last executing test programs:

4m6.906384337s ago: executing program 0 (id=362):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)

4m6.365737115s ago: executing program 0 (id=365):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, 0x0, 0x0)
r1 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x3, 0x3, 0x3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
sendmsg$tipc(r0, &(0x7f0000000400)={&(0x7f00000008c0), 0x58, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x20)
sendmsg$tipc(r0, &(0x7f0000000740)={&(0x7f0000000440)=@nameseq={0x1e, 0x1, 0x1, {0x1, 0x3, 0x3}}, 0x10, &(0x7f0000000640)=[{&(0x7f0000000480)=',', 0x1}], 0x1, 0x0, 0x0, 0x40000}, 0x4)

4m6.01877498s ago: executing program 3 (id=368):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_MGMT_C_REMOVE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={0x14, r1, 0x1c77b3ffb7919603, 0x70bd2b, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x8000100}, 0x24000000)

4m5.884797199s ago: executing program 0 (id=369):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x80000)
socket(0x200000000000011, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r1=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)=ANY=[@ANYBLOB="380000005400e501000000000000000007000000", @ANYRES32, @ANYBLOB="20000100", @ANYRES32=r1, @ANYBLOB="01000000ff"], 0x38}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

4m5.477482804s ago: executing program 0 (id=372):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x3, 0x4, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @sched_cls=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./bus\x00', 0x2000000, &(0x7f0000000500)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000", @ANYRES64=0x0, @ANYRESHEX, @ANYRESHEX, @ANYRESDEC], 0x1, 0x2b8, &(0x7f0000000800)="$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")
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
close(0x3)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c0002800500010006"], 0x44}}, 0x0)
recvfrom$inet_nvme(0xffffffffffffffff, &(0x7f0000000340)=""/84, 0x54, 0x40000001, &(0x7f00000005c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, r1, 0x3, 0x1, 0x2, 0x4, {0xa, 0x4e20, 0x10, @loopback, 0xffffff45}}}, 0x80)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1900000004000000040000000200000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000e5375992beee900d0d000000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r2, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000003b00)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000580)='$\x00\x19y\x01\xff\xb4\x9e\x95oQE\xc9\x1f|\bZ\xf44\x7f)\x03c\x9a\x85\x01V\xb8p+\x84\xfb\xe6?\x88\xe9\x98Y\x0e\xd5P\xa2\xcc\x01*\xcd%v!\x82\xf1\xaaB\x04-\x88\xeb-q8\x03\xadO\xa0F\xc5Z\x0f\xee\x94\xfcy\xa5\xa4L\xa1\xd7g\x9d\xd2m5r\xef\xe1\xd1\x87\x1aM\xa6\xa8\xa2\xef\xb0\x9e\xa9d\xee\xacl\x9c\xcb\x03\x17\xbbG\x15\xba3\xa5r<]T\xc6R\x03\xee#\x0f\x88\xc4\xd3\x02\xd1 @\r\x1cc\xe4|\x13H\xc2\x1fq\x88\xdd\x98\xe1~\xb0\xedK\x17x\v\x9b\xaa\xb4\a\xb6\x8b\x9e*=\x8f\x05\x8b\x88\xc9\x12\xa6\x8fs\x98\xf1\xfe\xcdX\xce,AD\xd2v\xf4\xe5\xd3\xf3\xf1TY\x1c\x8a\x98\xf8\xcf6\xc3>]l\xdaQ\xac\n{)\xc9\x95\xb4\x12j}8\x03\xba&\xe8p\xe8\xf0\xa4\xa6e\xbc\xef\x93%/x\x19\xaa\xb5\x97\x98A\\\x91\x9a \xa8\xf8a\xd8\x97\x1eR\xaf\xc8\x9f', 0x0)
read$ptp(r3, &(0x7f0000000280)=""/176, 0xb0)
memfd_secret(0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./bus/file0\x00', 0x1d8)
mount$bind(&(0x7f0000000040)='./bus\x00', &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x1081004, 0x0)

4m5.416985507s ago: executing program 3 (id=373):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000001040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r1, 0x0, 0x8, 0x0)
splice(r0, 0x0, r3, 0x0, 0x84, 0xd)
write$binfmt_misc(r1, 0x0, 0x0)

4m4.488712233s ago: executing program 0 (id=377):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000780)='./file0\x00', 0x0, &(0x7f0000000000)={[{@i_version}, {@init_itable}, {@noblock_validity}]}, 0x1, 0x71e, &(0x7f0000000f40)="$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")
r0 = creat(&(0x7f0000000380)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030003, 0x82, 0x1, 0x0, r0, &(0x7f0000000000), 0x100000, 0x3000}])

4m4.109877236s ago: executing program 3 (id=380):
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000000)='./file2\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='nodots,dmask=00000000000000000000003,usefree,nodots,flush,dots,dots,gid=', @ANYRESHEX=0x0, @ANYBLOB], 0x1, 0x214, &(0x7f0000000840)="$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")
openat(0xffffffffffffff9c, 0x0, 0x101042, 0x15)
truncate(&(0x7f0000000080)='./file1\x00', 0xc1a)
unlinkat(0xffffffffffffff9c, &(0x7f0000000480)='./file1\x00', 0x0)

4m3.724583304s ago: executing program 0 (id=383):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_MGMT_C_REMOVE(r1, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000100}, 0x24000000)

4m2.016640138s ago: executing program 32 (id=383):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_MGMT_C_REMOVE(r1, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000100}, 0x24000000)

4m1.997480336s ago: executing program 3 (id=387):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x3, 0x4, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @sched_cls=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./bus\x00', 0x2000000, &(0x7f0000000500)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000", @ANYRES64=0x0, @ANYRESHEX, @ANYRESHEX, @ANYRESDEC], 0x1, 0x2b8, &(0x7f0000000800)="$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")
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
close(0x3)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c0002800500010006"], 0x44}}, 0x0)
recvfrom$inet_nvme(0xffffffffffffffff, &(0x7f0000000340)=""/84, 0x54, 0x40000001, &(0x7f00000005c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, r1, 0x3, 0x1, 0x2, 0x4, {0xa, 0x4e20, 0x10, @loopback, 0xffffff45}}}, 0x80)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1900000004000000040000000200000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000e5375992beee900d0d000000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r2, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000003b00)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000580)='$\x00\x19y\x01\xff\xb4\x9e\x95oQE\xc9\x1f|\bZ\xf44\x7f)\x03c\x9a\x85\x01V\xb8p+\x84\xfb\xe6?\x88\xe9\x98Y\x0e\xd5P\xa2\xcc\x01*\xcd%v!\x82\xf1\xaaB\x04-\x88\xeb-q8\x03\xadO\xa0F\xc5Z\x0f\xee\x94\xfcy\xa5\xa4L\xa1\xd7g\x9d\xd2m5r\xef\xe1\xd1\x87\x1aM\xa6\xa8\xa2\xef\xb0\x9e\xa9d\xee\xacl\x9c\xcb\x03\x17\xbbG\x15\xba3\xa5r<]T\xc6R\x03\xee#\x0f\x88\xc4\xd3\x02\xd1 @\r\x1cc\xe4|\x13H\xc2\x1fq\x88\xdd\x98\xe1~\xb0\xedK\x17x\v\x9b\xaa\xb4\a\xb6\x8b\x9e*=\x8f\x05\x8b\x88\xc9\x12\xa6\x8fs\x98\xf1\xfe\xcdX\xce,AD\xd2v\xf4\xe5\xd3\xf3\xf1TY\x1c\x8a\x98\xf8\xcf6\xc3>]l\xdaQ\xac\n{)\xc9\x95\xb4\x12j}8\x03\xba&\xe8p\xe8\xf0\xa4\xa6e\xbc\xef\x93%/x\x19\xaa\xb5\x97\x98A\\\x91\x9a \xa8\xf8a\xd8\x97\x1eR\xaf\xc8\x9f', 0x0)
read$ptp(r3, &(0x7f0000000280)=""/176, 0xb0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./bus/file0\x00', 0x1d8)
mount$bind(&(0x7f0000000040)='./bus\x00', &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x1081004, 0x0)

3m59.755900078s ago: executing program 3 (id=395):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x18)
futimesat(0xffffffffffffffff, 0x0, 0x0)

3m58.834601568s ago: executing program 3 (id=400):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x9, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x8ff20c2c10f0093d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000004c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r1}, 0x10)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r2, &(0x7f00000006c0)={0x2, 0x0, @dev}, 0x10)

3m56.887475707s ago: executing program 33 (id=400):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x9, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x8ff20c2c10f0093d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000004c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r1}, 0x10)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r2, &(0x7f00000006c0)={0x2, 0x0, @dev}, 0x10)

3m52.032814878s ago: executing program 2 (id=423):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00', <r1=>0x0})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendto$packet(r0, &(0x7f0000000180)="10030600e0ff020004004788aa96a13bb100001100007fca1a00", 0x10608, 0x0, &(0x7f0000000140)={0x11, 0x0, r1}, 0x14)

3m51.403778604s ago: executing program 2 (id=426):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x3, 0x3, 0x3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, 0x0, 0x0)
sendmsg$tipc(r0, &(0x7f0000000400)={&(0x7f00000008c0), 0x58, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x20)
sendmsg$tipc(r0, &(0x7f0000000740)={&(0x7f0000000440)=@nameseq={0x1e, 0x1, 0x1, {0x1, 0x3, 0x3}}, 0x10, &(0x7f0000000640)=[{&(0x7f0000000480)=',', 0x1}], 0x1, 0x0, 0x0, 0x40000}, 0x4)

3m51.223999644s ago: executing program 4 (id=427):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000280)='./file1\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x1219, &(0x7f0000001100)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
ftruncate(r0, 0x2000009)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
write$P9_RREADLINK(r3, &(0x7f0000000000)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab)

3m50.9105189s ago: executing program 2 (id=428):
socket$nl_generic(0x10, 0x3, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
socket$inet6(0xa, 0x3, 0x3c)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
openat$cgroup_devices(r2, &(0x7f0000000000)='devices.deny\x00', 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280))
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$kcm(0xa, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$kcm(0x21, 0x2, 0x2)
socket$inet_tcp(0x2, 0x1, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="540000001000010400000000000000ffff000000", @ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e00140002800800010008000000060002000100000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00'], 0x54}, 0x1, 0x0, 0x0, 0x40814}, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f00000002c0), 0x40000000000009f, 0x0)

3m50.273141238s ago: executing program 2 (id=429):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x3, 0x4, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @sched_cls=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./bus\x00', 0x2000000, &(0x7f0000000500)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000", @ANYRES64=0x0, @ANYRESHEX, @ANYRESHEX, @ANYRESDEC], 0x1, 0x2b8, &(0x7f0000000800)="$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")
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
close(0x3)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c0002800500010006"], 0x44}}, 0x0)
recvfrom$inet_nvme(0xffffffffffffffff, &(0x7f0000000340)=""/84, 0x54, 0x40000001, &(0x7f00000005c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, r1, 0x3, 0x1, 0x2, 0x4, {0xa, 0x4e20, 0x10, @loopback, 0xffffff45}}}, 0x80)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1900000004000000040000000200000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000e5375992beee900d0d000000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r2, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000003b00)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./bus/file0\x00', 0x1d8)
mount$bind(&(0x7f0000000040)='./bus\x00', &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x1081004, 0x0)

3m49.092615145s ago: executing program 2 (id=432):
r0 = socket$kcm(0x11, 0x3, 0x0)
sendmsg$kcm(r0, &(0x7f00000000c0)={&(0x7f0000000100)=@qipcrtr={0x2a, 0x4, 0x1}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000280)="27031600160014000000002f1eafacf706e105000000894f00050003ee0b80558ddbba9b37242d37a518fc9c5be50eaf07c3650596", 0xfc66}], 0x1}, 0x4)

3m49.090008552s ago: executing program 4 (id=433):
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0xa6c3, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
lsetxattr$system_posix_acl(&(0x7f0000000000)='./file1\x00', &(0x7f0000000340)='system.posix_acl_default\x00', 0x0, 0x0, 0x0)

3m48.354063338s ago: executing program 2 (id=435):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000050000000000000000001811", @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e8500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

3m46.133185352s ago: executing program 34 (id=435):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000050000000000000000001811", @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e8500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

3m46.079080352s ago: executing program 4 (id=439):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ec}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={r0, 0x0, 0x2d, 0x0, @val=@netfilter={0xa, 0x1, 0x353a, 0x1}}, 0x20)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa1780c206050086dd6018232500102c"], 0x0)

3m45.462001363s ago: executing program 4 (id=440):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x3, 0x4, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @sched_cls=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./bus\x00', 0x2000000, &(0x7f0000000500)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000", @ANYRES64=0x0, @ANYRESHEX, @ANYRESHEX, @ANYRESDEC], 0x1, 0x2b8, &(0x7f0000000800)="$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")
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
close(0x3)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c0002800500010006"], 0x44}}, 0x0)
recvfrom$inet_nvme(0xffffffffffffffff, &(0x7f0000000340)=""/84, 0x54, 0x40000001, &(0x7f00000005c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, r1, 0x3, 0x1, 0x2, 0x4, {0xa, 0x4e20, 0x10, @loopback, 0xffffff45}}}, 0x80)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1900000004000000040000000200000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000e5375992beee900d0d000000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r2, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000003b00)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./bus/file0\x00', 0x1d8)
mount$bind(&(0x7f0000000040)='./bus\x00', &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x1081004, 0x0)

