last executing test programs:

11m34.267357681s ago: executing program 32 (id=43):
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
bind$tipc(r1, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x2, 0x4}}, 0x10)
bind$tipc(r1, &(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x42, 0x2}}}, 0x10)
bind$tipc(r1, &(0x7f0000000440)=@nameseq={0x1e, 0x1, 0x2, {0x42, 0x3, 0x3}}, 0x10)
bind$tipc(r1, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x2, {0x42, 0x1, 0x3}}, 0x10)
bind$tipc(r0, 0x0, 0x0)

10m52.536723177s ago: executing program 33 (id=418):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r0, &(0x7f0000000140)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="400000001000390400"/20, @ANYRES32=r1, @ANYBLOB="01980000000000002000128008000100677265001400028008000100", @ANYRES32=r1], 0x40}, 0x1, 0x0, 0x0, 0x4014}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route_sched(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0x5820a61ca228659, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {0xffff, 0xffff}, {0x0, 0x7}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0xffffffffffffffdb, 0x3, {0x6, 0x2}}}}]}, 0x44}}, 0x800)
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=@newtfilter={0x38, 0x28, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {}, {0x9, 0xb}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x8, 0x2, [@TCA_CGROUP_POLICE={0x4}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x810}, 0x40040c4)

10m28.333228529s ago: executing program 34 (id=588):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x6, 0x0, 0x7fff0000}]})
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef096ec866400fe2de0fae4e0afaf24e6ff00fc01ebbf3470fa7c063df", 0xdc000006, 0x0, {[0x39a]}}, 0x0, 0x8, &(0x7f0000000300))
poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x12, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0xcf4e74310708dfc2, 0xc})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

10m18.09761124s ago: executing program 35 (id=694):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0xfffffffe)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r1, &(0x7f0000000980)=[{&(0x7f00000009c0)="82c6fef0dd21965a579b6380ce49fcdcad77236544220916b6dc0764354408ae91cb77fad0f2", 0x26}, {&(0x7f00000008c0)}], 0x2)
r2 = accept4$unix(r0, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f0000001680)=[{{0x0, 0x0, &(0x7f0000003380)=[{&(0x7f0000000140)=""/120, 0x78}, {&(0x7f0000000040)=""/40, 0x28}, {&(0x7f0000003300)=""/107, 0x6b}], 0x3}}], 0x4000000000000a1, 0x2, 0x0)
recvfrom$unix(r2, &(0x7f00000001c0)=""/236, 0x26, 0x10120, 0x0, 0x0)

9m12.244765627s ago: executing program 36 (id=1390):
fcntl$notify(0xffffffffffffffff, 0x402, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000"], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000900000000000000213f0000c50000000e800000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r0}, 0x10)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17)
userfaultfd(0x80801)
close_range(r1, 0xffffffffffffffff, 0x0)

8m44.53963331s ago: executing program 9 (id=1591):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xc1103000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0xe, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b700000020000000bca30000000000002403000040feffff720af1ff0000000071a4f0ff000000001f030000000000002e0a0200000000002600000000ff000e61146000000000001d430000000000007a0a00fe00581c1f6114780000000000b503f7fff80000009500000000000000033bc065b78111c6dfa041b63af4a3912435f1a864a7aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168e5181554a090f30002af51efd601b6bf01c8e8b1fee5bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e65440000000000000000028610643a98d9ec21ead2ed51b104d4d91af25b845b9f7d08d123deda88c658d42ecbf28bf7076c15b463bebc72f526dd70252e79166d858fcd0e06dd31af9612fa402d0b11008e59a5923906f88b53987ad1714e72ba7d06a59ff616236fd9aa58f0177184b6a89adaf17b0a6041bdef728f5089048ddff6da40f9411fe7226a40409d6e37c4f46756d31cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10076443d643649393bf52d2105bd901128c7e0ec82701c8204a1deeed4155617572652d950ad31928b0b036dc2869f478341d02d0f5ad94b081fcd507acb4b9c67382f13d000000225d85ae49cee383dc5049076b98fb6853ab39a21514da60d2ae20cfb91d6a49964757cdf538f9ce2bdbb9893a5de817101ab062cd54e67051d355d84ce97bb0c6b6a595e487a2cc47c0efbb2d71cde2c10f0bc6980fe78683ac5c0c31032599dd273863be9261eee52216d009f4c52048ef8c126aeef5f510a8f1aded94a129e4aec6e8d9ab06faffc3a15d91c2ea3e2e04cfe031b287539d0540059fe6c7fe7cd8697502c7596566de74e425da5e7f009602a9f61d3804b3e0a1053abdc31282dfb15eb6841bb64a1b3045024a982f3c48b936e6f9e0fcda88fe4413537528fdb6153baae244e7bf573eac34b781337ad5901a4cad2422ee965a38f7defbd2960242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de44022a579dfc0229cc0dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc48899b212c55318294270a1ad10c80fef7c24d47afcc829ba0f85da6d888f18ea40ab959f6074ab2a40d85d1501783a7ab51380d7b4ead35a385e0b4a26b602396df7e0c1e02b88c114f244a9bf93f04bf072f0861f5c0b000000000000eedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba3401e6a52acb1188883ad2a3b1832371fe5bc621426d1ed01b389708165b9cdbae2ed9dc7358f0ebadde0b727f27feeb7464dcc536cbae2f5c7d951680f6f2f9a6a8346962a350845ffa0d82884f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010ae20e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d648532869d701723fedcbada1ee7baa19faf67256b56a41fd355b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2654026c6ea08b83b123145ab5703dad844ceb201efeb6dc5f6a9037d2283c42efc54dd84323afc4c10eff46248843187f1dd48ef0900000000000000ff0f4000000000f00700003c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538c6ee6ba65893ff1f908ba7554ba583ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738612e4fee18a22da19fcdb4c1011e32f808890205f0e6da2819d2f9e77c7c64affa54fec0136cbafa5f62e96753b639a924599c1f69219927ea5301fff0a6063d427180d61542c2571f983e96635600000554f327a3535e7c7542799493c31ac05a7b57f03ca91a01ba2a30ca99e969d6fd09dc28ebc15edb4d91675767999d146aef7799738b292fd64bbca48568325b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a794963442aece449a0d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2869291b7d12096833d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e16e637d4219ef7ec61261173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ecab5d232f89fe0120f64c62e8e3ed8bcb45202c204bbec8d722824c0ebca8db1ea4a05e41f6016ab5bbe4fe7ff5d785d0128171c90d9900ca2532b0f9d01c4b45294fbba468df3e1b393cb4e62e753b4172ba7ac1f2b51c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addbc4b3093c91b8068c5adfcb0d7fd849904568916694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee077515d0a881192292ffff5392ab3d1311b82432662806add87047f601fa888400000000000000000000000000006acc19808d7cf29bc974b0ea92499a41b9b9a7c2bca311a28ee4952f2d325a56397c78f12205db653a536f0100e0eda300a43a13bd1b9f3322405d1efd78e578dc6b3fb84f3738a4b6caa800000087efa51c5d95ecba4e50e529d1e8c89600e809dc3d0a2f65579e23457949a50f2d0455cf699b3746979f99f6a1527f004f37e84fb478199dc1020f4beb98b8074bf7df8b5e783637daf121f175a81cffff4ac55a4385e9a617aa6c8e10d4202c5afeb06e2f9115558ea12f92d7ae543d44086b3f03b20d546fa66a72e38207c9d20035abc46271a30f1240de52536941242d23896ab74a3c6670fdc49c14f34fc4eadd6db8d80aba439772bf60a1db18c472dafc5569adc2c406f39f82928d2a1ffe29f1a57d3f18f4edaeb5d37918e6fddcd821da67a0785585a4443440dc65600e64a4a274000000000000000000000000000000000000000000000009dd14b38f2f5426d7cf5075047c31f6ce6adddfe3ac649c0643c8bfbeb14ba1fd7a485aa893915cf81e29aaf375e904bbe52691a4120260ffcd030000006d291ebcef893e1b9ccb6797d0646fe0e7274434f28efb43e06e64f0698caca42f4e6018a455736c482a017e2b13dac4a90faa109f0e87cc94e3efb649692456463ca74aa6ad4bf50c1acb3928143be1c1023a375e528285544d0064b98646f3109e9a4942ce42c6e7ec84b664f6c2770803f10b0a1fcbfc309381aeba191950bae71f37f1eb7ceeffb3c0547ac6571603adbfde4c8b5f8d7f4b854441613633b48865b65bdc415e1e0dcf672d68cf4cebf04f4bc1eebf560a26d3b332240d450fdb0a9a69f432e277f3a0386eb2bd1305c821c64757f786b79fef54dbe64c67d73934bc80b2133fb3c04cc7ea48bf97a6243c9f95dcbddecf45f008f1822c7868e1ff5a3cff5d6b6898335792749df7b1f51e91f8c1c3b1b93b33aaa3fab69cef08a9f6f6cf39dea3d878b2ed42545421970cc426e644332bc956d1c6adefdf0ede2c5c94aa632646ae225accdf031f611d01622921f1b922a5ac887cca3136133dce8d9f5f4da7bed2ea5d94362200000000000000000000f296b0c1484e5f781ad26bff696b05ff0a5e2270e07e18b04273bd4075ea38ab463bfa6a38e7c537498ba3e4df8dfc9e8c0a0d213c3ffad44d2a376def42e41e9fc3167a257e040fa7cf32c221aaac6cfdeb33c27500001a0000000000000000000017350000c11ae694b0c69c2c03f6790044a357e785af6e153d5f1ea460af92c7cbbd6295afe740f5e154346d483e0d10522a7a945b93fb705b95b6aae27a8fab1e6984c8bdc12360627137ab6737b68ab08a1a4b94cb29a74dc36b51209cfbc87f61182bbeb2772e9d5a1ffc477179be481ffe46a4ce86be0b1f8eee42a611a3d44ca450b14586ed63dd92005c79e4a8ab8a94f0b74903580ac98708007c80d6c7d0de4614195e40d797c0348dd70f36a220e8b3710fb5358c27e90793bcb9ee6319342c4b239ca8cbc6fc83d32e6eb62ad92e43991f2447be9c2a1ae1119eafb901a43d57e885116d19aa152bfb89f8d0b2516f80120a1cddff771657f3d0288ec3899f1e3ba0151c4037148fb479de703fc52b6573349c28d1b107d859b4961324c17756dde99de1924a1d2b7095d34a55060f47f4407d89acf9f1d2156befec432e8e993c79027b7ef285b20c2e6b3d0491d0d3591b0d94713332b6b79c8297117b0d14eff64e0aca8a4b4aa773d8fba1217e9519952419bb9dd998d0ec870ff00b6d556018602738fbc6cec89d6dd13cf55b96f6fe9a137d2d6a56ad78e52c23ed080000000000002bc261a781fd14126c146a0aac4221839a4b9bbf61e4bba695a41e2109eba8e40c370267cc51ffadbd15cafc97a4d3edfdcb9b5729307c6bdaf7b69325fb05fa8a9869de0600ee477d71bf3e36d1d9019edfa27aae24b632f251df210c86a18fae731ecb8b0d48357378caf2b6789509b1bacfd4fa812dc341875cfa5e798bbf59770000000000000000c8a594ea3c3347962d9113b1fecdfad5a8da641053f02e49456f5d21674521e67a5b18ea451eccf69dd6af928d2d68da9304a296c22fdc0500000000000000b1aade386b113045033a6188d56e675564d8cb8d5b40114b0f5bf15dd64c9ece60b8588ee8777d0ea8f4713b258427c7d90f9e93348e17723ba9ab8ae790f74cc41ae5795835f3cec40dff485d2802c08611454d9ea784a205bcc07ec26f906f3cf45bb37014ab6f22af6213618e242b283ea9d3f0677ee598072ec06f7170009d92bb87d9d12c378dfd3e74ec056ee83eef666423d934fc5908c9ff98715218a5964f1e00000000426ac9588e27aefe307f49662990ee823568bbc2f89596ced7c6c52d76b8096f1848410843b93fd404f535be474f456778b5ef85abb8fc2336abd5ea64a6efea8a5aca0015499b88ae780a7bae4df603bd3c72808cf300440b1b638a6640f7de8d0d82f359ca2f779cd48cd8d3603f4f69e47f386988c9b7b5d6dd3d48a1fdca780049d7c87bea42161a4c0d7cf0125b43dc9d8845f3c05a08acda647e7143d0e0aee2949a45e28488b0522c2288072467d2afe269f589fb7e034b92d3ca245b16b71998711bfe206c9690b6d0eebb06a29349229eb45ff15c63aa2c82c56d7420738cd1b04eb16e87cb524315d7361ea3635d3799bb7fcc56aa5e1dbe031a7a12554dee6754b72f43a6fddf427f32ec3df274a88097725679769beebf1aa6eb09d5154e4900000000000d0f7160a05911d969879953d3d4702b2676c07bb0fd14020a66718378825d5ed789711b77d40dc31e0b8fc651b45559da463f0000000000000000000000000052d42124e9c26aba885015e69d42ecd710342ac597ebea576ae15fdf611356f622e831741ab15549e0d7a2bd0324e2b3b48a10551607492c19eaf58485feb4cab19c303b30ba2ddea0d792d77724c9fa4ed58b93668fc20484f141ee2b6a0029e88fdc853189b4dafd36ff23b11967090e508f45e3f10857038a52ef275cf9e3e4b5d30b12d138dfa70930c603b5e3f4b7be67be3dba3cbd8d4d143195af0697d779445d67dcfbd922d12a8b49f93eac7a72faacf80346b3b669615f2710eb8df39fc8c04d2c9c196fa6facfea613569a35cde6451f2edf55ce25c7d72ec7ea85a92458c0559ca3a94727d495bd4671a55a70bc544d71d8e0257707a31936f1adf224077310a86bf447ec92c650acca8c6b0721020894b06178c32f4472d17174d6eb2b067030c5d2c12583f46d2da7fba42d4083259c7cdc8bf1f4299c248865d3c809356c3ed"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xffffffffffffffc2}, 0x48)

8m43.329289657s ago: executing program 9 (id=1599):
socket$netlink(0x10, 0x3, 0x8000000004)
ioctl$UI_SET_SNDBIT(0xffffffffffffffff, 0x4004556a, 0x6)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x800, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec0460f1c460041ae", 0x42}], 0x1, 0x74, 0x0, 0x0)
write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, &(0x7f0000000100)={0x30, 0x5, 0x0, {0x0, 0x4, 0x1, 0x9}}, 0x30)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

8m43.030321349s ago: executing program 9 (id=1602):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f00000002c0))
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="4400000010000104a5270b7357000000925e4a44", @ANYRES32, @ANYBLOB="0dfa130016000000240012000c00010000000000000000000c0002f60800000001180000080001"], 0x44}}, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000280)={r2, 0x7, 0x104, 0x7ff})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB='H'], 0x48}, 0x1, 0x0, 0x0, 0x20004810}, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

8m42.80157044s ago: executing program 9 (id=1605):
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x141842, 0x8)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, 0x0)
r1 = fanotify_init(0xf00, 0x1000)
fanotify_mark(r1, 0x105, 0x5000003a, r0, 0x0)
r2 = fanotify_init(0x1a, 0x800)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='.\x00', 0x0, 0x124)
fanotify_mark(r2, 0x441, 0x800003b, r3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000540)='./file7\x00', 0x1c0)
syz_mount_image$fuse(0x0, &(0x7f00000001c0)='./file7/file0\x00', 0x100000, 0x0, 0x0, 0x0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000780)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file7/file0\x00', 0x2)

8m42.7023067s ago: executing program 9 (id=1607):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r0 = syz_clone(0x88200200, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
chdir(&(0x7f0000000340)='./file0\x00')
setpgid(0x0, r0)
openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x120)

8m42.569204071s ago: executing program 9 (id=1608):
r0 = socket$inet6(0xa, 0x805, 0x0)
close(0x3)
r1 = socket(0x2, 0x80805, 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r2, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000200)={<r3=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r2, 0x84, 0x7a, &(0x7f0000001240)={r3, @in={{0x2, 0x4e24, @multicast2}}}, &(0x7f0000000040)=0x84)
sendmmsg$inet_sctp(r1, &(0x7f00000044c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="30000000000000008400000001000000000000017c"], 0x30}], 0x1, 0x40)
getsockopt$bt_hci(r0, 0x84, 0x1a, &(0x7f0000003300)=""/4060, &(0x7f00000010c0)=0xfdc)

8m27.083561522s ago: executing program 37 (id=1608):
r0 = socket$inet6(0xa, 0x805, 0x0)
close(0x3)
r1 = socket(0x2, 0x80805, 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r2, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000200)={<r3=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r2, 0x84, 0x7a, &(0x7f0000001240)={r3, @in={{0x2, 0x4e24, @multicast2}}}, &(0x7f0000000040)=0x84)
sendmmsg$inet_sctp(r1, &(0x7f00000044c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="30000000000000008400000001000000000000017c"], 0x30}], 0x1, 0x40)
getsockopt$bt_hci(r0, 0x84, 0x1a, &(0x7f0000003300)=""/4060, &(0x7f00000010c0)=0xfdc)

6m51.637802314s ago: executing program 7 (id=2272):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000020001801000020646c21000000000020"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="a8"], 0xa8)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f0000000040)={0x30}, 0x30)
write$FUSE_BMAP(r2, &(0x7f0000000000)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000005c0)=ANY=[@ANYBLOB='2\x00\x00'], 0x10)
mount$9p_fd(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@posixacl}]}})

6m51.170626196s ago: executing program 7 (id=2275):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000009a40)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000"], 0xd8}}, 0x80)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
sendto$inet6(r0, &(0x7f00000001c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f35d4ea667817d90d532af065f2e398dd9081ea16f8b371a202a6f9e505bbc964a0d3880bf0104a0a0a2f0d311efee1637e85a0125b38f961918f99bf9c2c146e42327f178dc2b3d4936e7f7f0a79f74ba464d83ab41742d1186776dc1779b5c50ac82d0fa8f9e42074b5b6079207fb21e718080907964669be539791e3e98687ee059853", 0xfffffffffffffcc1, 0x840, 0x0, 0x56)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x30)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r1, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000000)=0x40)

6m50.973735228s ago: executing program 7 (id=2276):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000040)=ANY=[], 0x118)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000118110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014002000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r3}, 0x10)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x14, 0x7b52e4aff0f1e2e7, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

6m50.883854178s ago: executing program 7 (id=2277):
pipe2$watch_queue(&(0x7f00000002c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x80)
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x1048001, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x2, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r1 = syz_clone(0x904000, 0x0, 0x5f, 0x0, 0x0, 0x0)
setpgid(r1, 0x0)
r2 = getpgid(r1)
setpgid(0x0, r2)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_ASKUMOUNT(r3, 0x80049370, &(0x7f00000000c0))

