binderfs(0xffffff9c, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000100)=0x5)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000032680)=""/102392, 0x18ff8)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})

5m29.733741379s ago: executing program 1 (id=1515):
bind$alg(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f0000000140)=[{0x20, 0x0, 0x0, 0xfffff034}, {0x6, 0xfc, 0x0, 0x7}]}, 0x10)
sendmmsg(r3, &(0x7f0000001c00), 0x400000000000159, 0x40840)

5m28.251510645s ago: executing program 1 (id=1519):
socket(0x1e, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
fcntl$lock(r3, 0x24, &(0x7f0000000080)={0x1, 0x1, 0x1, 0x400000006})
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0x7, &(0x7f00000000c0)={0xf, 0x3, 0x7, 0x200}, 0x10)
r4 = syz_io_uring_setup(0x2e06, 0x0, &(0x7f0000000240), &(0x7f0000000080), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_RESTRICTIONS(r4, 0xb, &(0x7f0000000040), 0x3e)
ioctl$TIOCGPGRP(r3, 0x540f, &(0x7f0000000200))
syz_open_dev$sg(&(0x7f00000000c0), 0x6f5e, 0x2)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(0xffffffffffffffff, 0xc0096616, &(0x7f0000000480))
r5 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000140), 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r5, 0x108, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x50)
openat$cgroup_devices(0xffffffffffffffff, &(0x7f0000000380)='devices.deny\x00', 0x2, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000400)=[{&(0x7f0000000040)='9G', 0x2}, {0x0}], 0x2, 0xffffff01, 0xa)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x2, 0xd, &(0x7f0000000680)=ANY=[@ANYBLOB="18020000000000000000000000000000851000000100000095000000000000001800000020646c2500000000002020207b1af8ff00000000bd21ffff0000000007010000f8ffffffb502020008000000b70300000000000085000000a400000095"], &(0x7f0000000080)='syzkaller\x00', 0xa, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)

5m26.921901415s ago: executing program 1 (id=1523):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001800)=@RTM_NEWNSID={0x14, 0x58, 0x821, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4001}, 0x20040040)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETSW2(r4, 0x402c542c, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x54, r7, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @loopback}}, {0x14, 0x2, @in={0x2, 0x0, @multicast2}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)
sendmsg$TIPC_NL_KEY_SET(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={0x58, r7, 0x1, 0x70bd2d, 0x0, {}, [@TIPC_NLA_NODE={0x44, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x3c, 0x4, {'gcm(aes)\x00', 0x14, "e3de3d7b4cd07ec3ee777de774fc7987cca41989"}}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x4}, 0x4000004)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, 0x0, 0x4000004)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000e40), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r8, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000000)={0x6c, r9, 0x1, 0x0, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x0, 0x0, @loopback}}, {0x20, 0x2, @in6={0xa, 0x0, 0x0, @remote}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x6c}}, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff, 0xf, 0x0, @void}, 0x10)
ioctl$TCSETS(r4, 0x5402, &(0x7f0000000140)={0x6, 0x5, 0xfffffffb, 0x3, 0xd, "4e51d01d5236922570b08e53c9119bbedc290f"})

5m21.855781037s ago: executing program 1 (id=1531):
openat$mice(0xffffffffffffff9c, 0x0, 0x2080)
r0 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
ioctl$sock_bt_hidp_HIDPCONNADD(r0, 0x400448c8, &(0x7f0000000340)={r1, r1, 0x7fff, 0x0, 0x0, 0x9, 0xc1, 0x16c0, 0x9, 0x97d8, 0x1, 0x9, 'syz1\x00'})
ioctl$sock_bt_hidp_HIDPCONNDEL(r0, 0x400448c9, &(0x7f0000000000)={@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}})

5m21.599828509s ago: executing program 1 (id=1534):
socket$nl_netfilter(0x10, 0x3, 0xc)
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r0, &(0x7f0000000380)={0xa, 0x4e21, 0x1, @loopback, 0x400014}, 0x1c)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000300)=@gcm_128={{0x303}, "fc895d8eb00066c2", "c5998c867c22b401046a89606ffcf92e", "2c5be7ad", "a0ca05c0707e52f4"}, 0x28)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x10000008ebc, 0x0)
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0xfd8b, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0x0, 0x0, &(0x7f0000000500)='syzkaller\x00', 0x2, 0x85, &(0x7f0000000540)=""/133, 0x41100, 0x8, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000640)={0x0, 0xa, 0x9, 0x8}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000007c0)=[0xffffffffffffffff], &(0x7f0000000800), 0x10, 0x9}, 0x94)

5m21.14594576s ago: executing program 1 (id=1535):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x1c0)
r4 = mq_open(&(0x7f0000000000)='batadv_slaveo1\x00', 0x8c2, 0x0, 0x0)
mq_notify(r4, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r5, 0x84, 0x85, &(0x7f0000000000)={0x0, @in6={{0xa, 0x4e23, 0x400, @private2, 0x4}}, 0x5b, 0xfb0f}, 0x90)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r6, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0xfe, 0x60000e1e}, 0x50)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_BEACON(r0, 0x0, 0x10)

5m5.839013034s ago: executing program 34 (id=1535):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x1c0)
r4 = mq_open(&(0x7f0000000000)='batadv_slaveo1\x00', 0x8c2, 0x0, 0x0)
mq_notify(r4, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r5, 0x84, 0x85, &(0x7f0000000000)={0x0, @in6={{0xa, 0x4e23, 0x400, @private2, 0x4}}, 0x5b, 0xfb0f}, 0x90)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r6, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0xfe, 0x60000e1e}, 0x50)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_BEACON(r0, 0x0, 0x10)

3m56.754329695s ago: executing program 6 (id=1794):
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@rand_addr=0x64010101, @in=@broadcast, 0x0, 0x8001, 0x0, 0x0, 0xa, 0x0, 0x0, 0x4f}, {0x0, 0x0, 0x0, 0x800, 0x7}, {0x0, 0x0, 0xe6}, 0x0, 0x0, 0x0, 0x0, 0x2}, {{@in=@remote, 0x404d3, 0x2b}, 0x0, @in=@local}}, 0xe8)
r1 = socket$key(0xf, 0x3, 0x2)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f00000001c0), 0x4)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000100000000000000ac1e000100000000000000000000000000000000000000000a0060"], 0xb8}}, 0x20040014)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x25dfdbfc, {{@in6=@private0, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x40, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0xaa3, 0xfffffffffffffff6, 0x4}, {0x0, 0x8}}}, 0xb8}}, 0x4000014)

3m56.626378336s ago: executing program 6 (id=1796):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), 0xffffffffffffffff)
r5 = fsopen(&(0x7f0000000180)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
unshare(0x22020600)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={0xffffffffffffffff, 0x0}, 0x20)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000900)={0x14, r4, 0x301, 0x70bd29, 0x25dfdbfb, {0x21}}, 0x14}, 0x1, 0x0, 0x0, 0x815}, 0x20004814)

3m53.427215438s ago: executing program 6 (id=1805):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010002955a4f40f30c19e04ffb0102030109022d000180002002090494090274833180090507000000060800091162b367e12306af"], 0x0)
syz_usb_connect$hid(0x6, 0x0, 0x0, 0x0)
preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x3, 0x10)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
fcntl$dupfd(r1, 0x0, r1)
syz_usb_disconnect(r0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000), 0x2a040, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
syz_open_dev$video(&(0x7f0000000000), 0x8, 0x202)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000040), 0x80000000, 0x0)
syz_open_dev$usbfs(&(0x7f0000000040), 0x76, 0x101a01)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
syz_usb_control_io$printer(r0, &(0x7f00000003c0)={0x14, 0x0, &(0x7f0000000380)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x40c}}}, &(0x7f0000000600)={0x34, &(0x7f0000000400)={0x20, 0x31, 0x4b, "a0390f3079b0c63c56f7ad184af977814b546a15a67bfecef2e18ecacd49b4e7e0998fef79471b260bb919ffd99045b9881e024fdd24719fa6fd325d9593b9b4e790354c3ec2b4f9e82555"}, &(0x7f0000000480)={0x0, 0xa, 0x1, 0x40}, &(0x7f00000004c0)={0x0, 0x8, 0x1, 0x75}, &(0x7f0000000500)={0x20, 0x0, 0x24, {0x22, "eb6560373d0170c1af31b73168ea725a5a91245830cf50022d6332e9e486428cf688"}}, &(0x7f0000000140)={0x20, 0x1, 0x1, 0x38}, &(0x7f00000005c0)={0x20, 0x0, 0x1, 0x9e}})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x40, 0x0, 0x18}, 0x18)
syz_open_dev$dri(&(0x7f0000000000), 0x1f, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x1a5042, 0x0)

3m48.59878624s ago: executing program 6 (id=1817):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='configfs\x00', 0x16, 0x0)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

3m48.451000704s ago: executing program 7 (id=1818):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
syz_mount_image$fuse(0x0, &(0x7f0000000000)='./bus\x00', 0x300f401, 0x0, 0x2, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x4000087, 0x2, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
syz_mount_image$vfat(&(0x7f0000000340), &(0x7f0000000380)='./file0\x00', 0x8000, &(0x7f0000000280)=ANY=[], 0x1, 0x2a0, &(0x7f0000000a40)="$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")
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='io.stat\x00', 0x275a, 0x0)
ioctl$FS_IOC_RESVSP(r3, 0xc0189436, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x5f, 0x3})

3m46.354934081s ago: executing program 7 (id=1823):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x3010042, &(0x7f0000000080)={[{@subsystem='hugetlb'}, {@favordynmods}, {@subsystem='cpuacct'}]})

3m43.967468984s ago: executing program 7 (id=1826):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000940)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r4 = accept$alg(r3, 0x0, 0x0)
sendmsg$alg(r4, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
write$binfmt_script(r4, &(0x7f0000000600), 0xfec8)
recvmmsg(r4, &(0x7f00000008c0)=[{{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/200, 0xc8}, {&(0x7f0000000140)=""/9, 0x9}, {&(0x7f0000000300)=""/225, 0xe1}, {&(0x7f0000000440)=""/123, 0x7b}, {0x0}], 0x5, &(0x7f0000000dc0)=""/123, 0x7b, 0x2000000}}, {{0x0, 0x0, 0x0}}], 0x2, 0xcb, 0x0)

3m42.921633713s ago: executing program 7 (id=1827):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='configfs\x00', 0x16, 0x0)
io_setup(0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x10)
openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]})
r5 = getpid()
syz_pidfd_open(r5, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r3, 0x89f3, &(0x7f0000000d80)={'gre0\x00', &(0x7f0000000cc0)={'sit0\x00', <r6=>0x0, 0x10, 0x700, 0x3ff, 0x0, {{0x11, 0x4, 0x3, 0x5, 0x44, 0x66, 0x0, 0xfd, 0x2f, 0x0, @loopback, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@timestamp_prespec={0x44, 0x4, 0x45, 0x3, 0x6}, @timestamp_addr={0x44, 0x2c, 0x99, 0x1, 0x7, [{@broadcast, 0xa}, {@private=0xa010100, 0x1}, {@loopback, 0x40}, {@private=0xa010102, 0x7fffffff}, {@remote, 0x1000}]}]}}}}})
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x20, 0x16, &(0x7f0000000280)=ANY=[@ANYRES32=r0], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x76, '\x00', r6, @fallback=0x2d, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x3}, 0x867cd180e8be2a08}, 0x94)
r7 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r7, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
umount2(&(0x7f0000000040)='.\x00', 0x2)
sendmsg$DCCPDIAG_GETSOCK(r3, &(0x7f0000000c80)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000c40)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="50020000130000022cbd7000ffdbdf252703027f4e204e20a9000000000000000100000002000000c9000000000000000800000012070000", @ANYRES32=0x0, @ANYBLOB="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"], 0x250}, 0x1, 0x0, 0x0, 0x40005}, 0x20)
close_range(r4, 0xffffffffffffffff, 0x200000000000000)

3m41.059174005s ago: executing program 7 (id=1831):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-serpent-avx2\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb0958730", 0x4c}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d", 0x24}], 0x3}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}], 0x1}, 0x0)

3m39.854642983s ago: executing program 6 (id=1836):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x3010042, &(0x7f0000000080)={[{@subsystem='hugetlb'}, {@favordynmods}, {@subsystem='cpuacct'}]})

3m37.217170347s ago: executing program 7 (id=1845):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x20044010)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x44}, 0x1, 0x0, 0x0, 0x8000010}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="4400000010003b1500"/20, @ANYRES32=0x0, @ANYBLOB="662700000000000024001280090001007866726d00000000"], 0x44}}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

3m36.974668356s ago: executing program 35 (id=1845):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x20044010)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x44}, 0x1, 0x0, 0x0, 0x8000010}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="4400000010003b1500"/20, @ANYRES32=0x0, @ANYBLOB="662700000000000024001280090001007866726d00000000"], 0x44}}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

3m31.093126869s ago: executing program 6 (id=1858):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x3, 0xc, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @sched_cls=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r0, 0x0, 0x68, 0x0, &(0x7f0000000c40)="00800000000000004284860186dd", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

3m30.363352014s ago: executing program 36 (id=1858):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x3, 0xc, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @sched_cls=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r0, 0x0, 0x68, 0x0, &(0x7f0000000c40)="00800000000000004284860186dd", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

38.503504922s ago: executing program 8 (id=2364):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)

26.820129918s ago: executing program 8 (id=2392):
r0 = socket$inet6(0xa, 0x3, 0x2f)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, 0x0)
fsopen(0x0, 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=@base={0x8, 0x4, 0x4, 0x4}, 0x50)
r4 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r4, 0x0, 0x4)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r3, <r6=>0xffffffffffffffff}, &(0x7f00000000c0), &(0x7f0000000140)=r5}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r6}, &(0x7f0000000300), &(0x7f0000000340)=r5}, 0x20)

25.447606478s ago: executing program 9 (id=2397):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00'})
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$inet6(0xa, 0x2, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r2=>0x0)
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0xfd8b, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r2, 0x1, &(0x7f0000000040), 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xb320a000)
getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000440)={{{@in=@local, @in=@private}}, {{@in=@empty}}}, 0x0)
r3 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
fcntl$lock(r3, 0x410, &(0x7f00000000c0)={0x1, 0x1, 0x1, 0xfffe})
shmctl$IPC_RMID(0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
mknod(&(0x7f0000000040)='./file0\x00', 0x1000, 0x1)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'ipvlan0\x00'})
pselect6(0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0), &(0x7f0000000640)={&(0x7f0000000600)={[0x10000]}, 0x8})

25.446963651s ago: executing program 8 (id=2398):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), 0xffffffffffffffff)
r5 = fsopen(&(0x7f0000000180)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = fsmount(r5, 0x0, 0x9)
unshare(0x22020600)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={r6, 0x0}, 0x20)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000900)={0x14, r4, 0x301, 0x70bd29, 0x25dfdbfb, {0x21}}, 0x14}, 0x1, 0x0, 0x0, 0x815}, 0x20004814)

22.175746986s ago: executing program 8 (id=2402):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='configfs\x00', 0x16, 0x0)
io_setup(0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x10)
openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]})
r5 = getpid()
syz_pidfd_open(r5, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r3, 0x89f3, &(0x7f0000000d80)={'gre0\x00', &(0x7f0000000cc0)={'sit0\x00', <r6=>0x0, 0x10, 0x700, 0x3ff, 0x0, {{0x11, 0x4, 0x3, 0x5, 0x44, 0x66, 0x0, 0xfd, 0x2f, 0x0, @loopback, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@timestamp_prespec={0x44, 0x4, 0x45, 0x3, 0x6}, @timestamp_addr={0x44, 0x2c, 0x99, 0x1, 0x7, [{@broadcast, 0xa}, {@private=0xa010100, 0x1}, {@loopback, 0x40}, {@private=0xa010102, 0x7fffffff}, {@remote, 0x1000}]}]}}}}})
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x20, 0x16, &(0x7f0000000280)=ANY=[@ANYRES32=r0], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x76, '\x00', r6, @fallback=0x2d, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x3}, 0x867cd180e8be2a08}, 0x94)
r7 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r7, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
umount2(&(0x7f0000000040)='.\x00', 0x2)
sendmsg$DCCPDIAG_GETSOCK(r3, &(0x7f0000000c80)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000c40)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="50020000130000022cbd7000ffdbdf252703027f4e204e20a9000000000000000100000002000000c9000000000000000800000012070000", @ANYRES32=0x0, @ANYBLOB="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"], 0x250}, 0x1, 0x0, 0x0, 0x40005}, 0x20)
close_range(r4, 0xffffffffffffffff, 0x200000000000000)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x1d, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="e50002000000000071113d00000000008510000002000000850000007d00000095000000000000009500a50500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)

21.870246736s ago: executing program 9 (id=2404):
setresgid(0xee00, 0xee01, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000002040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)
syz_fuse_handle_req(r0, &(0x7f0000008100)="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", 0x2000, &(0x7f0000000340)={&(0x7f0000000100)={0x50, 0x0, 0x0, {0x7, 0x28, 0x0, 0x5040a, 0x7fff}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004080)="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", 0x2049, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)={0x78, 0x0, 0xfffdfffffffffffa, {0x0, 0x6, 0x0, {0xfffffffffffffffc, 0x5, 0x400, 0xfffffffffffffffd, 0x0, 0xa, 0x8000003, 0xffffffff, 0x7b, 0x0, 0x80000000, 0x0, 0x0, 0x2, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
fchownat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0xee01, 0xffffffffffffffff, 0x1000)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

20.070669414s ago: executing program 8 (id=2405):
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0xfdfffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe8000000000"], 0xfdef)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ec}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={r1, 0x0, 0x2d, 0x0, @val=@netfilter={0xa, 0x1, 0x353a, 0x1}}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x4000, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

19.555726618s ago: executing program 9 (id=2407):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="0f8666f2a665f0ff0f0fc73666ba21003e0f01c5c4c1ed665a0aa00f06ea009000002c00c4c1b81516", 0x29}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

18.768950195s ago: executing program 8 (id=2412):
socket(0x1e, 0x1, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0x7, &(0x7f00000000c0)={0xf, 0x3, 0x7, 0x200}, 0x10)
io_uring_register$IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, &(0x7f0000000040), 0x3e)
syz_open_dev$sg(&(0x7f00000000c0), 0x6f5e, 0x2)
mount$nfs4(0x0, &(0x7f00000019c0)='.\x00', &(0x7f0000001a00), 0x10080, &(0x7f0000001a80)=ANY=[])
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x2, 0xd, &(0x7f0000000680)=ANY=[@ANYBLOB="18020000000000000000000000000000851000000100000095000000000000001800000020646c2500000000002020207b1af8ff00000000bd21ffff0000000007010000f8ffffffb502020008000000b70300000000000085000000a400000095"], &(0x7f0000000080)='syzkaller\x00', 0xa, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)

18.48123668s ago: executing program 37 (id=2412):
socket(0x1e, 0x1, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0x7, &(0x7f00000000c0)={0xf, 0x3, 0x7, 0x200}, 0x10)
io_uring_register$IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, &(0x7f0000000040), 0x3e)
syz_open_dev$sg(&(0x7f00000000c0), 0x6f5e, 0x2)
mount$nfs4(0x0, &(0x7f00000019c0)='.\x00', &(0x7f0000001a00), 0x10080, &(0x7f0000001a80)=ANY=[])
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x2, 0xd, &(0x7f0000000680)=ANY=[@ANYBLOB="18020000000000000000000000000000851000000100000095000000000000001800000020646c2500000000002020207b1af8ff00000000bd21ffff0000000007010000f8ffffffb502020008000000b70300000000000085000000a400000095"], &(0x7f0000000080)='syzkaller\x00', 0xa, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)