3m44.180188879s ago: executing program 4 (id=443):
r0 = socket$kcm(0x11, 0x3, 0x0)
sendmsg$kcm(r0, &(0x7f00000000c0)={&(0x7f0000000100)=@qipcrtr={0x2a, 0x4, 0x1}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000280)="27031600160014000000002f1eafacf706e105000000894f00050003ee0b80558ddbba9b37242d37a518fc9c5be50eaf07c3650596", 0xfc66}], 0x1}, 0x4)

3m43.074204888s ago: executing program 4 (id=445):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x8c, &(0x7f0000000600)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})

3m40.552723224s ago: executing program 35 (id=445):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x8c, &(0x7f0000000600)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})

1m22.611788369s ago: executing program 6 (id=1122):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x80000)
r0 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r1=>0x0})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r3=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)=ANY=[@ANYBLOB="380000005400e501000000000000000007000000", @ANYRES32=r1, @ANYBLOB, @ANYRES32=r3, @ANYBLOB="01000000ff"], 0x38}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1m22.221678325s ago: executing program 6 (id=1124):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x20000, 0x42)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r2, 0x8004587d, &(0x7f0000000080)={@id={0x2, 0x0, @c}})
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1aca421, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))

1m21.784325773s ago: executing program 6 (id=1127):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000050000000000000000001811"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3, 0x0, 0x8}, 0x18)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
lchown(&(0x7f0000000700)='./file0\x00', 0x0, 0x0)

1m21.175957582s ago: executing program 6 (id=1130):
syz_mount_image$ext4(&(0x7f0000000880)='ext2\x00', &(0x7f0000000000)='./file1\x00', 0x21000e, &(0x7f0000000180)={[{@nolazytime}, {@abort}, {@lazytime}, {@mblk_io_submit}, {@noauto_da_alloc}]}, 0xde, 0x53b, &(0x7f0000000e00)="$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")
mount$tmpfs(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400), 0x0, 0x0)
mount(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x20000, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='devpts\x00', 0x0, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)

1m20.198479025s ago: executing program 6 (id=1136):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], 0x6, 0x2ab, &(0x7f0000000a80)="$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")
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup(r1)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="000086dd0500560008005400000060ec970001983a00fc000018c6ba35000000000000000700ff020000000000000000000000000001"], 0xfdef)

1m19.433145684s ago: executing program 6 (id=1142):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000000)='rpm_return_int\x00', r1, 0x0, 0xfffffffffffff001}, 0x18)
r2 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x41341)
ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000200))

1m17.393025194s ago: executing program 36 (id=1142):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000000)='rpm_return_int\x00', r1, 0x0, 0xfffffffffffff001}, 0x18)
r2 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x41341)
ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000200))

5.834336723s ago: executing program 5 (id=1568):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c59850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={0x0, r0}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r2=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000d40)=ANY=[@ANYBLOB="010000000b000000050010000200000000000000", @ANYRES32=0x1, @ANYBLOB="00000000000000000000f4ffffffffffffff00", @ANYRES32=r2, @ANYRES32, @ANYBLOB="000000000200"/28], 0x50)

5.555294574s ago: executing program 1 (id=1569):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
timer_create(0x2, 0x0, &(0x7f0000044000)=<r0=>0x0)
timer_settime(0x0, 0x1, &(0x7f0000000340)={{}, {0x0, 0x9}}, 0x0)
timer_gettime(r0, &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000400)='io_uring_create\x00'}, 0x18)
io_uring_setup(0x1de0, &(0x7f00000000c0)={0x0, 0x45d6, 0x0, 0x0, 0xb1})
sendmsg$unix(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x18, 0x40000}, 0x4000)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1}, 0x18)

5.279205144s ago: executing program 8 (id=1570):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x19, 0x4, 0x8, 0x1}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000340)={r4, r1, 0x25, 0x2, @val=@tcx}, 0x1c)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b00)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
syz_emit_ethernet(0x1a, &(0x7f0000000040)=ANY=[], 0x0)

5.110275452s ago: executing program 5 (id=1572):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x2, 0x3fc, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x40000, @empty}}, 0x0, 0x800, 0x0, 0x0, 0x8a}, 0x9c)
setsockopt$inet_sctp6_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f00000000c0)=0xfffffffe, 0x4)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x600, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000a00)={0x0, @in6={{0xa, 0x4e23, 0x0, @loopback, 0x80}}, 0x100, 0x0, 0x0, 0x0, 0x54}, 0x9c)

4.958513547s ago: executing program 1 (id=1573):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000}, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r3=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x1, 0xb, 0x100005, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', r3, 0xffffffffffffffff, 0x0, 0x4002}, 0x50)

4.738989591s ago: executing program 8 (id=1575):
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
r0 = socket$netlink(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="540000000206010200000000000000000500000005000100060000000d000300686173683a6e6574000000000900020073797a31000000000c000780"], 0x54}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10040047}, 0x240008c4)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x14, 0x9, 0x6, 0x201}, 0x14}, 0x1, 0x0, 0x0, 0x10048047}, 0x4000050)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, 0x7, 0x6, 0x301, 0x0, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x50)

4.606537041s ago: executing program 7 (id=1576):
prctl$PR_SET_SECCOMP(0x4e, 0x1, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)}, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)

4.376907853s ago: executing program 1 (id=1577):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x80000)
r0 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r1=>0x0})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r3=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)=ANY=[@ANYBLOB="380000005400e50100000000000000000700", @ANYRES32=r1, @ANYBLOB="20000100", @ANYRES32=r3, @ANYBLOB="01000000ff"], 0x38}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0)

4.20617042s ago: executing program 8 (id=1579):
chdir(&(0x7f0000000480)='./cgroup\x00')
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./file2\x00', 0x1000052, &(0x7f0000000240)=ANY=[], 0xf5, 0x1219, &(0x7f0000002100)="$eJzs3E9rHGUcB/Bf1o1JU/NHrdX2oA948TQ0OXgSJEgKkgWlNkIrCFOz0SVjNmRCYEWsnrz2dXj2JvgOcvE1eMvFYw/iSGYam223VMHdFfv5HDI/nuf55pln2F2YZZ49eefel7s7ZbaTH0ZrZiZa+xHpfooUrTjz+mZzvHV7c73T2biR0vX1m6tvp5SW3vj5k6/nIuLixz8u/TQXxyufnvy29uvx5eMrJ3/c/KJXpl6ZVvqHKU93+v3D/E7RTdu9cjdL6cOim5fd1NsruwdD/TtFf39/kPK97cWF/YNuWaZ8b5B27+UR/XR4MEj553lvL2VZlhYXgieaffqQrR/uV1UVUVWz8XxUVVVdiIW4GC/EYizFtxHxYrwUL8eleCUux6vxWlypR03i9AEAAAAAAAAAAAAAAAAAAODZcX7/f0QM7f9fjhX7/wEAAAAAAAAAAAAAAAAAAGACPrp1e3O909m4kdJ8RPH90dbRVnNs+td3ohdFdONaLMfvUe/+bzT19fc7G9dSbSW+K+4+yN892nquyZ/+Oc2v1j8n8CDfrvvO8qtNPg3n52Lh/PxrsRyXRs+/NjI/H2+9eS6fxXL88ln0o4jteu6H+W9WU3rvg84j+av1OAAAAPg/yNJfRt6/Z9mT+pv83/5+oB2P3F+342p7umsnohx8tZu3iu5BXRRnxfxjLWMrZiNiUnONq5gbbmmNaa7WUy7UzLgW2P6PXGfF48Xpu/jf+D8XYrhl2p9MTMLDl8G0zwQAAAAAAAAAAIB/YszPJ7ZjxJNl705nqQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwJ/swLEAAAAAgDB/6zQ6NgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGCoAAP//I6LAUA==")
r0 = creat(&(0x7f00000001c0)='./bus\x00', 0x40)
io_setup(0x9, &(0x7f0000000300)=<r1=>0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
prctl$PR_SET_NAME(0xf, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@newnexthop={0x24, 0x68, 0x1, 0x2, 0x7ffffffc, {}, [@NHA_GROUP={0xc, 0x2, [{0x1, 0x4}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0xfffffffffffffda3, &(0x7f0000000180)={&(0x7f0000000200)=@delnexthop={0x20, 0x69, 0xb, 0x0, 0x0, {}, [{0x8, 0x1, 0x1}]}, 0x20}}, 0x4000000)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
io_submit(r1, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030003, 0x2, 0x1, 0x0, r0, 0x0}])
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000200)=ANY=[@ANYBLOB="140100002800010004000000fcdbdf250401f2800c00180008ac0f0000000100140001"], 0x114}], 0x1, 0x0, 0x0, 0x20000001}, 0x0)
r7 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r7, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x7, 0x0, 0x0, 0x1, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000000000000c00002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4]})
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')

3.856444122s ago: executing program 5 (id=1580):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
socket$inet6_sctp(0xa, 0x5, 0x84)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xb, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r0}, 0x10)
socket(0x10, 0x3, 0x9)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000010000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x86)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000300)={<r3=>0xffffffffffffffff}, 0x106, 0x8}}, 0x20)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x18)
write$RDMA_USER_CM_CMD_LISTEN(r2, &(0x7f0000000100)={0x7, 0x8, 0xfa00, {r3, 0x4734}}, 0x10)
close_range(r2, r2, 0x0)

3.834364737s ago: executing program 1 (id=1581):
r0 = syz_io_uring_setup(0x3e, &(0x7f0000000640)={0x0, 0xaddb, 0x10100, 0x12, 0x268}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f00000003c0)=<r2=>0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000400)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
syz_io_uring_submit(r1, r2, &(0x7f0000000600)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000019c0)=[{&(0x7f00000002c0)=""/183, 0xb7}], 0x1}, 0x0, 0x80002101})
io_uring_enter(r0, 0xd81, 0x0, 0x0, 0x0, 0x0)
r5 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCMIWAIT(r5, 0x545c, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000280), r4)

3.734269067s ago: executing program 7 (id=1582):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="05000000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1, 0x0, 0x400007}, 0x18)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$IPVS_CMD_SET_CONFIG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100000000010000000011"], 0x24}}, 0x0)

3.658123714s ago: executing program 9 (id=1583):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
timer_create(0x2, &(0x7f000049efa0)={0x0, 0x0, 0x1}, 0x0)
timer_settime(0x0, 0x1, &(0x7f0000000340)={{}, {0x0, 0x9}}, 0x0)
timer_gettime(0x0, &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000400)='io_uring_create\x00'}, 0x18)
io_uring_setup(0x1de0, &(0x7f00000000c0)={0x0, 0x45d6, 0x0, 0x0, 0xb1})
sendmsg$unix(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x18, 0x40000}, 0x4000)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r0}, 0x18)

3.233693319s ago: executing program 9 (id=1584):
r0 = openat$rtc(0xffffff9c, &(0x7f0000000040), 0xa200, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0x7005, 0x0)
readv(r0, &(0x7f00000000c0)=[{&(0x7f0000001bc0)=""/4096, 0x1000}], 0x1)

3.18492445s ago: executing program 7 (id=1585):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x19, 0x4, 0x8, 0x1}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70200000200", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000340)={r4, r1, 0x25, 0x2, @val=@tcx}, 0x1c)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b00)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
syz_emit_ethernet(0x1a, &(0x7f0000000040)=ANY=[], 0x0)

3.027778961s ago: executing program 5 (id=1586):
gettid()
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
epoll_create1(0x0)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40484c4}, 0x4000000)
r0 = io_uring_setup(0x68af, &(0x7f0000000480)={0x0, 0x0, 0x1880, 0x1})
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x3)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000005c0), 0x0, 0x0)
ioctl$PPPIOCATTCHAN(r2, 0x40047438, &(0x7f0000000100)=0x1)
preadv(r2, &(0x7f0000000840)=[{&(0x7f0000000000)=""/24, 0x18}], 0x1, 0x8, 0xa76)
close_range(r0, 0xffffffffffffffff, 0x0)

2.646520148s ago: executing program 9 (id=1587):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000}, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r3=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x1, 0xb, 0x100005, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', r3, 0xffffffffffffffff, 0x0, 0x4002}, 0x50)

2.644128989s ago: executing program 7 (id=1588):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r0}, 0x18)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00001f0000), 0x1002002, 0x0)
r2 = dup(r1)
r3 = open(&(0x7f0000000000)='./bus\x00', 0x40542, 0x0)
ftruncate(r3, 0xee72)
sendfile(r2, r3, 0x0, 0x8000fffffffe)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000180)=0x19)

2.506319888s ago: executing program 5 (id=1589):
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
r0 = socket$netlink(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="540000000206010200000000000000000500000005000100060000000d000300686173683a6e6574000000000900020073797a31000000000c00078008000640000000400500"], 0x54}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10040047}, 0x240008c4)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x14, 0x9, 0x6, 0x201}, 0x14}, 0x1, 0x0, 0x0, 0x10048047}, 0x4000050)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, 0x7, 0x6, 0x301, 0x0, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x50)