6m50.638219869s ago: executing program 7 (id=2278):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
r0 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r0, &(0x7f000001b700)=""/102392, 0x18ff8)
epoll_pwait2(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x0, 0x0, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
recvmsg(r1, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x41, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0xd68210}], 0x1, 0x0, 0x1f00000000000000, 0x200000}, 0x1f00)
sendmsg$tipc(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)

6m47.10588488s ago: executing program 7 (id=2288):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$PTP_ENABLE_PPS(0xffffffffffffffff, 0x40043d04, 0x0)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)

6m46.021987987s ago: executing program 38 (id=2288):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$PTP_ENABLE_PPS(0xffffffffffffffff, 0x40043d04, 0x0)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)

3m29.271214234s ago: executing program 3 (id=3163):
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0}, 0x18)
mmap(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x3000002, 0x4c831, r0, 0x0)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000100)={0xaa, 0x380})
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000040)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00001b1000/0x4000)=nil, 0x400000, 0x2, 0x2})
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x15)
syz_clone3(&(0x7f0000001880)={0x100000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_usb_connect(0x0, 0x24, 0x0, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1, 0x0, 0x0, 0x2)

3m24.494575742s ago: executing program 3 (id=3185):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r2, &(0x7f00000002c0)={0xa, 0x4e24, 0x0, @rand_addr, 0x8000}, 0x1c)
sendmmsg(r2, &(0x7f00000092c0), 0x4ff, 0xfdff)

3m23.10255657s ago: executing program 3 (id=3191):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x1, 0x5, 0x29fd, 0x84, 0x105}, 0x48)
bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x6c, r3}, 0x38)

3m21.700559589s ago: executing program 3 (id=3197):
syz_mount_image$fuse(0x0, &(0x7f0000000100)='./file0\x00', 0x20, 0x0, 0x0, 0x0, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
chdir(&(0x7f0000000040)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYRESHEX=0x0])
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x220)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, r0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
pivot_root(&(0x7f0000000240)='./file0\x00', &(0x7f0000000000)='./file0/../file0\x00')

3m21.39719398s ago: executing program 3 (id=3199):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x0, '\x00', 0x0, 0x0}, 0x50)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x15, 0x1c, &(0x7f0000000000)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {0x7, 0x0, 0xb, 0x6}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x0, 0x8}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x6, 0x1, 0xa, 0x9, 0x8}, {0x7, 0x0, 0x0, 0x8}, {0x7, 0x1, 0xb, 0x4, 0x8}, {}, {0x7, 0x0, 0xc}, {0x18, 0x6, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

3m21.105059382s ago: executing program 3 (id=3202):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x6)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x16, 0xe, &(0x7f0000001480)=ANY=[@ANYBLOB="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"/686], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340)}, 0x42)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r3, 0x0, 0xe, 0x0, &(0x7f0000000080)="05804ab382844306d758e620b9dc", 0x0, 0x12c4, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)

3m19.832045849s ago: executing program 39 (id=3202):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x6)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x16, 0xe, &(0x7f0000001480)=ANY=[@ANYBLOB="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"/686], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340)}, 0x42)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r3, 0x0, 0xe, 0x0, &(0x7f0000000080)="05804ab382844306d758e620b9dc", 0x0, 0x12c4, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)

1m29.280021118s ago: executing program 0 (id=3710):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000000c0)='neigh_create\x00', r0}, 0x18)
r1 = socket(0x8000000010, 0x2, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x2, 0xc, 0x1400}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x4e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={0x0}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={0x0}, 0x18)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r3}, 0x10)
socket$inet6_udp(0xa, 0x2, 0x0)
write(r1, &(0x7f00000002c0)="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", 0xfc)

1m28.96725839s ago: executing program 0 (id=3712):
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000050000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000002a97850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000007c0)={r2}, 0xc)

1m26.162364686s ago: executing program 0 (id=3730):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x40001e0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket(0x40000000015, 0x5, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r3, 0xffffffffffffffff, 0x0)

1m25.086001203s ago: executing program 0 (id=3735):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffed7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000080), &(0x7f00000001c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff})
splice(r4, 0x0, r3, 0x0, 0x1, 0x0)
fcntl$setpipe(r3, 0x408, 0x7)

1m21.226987855s ago: executing program 0 (id=3740):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x88200200, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x200000, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='proc\x00', 0x0, 0x0)
setpgid(0x0, r0)
mkdirat(0xffffffffffffff9c, 0x0, 0x1c0)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)

1m20.103574751s ago: executing program 0 (id=3746):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x48)
fsmount(0xffffffffffffffff, 0x0, 0x81)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(0xffffffffffffffff, 0x29, 0x37, 0x0, 0x8)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f0000000480), 0xffffffffffffffff)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000000)={'team0\x00', <r3=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000280)={0x58, r1, 0x1, 0x70bd27, 0x25dfdbfb, {}, [{{0x8, 0x1, r3}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x7fff}}}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044890}, 0x24008000)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000000)={'team0\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=@newlink={0x54, 0x10, 0xffffffffffffffff, 0x70bd25, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x40000, 0x823}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_LOCAL={0x14, 0x6, @mcast1}]}}}, @IFLA_MASTER={0x8, 0xa, r6}]}, 0x54}, 0x1, 0x0, 0x0, 0x40440e4}, 0x20040000)

1m15.956368625s ago: executing program 6 (id=3762):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0be9ffff000000000000000064846932de260d32b0829668028c1bbaefb8b070a12345de257136037eda03eb8f0967b4f853d5472fe487ba90d01a7e7e66fea4b1"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0x1}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000680), &(0x7f0000000780), 0x6, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe2(&(0x7f0000001440)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
splice(r4, 0x0, r3, 0x0, 0x6, 0x0)
fcntl$setpipe(r3, 0x407, 0x0)

1m14.710408193s ago: executing program 6 (id=3763):
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x541c, &(0x7f0000000000))
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2, &(0x7f0000000600)={[{@orlov}, {@nodioread_nolock}]}, 0x0, 0x23c, &(0x7f00000006c0)="$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")
add_key$fscrypt_v1(0x0, &(0x7f0000000080)={'fscrypt:', @auto=[0x8d72793dad76fd19, 0x36, 0x66, 0x0, 0x32, 0x38, 0x62, 0x33, 0x62, 0x39, 0x33, 0x37, 0x66, 0x63, 0x62, 0x35]}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300", 0xffffffff}, 0x48, 0xffffffffffffffff)
socket$inet6(0xa, 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r1}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
timer_create(0x0, 0x0, &(0x7f0000bbdffc)=<r2=>0x0)
timer_delete(r2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x3)

1m14.326141715s ago: executing program 6 (id=3767):
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000005c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0, 0x13}], 0x2)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000003c0))
sendmsg$SOCK_DIAG_BY_FAMILY(0xffffffffffffffff, 0x0, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000400)={r1, <r2=>0xffffffffffffffff}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x16, 0x10, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000ffff0b867b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r3, 0x0, 0xe, 0x48000000, &(0x7f0000000300)="40f0538ef047b21fb60068305500", 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1m14.097387676s ago: executing program 6 (id=3768):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$inet(r3, &(0x7f0000000380)={&(0x7f0000000000)={0x2, 0x4e22, @remote}, 0x10, &(0x7f0000000100)=[{&(0x7f0000000040)="6b1690bb8dc095ebae95baccdce177a97389ae7df65487e3996df64c35efa6e159bd2f2180", 0xfdef}], 0x1, &(0x7f0000000140)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @dev}}}, @ip_retopts={{0x16, 0x0, 0x7, {[@ra={0x94, 0x4}, @generic={0x0, 0x2}]}}}], 0x38}, 0x0)

1m11.704747191s ago: executing program 6 (id=3782):
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
close(r2)
r3 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000340)=0x1, 0x4)
connect$inet6(r3, &(0x7f0000000180)={0xa, 0x3, 0x0, @dev={0xfe, 0x80, '\x00', 0x20}, 0x9}, 0x1c)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r4, 0x107, 0x16, &(0x7f0000000100)={0x2, &(0x7f0000000180)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x6}]}, 0x10)
vmsplice(r1, &(0x7f0000000240)=[{&(0x7f0000001340)="e6", 0xfffffeff}], 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000100)={0x0, 0xcbf, 0x10efe}, 0x14)
splice(r0, 0x0, r3, 0x0, 0x5947, 0xc)

1m11.314741383s ago: executing program 6 (id=3773):
setsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x83, &(0x7f0000000080), 0x8)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x102, 0x0)
ioctl$PPPIOCATTCHAN(r1, 0x40047438, &(0x7f0000000040)=0x1)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
unshare(0x6a040000)
socket(0x8, 0x3, 0x0)
writev(r1, &(0x7f00000004c0)=[{&(0x7f0000000140)="fe345bed6f1f3bfe3cefb7a4944d09e7a6daa22913f136c8f7a9291e1823ad34b7103518ec7da89633c55d81fa61cc067495a3a1fbf0deb8d47161da71f18ce672a282d25356b498084b1f545d7c7e2a", 0x50}, {0x0}, {0x0}, {&(0x7f0000000540)="c492e140161e04c1d183dcd72bbc3a59168e29818cc59c3f8edfda3a7de609d1931c63790d4eebddf004d43ba17a8afd3daa7b5ecccf2bf165a6a2447dbd04e6dc874d25c3716b073119e9f9d810b77fcb5a4111008a063ce81aef535ddd00cf6e02869da5302cf8b3ee9d10a69ec9f5015f775246107662ba2e3ee92276dcb2022fad59933b90dfecb2acbb45e3e5064a8a96bb56919f9119a2f24f16bf89988b60df0d6088e9ac677d7c823db9a28210e7cda5633a1ea79c97fbb2d32bdd", 0xbf}, {0x0}, {0x0}], 0x6)

1m4.746538831s ago: executing program 40 (id=3746):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x48)
fsmount(0xffffffffffffffff, 0x0, 0x81)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(0xffffffffffffffff, 0x29, 0x37, 0x0, 0x8)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f0000000480), 0xffffffffffffffff)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000000)={'team0\x00', <r3=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000280)={0x58, r1, 0x1, 0x70bd27, 0x25dfdbfb, {}, [{{0x8, 0x1, r3}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x7fff}}}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044890}, 0x24008000)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000000)={'team0\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=@newlink={0x54, 0x10, 0xffffffffffffffff, 0x70bd25, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x40000, 0x823}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_LOCAL={0x14, 0x6, @mcast1}]}}}, @IFLA_MASTER={0x8, 0xa, r6}]}, 0x54}, 0x1, 0x0, 0x0, 0x40440e4}, 0x20040000)

56.198466871s ago: executing program 41 (id=3773):
setsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x83, &(0x7f0000000080), 0x8)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x102, 0x0)
ioctl$PPPIOCATTCHAN(r1, 0x40047438, &(0x7f0000000040)=0x1)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
unshare(0x6a040000)
socket(0x8, 0x3, 0x0)
writev(r1, &(0x7f00000004c0)=[{&(0x7f0000000140)="fe345bed6f1f3bfe3cefb7a4944d09e7a6daa22913f136c8f7a9291e1823ad34b7103518ec7da89633c55d81fa61cc067495a3a1fbf0deb8d47161da71f18ce672a282d25356b498084b1f545d7c7e2a", 0x50}, {0x0}, {0x0}, {&(0x7f0000000540)="c492e140161e04c1d183dcd72bbc3a59168e29818cc59c3f8edfda3a7de609d1931c63790d4eebddf004d43ba17a8afd3daa7b5ecccf2bf165a6a2447dbd04e6dc874d25c3716b073119e9f9d810b77fcb5a4111008a063ce81aef535ddd00cf6e02869da5302cf8b3ee9d10a69ec9f5015f775246107662ba2e3ee92276dcb2022fad59933b90dfecb2acbb45e3e5064a8a96bb56919f9119a2f24f16bf89988b60df0d6088e9ac677d7c823db9a28210e7cda5633a1ea79c97fbb2d32bdd", 0xbf}, {0x0}, {0x0}], 0x6)

43.180111958s ago: executing program 2 (id=3850):
socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2000002, 0x200000005c832, 0xffffffffffffffff, 0x0)
r0 = io_uring_setup(0x3eae, &(0x7f0000000080)={0x0, 0x6d33, 0x1000, 0x0, 0x4000000})
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000002c0), 0x0)
capset(0x0, 0x0)
r1 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
r2 = socket(0x15, 0x5, 0x0)
getsockopt(r2, 0x200000000114, 0x2711, &(0x7f0000032580)=""/102396, &(0x7f0000000000)=0x18ffc)
write$UHID_CREATE2(r1, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1008082, &(0x7f00000001c0)={[{@nodioread_nolock}, {@nolazytime}, {@abort}, {@errors_continue}, {@dioread_nolock}, {@jqfmt_vfsv0}, {@nomblk_io_submit}, {@nobarrier}]}, 0x0, 0x5e0, &(0x7f00000011c0)="$eJzs3c1vVFUbAPDnTj9oKe/bQt68igtpYgwkSksLGGJcwNaQBj/ixo2VFkQKNLRGiyaUBDcmxo0xJq5ciP+FEtmy0pULN64MCVHD0sQxd3pv6bR3+kU7t3J/v2TouefM5Zzb6dNz5vScOwFU1mD6Ty1if0RMJxH9yfxiWWdkhYMLz3vw50dn00cS9fprvyeRZHn585Psa192ck9E/PhDEvs6VtY7M3ft4vjU1OTV7Hh49tL08MzctcMXLo2fnzw/eXn0hdETx48dPzFyZFPXdb0g7/TNd9/v/2TszW+++isZ+faXsSROxsvZE5dex1YZjMHG9yRZWdR3YqsrK0lH9nOy9CVOOoue2dW+RrFu+euXvjpPRH90xMMXrz8+fqXUxgHbqp5E1IGKSsQ/VFQ+Dsjf2y9/H1wrZVQCtMP9UwsTACvjv3NhbjB6GnMDux8ksXRaJ4mIzc3MNdsTEXfvjN08d2fsZmzTPBxQbP5GRDxZFP9JI/4HoicGGvFfa4r/dFxwJvua5r+6yfqXTxWLf2ifhfjvWTX+o0X8v7Uk/t/eZP2DD5Pv9DbFf+9mLwkAAAAAAAAq6/apiHi+6O//tcX1P1Gw/qcvIk5uQf2Dy45X/v2/dm8LqgEK3D8V8VLh+t9avvp3oCNL/aexHqArOXdhavJIRPw3Ig5F1670eGSVOg5/uu/LVmWD2fq//JHWfzdbC5i1417nruZzJsZnxx/1uoGI+zcinipc/5ss9v9JQf+f/j6YXmcd+569daZV2drxD2yX+tcRBwv7/4d3rUhWvz/HcGM8MJyPClZ6+sPPvmtV/2bjv/AWE8CGpP3/7tXjfyBZer+emY3XcXSus96qbLPj/+7k9cYtZ7qzvA/GZ2evjkR0J6c70tym/NGNtxkeR3k85PGSxv+hZ1af/ysa//dGxPyy/zv5o3lPce7/f/f92qo9xv9QnjT+JzbU/288MXpr4PtW9a+v/z/W6OsPZTnm/2DBF3mYdjfnF4RjZ1FRu9sLAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAI+DWkTsiaQ2tJiu1YaGIvoi4n+xuzZ1ZWb2uXNX3rs8kZY1Pv+/ln/Sb//CcZJ//v/AkuPRZcdHI2JvRHze0ds4Hjp7ZWqi7IsHAAAAAAAAAAAAAAAAAACAHaKvxf7/1G8dZbcO2HadZTcAKE1B/P9URjuA9tP/Q3WJf6gu8Q/VJf6husQ/VJf4h+oS/1Bd4h8AAAAAAB4rew/c/jmJiPkXexuPVHdW1lVqy4DtViu7AUBp3OIHqsvSH6gu7/GBZI3ynpYnrXXmaqbPPsLJAAAAAAAAAAAAAFA5B/fb/w9VZf8/VJf9/1Bd+f7/AyW3A2g/7/GBWGMnf+H+/zXPAgAAAAAAAAAAAAC20szctYvjU1OTVyXe2BnNaGeiXq9fT38Kdkp7/uWJfCn8TmnPskS+1299Z5X3OwkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGj2TwAAAP//+Ekkyg==")
ioctl$PPPIOCGDEBUG(0xffffffffffffffff, 0x80047441, 0x0)
r3 = syz_open_dev$hidraw(&(0x7f00000004c0), 0x0, 0x14a042)
ioctl$HIDIOCGRDESC(r3, 0x90044802, &(0x7f0000000080)={0xfffffffffffffcd3})

42.82779889s ago: executing program 2 (id=3851):
syz_open_dev$usbmon(&(0x7f0000000000), 0x80000001, 0x82002)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x0, 0x2})
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000080)={0x5c, 0x0, &(0x7f0000000340)=[@increfs, @acquire={0x40046305, 0x2}, @reply_sg={0x40486312, {0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
r3 = dup3(r2, r1, 0x0)
ppoll(&(0x7f0000000000)=[{r1, 0xa100}], 0x1, 0x0, 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000540)={0x10, 0x0, &(0x7f0000000440)=[@request_death], 0x0, 0x1000000, 0x0})
read$FUSE(r0, &(0x7f0000006100)={0x2020}, 0x2020)
read$FUSE(r0, &(0x7f00000040c0)={0x2020}, 0x202e)
sendmsg$NL80211_CMD_NOTIFY_RADAR(r3, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x24, 0x0, 0x20, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xee6}]}, 0x24}, 0x1, 0x0, 0x0, 0x200000c0}, 0x20000004)

41.601323786s ago: executing program 2 (id=3855):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
r2 = socket(0x10, 0x3, 0x0)
connect$netlink(r2, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x25dfdbff, 0x18200002}, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=@newlink={0x34, 0x10, 0xffffff1f, 0x4, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}]}, 0x34}}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
memfd_create(&(0x7f0000000540)='y\x105\xfb\xf7u\x83%\x1f\xe09@:r\xc2\xb9x0\x90P\x03\x00\x00\x00\x00\x00\x00\x00\xfe,\x1c\xf1\xdd\xcf]\xac\xbc\t\xbb\xfc\xa4j\x9f\xceX\x8f5=\xaa\xd5\xe9n\xab s\xa5\x00\x8d\tV\t\x91\x18\x06O\xb0=D\xda\xb6F\x1a\xc82\x8b\xc0l\xd0\x89d\xe6\xb7\xd8\x97\xb8\xde\xa3\x89\"%/u\x17\xdam\x8d\x01Lh\x1e^\x9ej\x1c\xc5\xf0\xf6\x92\x05\x9aH\x00\'\xd4\x94d[\v\xfc\xad\x0f\xa8\xc5\xad\x001\x8b%\xaa?\x00\x00\x00\x00\x00\x00\x00\nj\x8c\xef\x90\xc0Z\xfa\x1a\xb3\xf0wVq\xe9d\xf8N\x80\xd1g\xd8e\xc8\x16\xad1\x02\xab\xce3\xb2\xb0\xd1\x11\xf0\xc2Gj+kV', 0x2)