13.179343073s ago: executing program 9 (id=2418):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='configfs\x00', 0x16, 0x0)
io_setup(0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x10)
openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]})
r5 = getpid()
syz_pidfd_open(r5, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r3, 0x89f3, &(0x7f0000000d80)={'gre0\x00', &(0x7f0000000cc0)={'sit0\x00', <r6=>0x0, 0x10, 0x700, 0x3ff, 0x0, {{0x11, 0x4, 0x3, 0x5, 0x44, 0x66, 0x0, 0xfd, 0x2f, 0x0, @loopback, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@timestamp_prespec={0x44, 0x4, 0x45, 0x3, 0x6}, @timestamp_addr={0x44, 0x2c, 0x99, 0x1, 0x7, [{@broadcast, 0xa}, {@private=0xa010100, 0x1}, {@loopback, 0x40}, {@private=0xa010102, 0x7fffffff}, {@remote, 0x1000}]}]}}}}})
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x20, 0x16, &(0x7f0000000280)=ANY=[@ANYRES32=r0], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x76, '\x00', r6, @fallback=0x2d, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x3}, 0x867cd180e8be2a08}, 0x94)
r7 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r7, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
umount2(&(0x7f0000000040)='.\x00', 0x2)
sendmsg$DCCPDIAG_GETSOCK(r3, &(0x7f0000000c80)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000c40)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="50020000130000022cbd7000ffdbdf252703027f4e204e20a9000000000000000100000002000000c9000000000000000800000012070000", @ANYRES32=0x0, @ANYBLOB="0f00000021952c8ea0890ccfb2907f00000001000000090000004a000100c58fd799ab888c795a80fb696b5a1a0e73958036f446cf4f3e104e9f115f8173443cf071a358ca8c70526ed389fdd54c552c6c897422f488f3dff5d01ef67d5a4e65dc7e6dbd000015000100088e4fd4957f14736265da007788d59ccf00000065000100036a87af11569ee08b9dd3803f7e7efaa0673f87642c779d3bcda430b3b3544e7b667bb247e5b44c00d2b40c96c042ed503a39a2ec7a390894b2f9f1bdf359cefc2fa155870941ef3fce4f4b26d2dae3aa0c721eca660b42ae51e6f64fb3f0836f60a5ecf03417574d14da787bcc105d36000000360001008eb2ef05e956ec604c48d993769339650af58d0a1f0ccdcc0c4329ee87bedd3158f252aa2de557628e4f632e44b4762c2a570000ff000100b47c5479f02d3d075c448d0958b149f7107e77009cd9304660f0ce94d10ac228124d5da3ca91c48eb21e4b86dbdad2baa462905230cc8039019d076b31469660ce5f4de309d3bc4ac4042dd783e70e1bcb78d424034fc67c542256e87917eb085ce63d6d3fe267673e2fc976db66baf920115a409892a4f9091ddfd7f00d7bb5602717c86bc327262d0880735b4056af57bc5693c92d01fe8818cdf8c9b252200f12238a944ad4d94fffb693fc59124dec07966d0d2d7fc418fb51998edacec1a4a6f5f8f64ff021bc66c833148f7a510d616ee0460d866d9de23dc457ee3deb17ef7f6d73323b3d70d0f3d908ec9815aae74c768885ac28815701b2"], 0x250}, 0x1, 0x0, 0x0, 0x40005}, 0x20)
close_range(r4, 0xffffffffffffffff, 0x200000000000000)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x1d, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="e50002000000000071113d00000000008510000002000000850000007d00000095000000000000009500a50500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)

10.674027658s ago: executing program 9 (id=2422):
kexec_load(0x3, 0x1, &(0x7f00000005c0)=[{&(0x7f0000000100), 0x0, 0x5, 0xffffffff}], 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000003c00)={0x0, 0x0, &(0x7f0000000700)=[{0x0}, {&(0x7f0000000740)}], 0x2}, 0x41)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x82, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000007640)=[{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000740)="bd9c629b909dddebc0508bf412865663aded7919352b141faa7dc00680ce5a44ff1ed1c813c6c1e58e28c509cd269d0e79fff4d2ea4c1da69fa672c4f5eb15788aa929e9f5c94e443cf68a1759ee805958a7c76c8c7f11a39ea32c019c2f2c8cce48d92d659f623081974c0135dc1fe2a057f725", 0x74}], 0x1, &(0x7f00000008c0)=[@iv={0x68, 0x117, 0x2, 0x50, "bd19a432ebf20eb0a0ee39d005e869fe74b9842d9c92be0054aa20f9dbfeb8e59fa49c486a1a51c45c98c886185e506d1cf93255718fc79d6b6d1d434c678807c5ab4264c8ba94065d11d8ee27dd16f4"}, @assoc={0x18, 0x117, 0x4, 0x6}], 0x80, 0x40800}, {0x0, 0x0, &(0x7f0000003900)=[{&(0x7f0000000b40)="86545d2157646172b815818bfd0e1457556266898579380233e0e3853e4a118a5a2bcc52eeea6b2dc4fc32c3f81f9b1d06cd", 0x32}, {&(0x7f0000000c40)="176d6b3905505e2a41391bf6fd66d8ad4ebc86e07694005204b0151bfa8dc581a5be209d8850a950791f10f76de79651272a11f6d7267276ff1596a47826a90a0b74b425d8ff2bbea5c5732f69a908c45b4b348abc24d2cd2031a9508ef8e3594bd12ebc38c466f76d6ff3618471f4f6574e1043766375eb889750ca25429f976089462bf1b689280ebc67640f4534eef4b7ffd85963bc5d8b114670c00f76cbdd722662dce5fc58daf323bf987ef7d646a99794c02b62b30e189691c4be9094", 0xc0}, {&(0x7f0000000d40)="7edb39aa76e39c9fc185dd49e1d028ba5e90ec3bb54d3c486f189f406945a495fe7b4ad51446c162f581368e4d711db9add53f7917e1dc55ae9543ea21d63f85d9a5a996f6fa32ead42a9b7e97a7ae1b4a8f76ff9321b4ec76606f9709bb57eda4e8c45e797ff2cabc03a3d03ca57b5239833610", 0x74}], 0x3, 0x0, 0x0, 0xc0}], 0x2, 0x48040)
r2 = socket$alg(0x26, 0x5, 0x0)
syz_open_dev$dri(&(0x7f0000000180), 0x1, 0xc0400)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

8.788595773s ago: executing program 9 (id=2431):
set_mempolicy(0x3, &(0x7f0000000000)=0x7, 0x7)
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, 0x0, 0x20008000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c00000002000000000000000100000d0000000000000000030000000000000000000001ff00003e400000000000000000000003"], 0x0, 0x56}, 0x28)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x44, r0, 0x7, 0x0, 0x25dfdbfe, {}, [@ETHTOOL_A_LINKMODES_OURS={0x18, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x8, 0x4, '\x00\x00\x00\x00'}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x9}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x44}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000003e40)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0x3, 0xc, &(0x7f0000000bc0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x98}}]}, &(0x7f0000000580)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sched_cls=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000}, 0x94)
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSPTLCK(r6, 0x40045431, &(0x7f0000000080))
r7 = ioctl$TIOCGPTPEER(r6, 0x5441, 0x6)
ioctl$TIOCCONS(r7, 0x541d)
close_range(r5, 0xffffffffffffffff, 0x0)

8.015059451s ago: executing program 38 (id=2431):
set_mempolicy(0x3, &(0x7f0000000000)=0x7, 0x7)
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, 0x0, 0x20008000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c00000002000000000000000100000d0000000000000000030000000000000000000001ff00003e400000000000000000000003"], 0x0, 0x56}, 0x28)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x44, r0, 0x7, 0x0, 0x25dfdbfe, {}, [@ETHTOOL_A_LINKMODES_OURS={0x18, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x8, 0x4, '\x00\x00\x00\x00'}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x9}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x44}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000003e40)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0x3, 0xc, &(0x7f0000000bc0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x98}}]}, &(0x7f0000000580)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sched_cls=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000}, 0x94)
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSPTLCK(r6, 0x40045431, &(0x7f0000000080))
r7 = ioctl$TIOCGPTPEER(r6, 0x5441, 0x6)
ioctl$TIOCCONS(r7, 0x541d)
close_range(r5, 0xffffffffffffffff, 0x0)

4.305635456s ago: executing program 3 (id=2445):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000280)='./bus\x00', 0x0, 0x0, 0x1, 0x0, &(0x7f0000000080))
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x210a055, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x4002, 0x0, 0x1, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c2)
mknodat(0xffffffffffffff9c, &(0x7f0000000180)='./file0/file1\x00', 0x8000, 0x5)
mount$overlay(0x0, &(0x7f0000000400)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
mount$overlay(0x0, &(0x7f0000000340)='./bus\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000000)={[{@lowerdir={'lowerdir', 0x3d, './bus'}}, {@workdir={'workdir', 0x3d, './file1'}}]})
syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f00000002c0)='./bus\x00', 0x322020, &(0x7f0000000100)=ANY=[], 0x1, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x7e6421273b41d523)
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000140)={0x9b9c})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x72, 0x0, 0x7fff0000}]})

4.142280014s ago: executing program 0 (id=2446):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000640)={0x0, 0x48}, 0x1, 0x0, 0x0, 0x40050}, 0x2040000)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000280), 0x13f, 0x2}}, 0x20)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000680)=ANY=[@ANYBLOB="3800000042000100fffffffffddbdf250200000004003880100001800c00c8000200000000000000100004800400c98008003500", @ANYRES32, @ANYBLOB="89bfc7684cf54df7196137f2c36c07ae6dde7697856d7c704e743b57002456734348d6042c7ebe17aad5fd1904a7a12e4718c26e4083fad1cb85fd9077e0b91987b1df57ebd0de93733e577533d9"], 0x38}, 0x1, 0x0, 0x0, 0x8800}, 0x4040)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x9}, [@call={0x85, 0x0, 0x0, 0xbc}]}, &(0x7f0000000180)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000740), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x1f, 0xc, &(0x7f0000000600)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000100)="f257a8ea7bc273dfaeab968586dd", 0x2a, 0x0, &(0x7f0000000200)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @link_local}, 0x14)
sendmsg$ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f00000008c0)=ANY=[@ANYRES32, @ANYBLOB="14"], 0x17c}, 0x1, 0x0, 0x0, 0x4008004}, 0x20004810)
r3 = socket$alg(0x26, 0x5, 0x0)
syz_open_procfs(0x0, &(0x7f00000001c0)='auxv\x00')
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000280)="2c385a7af3", 0x5)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_FRAME(r5, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r6, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r7, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x8044)

4.094454197s ago: executing program 3 (id=2447):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000940)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r4 = accept$alg(r3, 0x0, 0x0)
sendmsg$alg(r4, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
write$binfmt_script(r4, &(0x7f0000000600), 0xfec8)
recvmmsg(r4, &(0x7f00000008c0)=[{{&(0x7f00000000c0)=@pptp={0x18, 0x2, {0x0, @initdev}}, 0x80, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/200, 0xc8}, {&(0x7f0000000140)=""/9, 0x9}, {&(0x7f0000000300)=""/225, 0xe1}, {&(0x7f0000000000)=""/54, 0x36}, {&(0x7f0000000440)=""/123, 0x7b}, {&(0x7f00000004c0)=""/203, 0xcb}], 0x6, &(0x7f0000000dc0)=""/123, 0x7b, 0x2000000}}], 0x1, 0xcb, 0x0)

4.068724199s ago: executing program 2 (id=2448):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f00000001c0)=ANY=[], 0x8)
connect$inet6(r0, &(0x7f00000004c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000240)="a413c8be1b78d019fa39dd7dad5fb73953b58ad06811bf34ca2cb9893efc46987b815bc016d0e32c62448fcb57e83d87aaff432e67f3a1143ecd707dfa33d05b81031ce10a4e598a587f166efc6b5dee1904aefd2584d1da9678f0", 0x5b}], 0x1)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)='bridge0\x00', 0x10)
socket$key(0xf, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
r2 = syz_open_dev$dri(0x0, 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GET_LEASE(r2, 0xc01064c8, 0x0)
ioctl$DRM_IOCTL_MODE_GETPROPERTY(r2, 0xc04064aa, &(0x7f00000003c0)={0x0, 0x0})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ptrace$ARCH_SHSTK_STATUS(0x1e, r1, 0x0, 0x5005)
open(&(0x7f00000000c0)='./file0\x00', 0x210102, 0x88)
openat$fb0(0xffffffffffffff9c, &(0x7f00000001c0), 0x40800, 0x0)
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r5, 0x0, 0x482, &(0x7f0000000040)={0x84, @broadcast, 0x4e21, 0x3, 'lc\x00', 0x35, 0x10000004, 0xa}, 0x2c)
r6 = socket$kcm(0xa, 0x2, 0x0)
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADDDEST(r7, 0x0, 0x487, &(0x7f0000000000)={{0x84, @rand_addr=0x64010100, 0x4e24, 0x3, 'lc\x00', 0x8, 0x1, 0x55}, {@dev={0xac, 0x14, 0x14, 0x38}, 0x4e23, 0x2, 0x0, 0x12d5c, 0x12d4c}}, 0x44)
sendmsg$sock(r6, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev, 0xfffffeec}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0)
sendto$inet6(r0, &(0x7f0000000300), 0x1f, 0x3b00, 0x0, 0xfffffffffffffdfd)

3.916983516s ago: executing program 0 (id=2449):
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x804e20}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r4, 0x8983, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r5, 0x10e, 0xc, 0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r6, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000805}, 0x8000)
bind$inet(r1, &(0x7f0000000200)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x0)

2.826024618s ago: executing program 0 (id=2450):
kexec_load(0x3, 0x1, &(0x7f00000005c0)=[{&(0x7f0000000100), 0x0, 0x5, 0xffffffff}], 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000003c00)={0x0, 0x0, &(0x7f0000000700)=[{0x0}, {&(0x7f0000000740)}], 0x2}, 0x41)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x82, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000007640)=[{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000740)="bd9c629b909dddebc0508bf412865663aded7919352b141faa7dc00680ce5a44ff1ed1c813c6c1e58e28c509cd269d0e79fff4d2ea4c1da69fa672c4f5eb15788aa929e9f5c94e443cf68a1759ee805958a7c76c8c7f11a39ea32c019c2f2c8cce48d92d659f623081974c0135dc1fe2a057f725", 0x74}], 0x1, &(0x7f00000008c0)=[@iv={0x68, 0x117, 0x2, 0x50, "bd19a432ebf20eb0a0ee39d005e869fe74b9842d9c92be0054aa20f9dbfeb8e59fa49c486a1a51c45c98c886185e506d1cf93255718fc79d6b6d1d434c678807c5ab4264c8ba94065d11d8ee27dd16f4"}, @assoc={0x18, 0x117, 0x4, 0x6}], 0x80, 0x40800}, {0x0, 0x0, &(0x7f0000003900)=[{&(0x7f0000000b40)="86545d2157646172b815818bfd0e1457556266898579380233e0e3853e4a118a5a2bcc52eeea6b2dc4fc32c3f81f9b1d06cd", 0x32}, {0x0}, {&(0x7f0000000c40)="176d6b3905505e2a41391bf6fd66d8ad4ebc86e07694005204b0151bfa8dc581a5be209d8850a950791f10f76de79651272a11f6d7267276ff1596a47826a90a0b74b425d8ff2bbea5c5732f69a908c45b4b348abc24d2cd2031a9508ef8e3594bd12ebc38c466f76d6ff3618471f4f6574e1043766375eb889750ca25429f976089462bf1b689280ebc67640f4534eef4b7ffd85963bc5d8b114670c00f76cbdd722662dce5fc58daf323bf987ef7d646a99794c02b62b30e189691c4be9094", 0xc0}, {&(0x7f0000000d40)="7edb39aa76e39c9fc185dd49e1d028ba5e90ec3bb54d3c486f189f406945a495fe7b4ad51446c162f581368e4d711db9add53f7917e1dc55ae9543ea21d63f85d9a5a996f6fa32ead42a9b7e97a7ae1b4a8f76ff9321b4ec76606f9709bb57eda4e8c45e797ff2cabc03a3d03ca57b5239833610", 0x74}], 0x4, 0x0, 0x0, 0xc0}], 0x2, 0x48040)
r2 = socket$alg(0x26, 0x5, 0x0)
syz_open_dev$dri(&(0x7f0000000180), 0x1, 0xc0400)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

2.775383527s ago: executing program 0 (id=2451):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xe, 0x4, 0x8, 0x1}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b7040000dd010000070000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000040)={r4, r1, 0x25, 0x0, @void}, 0x10)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000001880)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x1, 0x24, 0x0, 0x0, 0x5, 0x11, 0x0, @empty, @local}, {0x0, 0x4e20, 0x10, 0x0, @gue={{0x2, 0x1, 0x0, 0x4, 0x0, @val=0x80}}}}}}}, 0x0)

2.734513907s ago: executing program 2 (id=2452):
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$kcm(0x11, 0x2, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB], 0x48)
r0 = syz_io_uring_setup(0x34b8, &(0x7f0000000540)={0x0, 0x8550, 0xc00, 0x3, 0xe}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
syz_io_uring_submit(r1, r2, r3, &(0x7f0000000280)=@IORING_OP_WRITE={0x17, 0x0, 0x6000, @fd_index=0x7, 0x8, 0x0, 0x0, 0x14, 0x1})
io_uring_enter(r0, 0x1, 0x1, 0x1, 0x0, 0x0)

2.675949508s ago: executing program 2 (id=2453):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
ioprio_set$pid(0x2, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x533, &(0x7f0000000b00)="$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")

2.673893915s ago: executing program 3 (id=2454):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x36, &(0x7f0000000280)=ANY=[], 0x8)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r1, 0x0, 0x0)
setsockopt$inet_tcp_TLS_TX(r1, 0x6, 0x1, 0x0, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r2, &(0x7f0000000140)={0x28, 0x0, 0x2710, @local}, 0x10)
setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r2, 0x28, 0x2, &(0x7f00000000c0)=0x33, 0x8)
listen(r2, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, &(0x7f0000000080)={0x28, 0x0, 0x2710}, 0x10)
r4 = accept4(r2, 0x0, 0x0, 0x0)
sendto(r4, &(0x7f0000000000), 0xfeb5, 0x0, 0x0, 0x0)
recvfrom(r3, &(0x7f00000001c0)=""/62, 0xfeb5, 0x10120, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
setsockopt$packet_int(r0, 0x107, 0x14, 0x0, 0x0)

2.644974155s ago: executing program 2 (id=2455):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x6, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000680)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000300)={@flat=@weak_binder={0x77622a85, 0x100a, 0x8000000000}, @flat=@weak_binder={0x77622a85, 0x1100, 0x3}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})
mmap$binder(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x11, r0, 0x10000000000)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000580)='m'})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000004a40)={0x44, 0x0, &(0x7f00000049c0)=[@transaction={0x40406300, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000240)={0x1, &(0x7f0000000280)=[{0x6, 0xfe, 0x0, 0x7fff7ffc}]})
close_range(r4, 0xffffffffffffffff, 0x0)

2.623097327s ago: executing program 2 (id=2456):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001800)=@RTM_NEWNSID={0x14, 0x58, 0x821, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4001}, 0x20040040)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETSW2(r4, 0x402c542c, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x54, r7, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @loopback}}, {0x14, 0x2, @in={0x2, 0x0, @multicast2}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)
sendmsg$TIPC_NL_KEY_SET(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={0x58, r7, 0x1, 0x70bd2d, 0x0, {}, [@TIPC_NLA_NODE={0x44, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x3c, 0x4, {'gcm(aes)\x00', 0x14, "e3de3d7b4cd07ec3ee777de774fc7987cca41989"}}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x4}, 0x4000004)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, 0x0, 0x4000004)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000e40), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r8, 0x0, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff, 0xf, 0x0, @void}, 0x10)
ioctl$TCSETS(r4, 0x5402, &(0x7f0000000140)={0x6, 0x5, 0xfffffffb, 0x3, 0xd, "4e51d01d5236922570b08e53c9119bbedc290f"})

1.701861652s ago: executing program 3 (id=2457):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000640)={0x0, 0x48}, 0x1, 0x0, 0x0, 0x40050}, 0x2040000)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000280), 0x13f, 0x2}}, 0x20)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000680)=ANY=[@ANYBLOB="3800000042000100fffffffffddbdf250200000004003880100001800c00c8000200000000000000100004800400c98008003500", @ANYRES32, @ANYBLOB="89bfc7684cf54df7196137f2c36c07ae6dde7697856d7c704e743b57002456734348d6042c7ebe17aad5fd1904a7a12e4718c26e4083fad1cb85fd9077e0b91987b1df57ebd0de93733e577533d9"], 0x38}, 0x1, 0x0, 0x0, 0x8800}, 0x4040)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x9}, [@call={0x85, 0x0, 0x0, 0xbc}]}, &(0x7f0000000180)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000740), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x1f, 0xc, &(0x7f0000000600)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000100)="f257a8ea7bc273dfaeab968586dd", 0x2a, 0x0, &(0x7f0000000200)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @link_local}, 0x14)
sendmsg$ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f00000008c0)=ANY=[@ANYRES32, @ANYBLOB="14"], 0x17c}, 0x1, 0x0, 0x0, 0x4008004}, 0x20004810)
r3 = socket$alg(0x26, 0x5, 0x0)
syz_open_procfs(0x0, &(0x7f00000001c0)='auxv\x00')
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000280)="2c385a7af3", 0x5)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_FRAME(r5, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r6, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r7, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x8044)