2.506017762s ago: executing program 1 (id=1590):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x2, 0x3fc, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x40000, @empty}}, 0x0, 0x800, 0x0, 0x0, 0x8a}, 0x9c)
setsockopt$inet_sctp6_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f00000000c0)=0xfffffffe, 0x4)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x600, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000a00)={0x0, @in6={{0xa, 0x4e23, 0x0, @loopback, 0x80}}, 0x100, 0x0, 0x0, 0x0, 0x54}, 0x9c)

2.355253294s ago: executing program 8 (id=1591):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x80000)
r0 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r1=>0x0})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r3=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)=ANY=[@ANYBLOB="380000005400e5010000000000000000070000", @ANYRES32=r1, @ANYBLOB="20000100", @ANYRES32=r3, @ANYBLOB="01000000ff"], 0x38}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0)

2.070660252s ago: executing program 9 (id=1592):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(0x0, r0)
sendmsg$NLBL_MGMT_C_LISTALL(r0, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f0000000000)={0x14, r1, 0x5170c560dce29b81, 0x70bd24, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x40008c4)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000200), r0)

2.019555605s ago: executing program 7 (id=1593):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000840), 0x81, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
finit_module(0xffffffffffffffff, 0x0, 0x7)

1.495778728s ago: executing program 8 (id=1594):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f0000000000)={0x1, 'veth0_virt_wifi\x00', 0x2000000}, 0x18)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x48c, &(0x7f00000002c0)={0x1, 'ipvlan1\x00', 0x100}, 0x18)

1.409838074s ago: executing program 7 (id=1595):
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00'}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="0b00000008000000010001000900000001"], 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000}, 0x94)
write$P9_RLERRORu(0xffffffffffffffff, &(0x7f0000000980)=ANY=[@ANYBLOB="0e00000007010001002802000000f78ccfe75b9c3a9cac5f4e301c94ced2f36967a8b676cdd0b31e87ab85dcb2485118f0a677c94ca056ee550a5a12c77420acec73101029e627e2b74f186158ce55d0a70be819cf8eda8700005f007bba06129e94da5250adb0c119c13823c385e6baaafec27629714d8ce1780f11b23e4b730837015d5fac9de283df54a8cde07c920a16bb94068fd9d0055c26f6543f96178d2a4b81327549537c9d559c2b2c140017f4f972136b83bd9c2037c27388"], 0xe)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x2389, &(0x7f0000000380)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
timer_create(0x2, &(0x7f000049efa0)={0x0, 0x0, 0x1}, &(0x7f0000044000)=<r2=>0x0)
timer_settime(0x0, 0x1, &(0x7f0000000340)={{}, {0x0, 0x9}}, 0x0)
timer_gettime(r2, &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000400)='io_uring_create\x00', r1}, 0x18)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000400)='io_uring_create\x00', r3}, 0x18)
io_uring_setup(0x1de0, &(0x7f00000000c0)={0x0, 0x45d6, 0x0, 0x0, 0xb1})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$unix(r5, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=[@rights={{0x18, 0x1, 0x1, [r4, r4]}}], 0x18, 0x40000}, 0x4000)
r6 = socket$nl_rdma(0x10, 0x3, 0x14)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r6, 0xc0502100, &(0x7f0000000000)={0x0, <r7=>0x0})
syz_open_procfs$namespace(r7, &(0x7f00000000c0)='ns/uts\x00')
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="38000000031401002cbd7000fcdbdf250900020073797a32000000000800410073697700140033006c6f"], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x810)
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000680)='./file0\x00', 0x14c0e, &(0x7f0000000b40)=ANY=[@ANYRES8=0x0], 0xfd, 0x6b1, &(0x7f0000001f80)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000283d0020850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r8}, 0x18)
creat(&(0x7f0000000000)='./file1\x00', 0x14c)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="18000000041401002dbd7000fedbdf250800010000000000ba30b28e994c1a08d1ca4eb6b8b4889cdd4e786eb807e04eb88b935d785f3d3201c58033c88e160d2745a91b08363bcc34006d0009788455ec9ad10b24"], 0x18}, 0x1, 0x0, 0x0, 0x671ec167a4b72164}, 0x0)

1.407508871s ago: executing program 9 (id=1596):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r0, 0x6, 0x19, &(0x7f00000001c0)=0x1, 0x4)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg$inet(r0, &(0x7f0000004980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000200)=[{&(0x7f0000000240)}], 0x1, 0x0, 0x0, 0x80040000}}], 0x1, 0x20000810)
setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f00000017c0)=@gcm_256={{}, "41107f2d8c227eab", "2aade1aa965e611899c2a40889d4b110389398808b9d31cae1bc954b53e429e5", "33f3df93", "7e68d31c6375e358"}, 0x38)

261.88853ms ago: executing program 1 (id=1597):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000040)=0x2, 0x4)
setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000080), 0x4)
sendmsg$802154_dgram(r0, &(0x7f0000002480)={&(0x7f0000002380)={0x24, @long={0x3, 0x2}}, 0x14, &(0x7f0000002440)={0x0}}, 0x4040044)

129.088093ms ago: executing program 5 (id=1598):
r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x800000001fe, 0x82)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014fa0000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x27, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)

82.559631ms ago: executing program 8 (id=1599):
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
epoll_create1(0x0)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40484c4}, 0x4000000)
r0 = io_uring_setup(0x68af, &(0x7f0000000480)={0x0, 0x0, 0x1880, 0x1})
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x3)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000005c0), 0x0, 0x0)
ioctl$PPPIOCATTCHAN(r2, 0x40047438, &(0x7f0000000100)=0x1)
preadv(r2, &(0x7f0000000840)=[{&(0x7f0000000000)=""/24, 0x18}], 0x1, 0x8, 0xa76)
close_range(r0, 0xffffffffffffffff, 0x0)

0s ago: executing program 9 (id=1600):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, 0x0, 0x0)
connect$inet(r0, 0x0, 0x0)
open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x108)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffffffffffffff86dd6060626000102c00fe8000000000000000000000000000bbfe8000000000000000000000000000aa11000001"], 0x0)
syz_emit_ethernet(0x52, &(0x7f00000007c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb86dd608a27f2000f2c00fe8000000000000000000000000000bbfe8000000000000000000000000000aa000201"], 0x0)

kernel console output (not intermixed with test programs):