40.896711711s ago: executing program 2 (id=3859):
syz_mount_image$udf(&(0x7f0000000180), &(0x7f0000000100)='./bus\x00', 0x1014494, &(0x7f00000001c0)=ANY=[@ANYBLOB="696f636861727365743d63703933322c706172746974696f6e3d30303030303030303030303030303030303030332c6769643d666f726765742c6769643d666f726765742c6e6f6164696e6963622c756e64656c6574652c7569643d666f726765742c00fb5ebc1bbec00aea8217b7375ace1f91cad4e856ac3ce827902dd91a9a936650ca99205dc1adee73bc464ab6ea2dad7091eea47594f5ef5227a72684b2ed98640aa52eba3e04c81c829036f312ecb1c7483575d32ed9eef652c6b7284dc45cecea6a0ae3a01c5cd7b60af90431eddc00"/225], 0xfe, 0xc24, &(0x7f0000001480)="$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")
open(&(0x7f0000000100)='./file0\x00', 0x880ff, 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x141842, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, 0x0, 0xfc, 0x0, &(0x7f00000000c0))
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r0 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000440)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', r0, &(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
r1 = syz_open_dev$loop(&(0x7f0000000040), 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r1, 0x4c02, &(0x7f0000000140)={0x0, {}, 0x0, {}, 0x1, 0x3, 0x13, 0x0, "61fce678192bb3589187b027eaf067dcc2d26cef0b0e59d91144568d0da45854df0a1a05fb21d427099f2793ae3dbede800000000000000000000000ed00", "08e911091678671f506c64718cbb9ec50200000000000000f25800", [0xe53, 0x802]})
creat(&(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x140)

38.766204803s ago: executing program 2 (id=3865):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x42}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0x4, 0xa}, {}, {0xfff2, 0x2}}, [@filter_kind_options=@f_bpf={{0x8}, {0x18, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x6, 0xd, 0x5, 0x4}]}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x8848}, 0x80)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
openat$kvm(0xffffffffffffff9c, 0x0, 0x20040, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, r6, {0x4, 0xa}, {}, {0xfff2, 0x2}}, [@filter_kind_options=@f_bpf={{0x8}, {0x18, 0x2, [@TCA_BPF_OPS={{0x6}, {0x4}}, @TCA_BPF_FD={0x8}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4008848}, 0x80)

38.341368656s ago: executing program 2 (id=3868):
syz_clone(0x638c1100, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x4)
syz_clone3(&(0x7f0000000140)={0x4000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r1 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x3)
fcntl$setsig(r1, 0xa, 0x11)
fcntl$setlease(r1, 0x400, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = getpid()
fcntl$setownex(r2, 0xf, &(0x7f0000000100)={0x2, r3})
ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f00000001c0)=<r4=>0x0)
fcntl$setown(r1, 0x8, r4)
truncate(&(0x7f0000000000)='./file0\x00', 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

22.783961497s ago: executing program 42 (id=3868):
syz_clone(0x638c1100, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x4)
syz_clone3(&(0x7f0000000140)={0x4000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r1 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x3)
fcntl$setsig(r1, 0xa, 0x11)
fcntl$setlease(r1, 0x400, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = getpid()
fcntl$setownex(r2, 0xf, &(0x7f0000000100)={0x2, r3})
ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f00000001c0)=<r4=>0x0)
fcntl$setown(r1, 0x8, r4)
truncate(&(0x7f0000000000)='./file0\x00', 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

10.816686917s ago: executing program 8 (id=3931):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000340)=ANY=[], 0xd0}, 0x1, 0x0, 0x0, 0x4000001}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
dup(0xffffffffffffffff)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000580)=[@text16={0x10, 0x0}], 0x1, 0x20, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000300)=[{&(0x7f0000000340)="580000001400192340834b80040d8c560a117436c379000000000000000058000a", 0x21}], 0x1)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x3, 0xe, 0x8, 0x0, 0x7, 0x1, 0xe, 0x80, 0xe, 0x7, 0x4, 0x9, 0x0, 0x5, 0x3, 0x3, 0x7, 0x0, 0xdb, '\x00', 0x40, 0x6ea93ba1})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10.393458089s ago: executing program 8 (id=3934):
socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x9)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r1 = fsopen(&(0x7f0000000040)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x0)
fchdir(r2)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)
getdents64(r3, &(0x7f00000001c0)=""/65, 0x66)

9.321861825s ago: executing program 8 (id=3937):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
close(r1)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002a20702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000280)='kfree\x00', r3}, 0x18)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0xb, 0xd}, {}, {0x8, 0xfff1}}}, 0x24}}, 0x40004)
recvmmsg(r5, &(0x7f0000005140)=[{{0x0, 0x0, &(0x7f0000001a80)=[{&(0x7f0000000640)=""/216, 0xd8}, {&(0x7f00000052c0)=""/223, 0xdf}, {&(0x7f0000003080)=""/4096, 0x1000}], 0x3}, 0x3}], 0x1, 0x0, 0x0)

6.91415802s ago: executing program 5 (id=3944):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000d00000000080000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000300)='netlink_extack\x00', r3}, 0x18)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=@ipv6_newnexthop={0x18, 0x68, 0x1, 0xfffffffd, 0x0, {0xa, 0x0, 0x2, 0x0, 0x4}}, 0x18}, 0x1, 0x0, 0x0, 0x40008d0}, 0x48040)

6.575443202s ago: executing program 8 (id=3947):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
accept4(r0, 0x0, 0x0, 0x800)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='syzkaller\x00', 0x1, 0xc3, &(0x7f00000002c0)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff37}, 0x48)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r2, 0x1, 0x1000000000000f, &(0x7f0000000080)=0x7fffffff, 0x4)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000940)=ANY=[@ANYBLOB="140000003800010727bd7000ffdbdf2506000000d008885390cb0bc20b83d32abc07e3e8159c56c31459b800e3487a9ff26071c0ae2e454fb1c02ec0d760f291b85e3ea3e0b448d14c2addd9f4bc1d0994396308efb7d9a7104c0d7728d086ce2a5f16209e4f9a3303fe75262d1508c99c756e7fdee5912d41b6222fb8bb8a8bdef5d0181c"], 0x14}, 0x1, 0x0, 0x0, 0x4048011}, 0x4000000)
setsockopt$sock_attach_bpf(r2, 0x1, 0x34, &(0x7f0000000040)=r1, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="b7000000ecffffff0c0000000000000095000000000000005e0c83dfb64a3eb1cdfa541cd3957aa8a96b9fa4591c1eb556e38defc504b011face5a06294c2115a9ad943bac350e8d7961537181f79ead9176dc7c3ed2d45004deb987fa0d"], &(0x7f0000003ff6)='syzkaller\x00', 0x1, 0xc3, &(0x7f00000002c0)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff37}, 0x48)
r5 = dup2(r4, r1)
setsockopt$sock_attach_bpf(r2, 0x1, 0x34, &(0x7f00000000c0)=r5, 0x4)

5.18268299s ago: executing program 8 (id=3950):
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000000000040de28021100000000000109022400010000d00009040004010300000009210100f90122050009058103"], 0x0)
syz_clone(0xc510c080, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r2}, 0x18)
pipe2$9p(&(0x7f0000000240), 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0x2)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000040)={0x2c, &(0x7f0000000200)=ANY=[@ANYBLOB=' \v@'], 0x0, 0x0, 0x0, 0x0}, 0x0)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(0xffffffffffffffff, 0x8983, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8982, 0x0)

4.307853985s ago: executing program 5 (id=3955):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r0, 0x0)
pipe(&(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
close(r3)
r4 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r4, 0x6, 0x13, &(0x7f0000000340)=0x1, 0x4)
connect$inet6(r4, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x13}, 0x9}, 0x1c)
write$P9_RREAD(r2, &(0x7f0000000680)=ANY=[], 0x73)
vmsplice(r2, &(0x7f0000000240)=[{&(0x7f0000001340)="e6", 0xfffffeff}], 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r3, 0x6, 0x1d, &(0x7f0000000100)={0x0, 0xcbf, 0x10efe}, 0x14)
splice(r1, 0x0, r4, 0x0, 0x5947, 0xc)

3.647256949s ago: executing program 5 (id=3957):
r0 = syz_open_dev$loop(&(0x7f0000000240), 0x7, 0x142ba3)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/oops_count', 0x8a883, 0x2)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f0000000080)={r1, 0x0, {0x0, 0x0, 0x0, 0x7, 0x4000000000000ffd, 0x0, 0x0, 0x1e, 0xc, "faf98317e5a1149989fc8dbe43ea6acc96e3a2503dc3bd3fe37d58128bbad0099cebdc25f5ab60c9e6d680f985881a7beda9d69098c8b534464c516bdd8a0f35", "32d8cc26f7061a74df2cfc06c89f3d9e234b30c50997d3bef409ff2176ff7bfe55cd4a5d83cd4a524bd3ffe70c7f3f800b2f7b6aa54cc50a1fcaed1e831fa79a", "67523760fd40f78d2cfc03d81a8ca55ba139c01802c4dae4162e43ac61b7ad33", [0x2, 0x9]}})
ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x6)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = syz_open_dev$vim2m(&(0x7f0000000100), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r4, 0xc0cc5605, &(0x7f0000000180)={0x1, @pix_mp={0xfffffff8, 0x5, 0x34325241, 0x9, 0x4, [{0x9, 0x3}, {0x3, 0x1000}, {0x1, 0x451}, {0xffffff16, 0x4}, {0x6, 0x4}, {0xfffffff8, 0x3d}, {0x4, 0x5}, {0x5, 0xfffffbff}], 0x1, 0x3, 0x0, 0x0, 0x6}})
sendmsg$alg(r3, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
sendmsg$nl_route_sched_retired(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000012100), 0xe078}}, 0x0)
read(r3, &(0x7f00000009c0)=""/4096, 0x1000)

3.41614992s ago: executing program 1 (id=3959):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000001680)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
prctl$PR_GET_IO_FLUSHER(0x4)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
move_pages(r3, 0x2, &(0x7f00000000c0)=[&(0x7f0000573000/0x2000)=nil, &(0x7f0000243000/0x2000)=nil], 0x0, &(0x7f0000001680), 0x2)

3.284813251s ago: executing program 4 (id=3960):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r3, 0x29, 0x1000000000021, &(0x7f0000000040)=0x5, 0x4)
sendmsg$inet6(r3, &(0x7f0000000140)={&(0x7f0000000080)={0xa, 0x4e26, 0x80004, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000100)=ANY=[], 0x30}, 0x0)

2.583845945s ago: executing program 1 (id=3961):
sched_setaffinity(0x0, 0x0, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
r1 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r1, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x0, 0x2}, 0x10)
sendmsg$tipc(r3, &(0x7f0000000540)={&(0x7f00000001c0)=@name={0x1e, 0x2, 0x0, {{0x42}, 0x2}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x10)

2.452469756s ago: executing program 4 (id=3962):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'macvlan1\x00'})
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000300)=ANY=[], 0x40}}, 0x0)
syz_mount_image$nilfs2(&(0x7f0000000000), &(0x7f0000000400)='./file0\x00', 0x8, &(0x7f0000003280)=ANY=[@ANYRESOCT], 0x1, 0xd99, &(0x7f0000019580)="$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")
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='nilfs2_transaction_transition\x00', r1, 0x0, 0xc0b}, 0x18)
r2 = socket(0x848000000015, 0x805, 0x0)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x1a}, 0x10}, 0x1c)
sendto$inet6(r2, 0x0, 0x0, 0x0, &(0x7f00000003c0)={0xa, 0x0, 0x0, @private2, 0x3ff}, 0x1c)
r3 = socket(0x40000000015, 0x5, 0x0)
getsockopt(r3, 0x200000000114, 0x271c, &(0x7f0000000580)=""/102393, &(0x7f0000000040)=0x18ff9)
unlinkat(0xffffffffffffff9c, &(0x7f0000000c40)='./file1\x00', 0x0)

2.212531997s ago: executing program 5 (id=3963):
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180))
pipe(&(0x7f0000000200))
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$igmp(0x2, 0x3, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket$igmp6(0xa, 0x3, 0x2)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYBLOB="380000001800010000000000000000000a000000000000000000000008000400", @ANYRES32=r1, @ANYBLOB="06001500070000000c00168008000100", @ANYRES8=r0], 0x38}}, 0x50)

2.034026858s ago: executing program 5 (id=3964):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf00fc01ec422e10399c5c1202063df", 0xd4000003, 0x0, {[0x3]}}, 0x0, 0x8, &(0x7f0000000300))
poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x41624800ab11328d, 0x4})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000700)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r2}, 0x0, &(0x7f0000000340)=r3}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r4}, 0x10)
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)

2.033587898s ago: executing program 4 (id=3965):
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x4008032, 0xffffffffffffffff, 0x0)
mlock(&(0x7f00007fe000/0x800000)=nil, 0x800000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

1.624875471s ago: executing program 5 (id=3966):
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xe)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x1, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
close(r1)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x80)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_RX_RING(r2, 0x11b, 0x2, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
syz_clone3(&(0x7f0000000680)={0x40004000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)

1.501192212s ago: executing program 1 (id=3967):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x10)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x6, &(0x7f0000000000), 0x4)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f00000000c0)={'team0\x00', <r4=>0x0})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'bond0\x00', <r6=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB="280000001300010029bd7000fcdbdf2500000000", @ANYRES32=r6, @ANYBLOB="201000000904000008000a00", @ANYRES32=r4], 0x28}, 0x1, 0x0, 0x0, 0x24004000}, 0x8804)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14080, 0x10000}, [@IFLA_OPERSTATE={0x5, 0x10, 0x5}, @IFLA_GROUP={0x8}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000040}, 0x4004004)

1.415214892s ago: executing program 4 (id=3968):
r0 = socket(0x10, 0x803, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x800448f0, &(0x7f0000000100)="e610d126ea49451055fc6b7fc4e7a48d36b4a6ed0be79ab2a27bb6945e635733d03a14824fc30f32faa8d213d3f9484ef32a49872b0915c6193d0acc124763c2226a6e2be014701029d8a27b1ce8907d1548d87f41589a7ae5131dc28586b582429cb9845b36973ce14c4f49720493effb585afd006f39db5248cb56551c3a1117081f30cc7fb0f558466751b1d375533ba7e95d6042815ae69c4c28f5744d035092bb51700a02f74578f8faaff7495dcd048bbe856b332b")
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="4400000002060108000000000000000000000000050005000a0000c4050001000700000005000400000000000900020073797a31000000000c000300686173683a6970"], 0x44}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="8c0000000906010200000000000000000200ffff08000940000000390900020073797a310000000005000100070000005c0008801c0007801800018014000240fe"], 0x8c}, 0x1, 0x0, 0x0, 0x10000082}, 0x4000080)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r5, 0x89f0, &(0x7f00000001c0)={'sit0\x00', &(0x7f0000000180)={'gre0\x00', 0x0, 0x8000, 0x20, 0xfffffeff, 0xf510, {{0x5, 0x4, 0x3, 0x2, 0x14, 0x64, 0x0, 0x2f, 0x4, 0x0, @loopback, @multicast2}}}})
sendmsg$IPSET_CMD_FLUSH(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000040601020000000200000000000000000500010007"], 0x1c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@newlink={0x6c, 0x10, 0x503, 0x1, 0x700, {0x0, 0x0, 0x0, 0x0, 0x2201}, [@IFLA_LINKINFO={0x4c, 0x12, 0x0, 0x1, @ipip={{0x9}, {0x3c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LOCAL={0x8, 0x2, @multicast2}, @IFLA_IPTUN_PROTO={0x5, 0x9, 0x4}, @IFLA_IPTUN_TOS={0x5, 0x5, 0x3}, @IFLA_IPTUN_FWMARK={0x8, 0x14, 0x2}, @IFLA_IPTUN_PROTO={0x5, 0x9, 0x4}, @IFLA_IPTUN_FWMARK={0x8, 0x14, 0x3ff}, @IFLA_IPTUN_ENCAP_FLAGS={0x6, 0x10, 0x7}]}}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x8800}, 0xc8b0)

1.178049653s ago: executing program 4 (id=3969):
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000005c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = epoll_create1(0x0)
r2 = socket(0x1, 0x80802, 0x0)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r3, &(0x7f0000000100)={0xa000000d})
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000000))
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f00000000c0)={0x10000001})
socket$nl_generic(0x10, 0x3, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
close(r3)
shutdown(r2, 0x0)

1.109542263s ago: executing program 1 (id=3970):
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x7fff, 0x0, 0x1}}, 0x40)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xfffffff9)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/56, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/231, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/70, 0x100000})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0x73, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000002c0)={0x1, r1})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x800000f}, 0x94)

1.042448504s ago: executing program 1 (id=3971):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r3, 0x29, 0x1000000000021, &(0x7f0000000040)=0x5, 0x4)
sendmsg$inet6(r3, &(0x7f0000000140)={&(0x7f0000000080)={0xa, 0x4e26, 0x80004, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000100)=ANY=[], 0x30}, 0x0)

821.479585ms ago: executing program 4 (id=3972):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x38, r4, 0x5, 0x0, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_USE_MFP={0x8, 0x42, 0x1}]}, 0x38}}, 0x0)
syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000100)=@mgmt_frame=@probe_response={{{}, {}, @device_b, @device_a, @from_mac}, 0x0, @random=0x101, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x1, [{0x2, 0x1}]}, @void, @void, @void, @void, @void, @val={0x71, 0x7, {0x0, 0x0, 0x1, 0x0, 0x1, 0x8, 0x1}}}, 0x38)
nanosleep(&(0x7f0000000340)={0x0, 0x2faf080}, 0x0)
syz_80211_inject_frame(&(0x7f00000003c0)=@device_b, &(0x7f0000000400)=@mgmt_frame=@auth={{{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x1}}, 0x0, 0x2, 0x0, @void}, 0x1e)
syz_80211_inject_frame(&(0x7f00000004c0)=@device_b, &(0x7f0000000380)=@mgmt_frame=@assoc_resp={{{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x2}}, 0x1, 0x0, @default, @val, @void}, 0x20)
syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000300)=@mgmt_frame=@probe_response={{{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val, @void, @void, @void, @void, @void, @void}, 0x2e)

754.411406ms ago: executing program 8 (id=3973):
unshare(0x26020480)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
bind$inet(r0, 0x0, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
chdir(0x0)
setsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev, @in6=@mcast2, 0x0, 0x0, 0xffff, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x28c, 0x1}, {0x7}, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010102, 0x2000000, 0x33}, 0x0, @in6=@loopback, 0x0, 0x3, 0x0, 0xb7, 0x0, 0x8000000}}, 0xe8)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0)
ioctl$USBDEVFS_ALLOW_SUSPEND(0xffffffffffffffff, 0x5522)