1.103242384s ago: executing program 2 (id=2458):
r0 = socket$inet6(0xa, 0x3, 0x2f)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(r1, 0xb, 0x0, &(0x7f0000000280))
connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(0xffffffffffffffff, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000700)=@base={0x8, 0x4, 0x4, 0x4}, 0x50)
r4 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{}, &(0x7f0000000300), &(0x7f0000000340)}, 0x20)

948.60601ms ago: executing program 3 (id=2459):
kexec_load(0x3, 0x1, &(0x7f00000005c0)=[{&(0x7f0000000100), 0x0, 0x5, 0xffffffff}], 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000003c00)={0x0, 0x0, &(0x7f0000000700)=[{0x0}, {&(0x7f0000000740)}], 0x2}, 0x41)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x82, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000007640)=[{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000740)="bd9c629b909dddebc0508bf412865663aded7919352b141faa7dc00680ce5a44ff1ed1c813c6c1e58e28c509cd269d0e79fff4d2ea4c1da69fa672c4f5eb15788aa929e9f5c94e443cf68a1759ee805958a7c76c8c7f11a39ea32c019c2f2c8cce48d92d659f623081974c0135dc1fe2a057f725", 0x74}], 0x1, &(0x7f00000008c0)=[@iv={0x68, 0x117, 0x2, 0x50, "bd19a432ebf20eb0a0ee39d005e869fe74b9842d9c92be0054aa20f9dbfeb8e59fa49c486a1a51c45c98c886185e506d1cf93255718fc79d6b6d1d434c678807c5ab4264c8ba94065d11d8ee27dd16f4"}, @assoc={0x18, 0x117, 0x4, 0x6}], 0x80, 0x40800}, {0x0, 0x0, &(0x7f0000003900)=[{&(0x7f0000000b40)="86545d2157646172b815818bfd0e1457556266898579380233e0e3853e4a118a5a2bcc52eeea6b2dc4fc32c3f81f9b1d06cd", 0x32}, {0x0}, {&(0x7f0000000c40)="176d6b3905505e2a41391bf6fd66d8ad4ebc86e07694005204b0151bfa8dc581a5be209d8850a950791f10f76de79651272a11f6d7267276ff1596a47826a90a0b74b425d8ff2bbea5c5732f69a908c45b4b348abc24d2cd2031a9508ef8e3594bd12ebc38c466f76d6ff3618471f4f6574e1043766375eb889750ca25429f976089462bf1b689280ebc67640f4534eef4b7ffd85963bc5d8b114670c00f76cbdd722662dce5fc58daf323bf987ef7d646a99794c02b62b30e189691c4be9094", 0xc0}, {&(0x7f0000000d40)="7edb39aa76e39c9fc185dd49e1d028ba5e90ec3bb54d3c486f189f406945a495fe7b4ad51446c162f581368e4d711db9add53f7917e1dc55ae9543ea21d63f85d9a5a996f6fa32ead42a9b7e97a7ae1b4a8f76ff9321b4ec76606f9709bb57eda4e8c45e797ff2cabc03a3d03ca57b5239833610", 0x74}], 0x4, 0x0, 0x0, 0xc0}], 0x2, 0x48040)
r2 = socket$alg(0x26, 0x5, 0x0)
syz_open_dev$dri(&(0x7f0000000180), 0x1, 0xc0400)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

948.07468ms ago: executing program 3 (id=2460):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='configfs\x00', 0x16, 0x0)
io_setup(0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x10)
openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]})
r5 = getpid()
syz_pidfd_open(r5, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r3, 0x89f3, &(0x7f0000000d80)={'gre0\x00', &(0x7f0000000cc0)={'sit0\x00', <r6=>0x0, 0x10, 0x700, 0x3ff, 0x0, {{0x11, 0x4, 0x3, 0x5, 0x44, 0x66, 0x0, 0xfd, 0x2f, 0x0, @loopback, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@timestamp_prespec={0x44, 0x4, 0x45, 0x3, 0x6}, @timestamp_addr={0x44, 0x2c, 0x99, 0x1, 0x7, [{@broadcast, 0xa}, {@private=0xa010100, 0x1}, {@loopback, 0x40}, {@private=0xa010102, 0x7fffffff}, {@remote, 0x1000}]}]}}}}})
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x20, 0x16, &(0x7f0000000280)=ANY=[@ANYRES32=r0], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x76, '\x00', r6, @fallback=0x2d, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x3}, 0x867cd180e8be2a08}, 0x94)
r7 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r7, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
umount2(&(0x7f0000000040)='.\x00', 0x2)
sendmsg$DCCPDIAG_GETSOCK(r3, &(0x7f0000000c80)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000c40)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="50020000130000022cbd7000ffdbdf252703027f4e204e20a9000000000000000100000002000000c9000000000000000800000012070000", @ANYRES32=0x0, @ANYBLOB="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"], 0x250}, 0x1, 0x0, 0x0, 0x40005}, 0x20)
close_range(r4, 0xffffffffffffffff, 0x200000000000000)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x1d, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="e50002000000000071113d00000000008510000002000000850000007d00000095000000000000009500a50500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)

418.345128ms ago: executing program 0 (id=2461):
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$kcm(0x11, 0x2, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB], 0x48)
r0 = syz_io_uring_setup(0x34b8, &(0x7f0000000540)={0x0, 0x8550, 0xc00, 0x3, 0xe}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
syz_io_uring_submit(r1, r2, r3, &(0x7f0000000280)=@IORING_OP_WRITE={0x17, 0x0, 0x6000, @fd_index=0x7, 0x8, 0x0, 0x0, 0x14, 0x1})
io_uring_enter(r0, 0x1, 0x1, 0x1, 0x0, 0x0)

0s ago: executing program 0 (id=2462):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000940)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r4 = accept$alg(r3, 0x0, 0x0)
sendmsg$alg(r4, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
write$binfmt_script(r4, &(0x7f0000000600), 0xfec8)
recvmmsg(r4, &(0x7f00000008c0)=[{{&(0x7f00000000c0)=@pptp={0x18, 0x2, {0x0, @initdev}}, 0x80, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/200, 0xc8}, {&(0x7f0000000140)=""/9, 0x9}, {&(0x7f0000000300)=""/225, 0xe1}, {&(0x7f0000000000)=""/54, 0x36}, {&(0x7f0000000440)=""/123, 0x7b}, {&(0x7f00000004c0)=""/203, 0xcb}], 0x6, &(0x7f0000000dc0)=""/123, 0x7b, 0x2000000}}], 0x1, 0xcb, 0x0)

kernel console output (not intermixed with test programs):