  297.117892][ T6611] Node 1 Normal free:895872kB boost:0kB min:40100kB low:50124kB high:60148kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:4kB present:4194300kB managed:987120kB mlocked:0kB bounce:0kB free_pcp:488kB local_pcp:0kB free_cma:0kB
[  297.149695][ T6611] lowmem_reserve[]: 0 0 0 0 0
[  297.154970][ T6611] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 1*4096kB (M) = 4096kB
[  297.168388][ T6611] Node 0 DMA32: 8*4kB (M) 21*8kB (UME) 9*16kB (UM) 27*32kB (UM) 12*64kB (UM) 10*128kB (UME) 6*256kB (UME) 6*512kB (ME) 4*1024kB (UME) 7*2048kB (UME) 136*4096kB (M) = 583352kB
[  297.195785][ T6611] Node 0 Normal: 293*4kB (UM) 161*8kB (UM) 77*16kB (UME) 20*32kB (UME) 9*64kB (UM) 10*128kB (UM) 4*256kB (UME) 0*512kB 4*1024kB (UME) 1*2048kB (E) 2*4096kB (M) = 21548kB
[  297.217189][ T6611] Node 1 Normal: 4*4kB (UE) 8*8kB (UME) 7*16kB (UE) 8*32kB (UME) 21*64kB (UME) 11*128kB (UME) 13*256kB (UME) 5*512kB (UE) 4*1024kB (UME) 5*2048kB (UME) 213*4096kB (M) = 895872kB
[  297.237663][ T6611] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  297.247670][ T6611] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  297.257388][ T6611] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  297.267331][ T6611] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  297.284709][ T6611] 44892 total pagecache pages
[  297.292198][ T6611] 0 pages in swap cache
[  297.296556][ T6611] Free swap  = 124996kB
[  297.301103][ T6611] Total swap = 124996kB
[  297.305428][ T6611] 2097051 pages RAM
[  297.309392][ T6611] 0 pages HighMem/MovableOnly
[  297.314359][ T6611] 1531372 pages reserved
[  297.318754][ T6611] 0 pages cma reserved
[  297.320958][ T6617] loop2: detected capacity change from 0 to 164
[  297.398168][ T6617] Unable to read rock-ridge attributes
[  297.406915][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  297.435622][ T6613] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  297.449297][ T6613] ext4 filesystem being mounted at /46/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  297.526765][ T6616] Unable to read rock-ridge attributes
[  297.590535][ T6616] iso9660: Corrupted directory entry in block 4 of inode 1792
[  297.917168][ T6626] IPVS: stopping master sync thread 6627 ...
[  297.919269][ T6627] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  297.969492][ T5810] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  298.359051][ T6622] loop1: detected capacity change from 0 to 8192
[  298.677469][   T30] kauditd_printk_skb: 17 callbacks suppressed
[  298.677548][   T30] audit: type=1326 audit(1758411548.731:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6638 comm="syz.3.249" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f67539 code=0x7ffc0000
[  298.788183][   T30] audit: type=1326 audit(1758411548.791:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6638 comm="syz.3.249" exe="/root/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf7f67539 code=0x7ffc0000
[  298.818026][   T30] audit: type=1326 audit(1758411548.791:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6638 comm="syz.3.249" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f67539 code=0x7ffc0000
[  298.842740][   T30] audit: type=1326 audit(1758411548.801:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6638 comm="syz.3.249" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f67539 code=0x7ffc0000
[  298.865867][   T30] audit: type=1326 audit(1758411548.811:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6638 comm="syz.3.249" exe="/root/syz-executor" sig=0 arch=40000003 syscall=55 compat=1 ip=0xf7f67539 code=0x7ffc0000
[  298.888550][   T30] audit: type=1326 audit(1758411548.811:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6638 comm="syz.3.249" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f67539 code=0x7ffc0000
[  298.916354][   T30] audit: type=1326 audit(1758411548.821:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6638 comm="syz.3.249" exe="/root/syz-executor" sig=0 arch=40000003 syscall=55 compat=1 ip=0xf7f67539 code=0x7ffc0000
[  298.948066][   T30] audit: type=1326 audit(1758411548.821:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6638 comm="syz.3.249" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f67539 code=0x7ffc0000
[  299.963371][ T6649] loop3: detected capacity change from 0 to 128
[  301.081441][ T6656] loop0: detected capacity change from 0 to 512
[  301.156790][ T6656] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  301.177987][ T6656] ext4 filesystem being mounted at /54/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  301.222167][   T30] audit: type=1804 audit(1758411551.281:79): pid=6656 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.255" name="/newroot/54/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  301.537473][ T6660] IPVS: stopping master sync thread 6663 ...
[  302.655500][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  304.510983][ T6673] loop4: detected capacity change from 0 to 8192
[  305.088948][ T6685] loop3: detected capacity change from 0 to 128
[  305.460679][ T6688] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  305.475402][ T6687] IPVS: stopping master sync thread 6688 ...
[  306.752732][ T6636] Set syz1 is full, maxelem 65536 reached
[  307.450584][ T6705] loop4: detected capacity change from 0 to 512
[  307.592350][ T6705] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  307.605637][ T6705] ext4 filesystem being mounted at /53/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  308.115162][ T5810] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  308.631377][ T6729] loop3: detected capacity change from 0 to 128
[  308.778786][ T6729] syz.3.286: attempt to access beyond end of device
[  308.778786][ T6729] loop3: rw=2049, sector=138, nr_sectors = 8 limit=128
[  308.874700][ T6718] loop2: detected capacity change from 0 to 8192
[  309.063419][ T6735] smc: net device bond0 applied user defined pnetid SYZ0
[  309.129391][ T6735] smc: net device bond0 erased user defined pnetid SYZ0
[  309.904184][ T6746] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  309.961399][ T6747] syz.0.293 uses obsolete (PF_INET,SOCK_PACKET)
[  310.165520][ T6746] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  310.269082][ T6753] loop2: detected capacity change from 0 to 512
[  310.426977][ T6746] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  310.472005][ T6753] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  310.493411][ T6753] ext4 filesystem being mounted at /49/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  310.674263][ T6746] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  310.722406][   T30] audit: type=1804 audit(1758411560.771:80): pid=6753 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.295" name="/newroot/49/file0/bus" dev="loop2" ino=18 res=1 errno=0
[  310.973550][ T5817] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  311.050252][ T1330] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  311.132412][ T1330] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  311.167651][ T6767] loop3: detected capacity change from 0 to 128
[  311.242563][ T1330] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  311.269050][ T1330] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  311.279101][ T6767] syz.3.301: attempt to access beyond end of device
[  311.279101][ T6767] loop3: rw=2049, sector=138, nr_sectors = 8 limit=128
[  312.154672][ T6781] siw: device registration error -23
[  312.182178][ T6781] loop0: detected capacity change from 0 to 164
[  312.290795][ T6776] loop4: detected capacity change from 0 to 8192
[  313.553728][ T6799] loop0: detected capacity change from 0 to 128
[  313.687496][ T6799] syz.0.317: attempt to access beyond end of device
[  313.687496][ T6799] loop0: rw=2049, sector=138, nr_sectors = 8 limit=128
[  314.284162][ T6812] siw: device registration error -23
[  314.356798][ T6812] loop3: detected capacity change from 0 to 164
[  314.929272][ T6827] netlink: 12 bytes leftover after parsing attributes in process `syz.3.330'.
[  315.424621][ T6835] loop0: detected capacity change from 0 to 128
[  315.546152][ T6835] syz.0.334: attempt to access beyond end of device
[  315.546152][ T6835] loop0: rw=2049, sector=138, nr_sectors = 2 limit=128
[  317.396628][ T6871] loop0: detected capacity change from 0 to 128
[  317.545765][ T6871] syz.0.351: attempt to access beyond end of device
[  317.545765][ T6871] loop0: rw=2049, sector=138, nr_sectors = 2 limit=128
[  318.240055][ T6884] loop4: detected capacity change from 0 to 2048
[  318.311152][ T6884] EXT4-fs: Ignoring removed i_version option
[  318.427489][ T6884] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  318.440436][ T6884] ext4 filesystem being mounted at /67/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  319.261177][ T5810] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  319.580352][ T6907] IPv6: Can't replace route, no match found
[  319.855992][ T6912] loop1: detected capacity change from 0 to 128
[  320.016373][ T6912] syz.1.370: attempt to access beyond end of device
[  320.016373][ T6912] loop1: rw=2049, sector=138, nr_sectors = 2 limit=128
[  320.152584][ T6918] loop0: detected capacity change from 0 to 128
[  320.185602][ T6918] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  320.238395][ T6918] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  320.304678][ T6918] netlink: 8 bytes leftover after parsing attributes in process `syz.0.372'.
[  320.394010][ T6918] bond1: entered promiscuous mode
[  320.399304][ T6918] bond1: entered allmulticast mode
[  320.406924][ T6918] 8021q: adding VLAN 0 to HW filter on device bond1
[  321.456726][ T1142] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  321.502117][ T3720] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  321.512207][ T6936] loop3: detected capacity change from 0 to 128
[  321.708775][ T3720] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  321.742795][ T6939] smc: net device bond0 applied user defined pnetid SYZ0
[  321.821603][ T6939] smc: net device bond0 erased user defined pnetid SYZ0
[  321.877719][ T3720] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.047137][ T3720] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.419294][ T3720] bridge_slave_1: left allmulticast mode
[  322.425691][ T3720] bridge_slave_1: left promiscuous mode
[  322.432612][ T3720] bridge0: port 2(bridge_slave_1) entered disabled state
[  322.455341][ T3720] bridge_slave_0: left allmulticast mode
[  322.462171][ T3720] bridge_slave_0: left promiscuous mode
[  322.479000][ T3720] bridge0: port 1(bridge_slave_0) entered disabled state
[  322.988076][ T3720] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  323.013515][ T3720] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  323.044375][ T3720] bond0 (unregistering): Released all slaves
[  323.068765][ T3720] bond1 (unregistering): Released all slaves
[  323.578140][ T6947] loop1: detected capacity change from 0 to 128
[  323.651604][ T6948] loop3: detected capacity change from 0 to 128
[  323.662328][ T6948] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  323.700964][ T6949] netlink: 2 bytes leftover after parsing attributes in process `syz.4.388'.
[  323.741983][ T3720] hsr_slave_0: left promiscuous mode
[  323.762127][ T3720] hsr_slave_1: left promiscuous mode
[  323.771205][ T3720] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  323.778826][ T3720] batman_adv: batadv0: Removing interface: batadv_slave_0
[  323.799950][ T6948] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  323.827526][ T3720] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  323.835357][ T3720] batman_adv: batadv0: Removing interface: batadv_slave_1
[  323.932218][ T6948] netlink: 8 bytes leftover after parsing attributes in process `syz.3.387'.
[  323.965295][ T3720] veth1_macvtap: left promiscuous mode
[  323.971281][ T3720] veth0_macvtap: left promiscuous mode
[  323.977194][ T3720] veth1_vlan: left promiscuous mode
[  323.983102][ T3720] veth0_vlan: left promiscuous mode
[  324.600797][ T5816] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  324.611704][ T5816] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  324.699471][ T5816] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  324.775356][ T5816] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  324.840718][ T5816] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  324.972082][ T3720] team0 (unregistering): Port device team_slave_1 removed
[  325.050666][ T3720] team0 (unregistering): Port device team_slave_0 removed
[  325.341653][ T6948] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR
[  325.506635][ T6960] lo speed is unknown, defaulting to 1000
[  325.862269][ T6971] loop2: detected capacity change from 0 to 128
[  326.377639][ T3779] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  326.447254][ T3867] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  326.507184][ T6979] netlink: 'syz.2.399': attribute type 10 has an invalid length.
[  326.547693][ T6960] chnl_net:caif_netlink_parms(): no params data found
[  326.606431][ T6979] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  326.621810][   T39] lo speed is unknown, defaulting to 1000
[  326.627776][   T39] syz2: Port: 1 Link DOWN
[  326.700296][ T3867] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  326.890890][ T3867] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  326.924404][ T5104] Bluetooth: hci4: command tx timeout
[  326.954090][ T6973] loop4: detected capacity change from 0 to 8192
[  327.129275][ T3867] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  327.488401][ T3867] bridge_slave_1: left allmulticast mode
[  327.494500][ T3867] bridge_slave_1: left promiscuous mode
[  327.501509][ T3867] bridge0: port 2(bridge_slave_1) entered disabled state
[  327.547673][ T3867] bridge_slave_0: left allmulticast mode
[  327.555340][ T3867] bridge_slave_0: left promiscuous mode
[  327.562228][ T3867] bridge0: port 1(bridge_slave_0) entered disabled state
[  328.088102][ T3867] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  328.117891][ T3867] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  328.135452][ T3867] bond0 (unregistering): Released all slaves
[  328.520943][ T6960] bridge0: port 1(bridge_slave_0) entered blocking state
[  328.528508][ T6960] bridge0: port 1(bridge_slave_0) entered disabled state
[  328.544168][ T6960] bridge_slave_0: entered allmulticast mode
[  328.554037][ T6960] bridge_slave_0: entered promiscuous mode
[  328.617579][ T6960] bridge0: port 2(bridge_slave_1) entered blocking state
[  328.625671][ T6960] bridge0: port 2(bridge_slave_1) entered disabled state
[  328.633672][ T6960] bridge_slave_1: entered allmulticast mode
[  328.643353][ T6960] bridge_slave_1: entered promiscuous mode
[  328.990034][ T5104] Bluetooth: hci4: command tx timeout
[  329.074228][ T3867] hsr_slave_0: left promiscuous mode
[  329.114078][ T3867] hsr_slave_1: left promiscuous mode
[  329.124093][ T3867] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  329.132090][ T3867] batman_adv: batadv0: Removing interface: batadv_slave_0
[  329.186539][ T3867] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  329.194394][ T3867] batman_adv: batadv0: Removing interface: batadv_slave_1
[  329.271019][ T3867] veth1_macvtap: left promiscuous mode
[  329.277121][ T3867] veth0_macvtap: left promiscuous mode
[  329.283354][ T3867] veth1_vlan: left promiscuous mode
[  329.288951][ T3867] veth0_vlan: left promiscuous mode
[  329.564750][ T5816] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  329.610436][ T5816] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  329.630270][ T5816] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  329.649113][ T5816] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  329.661760][ T5816] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  330.232964][ T3867] team0 (unregistering): Port device team_slave_1 removed
[  330.272209][ T3867] team0 (unregistering): Port device team_slave_0 removed
[  330.604377][ T6960] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  330.732682][ T6999] lo speed is unknown, defaulting to 1000
[  330.921511][ T6960] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  331.082885][ T5816] Bluetooth: hci4: command tx timeout
[  331.213005][ T6960] team0: Port device team_slave_0 added
[  331.268635][ T6960] team0: Port device team_slave_1 added
[  331.447291][ T7009] loop2: detected capacity change from 0 to 8192
[  331.555076][ T6960] batman_adv: batadv0: Adding interface: batadv_slave_0
[  331.564038][ T6960] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  331.596396][ T6960] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  331.726057][ T5816] Bluetooth: hci3: command tx timeout
[  331.736735][ T6960] batman_adv: batadv0: Adding interface: batadv_slave_1
[  331.744377][ T6960] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  331.771159][ T6960] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  332.049702][ T6960] hsr_slave_0: entered promiscuous mode
[  332.060315][ T6960] hsr_slave_1: entered promiscuous mode
[  332.069201][ T6960] debugfs: 'hsr0' already exists in 'hsr'
[  332.076806][ T6960] Cannot create hsr debugfs directory