0s ago: executing program 1 (id=3974):
listen(0xffffffffffffffff, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000380)='./file0\x00', 0x800, &(0x7f0000000940)=ANY=[], 0x1, 0x2fa, &(0x7f0000000080)="$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")
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000001500)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000001780))
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000000340)=""/185, &(0x7f0000000140)=""/92})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000200)={0x28, 0x0, 0xffffffff, @my=0x1}, 0x10)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x80a0000})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000001580)=0xfffffffc)

kernel console output (not intermixed with test programs):

 Releasing backup interface
[  475.285323][T14850] bond3: (slave vlan2): Releasing active interface
[  475.313272][T14850] bond5: (slave ip6gretap1): Releasing active interface
[  475.354726][T14856] tipc: Started in network mode
[  475.359873][T14856] tipc: Node identity 4, cluster identity 4711
[  475.371922][T14856] tipc: Node number set to 4
[  475.465075][   T26] audit: type=1326 audit(1762470192.333:932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14872 comm="syz.4.2813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  475.539418][   T26] audit: type=1326 audit(1762470192.363:933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14872 comm="syz.4.2813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  475.593739][T14878] loop2: detected capacity change from 0 to 128
[  475.602166][   T26] audit: type=1326 audit(1762470192.363:934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14872 comm="syz.4.2813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  475.671295][T14878] EXT4-fs (loop2): Ignoring removed nobh option
[  475.703326][   T26] audit: type=1326 audit(1762470192.363:935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14872 comm="syz.4.2813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  475.760256][T14878] EXT4-fs (loop2): mounted filesystem without journal. Opts: nobh,usrjquota=,,errors=continue. Quota mode: none.
[  475.789084][   T26] audit: type=1326 audit(1762470192.363:936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14872 comm="syz.4.2813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  475.817681][T14878] ext4 filesystem being mounted at /91/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  475.830457][   T26] audit: type=1326 audit(1762470192.363:937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14872 comm="syz.4.2813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  475.996616][   T26] audit: type=1326 audit(1762470192.373:938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14872 comm="syz.4.2813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  476.610014][   T26] audit: type=1326 audit(1762470192.373:939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14872 comm="syz.4.2813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  476.632516][   T26] audit: type=1326 audit(1762470192.373:940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14872 comm="syz.4.2813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  477.119200][T14918] tipc: Failed to remove unknown binding: 66,1,1/0:2856285548/2856285550
[  477.138701][T14918] tipc: Failed to remove unknown binding: 66,1,1/0:2856285548/2856285550
[  477.151515][T14918] tipc: Failed to remove unknown binding: 66,1,1/0:2856285548/2856285550
[  477.185499][ T6784] usb 3-1: new full-speed USB device number 3 using dummy_hcd
[  478.622794][ T6784] usb 3-1: unable to read config index 0 descriptor/start: -71
[  478.642846][ T6784] usb 3-1: can't read configurations, error -71
[  479.474333][T14946] netlink: 'syz.2.2834': attribute type 1 has an invalid length.
[  479.711474][T14946] bond1 (unregistering): Released all slaves
[  482.593473][T14984] 8021q: adding VLAN 0 to HW filter on device bond1
[  482.675263][T14989] bond1: (slave macvlan2): Enslaving as an active interface with a down link
[  482.712788][T14999] netlink: 'syz.6.2849': attribute type 1 has an invalid length.
[  482.855491][T14999] device bond3 entered promiscuous mode
[  482.957883][T14999] 8021q: adding VLAN 0 to HW filter on device bond3
[  483.121777][T15002] 8021q: adding VLAN 0 to HW filter on device bond3
[  483.157616][T15010] loop3: detected capacity change from 0 to 2048
[  483.169991][T15002] bond3: (slave wireguard0): The slave device specified does not support setting the MAC address
[  483.239788][T15002] bond3: (slave wireguard0): Setting fail_over_mac to active for active-backup mode
[  483.335511][T15002] bond3: (slave wireguard0): making interface the new active one
[  483.367243][T15010] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  483.448907][T15010] ext4 filesystem being mounted at /203/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  483.465891][T15002] device wireguard0 entered promiscuous mode
[  483.492069][T15002] bond3: (slave wireguard0): Enslaving as an active interface with an up link
[  483.527452][T15034] netlink: 'syz.1.2855': attribute type 13 has an invalid length.
[  486.003629][T15006] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  486.010944][T15006] IPv6: NLM_F_CREATE should be set when creating new route
[  486.018229][T15006] IPv6: NLM_F_CREATE should be set when creating new route
[  486.086137][T15006] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  486.100336][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): bond3: link becomes ready
[  486.134196][T15052] netlink: 'syz.4.2861': attribute type 1 has an invalid length.
[  486.250682][T15059] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2863'.
[  486.312476][T15059] netlink: 452 bytes leftover after parsing attributes in process `syz.3.2863'.
[  486.357790][T15055] bond6: (slave gretap1): making interface the new active one
[  486.418103][T15055] bond6: (slave gretap1): Enslaving as an active interface with an up link
[  487.056432][T15073] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2868'.
[  487.487099][T15088] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2873'.
[  487.715600][T15088] netlink: 'syz.3.2873': attribute type 5 has an invalid length.
[  487.773544][T15088] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2873'.
[  488.449476][ T4175] Bluetooth: hci2: command 0x0406 tx timeout
[  488.668427][T15108] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  488.726633][T15112] netlink: 'syz.6.2879': attribute type 10 has an invalid length.
[  488.845955][T15112] team0: Port device dummy0 added
[  488.923550][T15116] netlink: 'syz.6.2879': attribute type 10 has an invalid length.
[  488.935767][T15116] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  489.072703][ T4175] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  489.107347][T15116] team0: Failed to send options change via netlink (err -105)
[  489.117939][T15116] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  489.134048][T15116] team0: Port device dummy0 removed
[  489.156763][T15116] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  489.343034][ T4175] usb 4-1: Using ep0 maxpacket: 8
[  489.381646][ T5655] bond0: (slave dummy0): interface is now down
[  489.483311][ T4175] usb 4-1: config 0 has no interfaces?
[  489.489763][ T4175] usb 4-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  489.533629][ T5655] bond0: now running without any active interface!
[  489.793005][ T4175] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  489.828596][ T4175] usb 4-1: config 0 descriptor??
[  490.144275][T15131] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2883'.
[  490.920544][   T26] kauditd_printk_skb: 18 callbacks suppressed
[  490.920560][   T26] audit: type=1326 audit(1762470207.783:959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15138 comm="syz.4.2886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  490.956565][T15137] netlink: 'syz.1.2884': attribute type 10 has an invalid length.
[  490.976149][T15137] batman_adv: batadv0: Removing interface: dummy0
[  490.985339][   T26] audit: type=1326 audit(1762470207.783:960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15138 comm="syz.4.2886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  491.012405][T15137] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  491.022940][T15137] team0: Failed to send options change via netlink (err -105)
[  491.031795][T15137] team0: Port device dummy0 added
[  491.046419][   T26] audit: type=1326 audit(1762470207.783:961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15138 comm="syz.4.2886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  491.261729][   T26] audit: type=1326 audit(1762470207.783:962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15138 comm="syz.4.2886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  491.338094][   T26] audit: type=1326 audit(1762470207.823:963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15138 comm="syz.4.2886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  491.370777][   T26] audit: type=1326 audit(1762470207.843:964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15138 comm="syz.4.2886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  491.394158][   T26] audit: type=1326 audit(1762470207.843:965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15138 comm="syz.4.2886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  491.426753][   T26] audit: type=1326 audit(1762470207.893:966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15138 comm="syz.4.2886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  491.427986][T15147] netlink: 'syz.1.2889': attribute type 10 has an invalid length.
[  491.459981][   T26] audit: type=1326 audit(1762470207.893:967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15138 comm="syz.4.2886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  491.460940][ T5655] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  491.483124][   T26] audit: type=1326 audit(1762470207.893:968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15138 comm="syz.4.2886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  491.620074][ T6784] usb 4-1: USB disconnect, device number 5
[  491.631806][ T5655] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  492.582890][ T5257] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  492.689229][T15159] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2894'.
[  494.591529][T15188] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2904'.
[  494.645438][T15188] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2904'.
[  494.764374][T15196] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  494.932191][T15206] wlan0 speed is unknown, defaulting to 1000
[  496.232192][T15206] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2910'.
[  496.253520][T15206] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2910'.
[  499.277587][T15269] netlink: 'syz.4.2928': attribute type 4 has an invalid length.
[  499.406299][T15275] loop3: detected capacity change from 0 to 256
[  499.619332][   T26] kauditd_printk_skb: 7 callbacks suppressed
[  499.619348][   T26] audit: type=1326 audit(1762470216.483:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15282 comm="syz.6.2936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  499.698293][   T26] audit: type=1326 audit(1762470216.483:977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15282 comm="syz.6.2936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  499.782515][   T26] audit: type=1326 audit(1762470216.533:978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15282 comm="syz.6.2936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  499.818384][   T26] audit: type=1326 audit(1762470216.533:979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15282 comm="syz.6.2936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  499.818428][   T26] audit: type=1326 audit(1762470216.533:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15282 comm="syz.6.2936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  499.818464][   T26] audit: type=1326 audit(1762470216.543:981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15282 comm="syz.6.2936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  499.818499][   T26] audit: type=1326 audit(1762470216.543:982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15282 comm="syz.6.2936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  499.818533][   T26] audit: type=1326 audit(1762470216.543:983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15282 comm="syz.6.2936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  499.818566][   T26] audit: type=1326 audit(1762470216.543:984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15282 comm="syz.6.2936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  499.818601][   T26] audit: type=1326 audit(1762470216.543:985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15282 comm="syz.6.2936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  500.809003][T15301] netlink: 'syz.6.2941': attribute type 16 has an invalid length.
[  500.809028][T15301] netlink: 'syz.6.2941': attribute type 3 has an invalid length.
[  500.809041][T15301] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2941'.
[  501.002093][T15306] loop3: detected capacity change from 0 to 128
[  501.191676][T15306] hpfs: Bad version 183,140. Mount readonly to go around
[  501.222799][T15306] hpfs: please try recent version of HPFS driver at http://artax.karlin.mff.cuni.cz/~mikulas/vyplody/hpfs/index-e.cgi and if it still can't understand this format, contact author - mikulas@artax.karlin.mff.cuni.cz
[  501.643457][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  501.654812][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  502.570467][T15327] blk_update_request: I/O error, dev loop13, sector 2 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 0
[  502.600880][T15327] EXT4-fs (loop13): unable to read superblock
[  502.721527][T15345] lo speed is unknown, defaulting to 1000
[  502.740723][T15345] lo speed is unknown, defaulting to 1000
[  502.777901][T15345] lo speed is unknown, defaulting to 1000
[  502.861943][T15345] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  502.947572][T15345] lo speed is unknown, defaulting to 1000
[  502.989555][T15345] lo speed is unknown, defaulting to 1000
[  503.010563][T15345] lo speed is unknown, defaulting to 1000
[  503.038226][T15345] lo speed is unknown, defaulting to 1000
[  503.862699][T15345] lo speed is unknown, defaulting to 1000
[  504.216267][T15361] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2959'.
[  504.479808][T15371] netlink: 'syz.6.2958': attribute type 10 has an invalid length.
[  504.488294][T15371] netlink: 40 bytes leftover after parsing attributes in process `syz.6.2958'.
[  504.527010][T15371] batman_adv: batadv0: Adding interface: virt_wifi0
[  504.534037][T15371] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  504.559845][T15371] batman_adv: batadv0: Interface activated: virt_wifi0
[  506.469937][T15392] loop3: detected capacity change from 0 to 4096
[  507.119962][T15392] ntfs3: loop3: ntfs_set_state r=3 failed, -22.
[  507.323277][ T5257] ntfs3: loop3: ntfs3_write_inode r=3 failed, -22.
[  507.334380][T10328] ntfs3: loop3: ntfs_set_state r=3 failed, -22.
[  507.340675][T10328] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  507.389128][T10328] ntfs3: loop3: ntfs_set_state r=3 failed, -22.
[  507.399711][    T9] ntfs3: loop3: ntfs3_write_inode r=3 failed, -22.
[  507.434776][T10328] ntfs3: loop3: ntfs_evict_inode r=3 failed, -22.
[  507.496208][T15420] futex_wake_op: syz.2.2974 tries to shift op by 32; fix this program
[  508.551683][T15433] wlan0 speed is unknown, defaulting to 1000
[  508.592182][T15433] lo speed is unknown, defaulting to 1000
[  511.113679][T15482] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2989'.
[  511.538028][T15506] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2997'.
[  511.564741][T15508] wlan0 speed is unknown, defaulting to 1000
[  511.582259][T15508] lo speed is unknown, defaulting to 1000
[  515.634623][T15554] loop2: detected capacity change from 0 to 2048
[  516.626873][T15554] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  516.786578][T15554] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  517.288196][T15579] blk_update_request: I/O error, dev loop9, sector 2 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 0
[  517.299790][T15579] hfsplus: unable to find HFS+ superblock
[  518.240034][T15585] batman_adv: batadv0: Adding interface: dummy0
[  518.270412][T15585] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. If you experience problems getting traffic through try increasing the MTU to 1560.
[  518.293454][T15585] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[  518.902112][T15603] lo: Caught tx_queue_len zero misconfig
[  520.182796][ T4248] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  521.229583][T15618] loop2: detected capacity change from 0 to 1024
[  521.527451][T15618] EXT4-fs (loop2): Ignoring removed orlov option
[  522.080808][T15620] wlan0 speed is unknown, defaulting to 1000
[  522.088294][T15620] lo speed is unknown, defaulting to 1000
[  522.192999][ T4248] usb 4-1: device descriptor read/all, error -71
[  522.238031][T15618] EXT4-fs (loop2): mounted filesystem without journal. Opts: barrier,nodioread_nolock,noquota,barrier,noload,orlov,,errors=continue. Quota mode: none.
[  522.275993][T15618] ext4 filesystem being mounted at /124/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  522.344614][T15618] EXT4-fs error (device loop2): ext4_lookup:1858: inode #15: comm syz.2.3031: inode has both inline data and extents flags
[  522.397036][T15618] EXT4-fs error (device loop2): ext4_lookup:1858: inode #15: comm syz.2.3031: inode has both inline data and extents flags
[  522.560390][T15636] fuse: Bad value for 'fd'
[  523.155179][T15648] ODEBUG: Out of memory. ODEBUG disabled
[  525.195202][T15661] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  526.711486][T15685] loop3: detected capacity change from 0 to 128
[  527.461130][T15685] EXT4-fs (loop3): Ignoring removed nobh option
[  528.289420][T15685] EXT4-fs (loop3): mounted filesystem without journal. Opts: nobh,usrjquota=,,errors=continue. Quota mode: none.
[  528.289533][T15685] ext4 filesystem being mounted at /234/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  528.682731][ T5919] usb 4-1: new full-speed USB device number 8 using dummy_hcd
[  530.278858][ T5919] usb 4-1: device descriptor read/all, error -71
[  530.359179][T15730] netdevsim netdevsim6: loading /lib/firmware/. failed with error -22
[  530.387276][T15733] sock: sock_set_timeout: `syz.6.3062' (pid 15733) tries to set negative timeout
[  530.427151][T15730] netdevsim netdevsim6: Direct firmware load for . failed with error -22
[  530.493461][T15730] netdevsim netdevsim6: Falling back to sysfs fallback for: .
[  530.732799][ T1111] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  531.154149][T15749] netlink: 'syz.1.3065': attribute type 10 has an invalid length.
[  531.162328][T15749] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3065'.
[  531.175078][T15749] net veth1_virt_wifi virt_wifi0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  531.191879][T15749] batman_adv: batadv0: Adding interface: virt_wifi0
[  531.198749][T15749] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  531.227653][T15749] batman_adv: batadv0: Interface activated: virt_wifi0
[  531.767396][ T1111] usb 3-1: Using ep0 maxpacket: 8
[  533.073152][ T1111] usb 3-1: config 0 has no interfaces?
[  533.079302][ T1111] usb 3-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  533.108887][ T1111] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  533.119365][T15766] overlayfs: failed to clone upperpath
[  533.169007][ T1111] usb 3-1: config 0 descriptor??
[  533.175411][T15765] overlayfs: failed to clone lowerpath
[  533.430946][ T1111] usb 3-1: USB disconnect, device number 5
[  533.606594][T15771] loop3: detected capacity change from 0 to 4096
[  533.681466][T15789] overlayfs: failed to clone upperpath
[  533.725986][T15771] __ntfs_error: 47 callbacks suppressed
[  533.726004][T15771] ntfs: (device loop3): check_mft_mirror(): $MFT and $MFTMirr (record 0) do not match.  Run ntfsfix or chkdsk.
[  533.771375][T15771] ntfs: (device loop3): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  533.895594][T15771] ntfs: volume version 3.1.
[  533.907483][T15797] wlan0 speed is unknown, defaulting to 1000
[  535.210630][T15797] lo speed is unknown, defaulting to 1000
[  535.602565][T15805] netlink: 'syz.4.3078': attribute type 10 has an invalid length.
[  535.610473][T15805] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3078'.
[  535.638911][T15805] batman_adv: batadv0: Adding interface: virt_wifi0
[  535.645719][T15805] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  535.672299][T15805] batman_adv: batadv0: Interface activated: virt_wifi0
[  535.829439][T15771] ntfs: (device loop3): ntfs_read_locked_attr_inode(): Failed with error code -2 while reading attribute inode (mft_no 0x1a, type 0x80, name_len 4).  Marking corrupt inode and base inode 0x1a as bad.  Run chkdsk.
[  535.985722][T15771] ntfs: (device loop3): load_and_init_usnjrnl(): Failed to load $UsnJrnl/$DATA/$Max attribute.
[  536.062649][T15771] ntfs: (device loop3): load_system_files(): Failed to load $UsnJrnl.  Will not be able to remount read-write.  Run chkdsk.
[  538.383704][T15830] netlink: 'syz.2.3086': attribute type 3 has an invalid length.
[  538.797318][T15830] netlink: 'syz.2.3086': attribute type 3 has an invalid length.
[  540.325643][T15849] loop3: detected capacity change from 0 to 256
[  540.411855][T15849] exfat: Deprecated parameter 'utf8'
[  540.555045][T15849] exfat: Deprecated parameter 'namecase'
[  541.089996][T15849] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012153, chksum : 0xc3dffc2e, utbl_chksum : 0xe619d30d)
[  541.211214][   T26] audit: type=1800 audit(1762470258.073:1033): pid=15849 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3093" name="file1" dev="loop3" ino=1048656 res=0 errno=0
[  541.690447][   T26] audit: type=1326 audit(1762470258.553:1034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15878 comm="syz.6.3102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  541.956382][   T26] audit: type=1326 audit(1762470258.553:1035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15878 comm="syz.6.3102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  542.728205][   T26] audit: type=1326 audit(1762470258.553:1036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15878 comm="syz.6.3102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  542.805761][   T26] audit: type=1326 audit(1762470258.553:1037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15878 comm="syz.6.3102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  542.849034][   T26] audit: type=1326 audit(1762470258.553:1038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15878 comm="syz.6.3102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  543.027126][T15905] loop2: detected capacity change from 0 to 512
[  543.034168][   T26] audit: type=1326 audit(1762470258.553:1039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15878 comm="syz.6.3102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  543.840237][   T26] audit: type=1326 audit(1762470258.583:1040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15878 comm="syz.6.3102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  543.863132][   T26] audit: type=1326 audit(1762470258.583:1041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15878 comm="syz.6.3102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  543.929594][T15898] wlan0 speed is unknown, defaulting to 1000