][ T1332] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  113.036238][ T6372] loop0: detected capacity change from 0 to 1024
[  113.110153][ T6372] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  113.132001][ T6372] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  113.136555][ T6372] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  113.136584][ T6372] EXT4-fs (loop0): This should not happen!! Data will be lost
[  113.136584][ T6372] 
[  113.136597][ T6372] EXT4-fs (loop0): Total free blocks count 0
[  113.136610][ T6372] EXT4-fs (loop0): Free/Dirty block details
[  113.142364][ T6372] EXT4-fs (loop0): free_blocks=68451041280
[  113.142385][ T6372] EXT4-fs (loop0): dirty_blocks=80
[  113.142397][ T6372] EXT4-fs (loop0): Block reservation details
[  113.142408][ T6372] EXT4-fs (loop0): i_reserved_data_blocks=5
[  113.310255][ T5939] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 64 with error 28
[  113.320391][ T6372] EXT4-fs warning (device loop0): ext4_evict_inode:195: inode #15: comm syz.0.180: data will be lost
[  115.989654][ T6422] fuse: Unknown parameter 'user_id00000000000000000000'
[  117.584847][  T125] workqueue: work func io_tctx_fallback_work enqueued on deprecated workqueue. Use system_{percpu|dfl}_wq instead.
[  119.862930][ T6459] netlink: 20 bytes leftover after parsing attributes in process `syz.0.213'.
[  121.265310][ T6474] fuse: fd is not a fuse device
[  121.698567][ T5805] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  124.257881][ T6516] netlink: 156 bytes leftover after parsing attributes in process `syz.4.229'.
[  124.488255][ T6522] Zero length message leads to an empty skb
[  127.880765][ T1348] ieee802154 phy0 wpan0: encryption failed: -22
[  127.880810][ T1348] ieee802154 phy1 wpan1: encryption failed: -22
[  131.463365][ T6609] netlink: 156 bytes leftover after parsing attributes in process `syz.1.256'.
[  131.488649][ T6613] fuse: fd is not a fuse device
[  132.409934][ T5611] Bluetooth: Frame is too long (len 18, expected len 8)
[  134.475762][ T5611] Bluetooth: Frame is too long (len 18, expected len 8)
[  136.751387][ T5611] Bluetooth: Frame is too long (len 18, expected len 8)
[  139.682203][ T6715] fuse: Unknown parameter '0x0000000000000004'
[  140.143963][ T5611] Bluetooth: Frame is too long (len 18, expected len 8)
[  141.608476][ T6746] netlink: 156 bytes leftover after parsing attributes in process `syz.4.306'.
[  141.831102][ T6752] overlayfs: failed to clone upperpath
[  142.348456][ T6758] fuse: Unknown parameter '0x0000000000000003'
[  144.200055][ T6775] netlink: 'syz.2.316': attribute type 1 has an invalid length.
[  144.200068][ T6775] netlink: 'syz.2.316': attribute type 2 has an invalid length.
[  145.755201][ T6791] fuse: Unknown parameter '0x0000000000000004'
[  147.428994][ T6811] warning: `syz.0.324' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  148.817708][ T5611] Bluetooth: Frame is too long (len 18, expected len 8)
[  151.199802][ T6875] fuse: Unknown parameter '0x0000000000000003'
[  157.834700][ T6990] netlink: 24 bytes leftover after parsing attributes in process `syz.2.386'.
[  159.637121][  T820] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  159.908195][  T820] usb 1-1: config 128 has an invalid interface number: 148 but max is 0
[  159.908222][  T820] usb 1-1: config 128 has no interface number 0
[  159.908252][  T820] usb 1-1: config 128 interface 148 altsetting 9 endpoint 0x7 has invalid wMaxPacketSize 0
[  159.908274][  T820] usb 1-1: config 128 interface 148 altsetting 9 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  159.908301][  T820] usb 1-1: config 128 interface 148 has no altsetting 0
[  159.910061][  T820] usb 1-1: New USB device found, idVendor=0cf3, idProduct=e019, bcdDevice=fb.4f
[  159.910086][  T820] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  159.910105][  T820] usb 1-1: Product: syz
[  159.910118][  T820] usb 1-1: Manufacturer: syz
[  159.910131][  T820] usb 1-1: SerialNumber: syz
[  159.962623][ T5611] Bluetooth: Frame is too long (len 18, expected len 8)
[  160.567559][  T820] usb 1-1: USB disconnect, device number 3
[  163.581212][ T5611] Bluetooth: Frame is too long (len 18, expected len 8)
[  166.079097][ T5611] Bluetooth: Frame is too long (len 18, expected len 8)
[  166.134668][ T7107] overlayfs: failed to clone upperpath
[  167.591662][ T7120] netlink: 8 bytes leftover after parsing attributes in process `syz.4.431'.
[  167.591695][ T7120] netlink: 12 bytes leftover after parsing attributes in process `syz.4.431'.
[  167.632387][   T12] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  167.632540][   T12] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  167.632572][   T12] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  167.632600][   T12] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  171.307117][ T7157] 9pnet_virtio: no channels available for device syz
[  171.314933][ T7157] =======================================================
[  171.314933][ T7157] WARNING: The mand mount option has been deprecated and
[  171.314933][ T7157]          and is ignored by this kernel. Remove the mand
[  171.314933][ T7157]          option from the mount to silence this warning.
[  171.314933][ T7157] =======================================================
[  171.326138][ T7157] overlayfs: failed to clone lowerpath
[  173.401652][ T5611] Bluetooth: Frame is too long (len 18, expected len 8)
[  174.012057][ T7176] netlink: 8 bytes leftover after parsing attributes in process `syz.1.447'.
[  174.012089][ T7176] netlink: 12 bytes leftover after parsing attributes in process `syz.1.447'.
[  174.064604][ T5939] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  174.066130][ T5939] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  174.066151][ T5939] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  174.066167][ T5939] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  174.068428][ T7179] netlink: 'syz.4.449': attribute type 1 has an invalid length.
[  174.068439][ T7179] netlink: 'syz.4.449': attribute type 2 has an invalid length.
[  174.069292][ T5939] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  174.069326][ T5939] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  176.008516][ T7173] Bluetooth: hci2: command 0x0406 tx timeout
[  176.008653][ T7173] Bluetooth: hci4: command 0x0406 tx timeout
[  176.041135][ T7172] Bluetooth: hci1: command 0x0406 tx timeout
[  176.041162][ T7172] Bluetooth: hci0: command 0x0406 tx timeout
[  176.041180][ T7172] Bluetooth: hci3: command 0x0406 tx timeout
[  178.602927][ T7217] netlink: 156 bytes leftover after parsing attributes in process `syz.2.456'.
[  179.455515][ T7240] netlink: 'syz.0.467': attribute type 4 has an invalid length.
[  180.229743][ T7255] 9pnet_virtio: no channels available for device syz
[  180.245201][ T7255] overlayfs: failed to clone lowerpath
[  185.746514][ T7300] 9pnet_virtio: no channels available for device syz
[  185.765377][ T7300] overlayfs: failed to clone lowerpath
[  188.109387][ T7289] netlink: 156 bytes leftover after parsing attributes in process `syz.3.480'.
[  189.145929][ T1348] ieee802154 phy0 wpan0: encryption failed: -22
[  189.146007][ T1348] ieee802154 phy1 wpan1: encryption failed: -22
[  191.263051][ T7348] netlink: 156 bytes leftover after parsing attributes in process `syz.1.493'.
[  194.029629][ T7369] netlink: 24 bytes leftover after parsing attributes in process `syz.2.500'.
[  200.942838][ T7424] loop0: detected capacity change from 0 to 256
[  200.961979][ T7424] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  203.835652][ T7466] netlink: 24 bytes leftover after parsing attributes in process `syz.1.526'.
[  205.767589][ T7492] loop0: detected capacity change from 0 to 2048
[  206.074125][ T7492] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  206.074217][ T7492] ext4 filesystem being mounted at /85/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  208.227502][ T7514] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 345: padding at end of block bitmap is not set
[  208.236447][ T7514] EXT4-fs (loop0): Remounting filesystem read-only
[  210.100004][ T5604] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.887401][ T7592] loop0: detected capacity change from 0 to 256
[  210.910623][ T7592] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  214.743756][ T7670] netlink: 'syz.4.575': attribute type 4 has an invalid length.
[  219.954076][ T7730] fuse: fd is not a fuse device
[  222.538986][ T7760] netlink: 12 bytes leftover after parsing attributes in process `syz.4.596'.
[  227.236694][ T7803] tipc: Started in network mode
[  227.236859][ T7803] tipc: Node identity 7f000001, cluster identity 4711
[  227.237065][ T7803] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  233.352969][ T7852] tipc: Started in network mode
[  233.353154][ T7852] tipc: Node identity 7f000001, cluster identity 4711
[  233.353345][ T7852] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  235.214254][ T7866] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  240.464750][ T7905] tipc: Started in network mode
[  240.464777][ T7905] tipc: Node identity 7f000001, cluster identity 4711
[  240.465787][ T7905] tipc: Enabled bearer <udp:syz2>, priority 10
[  240.473516][ T7905] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  240.475378][ T7905] tipc: Enabled bearer <udp:syz0>, priority 10
[  241.957861][  T820] tipc: Node number set to 2130706433
[  242.449620][ T7924] netlink: 'syz.2.640': attribute type 4 has an invalid length.
[  247.677903][ T7965] tipc: Started in network mode
[  247.677931][ T7965] tipc: Node identity 7f000001, cluster identity 4711
[  247.678512][ T7965] tipc: Enabled bearer <udp:syz2>, priority 10
[  247.686258][ T7965] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  247.687182][ T7965] tipc: Enabled bearer <udp:syz0>, priority 10
[  248.727119][ T5724] tipc: Node number set to 2130706433
[  249.168721][ T7979] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  249.175476][ T7979] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  250.550966][ T7989] netlink: 'syz.2.657': attribute type 4 has an invalid length.
[  251.010961][ T1348] ieee802154 phy0 wpan0: encryption failed: -22
[  251.011038][ T1348] ieee802154 phy1 wpan1: encryption failed: -22
[  251.067904][ T7990] netlink: 24 bytes leftover after parsing attributes in process `syz.4.656'.
[  251.589998][ T8004] tipc: Started in network mode
[  251.590150][ T8004] tipc: Node identity 7f000001, cluster identity 4711
[  251.590398][ T8004] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  251.705202][ T8004] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  252.880674][ T8012] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  254.601626][ T8024] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  258.595639][ T8056] fuse: fd is not a fuse device
[  260.521183][ T8079] netlink: 'syz.2.684': attribute type 4 has an invalid length.
[  264.458839][ T8119] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  264.465502][ T8119] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  265.416200][ T8122] netlink: 12 bytes leftover after parsing attributes in process `syz.2.697'.
[  267.677123][ T8161] fuse: fd is not a fuse device
[  268.299240][ T8173] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  268.366354][ T8173] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  270.005647][ T8182] netlink: 'syz.3.714': attribute type 4 has an invalid length.
[  270.147261][ T8179] netlink: 'syz.1.715': attribute type 4 has an invalid length.
[  274.742775][ T8222] netlink: 12 bytes leftover after parsing attributes in process `syz.2.730'.
[  274.744327][ T8223] netlink: 'syz.3.729': attribute type 1 has an invalid length.
[  274.744349][ T8223] netlink: 'syz.3.729': attribute type 2 has an invalid length.
[  274.968352][ T8230] netlink: 'syz.3.732': attribute type 4 has an invalid length.
[  279.797727][ T8279] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  280.519474][ T8285] fuse: Bad value for 'fd'
[  281.724181][ T5608] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  281.727165][ T5608] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  281.729382][ T5608] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  281.735814][ T5608] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  281.737828][ T5608] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  282.843849][ T8319] bridge0: port 2(bridge_slave_1) entered disabled state
[  282.844252][ T8319] bridge0: port 1(bridge_slave_0) entered disabled state
[  283.340179][ T8319] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  283.381812][ T8319] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  283.672751][ T8331] netlink: 12 bytes leftover after parsing attributes in process `syz.3.758'.
[  283.767524][ T5608] Bluetooth: hci5: command tx timeout
[  284.622759][ T8330] vlan2: entered promiscuous mode
[  284.622773][ T8330] batadv0: entered promiscuous mode
[  285.303414][   T13] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  286.393939][ T5608] Bluetooth: hci5: command tx timeout
[  286.542524][  T125] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  286.543388][  T125] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  286.543408][  T125] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  287.680980][ T1016] netdevsim netdevsim4 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  287.681002][ T1016] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  288.494008][ T5602] Bluetooth: hci5: command tx timeout
[  288.578841][ T1016] netdevsim netdevsim4 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  288.578862][ T1016] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  289.650389][ T1016] netdevsim netdevsim4 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  289.650409][ T1016] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  290.054034][ T1016] netdevsim netdevsim4 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  290.054068][ T1016] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  290.567064][ T5602] Bluetooth: hci5: command tx timeout
[  290.859473][ T8419] fuse: fd is not a fuse device
[  291.058944][ T1016] bridge_slave_1: left allmulticast mode
[  291.058969][ T1016] bridge_slave_1: left promiscuous mode
[  291.059141][ T1016] bridge0: port 2(bridge_slave_1) entered disabled state
[  291.787627][ T1016] bridge_slave_0: left allmulticast mode
[  291.787652][ T1016] bridge_slave_0: left promiscuous mode
[  291.787805][ T1016] bridge0: port 1(bridge_slave_0) entered disabled state
[  293.367608][ T1016] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  293.447592][ T1016] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  293.468593][ T1016] bond0 (unregistering): Released all slaves
[  293.507430][ T8432] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  293.551839][ T8304] bridge0: port 1(bridge_slave_0) entered blocking state
[  293.552081][ T8304] bridge0: port 1(bridge_slave_0) entered disabled state
[  293.552329][ T8304] bridge_slave_0: entered allmulticast mode
[  293.586635][ T8304] bridge_slave_0: entered promiscuous mode
[  293.602794][ T8304] bridge0: port 2(bridge_slave_1) entered blocking state
[  293.603036][ T8304] bridge0: port 2(bridge_slave_1) entered disabled state
[  293.603214][ T8304] bridge_slave_1: entered allmulticast mode
[  293.606547][ T8304] bridge_slave_1: entered promiscuous mode
[  294.772005][ T1016] tipc: Left network mode
[  294.781986][ T8454] netlink: 536 bytes leftover after parsing attributes in process `syz.1.791'.
[  294.822601][ T8304] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  294.844862][ T8304] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  294.863291][ T8456] fuse: fd is not a fuse device
[  295.971274][ T8304] team0: Port device team_slave_0 added
[  296.135275][ T8304] team0: Port device team_slave_1 added
[  296.211012][ T5265] 8021q: adding VLAN 0 to HW filter on device eth1
[  296.244088][ T8304] batman_adv: batadv0: Adding interface: batadv_slave_0
[  296.244103][ T8304] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  296.244128][ T8304] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  296.258188][ T8304] batman_adv: batadv0: Adding interface: batadv_slave_1
[  296.258203][ T8304] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  296.258225][ T8304] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  297.278576][ T8502] netlink: 24 bytes leftover after parsing attributes in process `syz.0.800'.
[  297.874648][ T8507] fuse: fd is not a fuse device
[  298.234186][ T8304] hsr_slave_0: entered promiscuous mode
[  298.300778][ T8304] hsr_slave_1: entered promiscuous mode
[  298.311946][ T8304] debugfs: 'hsr0' already exists in 'hsr'
[  298.311996][ T8304] Cannot create hsr debugfs directory
[  299.697093][ T1016] hsr_slave_0: left promiscuous mode
[  301.014006][ T1016] hsr_slave_1: left promiscuous mode
[  301.014690][ T1016] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  301.014707][ T1016] batman_adv: batadv0: Removing interface: batadv_slave_0
[  301.047948][ T1016] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  301.047968][ T1016] batman_adv: batadv0: Removing interface: batadv_slave_1
[  301.257669][ T1016] veth1_macvtap: left promiscuous mode
[  301.257729][ T1016] veth0_macvtap: left promiscuous mode
[  301.257877][ T1016] veth1_vlan: left promiscuous mode
[  301.257977][ T1016] veth0_vlan: left promiscuous mode
[  302.419715][ T8576] netlink: 24 bytes leftover after parsing attributes in process `syz.3.819'.
[  302.459530][ T1016] team0 (unregistering): Port device team_slave_1 removed
[  302.498883][ T1016] team0 (unregistering): Port device team_slave_0 removed
[  302.639254][ T5265] 8021q: adding VLAN 0 to HW filter on device eth2
[  303.854374][ T8304] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  303.901804][ T8304] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  303.910852][ T8304] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  303.957202][ T8304] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  303.961294][ T8304] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  304.023125][ T8304] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  304.040858][ T8304] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  304.066855][ T8304] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  304.398023][ T8304] 8021q: adding VLAN 0 to HW filter on device bond0
[  304.476419][ T8304] 8021q: adding VLAN 0 to HW filter on device team0
[  304.505250][ T1016] bridge0: port 1(bridge_slave_0) entered blocking state
[  304.505341][ T1016] bridge0: port 1(bridge_slave_0) entered forwarding state
[  304.547936][   T58] bridge0: port 2(bridge_slave_1) entered blocking state
[  304.548029][   T58] bridge0: port 2(bridge_slave_1) entered forwarding state
[  305.868974][ T5265] 8021q: adding VLAN 0 to HW filter on device eth3
[  309.650609][ T5265] 8021q: adding VLAN 0 to HW filter on device eth4
[  311.821580][ T8714] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  312.485999][ T1348] ieee802154 phy0 wpan0: encryption failed: -22
[  312.486080][ T1348] ieee802154 phy1 wpan1: encryption failed: -22
[  312.558957][ T8304] 8021q: adding VLAN 0 to HW filter on device batadv0
[  312.688775][ T8726] netlink: 8 bytes leftover after parsing attributes in process `syz.0.847'.
[  312.688810][ T8726] netlink: 12 bytes leftover after parsing attributes in process `syz.0.847'.
[  312.772427][  T125] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  312.772465][  T125] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  312.772493][  T125] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  314.459606][ T8304] veth0_vlan: entered promiscuous mode
[  314.500396][ T8304] veth1_vlan: entered promiscuous mode
[  314.610608][ T8304] veth0_macvtap: entered promiscuous mode
[  314.635711][ T8304] veth1_macvtap: entered promiscuous mode
[  314.693329][ T8304] batman_adv: batadv0: Interface activated: batadv_slave_0
[  314.721490][ T8304] batman_adv: batadv0: Interface activated: batadv_slave_1
[  314.759426][  T125] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  314.760947][  T125] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  314.761005][  T125] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  314.761035][  T125] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  315.135570][ T5939] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  315.135589][ T5939] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  315.247995][ T1541] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  315.248014][ T1541] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  317.799856][ T8796] process 'syz.2.869' launched './file1' with NULL argv: empty string added
[  319.221062][ T8818] netlink: 12 bytes leftover after parsing attributes in process `syz.0.875'.
[  321.879237][ T8859] netlink: 24 bytes leftover after parsing attributes in process `syz.0.880'.
[  322.979450][ T8872] tipc: Started in network mode
[  322.979518][ T8872] tipc: Node identity 7f000001, cluster identity 4711
[  322.982591][ T8872] tipc: Enabled bearer <udp:syz2>, priority 10
[  323.960150][ T8883] netlink: 'syz.1.884': attribute type 4 has an invalid length.
[  323.999382][   T43] tipc: Node number set to 2130706433
[  328.817365][ T8932] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  328.823851][ T8932] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  330.214141][ T8946] netlink: 'syz.3.898': attribute type 4 has an invalid length.
[  331.349195][ T8950] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  332.818927][ T8957] loop5: detected capacity change from 0 to 2048
[  332.862794][ T8957] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  332.862926][ T8957] ext4 filesystem being mounted at /13/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  333.829691][ T8988] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.902: bg 0: block 345: padding at end of block bitmap is not set
[  333.869793][ T8988] EXT4-fs (loop5): Remounting filesystem read-only
[  333.870402][ T8988] EXT4-fs warning (device loop5): ext4_xattr_inode_lookup_create:1609: inode #18: comm syz.5.902: cleanup dec ref error -117
[  334.689964][ T8304] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  334.874427][ T8998] netlink: 8 bytes leftover after parsing attributes in process `syz.5.911'.
[  334.874447][ T8998] netlink: 16 bytes leftover after parsing attributes in process `syz.5.911'.
[  334.879355][ T1541] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  335.120255][ T9007] nfs4: Unknown parameter 'no'
[  337.571182][ T9038] netlink: 'syz.1.912': attribute type 4 has an invalid length.
[  341.027860][ T9092] netlink: 'syz.2.934': attribute type 4 has an invalid length.
[  341.778731][ T9104] fuse: fd is not a fuse device
[  342.579557][ T9079] loop5: detected capacity change from 0 to 40427
[  342.586062][ T9079] F2FS-fs (loop5): invalid crc value
[  342.617007][ T9121] netlink: 12 bytes leftover after parsing attributes in process `syz.0.939'.
[  342.775964][ T9079] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  342.782624][ T9079] F2FS-fs (loop5): f2fs_disable_checkpoint starts, unusable: 0
[  342.782727][ T9079] F2FS-fs (loop5): f2fs_disable_checkpoint: call f2fs_write_checkpoint(), meta: 0, node: 0, data: 0
[  342.782787][ T9079] F2FS-fs (loop5): Start checkpoint disabled!
[  342.816543][ T9079] F2FS-fs (loop5): f2fs_disable_checkpoint finishes, err:0
[  342.825671][ T9079] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  343.980592][ T5843] kworker/u8:12: attempt to access beyond end of device
[  343.980592][ T5843] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  343.980695][ T5843] CPU: 1 UID: 0 PID: 5843 Comm: kworker/u8:12 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  343.980717][ T5843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  343.980727][ T5843] Workqueue: writeback wb_workfn (flush-7:5)
[  343.980772][ T5843] Call Trace:
[  343.980782][ T5843]  <TASK>
[  343.980790][ T5843]  dump_stack_lvl+0xe8/0x150
[  343.980815][ T5843]  f2fs_stop_checkpoint+0x3f9/0x5e0
[  343.980836][ T5843]  f2fs_write_end_io+0x124b/0x1710
[  343.980867][ T5843]  __submit_merged_bio+0x258/0x6a0
[  343.980885][ T5843]  ? rcu_is_watching+0x15/0xb0
[  343.980905][ T5843]  __submit_merged_write_cond+0x3c9/0x4e0
[  343.980937][ T5843]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  343.980969][ T5843]  ? folio_clear_dirty_for_io+0x1bf/0x810
[  343.981000][ T5843]  f2fs_write_data_pages+0x2a27/0x36f0
[  343.981037][ T5843]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  343.981064][ T5843]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  343.981104][ T5843]  ? rtlock_slowlock_locked+0xfb/0x3c20
[  343.981139][ T5843]  ? do_raw_spin_lock+0x12b/0x2f0
[  343.981159][ T5843]  ? __pfx_rtlock_slowlock_locked+0x10/0x10
[  343.981186][ T5843]  ? rcu_is_watching+0x15/0xb0
[  343.981204][ T5843]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  343.981226][ T5843]  do_writepages+0x338/0x560
[  343.981252][ T5843]  ? rt_mutex_slowunlock+0x4ee/0xa20
[  343.981275][ T5843]  ? rcu_is_watching+0x15/0xb0