[  332.488873][ T6999] chnl_net:caif_netlink_parms(): no params data found
[  333.150042][ T5816] Bluetooth: hci4: command tx timeout
[  333.240862][ T7029] loop1: detected capacity change from 0 to 4096
[  333.250699][ T7029] EXT4-fs: Ignoring removed nomblk_io_submit option
[  333.340523][ T6960] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  333.355822][ T7029] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  333.420665][ T6960] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  333.466545][ T6960] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  333.491869][ T6960] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  333.792064][ T5816] Bluetooth: hci3: command tx timeout
[  333.818479][ T6999] bridge0: port 1(bridge_slave_0) entered blocking state
[  333.826348][ T6999] bridge0: port 1(bridge_slave_0) entered disabled state
[  333.841294][ T6999] bridge_slave_0: entered allmulticast mode
[  333.851323][ T6999] bridge_slave_0: entered promiscuous mode
[  333.875966][ T6999] bridge0: port 2(bridge_slave_1) entered blocking state
[  333.883737][ T6999] bridge0: port 2(bridge_slave_1) entered disabled state
[  333.891944][ T6999] bridge_slave_1: entered allmulticast mode
[  333.901915][ T6999] bridge_slave_1: entered promiscuous mode
[  333.988522][ T5811] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  334.079142][ T6999] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  334.128094][ T6999] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  334.541412][ T6999] team0: Port device team_slave_0 added
[  334.591636][ T6999] team0: Port device team_slave_1 added
[  334.815156][ T6999] batman_adv: batadv0: Adding interface: batadv_slave_0
[  334.824448][ T6999] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  334.852017][ T6999] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  334.928668][ T6960] 8021q: adding VLAN 0 to HW filter on device bond0
[  334.949471][ T6999] batman_adv: batadv0: Adding interface: batadv_slave_1
[  334.958519][ T6999] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  334.985426][ T6999] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  335.092197][ T6960] 8021q: adding VLAN 0 to HW filter on device team0
[  335.259117][ T7054] loop2: detected capacity change from 0 to 128
[  335.323415][ T7048] loop4: detected capacity change from 0 to 8192
[  335.337939][ T7054] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  335.388369][ T6999] hsr_slave_0: entered promiscuous mode
[  335.399116][ T6999] hsr_slave_1: entered promiscuous mode
[  335.408405][ T6999] debugfs: 'hsr0' already exists in 'hsr'
[  335.414782][ T6999] Cannot create hsr debugfs directory
[  335.437304][ T1096] bridge0: port 1(bridge_slave_0) entered blocking state
[  335.445047][ T1096] bridge0: port 1(bridge_slave_0) entered forwarding state
[  335.485158][ T1096] bridge0: port 2(bridge_slave_1) entered blocking state
[  335.492826][ T1096] bridge0: port 2(bridge_slave_1) entered forwarding state
[  335.581739][ T7054] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  335.628516][ T7054] netlink: 8 bytes leftover after parsing attributes in process `syz.2.429'.
[  335.737687][ T7054] bond1: entered promiscuous mode
[  335.743245][ T7054] bond1: entered allmulticast mode
[  335.750778][ T7054] 8021q: adding VLAN 0 to HW filter on device bond1
[  335.870749][ T5816] Bluetooth: hci3: command tx timeout
[  336.843300][ T3698] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  336.867529][ T1096] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  337.139884][ T1096] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  337.399345][ T1096] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  337.506912][ T1096] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  337.586200][ T6999] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  337.671101][ T6999] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  337.778993][ T6999] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  337.907577][ T6999] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  337.938410][ T1096] bridge_slave_1: left allmulticast mode
[  337.944958][ T1096] bridge_slave_1: left promiscuous mode
[  337.951993][ T1096] bridge0: port 2(bridge_slave_1) entered disabled state
[  337.962846][ T5819] Bluetooth: hci3: command tx timeout
[  337.977711][ T1096] bridge_slave_0: left allmulticast mode
[  337.983963][ T1096] bridge_slave_0: left promiscuous mode
[  337.990863][ T1096] bridge0: port 1(bridge_slave_0) entered disabled state
[  338.490682][ T1096] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  338.528387][ T1096] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  338.564713][ T1096] bond0 (unregistering): Released all slaves
[  338.589025][ T1096] bond1 (unregistering): Released all slaves
[  338.783867][ T6960] 8021q: adding VLAN 0 to HW filter on device batadv0
[  339.191075][ T1096] hsr_slave_0: left promiscuous mode
[  339.215145][ T1096] hsr_slave_1: left promiscuous mode
[  339.225744][ T1096] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  339.233842][ T1096] batman_adv: batadv0: Removing interface: batadv_slave_0
[  339.266597][ T1096] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  339.274829][ T1096] batman_adv: batadv0: Removing interface: batadv_slave_1
[  339.330777][ T1096] veth1_macvtap: left promiscuous mode
[  339.336573][ T1096] veth0_macvtap: left promiscuous mode
[  339.342833][ T1096] veth1_vlan: left promiscuous mode
[  339.348395][ T1096] veth0_vlan: left promiscuous mode
[  339.389883][ T5819] Bluetooth: hci0: command 0x0406 tx timeout
[  339.392727][ T5813] Bluetooth: hci1: command 0x0406 tx timeout
[  340.065233][ T5816] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  340.098456][ T7085] loop4: detected capacity change from 0 to 128
[  340.183090][ T7085] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  340.205207][ T7085] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  340.214764][ T5816] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  340.231327][ T5816] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  340.293717][ T5816] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  340.306445][ T5816] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  340.322171][ T1096] team0 (unregistering): Port device team_slave_1 removed
[  340.369210][ T1096] team0 (unregistering): Port device team_slave_0 removed
[  340.415870][ T7085] netlink: 8 bytes leftover after parsing attributes in process `syz.4.440'.
[  340.969924][ T7085] bond1: entered promiscuous mode
[  340.975214][ T7085] bond1: entered allmulticast mode
[  340.982760][ T7085] 8021q: adding VLAN 0 to HW filter on device bond1
[  342.048672][ T3730] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  342.086950][ T6999] 8021q: adding VLAN 0 to HW filter on device bond0
[  342.435742][ T5816] Bluetooth: hci2: command tx timeout
[  342.561347][ T6999] 8021q: adding VLAN 0 to HW filter on device team0
[  342.782694][ T3730] bridge0: port 1(bridge_slave_0) entered blocking state
[  342.790352][ T3730] bridge0: port 1(bridge_slave_0) entered forwarding state
[  343.072159][ T3730] bridge0: port 2(bridge_slave_1) entered blocking state
[  343.079883][ T3730] bridge0: port 2(bridge_slave_1) entered forwarding state
[  343.257216][ T3730] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  343.356153][ T6960] veth0_vlan: entered promiscuous mode
[  343.389054][ T3730] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  343.616151][ T3730] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  343.696414][ T6960] veth1_vlan: entered promiscuous mode
[  343.762112][ T3730] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  344.091500][ T7083] chnl_net:caif_netlink_parms(): no params data found
[  344.143293][ T3730] bridge_slave_1: left allmulticast mode
[  344.149168][ T3730] bridge_slave_1: left promiscuous mode
[  344.156647][ T3730] bridge0: port 2(bridge_slave_1) entered disabled state
[  344.199000][ T3730] bridge_slave_0: left allmulticast mode
[  344.205405][ T3730] bridge_slave_0: left promiscuous mode
[  344.212326][ T3730] bridge0: port 1(bridge_slave_0) entered disabled state
[  344.604591][ T5816] Bluetooth: hci2: command tx timeout
[  344.715523][ T3730] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  344.748569][ T3730] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  344.772354][ T3730] bond0 (unregistering): Released all slaves
[  344.800997][ T3730] bond1 (unregistering): Released all slaves
[  344.853431][ T6960] veth0_macvtap: entered promiscuous mode
[  345.071957][ T6960] veth1_macvtap: entered promiscuous mode
[  345.101485][ T3730] tipc: Left network mode
[  345.697226][ T3730] hsr_slave_0: left promiscuous mode
[  345.723715][ T3730] hsr_slave_1: left promiscuous mode
[  345.733019][ T3730] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  345.740823][ T3730] batman_adv: batadv0: Removing interface: batadv_slave_0
[  345.787211][ T3730] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  345.795512][ T3730] batman_adv: batadv0: Removing interface: batadv_slave_1
[  345.840795][ T5104] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  345.844700][ T3730] veth1_macvtap: left promiscuous mode
[  345.853953][ T3730] veth0_macvtap: left promiscuous mode
[  345.854202][ T5104] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  345.860311][ T3730] veth1_vlan: left promiscuous mode
[  345.870219][ T5104] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  345.875593][ T3730] veth0_vlan: left promiscuous mode
[  345.886670][ T5104] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  345.899440][ T5104] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  346.535391][ T3730] team0 (unregistering): Port device team_slave_1 removed
[  346.601381][ T3730] team0 (unregistering): Port device team_slave_0 removed
[  346.670207][ T5816] Bluetooth: hci2: command tx timeout
[  346.886323][ T7118] netlink: 28 bytes leftover after parsing attributes in process `syz.1.449'.
[  346.947703][ T6960] batman_adv: batadv0: Interface activated: batadv_slave_0
[  347.119823][ T7121] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0
[  347.170792][ T6960] batman_adv: batadv0: Interface activated: batadv_slave_1
[  347.189246][ T6999] 8021q: adding VLAN 0 to HW filter on device batadv0
[  347.266077][ T3779] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  347.381919][ T3779] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  347.425078][ T3779] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  347.472166][ T3779] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  347.878889][ T7083] bridge0: port 1(bridge_slave_0) entered blocking state
[  347.888214][ T7083] bridge0: port 1(bridge_slave_0) entered disabled state
[  347.896154][ T7083] bridge_slave_0: entered allmulticast mode
[  347.906064][ T7083] bridge_slave_0: entered promiscuous mode
[  347.951105][ T5816] Bluetooth: hci1: command tx timeout
[  347.965767][ T7083] bridge0: port 2(bridge_slave_1) entered blocking state
[  347.973670][ T7083] bridge0: port 2(bridge_slave_1) entered disabled state
[  347.981585][ T7083] bridge_slave_1: entered allmulticast mode
[  347.992151][ T7083] bridge_slave_1: entered promiscuous mode
[  348.154994][ T7083] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  348.243705][ T7083] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  348.713380][ T7083] team0: Port device team_slave_0 added
[  348.794047][ T7083] team0: Port device team_slave_1 added
[  348.804303][ T5816] Bluetooth: hci2: command tx timeout
[  349.320825][ T7083] batman_adv: batadv0: Adding interface: batadv_slave_0
[  349.328299][ T7083] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  349.355004][ T7083] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  349.581205][ T7083] batman_adv: batadv0: Adding interface: batadv_slave_1
[  349.588368][ T7083] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  349.616951][ T7083] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  349.694977][ T7114] chnl_net:caif_netlink_parms(): no params data found
[  350.032327][ T5816] Bluetooth: hci1: command tx timeout
[  350.083071][ T7083] hsr_slave_0: entered promiscuous mode
[  350.093491][ T7083] hsr_slave_1: entered promiscuous mode
[  350.102435][ T7083] debugfs: 'hsr0' already exists in 'hsr'
[  350.108343][ T7083] Cannot create hsr debugfs directory
[  350.646541][ T6999] veth0_vlan: entered promiscuous mode
[  350.751720][ T6999] veth1_vlan: entered promiscuous mode
[  351.292279][ T7114] bridge0: port 1(bridge_slave_0) entered blocking state
[  351.301516][ T7114] bridge0: port 1(bridge_slave_0) entered disabled state
[  351.309278][ T7114] bridge_slave_0: entered allmulticast mode
[  351.321589][ T7114] bridge_slave_0: entered promiscuous mode
[  351.374389][ T6999] veth0_macvtap: entered promiscuous mode
[  351.438289][ T6999] veth1_macvtap: entered promiscuous mode
[  351.528979][ T7114] bridge0: port 2(bridge_slave_1) entered blocking state
[  351.536730][ T7114] bridge0: port 2(bridge_slave_1) entered disabled state
[  351.546154][ T7114] bridge_slave_1: entered allmulticast mode
[  351.557445][ T7114] bridge_slave_1: entered promiscuous mode
[  351.823906][ T7083] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  351.890854][ T7114] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  351.911737][ T6999] batman_adv: batadv0: Interface activated: batadv_slave_0
[  351.919258][ T7083] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  351.985789][ T7114] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  352.020746][ T7083] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  352.121290][ T5816] Bluetooth: hci1: command tx timeout
[  352.230695][ T6999] batman_adv: batadv0: Interface activated: batadv_slave_1
[  352.243747][ T7083] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  352.341765][ T7114] team0: Port device team_slave_0 added
[  352.369195][ T3867] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  352.394523][ T3867] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  352.466342][ T7114] team0: Port device team_slave_1 added
[  352.491545][ T3867] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  352.529123][ T1096] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  352.831123][ T7114] batman_adv: batadv0: Adding interface: batadv_slave_0
[  352.838414][ T7114] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  352.866315][ T7114] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  353.028676][ T7114] batman_adv: batadv0: Adding interface: batadv_slave_1
[  353.036110][ T7114] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  353.041689][ T7160] netlink: 16 bytes leftover after parsing attributes in process `syz.1.453'.
[  353.062653][ T7114] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  353.618441][ T7114] hsr_slave_0: entered promiscuous mode
[  353.629103][ T7114] hsr_slave_1: entered promiscuous mode
[  353.638681][ T7114] debugfs: 'hsr0' already exists in 'hsr'
[  353.644821][ T7114] Cannot create hsr debugfs directory
[  354.051381][ T3730] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  354.059794][ T3730] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  354.166154][ T7083] 8021q: adding VLAN 0 to HW filter on device bond0
[  354.198193][ T5816] Bluetooth: hci1: command tx timeout
[  354.286468][ T7083] 8021q: adding VLAN 0 to HW filter on device team0
[  354.303221][ T3720] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  354.312157][ T3720] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  354.355988][ T3730] bridge0: port 1(bridge_slave_0) entered blocking state
[  354.363695][ T3730] bridge0: port 1(bridge_slave_0) entered forwarding state
[  354.511398][ T3730] bridge0: port 2(bridge_slave_1) entered blocking state
[  354.519092][ T3730] bridge0: port 2(bridge_slave_1) entered forwarding state
[  354.758882][ T7174] serio: Serial port ptm0
[  355.406263][ T7114] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  355.503936][ T7114] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  355.592301][ T7114] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  355.697412][ T7114] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  356.862812][ T7083] 8021q: adding VLAN 0 to HW filter on device batadv0
[  356.920874][ T7114] 8021q: adding VLAN 0 to HW filter on device bond0
[  357.135627][ T7114] 8021q: adding VLAN 0 to HW filter on device team0
[  357.234460][ T3730] bridge0: port 1(bridge_slave_0) entered blocking state
[  357.242107][ T3730] bridge0: port 1(bridge_slave_0) entered forwarding state
[  357.351383][ T3730] bridge0: port 2(bridge_slave_1) entered blocking state
[  357.358941][ T3730] bridge0: port 2(bridge_slave_1) entered forwarding state
[  357.846549][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  357.853577][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  358.371238][ T7208] netlink: 16 bytes leftover after parsing attributes in process `syz.1.460'.
[  359.504822][ T7083] veth0_vlan: entered promiscuous mode
[  359.530026][ T1330] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  359.539838][ T1330] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  359.661165][ T7083] veth1_vlan: entered promiscuous mode