[  543.969766][   T26] audit: type=1326 audit(1762470258.583:1042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15878 comm="syz.6.3102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  544.037745][T15898] lo speed is unknown, defaulting to 1000
[  544.095474][T15905] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  544.207521][T15905] ext4 filesystem being mounted at /140/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  544.556065][T15923] loop3: detected capacity change from 0 to 512
[  544.678055][T15923] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  544.705559][T15923] ext4 filesystem being mounted at /244/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  544.918157][T15923] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.3112: corrupted inode contents
[  545.046752][T15923] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #2: comm syz.3.3112: mark_inode_dirty error
[  545.283025][T15923] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.3112: corrupted inode contents
[  545.517422][T15923] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.3112: mark_inode_dirty error
[  546.080818][T15944] loop2: detected capacity change from 0 to 128
[  549.184691][T15967] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3125'.
[  549.358157][T15970] device syzkaller0 entered promiscuous mode
[  551.340714][T15998] device syzkaller0 entered promiscuous mode
[  552.954963][T16034] sit0: Caught tx_queue_len zero misconfig
[  556.899652][ T4175] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  557.272756][ T4175] usb 3-1: config 0 has an invalid descriptor of length 134, skipping remainder of the config
[  557.292648][ T4175] usb 3-1: too many endpoints for config 0 interface 0 altsetting 209: 129, using maximum allowed: 30
[  557.359604][ T4175] usb 3-1: config 0 interface 0 altsetting 209 has 0 endpoint descriptors, different from the interface descriptor's value: 129
[  557.392659][ T4175] usb 3-1: config 0 interface 0 has no altsetting 0
[  557.402855][ T4175] usb 3-1: New USB device found, idVendor=1b96, idProduct=0009, bcdDevice= 0.00
[  557.422370][ T4175] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  557.466429][ T4175] usb 3-1: config 0 descriptor??
[  557.572723][ T4175] usb 3-1: can't set config #0, error -71
[  557.606734][ T4175] usb 3-1: USB disconnect, device number 6
[  559.796137][T16114] netlink: 'syz.4.3169': attribute type 1 has an invalid length.
[  559.805100][T16114] netlink: 'syz.4.3169': attribute type 2 has an invalid length.
[  560.153641][T16123] netlink: 'syz.6.3172': attribute type 21 has an invalid length.
[  560.172720][T16123] netlink: 132 bytes leftover after parsing attributes in process `syz.6.3172'.
[  560.203714][T16123] netlink: 'syz.6.3172': attribute type 1 has an invalid length.
[  560.224669][T16123] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3172'.
[  560.255328][T16126] bridge_slave_0: vlans aren't supported yet for dev_uc|mc_add()
[  562.131994][T16161] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3183'.
[  563.065973][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  563.075098][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  564.860244][T16198] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3195'.
[  565.074696][T16204] bridge4: port 1(veth9) entered blocking state
[  565.098371][T16204] bridge4: port 1(veth9) entered disabled state
[  565.148228][T16204] device veth9 entered promiscuous mode
[  565.280747][T16198] bridge4: port 2(veth11) entered blocking state
[  565.299804][T16198] bridge4: port 2(veth11) entered disabled state
[  565.322118][T16198] device veth11 entered promiscuous mode
[  568.228581][T16251] wlan0 speed is unknown, defaulting to 1000
[  568.235995][T16251] lo speed is unknown, defaulting to 1000
[  568.414603][   T26] kauditd_printk_skb: 37 callbacks suppressed
[  568.414621][   T26] audit: type=1326 audit(1762470285.253:1080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16258 comm="syz.4.3211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  569.379490][   T26] audit: type=1326 audit(1762470285.253:1081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16258 comm="syz.4.3211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  569.409096][T16269] overlayfs: failed to clone upperpath
[  569.462836][ T5919] Bluetooth: hci1: command 0x0409 tx timeout
[  569.480726][   T26] audit: type=1326 audit(1762470285.253:1082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16258 comm="syz.4.3211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  569.554551][   T26] audit: type=1326 audit(1762470285.253:1083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16258 comm="syz.4.3211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  569.622349][   T26] audit: type=1326 audit(1762470285.253:1084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16258 comm="syz.4.3211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  569.874175][   T26] audit: type=1326 audit(1762470285.253:1085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16258 comm="syz.4.3211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  570.514396][   T26] audit: type=1326 audit(1762470285.253:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16258 comm="syz.4.3211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  570.544605][   T26] audit: type=1326 audit(1762470285.253:1087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16258 comm="syz.4.3211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  570.572201][   T26] audit: type=1326 audit(1762470285.253:1088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16258 comm="syz.4.3211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  570.654374][   T26] audit: type=1326 audit(1762470285.253:1089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16258 comm="syz.4.3211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  570.699509][T16251] chnl_net:caif_netlink_parms(): no params data found
[  571.023787][T16303] bond2: option mode: unable to set because the bond device has slaves
[  571.060895][T16251] bridge0: port 1(bridge_slave_0) entered blocking state
[  571.073022][T16251] bridge0: port 1(bridge_slave_0) entered disabled state
[  571.101738][T16251] device bridge_slave_0 entered promiscuous mode
[  571.142152][T16251] bridge0: port 2(bridge_slave_1) entered blocking state
[  571.163931][T16251] bridge0: port 2(bridge_slave_1) entered disabled state
[  571.191545][T16251] device bridge_slave_1 entered promiscuous mode
[  571.269199][T16251] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  571.289229][T16251] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  571.472747][T16251] team0: Port device team_slave_0 added
[  571.481522][T16251] team0: Port device team_slave_1 added
[  571.927910][   T23] Bluetooth: hci1: command 0x041b tx timeout
[  572.601579][T16251] batman_adv: batadv0: Adding interface: batadv_slave_0
[  572.623525][T16251] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  572.706166][T16251] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  572.780707][T16251] batman_adv: batadv0: Adding interface: batadv_slave_1
[  572.803847][T16251] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  572.857767][T16251] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  572.969486][T16251] device hsr_slave_0 entered promiscuous mode
[  572.979463][T16251] device hsr_slave_1 entered promiscuous mode
[  572.994513][T16251] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  573.009975][T16251] Cannot create hsr debugfs directory
[  574.433060][ T6784] Bluetooth: hci1: command 0x040f tx timeout
[  574.754465][T16353] netlink: 'syz.1.3236': attribute type 12 has an invalid length.
[  574.873086][T16361] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  575.049374][T16361] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  575.074866][T16361] 8021q: adding VLAN 0 to HW filter on device team0
[  575.133612][T16361] device dummy0 left promiscuous mode
[  575.219087][T16361] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  575.329006][T16367] device macsec0 entered promiscuous mode
[  575.516381][ T4255] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  575.646093][ T6784] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  576.580591][ T6784] Bluetooth: hci1: command 0x0419 tx timeout
[  576.655940][ T6784] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  576.940390][   T26] kauditd_printk_skb: 6 callbacks suppressed
[  576.940405][   T26] audit: type=1326 audit(1762470293.803:1096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16399 comm="syz.6.3249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  576.978389][   T26] audit: type=1326 audit(1762470293.843:1097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16399 comm="syz.6.3249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  577.062720][   T26] audit: type=1326 audit(1762470293.843:1098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16399 comm="syz.6.3249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  577.137467][   T26] audit: type=1326 audit(1762470293.843:1099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16399 comm="syz.6.3249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  577.230446][   T26] audit: type=1326 audit(1762470293.863:1100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16399 comm="syz.6.3249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  577.323717][   T26] audit: type=1326 audit(1762470293.863:1101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16399 comm="syz.6.3249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  577.422875][   T26] audit: type=1326 audit(1762470293.863:1102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16399 comm="syz.6.3249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  577.478990][   T26] audit: type=1326 audit(1762470293.873:1103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16399 comm="syz.6.3249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  577.533632][T16415] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  577.583973][   T26] audit: type=1326 audit(1762470293.873:1104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16399 comm="syz.6.3249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  577.671414][   T26] audit: type=1326 audit(1762470293.883:1105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16399 comm="syz.6.3249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  577.694548][T16422] netlink: 'syz.4.3253': attribute type 16 has an invalid length.
[  577.702431][T16422] netlink: 'syz.4.3253': attribute type 17 has an invalid length.
[  577.729370][T16422] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  577.780828][T16422] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  577.833063][T16422] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  577.840698][T16422] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  577.869781][ T1111] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  577.877956][ T4306] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  577.885799][ T4306] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  577.910825][T16251] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  577.981959][T16251] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  578.006231][T16251] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  578.034141][    T9] device hsr_slave_0 left promiscuous mode
[  578.049312][    T9] device hsr_slave_1 left promiscuous mode
[  578.056418][    T9] batman_adv: batadv0: Removing interface: dummy0
[  578.071394][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[  578.080652][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[  578.095522][    T9] device bridge_slave_1 left promiscuous mode
[  578.101812][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  578.117565][    T9] device bridge_slave_0 left promiscuous mode
[  578.126320][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  578.265057][ T5919] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  578.303938][ T4683] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  578.315468][    T9] bond2 (unregistering): (slave macvlan4): Releasing active interface
[  579.336123][    T9] bond2 (unregistering): Released all slaves
[  579.607924][    T9] bond1 (unregistering): Released all slaves
[  579.732721][T16454] netlink: 68 bytes leftover after parsing attributes in process `syz.6.3266'.
[  579.749631][T16454] netlink: 'syz.6.3266': attribute type 4 has an invalid length.
[  579.968412][    T9] team0 (unregistering): Port device team_slave_1 removed
[  579.986831][    T9] team0 (unregistering): Port device team_slave_0 removed
[  580.000795][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  580.016654][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  580.091027][    T9] bond0 (unregistering): Released all slaves
[  580.102942][ T4683] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  580.137459][T16251] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  580.147133][T16436] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3259'.
[  580.369617][T16251] 8021q: adding VLAN 0 to HW filter on device bond0
[  580.411210][T16225] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  580.436513][T16225] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  580.459739][T16251] 8021q: adding VLAN 0 to HW filter on device team0
[  580.480036][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  580.503644][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  580.512379][T16232] bridge0: port 1(bridge_slave_0) entered blocking state
[  580.519523][T16232] bridge0: port 1(bridge_slave_0) entered forwarding state
[  580.563928][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  580.583065][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  580.601139][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  580.610941][T16232] bridge0: port 2(bridge_slave_1) entered blocking state
[  580.618098][T16232] bridge0: port 2(bridge_slave_1) entered forwarding state
[  580.651560][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  580.676028][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  580.687843][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  580.701296][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  580.712901][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  580.723006][ T4683] usb 3-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc
[  580.753462][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  580.767147][ T4683] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  580.781927][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  580.793445][ T4683] usb 3-1: Product: syz
[  580.797721][ T4683] usb 3-1: Manufacturer: syz
[  580.803936][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  580.811855][ T4683] usb 3-1: SerialNumber: syz
[  580.842242][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  580.855656][ T4683] usb 3-1: config 0 descriptor??
[  580.935751][T16251] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  580.947647][T16251] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  582.022684][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  582.064568][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  582.088476][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  582.359283][T16506] device batadv_slave_0 entered promiscuous mode
[  582.818159][ T5257] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  582.838277][ T5257] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  583.097245][T16251] 8021q: adding VLAN 0 to HW filter on device batadv0
[  583.112777][   T26] kauditd_printk_skb: 8 callbacks suppressed
[  583.112793][   T26] audit: type=1326 audit(1762470299.933:1114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16464 comm="syz.6.3268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7fc00000
[  583.174654][ T4683] i2c-tiny-usb 3-1:0.0: version 6d.cc found at bus 003 address 007
[  584.196826][T16111] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  584.212695][ T4683]  (null): failure reading functionality
[  584.224848][T16111] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  584.315369][ T4683] i2c i2c-1: failure reading functionality
[  584.326374][ T4683] i2c i2c-1: connected i2c-tiny-usb device
[  584.343444][T16111] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  584.354829][ T4683] usb 3-1: USB disconnect, device number 7
[  584.374537][T16111] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  584.422126][T16251] device veth0_vlan entered promiscuous mode
[  584.440495][T16111] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  584.466009][T16111] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  584.522264][T16251] device veth1_vlan entered promiscuous mode
[  584.837265][ T5257] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  584.892010][ T5257] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  585.158273][ T5257] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  585.363573][ T5257] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  585.535127][T16251] device veth0_macvtap entered promiscuous mode
[  585.623144][T16251] device veth1_macvtap entered promiscuous mode
[  586.659958][T16251] batman_adv: batadv0: Interface activated: batadv_slave_0
[  586.685454][T16111] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  586.703733][T16111] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  586.749406][T16550] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3286'.
[  586.801741][T16251] batman_adv: batadv0: Interface activated: batadv_slave_1
[  586.825265][T16558] netlink: 116 bytes leftover after parsing attributes in process `syz.4.3286'.
[  586.871053][T16111] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  586.901259][T16111] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  586.967305][T16251] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  586.988676][T16251] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  587.037923][T16251] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  587.069290][T16251] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  587.138077][T16563] device vlan3 entered promiscuous mode
[  587.192294][T16564] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3288'.
[  587.583806][T16111] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  587.628092][T16111] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  587.722483][T16111] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  587.753641][T16232] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  587.762023][T16232] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  587.836759][ T5257] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  590.211061][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  590.578302][T16620] 8021q: adding VLAN 0 to HW filter on device bond5
[  595.832971][T16677] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3317'.
[  596.611073][T16713] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  596.637455][T16713] CIFS mount error: No usable UNC path provided in device string!
[  596.637455][T16713] 
[  596.647938][T16713] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  597.819607][T16735] fuse: Bad value for 'fd'
[  598.386859][T16747] sch_tbf: burst 19872 is lower than device lo mtu (39799) !
[  598.620724][T16720] loop0: detected capacity change from 0 to 32768
[  598.681199][T16720] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.3328 (16720)
[  598.755696][T16720] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  598.773789][T16720] BTRFS info (device loop0): metadata ratio 1
[  598.780832][T16763] netlink: 76 bytes leftover after parsing attributes in process `syz.6.3340'.
[  598.800627][T16720] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11
[  598.822063][T16720] BTRFS info (device loop0): using free space tree
[  598.837470][T16720] BTRFS info (device loop0): has skinny extents
[  599.121133][T16790] netlink: 'syz.4.3342': attribute type 4 has an invalid length.
[  599.154599][T16720] BTRFS info (device loop0): enabling ssd optimizations
[  600.744032][T16852] input: syz0 as /devices/virtual/input/input8
[  600.968992][T16859] loop0: detected capacity change from 0 to 2048
[  601.061095][T16859] EXT4-fs (loop0): DAX enabled. Warning: EXPERIMENTAL, use at your own risk
[  601.083301][T16859] EXT4-fs (loop0): Cannot use DAX on a filesystem that may contain inline data
[  601.188810][T16872] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  601.612991][T16887] ptrace attach of "./syz-executor exec"[9940] was attempted by "./syz-executor exec"[16887]
[  603.611922][T16915] xt_CT: You must specify a L4 protocol and not use inversions on it
[  603.638677][T16917] netlink: 'syz.1.3367': attribute type 1 has an invalid length.
[  603.724176][T16917] 8021q: adding VLAN 0 to HW filter on device bond5
[  603.747842][T16919] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3367'.
[  603.809936][T16922] netlink: 40 bytes leftover after parsing attributes in process `syz.6.3369'.
[  603.875342][T16922] netlink: 40 bytes leftover after parsing attributes in process `syz.6.3369'.
[  603.907175][T16922] netlink: 40 bytes leftover after parsing attributes in process `syz.6.3369'.
[  603.917252][T16922] A link change request failed with some changes committed already. Interface ip6tnl0 may have been left with an inconsistent configuration, please check.
[  604.060769][T16927] netlink: 68 bytes leftover after parsing attributes in process `syz.1.3370'.
[  607.222724][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  607.373182][T16974] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3380'.
[  609.421448][T16987] loop0: detected capacity change from 0 to 512
[  609.524643][T16987] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  609.689338][T16987] EXT4-fs (loop0): 1 truncate cleaned up
[  609.738511][T16987] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  611.152905][T16251] EXT4-fs error (device loop0): mb_free_blocks:1860: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt.
[  612.188365][T17048] loop2: detected capacity change from 0 to 1024
[  612.220112][T17052] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  612.382925][T17052] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  612.412837][T16846] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  612.472011][T17052] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  612.504981][ T6784] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  612.512957][T17057] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3398'.
[  613.381323][T17048] hfsplus: request for non-existent node 33554434 in B*Tree
[  613.389542][T17048] hfsplus: request for non-existent node 33554434 in B*Tree
[  613.399680][T17048] hfsplus: request for non-existent node 33554434 in B*Tree
[  613.410591][T17048] hfsplus: request for non-existent node 33554434 in B*Tree
[  613.475682][T16111] hfsplus: request for non-existent node 33554434 in B*Tree
[  613.494538][T16111] hfsplus: request for non-existent node 33554434 in B*Tree
[  616.094181][T17087] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  616.193664][T17087] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  617.794076][T17120] Cannot find set identified by id 3 to match
[  618.375831][   T26] audit: type=1326 audit(1762470335.243:1115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17133 comm="syz.4.3417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  618.442571][   T26] audit: type=1326 audit(1762470335.243:1116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17133 comm="syz.4.3417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  618.530650][   T26] audit: type=1326 audit(1762470335.243:1117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17133 comm="syz.4.3417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  618.591486][T17149] block device autoloading is deprecated and will be removed.