[  343.981294][ T5843]  __writeback_single_inode+0x12e/0xf90
[  343.981317][ T5843]  writeback_sb_inodes+0x9db/0x1ab0
[  343.981339][ T5843]  ? rcu_is_watching+0x15/0xb0
[  343.981358][ T5843]  ? trace_irq_enable+0x3b/0x140
[  343.981385][ T5843]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  343.981422][ T5843]  ? rcu_is_watching+0x15/0xb0
[  343.981439][ T5843]  ? queue_io+0x2c2/0x450
[  343.981458][ T5843]  wb_writeback+0x41c/0xad0
[  343.981477][ T5843]  ? queue_io+0x211/0x450
[  343.981498][ T5843]  ? __pfx_wb_writeback+0x10/0x10
[  343.981515][ T5843]  ? rcu_is_watching+0x15/0xb0
[  343.981540][ T5843]  wb_workfn+0x437/0x10f0
[  343.981573][ T5843]  ? __pfx_wb_workfn+0x10/0x10
[  343.981596][ T5843]  ? hrtimer_start_range_ns_common+0x818/0xb90
[  343.981618][ T5843]  ? rcu_is_watching+0x15/0xb0
[  343.981637][ T5843]  ? do_raw_spin_lock+0x12b/0x2f0
[  343.981664][ T5843]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  343.981685][ T5843]  ? rcu_is_watching+0x15/0xb0
[  343.981701][ T5843]  ? process_one_work+0x8cd/0x12b0
[  343.981726][ T5843]  ? rcu_is_watching+0x15/0xb0
[  343.981743][ T5843]  ? lock_acquire+0x5f/0x350
[  343.981768][ T5843]  ? process_one_work+0x8cd/0x12b0
[  343.981792][ T5843]  ? rcu_is_watching+0x15/0xb0
[  343.981809][ T5843]  ? process_one_work+0x8cd/0x12b0
[  343.981834][ T5843]  ? process_one_work+0x8cd/0x12b0
[  343.981859][ T5843]  process_one_work+0x93a/0x12b0
[  343.981893][ T5843]  ? __pfx_process_one_work+0x10/0x10
[  343.981918][ T5843]  ? do_raw_spin_lock+0x12b/0x2f0
[  343.981941][ T5843]  ? assign_work+0x3cf/0x5d0
[  343.981968][ T5843]  worker_thread+0xb05/0x10d0
[  343.981985][ T5843]  ? rcu_is_watching+0x15/0xb0
[  343.982006][ T5843]  ? __kthread_parkme+0x71/0x1f0
[  343.982029][ T5843]  kthread+0x388/0x470
[  343.982050][ T5843]  ? __pfx_worker_thread+0x10/0x10
[  343.982066][ T5843]  ? __pfx_kthread+0x10/0x10
[  343.982087][ T5843]  ret_from_fork+0x514/0xb70
[  343.982111][ T5843]  ? __pfx_ret_from_fork+0x10/0x10
[  343.982132][ T5843]  ? __switch_to+0xc89/0x1420
[  343.982152][ T5843]  ? __pfx_kthread+0x10/0x10
[  343.982173][ T5843]  ret_from_fork_asm+0x1a/0x30
[  343.982205][ T5843]  </TASK>
[  343.986027][ T5843] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  345.090580][ T9162] loop5: detected capacity change from 0 to 2048
[  345.450619][ T9159] bridge0: port 2(bridge_slave_1) entered disabled state
[  345.451865][ T9159] bridge0: port 1(bridge_slave_0) entered disabled state
[  345.561181][ T9162] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  345.587088][ T9162] ext4 filesystem being mounted at /20/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  346.091070][ T9177] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.945: bg 0: block 345: padding at end of block bitmap is not set
[  346.094136][ T9177] EXT4-fs (loop5): Remounting filesystem read-only
[  346.094559][ T9177] EXT4-fs warning (device loop5): ext4_xattr_inode_lookup_create:1609: inode #18: comm syz.5.945: cleanup dec ref error -117
[  346.462179][ T9159] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  346.466693][ T9159] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  346.503748][ T8304] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  348.840309][ T9170] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  348.884992][ T5843] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  348.885024][ T5843] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  348.891082][ T5843] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  348.891107][ T5843] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  348.893628][ T5843] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  348.893656][ T5843] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  349.072133][ T9210] loop5: detected capacity change from 0 to 512
[  349.088038][ T9210] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  349.749861][ T9210] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  349.749953][ T9210] ext4 filesystem being mounted at /22/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  350.204365][   T37] audit: type=1800 audit(1781753873.275:3): pid=9229 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.962" name="bus" dev="loop5" ino=18 res=0 errno=0
[  351.103231][ T8304] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  351.325453][ T9249] nfs4: Unknown parameter 'no'
[  352.350421][ T9264] nfs4: Unknown parameter 'no'
[  356.480373][ T9307] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  361.839904][ T9356] fuse: fd is not a fuse device
[  364.205495][ T9390] nfs4: Unknown parameter 'no'
[  365.186545][ T9393] bridge0: port 2(bridge_slave_1) entered disabled state
[  365.197591][ T9393] bridge0: port 1(bridge_slave_0) entered disabled state
[  366.911953][ T9417] overlayfs: failed to clone lowerpath
[  366.917740][ T9393] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  366.923668][ T9393] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  369.294937][   T68] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  369.295175][   T68] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  369.295206][   T68] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  371.258149][ T9459] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1038'.
[  371.839290][ T9472] nfs4: Unknown parameter 'no'
[  373.797671][ T1348] ieee802154 phy0 wpan0: encryption failed: -22
[  373.797746][ T1348] ieee802154 phy1 wpan1: encryption failed: -22
[  374.480244][ T9494] nfs4: Unknown parameter 'no'
[  377.342453][ T9538] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1065'.
[  377.606323][ T9545] fuse: fd is not a fuse device
[  377.615810][ T9547] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1068'.
[  377.636037][ T9549] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1069'.
[  377.636057][ T9549] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1069'.
[  378.525296][ T9566] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  378.542859][ T9566] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[  378.542911][ T9566] overlayfs: failed to look up (tracing) for ino (-66)
[  378.895128][ T9576] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  378.898554][ T9576] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  379.728815][ T9586] fuse: fd is not a fuse device
[  379.879841][ T9589] nfs4: Unknown parameter 'no'
[  381.898172][ T9603] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1087'.
[  382.114069][ T9609] 9pnet_virtio: no channels available for device syz
[  382.138072][ T9609] overlayfs: failed to clone lowerpath
[  385.893050][ T9648] nfs4: Unknown parameter 'no'
[  386.701558][ T9655] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  386.884803][ T9655] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  387.509126][ T9657] netlink: 'syz.0.1106': attribute type 4 has an invalid length.
[  388.927044][ T5717] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  389.576710][ T9678] 9pnet_virtio: no channels available for device syz
[  389.578321][ T9678] overlayfs: failed to clone lowerpath
[  390.183038][ T5717] usb 6-1: config 0 has no interfaces?
[  390.183106][ T5717] usb 6-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b
[  390.183128][ T5717] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  390.210674][ T5717] usb 6-1: config 0 descriptor??
[  390.608537][ T5717] usb 6-1: USB disconnect, device number 2
[  391.580810][ T9708] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1121'.
[  391.698639][ T9712] 9p: Bad value for 'rfdno'
[  391.737371][ T9714] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1123'.
[  391.900300][ T5843] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  391.952247][   T13] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  391.955206][   T13] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  392.726180][ T9733] nfs4: Unknown parameter 'no'
[  393.636491][ T9741] fuse: fd is not a fuse device
[  396.764132][ T9777] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  396.823451][ T9777] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  398.514138][ T9797] nfs4: Unknown parameter 'no'
[  399.931100][ T9816] fuse: Bad value for 'fd'
[  402.746539][ T9851] nfs4: Unknown parameter 'no'
[  405.266582][ T9893] 9p: Bad value for 'rfdno'
[  407.297062][ T5608] Bluetooth: hci5: command 0x0406 tx timeout
[  407.406615][ T9907] fuse: Unknown parameter '0x0000000000000004'
[  407.591937][ T9923] nfs4: Unknown parameter 'no'
[  408.346561][ T9925] bridge0: port 2(bridge_slave_1) entered disabled state
[  408.353357][ T9925] bridge0: port 1(bridge_slave_0) entered disabled state
[  408.774941][ T9925] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  408.790450][ T9925] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  409.091388][ T9948] 9pnet_virtio: no channels available for device syz
[  409.101441][ T9948] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  409.101678][ T9948] overlayfs: overlapping lowerdir path
[  411.197893][   T44] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  411.333264][   T44] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  411.343669][ T5843] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  411.543620][ T9971] nfs4: Unknown parameter 'no'
[  412.371377][ T9976] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  412.374917][ T9976] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  415.520113][T10001] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  415.523351][T10001] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  416.184087][T10019] netlink: 'syz.2.1218': attribute type 4 has an invalid length.
[  416.264060][T10020] nfs4: Unknown parameter 'no'
[  416.947231][T10028] fuse: Unknown parameter '0x0000000000000006'
[  420.326851][T10067] 9pnet_virtio: no channels available for device syz
[  421.003042][T10067] overlayfs: failed to clone lowerpath
[  425.510709][T10089] loop5: detected capacity change from 0 to 512
[  425.518961][T10089] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  425.593883][T10089] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  425.593966][T10089] ext4 filesystem being mounted at /71/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  425.615590][   T37] audit: type=1800 audit(1781753948.675:4): pid=10089 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1246" name="bus" dev="loop5" ino=18 res=0 errno=0
[  425.694095][ T8304] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  425.940481][T10104] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1244'.
[  426.771468][T10114] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  426.778207][T10114] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  430.946379][T10163] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1269'.
[  432.080288][T10186] fuse: fd is not a fuse device
[  434.939520][ T1348] ieee802154 phy0 wpan0: encryption failed: -22
[  434.939929][ T1348] ieee802154 phy1 wpan1: encryption failed: -22
[  437.452732][T10220] overlayfs: failed to clone lowerpath
[  438.759943][T10247] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1297'.
[  438.954414][T10257] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  438.957819][T10257] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  444.031052][ T5608] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  444.031323][ T5608] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  444.031565][ T5608] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  444.032299][ T5608] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  444.032759][ T5608] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  446.377886][ T5608] Bluetooth: hci1: command tx timeout
[  448.616356][ T5608] Bluetooth: hci1: command tx timeout
[  450.881304][ T5608] Bluetooth: hci1: command tx timeout
[  450.997857][T10295] bridge0: port 1(bridge_slave_0) entered blocking state
[  450.998147][T10295] bridge0: port 1(bridge_slave_0) entered disabled state
[  450.998337][T10295] bridge_slave_0: entered allmulticast mode
[  451.000238][T10295] bridge_slave_0: entered promiscuous mode
[  451.003039][T10295] bridge0: port 2(bridge_slave_1) entered blocking state
[  451.003331][T10295] bridge0: port 2(bridge_slave_1) entered disabled state
[  451.003509][T10295] bridge_slave_1: entered allmulticast mode
[  451.005416][T10295] bridge_slave_1: entered promiscuous mode
[  452.308770][T10398] fuse: fd is not a fuse device
[  452.659429][T10295] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  452.689218][T10295] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  452.838076][T10295] team0: Port device team_slave_0 added
[  452.863132][T10295] team0: Port device team_slave_1 added
[  452.887891][ T5608] Bluetooth: hci1: command tx timeout
[  452.907737][T10395] netlink: 'syz.3.1323': attribute type 4 has an invalid length.
[  452.984872][T10295] batman_adv: batadv0: Adding interface: batadv_slave_0
[  452.984886][T10295] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  452.984911][T10295] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  452.989897][T10295] batman_adv: batadv0: Adding interface: batadv_slave_1
[  452.989911][T10295] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  452.989936][T10295] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  453.014574][ T5608] Bluetooth: Wrong link type (-22)
[  453.093218][T10405] netlink: 72 bytes leftover after parsing attributes in process `syz.2.1336'.
[  453.284419][T10411] batadv_slave_0: entered promiscuous mode
[  453.299334][T10295] hsr_slave_0: entered promiscuous mode
[  453.304882][T10295] hsr_slave_1: entered promiscuous mode
[  453.308464][T10295] debugfs: 'hsr0' already exists in 'hsr'
[  453.308480][T10295] Cannot create hsr debugfs directory
[  453.309244][T10410] batadv_slave_0: left promiscuous mode
[  453.481636][T10416] fuse: fd is not a fuse device
[  453.598171][T10420] fuse: fd is not a fuse device
[  456.313588][   T44] bridge_slave_1: left allmulticast mode
[  456.313608][   T44] bridge_slave_1: left promiscuous mode
[  456.313753][   T44] bridge0: port 2(bridge_slave_1) entered disabled state
[  457.051946][   T44] bridge_slave_0: left allmulticast mode
[  457.051964][   T44] bridge_slave_0: left promiscuous mode
[  457.052080][   T44] bridge0: port 1(bridge_slave_0) entered disabled state
[  457.359268][T10455] fuse: fd is not a fuse device
[  457.647538][T10460] overlayfs: failed to clone lowerpath
[  458.714345][T10477] netlink: 'syz.1.1354': attribute type 4 has an invalid length.
[  458.727664][   T44] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  458.955508][   T44] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  458.989977][   T44] bond0 (unregistering): Released all slaves
[  459.091172][T10481] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1360'.
[  459.376742][   T44] tipc: Disabling bearer <udp:syz2>
[  459.378109][   T44] tipc: Left network mode
[  460.765240][T10295] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  460.853928][T10295] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  461.073288][T10295] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  461.268866][T10295] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  461.798489][T10295] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  461.862142][T10295] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  461.873415][T10295] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  461.981554][T10295] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  464.408428][   T44] hsr_slave_0: left promiscuous mode
[  464.521889][   T44] hsr_slave_1: left promiscuous mode
[  464.522334][   T44] batman_adv: batadv0: Removing interface: batadv_slave_0
[  464.566751][   T44] batman_adv: batadv0: Removing interface: batadv_slave_1
[  466.408308][   T44] team0 (unregistering): Port device team_slave_1 removed
[  466.451678][   T44] team0 (unregistering): Port device team_slave_0 removed
[  466.713039][ T5265] 8021q: adding VLAN 0 to HW filter on device eth5
[  466.943196][T10295] 8021q: adding VLAN 0 to HW filter on device bond0
[  467.918094][T10295] 8021q: adding VLAN 0 to HW filter on device team0
[  468.125864][   T58] bridge0: port 1(bridge_slave_0) entered blocking state
[  468.126332][   T58] bridge0: port 1(bridge_slave_0) entered forwarding state
[  468.128344][   T58] bridge0: port 2(bridge_slave_1) entered blocking state
[  468.128458][   T58] bridge0: port 2(bridge_slave_1) entered forwarding state
[  470.621573][ T5265] 8021q: adding VLAN 0 to HW filter on device eth6
[  471.373078][T10642] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  471.376508][T10642] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  471.977198][T10648] nfs4: Unknown parameter 'no'
[  476.387962][T10675] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  476.392460][T10675] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  477.042188][T10682] fuse: fd is not a fuse device
[  477.123496][T10295] 8021q: adding VLAN 0 to HW filter on device batadv0
[  479.971787][ T5265] 8021q: adding VLAN 0 to HW filter on device eth7
[  481.467203][T10729] 9pnet_virtio: no channels available for device syz
[  482.157586][T10729] overlayfs: failed to clone lowerpath
[  483.169731][T10743] nfs4: Unknown parameter 'no'
[  484.949483][T10295] veth0_vlan: entered promiscuous mode
[  485.750787][T10295] veth1_vlan: entered promiscuous mode
[  485.796743][T10295] veth0_macvtap: entered promiscuous mode
[  485.810197][T10295] veth1_macvtap: entered promiscuous mode
[  487.069781][T10295] batman_adv: batadv0: Interface activated: batadv_slave_0
[  487.105206][T10295] batman_adv: batadv0: Interface activated: batadv_slave_1
[  487.144002][   T13] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  487.157508][   T13] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  487.162314][   T13] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  487.164670][   T13] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  488.951265][ T5265] 8021q: adding VLAN 0 to HW filter on device eth8
[  492.519557][ T7315] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  492.519577][ T7315] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  492.808858][ T5939] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  492.808877][ T5939] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  497.223669][ T1348] ieee802154 phy0 wpan0: encryption failed: -22
[  497.223770][ T1348] ieee802154 phy1 wpan1: encryption failed: -22
[  503.010862][T10890] netlink: 'syz.6.1447': attribute type 4 has an invalid length.
[  510.057720][ T5717] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  510.210399][ T5717] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  510.210473][ T5717] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  510.210499][ T5717] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  510.213449][ T5717] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  510.213474][ T5717] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  510.213493][ T5717] usb 7-1: Product: syz
[  510.213506][ T5717] usb 7-1: Manufacturer: syz
[  510.213520][ T5717] usb 7-1: SerialNumber: syz
[  510.808824][ T5717] cdc_mbim 7-1:1.0: skipping garbage
[  511.031765][T10957] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  511.460737][T10988] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1472'.
[  512.122454][T10994] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1473'.
[  512.122734][T10994] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1473'.
[  512.923732][ T5717] cdc_mbim 7-1:1.0: bind() failure
[  512.935724][ T5717] cdc_ncm 7-1:1.1: probe with driver cdc_ncm failed with error -71
[  512.936237][ T5717] cdc_mbim 7-1:1.1: probe with driver cdc_mbim failed with error -71
[  512.953163][ T5717] usbtest 7-1:1.1: probe with driver usbtest failed with error -71
[  512.967809][ T5717] usb 7-1: USB disconnect, device number 2
[  513.859306][T11029] netlink: 72 bytes leftover after parsing attributes in process `syz.6.1482'.
[  529.253866][T11204] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  529.296467][T11206] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  529.313442][T11206] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  541.848401][T11300] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  541.885705][T11300] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  542.794302][T11305] netlink: 'syz.2.1554': attribute type 4 has an invalid length.
[  545.311802][T11315] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1556'.
[  552.355565][T11374] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  552.387398][T11374] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  552.387649][T11374] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  552.388360][T11374] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  552.388784][T11374] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  555.557541][ T5608] Bluetooth: hci5: command tx timeout
[  556.358595][T11420] hsr0: entered promiscuous mode
[  556.358733][T11420] hsr0: left promiscuous mode
[  556.409256][T11425] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1585'.
[  556.409276][T11425] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1585'.
[  556.495615][T11372] bridge0: port 1(bridge_slave_0) entered blocking state
[  556.495907][T11372] bridge0: port 1(bridge_slave_0) entered disabled state
[  556.496110][T11372] bridge_slave_0: entered allmulticast mode
[  556.505274][T11372] bridge_slave_0: entered promiscuous mode
[  556.511290][T11372] bridge0: port 2(bridge_slave_1) entered blocking state
[  556.513067][T11372] bridge0: port 2(bridge_slave_1) entered disabled state
[  556.513275][T11372] bridge_slave_1: entered allmulticast mode
[  556.521027][T11372] bridge_slave_1: entered promiscuous mode
[  556.635357][T11372] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  556.649165][T11372] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  557.145265][T11372] team0: Port device team_slave_0 added
[  558.081957][ T5608] Bluetooth: hci5: command tx timeout
[  558.084296][ T1348] ieee802154 phy0 wpan0: encryption failed: -22
[  558.084368][ T1348] ieee802154 phy1 wpan1: encryption failed: -22
[  558.109405][T11372] team0: Port device team_slave_1 added
[  558.197513][T11372] batman_adv: batadv0: Adding interface: batadv_slave_0
[  558.197528][T11372] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  558.197551][T11372] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  558.199758][T11372] batman_adv: batadv0: Adding interface: batadv_slave_1
[  558.199770][T11372] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  558.199794][T11372] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  558.353171][T11372] hsr_slave_0: entered promiscuous mode
[  558.360267][T11372] hsr_slave_1: entered promiscuous mode
[  558.361820][T11372] debugfs: 'hsr0' already exists in 'hsr'
[  558.361837][T11372] Cannot create hsr debugfs directory
[  558.546338][T11465] fuse: fd is not a fuse device
[  559.257157][T11461] hsr0: entered promiscuous mode
[  559.257591][T11466] hsr0: left promiscuous mode
[  560.088211][ T5608] Bluetooth: hci5: command tx timeout
[  562.567419][ T5608] Bluetooth: hci5: command tx timeout
[  562.991027][T11500] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  564.558001][T11533] netlink: 'syz.0.1615': attribute type 1 has an invalid length.
[  564.558022][T11533] netlink: 'syz.0.1615': attribute type 2 has an invalid length.
[  567.170540][T11532] hsr0: entered promiscuous mode
[  567.171113][T11531] hsr0: left promiscuous mode
[  567.322826][T11372] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  567.360089][T11372] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  567.361276][T11372] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  570.478293][T11554] 9pnet_virtio: no channels available for device syz
[  570.479722][T11554] overlayfs: failed to clone lowerpath
[  571.788604][T11372] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  571.789427][T11372] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  572.034165][T11372] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  572.044082][T11372] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  572.067863][T11372] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  573.149991][ T7315] bridge_slave_1: left allmulticast mode
[  573.150016][ T7315] bridge_slave_1: left promiscuous mode
[  573.150181][ T7315] bridge0: port 2(bridge_slave_1) entered disabled state
[  573.491244][ T7315] bridge_slave_0: left allmulticast mode
[  573.491269][ T7315] bridge_slave_0: left promiscuous mode
[  573.491446][ T7315] bridge0: port 1(bridge_slave_0) entered disabled state
[  573.673585][T11589] netlink: 'syz.0.1631': attribute type 1 has an invalid length.
[  573.673600][T11589] netlink: 'syz.0.1631': attribute type 2 has an invalid length.
[  574.007264][T11374] Bluetooth: hci1: command 0x0406 tx timeout
[  574.637448][ T7315] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  574.747278][ T7315] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  574.787476][ T7315] bond0 (unregistering): Released all slaves
[  575.296324][T11617] hsr0: entered promiscuous mode