[  359.688200][ T7114] 8021q: adding VLAN 0 to HW filter on device batadv0
[  359.926959][ T3698] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  359.935264][ T3698] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  360.021960][ T7083] veth0_macvtap: entered promiscuous mode
[  360.122028][ T7083] veth1_macvtap: entered promiscuous mode
[  360.312656][ T7083] batman_adv: batadv0: Interface activated: batadv_slave_0
[  360.403821][ T7083] batman_adv: batadv0: Interface activated: batadv_slave_1
[  360.497180][ T1096] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  360.529302][ T1096] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  360.545715][ T1096] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  360.613094][ T1096] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  360.846945][ T7230] loop1: detected capacity change from 0 to 512
[  360.951099][ T7230] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  361.110362][ T7230] EXT4-fs (loop1): 1 truncate cleaned up
[  361.118761][ T7230] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  361.284764][   T30] audit: type=1800 audit(1758411611.321:81): pid=7230 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.464" name="file1" dev="loop1" ino=15 res=0 errno=0
[  361.561201][   T30] audit: type=1800 audit(1758411611.611:82): pid=7238 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.464" name="file1" dev="loop1" ino=15 res=0 errno=0
[  362.021647][ T5811] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.363984][ T7114] veth0_vlan: entered promiscuous mode
[  362.481513][ T7114] veth1_vlan: entered promiscuous mode
[  362.827423][ T7114] veth0_macvtap: entered promiscuous mode
[  362.920839][ T7114] veth1_macvtap: entered promiscuous mode
[  363.057189][   T30] audit: type=1326 audit(1758411613.111:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7256 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000
[  363.080053][   T30] audit: type=1326 audit(1758411613.111:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7256 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000
[  363.102607][   T30] audit: type=1326 audit(1758411613.141:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7256 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=40000003 syscall=177 compat=1 ip=0xf70ae539 code=0x7ffc0000
[  363.127371][   T30] audit: type=1326 audit(1758411613.141:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7256 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000
[  363.178243][ T7114] batman_adv: batadv0: Interface activated: batadv_slave_0
[  363.212818][ T7114] batman_adv: batadv0: Interface activated: batadv_slave_1
[  363.305759][ T1330] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  363.389249][ T1330] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  363.392765][   T30] audit: type=1326 audit(1758411613.221:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7256 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000
[  363.411148][ T1330] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  363.538736][ T1330] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  363.768135][ T7263] lo speed is unknown, defaulting to 1000
[  363.774447][ T7263] lo speed is unknown, defaulting to 1000
[  363.781705][ T7263] lo speed is unknown, defaulting to 1000
[  363.844244][ T7263] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  363.995163][ T7263] lo speed is unknown, defaulting to 1000
[  364.004367][ T7263] lo speed is unknown, defaulting to 1000
[  364.015232][ T7263] lo speed is unknown, defaulting to 1000
[  364.025720][ T7263] lo speed is unknown, defaulting to 1000
[  364.035221][ T7263] lo speed is unknown, defaulting to 1000
[  364.575622][ T7278] loop5: detected capacity change from 0 to 512
[  364.744365][ T7281] pim6reg1: entered promiscuous mode
[  364.750721][ T7281] pim6reg1: entered allmulticast mode
[  364.775820][ T7278] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #15: comm syz.5.477: casefold flag without casefold feature
[  364.875030][ T7278] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.477: couldn't read orphan inode 15 (err -117)
[  364.907198][ T7278] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  365.854938][ T6960] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  367.128325][ T3720] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  367.136974][ T3720] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  367.221606][ T1142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  367.230512][ T1142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  367.578967][ T7321] loop1: detected capacity change from 0 to 2048
[  367.633427][ T7321] EXT4-fs: Ignoring removed i_version option
[  368.103140][ T7321] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  368.116827][ T7321] ext4 filesystem being mounted at /132/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  369.505943][ T5811] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.298106][ T3730] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  372.307281][ T3730] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  372.582329][ T3720] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  372.590701][ T3720] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  374.760263][   T30] audit: type=1326 audit(1758411624.791:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7371 comm="syz.6.501" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f31539 code=0x7ffc0000
[  374.926561][ T7323] Set syz1 is full, maxelem 65536 reached
[  375.000571][   T30] audit: type=1326 audit(1758411624.911:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7371 comm="syz.6.501" exe="/root/syz-executor" sig=0 arch=40000003 syscall=27 compat=1 ip=0xf7f31539 code=0x7ffc0000
[  375.023720][   T30] audit: type=1326 audit(1758411624.911:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7371 comm="syz.6.501" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f31539 code=0x7ffc0000
[  375.046162][   T30] audit: type=1326 audit(1758411624.911:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7371 comm="syz.6.501" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f31539 code=0x7ffc0000
[  375.269417][ T7374] loop1: detected capacity change from 0 to 2048
[  375.362427][ T7374] EXT4-fs: Ignoring removed i_version option
[  375.467373][ T7374] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  375.481158][ T7374] ext4 filesystem being mounted at /136/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  375.990901][ T5811] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  377.207487][ T7396] loop6: detected capacity change from 0 to 164
[  379.476073][ T7413] loop6: detected capacity change from 0 to 2048
[  379.571386][ T7413] EXT4-fs: Ignoring removed i_version option
[  379.672344][ T7413] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  379.685316][ T7413] ext4 filesystem being mounted at /18/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  381.272440][   T30] audit: type=1326 audit(1758411631.231:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7425 comm="syz.1.523" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de539 code=0x7ffc0000
[  381.295146][   T30] audit: type=1326 audit(1758411631.231:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7425 comm="syz.1.523" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de539 code=0x7ffc0000
[  381.317801][   T30] audit: type=1326 audit(1758411631.251:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7425 comm="syz.1.523" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70de539 code=0x7ffc0000
[  381.340429][   T30] audit: type=1326 audit(1758411631.251:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7425 comm="syz.1.523" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de539 code=0x7ffc0000
[  381.367410][   T30] audit: type=1326 audit(1758411631.261:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7425 comm="syz.1.523" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70de539 code=0x7ffc0000
[  381.832865][ T7429] loop8: detected capacity change from 0 to 164
[  381.913625][   T30] audit: type=1326 audit(1758411631.451:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7425 comm="syz.1.523" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de539 code=0x7ffc0000
[  381.951605][ T6999] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  383.251474][ T7436] siw: device registration error -23
[  383.335029][ T7436] loop8: detected capacity change from 0 to 164
[  384.199777][ T7403] Set syz1 is full, maxelem 65536 reached
[  384.721465][ T7454] netlink: 4 bytes leftover after parsing attributes in process `syz.1.532'.
[  384.810945][ T7454] netlink: 72 bytes leftover after parsing attributes in process `syz.1.532'.
[  385.099916][ T7457] loop7: detected capacity change from 0 to 2048
[  385.131826][ T7457] EXT4-fs: Ignoring removed i_version option
[  385.232937][ T7457] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  385.251515][ T7457] ext4 filesystem being mounted at /10/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  385.592551][ T7083] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  386.274468][ T7484] netlink: 4 bytes leftover after parsing attributes in process `syz.5.544'.
[  386.332936][ T7480] siw: device registration error -23
[  386.392085][ T7480] loop7: detected capacity change from 0 to 164
[  386.789343][ T7492] loop8: detected capacity change from 0 to 256
[  386.861790][ T7492] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  386.946189][   T39] Process accounting resumed
[  386.951834][   T39] FAT-fs (loop8): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  386.960962][   T39] FAT-fs (loop8): Filesystem has been set read-only
[  387.107754][ T7496] loop1: detected capacity change from 0 to 2048
[  387.130130][ T7500] loop7: detected capacity change from 0 to 512
[  387.141881][ T7496] EXT4-fs: Ignoring removed i_version option
[  387.158648][ T7500] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  387.266094][ T7500] EXT4-fs (loop7): 1 truncate cleaned up
[  387.274997][ T7500] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  387.350925][ T7496] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  387.363708][ T7496] ext4 filesystem being mounted at /147/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  387.442436][ T7500] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  387.725527][ T5811] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  387.874642][ T7513] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  388.458510][   T30] audit: type=1326 audit(1758411638.511:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7525 comm="syz.6.561" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f31539 code=0x7ffc0000
[  388.530804][   T30] audit: type=1326 audit(1758411638.541:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7525 comm="syz.6.561" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f31539 code=0x7ffc0000
[  388.553824][   T30] audit: type=1326 audit(1758411638.541:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7525 comm="syz.6.561" exe="/root/syz-executor" sig=0 arch=40000003 syscall=289 compat=1 ip=0xf7f31539 code=0x7ffc0000
[  388.576309][   T30] audit: type=1326 audit(1758411638.571:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7525 comm="syz.6.561" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f31539 code=0x7ffc0000
[  388.599601][   T30] audit: type=1326 audit(1758411638.571:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7525 comm="syz.6.561" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f31539 code=0x7ffc0000
[  389.528327][ T7541] loop7: detected capacity change from 0 to 2048
[  389.568762][ T7541] EXT4-fs: Ignoring removed i_version option
[  389.706492][ T7541] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  389.719831][ T7541] ext4 filesystem being mounted at /14/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  389.940850][ T7083] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  390.373092][ T7564] loop5: detected capacity change from 0 to 128
[  390.586187][ T7564] syz.5.576: attempt to access beyond end of device
[  390.586187][ T7564] loop5: rw=2049, sector=138, nr_sectors = 8 limit=128
[  391.360262][   T30] audit: type=1326 audit(1758411641.411:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7576 comm="syz.5.581" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000
[  391.386427][   T30] audit: type=1326 audit(1758411641.411:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7576 comm="syz.5.581" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000
[  391.410178][   T30] audit: type=1326 audit(1758411641.461:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7576 comm="syz.5.581" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70ae539 code=0x7ffc0000
[  391.432685][   T30] audit: type=1326 audit(1758411641.461:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7576 comm="syz.5.581" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000
[  391.455081][   T30] audit: type=1326 audit(1758411641.461:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7576 comm="syz.5.581" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000
[  391.641945][ T7581] loop7: detected capacity change from 0 to 512
[  391.782888][ T7581] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  391.801226][ T7581] ext4 filesystem being mounted at /17/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  391.971229][ T7581] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  392.054887][ T7581] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 2 with error 28
[  392.067854][ T7581] EXT4-fs (loop7): This should not happen!! Data will be lost
[  392.067854][ T7581] 
[  392.078310][ T7581] EXT4-fs (loop7): Total free blocks count 0
[  392.084663][ T7581] EXT4-fs (loop7): Free/Dirty block details
[  392.090928][ T7581] EXT4-fs (loop7): free_blocks=65280
[  392.102657][ T7581] EXT4-fs (loop7): dirty_blocks=2
[  392.107914][ T7581] EXT4-fs (loop7): Block reservation details
[  392.116421][ T7581] EXT4-fs (loop7): i_reserved_data_blocks=2
[  392.274065][ T7083] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.281987][ T7594] loop6: detected capacity change from 0 to 2048
[  392.323347][ T7594] EXT4-fs: Ignoring removed i_version option
[  392.436973][ T7594] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  392.450293][ T7594] ext4 filesystem being mounted at /32/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  392.740261][ T7606] loop5: detected capacity change from 0 to 128
[  392.897777][ T7606] syz.5.591: attempt to access beyond end of device
[  392.897777][ T7606] loop5: rw=2049, sector=138, nr_sectors = 8 limit=128
[  392.905879][ T6999] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  393.603937][ T7619] loop1: detected capacity change from 0 to 1024
[  393.643157][ T7619] EXT4-fs: Ignoring removed nomblk_io_submit option
[  393.763387][ T7619] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  393.887000][ T7626] siw: device registration error -23
[  394.908568][ T7639] loop7: detected capacity change from 0 to 2048
[  394.952833][ T7639] EXT4-fs: Ignoring removed i_version option
[  395.064516][ T7639] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  395.083253][ T7639] ext4 filesystem being mounted at /21/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  395.211504][ T7646] loop6: detected capacity change from 0 to 128
[  395.251837][ T7646] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  395.265781][ T7646] ext4 filesystem being mounted at /37/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  395.524260][ T7083] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  395.648175][ T6999] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  396.485304][ T7658] loop6: detected capacity change from 0 to 256
[  396.497668][   T30] kauditd_printk_skb: 3 callbacks suppressed
[  396.497744][   T30] audit: type=1326 audit(1758411646.551:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7657 comm="syz.7.611" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb5539 code=0x7ffc0000
[  396.598383][   T30] audit: type=1326 audit(1758411646.591:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7657 comm="syz.7.611" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fb5539 code=0x7ffc0000
[  396.624358][   T30] audit: type=1326 audit(1758411646.591:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7657 comm="syz.7.611" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb5539 code=0x7ffc0000
[  396.648038][   T30] audit: type=1326 audit(1758411646.601:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7657 comm="syz.7.611" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb5539 code=0x7ffc0000
[  396.670528][   T30] audit: type=1326 audit(1758411646.611:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7657 comm="syz.7.611" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fb5539 code=0x7ffc0000
[  396.693016][   T30] audit: type=1326 audit(1758411646.641:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7657 comm="syz.7.611" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb5539 code=0x7ffc0000