[  618.651528][   T26] audit: type=1326 audit(1762470335.243:1118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17133 comm="syz.4.3417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  619.165928][   T26] audit: type=1326 audit(1762470335.243:1119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17133 comm="syz.4.3417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  619.377208][   T26] audit: type=1326 audit(1762470335.243:1120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17133 comm="syz.4.3417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  619.457096][   T26] audit: type=1326 audit(1762470335.243:1121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17133 comm="syz.4.3417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  619.573839][   T26] audit: type=1326 audit(1762470335.243:1122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17133 comm="syz.4.3417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  619.693781][   T26] audit: type=1326 audit(1762470335.243:1123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17133 comm="syz.4.3417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  619.811727][   T26] audit: type=1326 audit(1762470335.243:1124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17133 comm="syz.4.3417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  622.130278][T17205] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3435'.
[  623.409155][T17225] loop0: detected capacity change from 0 to 512
[  623.556875][   T26] kauditd_printk_skb: 32 callbacks suppressed
[  623.556891][   T26] audit: type=1804 audit(1762470340.423:1157): pid=17230 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.3442" name="bus" dev="ramfs" ino=75438 res=1 errno=0
[  623.561392][T17230] Invalid ELF header magic: != ELF
[  623.581802][T17225] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  624.174088][T17225] EXT4-fs (loop0): 1 orphan inode deleted
[  624.179952][T17225] EXT4-fs (loop0): 1 truncate cleaned up
[  624.185905][T17225] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,nodelalloc,debug_want_extra_isize=0x000000000000002e,inode_readahead_blks=0x0000000004000000,jqfmt=vfsv0,quota,. Quota mode: writeback.
[  624.507548][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  624.514022][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  624.619440][T17225] EXT4-fs error (device loop0): ext4_find_dest_de:2115: inode #12: block 7: comm syz.0.3441: bad entry in directory: directory entry overrun - offset=0, inode=13, rec_len=784, size=56 fake=0
[  624.819279][T17254] EXT4-fs (loop0): shut down requested (2)
[  625.129944][T17225] EXT4-fs (loop0): Remounting filesystem read-only
[  625.427901][T17262] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  625.483517][T17262] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  626.648566][T17278] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3453'.
[  627.532620][   T26] audit: type=1326 audit(1762470344.313:1158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17294 comm="syz.0.3459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  627.664315][   T26] audit: type=1326 audit(1762470344.313:1159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17294 comm="syz.0.3459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  627.687771][   T26] audit: type=1326 audit(1762470344.313:1160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17294 comm="syz.0.3459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  627.763636][   T26] audit: type=1326 audit(1762470344.313:1161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17294 comm="syz.0.3459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  627.858171][   T26] audit: type=1326 audit(1762470344.323:1162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17294 comm="syz.0.3459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  627.953018][   T26] audit: type=1326 audit(1762470344.333:1163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17294 comm="syz.0.3459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  628.077340][   T26] audit: type=1326 audit(1762470344.333:1164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17294 comm="syz.0.3459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  628.217627][   T26] audit: type=1326 audit(1762470344.333:1165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17294 comm="syz.0.3459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  628.542920][   T26] audit: type=1326 audit(1762470344.333:1166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17294 comm="syz.0.3459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  628.805549][   T26] audit: type=1326 audit(1762470344.333:1167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17294 comm="syz.0.3459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  628.908971][   T26] audit: type=1326 audit(1762470344.333:1168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17294 comm="syz.0.3459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  629.008056][   T26] audit: type=1326 audit(1762470344.343:1169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17294 comm="syz.0.3459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  629.127813][   T26] audit: type=1326 audit(1762470344.343:1170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17294 comm="syz.0.3459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  629.217704][   T26] audit: type=1326 audit(1762470344.343:1171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17294 comm="syz.0.3459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  629.392697][   T26] audit: type=1326 audit(1762470344.343:1172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17294 comm="syz.0.3459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  629.477252][   T26] audit: type=1326 audit(1762470344.343:1173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17294 comm="syz.0.3459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  629.508922][   T26] audit: type=1326 audit(1762470344.343:1174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17294 comm="syz.0.3459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  629.560172][T17348] bridge0: port 3(netdevsim0) entered blocking state
[  630.721148][T17348] bridge0: port 3(netdevsim0) entered disabled state
[  630.729326][T17348] device netdevsim0 entered promiscuous mode
[  630.730039][T17348] bridge0: port 3(netdevsim0) entered blocking state
[  630.730158][T17348] bridge0: port 3(netdevsim0) entered forwarding state
[  630.791709][   T26] audit: type=1326 audit(1762470344.383:1175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17294 comm="syz.0.3459" exe="/root/syz-executor" sig=0 arch=40000003 syscall=108 compat=1 ip=0x200000000006 code=0x7ffc0000
[  630.814519][   T26] audit: type=1326 audit(1762470344.383:1176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17294 comm="syz.0.3459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  631.988156][T17379] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  632.823560][T17396] xt_bpf: check failed: parse error
[  635.444969][T17454] batman_adv: batadv0: Adding interface: dummy0
[  635.463787][T17454] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  636.043087][T17454] batman_adv: batadv0: Interface activated: dummy0
[  636.139813][T17458] batadv0: mtu less than device minimum
[  636.200308][T17458] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  636.213953][T17458] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  636.226578][T17458] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  636.239158][T17458] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  636.251782][T17458] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  636.264329][T17458] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  636.276958][T17458] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  636.289482][T17458] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  636.302097][T17458] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  636.391823][   T26] audit: type=1326 audit(1762470353.253:1177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17462 comm="syz.6.3503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  636.467235][   T26] audit: type=1326 audit(1762470353.253:1178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17462 comm="syz.6.3503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  636.557067][   T26] audit: type=1326 audit(1762470353.283:1179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17462 comm="syz.6.3503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  636.773069][   T26] audit: type=1326 audit(1762470353.283:1180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17462 comm="syz.6.3503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  636.887822][   T26] audit: type=1326 audit(1762470353.283:1181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17462 comm="syz.6.3503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  637.101327][   T26] audit: type=1326 audit(1762470353.403:1182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17462 comm="syz.6.3503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  637.143913][   T26] audit: type=1326 audit(1762470353.403:1183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17462 comm="syz.6.3503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  637.932673][   T26] audit: type=1326 audit(1762470353.403:1184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17462 comm="syz.6.3503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  638.080544][T17501] loop2: detected capacity change from 0 to 1024
[  638.205982][T17501] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option
[  638.579555][T17501] EXT4-fs (loop2): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000080,nodelalloc,grpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none.
[  640.395819][   T26] audit: type=1326 audit(1762470357.263:1185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17539 comm="syz.6.3520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  640.489834][   T26] audit: type=1326 audit(1762470357.283:1186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17539 comm="syz.6.3520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  640.503011][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  640.876956][T17571] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  640.886384][T17571] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[  640.895536][T17571] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[  640.904118][T17571] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[  640.912862][T17571] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready
[  640.921334][T17571] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[  640.930152][T17571] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[  641.034780][T17576] sctp: [Deprecated]: syz.1.3530 (pid 17576) Use of struct sctp_assoc_value in delayed_ack socket option.
[  641.034780][T17576] Use struct sctp_sack_info instead
[  643.754430][   T26] kauditd_printk_skb: 37 callbacks suppressed
[  643.754446][   T26] audit: type=1326 audit(1762470360.623:1224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17611 comm="syz.1.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc47cbb56c9 code=0x7ffc0000
[  644.862230][   T26] audit: type=1326 audit(1762470360.653:1225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17611 comm="syz.1.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc47cbb56c9 code=0x7ffc0000
[  645.053826][   T26] audit: type=1326 audit(1762470360.653:1226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17611 comm="syz.1.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc47cbe7f85 code=0x7ffc0000
[  645.081547][   T26] audit: type=1326 audit(1762470360.663:1227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17611 comm="syz.1.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc47cbe7f85 code=0x7ffc0000
[  645.105001][   T26] audit: type=1326 audit(1762470360.663:1228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17611 comm="syz.1.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc47cbe7f85 code=0x7ffc0000
[  645.229583][   T26] audit: type=1326 audit(1762470360.663:1229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17611 comm="syz.1.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc47cbe7f85 code=0x7ffc0000
[  645.302860][   T26] audit: type=1326 audit(1762470360.673:1230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17611 comm="syz.1.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc47cbe7f85 code=0x7ffc0000
[  645.401585][ T4226] libceph: connect (1)[c::]:6789 error -101
[  645.402072][   T26] audit: type=1326 audit(1762470360.673:1231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17611 comm="syz.1.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc47cbe7f85 code=0x7ffc0000
[  645.413472][ T4226] libceph: mon0 (1)[c::]:6789 connect error
[  645.437048][   T26] audit: type=1326 audit(1762470360.673:1232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17611 comm="syz.1.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc47cbe7f85 code=0x7ffc0000
[  645.461823][   T26] audit: type=1326 audit(1762470360.673:1233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17611 comm="syz.1.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc47cbe7f85 code=0x7ffc0000
[  646.340542][ T4226] libceph: connect (1)[c::]:6789 error -101
[  646.436416][ T4226] libceph: mon0 (1)[c::]:6789 connect error
[  646.444324][T17649] ceph: No mds server is up or the cluster is laggy
[  649.221481][   T26] kauditd_printk_skb: 36 callbacks suppressed
[  649.221497][   T26] audit: type=1800 audit(1762470366.083:1270): pid=17705 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3562" name="/" dev="fuse" ino=9 res=0 errno=0
[  650.100189][T17741] loop0: detected capacity change from 0 to 32768
[  650.216768][T17741] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  650.234943][   T26] audit: type=1800 audit(1762470367.103:1271): pid=17741 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3571" name="file1" dev="loop0" ino=17058 res=0 errno=0
[  651.550530][T17741] (syz.0.3571,17741,1):ocfs2_dio_end_io:2428 ERROR: Direct IO failed, bytes = -5
[  651.679583][   T26] audit: type=1800 audit(1762470368.543:1272): pid=17741 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3571" name="file1" dev="loop0" ino=17058 res=0 errno=0
[  651.748104][T17741] syz.0.3571 (17741) used greatest stack depth: 18600 bytes left
[  651.811720][T17768] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3577'.
[  651.931986][T16251] ocfs2: Unmounting device (7,0) on (node local)
[  652.133889][T17781] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3581'.
[  652.271742][T17790] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  652.348208][   T26] audit: type=1326 audit(1762470369.213:1273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17794 comm="syz.0.3578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  652.388516][T17796] netlink: 'syz.6.3585': attribute type 3 has an invalid length.
[  652.437334][T17796] netlink: 'syz.6.3585': attribute type 3 has an invalid length.
[  652.471588][T17796] netlink: 'syz.6.3585': attribute type 3 has an invalid length.
[  652.624946][   T26] audit: type=1326 audit(1762470369.273:1274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17794 comm="syz.0.3578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  652.650361][T17796] netlink: 'syz.6.3585': attribute type 3 has an invalid length.
[  652.666220][T17796] netlink: 'syz.6.3585': attribute type 3 has an invalid length.
[  652.675523][T17796] netlink: 'syz.6.3585': attribute type 3 has an invalid length.
[  652.689047][T17796] netlink: 'syz.6.3585': attribute type 3 has an invalid length.
[  653.302939][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  653.444462][T17796] netlink: 'syz.6.3585': attribute type 3 has an invalid length.
[  653.459011][   T26] audit: type=1326 audit(1762470369.273:1275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17794 comm="syz.0.3578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  653.483307][T17796] netlink: 'syz.6.3585': attribute type 3 has an invalid length.
[  653.493097][   T26] audit: type=1326 audit(1762470369.273:1276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17794 comm="syz.0.3578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  653.523879][T17796] netlink: 'syz.6.3585': attribute type 3 has an invalid length.
[  653.528976][   T26] audit: type=1326 audit(1762470369.273:1277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17794 comm="syz.0.3578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  653.555681][   T26] audit: type=1326 audit(1762470369.273:1278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17794 comm="syz.0.3578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  653.584682][T17799] wlan0 speed is unknown, defaulting to 1000
[  653.612674][   T26] audit: type=1326 audit(1762470369.273:1279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17794 comm="syz.0.3578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55190176c9 code=0x7ffc0000
[  653.653615][T17799] lo speed is unknown, defaulting to 1000
[  654.342816][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  657.143229][   T26] kauditd_printk_skb: 18 callbacks suppressed
[  657.143245][   T26] audit: type=1326 audit(1762470374.013:1298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17868 comm="syz.6.3603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  657.369467][   T26] audit: type=1326 audit(1762470374.013:1299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17868 comm="syz.6.3603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  657.394833][   T26] audit: type=1326 audit(1762470374.063:1300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17868 comm="syz.6.3603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  657.431103][   T26] audit: type=1326 audit(1762470374.063:1301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17868 comm="syz.6.3603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  657.454090][   T26] audit: type=1326 audit(1762470374.063:1302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17868 comm="syz.6.3603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  657.839257][   T26] audit: type=1326 audit(1762470374.103:1303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17868 comm="syz.6.3603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  658.273947][   T26] audit: type=1326 audit(1762470374.103:1304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17868 comm="syz.6.3603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  658.400481][T17880] device bond_slave_0 entered promiscuous mode
[  658.407665][T17880] device bond_slave_1 entered promiscuous mode
[  658.457747][T17880] device vlan2 entered promiscuous mode
[  658.512882][T17880] device bond0 entered promiscuous mode
[  658.696450][T17895] device syzkaller0 entered promiscuous mode
[  659.377407][T17910] tipc: Failed to remove unknown binding: 66,1,1/0:4039747060/4039747062
[  659.449589][T17910] tipc: Failed to remove unknown binding: 66,1,1/0:4039747060/4039747062
[  659.512318][T17910] tipc: Failed to remove unknown binding: 66,1,1/0:4039747060/4039747062
[  659.741995][T17916] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3617'.
[  659.759262][   T26] audit: type=1326 audit(1762470376.623:1305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17922 comm="syz.2.3618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7758cb6c9 code=0x7ffc0000
[  659.906937][T17925] device syzkaller0 entered promiscuous mode
[  660.165401][   T26] audit: type=1326 audit(1762470376.623:1306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17922 comm="syz.2.3618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fc7758cb6c9 code=0x7ffc0000
[  660.228163][   T26] audit: type=1326 audit(1762470376.623:1307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17922 comm="syz.2.3618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7758cb6c9 code=0x7ffc0000
[  660.490115][T17916] tipc: Enabled bearer <udp:syz0>, priority 10
[  660.642232][T17937] bond0: Caught tx_queue_len zero misconfig
[  660.704848][T17941] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3624'.
[  661.398190][T17952] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  661.644649][T17952] net_ratelimit: 10 callbacks suppressed
[  661.644667][T17952] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  661.927162][T17966] netlink: 203516 bytes leftover after parsing attributes in process `syz.0.3631'.
[  661.937511][T17966] netlink: zone id is out of range
[  661.943094][T17966] netlink: zone id is out of range
[  661.948658][T17966] netlink: zone id is out of range
[  661.954848][T17966] netlink: zone id is out of range
[  661.960081][T17966] netlink: zone id is out of range
[  661.965549][T17966] netlink: zone id is out of range
[  661.970764][T17966] netlink: zone id is out of range
[  661.976622][T17966] netlink: zone id is out of range
[  661.981899][T17966] netlink: zone id is out of range
[  665.122737][ T4175] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  665.878228][T18014] overlayfs: failed to clone upperpath
[  665.922888][ T4175] usb 3-1: unable to get BOS descriptor or descriptor too short
[  666.096295][ T4175] usb 3-1: config 63 has an invalid interface number: 66 but max is 0
[  666.230348][T18019] overlayfs: failed to clone upperpath
[  666.236373][ T4175] usb 3-1: config 63 has an invalid descriptor of length 0, skipping remainder of the config
[  666.297724][ T4175] usb 3-1: config 63 has no interface number 0
[  666.337630][ T4175] usb 3-1: config 63 interface 66 has no altsetting 0
[  667.542827][ T4175] usb 3-1: New USB device found, idVendor=174f, idProduct=8a31, bcdDevice=39.f4
[  667.557105][ T4175] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  667.588701][ T4175] usb 3-1: Product: syz
[  667.615532][ T4175] usb 3-1: Manufacturer: syz
[  667.646194][ T4175] usb 3-1: SerialNumber: syz
[  667.904978][T18060] validate_nla: 7 callbacks suppressed
[  667.904997][T18060] netlink: 'syz.2.3658': attribute type 4 has an invalid length.
[  668.146032][T18066] netlink: 'syz.2.3658': attribute type 17 has an invalid length.
[  668.164984][ T4175] usb 3-1: USB disconnect, device number 8
[  668.812414][T18066] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  669.917515][T18096] bridge0: port 3(netdevsim0) entered disabled state
[  669.924445][T18096] bridge0: port 2(bridge_slave_1) entered disabled state
[  669.931703][T18096] bridge0: port 1(bridge_slave_0) entered disabled state
[  670.306385][T18111] device geneve2 entered promiscuous mode
[  670.547747][T18122] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3673'.
[  670.748070][T18129] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  672.486961][T18158] tipc: Failed to remove unknown binding: 66,1,1/2886997007:327846153/327846155
[  672.528524][T18158] tipc: Failed to remove unknown binding: 66,1,1/2886997007:327846153/327846155
[  672.599465][T18158] tipc: Failed to remove unknown binding: 66,1,1/2886997007:327846153/327846155
[  673.012041][T18171] loop0: detected capacity change from 0 to 40427
[  673.121639][T18171] F2FS-fs (loop0): invalid crc value
[  673.165255][T18171] F2FS-fs (loop0): Found nat_bits in checkpoint
[  673.230654][T18171] F2FS-fs (loop0): Start checkpoint disabled!
[  673.246840][T18171] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  673.905517][ T5661] attempt to access beyond end of device
[  673.905517][ T5661] loop0: rw=2049, want=40976, limit=40427
[  674.066050][T18204] 9pnet: Insufficient options for proto=fd
[  674.224542][T18209] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  674.236466][T18209] SET target dimension over the limit!
[  676.094637][T18223] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3701'.
[  676.496324][T18223] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  677.481186][T18254] netlink: 'syz.0.3710': attribute type 12 has an invalid length.