[  575.360938][T11612] netlink: 'syz.2.1640': attribute type 4 has an invalid length.
[  575.395260][T11623] loop6: detected capacity change from 0 to 128
[  575.414832][T11623] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  575.429433][T11623] ext4 filesystem being mounted at /43/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  575.452135][ T7315] tipc: Disabling bearer <udp:syz2>
[  575.452231][ T7315] tipc: Disabling bearer <udp:syz0>
[  575.452422][ T7315] tipc: Left network mode
[  575.626815][T11372] 8021q: adding VLAN 0 to HW filter on device bond0
[  575.711168][T11372] 8021q: adding VLAN 0 to HW filter on device team0
[  575.791958][   T44] bridge0: port 1(bridge_slave_0) entered blocking state
[  575.793929][   T44] bridge0: port 1(bridge_slave_0) entered forwarding state
[  575.813490][  T125] bridge0: port 2(bridge_slave_1) entered blocking state
[  575.813622][  T125] bridge0: port 2(bridge_slave_1) entered forwarding state
[  575.919379][T10295] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  577.768149][ T5265] 8021q: adding VLAN 0 to HW filter on device eth9
[  577.782081][T11676] netlink: 'syz.2.1654': attribute type 1 has an invalid length.
[  577.782093][T11676] netlink: 'syz.2.1654': attribute type 2 has an invalid length.
[  577.958041][T11660] hsr0: entered promiscuous mode
[  581.076962][ T7315] hsr_slave_0: left promiscuous mode
[  581.116981][ T7315] hsr_slave_1: left promiscuous mode
[  581.117437][ T7315] batman_adv: batadv0: Removing interface: batadv_slave_0
[  581.157402][ T7315] batman_adv: batadv0: Removing interface: batadv_slave_1
[  581.527623][ T7315] team0 (unregistering): Port device team_slave_1 removed
[  581.567239][ T7315] team0 (unregistering): Port device team_slave_0 removed
[  581.628228][T11734] hsr0: entered promiscuous mode
[  581.628450][T11734] hsr0: left promiscuous mode
[  581.628679][T11730] hsr0: left promiscuous mode
[  581.631419][ T5265] 8021q: adding VLAN 0 to HW filter on device eth10
[  581.838773][T11742] trusted_key: encrypted_key: insufficient parameters specified
[  582.752069][T11763] loop6: detected capacity change from 0 to 512
[  582.752466][T11763] overlayfs: failed lookup in lower (newroot/46, name='file0', err=-40): overlapping layers
[  582.752702][T11763] overlayfs: failed lookup in lower (newroot/46, name='file0', err=-40): overlapping layers
[  583.301410][T11764] hsr0: entered promiscuous mode
[  583.795583][T11760] hsr0: left promiscuous mode
[  584.042038][T11372] 8021q: adding VLAN 0 to HW filter on device batadv0
[  584.241342][T11772] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  584.245095][T11772] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  584.669528][ T5265] 8021q: adding VLAN 0 to HW filter on device eth11
[  585.255305][T11807] netlink: 'syz.3.1678': attribute type 10 has an invalid length.
[  585.291444][T11807] 8021q: adding VLAN 0 to HW filter on device team0
[  585.308062][T11807] bond0: (slave team0): Enslaving as an active interface with an up link
[  585.782833][T11372] veth0_vlan: entered promiscuous mode
[  585.815761][T11372] veth1_vlan: entered promiscuous mode
[  585.970978][T11372] veth0_macvtap: entered promiscuous mode
[  585.990285][T11372] veth1_macvtap: entered promiscuous mode
[  586.143084][T11372] batman_adv: batadv0: Interface activated: batadv_slave_0
[  586.231946][T11372] batman_adv: batadv0: Interface activated: batadv_slave_1
[  586.251250][T11816] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  586.341441][T11822] overlayfs: failed to clone upperpath
[  586.813603][ T5843] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  587.295052][T11816] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  587.308347][   T58] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  587.309064][   T58] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  587.309696][   T58] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  588.116035][ T5265] 8021q: adding VLAN 0 to HW filter on device eth12
[  588.469936][T11838] 9pnet_virtio: no channels available for device syz
[  588.490214][T11838] overlayfs: failed to clone lowerpath
[  589.183976][T11839] hsr0: entered promiscuous mode
[  590.609602][ T5939] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  590.609620][ T5939] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  590.972527][  T125] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  590.985302][  T125] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  591.483042][T11870] netlink: 72 bytes leftover after parsing attributes in process `syz.7.1567'.
[  592.348951][  T999] IPVS: starting estimator thread 0...
[  592.436967][T11877] IPVS: using max 19 ests per chain, 45600 per kthread
[  592.910346][T11886] bond1: entered allmulticast mode
[  592.967056][T11889] hsr0: entered promiscuous mode
[  593.450310][T11880] hsr0: left promiscuous mode
[  593.715778][T11899] IPVS: lc: FWM 3 0x00000003 - no destination available
[  594.364287][ T5724] IPVS: starting estimator thread 0...
[  594.616989][T11905] IPVS: using max 19 ests per chain, 45600 per kthread
[  595.637273][T11932] fuse: fd is not a fuse device
[  596.968054][T11947] hsr0: left promiscuous mode
[  597.093688][T11960] netlink: 'syz.0.1719': attribute type 4 has an invalid length.
[  597.298321][T11966] overlayfs: failed to clone upperpath
[  597.332704][T11968] netlink: 'syz.2.1721': attribute type 4 has an invalid length.
[  597.350109][T11970] overlayfs: failed to clone upperpath
[  597.502767][T11983] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1729'.
[  597.502788][T11983] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1729'.
[  597.502811][T11983] netlink: 'syz.7.1729': attribute type 18 has an invalid length.
[  597.745752][T11992] loop6: detected capacity change from 0 to 512
[  598.492537][T11994] overlayfs: failed to clone upperpath
[  598.549238][T11999] overlayfs: failed to clone upperpath
[  600.431601][T12039] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1747'.
[  600.431623][T12039] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1747'.
[  602.438745][ T5608] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  605.217176][ T5717] IPVS: starting estimator thread 0...
[  605.475602][T12094] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1759'.
[  605.475624][T12094] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1759'.
[  605.728841][T12089] IPVS: using max 18 ests per chain, 43200 per kthread
[  605.782318][T12106] hsr0: entered promiscuous mode
[  606.363451][T12092] hsr0: left promiscuous mode
[  606.863798][T12132] 9pnet_virtio: no channels available for device syz
[  606.882104][T12132] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  610.881395][T12156] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1773'.
[  610.881418][T12156] netlink: 24 bytes leftover after parsing attributes in process `syz.7.1773'.
[  612.703007][T12193] netlink: 'syz.6.1779': attribute type 10 has an invalid length.
[  612.712690][T12193] 8021q: adding VLAN 0 to HW filter on device team0
[  612.716931][T12193] bond0: (slave team0): Enslaving as an active interface with an up link
[  615.171246][T12219] hsr0: entered promiscuous mode
[  615.680495][T12221] tipc: Started in network mode
[  615.680639][T12221] tipc: Node identity 7f000001, cluster identity 4711
[  615.680815][T12221] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  615.703079][T12221] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  616.357103][  T999] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  616.697109][  T999] usb 8-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  616.697140][  T999] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  616.741067][  T999] usb 8-1: config 0 descriptor??
[  616.762011][  T999] cp210x 8-1:0.0: cp210x converter detected
[  616.790953][T12236] loop6: detected capacity change from 0 to 1024
[  616.794779][T12236] EXT4-fs: Ignoring removed oldalloc option
[  616.794799][T12236] EXT4-fs: Ignoring removed orlov option
[  616.805698][T12236] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a042c118, mo2=0002]
[  616.805782][T12236] System zones: 0-1, 3-12
[  616.833294][T12236] EXT4-fs (loop6): mounted filesystem 00000000-0500-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  616.959969][  T999] cp210x 8-1:0.0: failed to get vendor val 0x370b size 1: -121
[  616.960071][  T999] cp210x 8-1:0.0: querying part number failed
[  616.964618][  T999] usb 8-1: cp210x converter now attached to ttyUSB0
[  617.096249][T12242] overlayfs: failed to clone upperpath
[  618.049650][T12249] overlayfs: failed to clone upperpath
[  618.080915][T10295] EXT4-fs (loop6): unmounting filesystem 00000000-0500-0000-0000-000000000000.
[  618.178375][T12255] overlayfs: failed to clone upperpath
[  618.218721][T12255] overlayfs: failed to clone upperpath
[  619.907772][  T999] usb 8-1: USB disconnect, device number 2
[  619.913342][  T999] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  619.913842][  T999] cp210x 8-1:0.0: device disconnected
[  620.337973][ T1348] ieee802154 phy0 wpan0: encryption failed: -22
[  620.338047][ T1348] ieee802154 phy1 wpan1: encryption failed: -22
[  621.634023][T12291] hsr0: entered promiscuous mode
[  622.212997][T12287] hsr0: left promiscuous mode
[  622.339500][T12296] tipc: Started in network mode
[  622.339528][T12296] tipc: Node identity 7f000001, cluster identity 4711
[  622.340374][T12296] tipc: Enabled bearer <udp:syz2>, priority 10
[  622.439044][T12299] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  622.446369][T12299] tipc: Enabled bearer <udp:syz0>, priority 10
[  622.456960][  T999] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  622.810934][  T999] usb 7-1: config 128 has an invalid interface number: 148 but max is 0
[  622.811012][  T999] usb 7-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config
[  622.811360][  T999] usb 7-1: config 128 has no interface number 0
[  622.813105][  T999] usb 7-1: config 128 interface 148 altsetting 9 endpoint 0x7 has invalid wMaxPacketSize 0
[  622.813411][  T999] usb 7-1: config 128 interface 148 altsetting 9 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  622.814051][  T999] usb 7-1: config 128 interface 148 has no altsetting 0
[  623.120449][  T999] usb 7-1: New USB device found, idVendor=0cf3, idProduct=e019, bcdDevice=fb.4f
[  623.120479][  T999] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  623.120498][  T999] usb 7-1: Product: syz
[  623.120512][  T999] usb 7-1: Manufacturer: syz
[  623.120525][  T999] usb 7-1: SerialNumber: syz
[  623.556985][ T5724] tipc: Node number set to 2130706433
[  623.617647][  T999] usb 7-1: USB disconnect, device number 3
[  624.555872][T12326] overlayfs: failed to clone upperpath
[  626.249149][T12334] netlink: 'syz.0.1816': attribute type 10 has an invalid length.
[  626.251916][T12334] 8021q: adding VLAN 0 to HW filter on device team0
[  626.254446][T12334] bond0: (slave team0): Enslaving as an active interface with an up link
[  626.895386][T12347] loop7: detected capacity change from 0 to 512
[  629.908383][T12356] netlink: 'syz.2.1822': attribute type 4 has an invalid length.
[  632.650173][T12382] fuse: fd is not a fuse device
[  633.513516][T12382] overlayfs: failed to clone lowerpath
[  635.788140][ T5608] Bluetooth: Frame is too long (len 18, expected len 8)
[  636.273872][T12408] overlayfs: failed to clone upperpath
[  636.973345][T12420] nfs4: Unknown parameter 'no'
[  636.992747][   T10] IPVS: starting estimator thread 0...
[  637.077014][T12418] IPVS: using max 18 ests per chain, 43200 per kthread
[  638.426642][T11374] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  638.439895][T11374] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  638.451636][T11374] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  638.482645][T11374] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  638.501792][T11374] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  640.748508][ T1541] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  641.149601][ T5608] Bluetooth: hci0: command tx timeout
[  641.622593][ T5608] Bluetooth: Frame is too long (len 18, expected len 8)
[  643.671868][ T5608] Bluetooth: hci0: command tx timeout
[  644.576841][ T1541] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  644.911776][ T5608] Bluetooth: Frame is too long (len 18, expected len 8)
[  645.009170][T11374] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  645.011999][T11374] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  645.012388][T11374] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  645.013898][T11374] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  645.014437][T11374] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  645.897897][T11374] Bluetooth: hci0: command tx timeout
[  645.903814][ T1541] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  645.991068][T12507] hsr0: entered promiscuous mode
[  646.248425][ T1541] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  646.287179][T12499] hsr0: left promiscuous mode
[  647.050047][T11374] Bluetooth: hci1: command tx timeout
[  648.412285][T11374] Bluetooth: hci0: command tx timeout
[  648.730907][T11374] Bluetooth: Frame is too long (len 18, expected len 8)
[  649.331331][T11374] Bluetooth: hci1: command tx timeout
[  649.459195][T12543] hsr0: entered promiscuous mode
[  649.683460][T12540] hsr0: left promiscuous mode
[  650.710165][T12432] bridge0: port 1(bridge_slave_0) entered blocking state
[  650.710460][T12432] bridge0: port 1(bridge_slave_0) entered disabled state
[  650.710757][T12432] bridge_slave_0: entered allmulticast mode
[  650.712675][T12432] bridge_slave_0: entered promiscuous mode
[  650.715130][T12432] bridge0: port 2(bridge_slave_1) entered blocking state
[  650.715413][T12432] bridge0: port 2(bridge_slave_1) entered disabled state
[  650.715612][T12432] bridge_slave_1: entered allmulticast mode
[  650.717595][T12432] bridge_slave_1: entered promiscuous mode
[  650.746314][T12432] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  650.750476][T12432] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  651.368209][T11374] Bluetooth: hci1: command tx timeout
[  651.573225][T12562] nfs4: Unknown parameter 'no'
[  652.769556][T12432] team0: Port device team_slave_0 added
[  652.795704][T12432] team0: Port device team_slave_1 added
[  653.301455][T11374] Bluetooth: Frame is too long (len 18, expected len 8)
[  653.415311][T12432] batman_adv: batadv0: Adding interface: batadv_slave_0
[  653.415327][T12432] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  653.415351][T12432] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  653.437820][T12432] batman_adv: batadv0: Adding interface: batadv_slave_1
[  653.437836][T12432] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  653.437860][T12432] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  653.446897][T11374] Bluetooth: hci1: command tx timeout
[  653.626390][T12487] bridge0: port 1(bridge_slave_0) entered blocking state
[  653.626625][T12487] bridge0: port 1(bridge_slave_0) entered disabled state
[  653.627137][T12487] bridge_slave_0: entered allmulticast mode
[  653.632637][T12487] bridge_slave_0: entered promiscuous mode
[  653.638848][T12487] bridge0: port 2(bridge_slave_1) entered blocking state
[  653.639154][T12487] bridge0: port 2(bridge_slave_1) entered disabled state
[  653.639356][T12487] bridge_slave_1: entered allmulticast mode
[  653.641335][T12487] bridge_slave_1: entered promiscuous mode
[  653.742233][T12597] nfs4: Unknown parameter 'no'
[  654.328567][ T1541] bridge_slave_1: left allmulticast mode
[  654.328592][ T1541] bridge_slave_1: left promiscuous mode
[  654.328755][ T1541] bridge0: port 2(bridge_slave_1) entered disabled state
[  654.427617][ T1541] bridge_slave_0: left allmulticast mode
[  654.427642][ T1541] bridge_slave_0: left promiscuous mode
[  654.427812][ T1541] bridge0: port 1(bridge_slave_0) entered disabled state
[  654.590585][T12608] overlayfs: failed to clone upperpath
[  654.629291][T12608] overlayfs: failed to clone upperpath
[  655.157257][ T1541] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  655.237886][ T1541] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  655.257780][ T1541] bond0 (unregistering): Released all slaves
[  655.297516][T12616] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  655.368805][T12432] hsr_slave_0: entered promiscuous mode
[  655.370322][T12432] hsr_slave_1: entered promiscuous mode
[  655.394257][T12487] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  655.410024][T12487] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  655.447664][ T1541] tipc: Disabling bearer <udp:syz2>
[  655.447756][ T1541] tipc: Disabling bearer <udp:syz0>
[  655.447841][ T1541] tipc: Left network mode
[  655.490786][T12487] team0: Port device team_slave_0 added
[  655.634558][T12487] team0: Port device team_slave_1 added
[  655.752824][T12487] batman_adv: batadv0: Adding interface: batadv_slave_0
[  655.752885][T12487] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  655.752910][T12487] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  655.811676][T12487] batman_adv: batadv0: Adding interface: batadv_slave_1
[  655.811690][T12487] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  655.811715][T12487] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  655.856230][T12631] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1898'.
[  655.863892][T12634] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1899'.
[  655.863913][T12634] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1899'.
[  657.898509][ T5265] 8021q: adding VLAN 0 to HW filter on device eth13
[  657.907630][T12487] hsr_slave_0: entered promiscuous mode
[  657.909125][T12487] hsr_slave_1: entered promiscuous mode
[  657.910423][T12487] debugfs: 'hsr0' already exists in 'hsr'
[  657.910439][T12487] Cannot create hsr debugfs directory
[  660.968645][T12690] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1912'.
[  661.075009][T12690] veth1_to_team: entered promiscuous mode
[  661.077691][T12690] gretap0: entered promiscuous mode
[  661.080339][T12690] hsr1: entered promiscuous mode
[  661.320383][T12432] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  661.363545][T12432] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  661.434912][T12432] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  661.464602][T12432] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  661.514279][T12432] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  661.550790][T12432] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  661.726988][ T1541] hsr_slave_0: left promiscuous mode
[  662.087567][ T1541] hsr_slave_1: left promiscuous mode
[  662.088580][ T1541] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  662.088598][ T1541] batman_adv: batadv0: Removing interface: batadv_slave_0
[  662.130845][ T1541] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  662.130865][ T1541] batman_adv: batadv0: Removing interface: batadv_slave_1
[  662.187324][ T1541] veth1_macvtap: left promiscuous mode
[  662.187382][ T1541] veth0_macvtap: left promiscuous mode
[  662.187527][ T1541] veth1_vlan: left promiscuous mode
[  662.187624][ T1541] veth0_vlan: left promiscuous mode
[  662.955637][T12735] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1923'.
[  669.157423][ T1541] team0 (unregistering): Port device team_slave_1 removed
[  669.287938][T12765] netlink: 'syz.0.1932': attribute type 10 has an invalid length.
[  669.842678][ T1541] team0 (unregistering): Port device team_slave_0 removed
[  670.068406][T12432] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  670.118999][T12767] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1933'.
[  670.119855][T12432] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  670.121773][ T5265] 8021q: adding VLAN 0 to HW filter on device eth14
[  670.284471][T12767] veth1_to_team: entered promiscuous mode
[  670.285632][T12767] gretap0: entered promiscuous mode
[  670.286662][T12767] debugfs: 'hsr1' already exists in 'hsr'
[  670.286673][T12767] Cannot create hsr debugfs directory
[  670.286681][T12767] hsr1: entered promiscuous mode
[  672.387208][T12487] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  673.587084][T12487] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  673.817488][T12487] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  674.612350][T12487] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  675.460685][T12825] netlink: 'syz.3.1942': attribute type 10 has an invalid length.
[  675.729220][ T5265] 8021q: adding VLAN 0 to HW filter on device eth15
[  675.729575][T12487] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  675.815234][T12827] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1944'.
[  675.815493][T12487] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  676.234994][T12487] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  676.430049][T12487] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  677.127648][T12844] netlink: 'syz.2.1947': attribute type 10 has an invalid length.
[  677.144671][T12844] 8021q: adding VLAN 0 to HW filter on device team0
[  677.158195][T12844] bond0: (slave team0): Enslaving as an active interface with an up link
[  677.783790][T12432] 8021q: adding VLAN 0 to HW filter on device bond0
[  677.800033][T12852] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1949'.
[  677.800053][T12852] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1949'.
[  677.961171][T12432] 8021q: adding VLAN 0 to HW filter on device team0
[  678.132073][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  678.132161][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  678.179389][  T125] bridge0: port 2(bridge_slave_1) entered blocking state
[  678.179479][  T125] bridge0: port 2(bridge_slave_1) entered forwarding state
[  678.281184][T12487] 8021q: adding VLAN 0 to HW filter on device bond0
[  678.286686][ T1541] IPVS: stop unused estimator thread 0...
[  678.391533][T12487] 8021q: adding VLAN 0 to HW filter on device team0
[  678.424805][ T7315] bridge0: port 1(bridge_slave_0) entered blocking state
[  678.425754][ T7315] bridge0: port 1(bridge_slave_0) entered forwarding state
[  678.493481][ T6578] bridge0: port 2(bridge_slave_1) entered blocking state
[  678.493573][ T6578] bridge0: port 2(bridge_slave_1) entered forwarding state
[  680.447842][ T1541] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  680.456552][T12895] nfs4: Unknown parameter 'no'
[  680.492809][ T5265] 8021q: adding VLAN 0 to HW filter on device eth16
[  680.571083][ T1348] ieee802154 phy0 wpan0: encryption failed: -22
[  680.571127][ T1348] ieee802154 phy1 wpan1: encryption failed: -22
[  680.744266][T12904] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1959'.
[  680.744280][T12904] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1959'.
[  680.771490][ T1541] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  681.740186][ T1541] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  682.090859][ T1541] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  683.789526][T12432] 8021q: adding VLAN 0 to HW filter on device batadv0
[  684.613732][ T1541] bridge_slave_1: left allmulticast mode
[  684.613757][ T1541] bridge_slave_1: left promiscuous mode
[  684.615845][ T1541] bridge0: port 2(bridge_slave_1) entered disabled state
[  684.771957][T12974] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1974'.
[  684.808683][ T1541] bridge_slave_0: left allmulticast mode
[  684.808701][ T1541] bridge_slave_0: left promiscuous mode
[  684.808804][ T1541] bridge0: port 1(bridge_slave_0) entered disabled state
[  685.178191][T12986] 9pnet_virtio: no channels available for device syz
[  685.198566][T12986] overlayfs: failed to clone lowerpath
[  688.637453][ T1541] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  688.717236][ T1541] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  688.797241][ T1541] bond0 (unregistering): (slave team0): Releasing backup interface
[  688.838924][ T1541] bond0 (unregistering): Released all slaves
[  688.842282][ T1541] bond1 (unregistering): Released all slaves
[  689.165144][T12487] 8021q: adding VLAN 0 to HW filter on device batadv0
[  689.166964][ T1541] tipc: Left network mode
[  689.872771][T13016] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  690.466487][T13026] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1985'.
[  690.466508][T13026] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1985'.
[  690.466531][T13026] netlink: 'syz.3.1985': attribute type 18 has an invalid length.
[  690.921621][T13044] netlink: 'syz.3.1989': attribute type 10 has an invalid length.
[  692.881365][T11374] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[  692.881407][T11374] CPU: 0 UID: 0 PID: 11374 Comm: kworker/u9:0 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  692.881432][T11374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  692.881453][T11374] Workqueue: hci2 hci_rx_work
[  692.881594][T11374] Call Trace:
[  692.881619][T11374]  <TASK>
[  692.881663][T11374]  dump_stack_lvl+0xe8/0x150
[  692.881754][T11374]  sysfs_create_dir_ns+0x271/0x2a0