[  396.718467][   T30] audit: type=1326 audit(1758411646.651:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7657 comm="syz.7.611" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fb5539 code=0x7ffc0000
[  396.741863][   T30] audit: type=1326 audit(1758411646.651:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7657 comm="syz.7.611" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb5539 code=0x7ffc0000
[  396.764363][   T30] audit: type=1326 audit(1758411646.681:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7657 comm="syz.7.611" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fb5539 code=0x7ffc0000
[  396.786843][   T30] audit: type=1326 audit(1758411646.681:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7657 comm="syz.7.611" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb5539 code=0x7ffc0000
[  396.999447][ T7661] netdevsim netdevsim5: Direct firmware load for ..€ failed with error -2
[  397.008851][ T7661] netdevsim netdevsim5: Falling back to sysfs fallback for: ..€
[  397.706133][ T5811] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  398.287002][ T7675] loop6: detected capacity change from 0 to 128
[  398.414592][ T7675] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  398.476171][ T7674] loop7: detected capacity change from 0 to 2048
[  398.486125][ T7674] EXT4-fs: Ignoring removed i_version option
[  398.507779][ T7675] ext4 filesystem being mounted at /41/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  398.565306][ T7674] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  398.578114][ T7674] ext4 filesystem being mounted at /25/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  398.619035][ T7681] loop5: detected capacity change from 0 to 512
[  398.695748][ T7681] EXT4-fs: Ignoring removed bh option
[  398.706071][ T7681] EXT4-fs: Ignoring removed mblk_io_submit option
[  398.792100][ T7681] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  398.813422][ T7681] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  398.859818][ T7681] EXT4-fs (loop5): orphan cleanup on readonly fs
[  398.935702][ T7681] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.621: Failed to acquire dquot type 1
[  399.011997][ T7681] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.621: Invalid block bitmap block 0 in block_group 0
[  399.055555][ T7681] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.621: Invalid block bitmap block 0 in block_group 0
[  399.110964][ T7083] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  399.136602][ T6999] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  399.167256][ T7681] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.621: Invalid block bitmap block 0 in block_group 0
[  399.206483][ T7681] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.621: Failed to acquire dquot type 1
[  399.224085][ T7681] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.621: Failed to acquire dquot type 1
[  399.256140][ T7681] EXT4-fs (loop5): 1 orphan inode deleted
[  399.332497][ T7681] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  399.430131][ T7681] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  399.731843][ T7681] syz.5.621 (7681) used greatest stack depth: 2480 bytes left
[  399.745306][ T6960] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  400.844858][ T7715] loop5: detected capacity change from 0 to 2048
[  400.858794][ T7718] loop6: detected capacity change from 0 to 128
[  400.881186][ T7715] EXT4-fs: Ignoring removed i_version option
[  400.940647][ T7718] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  400.968234][ T7718] ext4 filesystem being mounted at /44/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  401.160827][ T7715] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  401.173572][ T7715] ext4 filesystem being mounted at /40/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  401.357506][ T6999] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  401.501988][   T30] kauditd_printk_skb: 51 callbacks suppressed
[  401.502068][   T30] audit: type=1326 audit(1758411651.561:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.8.639" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf701e539 code=0x7ffc0000
[  401.601218][ T6960] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  401.624916][   T30] audit: type=1326 audit(1758411651.591:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.8.639" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e539 code=0x7ffc0000
[  401.647316][   T30] audit: type=1326 audit(1758411651.591:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.8.639" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e539 code=0x7ffc0000
[  401.670328][   T30] audit: type=1326 audit(1758411651.591:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.8.639" exe="/root/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf701e539 code=0x7ffc0000
[  401.683988][ T7729] loop1: detected capacity change from 0 to 512
[  401.695831][   T30] audit: type=1326 audit(1758411651.591:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.8.639" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e539 code=0x7ffc0000
[  401.725495][   T30] audit: type=1326 audit(1758411651.621:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.8.639" exe="/root/syz-executor" sig=0 arch=40000003 syscall=279 compat=1 ip=0xf701e539 code=0x7ffc0000
[  401.749056][   T30] audit: type=1326 audit(1758411651.621:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.8.639" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e539 code=0x7ffc0000
[  401.857788][ T7729] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  401.972662][ T7729] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1128: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  401.989011][ T7729] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.638: bg 0: block 248: padding at end of block bitmap is not set
[  402.008469][ T7729] Quota error (device loop1): write_blk: dquota write failed
[  402.017156][ T7729] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  402.027686][ T7729] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.638: Failed to acquire dquot type 1
[  402.099154][ T7729] EXT4-fs (loop1): 1 truncate cleaned up
[  402.111968][ T7729] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback.
[  402.498735][ T5811] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0008-000000000000.
[  403.190017][ T7758] loop7: detected capacity change from 0 to 128
[  403.234459][ T7758] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  403.281185][ T7758] ext4 filesystem being mounted at /31/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  403.642590][ T7761] loop8: detected capacity change from 0 to 2048
[  403.656055][ T7761] EXT4-fs: Ignoring removed i_version option
[  403.690124][ T7083] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  403.863371][ T7761] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  403.884813][ T7761] ext4 filesystem being mounted at /31/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  404.534424][ T7114] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  406.161715][ T7806] loop1: detected capacity change from 0 to 128
[  406.258534][ T7806] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  406.273100][ T7806] ext4 filesystem being mounted at /167/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  406.411018][ T7811] smc: net device bond0 applied user defined pnetid SYZ0
[  406.665287][ T5811] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  406.758566][ T7816] loop6: detected capacity change from 0 to 2048
[  406.797150][ T7816] EXT4-fs: Ignoring removed i_version option
[  406.856969][ T7816] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  406.870519][ T7816] ext4 filesystem being mounted at /50/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  407.422483][ T6999] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  407.901593][ T7836] loop7: detected capacity change from 0 to 512
[  407.925722][ T7836] EXT4-fs: Ignoring removed i_version option
[  407.932966][ T7836] EXT4-fs: quotafile must be on filesystem root
[  408.395869][ T7845] loop6: detected capacity change from 0 to 128
[  408.458971][ T7845] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  408.540794][ T7845] ext4 filesystem being mounted at /52/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  409.011061][ T6999] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  409.267961][ T7860] loop8: detected capacity change from 0 to 512
[  409.448015][ T7860] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  409.462280][ T7860] ext4 filesystem being mounted at /37/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  409.632408][ T7860] EXT4-fs error (device loop8): ext4_lookup:1787: inode #12: comm syz.8.689: iget: bad i_size value: 2533274857506816
[  409.938649][ T7114] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  410.184299][ T7874] loop7: detected capacity change from 0 to 512
[  410.328554][ T7874] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  410.344436][ T7874] ext4 filesystem being mounted at /41/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  410.375240][ T7884] loop6: detected capacity change from 0 to 128
[  410.454129][ T7884] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  410.508920][ T7874] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  410.581559][ T7884] ext4 filesystem being mounted at /55/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  410.597919][ T7874] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 2 with error 28
[  410.610889][ T7874] EXT4-fs (loop7): This should not happen!! Data will be lost
[  410.610889][ T7874] 
[  410.621933][ T7874] EXT4-fs (loop7): Total free blocks count 0
[  410.628133][ T7874] EXT4-fs (loop7): Free/Dirty block details
[  410.641238][ T7874] EXT4-fs (loop7): free_blocks=65280
[  410.646793][ T7874] EXT4-fs (loop7): dirty_blocks=2
[  410.655092][ T7874] EXT4-fs (loop7): Block reservation details
[  410.661529][ T7874] EXT4-fs (loop7): i_reserved_data_blocks=2
[  410.971888][ T7083] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  411.002061][ T6999] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  412.010610][ T7906] loop8: detected capacity change from 0 to 512
[  412.114526][ T7907] loop6: detected capacity change from 0 to 2048
[  412.184484][ T7906] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  412.202445][ T7906] ext4 filesystem being mounted at /41/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  412.322059][ T7907] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  412.866887][ T7925] loop5: detected capacity change from 0 to 512
[  412.878829][ T6999] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  413.023975][ T7925] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  413.037602][ T7925] ext4 filesystem being mounted at /57/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  413.152043][ T6960] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  414.198290][ T7932] loop7: detected capacity change from 0 to 8192
[  417.618408][ T7978] loop7: detected capacity change from 0 to 8192
[  418.081427][ T7990] loop1: detected capacity change from 0 to 512
[  418.193238][ T7990] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  418.216127][ T7990] ext4 filesystem being mounted at /183/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  419.040677][ T5811] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  419.266273][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  419.273976][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  420.509111][ T8017] 9pnet_fd: Insufficient options for proto=fd
[  421.064410][ T7114] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  422.265281][ T8048] 9pnet_fd: Insufficient options for proto=fd
[  422.565893][ T8052] netlink: 'syz.1.764': attribute type 4 has an invalid length.
[  422.574053][ T8052] netlink: 152 bytes leftover after parsing attributes in process `syz.1.764'.
[  422.615077][ T8052] .`: renamed from bond0 (while UP)
[  424.428267][ T8078] 9pnet_fd: Insufficient options for proto=fd
[  427.269859][   T30] audit: type=1326 audit(1758411677.311:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8117 comm="syz.1.791" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de539 code=0x7ffc0000
[  427.292389][   T30] audit: type=1326 audit(1758411677.341:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8117 comm="syz.1.791" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de539 code=0x7ffc0000
[  427.315150][   T30] audit: type=1326 audit(1758411677.351:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8117 comm="syz.1.791" exe="/root/syz-executor" sig=0 arch=40000003 syscall=75 compat=1 ip=0xf70de539 code=0x7ffc0000
[  427.341624][   T30] audit: type=1326 audit(1758411677.351:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8117 comm="syz.1.791" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de539 code=0x7ffc0000
[  428.640410][   T39] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  428.648264][   T39] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  428.662190][   T39] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  428.670110][   T39] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  428.677790][   T39] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  428.685623][   T39] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  428.693449][   T39] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  428.701368][   T39] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  428.709040][   T39] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  428.716972][   T39] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  429.043130][   T39] hid-generic 0003:0004:0000.0001: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  430.835121][ T8174] loop7: detected capacity change from 0 to 512
[  430.993356][ T8174] EXT4-fs error (device loop7): ext4_orphan_get:1418: comm syz.7.815: bad orphan inode 11862016
[  431.070741][ T8174] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  431.084140][ T8174] ext4 filesystem being mounted at /69/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  431.856335][ T7083] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  433.121249][ T8206] loop7: detected capacity change from 0 to 512
[  433.187847][ T8206] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  433.201030][ T8206] ext4 filesystem being mounted at /71/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  433.351052][ T7083] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  433.427181][ T8212] 9pnet_fd: Insufficient options for proto=fd
[  435.535685][ T8238] loop7: detected capacity change from 0 to 512
[  435.771141][ T8238] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  435.784418][ T8238] ext4 filesystem being mounted at /75/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  435.808007][ T8244] 9pnet_fd: Insufficient options for proto=fd
[  436.356304][ T7083] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  437.844166][ T8273] 9pnet_fd: Insufficient options for proto=fd
[  438.197353][ T8276] loop8: detected capacity change from 0 to 512
[  438.316782][ T8276] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  438.330304][ T8276] ext4 filesystem being mounted at /62/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  438.560452][ T8276] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  438.600074][ T8276] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 2 with error 28
[  438.613140][ T8276] EXT4-fs (loop8): This should not happen!! Data will be lost
[  438.613140][ T8276] 
[  438.623183][ T8276] EXT4-fs (loop8): Total free blocks count 0
[  438.629369][ T8276] EXT4-fs (loop8): Free/Dirty block details
[  438.635630][ T8276] EXT4-fs (loop8): free_blocks=65280
[  438.641258][ T8276] EXT4-fs (loop8): dirty_blocks=2
[  438.647659][ T8276] EXT4-fs (loop8): Block reservation details
[  438.654014][ T8276] EXT4-fs (loop8): i_reserved_data_blocks=2
[  439.052594][ T7114] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  440.455924][ T8303] loop1: detected capacity change from 0 to 2048
[  440.507200][ T8303] EXT4-fs: Ignoring removed i_version option
[  440.628679][ T8303] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  440.647638][ T8303] ext4 filesystem being mounted at /211/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  441.117648][ T5811] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  445.915761][ T8374] loop6: detected capacity change from 0 to 512
[  445.957533][ T8374] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  446.117960][ T8374] EXT4-fs warning (device loop6): ext4_update_dynamic_rev:1128: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  446.221701][ T8374] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.899: bg 0: block 248: padding at end of block bitmap is not set
[  446.252009][ T8374] Quota error (device loop6): write_blk: dquota write failed
[  446.261198][ T8374] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  446.278523][ T8374] EXT4-fs error (device loop6): ext4_acquire_dquot:6937: comm syz.6.899: Failed to acquire dquot type 1
[  446.309042][ T8383] loop8: detected capacity change from 0 to 512