[  678.160190][T18279] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3715'.
[  678.391469][T18288] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma?
[  678.443837][T18290] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3717'.
[  678.534014][T18290] tipc: Started in network mode
[  678.538961][T18290] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  678.602721][T18290] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  678.730854][T18305] overlayfs: failed to clone upperpath
[  678.961151][T18311] overlayfs: failed to clone upperpath
[  680.711937][   T26] kauditd_printk_skb: 29 callbacks suppressed
[  680.711951][   T26] audit: type=1326 audit(1762470397.573:1337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18338 comm="syz.6.3731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  681.401612][   T26] audit: type=1326 audit(1762470397.573:1338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18338 comm="syz.6.3731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  681.510344][   T26] audit: type=1326 audit(1762470397.573:1339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18338 comm="syz.6.3731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  681.536547][   T26] audit: type=1326 audit(1762470397.573:1340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18338 comm="syz.6.3731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  681.560366][   T26] audit: type=1326 audit(1762470397.573:1341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18338 comm="syz.6.3731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  681.582947][   T26] audit: type=1326 audit(1762470397.613:1342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18338 comm="syz.6.3731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  681.613288][   T26] audit: type=1326 audit(1762470397.613:1343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18338 comm="syz.6.3731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  681.986959][T18356] netlink: 'syz.6.3733': attribute type 2 has an invalid length.
[  685.170630][   T26] audit: type=1326 audit(1762470397.613:1344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18338 comm="syz.6.3731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  685.222554][   T26] audit: type=1326 audit(1762470397.613:1345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18338 comm="syz.6.3731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  685.298608][   T26] audit: type=1326 audit(1762470397.613:1346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18338 comm="syz.6.3731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cd91ed6c9 code=0x7ffc0000
[  685.949820][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  685.956450][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  686.624837][T18401] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3743'.
[  689.002020][T18455] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  689.015018][T18455] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[  689.023800][T18455] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[  689.032117][T18455] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[  689.040526][T18455] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready
[  689.048936][T18455] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[  689.057881][T18455] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[  689.071611][T18455] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  689.287987][ T4683] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  689.670764][T16846] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  689.895664][T18465] hugetlbfs: syz.4.3760 (18465): Using mlock ulimits for SHM_HUGETLB is deprecated
[  692.735535][T18502] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3765'.
[  693.402455][T16848] Bluetooth: hci1: command 0x0406 tx timeout
[  695.393823][T18530] wlan0 speed is unknown, defaulting to 1000
[  695.401990][T18530] lo speed is unknown, defaulting to 1000
[  696.361954][T18543] device syzkaller0 entered promiscuous mode
[  696.435862][T18543] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3777'.
[  697.232855][T18550] fuse: Bad value for 'fd'
[  698.228988][T18565] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3780'.
[  698.679959][T18583] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3783'.
[  698.689361][T18583] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3783'.
[  698.698848][T18583] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3783'.
[  700.359704][T18591] fuse: Unknown parameter '0xffffffffffffffff'
[  700.460475][T18607] loop2: detected capacity change from 0 to 64
[  700.636982][T18605] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3787'.
[  702.450875][T18636] wlan0 speed is unknown, defaulting to 1000
[  702.458057][T18636] lo speed is unknown, defaulting to 1000
[  704.214633][ T5257] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  704.431541][ T4683] Bluetooth: hci1: command 0x0409 tx timeout
[  706.766416][ T4683] Bluetooth: hci1: command 0x041b tx timeout
[  707.084793][ T5257] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  707.348683][ T5257] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  708.156471][ T5257] device netdevsim0 left promiscuous mode
[  708.165608][ T5257] bridge0: port 3(netdevsim0) entered disabled state
[  708.288470][ T5257] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  708.536407][T18636] chnl_net:caif_netlink_parms(): no params data found
[  708.902896][ T4683] Bluetooth: hci1: command 0x040f tx timeout
[  709.537396][T18636] bridge0: port 1(bridge_slave_0) entered blocking state
[  709.547840][T18636] bridge0: port 1(bridge_slave_0) entered disabled state
[  709.648594][T18716] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3804'.
[  709.699904][T18636] device bridge_slave_0 entered promiscuous mode
[  710.026755][T18636] bridge0: port 2(bridge_slave_1) entered blocking state
[  710.147226][T18636] bridge0: port 2(bridge_slave_1) entered disabled state
[  710.194513][T18636] device bridge_slave_1 entered promiscuous mode
[  710.537852][T18636] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  710.644507][T18636] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  710.731733][T18636] team0: Port device team_slave_0 added
[  710.861656][T18636] team0: Port device team_slave_1 added
[  710.982930][T16848] Bluetooth: hci1: command 0x0419 tx timeout
[  711.542971][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  711.683454][T18636] batman_adv: batadv0: Adding interface: batadv_slave_0
[  711.690537][T18636] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  711.768332][T18636] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  711.822818][T18753] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3819'.
[  711.875851][T18753] tipc: Disabling bearer <eth:ipvlan1>
[  711.907978][T18636] batman_adv: batadv0: Adding interface: batadv_slave_1
[  711.919860][T18636] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  712.178365][T18636] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  713.129952][T18740] wlan0 speed is unknown, defaulting to 1000
[  713.211160][T18740] lo speed is unknown, defaulting to 1000
[  713.217188][T18766] netlink: 'syz.4.3822': attribute type 1 has an invalid length.
[  713.290145][T18766] 8021q: adding VLAN 0 to HW filter on device bond7
[  713.308607][T18636] device hsr_slave_0 entered promiscuous mode
[  713.321672][T18636] device hsr_slave_1 entered promiscuous mode
[  713.331232][T18636] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  713.339595][T18636] Cannot create hsr debugfs directory
[  713.462755][T16848] Bluetooth: hci5: command 0x0409 tx timeout
[  713.500933][T18772] bond7: (slave dummy0): making interface the new active one
[  713.606699][T18772] bond7: (slave dummy0): Enslaving as an active interface with an up link
[  714.393261][T18774] bond7 (unregistering): (slave dummy0): Releasing active interface
[  714.418757][T18774] bond7 (unregistering): Released all slaves
[  714.763901][T18789] autofs4:pid:18789:autofs_fill_super: called with bogus options
[  716.166297][ T4683] Bluetooth: hci5: command 0x041b tx timeout
[  717.809530][T18740] chnl_net:caif_netlink_parms(): no params data found
[  718.183180][T16848] Bluetooth: hci5: command 0x040f tx timeout
[  718.483054][ T5257] device hsr_slave_0 left promiscuous mode
[  718.723806][ T5257] device hsr_slave_1 left promiscuous mode
[  718.884639][ T5257] batman_adv: batadv0: Interface deactivated: dummy0
[  719.207867][ T5257] batman_adv: batadv0: Removing interface: dummy0
[  719.303411][ T5257] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  719.310959][ T5257] batman_adv: batadv0: Removing interface: batadv_slave_0
[  719.371195][ T5257] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  719.390207][ T5257] batman_adv: batadv0: Removing interface: batadv_slave_1
[  719.431560][ T5257] device bridge_slave_1 left promiscuous mode
[  719.448359][ T5257] bridge0: port 2(bridge_slave_1) entered disabled state
[  719.457852][ T5257] device bridge_slave_0 left promiscuous mode
[  719.472715][ T5257] bridge0: port 1(bridge_slave_0) entered disabled state
[  719.501732][ T5257] device veth1_macvtap left promiscuous mode
[  719.513915][ T5257] device veth0_macvtap left promiscuous mode
[  719.527506][ T5257] device veth1_vlan left promiscuous mode
[  719.533610][ T1108] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  719.549027][ T5257] device veth0_vlan left promiscuous mode
[  719.989205][ T5257] team0 (unregistering): Port device team_slave_1 removed
[  720.008081][ T5257] team0 (unregistering): Port device team_slave_0 removed
[  720.021606][ T5257] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  720.031688][ T5257] device bond_slave_1 left promiscuous mode
[  720.045174][ T5257] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  720.054822][ T5257] device bond_slave_0 left promiscuous mode
[  720.119326][ T1108] usb 3-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  720.139624][ T1108] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  720.161916][ T1108] usb 3-1: Product: syz
[  720.193975][ T1108] usb 3-1: Manufacturer: syz
[  720.198658][ T1108] usb 3-1: SerialNumber: syz
[  720.224979][ T5257] bond0 (unregistering): Released all slaves
[  720.262987][ T6784] Bluetooth: hci5: command 0x0419 tx timeout
[  720.314073][T18852] netlink: 'syz.1.3838': attribute type 1 has an invalid length.
[  720.394419][T18855] team0: Port device dummy0 removed
[  720.418470][T18530] bond0: (slave syz_tun): Releasing backup interface
[  720.432863][T18636] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  720.464791][T18740] bridge0: port 1(bridge_slave_0) entered blocking state
[  720.539833][   T26] kauditd_printk_skb: 17 callbacks suppressed
[  720.539849][   T26] audit: type=1326 audit(1762470437.403:1364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18877 comm="syz.4.3842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  720.597062][   T26] audit: type=1326 audit(1762470437.443:1365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18877 comm="syz.4.3842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  720.672529][T18740] bridge0: port 1(bridge_slave_0) entered disabled state
[  720.701488][   T26] audit: type=1326 audit(1762470437.443:1366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18877 comm="syz.4.3842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  720.731126][T18859] udc-core: couldn't find an available UDC or it's busy
[  720.734477][   T26] audit: type=1326 audit(1762470437.443:1367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18877 comm="syz.4.3842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  720.739112][T18740] device bridge_slave_0 entered promiscuous mode
[  720.761563][T18859] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  720.772683][T18740] bridge0: port 2(bridge_slave_1) entered blocking state
[  721.213947][   T26] audit: type=1326 audit(1762470437.443:1368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18877 comm="syz.4.3842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  721.582574][T18740] bridge0: port 2(bridge_slave_1) entered disabled state
[  721.602305][   T26] audit: type=1326 audit(1762470437.443:1369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18877 comm="syz.4.3842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  721.632539][   T26] audit: type=1326 audit(1762470437.443:1370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18877 comm="syz.4.3842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  721.662677][T18740] device bridge_slave_1 entered promiscuous mode
[  721.696479][ T1108] net_ratelimit: 332 callbacks suppressed
[  721.696502][ T1108] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -71
[  721.742742][ T1108] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -71
[  721.742786][   T26] audit: type=1326 audit(1762470437.443:1371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18877 comm="syz.4.3842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  721.755356][ T1108] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[  721.787828][T18636] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  721.815871][ T1108] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  721.839561][ T1108] lan78xx: probe of 3-1:1.0 failed with error -71
[  721.872172][   T26] audit: type=1326 audit(1762470437.453:1372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18877 comm="syz.4.3842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  721.877126][ T1108] usb 3-1: USB disconnect, device number 9
[  721.954687][   T26] audit: type=1326 audit(1762470437.453:1373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18877 comm="syz.4.3842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x7ffc0000
[  722.103068][T18636] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  722.146246][T18636] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  722.680257][T18740] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  722.855849][T18740] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  723.063091][T18903] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3846'.
[  723.136779][T18740] team0: Port device team_slave_0 added
[  723.219298][T18740] team0: Port device team_slave_1 added
[  723.335501][T18740] batman_adv: batadv0: Adding interface: batadv_slave_0
[  723.357496][T18740] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  723.442259][ T1108] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  723.451028][T18740] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  723.462606][ T1108] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  723.476147][T18924] loop2: detected capacity change from 0 to 1024
[  723.499304][T18920] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3849'.
[  723.526047][T18924] EXT4-fs (loop2): Quota format mount options ignored when QUOTA feature is enabled
[  723.556090][T18924] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option
[  723.578049][T18924] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  723.601738][T18740] batman_adv: batadv0: Adding interface: batadv_slave_1
[  723.623001][T18924] EXT4-fs (loop2): mounted filesystem without journal. Opts: nodioread_nolock,nolazytime,abort,errors=continue,dioread_nolock,jqfmt=vfsv0,nomblk_io_submit,nobarrier,,errors=continue. Quota mode: writeback.
[  723.625752][T18740] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  723.712518][T18740] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  723.837195][T18636] 8021q: adding VLAN 0 to HW filter on device bond0
[  723.929268][T18740] device hsr_slave_0 entered promiscuous mode
[  724.200425][T18740] device hsr_slave_1 entered promiscuous mode
[  724.693234][T18740] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  724.907136][T18740] Cannot create hsr debugfs directory
[  725.031600][T18636] 8021q: adding VLAN 0 to HW filter on device team0
[  725.039414][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  725.048232][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  725.155716][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  725.203644][T18952] netlink: 36 bytes leftover after parsing attributes in process `syz.4.3856'.
[  725.240787][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  725.255638][T16232] bridge0: port 1(bridge_slave_0) entered blocking state
[  725.262876][T16232] bridge0: port 1(bridge_slave_0) entered forwarding state
[  725.404741][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  726.259286][T18962] loop2: detected capacity change from 0 to 2048
[  726.317181][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  726.336300][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  726.345786][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  726.352938][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  727.231154][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  727.274259][T18962] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  727.293977][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  727.354803][T18962] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4
[  727.390581][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  727.456936][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  727.487645][T18962] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  727.520949][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  727.583283][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  727.641354][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  727.680351][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  727.705348][T18962] UDF-fs: unknown compression code (22)
[  727.723601][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  727.768544][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  727.799304][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  727.848542][T18636] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  728.502816][T18636] 8021q: adding VLAN 0 to HW filter on device batadv0
[  728.516140][T19007] wlan0 speed is unknown, defaulting to 1000
[  728.535366][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  728.553394][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  728.568286][T19007] lo speed is unknown, defaulting to 1000
[  729.872776][   T26] kauditd_printk_skb: 46 callbacks suppressed
[  729.872795][   T26] audit: type=1326 audit(1762470446.713:1420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19026 comm="syz.4.3871" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f24fa0ae6c9 code=0x0
[  730.814745][T19039] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  731.084425][T18740] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  731.165390][T18740] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  731.281642][T18740] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  731.404501][T18740] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  732.094587][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  732.112329][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  732.201538][T16225] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  732.228288][T16225] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  732.252130][T18636] device veth0_vlan entered promiscuous mode
[  732.289525][T16225] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  732.311073][T16225] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  732.386906][T18636] device veth1_vlan entered promiscuous mode
[  732.467068][T16225] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  732.490244][T16225] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  732.510398][T16225] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  732.521433][T16225] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  732.563498][T18636] device veth0_macvtap entered promiscuous mode
[  732.610909][T18740] 8021q: adding VLAN 0 to HW filter on device bond0
[  732.648074][T18636] device veth1_macvtap entered promiscuous mode
[  732.700973][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  732.720636][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  732.743755][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  732.769290][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  732.806752][T18740] 8021q: adding VLAN 0 to HW filter on device team0
[  732.833835][T18636] batman_adv: batadv0: Interface activated: batadv_slave_0
[  732.845121][T16225] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  732.861739][T16225] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  732.900844][T18636] batman_adv: batadv0: Interface activated: batadv_slave_1
[  732.924006][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  732.956176][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  733.003152][ T5585] bridge0: port 1(bridge_slave_0) entered blocking state
[  733.010284][ T5585] bridge0: port 1(bridge_slave_0) entered forwarding state
[  733.029766][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  733.043581][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  733.257170][T18740] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  733.268230][T18740] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  733.283474][T18636] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  733.292230][T18636] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  733.301469][T18636] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  733.311714][T18636] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  733.755727][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  733.824170][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  734.179595][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  734.209511][ T5585] bridge0: port 2(bridge_slave_1) entered blocking state
[  734.216709][ T5585] bridge0: port 2(bridge_slave_1) entered forwarding state
[  734.251252][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  734.274911][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  734.284540][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  734.352120][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  734.370866][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  734.408172][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  734.431456][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  734.456798][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  734.514717][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  734.529624][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  734.539809][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  734.698863][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  735.579544][T16225] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  735.619244][T16225] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  735.798442][ T5661] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  735.847778][ T5661] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  735.869440][ T5661] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  735.887798][ T5257] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  735.901184][ T5257] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  735.971412][T19105] gfs2: gfs2 mount does not exist
[  736.179477][ T5257] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  736.448317][T18740] 8021q: adding VLAN 0 to HW filter on device batadv0
[  739.077082][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  739.095545][ T5585] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  742.766205][T19163] netlink: 'syz.1.3891': attribute type 1 has an invalid length.
[  742.829908][T19163] 8021q: adding VLAN 0 to HW filter on device bond6
[  742.841288][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  742.862569][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  742.949106][T18740] device veth0_vlan entered promiscuous mode