[  692.881775][T11374]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  692.881952][T11374]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  692.881976][T11374]  ? rt_spin_unlock+0x160/0x200
[  692.882000][T11374]  kobject_add_internal+0x62c/0xce0
[  692.882026][T11374]  kobject_add+0x163/0x240
[  692.882048][T11374]  ? __pfx_kobject_add+0x10/0x10
[  692.882071][T11374]  ? get_device_parent+0x370/0x3a0
[  692.882107][T11374]  device_add+0x3fa/0xb80
[  692.882137][T11374]  hci_conn_add_sysfs+0xd5/0x210
[  692.882200][T11374]  le_conn_complete_evt+0xfef/0x1580
[  692.882247][T11374]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  692.882268][T11374]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  692.882297][T11374]  ? rt_mutex_slowunlock+0x219/0x460
[  692.882320][T11374]  ? skb_pull_data+0xf0/0x200
[  692.882352][T11374]  hci_le_conn_complete_evt+0x187/0x470
[  692.882409][T11374]  hci_event_packet+0x67a/0xf10
[  692.882435][T11374]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  692.882474][T11374]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  692.882502][T11374]  ? __pfx_hci_event_packet+0x10/0x10
[  692.882527][T11374]  ? do_raw_spin_lock+0x12b/0x2f0
[  692.882597][T11374]  ? hci_send_to_monitor+0xe2/0x590
[  692.882619][T11374]  hci_rx_work+0x3ee/0x1020
[  692.882648][T11374]  ? process_one_work+0x8cd/0x12b0
[  692.882704][T11374]  process_one_work+0x93a/0x12b0
[  692.882749][T11374]  ? __pfx_process_one_work+0x10/0x10
[  692.882778][T11374]  ? do_raw_spin_lock+0x12b/0x2f0
[  692.882804][T11374]  ? assign_work+0x3cf/0x5d0
[  692.882837][T11374]  worker_thread+0xb05/0x10d0
[  692.882856][T11374]  ? rcu_is_watching+0x15/0xb0
[  692.882934][T11374]  ? __kthread_parkme+0x71/0x1f0
[  692.882960][T11374]  kthread+0x388/0x470
[  692.882984][T11374]  ? __pfx_worker_thread+0x10/0x10
[  692.883002][T11374]  ? __pfx_kthread+0x10/0x10
[  692.883027][T11374]  ret_from_fork+0x514/0xb70
[  692.883054][T11374]  ? __pfx_ret_from_fork+0x10/0x10
[  692.883078][T11374]  ? __switch_to+0xc89/0x1420
[  692.883126][T11374]  ? __pfx_kthread+0x10/0x10
[  692.883150][T11374]  ret_from_fork_asm+0x1a/0x30
[  692.883186][T11374]  </TASK>
[  692.883260][T11374] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  692.883292][T11374] Bluetooth: hci2: failed to register connection device
[  693.561379][ T5265] 8021q: adding VLAN 0 to HW filter on device eth17
[  693.728980][T12432] veth0_vlan: entered promiscuous mode
[  693.764448][T12432] veth1_vlan: entered promiscuous mode
[  693.912279][T12487] veth0_vlan: entered promiscuous mode
[  693.984004][T12487] veth1_vlan: entered promiscuous mode
[  694.006594][T12432] veth0_macvtap: entered promiscuous mode
[  695.231291][T12432] veth1_macvtap: entered promiscuous mode
[  695.252997][ T5265] 8021q: adding VLAN 0 to HW filter on device eth18
[  695.398970][T12432] batman_adv: batadv0: Interface activated: batadv_slave_0
[  695.537523][ T1541] hsr_slave_0: left promiscuous mode
[  695.576872][ T1541] hsr_slave_1: left promiscuous mode
[  695.577517][ T1541] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  695.577536][ T1541] batman_adv: batadv0: Removing interface: batadv_slave_0
[  695.601748][ T1541] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  695.601768][ T1541] batman_adv: batadv0: Removing interface: batadv_slave_1
[  695.679289][ T1541] veth1_macvtap: left promiscuous mode
[  695.679346][ T1541] veth0_macvtap: left promiscuous mode
[  695.679491][ T1541] veth1_vlan: left promiscuous mode
[  695.679586][ T1541] veth0_vlan: left promiscuous mode
[  695.995625][T13114] overlayfs: failed to resolve './file0': -2
[  696.022692][T13114] overlayfs: failed to resolve './file0/file0': -2
[  698.139189][ T1541] team0 (unregistering): Port device team_slave_1 removed
[  698.208479][ T1541] team0 (unregistering): Port device team_slave_0 removed
[  698.428601][T11374] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  698.428854][T11374] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  698.429098][T11374] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  698.982449][T11374] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  698.984068][T11374] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  699.180945][T12487] veth0_macvtap: entered promiscuous mode
[  699.205897][T12487] veth1_macvtap: entered promiscuous mode
[  699.330979][T12487] batman_adv: batadv0: Interface activated: batadv_slave_0
[  699.392333][T12487] batman_adv: batadv0: Interface activated: batadv_slave_1
[  699.436033][   T12] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  699.436334][   T12] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  699.437029][   T12] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  699.438741][   T12] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  700.942581][ T7315] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  700.942600][ T7315] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  701.048174][ T5608] Bluetooth: hci5: command tx timeout
[  702.117044][ T5265] 8021q: adding VLAN 0 to HW filter on device eth19
[  702.153514][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  702.153533][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  703.393525][ T5608] Bluetooth: hci5: command tx timeout
[  704.071883][T13239] netlink: 'syz.9.2028': attribute type 10 has an invalid length.
[  704.542766][T13239] 8021q: adding VLAN 0 to HW filter on device team0
[  704.545188][T13239] bond0: (slave team0): Enslaving as an active interface with an up link
[  704.701567][ T5265] 8021q: adding VLAN 0 to HW filter on device eth20
[  705.447691][ T5608] Bluetooth: hci5: command tx timeout
[  705.743399][T13282] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2038'.
[  706.406006][T13294] nfs4: Unknown parameter 'no'
[  707.329573][T13150] bridge0: port 1(bridge_slave_0) entered blocking state
[  707.330968][T13150] bridge0: port 1(bridge_slave_0) entered disabled state
[  707.331172][T13150] bridge_slave_0: entered allmulticast mode
[  707.360204][T13150] bridge_slave_0: entered promiscuous mode
[  707.425080][T13150] bridge0: port 2(bridge_slave_1) entered blocking state
[  707.425351][T13150] bridge0: port 2(bridge_slave_1) entered disabled state
[  707.436165][T13150] bridge_slave_1: entered allmulticast mode
[  707.453962][T13150] bridge_slave_1: entered promiscuous mode
[  707.528094][ T5608] Bluetooth: hci5: command tx timeout
[  708.280284][T13150] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  708.304750][T13332] overlayfs: failed to clone upperpath
[  708.309239][T13150] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  708.429520][T13150] team0: Port device team_slave_0 added
[  708.432823][T13150] team0: Port device team_slave_1 added
[  708.453137][T13339] nfs4: Unknown parameter 'no'
[  709.596649][T11922] bridge_slave_1: left allmulticast mode
[  709.597132][T11922] bridge_slave_1: left promiscuous mode
[  709.598107][T11922] bridge0: port 2(bridge_slave_1) entered disabled state
[  710.297935][T11922] bridge_slave_0: left allmulticast mode
[  710.297959][T11922] bridge_slave_0: left promiscuous mode
[  710.298116][T11922] bridge0: port 1(bridge_slave_0) entered disabled state
[  713.107148][T13389] nfs4: Unknown parameter 'no'
[  713.177509][T11922] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  713.327272][T11922] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  713.824334][T11922] bond0 (unregistering): Released all slaves
[  713.877899][T13357] tipc: Started in network mode
[  713.877929][T13357] tipc: Node identity 7f000001, cluster identity 4711
[  713.879300][T13357] tipc: Enabled bearer <udp:syz2>, priority 10
[  714.287328][T12952] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  714.477438][T12952] usb 10-1: Using ep0 maxpacket: 32
[  714.605503][T12952] usb 10-1: config index 0 descriptor too short (expected 156, got 27)
[  714.617571][T12952] usb 10-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  714.618488][T12952] usb 10-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  714.619009][T12952] usb 10-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  714.619281][T12952] usb 10-1: config 0 interface 0 has no altsetting 0
[  714.729517][T12952] usb 10-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  714.729546][T12952] usb 10-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  714.729567][T12952] usb 10-1: Product: syz
[  714.729581][T12952] usb 10-1: Manufacturer: syz
[  714.729595][T12952] usb 10-1: SerialNumber: syz
[  714.732746][T13150] batman_adv: batadv0: Adding interface: batadv_slave_0
[  714.732758][T13150] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  714.732782][T13150] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  714.755403][T12952] usb 10-1: config 0 descriptor??
[  714.779845][T13150] batman_adv: batadv0: Adding interface: batadv_slave_1
[  714.779861][T13150] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  714.779885][T13150] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  714.984293][T12952] ldusb 10-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  714.985475][T12952] ldusb 10-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  715.046201][ T5724] tipc: Node number set to 2130706433
[  715.075293][    C1] ldusb 10-1:0.0: usb_submit_urb failed (-19)
[  715.075297][T13011] usb 10-1: USB disconnect, device number 2
[  715.076625][T13011] ldusb 10-1:0.0: LD USB Device #0 now disconnected
[  715.141412][T13150] hsr_slave_0: entered promiscuous mode
[  715.154565][T13150] hsr_slave_1: entered promiscuous mode
[  715.163611][T13150] debugfs: 'hsr0' already exists in 'hsr'
[  715.163631][T13150] Cannot create hsr debugfs directory
[  716.531260][T11922] hsr_slave_0: left promiscuous mode
[  716.567943][T11922] hsr_slave_1: left promiscuous mode
[  716.568648][T11922] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  716.568667][T11922] batman_adv: batadv0: Removing interface: batadv_slave_0
[  716.606023][T11922] batman_adv: batadv0: Removing interface: batadv_slave_1
[  716.701935][T13432] overlayfs: missing 'lowerdir'
[  716.760631][T11922] veth1_macvtap: left promiscuous mode
[  716.760667][T11922] veth0_macvtap: left promiscuous mode
[  716.760749][T11922] veth1_vlan: left promiscuous mode
[  716.760803][T11922] veth0_vlan: left promiscuous mode
[  717.491093][T13444] netlink: 20 bytes leftover after parsing attributes in process `syz.9.2077'.
[  719.059071][T11922] team0 (unregistering): Port device team_slave_1 removed
[  719.097238][T11922] team0 (unregistering): Port device team_slave_0 removed
[  722.359369][T13495] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  722.361435][T13495] tipc: Enabled bearer <udp:syz0>, priority 10
[  723.171740][T13507] netlink: 'syz.9.2093': attribute type 10 has an invalid length.
[  724.608382][T13518] netlink: 'syz.3.2094': attribute type 10 has an invalid length.
[  725.503407][T13536] loop9: detected capacity change from 0 to 128
[  725.575189][T13536] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  725.575508][T13536] ext4 filesystem being mounted at /21/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  725.771310][T12487] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  727.111591][T13558] loop9: detected capacity change from 0 to 128
[  727.133864][T13558] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  727.139198][T13558] ext4 filesystem being mounted at /22/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  727.191865][T13558] syz.9.2102 (pid 13558) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  727.369069][T13558] fscrypt: Adiantum using implementation "adiantum(xchacha12-lib,aes-lib)"
[  727.395046][T13579] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2110'.
[  727.610947][T12487] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  728.451486][T13150] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  728.597199][T13150] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  728.599095][T13150] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  728.694777][T13150] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  728.699543][T13150] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  728.805554][T13615] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2115'.
[  728.926407][T13150] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  729.385418][T13150] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  729.470755][T13150] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  729.699286][T13638] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2123'.
[  731.330785][T13150] 8021q: adding VLAN 0 to HW filter on device bond0
[  731.471915][T13150] 8021q: adding VLAN 0 to HW filter on device team0
[  731.513475][   T68] bridge0: port 1(bridge_slave_0) entered blocking state
[  731.513564][   T68] bridge0: port 1(bridge_slave_0) entered forwarding state
[  731.546546][   T68] bridge0: port 2(bridge_slave_1) entered blocking state
[  731.546637][   T68] bridge0: port 2(bridge_slave_1) entered forwarding state
[  731.955458][T13671] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  732.740368][T13680] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2133'.
[  733.527329][ T5608] Bluetooth: hci1: command 0x2016 tx timeout
[  734.830463][T13705] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2138'.
[  735.002805][T13150] 8021q: adding VLAN 0 to HW filter on device batadv0
[  735.611657][T11374] Bluetooth: hci1: command 0x2016 tx timeout
[  736.376112][T13729] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2144'.
[  737.549240][T13739] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2146'.
[  737.559455][T13739] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2146'.
[  737.559484][T13739] netlink: 'syz.3.2146': attribute type 22 has an invalid length.
[  737.559497][T13739] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2146'.
[  737.595556][T13739] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2146'.
[  737.595585][T13739] netlink: 'syz.3.2146': attribute type 22 has an invalid length.
[  737.595599][T13739] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2146'.
[  737.595857][T11922] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  737.633400][T11922] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  737.636631][T11922] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  737.826663][T13150] veth0_vlan: entered promiscuous mode
[  738.048538][T13750] hsr0: entered promiscuous mode
[  738.273348][T13752] netlink: 'syz.3.2150': attribute type 10 has an invalid length.
[  738.516627][T13743] hsr0: left promiscuous mode
[  738.560516][T13150] veth1_vlan: entered promiscuous mode
[  738.601928][T13150] veth0_macvtap: entered promiscuous mode
[  738.617724][T13150] veth1_macvtap: entered promiscuous mode
[  738.663626][T13150] batman_adv: batadv0: Interface activated: batadv_slave_0
[  738.673684][T13150] batman_adv: batadv0: Interface activated: batadv_slave_1
[  738.733079][ T1001] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  738.733795][ T1001] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  738.733830][ T1001] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  738.733859][ T1001] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  740.126169][T13774] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  740.538004][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  740.538024][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  740.591994][ T1001] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  740.592014][ T1001] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  740.830109][ T5608] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[  740.830135][ T5608] CPU: 1 UID: 0 PID: 5608 Comm: kworker/u9:3 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  740.830161][ T5608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  740.830174][ T5608] Workqueue: hci1 hci_rx_work
[  740.830205][ T5608] Call Trace:
[  740.830213][ T5608]  <TASK>
[  740.830221][ T5608]  dump_stack_lvl+0xe8/0x150
[  740.830251][ T5608]  sysfs_create_dir_ns+0x271/0x2a0
[  740.830273][ T5608]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  740.830301][ T5608]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  740.830323][ T5608]  ? rt_spin_unlock+0x160/0x200
[  740.830348][ T5608]  kobject_add_internal+0x62c/0xce0
[  740.830373][ T5608]  kobject_add+0x163/0x240
[  740.830395][ T5608]  ? __pfx_kobject_add+0x10/0x10
[  740.830417][ T5608]  ? get_device_parent+0x370/0x3a0
[  740.830459][ T5608]  device_add+0x3fa/0xb80
[  740.830489][ T5608]  hci_conn_add_sysfs+0xd5/0x210
[  740.830515][ T5608]  le_conn_complete_evt+0xfef/0x1580
[  740.830538][ T5608]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  740.830558][ T5608]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  740.830587][ T5608]  ? rt_mutex_slowunlock+0x219/0x460
[  740.830610][ T5608]  ? skb_pull_data+0xf0/0x200
[  740.830642][ T5608]  hci_le_conn_complete_evt+0x187/0x470
[  740.830670][ T5608]  hci_event_packet+0x67a/0xf10
[  740.830693][ T5608]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  740.830719][ T5608]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  740.830744][ T5608]  ? __pfx_hci_event_packet+0x10/0x10
[  740.830766][ T5608]  ? do_raw_spin_lock+0x12b/0x2f0
[  740.830792][ T5608]  ? hci_send_to_monitor+0xe2/0x590
[  740.830813][ T5608]  hci_rx_work+0x3ee/0x1020
[  740.830840][ T5608]  ? process_one_work+0x8cd/0x12b0
[  740.830869][ T5608]  process_one_work+0x93a/0x12b0
[  740.830901][ T5608]  ? __pfx_process_one_work+0x10/0x10
[  740.830925][ T5608]  ? do_raw_spin_lock+0x12b/0x2f0
[  740.830949][ T5608]  ? assign_work+0x3cf/0x5d0
[  740.830977][ T5608]  worker_thread+0xb05/0x10d0
[  740.831005][ T5608]  kthread+0x388/0x470
[  740.831026][ T5608]  ? __pfx_worker_thread+0x10/0x10
[  740.831042][ T5608]  ? __pfx_kthread+0x10/0x10
[  740.831064][ T5608]  ret_from_fork+0x514/0xb70
[  740.831090][ T5608]  ? __pfx_ret_from_fork+0x10/0x10
[  740.831114][ T5608]  ? __switch_to+0xc89/0x1420
[  740.831135][ T5608]  ? __pfx_kthread+0x10/0x10
[  740.831162][ T5608]  ret_from_fork_asm+0x1a/0x30
[  740.831194][ T5608]  </TASK>
[  740.831836][ T5608] kobject: kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  740.831870][ T5608] Bluetooth: hci1: failed to register connection device
[  740.970931][T13788] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2158'.
[  742.891091][T11374] Bluetooth: hci1: command 0x2016 tx timeout
[  743.266263][ T1348] ieee802154 phy0 wpan0: encryption failed: -22
[  743.266340][ T1348] ieee802154 phy1 wpan1: encryption failed: -22
[  743.984770][T13827] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  743.991758][T13827] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  744.967661][T11374] Bluetooth: hci1: command 0x2016 tx timeout
[  747.519167][T13879] faux_driver vkms: [drm] Unknown color mode 11; guessing buffer size.
[  748.280208][T13904] overlayfs: failed to clone upperpath
[  748.489659][T13909] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  751.101947][T13953] random: crng reseeded on system resumption
[  751.225426][T13954] loop8: detected capacity change from 0 to 512
[  751.336830][T13954] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  751.336872][T13954] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  751.545466][T13954] EXT4-fs error (device loop8): ext4_orphan_get:1425: comm syz.8.2194: bad orphan inode 131083
[  751.545525][T13954] loop8: lost filesystem error report for type 5 error -117
[  751.556823][    C0] EXT4-fs (loop8): error count since last fsck: 1
[  751.556868][    C0] EXT4-fs (loop8): initial error at time 1781754274: ext4_orphan_get:1425
[  751.556918][    C0] EXT4-fs (loop8): last error at time 1781754274: ext4_orphan_get:1425
[  751.599669][T13954] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  753.102659][T13150] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  753.211959][T13970] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2200'.
[  753.719247][T13981] nfs4: Unknown parameter 'no'
[  754.750954][T13993] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  755.512322][T14001] loop9: detected capacity change from 0 to 512
[  755.829577][T14004] erspan1: entered promiscuous mode
[  755.829601][T14004] erspan1: entered allmulticast mode
[  755.857258][T14001] EXT4-fs (loop9): Cannot turn on journaled quota: type 1: error -2
[  755.857532][T14001] EXT4-fs error (device loop9): ext4_iget_extra_inode:5180: inode #15: comm syz.9.2209: corrupted in-inode xattr: e_value size too large
[  755.857645][T14001] loop9: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  755.858052][T14001] EXT4-fs error (device loop9): ext4_orphan_get:1404: comm syz.9.2209: couldn't read orphan inode 15 (err -117)
[  755.858082][T14001] loop9: lost filesystem error report for type 5 error -117
[  755.860742][T14001] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  756.219065][T12487] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  756.316938][T14019] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  756.347182][T14019] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  756.836660][T14021] overlayfs: missing 'lowerdir'
[  756.984378][T14027] nfs4: Unknown parameter 'no'
[  757.084271][T14031] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2217'.
[  757.084295][T14031] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2217'.
[  757.282101][T14042] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  757.348423][T14042] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  761.249021][T14073] loop9: detected capacity change from 0 to 256
[  761.254184][T14073] vfat: Deprecated parameter 'posix'
[  761.254202][T14073] FAT-fs: "posix" option is obsolete, not supported now
[  761.838141][T14079] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2233'.
[  761.838165][T14079] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2233'.
[  762.128151][T14085] loop8: detected capacity change from 0 to 512
[  762.146711][T14085] EXT4-fs (loop8): 1 orphan inode deleted
[  762.147939][T14085] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  762.149641][T14085] ext4 filesystem being mounted at /12/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  762.334184][T13150] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  762.707879][T14099] netlink: 'syz.2.2237': attribute type 4 has an invalid length.
[  763.016147][T14101] loop8: detected capacity change from 0 to 512
[  763.078197][T14101] EXT4-fs (loop8): 1 orphan inode deleted
[  763.079448][T14101] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  763.079968][T14101] ext4 filesystem being mounted at /13/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  763.245060][T13150] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  763.296145][T14107] nfs4: Unknown parameter 'no'
[  763.322533][T14111] fuse: Invalid rootmode
[  763.329796][T14111] overlayfs: overlapping lowerdir path
[  763.557084][T14117] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  764.135045][T14118] tipc: Started in network mode
[  764.135072][T14118] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  764.135261][T14118] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  764.143899][T14118] tipc: Enabled bearer <udp:syz0>, priority 10
[  766.359169][ T5703] tipc: Node number set to 1
[  767.415885][T14140] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2249'.
[  767.427370][T14142] fuse: Bad value for 'group_id'
[  767.427388][T14142] fuse: Bad value for 'group_id'
[  767.650070][T14148] netlink: 'syz.0.2251': attribute type 10 has an invalid length.
[  770.201615][ T5608] Bluetooth: hci1: command 0x2016 tx timeout
[  770.475827][T14172] loop9: detected capacity change from 0 to 512
[  770.603005][T14172] EXT4-fs (loop9): 1 orphan inode deleted
[  770.604408][T14172] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  770.607057][T14172] ext4 filesystem being mounted at /54/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  770.756031][T14177] random: crng reseeded on system resumption
[  771.005732][T14178] loop8: detected capacity change from 0 to 512
[  771.387861][T14178] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  772.445162][T14178] EXT4-fs error (device loop8): ext4_orphan_get:1425: comm syz.8.2260: bad orphan inode 131083
[  772.445225][T14178] loop8: lost filesystem error report for type 5 error -117
[  772.446795][    C0] EXT4-fs (loop8): error count since last fsck: 1
[  772.446829][    C0] EXT4-fs (loop8): initial error at time 1781754295: ext4_orphan_get:1425
[  772.446866][    C0] EXT4-fs (loop8): last error at time 1781754295: ext4_orphan_get:1425
[  772.477616][T14178] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  772.815573][T12487] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  772.958325][T13150] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  773.106233][T14186] loop8: detected capacity change from 0 to 512
[  773.178387][T14186] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  773.178471][T14186] ext4 filesystem being mounted at /20/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  773.966665][T14197] erspan1: entered promiscuous mode
[  773.966687][T14197] erspan1: entered allmulticast mode