[  742.974388][T19168] bond6: (slave erspan0): making interface the new active one
[  743.368534][T19168] bond6: (slave erspan0): Enslaving as an active interface with an up link
[  743.714755][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  743.750368][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  743.812632][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): bond6: link becomes ready
[  743.876934][T18740] device veth1_vlan entered promiscuous mode
[  743.971513][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  743.989105][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  744.027049][T18740] device veth0_macvtap entered promiscuous mode
[  744.058051][T18740] device veth1_macvtap entered promiscuous mode
[  744.108019][T18740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  744.171599][T18740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  744.197951][T18740] batman_adv: batadv0: Interface activated: batadv_slave_0
[  744.221590][T19187] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  744.244030][ T3102] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  744.264473][ T3102] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  744.316442][ T3102] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  744.354636][ T3102] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  744.387791][T18740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  744.406228][T18740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  744.435594][T18740] batman_adv: batadv0: Interface activated: batadv_slave_1
[  744.463680][ T3102] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  744.478764][ T3102] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  744.513729][T18740] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  744.529348][T18740] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  744.540443][T18740] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  744.564770][T18740] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  744.601112][T19198] wlan0 speed is unknown, defaulting to 1000
[  744.692082][T19198] lo speed is unknown, defaulting to 1000
[  745.039484][T19219] syz.1.3904[19219] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  745.039578][T19219] syz.1.3904[19219] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  745.051721][T16113] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  745.080672][T16113] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  745.138176][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  745.221561][ T5585] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  745.292721][ T5585] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  745.406980][T16113] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  745.507581][T19231] netlink: 96 bytes leftover after parsing attributes in process `syz.5.3907'.
[  745.585822][T19198] chnl_net:caif_netlink_parms(): no params data found
[  745.969836][T19257] netlink: 'syz.8.3911': attribute type 27 has an invalid length.
[  746.040460][T19260] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  746.042927][T19251] binder: 19250:19251 ioctl c0306201 0 returned -14
[  746.146451][T19264] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  746.234798][T19260] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  746.303456][T19260] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  746.355852][ T5919] Bluetooth: hci3: command 0x0409 tx timeout
[  747.386829][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  747.393199][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  747.589251][T19257] bridge0: port 2(bridge_slave_1) entered disabled state
[  747.596804][T19257] bridge0: port 1(bridge_slave_0) entered disabled state
[  749.053058][ T4175] Bluetooth: hci3: command 0x041b tx timeout
[  750.261635][T19257] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  750.307039][T19257] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  750.846989][T19257] netdevsim netdevsim8 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  750.856235][T19257] netdevsim netdevsim8 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  750.865518][T19257] netdevsim netdevsim8 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  750.874784][T19257] netdevsim netdevsim8 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  750.996232][T19198] bridge0: port 1(bridge_slave_0) entered blocking state
[  751.012619][T19198] bridge0: port 1(bridge_slave_0) entered disabled state
[  751.021026][T19198] device bridge_slave_0 entered promiscuous mode
[  751.033193][T19198] bridge0: port 2(bridge_slave_1) entered blocking state
[  751.040289][T19198] bridge0: port 2(bridge_slave_1) entered disabled state
[  751.048507][T19198] device bridge_slave_1 entered promiscuous mode
[  751.223143][ T4226] Bluetooth: hci3: command 0x040f tx timeout
[  751.468475][T19198] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  751.490869][T19198] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  751.498164][T19309] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3921'.
[  753.377228][ T4226] Bluetooth: hci3: command 0x0419 tx timeout
[  753.451267][T19198] team0: Port device team_slave_0 added
[  753.567751][T19198] team0: Port device team_slave_1 added
[  753.740686][T19326] loop5: detected capacity change from 0 to 2048
[  754.367481][T19326] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  754.578346][T19198] batman_adv: batadv0: Adding interface: batadv_slave_0
[  754.593191][   T26] audit: type=1800 audit(1762470471.463:1421): pid=19326 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.3925" name="file1" dev="loop5" ino=1346 res=0 errno=0
[  755.429555][T19198] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  755.527913][T19198] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  755.593776][T19198] batman_adv: batadv0: Adding interface: batadv_slave_1
[  755.624123][T19198] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  755.695561][T19198] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  755.815110][T19198] device hsr_slave_0 entered promiscuous mode
[  755.831015][T19198] device hsr_slave_1 entered promiscuous mode
[  755.838381][T19198] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  755.870621][T19198] Cannot create hsr debugfs directory
[  757.145471][T19380] 8021q: adding VLAN 0 to HW filter on device bond0
[  757.171614][T19380] team0: Port device bond0 added
[  757.256096][T19383] bridge0: port 1(bridge_slave_0) entered disabled state
[  757.265606][T19383] bridge0: port 2(bridge_slave_1) entered disabled state
[  757.319051][T19382] netlink: 'syz.4.3936': attribute type 10 has an invalid length.
[  757.337791][T19385] netlink: 'syz.4.3936': attribute type 10 has an invalid length.
[  757.363068][T19385] team0: Port device macvlan1 added
[  757.488931][T19392] device syzkaller0 entered promiscuous mode
[  757.505718][T19395] netlink: zone id is out of range
[  757.523277][T19395] netlink: zone id is out of range
[  757.528444][T19395] netlink: zone id is out of range
[  757.645108][T19395] netlink: zone id is out of range
[  757.670916][T19395] netlink: zone id is out of range
[  757.759156][T19395] netlink: zone id is out of range
[  757.772730][T19395] netlink: zone id is out of range
[  757.795897][T19395] netlink: zone id is out of range
[  758.243973][T19395] netlink: zone id is out of range
[  758.740589][T19395] netlink: zone id is out of range
[  761.782800][ T1108] usb 9-1: new full-speed USB device number 3 using dummy_hcd
[  761.824617][T19198] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  761.845544][T19198] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  761.881811][T19198] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  761.958851][T19198] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  762.955510][T19198] 8021q: adding VLAN 0 to HW filter on device bond0
[  762.956708][T19486] loop7: detected capacity change from 0 to 7
[  762.976009][T19484] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  762.985347][T19484] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  762.997219][T19484] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  762.999868][    C1] blk_update_request: I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  763.012769][T19484] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  763.017319][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  763.034272][    C1] blk_update_request: I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  763.045248][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  763.047479][T19484] device geneve2 entered promiscuous mode
[  763.064273][    C1] blk_update_request: I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  763.075234][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  763.092790][ T1108] usb 9-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  763.096118][T19198] 8021q: adding VLAN 0 to HW filter on device team0
[  763.111120][ T1108] usb 9-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[  763.111425][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  763.129220][    C1] blk_update_request: I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  763.138336][ T1108] usb 9-1: config 0 interface 0 has no altsetting 0
[  763.140161][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  763.157756][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  763.174594][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  763.182476][ T1108] usb 9-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[  763.184157][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  763.200998][    C1] blk_update_request: I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  763.211983][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  763.214853][ T1108] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  763.223358][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[  763.234940][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[  763.264172][    C1] blk_update_request: I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  763.275155][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  763.301350][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  763.310461][    C1] blk_update_request: I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  763.321471][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  763.333139][T19295] ldm_validate_partition_table(): Disk read failed.
[  763.347211][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  763.356488][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  763.363647][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  763.371840][    C1] blk_update_request: I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  763.382862][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  763.456259][ T1108] usb 9-1: config 0 descriptor??
[  764.026982][T19198] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  764.038165][T19198] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  764.087103][T19457] wlan0 speed is unknown, defaulting to 1000
[  764.096672][T19457] lo speed is unknown, defaulting to 1000
[  764.135045][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  764.144180][    C1] blk_update_request: I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  764.155133][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  764.162017][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  764.182795][    C0] blk_update_request: I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  764.193777][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  764.202897][T19295] Dev loop7: unable to read RDB block 0
[  764.213489][T19295]  loop7: unable to read partition table
[  764.219362][T19295] loop7: partition table beyond EOD, truncated
[  764.233802][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  764.250750][T19486] ldm_validate_partition_table(): Disk read failed.
[  764.275313][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  764.285606][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  764.291823][T19486] Dev loop7: unable to read RDB block 0
[  764.300491][T19486]  loop7: unable to read partition table
[  764.307011][T19486] loop7: partition table beyond EOD, truncated
[  764.314097][T19486] loop_reread_partitions: partition scan of loop7 (���������C�j̖�P=ý?�}X���	���%��`��ր���{��֐�ȵ4FLQk݊) failed (rc=-5)
[  764.328175][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  764.360441][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  764.369524][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  764.387349][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  764.401729][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  764.425003][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  764.459456][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  764.469283][T19508] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma?
[  764.479440][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  764.596640][ T1108] hid-steam 0003:28DE:1102.0003: unknown main item tag 0x0
[  764.615847][ T1108] hid-steam 0003:28DE:1102.0003: unknown main item tag 0x0
[  764.667319][ T1108] hid-steam 0003:28DE:1102.0003: unknown main item tag 0x0
[  764.816956][ T1108] hid-steam 0003:28DE:1102.0003: unknown main item tag 0x0
[  764.845313][ T1108] hid-steam 0003:28DE:1102.0003: unknown main item tag 0x0
[  764.939676][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  764.972333][T16232] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  765.038130][T19198] 8021q: adding VLAN 0 to HW filter on device batadv0
[  765.055988][ T1108] hid-steam 0003:28DE:1102.0003: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.8-1/input0
[  765.234264][T19528] 8021q: adding VLAN 0 to HW filter on device bond0
[  765.241208][ T1108] usb 9-1: USB disconnect, device number 3
[  765.271740][T19528] team0: Port device bond0 added
[  765.406751][T19532] fido_id[19532]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.8/usb9/report_descriptor': No such file or directory
[  765.434194][T19524] wlan0 speed is unknown, defaulting to 1000
[  765.441310][T19524] lo speed is unknown, defaulting to 1000
[  765.840365][T19548] ------------[ cut here ]------------
[  766.101535][T19548] wlan1: Failed check-sdata-in-driver check, flags: 0x4
[  766.527979][T19548] WARNING: CPU: 1 PID: 19548 at net/mac80211/driver-ops.h:172 ieee80211_bss_info_change_notify+0x37b/0x550
[  766.603828][T19552] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  766.695030][T19548] Modules linked in:
[  766.730568][T19548] CPU: 1 PID: 19548 Comm: syz.4.3972 Not tainted syzkaller #0
[  766.772219][T19548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  766.791323][T19548] RIP: 0010:ieee80211_bss_info_change_notify+0x37b/0x550
[  766.799849][T19548] Code: 7d 8d f8 49 8b 84 24 00 06 00 00 49 81 c4 20 06 00 00 48 85 c0 4c 0f 45 e0 48 c7 c7 40 14 19 8b 4c 89 e6 89 ea e8 95 f1 6f 00 <0f> 0b e9 07 fd ff ff e8 a9 15 49 f8 0f 0b e9 b1 fe ff ff e8 9d 15
[  766.828471][T19548] RSP: 0018:ffffc9000370f248 EFLAGS: 00010246
[  766.837737][T19548] RAX: e3b75b0c3a6a6900 RBX: 0000000000400000 RCX: 0000000000080000
[  766.851709][T19548] RDX: ffffc9000df19000 RSI: 0000000000005a2e RDI: 0000000000005a2f
[  766.862380][T19548] RBP: 0000000000000004 R08: dffffc0000000000 R09: ffffed10172267b0
[  766.878426][T19548] R10: ffffed10172267b0 R11: 1ffff110172267af R12: ffff88805f7dc000
[  766.887786][T19548] R13: ffff88805f7dd290 R14: ffff88802b1b0da0 R15: ffff88805f7de298
[  766.904892][T19548] FS:  00007f24f83156c0(0000) GS:ffff8880b9100000(0000) knlGS:0000000000000000
[  766.919943][T19548] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  766.928971][T19548] CR2: 000020000000a038 CR3: 0000000022689000 CR4: 00000000003506e0
[  766.945681][T19548] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  766.958516][T19548] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  766.968945][T19548] Call Trace:
[  766.972250][T19548]  <TASK>
[  766.978265][T19548]  ? netif_carrier_off+0x1/0xc0
[  766.985883][T19548]  ieee80211_ocb_leave+0x26f/0x320
[  766.991107][T19548]  __cfg80211_leave_ocb+0x219/0x3f0
[  766.999770][T19548]  cfg80211_leave_ocb+0x53/0x70
[  767.004986][T19548]  cfg80211_change_iface+0x4f1/0xeb0
[  767.010319][T19548]  nl80211_set_interface+0x598/0x7d0
[  767.016573][T19548]  ? nl80211_dump_interface+0x5c0/0x5c0
[  767.022184][T19548]  ? mutex_lock_nested+0x17/0x20
[  767.027230][T19548]  genl_rcv_msg+0xbc6/0xf40
[  767.031785][T19548]  ? genl_bind+0x370/0x370
[  767.036300][T19548]  ? verify_lock_unused+0x140/0x140
[  767.041535][T19548]  ? __dev_queue_xmit+0x1bc5/0x2ed0
[  767.046851][T19548]  ? dev_queue_xmit+0x20/0x20
[  767.051579][T19548]  ? nl80211_dump_interface+0x5c0/0x5c0
[  767.057793][T19548]  netlink_rcv_skb+0x1e0/0x430
[  767.062994][T19548]  ? genl_bind+0x370/0x370
[  767.067462][T19548]  ? netlink_ack+0xb60/0xb60
[  767.072112][T19548]  ? __lock_acquire+0x7c60/0x7c60
[  767.077442][T19548]  ? preempt_count_add+0x8d/0x190
[  767.082542][T19548]  ? down_read+0x1aa/0x2e0
[  767.086979][T19548]  genl_rcv+0x24/0x40
[  767.090968][T19548]  netlink_unicast+0x774/0x920
[  767.096023][T19548]  netlink_sendmsg+0x8ab/0xbc0
[  767.100862][T19548]  ? netlink_getsockopt+0x560/0x560
[  767.106209][T19548]  ? aa_sock_msg_perm+0x94/0x150
[  767.111210][T19548]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  767.116618][T19548]  ? security_socket_sendmsg+0x7c/0xa0
[  767.122113][T19548]  ? netlink_getsockopt+0x560/0x560
[  767.128111][T19548]  ____sys_sendmsg+0x5a2/0x8c0
[  767.133006][T19548]  ? memset+0x1e/0x40
[  767.137030][T19548]  ? __sys_sendmsg_sock+0x30/0x30
[  767.142097][T19548]  ? import_iovec+0x6f/0xa0
[  767.146762][T19548]  ___sys_sendmsg+0x1f0/0x260
[  767.151481][T19548]  ? __sys_sendmsg+0x250/0x250
[  767.156454][T19548]  ? sock_do_ioctl+0x27c/0x2f0
[  767.161268][T19548]  ? __fdget+0x18b/0x210
[  767.166302][T19548]  __se_sys_sendmsg+0x190/0x250
[  767.171356][T19548]  ? __x64_sys_sendmsg+0x80/0x80
[  767.176485][T19548]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  767.182659][T19548]  ? lockdep_hardirqs_on+0x94/0x140
[  767.187910][T19548]  do_syscall_64+0x4c/0xa0
[  767.192363][T19548]  ? clear_bhb_loop+0x30/0x80
[  767.197263][T19548]  ? clear_bhb_loop+0x30/0x80
[  767.201990][T19548]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  767.207979][T19548] RIP: 0033:0x7f24fa0ae6c9
[  767.212496][T19548] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  767.232393][T19548] RSP: 002b:00007f24f8315038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  767.241668][T19548] RAX: ffffffffffffffda RBX: 00007f24fa304fa0 RCX: 00007f24fa0ae6c9
[  767.249822][T19548] RDX: 0000000000000000 RSI: 0000200000000340 RDI: 0000000000000003
[  767.257883][T19548] RBP: 00007f24fa130f91 R08: 0000000000000000 R09: 0000000000000000
[  767.265937][T19548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  767.274556][T19548] R13: 00007f24fa305038 R14: 00007f24fa304fa0 R15: 00007ffc5b1b3618
[  767.282630][T19548]  </TASK>
[  767.285692][T19548] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  767.292989][T19548] CPU: 1 PID: 19548 Comm: syz.4.3972 Not tainted syzkaller #0
[  767.300459][T19548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  767.310513][T19548] Call Trace:
[  767.313792][T19548]  <TASK>
[  767.316723][T19548]  dump_stack_lvl+0x168/0x230
[  767.321407][T19548]  ? show_regs_print_info+0x20/0x20
[  767.326626][T19548]  ? load_image+0x3b0/0x3b0
[  767.331165][T19548]  panic+0x2c9/0x7f0
[  767.335066][T19548]  ? bpf_jit_dump+0xd0/0xd0
[  767.339579][T19548]  ? ieee80211_bss_info_change_notify+0x37b/0x550
[  767.345998][T19548]  __warn+0x248/0x2b0
[  767.349984][T19548]  ? ieee80211_bss_info_change_notify+0x37b/0x550
[  767.356411][T19548]  report_bug+0x1b7/0x2e0
[  767.360798][T19548]  handle_bug+0x3a/0x70
[  767.364969][T19548]  exc_invalid_op+0x16/0x40
[  767.369469][T19548]  asm_exc_invalid_op+0x16/0x20
[  767.374322][T19548] RIP: 0010:ieee80211_bss_info_change_notify+0x37b/0x550
[  767.381361][T19548] Code: 7d 8d f8 49 8b 84 24 00 06 00 00 49 81 c4 20 06 00 00 48 85 c0 4c 0f 45 e0 48 c7 c7 40 14 19 8b 4c 89 e6 89 ea e8 95 f1 6f 00 <0f> 0b e9 07 fd ff ff e8 a9 15 49 f8 0f 0b e9 b1 fe ff ff e8 9d 15
[  767.400973][T19548] RSP: 0018:ffffc9000370f248 EFLAGS: 00010246
[  767.407046][T19548] RAX: e3b75b0c3a6a6900 RBX: 0000000000400000 RCX: 0000000000080000
[  767.415040][T19548] RDX: ffffc9000df19000 RSI: 0000000000005a2e RDI: 0000000000005a2f
[  767.423102][T19548] RBP: 0000000000000004 R08: dffffc0000000000 R09: ffffed10172267b0
[  767.431097][T19548] R10: ffffed10172267b0 R11: 1ffff110172267af R12: ffff88805f7dc000
[  767.439089][T19548] R13: ffff88805f7dd290 R14: ffff88802b1b0da0 R15: ffff88805f7de298
[  767.447081][T19548]  ? ieee80211_bss_info_change_notify+0x37b/0x550
[  767.453508][T19548]  ? netif_carrier_off+0x1/0xc0
[  767.458364][T19548]  ieee80211_ocb_leave+0x26f/0x320
[  767.463480][T19548]  __cfg80211_leave_ocb+0x219/0x3f0
[  767.468686][T19548]  cfg80211_leave_ocb+0x53/0x70
[  767.473548][T19548]  cfg80211_change_iface+0x4f1/0xeb0
[  767.478856][T19548]  nl80211_set_interface+0x598/0x7d0
[  767.484176][T19548]  ? nl80211_dump_interface+0x5c0/0x5c0
[  767.489727][T19548]  ? mutex_lock_nested+0x17/0x20
[  767.494699][T19548]  genl_rcv_msg+0xbc6/0xf40
[  767.499245][T19548]  ? genl_bind+0x370/0x370
[  767.503701][T19548]  ? verify_lock_unused+0x140/0x140
[  767.508920][T19548]  ? __dev_queue_xmit+0x1bc5/0x2ed0
[  767.514148][T19548]  ? dev_queue_xmit+0x20/0x20
[  767.518849][T19548]  ? nl80211_dump_interface+0x5c0/0x5c0
[  767.524433][T19548]  netlink_rcv_skb+0x1e0/0x430
[  767.529201][T19548]  ? genl_bind+0x370/0x370
[  767.533619][T19548]  ? netlink_ack+0xb60/0xb60
[  767.538207][T19548]  ? __lock_acquire+0x7c60/0x7c60
[  767.543243][T19548]  ? preempt_count_add+0x8d/0x190
[  767.548295][T19548]  ? down_read+0x1aa/0x2e0
[  767.552749][T19548]  genl_rcv+0x24/0x40
[  767.556734][T19548]  netlink_unicast+0x774/0x920
[  767.561509][T19548]  netlink_sendmsg+0x8ab/0xbc0
[  767.566279][T19548]  ? netlink_getsockopt+0x560/0x560
[  767.571478][T19548]  ? aa_sock_msg_perm+0x94/0x150
[  767.576431][T19548]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  767.581718][T19548]  ? security_socket_sendmsg+0x7c/0xa0
[  767.587176][T19548]  ? netlink_getsockopt+0x560/0x560
[  767.592372][T19548]  ____sys_sendmsg+0x5a2/0x8c0
[  767.597156][T19548]  ? memset+0x1e/0x40
[  767.601167][T19548]  ? __sys_sendmsg_sock+0x30/0x30
[  767.606216][T19548]  ? import_iovec+0x6f/0xa0
[  767.610725][T19548]  ___sys_sendmsg+0x1f0/0x260
[  767.615411][T19548]  ? __sys_sendmsg+0x250/0x250
[  767.620184][T19548]  ? sock_do_ioctl+0x27c/0x2f0
[  767.624961][T19548]  ? __fdget+0x18b/0x210
[  767.629203][T19548]  __se_sys_sendmsg+0x190/0x250
[  767.634056][T19548]  ? __x64_sys_sendmsg+0x80/0x80
[  767.639014][T19548]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  767.645020][T19548]  ? lockdep_hardirqs_on+0x94/0x140
[  767.650244][T19548]  do_syscall_64+0x4c/0xa0
[  767.654675][T19548]  ? clear_bhb_loop+0x30/0x80
[  767.659356][T19548]  ? clear_bhb_loop+0x30/0x80
[  767.664047][T19548]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  767.669980][T19548] RIP: 0033:0x7f24fa0ae6c9
[  767.674404][T19548] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  767.694019][T19548] RSP: 002b:00007f24f8315038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  767.702474][T19548] RAX: ffffffffffffffda RBX: 00007f24fa304fa0 RCX: 00007f24fa0ae6c9
[  767.710466][T19548] RDX: 0000000000000000 RSI: 0000200000000340 RDI: 0000000000000003
[  767.718458][T19548] RBP: 00007f24fa130f91 R08: 0000000000000000 R09: 0000000000000000
[  767.726446][T19548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  767.734434][T19548] R13: 00007f24fa305038 R14: 00007f24fa304fa0 R15: 00007ffc5b1b3618
[  767.742431][T19548]  </TASK>
[  767.746002][T19548] Kernel Offset: disabled
[  767.750903][T19548] Rebooting in 86400 seconds..