[  776.795507][T14228] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2274'.
[  776.802755][T14228] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2274'.
[  776.802784][T14228] netlink: 'syz.2.2274': attribute type 22 has an invalid length.
[  776.802797][T14228] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2274'.
[  776.822829][T14228] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2274'.
[  776.822860][T14228] netlink: 'syz.2.2274': attribute type 22 has an invalid length.
[  776.822873][T14228] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2274'.
[  776.823025][T11922] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  776.828835][T11922] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  776.828872][T11922] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  778.544522][T14241] IPVS: lc: FWM 3 0x00000003 - no destination available
[  778.823682][T13463] IPVS: starting estimator thread 0...
[  778.858409][T13150] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  778.956899][T14242] IPVS: using max 17 ests per chain, 40800 per kthread
[  780.586298][T14267] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2284'.
[  782.835355][T14277] loop8: detected capacity change from 0 to 512
[  782.888097][T14277] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  782.888181][T14277] ext4 filesystem being mounted at /23/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  783.138450][   T37] audit: type=1326 audit(1781754306.215:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14292 comm="syz.2.2293" exe="/root/ci-upstream-linux-next-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f521ce0ce59 code=0x7ffc0000
[  783.139976][   T37] audit: type=1326 audit(1781754306.215:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14292 comm="syz.2.2293" exe="/root/ci-upstream-linux-next-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f521ce0ce59 code=0x7ffc0000
[  783.140012][   T37] audit: type=1326 audit(1781754306.215:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14292 comm="syz.2.2293" exe="/root/ci-upstream-linux-next-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f521ce0ce59 code=0x7ffc0000
[  783.140051][   T37] audit: type=1326 audit(1781754306.215:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14292 comm="syz.2.2293" exe="/root/ci-upstream-linux-next-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f521cdcd68e code=0x7ffc0000
[  783.140093][   T37] audit: type=1326 audit(1781754306.215:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14292 comm="syz.2.2293" exe="/root/ci-upstream-linux-next-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f521ce0ce59 code=0x7ffc0000
[  783.140124][   T37] audit: type=1326 audit(1781754306.215:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14292 comm="syz.2.2293" exe="/root/ci-upstream-linux-next-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f521ce0ce59 code=0x7ffc0000
[  783.140487][   T37] audit: type=1326 audit(1781754306.215:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14292 comm="syz.2.2293" exe="/root/ci-upstream-linux-next-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f521ce0ce59 code=0x7ffc0000
[  783.141836][   T37] audit: type=1326 audit(1781754306.215:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14292 comm="syz.2.2293" exe="/root/ci-upstream-linux-next-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f521ce0ce59 code=0x7ffc0000
[  783.141871][   T37] audit: type=1326 audit(1781754306.215:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14292 comm="syz.2.2293" exe="/root/ci-upstream-linux-next-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f521ce0ce59 code=0x7ffc0000
[  783.142295][   T37] audit: type=1326 audit(1781754306.215:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14292 comm="syz.2.2293" exe="/root/ci-upstream-linux-next-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f521ce0ce59 code=0x7ffc0000
[  783.305612][T14293] mmap: syz.2.2293 (14293): VmData 37470208 exceed data ulimit 33554432. Update limits or use boot option ignore_rlimit_data.
[  783.343988][T14299] random: crng reseeded on system resumption
[  783.447144][T14298] loop9: detected capacity change from 0 to 512
[  784.007123][T14298] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  784.679025][T14277] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2287'.
[  784.715479][T14298] EXT4-fs error (device loop9): ext4_orphan_get:1425: comm syz.9.2291: bad orphan inode 131083
[  784.715545][T14298] loop9: lost filesystem error report for type 5 error -117
[  784.716772][    C1] EXT4-fs (loop9): error count since last fsck: 1
[  784.716790][    C1] EXT4-fs (loop9): initial error at time 1781754307: ext4_orphan_get:1425
[  784.716810][    C1] EXT4-fs (loop9): last error at time 1781754307: ext4_orphan_get:1425
[  784.718079][T14298] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  785.804272][T14282] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  785.852731][T12487] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  787.421606][T14320] fuse: fd is not a fuse device
[  787.423075][T14320] overlayfs: failed to clone lowerpath
[  787.429643][T13150] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  792.922024][T12952] page_pool_release_retry() stalled pool shutdown: id 106, 1 inflight 60 sec
[  797.553993][T14393] loop8: detected capacity change from 0 to 512
[  798.049539][T14393] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  799.059296][T14385] tipc: Enabled bearer <udp:syz2>, priority 10
[  799.347273][T14393] EXT4-fs error (device loop8): ext4_orphan_get:1425: comm syz.8.2320: bad orphan inode 131083
[  799.347335][T14393] loop8: lost filesystem error report for type 5 error -117
[  799.351670][T12952] tipc: Node number set to 2130706433
[  799.356802][    C1] EXT4-fs (loop8): error count since last fsck: 1
[  799.356836][    C1] EXT4-fs (loop8): initial error at time 1781754322: ext4_orphan_get:1425
[  799.356873][    C1] EXT4-fs (loop8): last error at time 1781754322: ext4_orphan_get:1425
[  799.434650][T14393] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  800.720072][T13150] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  802.708101][T14435] tipc: Enabled bearer <udp:syz2>, priority 10
[  803.449771][ T1348] ieee802154 phy0 wpan0: encryption failed: -22
[  803.449847][ T1348] ieee802154 phy1 wpan1: encryption failed: -22
[  804.475419][T14447] overlayfs: missing 'workdir'
[  804.970700][T14458] 9p: Bad value for 'wfdno'
[  805.070341][T14462] netlink: 16 bytes leftover after parsing attributes in process `syz.8.2339'.
[  805.089937][T14462] veth1_to_team: entered promiscuous mode
[  805.095546][T14462] gretap0: entered promiscuous mode
[  805.106321][T14462] debugfs: 'hsr1' already exists in 'hsr'
[  805.106342][T14462] Cannot create hsr debugfs directory
[  805.106357][T14462] hsr1: entered promiscuous mode
[  806.299219][T14474] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  806.302181][T14474] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  809.815465][T14487] netlink: 'syz.9.2346': attribute type 10 has an invalid length.
[  810.838874][T14505] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2350'.
[  813.554152][T14539] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  813.556815][T14539] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  816.618537][T14561] netlink: 'syz.9.2362': attribute type 10 has an invalid length.
[  817.793215][T14568] loop9: detected capacity change from 0 to 1024
[  817.793937][T14568] EXT4-fs: Ignoring removed oldalloc option
[  817.793957][T14568] EXT4-fs: Ignoring removed orlov option
[  817.820597][T14568] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a042c118, mo2=0002]
[  817.820680][T14568] System zones: 0-1, 3-12
[  817.824365][T14568] EXT4-fs (loop9): mounted filesystem 00000000-0500-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  818.765408][T12487] EXT4-fs (loop9): unmounting filesystem 00000000-0500-0000-0000-000000000000.
[  820.756601][T14587] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2370'.
[  822.513443][T14617] IPVS: Error connecting to the multicast addr
[  826.937689][ T5608] Bluetooth: hci5: command 0x0406 tx timeout
[  827.914791][T14655] overlayfs: failed to clone upperpath
[  828.286384][T14646] loop9: detected capacity change from 0 to 40427
[  828.296570][T14646] F2FS-fs (loop9): Corrupted extension count (64 + 1 > 64)
[  828.296595][T14646] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock
[  828.330632][T14646] F2FS-fs (loop9): invalid crc value
[  828.523001][T14669] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2393'.
[  828.523282][   T37] kauditd_printk_skb: 31 callbacks suppressed
[  828.523295][   T37] audit: type=1326 audit(1781754351.595:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14666 comm="syz.2.2394" exe="/root/ci-upstream-linux-next-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f521ce0ce59 code=0x7ffc0000
[  828.523330][   T37] audit: type=1326 audit(1781754351.595:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14666 comm="syz.2.2394" exe="/root/ci-upstream-linux-next-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f521ce0ce59 code=0x7ffc0000
[  828.523623][   T37] audit: type=1326 audit(1781754351.595:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14666 comm="syz.2.2394" exe="/root/ci-upstream-linux-next-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f521ce0ce59 code=0x7ffc0000
[  828.523729][   T37] audit: type=1326 audit(1781754351.595:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14666 comm="syz.2.2394" exe="/root/ci-upstream-linux-next-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f521ce0ce59 code=0x7ffc0000
[  828.526277][   T37] audit: type=1326 audit(1781754351.595:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14666 comm="syz.2.2394" exe="/root/ci-upstream-linux-next-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f521cdcd68e code=0x7ffc0000
[  828.526316][   T37] audit: type=1326 audit(1781754351.595:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14666 comm="syz.2.2394" exe="/root/ci-upstream-linux-next-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f521ce0ce59 code=0x7ffc0000
[  828.526348][   T37] audit: type=1326 audit(1781754351.595:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14666 comm="syz.2.2394" exe="/root/ci-upstream-linux-next-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f521ce0ce59 code=0x7ffc0000
[  828.586875][   T37] audit: type=1326 audit(1781754351.595:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14666 comm="syz.2.2394" exe="/root/ci-upstream-linux-next-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f521ce0ce59 code=0x7ffc0000
[  828.586920][   T37] audit: type=1326 audit(1781754351.645:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14666 comm="syz.2.2394" exe="/root/ci-upstream-linux-next-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f521ce0ce59 code=0x7ffc0000
[  828.618484][   T37] audit: type=1326 audit(1781754351.695:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14666 comm="syz.2.2394" exe="/root/ci-upstream-linux-next-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f521ce0ce59 code=0x7ffc0000
[  828.988185][T14646] F2FS-fs (loop9): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  829.632582][T14677] IPVS: Error connecting to the multicast addr
[  835.174123][T14709] fuse: Unknown parameter 'fd0x0000000000000003'
[  835.177935][T14709] overlayfs: overlapping lowerdir path
[  836.319987][   T12] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  836.619627][   T12] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  836.652610][ T5608] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  836.652886][ T5608] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  836.653143][ T5608] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  836.653853][ T5608] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  836.654324][ T5608] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  841.683468][ T5608] Bluetooth: hci0: command tx timeout
[  844.295889][ T5608] Bluetooth: hci0: command tx timeout
[  845.158749][   T12] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  845.743513][T14771] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  845.757671][T14785] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[  846.077666][T14796] IPVS: Error connecting to the multicast addr
[  846.393818][T14806] netlink: 'syz.2.2430': attribute type 10 has an invalid length.
[  846.926182][ T5608] Bluetooth: hci0: command tx timeout
[  846.930515][   T12] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  847.082282][T11374] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  847.082639][T11374] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  847.082863][T11374] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  847.083546][T11374] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  847.084030][T11374] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  847.236007][T14819] IPVS: Error connecting to the multicast addr
[  847.250818][T14731] bridge0: port 1(bridge_slave_0) entered blocking state
[  847.251105][T14731] bridge0: port 1(bridge_slave_0) entered disabled state
[  847.251466][T14731] bridge_slave_0: entered allmulticast mode
[  847.258677][T14731] bridge_slave_0: entered promiscuous mode
[  847.263268][T14731] bridge0: port 2(bridge_slave_1) entered blocking state
[  847.263498][T14731] bridge0: port 2(bridge_slave_1) entered disabled state
[  847.263689][T14731] bridge_slave_1: entered allmulticast mode
[  847.269667][T14731] bridge_slave_1: entered promiscuous mode
[  847.345172][T14731] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  847.435620][T14731] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  848.110392][T14731] team0: Port device team_slave_0 added
[  848.996103][ T5608] Bluetooth: hci0: command tx timeout
[  849.252102][ T5608] Bluetooth: hci1: command tx timeout
[  850.679064][T14856] overlayfs: failed to clone upperpath
[  850.679825][T14731] team0: Port device team_slave_1 added
[  850.695130][T14842] IPVS: Error connecting to the multicast addr
[  850.789644][T14858] overlayfs: option "workdir=./file1" is useless in a non-upper mount, ignore
[  850.789685][T14858] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  850.910527][T14731] batman_adv: batadv0: Adding interface: batadv_slave_0
[  850.910543][T14731] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  850.910569][T14731] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  850.914399][T14731] batman_adv: batadv0: Adding interface: batadv_slave_1
[  850.914413][T14731] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  850.914440][T14731] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  851.190141][   T12] bridge_slave_1: left allmulticast mode
[  851.190169][   T12] bridge_slave_1: left promiscuous mode
[  851.190353][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  851.354827][ T5608] Bluetooth: hci1: command tx timeout
[  852.268113][   T12] bridge_slave_0: left allmulticast mode
[  852.268139][   T12] bridge_slave_0: left promiscuous mode
[  852.268295][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  853.367029][ T5608] Bluetooth: hci1: command tx timeout
[  853.536841][   T12] gretap0 (unregistering): left promiscuous mode
[  853.697347][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  853.777158][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  853.798621][   T12] bond0 (unregistering): Released all slaves
[  853.837070][T14892] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  854.869538][   T12] tipc: Disabling bearer <udp:syz0>
[  854.869647][   T12] tipc: Disabling bearer <udp:syz2>
[  854.972125][    C0] ------------[ cut here ]------------
[  854.972149][    C0] rcuref - imbalanced put()
[  854.972163][    C0] WARNING: lib/rcuref.c:266 at rcuref_put_slowpath+0x16e/0x1d0, CPU#0: ktimers/0/16
[  854.972343][    C0] Modules linked in:
[  854.972366][    C0] CPU: 0 UID: 0 PID: 16 Comm: ktimers/0 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  854.972390][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  854.972402][    C0] RIP: 0010:rcuref_put_slowpath+0x16e/0x1d0
[  854.972432][    C0] Code: c1 e8 03 42 0f b6 04 38 84 c0 75 48 c7 03 00 00 00 a0 31 c0 e9 6d ff ff ff e8 fe 13 80 06 e8 49 d7 14 fd 48 8d 3d 62 f3 e6 0a <67> 48 0f b9 3a 48 89 df be 04 00 00 00 e8 40 b3 80 fd 48 89 d8 48
[  854.972451][    C0] RSP: 0018:ffffc90000157560 EFLAGS: 00010246
[  854.972499][    C0] RAX: ffffffff84b04017 RBX: ffff888025328740 RCX: ffff88801d680000
[  854.972516][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: ffffffff8f973380
[  854.972529][    C0] RBP: ffffc900001575e8 R08: 0000000000000000 R09: 0000000000000100
[  854.972543][    C0] R10: dffffc0000000000 R11: ffffed1004a650e9 R12: 1ffff9200002aeac
[  854.972558][    C0] R13: dffffc0000000000 R14: 00000000dfffffff R15: dffffc0000000000
[  854.972573][    C0] FS:  0000000000000000(0000) GS:ffff888125ed3000(0000) knlGS:0000000000000000
[  854.972590][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  854.972605][    C0] CR2: 00007f67d5f2c558 CR3: 0000000026bb4000 CR4: 00000000003526f0
[  854.972622][    C0] Call Trace:
[  854.972630][    C0]  <TASK>
[  854.972640][    C0]  ? __pfx_rcuref_put_slowpath+0x10/0x10
[  854.972674][    C0]  rcuref_put+0x15b/0x170
[  854.972693][    C0]  dst_release+0x31/0x1b0
[  854.972722][    C0]  dst_cache_per_cpu_get+0x25a/0x2d0
[  854.972784][    C0]  dst_cache_get+0x10d/0x1e0
[  854.972805][    C0]  tipc_udp_xmit+0xcf/0xb30
[  854.972859][    C0]  ? tipc_udp_xmit+0xb8/0xb30
[  854.972878][    C0]  ? __pfx_tipc_udp_xmit+0x10/0x10
[  854.972897][    C0]  ? tipc_net+0x45/0x270
[  854.972920][    C0]  ? rcu_is_watching+0x15/0xb0
[  854.972941][    C0]  ? tipc_net+0x45/0x270
[  854.972963][    C0]  ? tipc_net+0x45/0x270
[  854.972986][    C0]  ? __pfx_tipc_crypto_xmit+0x10/0x10
[  854.973008][    C0]  ? lock_acquire+0x5f/0x350
[  854.973062][    C0]  ? tipc_net+0x45/0x270
[  854.973083][    C0]  ? tipc_net+0x45/0x270
[  854.973106][    C0]  ? tipc_udp_send_msg+0x2a3/0x3f0
[  854.973127][    C0]  tipc_bearer_xmit_skb+0x2b3/0x400
[  854.973159][    C0]  ? tipc_bearer_xmit_skb+0xa9/0x400
[  854.973184][    C0]  ? __pfx_tipc_bearer_xmit_skb+0x10/0x10
[  854.973210][    C0]  ? trace_irq_enable+0x3b/0x140
[  854.973275][    C0]  tipc_disc_timeout+0x642/0x790
[  854.973325][    C0]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  854.973353][    C0]  ? tipc_disc_timeout+0xf2/0x790
[  854.973378][    C0]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  854.973401][    C0]  ? rcu_is_watching+0x15/0xb0
[  854.973422][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  854.973448][    C0]  call_timer_fn+0x192/0x5e0
[  854.973493][    C0]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  854.973517][    C0]  ? call_timer_fn+0xd4/0x5e0
[  854.973535][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  854.973556][    C0]  ? rcu_is_watching+0x15/0xb0
[  854.973574][    C0]  ? trace_irq_enable+0x3b/0x140
[  854.973599][    C0]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  854.973623][    C0]  __run_timer_base+0x67b/0x9b0
[  854.973681][    C0]  ? __pfx___run_timer_base+0x10/0x10
[  854.973710][    C0]  ? __local_bh_disable_ip+0x3c/0x420
[  854.973729][    C0]  ? rcu_is_watching+0x15/0xb0
[  854.973751][    C0]  run_timer_softirq+0xb7/0x170
[  854.973777][    C0]  handle_softirqs+0x1d9/0x6c0
[  854.973800][    C0]  run_ktimerd+0x69/0x100
[  854.973820][    C0]  smpboot_thread_fn+0x57c/0xa80
[  854.973843][    C0]  ? smpboot_thread_fn+0x4e/0xa80
[  854.973867][    C0]  kthread+0x388/0x470
[  854.973889][    C0]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  854.973909][    C0]  ? __pfx_kthread+0x10/0x10
[  854.973932][    C0]  ret_from_fork+0x514/0xb70
[  854.973957][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  854.973981][    C0]  ? __switch_to+0xc89/0x1420
[  854.974002][    C0]  ? __pfx_kthread+0x10/0x10
[  854.974025][    C0]  ret_from_fork_asm+0x1a/0x30
[  854.974059][    C0]  </TASK>
[  854.974074][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  854.974088][    C0] CPU: 0 UID: 0 PID: 16 Comm: ktimers/0 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  854.974111][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  854.974122][    C0] Call Trace:
[  854.974130][    C0]  <TASK>
[  854.974137][    C0]  vpanic+0x56c/0xa60
[  854.974174][    C0]  ? __pfx__printk+0x10/0x10
[  854.974193][    C0]  ? __pfx_vpanic+0x10/0x10
[  854.974218][    C0]  ? is_bpf_text_address+0x292/0x2b0
[  854.974293][    C0]  ? is_bpf_text_address+0x26/0x2b0
[  854.974324][    C0]  panic+0xc5/0xd0
[  854.974349][    C0]  ? __pfx_panic+0x10/0x10
[  854.974378][    C0]  ? ret_from_fork_asm+0x1a/0x30
[  854.974406][    C0]  __warn+0x315/0x4c0
[  854.974430][    C0]  ? rcuref_put_slowpath+0x16e/0x1d0
[  854.974458][    C0]  ? rcuref_put_slowpath+0x16e/0x1d0
[  854.974486][    C0]  __report_bug+0x331/0x530
[  854.974564][    C0]  ? rcuref_put_slowpath+0x16e/0x1d0
[  854.974591][    C0]  ? __pfx___report_bug+0x10/0x10
[  854.974627][    C0]  report_bug_entry+0x19a/0x290
[  854.974653][    C0]  ? rcuref_put_slowpath+0x16e/0x1d0
[  854.974680][    C0]  ? rcuref_put_slowpath+0x173/0x1d0
[  854.974706][    C0]  handle_bug+0xce/0x200
[  854.974726][    C0]  exc_invalid_op+0x1a/0x50
[  854.974746][    C0]  asm_exc_invalid_op+0x1a/0x20
[  854.974765][    C0] RIP: 0010:rcuref_put_slowpath+0x16e/0x1d0
[  854.974794][    C0] Code: c1 e8 03 42 0f b6 04 38 84 c0 75 48 c7 03 00 00 00 a0 31 c0 e9 6d ff ff ff e8 fe 13 80 06 e8 49 d7 14 fd 48 8d 3d 62 f3 e6 0a <67> 48 0f b9 3a 48 89 df be 04 00 00 00 e8 40 b3 80 fd 48 89 d8 48
[  854.974811][    C0] RSP: 0018:ffffc90000157560 EFLAGS: 00010246
[  854.974829][    C0] RAX: ffffffff84b04017 RBX: ffff888025328740 RCX: ffff88801d680000
[  854.974845][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: ffffffff8f973380
[  854.974859][    C0] RBP: ffffc900001575e8 R08: 0000000000000000 R09: 0000000000000100
[  854.974873][    C0] R10: dffffc0000000000 R11: ffffed1004a650e9 R12: 1ffff9200002aeac
[  854.974888][    C0] R13: dffffc0000000000 R14: 00000000dfffffff R15: dffffc0000000000
[  854.974907][    C0]  ? rcuref_put_slowpath+0x167/0x1d0
[  854.974937][    C0]  ? __pfx_rcuref_put_slowpath+0x10/0x10
[  854.974968][    C0]  rcuref_put+0x15b/0x170
[  854.974986][    C0]  dst_release+0x31/0x1b0
[  854.975015][    C0]  dst_cache_per_cpu_get+0x25a/0x2d0
[  854.975038][    C0]  dst_cache_get+0x10d/0x1e0
[  854.975059][    C0]  tipc_udp_xmit+0xcf/0xb30
[  854.975080][    C0]  ? tipc_udp_xmit+0xb8/0xb30
[  854.975098][    C0]  ? __pfx_tipc_udp_xmit+0x10/0x10
[  854.975118][    C0]  ? tipc_net+0x45/0x270
[  854.975140][    C0]  ? rcu_is_watching+0x15/0xb0
[  854.975164][    C0]  ? tipc_net+0x45/0x270
[  854.975188][    C0]  ? tipc_net+0x45/0x270
[  854.975210][    C0]  ? __pfx_tipc_crypto_xmit+0x10/0x10
[  854.975232][    C0]  ? lock_acquire+0x5f/0x350
[  854.975256][    C0]  ? tipc_net+0x45/0x270
[  854.975278][    C0]  ? tipc_net+0x45/0x270
[  854.975302][    C0]  ? tipc_udp_send_msg+0x2a3/0x3f0
[  854.975323][    C0]  tipc_bearer_xmit_skb+0x2b3/0x400
[  854.975348][    C0]  ? tipc_bearer_xmit_skb+0xa9/0x400
[  854.975374][    C0]  ? __pfx_tipc_bearer_xmit_skb+0x10/0x10
[  854.975401][    C0]  ? trace_irq_enable+0x3b/0x140
[  854.975428][    C0]  tipc_disc_timeout+0x642/0x790
[  854.975452][    C0]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  854.975480][    C0]  ? tipc_disc_timeout+0xf2/0x790
[  854.975503][    C0]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  854.975527][    C0]  ? rcu_is_watching+0x15/0xb0
[  854.975548][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  854.975574][    C0]  call_timer_fn+0x192/0x5e0
[  854.975592][    C0]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  854.975616][    C0]  ? call_timer_fn+0xd4/0x5e0
[  854.975634][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  854.975655][    C0]  ? rcu_is_watching+0x15/0xb0
[  854.975674][    C0]  ? trace_irq_enable+0x3b/0x140
[  854.975698][    C0]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  854.975723][    C0]  __run_timer_base+0x67b/0x9b0
[  854.975756][    C0]  ? __pfx___run_timer_base+0x10/0x10
[  854.975785][    C0]  ? __local_bh_disable_ip+0x3c/0x420
[  854.975802][    C0]  ? rcu_is_watching+0x15/0xb0
[  854.975824][    C0]  run_timer_softirq+0xb7/0x170
[  854.975852][    C0]  handle_softirqs+0x1d9/0x6c0
[  854.975875][    C0]  run_ktimerd+0x69/0x100
[  854.975895][    C0]  smpboot_thread_fn+0x57c/0xa80
[  854.975918][    C0]  ? smpboot_thread_fn+0x4e/0xa80
[  854.975942][    C0]  kthread+0x388/0x470
[  854.975964][    C0]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  854.975984][    C0]  ? __pfx_kthread+0x10/0x10
[  854.976007][    C0]  ret_from_fork+0x514/0xb70
[  854.976032][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  854.976056][    C0]  ? __switch_to+0xc89/0x1420
[  854.976077][    C0]  ? __pfx_kthread+0x10/0x10
[  854.976100][    C0]  ret_from_fork_asm+0x1a/0x30
[  854.976133][    C0]  </TASK>
[  854.976385][    C0] Kernel Offset: disabled