[  446.332683][ T8374] EXT4-fs (loop6): 1 truncate cleaned up
[  446.341154][ T8374] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback.
[  446.395031][ T8383] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  446.448993][ T8383] EXT4-fs (loop8): 1 truncate cleaned up
[  446.451752][ T8383] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  446.469201][ T8383] EXT4-fs (loop8): shut down requested (2)
[  446.661029][ T6999] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0008-000000000000.
[  446.845779][ T7114] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  450.698840][ T8436] loop1: detected capacity change from 0 to 8192
[  450.746585][ T8445] siw: device registration error -23
[  450.861971][ T8447] netlink: 4 bytes leftover after parsing attributes in process `syz.7.930'.
[  451.762809][ T8452] loop7: detected capacity change from 0 to 512
[  451.941972][ T8452] EXT4-fs error (device loop7): ext4_orphan_get:1418: comm syz.7.932: bad orphan inode 11862016
[  451.990167][ T8452] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  452.009369][ T8452] ext4 filesystem being mounted at /102/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  452.031033][ T5819] Bluetooth: hci4: command 0x0406 tx timeout
[  452.038176][ T5819] Bluetooth: hci3: command 0x0406 tx timeout
[  453.085970][ T7083] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  454.079745][ T8484] siw: device registration error -23
[  454.192645][ T8481] loop8: detected capacity change from 0 to 164
[  455.344488][ T8491] loop1: detected capacity change from 0 to 8192
[  455.437154][ T8491] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  455.678360][ T8491] netlink: 224 bytes leftover after parsing attributes in process `syz.1.945'.
[  455.697971][ T8491] ksmbd: Unknown IPC event: 4, ignore.
[  455.820378][ T8505] loop1: detected capacity change from 8192 to 0
[  455.828959][    C0] I/O error, dev loop1, sector 65 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  455.839610][ T8491] FAT-fs (loop1): Directory bread(block 65) failed
[  455.847975][    C0] I/O error, dev loop1, sector 66 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  455.870220][ T8491] FAT-fs (loop1): Directory bread(block 66) failed
[  455.877592][    C1] I/O error, dev loop1, sector 67 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  455.890539][ T8491] FAT-fs (loop1): Directory bread(block 67) failed
[  455.905683][    C1] I/O error, dev loop1, sector 68 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  455.942645][ T8491] FAT-fs (loop1): Directory bread(block 68) failed
[  455.960171][    C1] I/O error, dev loop1, sector 69 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  455.980233][ T8491] FAT-fs (loop1): Directory bread(block 69) failed
[  455.987620][    C0] I/O error, dev loop1, sector 70 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  456.074163][ T8491] FAT-fs (loop1): Directory bread(block 70) failed
[  456.083360][    C1] I/O error, dev loop1, sector 71 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  456.118191][ T8491] FAT-fs (loop1): Directory bread(block 71) failed
[  456.654849][ T8518] loop8: detected capacity change from 0 to 256
[  467.390950][ T5813] Bluetooth: hci2: command 0x0406 tx timeout
[  469.176861][ T8721] loop8: detected capacity change from 0 to 512
[  469.272828][ T8721] EXT4-fs error (device loop8): ext4_iget_extra_inode:5104: inode #15: comm syz.8.1045: corrupted in-inode xattr: e_value size too large
[  469.295943][ T8721] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.1045: couldn't read orphan inode 15 (err -117)
[  469.378385][ T8721] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  469.909992][ T7114] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  470.120883][ T8731] lo speed is unknown, defaulting to 1000
[  472.426476][ T8767] netdevsim netdevsim7: Direct firmware load for ..€ failed with error -2
[  472.436951][ T8767] netdevsim netdevsim7: Falling back to sysfs fallback for: ..€
[  472.511363][ T5813] Bluetooth: hci1: command 0x0406 tx timeout
[  472.533696][   T39] hid_parser_main: 8 callbacks suppressed
[  472.533802][   T39] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0
[  472.547591][   T39] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0
[  472.555792][   T39] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0
[  472.563583][   T39] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0
[  472.571396][   T39] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0
[  472.579065][   T39] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0
[  472.591613][   T39] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0
[  472.599327][   T39] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0
[  472.608645][   T39] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0
[  472.616842][   T39] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0
[  472.829812][   T39] hid-generic 0003:0004:0000.0002: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  473.021285][   T39] hid-generic 0003:0004:0000.0003: hidraw1: USB HID v0.00 Device [syz0] on syz1
[  474.962162][ T8806] netdevsim netdevsim6: Direct firmware load for ..€ failed with error -2
[  474.971191][ T8806] netdevsim netdevsim6: Falling back to sysfs fallback for: ..€
[  475.806288][ T8816] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1082'.
[  476.045887][ T8818] loop7: detected capacity change from 0 to 764
[  476.148975][ T8818] Symlink component flag not implemented
[  476.155351][ T8818] Symlink component flag not implemented
[  477.135573][   T39] hid-generic 0003:0004:0000.0004: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  477.678979][ T8846] netdevsim netdevsim5: Direct firmware load for ..€ failed with error -2
[  477.688256][ T8846] netdevsim netdevsim5: Falling back to sysfs fallback for: ..€
[  477.774153][ T8850] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1096'.
[  479.090581][ T8858] loop7: detected capacity change from 0 to 8192
[  479.367087][   T39] hid_parser_main: 44 callbacks suppressed
[  479.367189][   T39] hid-generic 0003:0004:0000.0005: unknown main item tag 0x0
[  479.381169][   T39] hid-generic 0003:0004:0000.0005: unknown main item tag 0x0
[  479.388865][   T39] hid-generic 0003:0004:0000.0005: unknown main item tag 0x0
[  479.396944][   T39] hid-generic 0003:0004:0000.0005: unknown main item tag 0x0
[  479.405949][   T39] hid-generic 0003:0004:0000.0005: unknown main item tag 0x0
[  479.413799][   T39] hid-generic 0003:0004:0000.0005: unknown main item tag 0x0
[  479.422951][   T39] hid-generic 0003:0004:0000.0005: unknown main item tag 0x0
[  479.430770][   T39] hid-generic 0003:0004:0000.0005: unknown main item tag 0x0
[  479.438457][   T39] hid-generic 0003:0004:0000.0005: unknown main item tag 0x0
[  479.450712][   T39] hid-generic 0003:0004:0000.0005: unknown main item tag 0x0
[  479.477148][ T8870] loop8: detected capacity change from 0 to 256
[  479.666575][   T39] hid-generic 0003:0004:0000.0005: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  480.351025][ T8879] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1109'.
[  480.722025][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  480.728717][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  481.064739][ T8891] netdevsim netdevsim6: Direct firmware load for ..€ failed with error -2
[  481.074211][ T8891] netdevsim netdevsim6: Falling back to sysfs fallback for: ..€
[  482.113094][ T1607] hid-generic 0003:0004:0000.0006: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  482.557432][ T8909] loop8: detected capacity change from 0 to 256
[  482.969015][ T8916] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1122'.
[  484.246244][ T8932] netdevsim netdevsim8: Direct firmware load for ..€ failed with error -2
[  484.255615][ T8932] netdevsim netdevsim8: Falling back to sysfs fallback for: ..€
[  484.510493][ T8937] loop6: detected capacity change from 0 to 512
[  484.582818][ T8937] EXT4-fs: Ignoring removed mblk_io_submit option
[  484.605553][ T8937] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  484.615179][ T8937] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  484.640285][ T8937] EXT4-fs (loop6): warning: checktime reached, running e2fsck is recommended
[  484.653763][ T8937] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a043c01c, mo2=0102]
[  484.662992][ T8937] System zones: 0-2, 18-18, 34-34
[  484.747319][ T8937] EXT4-fs error (device loop6): ext4_orphan_get:1392: inode #15: comm syz.6.1130: iget: bad i_size value: 360287970189639680
[  484.786777][ T8937] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.1130: couldn't read orphan inode 15 (err -117)
[  484.811541][ T8937] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  485.006149][ T8946] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1134'.
[  485.093114][ T6999] EXT4-fs error (device loop6): ext4_readdir:264: inode #2: block 3: comm syz-executor: path /126/file1: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[  485.442872][ T6999] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  485.914622][ T3730] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  486.073657][ T3730] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  486.245297][ T3730] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  486.417082][ T3730] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  486.853328][ T3730] bridge_slave_1: left allmulticast mode
[  486.859228][ T3730] bridge_slave_1: left promiscuous mode
[  486.865994][ T3730] bridge0: port 2(bridge_slave_1) entered disabled state
[  486.895188][ T3730] bridge_slave_0: left allmulticast mode
[  486.901771][ T3730] bridge_slave_0: left promiscuous mode
[  486.908413][ T3730] bridge0: port 1(bridge_slave_0) entered disabled state
[  487.417713][ T3730] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  487.458034][ T3730] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  487.474806][ T3730] bond0 (unregistering): Released all slaves
[  487.952644][ T3730] hsr_slave_0: left promiscuous mode
[  487.968281][ T3730] hsr_slave_1: left promiscuous mode
[  487.976777][ T3730] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  487.984581][ T3730] batman_adv: batadv0: Removing interface: batadv_slave_0
[  488.020912][ T3730] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  488.028558][ T3730] batman_adv: batadv0: Removing interface: batadv_slave_1
[  488.156424][ T3730] veth1_macvtap: left promiscuous mode
[  488.162390][ T3730] veth0_macvtap: left promiscuous mode
[  488.168330][ T3730] veth1_vlan: left promiscuous mode
[  488.174218][ T3730] veth0_vlan: left promiscuous mode
[  489.046726][ T3730] team0 (unregistering): Port device team_slave_1 removed
[  489.083410][ T3730] team0 (unregistering): Port device team_slave_0 removed
[  489.368410][ T5104] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  489.396230][ T5104] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  489.409655][ T5104] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  489.433519][ T5104] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  489.451032][ T5104] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  489.498804][ T1607] lo speed is unknown, defaulting to 1000
[  489.504981][ T1607] infiniband syz2: ib_query_port failed (-19)
[  489.514248][ T8974] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1150'.
[  489.537841][ T8971] netdevsim netdevsim8: Direct firmware load for ..€ failed with error -2
[  489.546893][ T8971] netdevsim netdevsim8: Falling back to sysfs fallback for: ..€
[  490.134596][ T8983] loop8: detected capacity change from 0 to 764
[  490.174572][ T8983] Symlink component flag not implemented
[  490.180630][ T8983] Symlink component flag not implemented
[  490.521025][ T8977] chnl_net:caif_netlink_parms(): no params data found
[  490.766586][ T7120] hid_parser_main: 26 callbacks suppressed
[  490.766688][ T7120] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0
[  490.781441][ T7120] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0
[  490.789164][ T7120] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0
[  490.796991][ T7120] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0
[  490.804873][ T7120] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0
[  490.818348][ T7120] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0
[  490.827933][ T7120] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0
[  490.835834][ T7120] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0
[  490.843953][ T7120] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0
[  490.851792][ T7120] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0
[  490.886682][ T8991] lo speed is unknown, defaulting to 1000
[  490.893167][ T8991] lo speed is unknown, defaulting to 1000
[  490.900245][ T8991] lo speed is unknown, defaulting to 1000
[  490.981150][ T8991] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  491.048814][ T7120] hid-generic 0003:0004:0000.0007: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  491.065990][ T8991] lo speed is unknown, defaulting to 1000
[  491.075516][ T8991] lo speed is unknown, defaulting to 1000
[  491.085317][ T8991] lo speed is unknown, defaulting to 1000
[  491.094451][ T8991] lo speed is unknown, defaulting to 1000
[  491.103759][ T8991] lo speed is unknown, defaulting to 1000
[  491.112285][ T8999] loop8: detected capacity change from 0 to 164
[  491.635165][ T5104] Bluetooth: hci3: command tx timeout
[  492.003091][ T8977] bridge0: port 1(bridge_slave_0) entered blocking state
[  492.011085][ T8977] bridge0: port 1(bridge_slave_0) entered disabled state
[  492.018882][ T8977] bridge_slave_0: entered allmulticast mode
[  492.031923][ T8977] bridge_slave_0: entered promiscuous mode
[  492.136306][ T8977] bridge0: port 2(bridge_slave_1) entered blocking state
[  492.151411][ T8977] bridge0: port 2(bridge_slave_1) entered disabled state
[  492.159327][ T8977] bridge_slave_1: entered allmulticast mode
[  492.169381][ T8977] bridge_slave_1: entered promiscuous mode
[  492.320431][ T9014] netdevsim netdevsim7: Direct firmware load for ..€ failed with error -2
[  492.329358][ T9014] netdevsim netdevsim7: Falling back to sysfs fallback for: ..€
[  492.499865][ T8977] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  492.565422][ T8977] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  492.837737][ T8977] team0: Port device team_slave_0 added
[  492.868487][ T8977] team0: Port device team_slave_1 added
[  492.883623][   T39] hid-generic 0003:0004:0000.0008: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  492.994452][ T8977] batman_adv: batadv0: Adding interface: batadv_slave_0
[  493.003301][ T8977] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  493.030946][ T8977] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  493.120841][ T8977] batman_adv: batadv0: Adding interface: batadv_slave_1
[  493.128342][ T8977] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  493.155044][ T8977] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  493.509159][ T9030] loop8: detected capacity change from 0 to 164
[  493.603890][ T8977] hsr_slave_0: entered promiscuous mode
[  493.614792][ T8977] hsr_slave_1: entered promiscuous mode
[  493.624006][ T8977] debugfs: 'hsr0' already exists in 'hsr'
[  493.630121][ T8977] Cannot create hsr debugfs directory
[  493.650456][ T9027] capability: warning: `syz.1.1170' uses deprecated v2 capabilities in a way that may be insecure
[  493.712068][ T5104] Bluetooth: hci3: command tx timeout
[  493.997332][ T9034] loop7: detected capacity change from 0 to 512
[  494.188522][ T9034] EXT4-fs error (device loop7): ext4_orphan_get:1418: comm syz.7.1173: bad orphan inode 11862016
[  494.253294][ T9034] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  494.266868][ T9034] ext4 filesystem being mounted at /149/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  494.552351][ T8977] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  494.617124][ T8977] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  494.675229][ T8977] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  494.725149][ T7083] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  494.728641][ T8977] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  495.356161][   T39] hid-generic 0003:0004:0000.0009: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  495.574853][ T9055] netdevsim netdevsim8: Direct firmware load for ..€ failed with error -2
[  495.584241][ T9055] netdevsim netdevsim8: Falling back to sysfs fallback for: ..€
[  495.645556][ T8977] 8021q: adding VLAN 0 to HW filter on device bond0
[  495.757955][ T8977] 8021q: adding VLAN 0 to HW filter on device team0
[  495.792472][ T5104] Bluetooth: hci3: command tx timeout
[  495.806089][ T3720] bridge0: port 1(bridge_slave_0) entered blocking state
[  495.813790][ T3720] bridge0: port 1(bridge_slave_0) entered forwarding state
[  495.859967][ T3720] bridge0: port 2(bridge_slave_1) entered blocking state
[  495.867562][ T3720] bridge0: port 2(bridge_slave_1) entered forwarding state
[  495.965304][ T9051] loop7: detected capacity change from 0 to 8192
[  496.125763][ T9051] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  496.281779][ T9051] netlink: 224 bytes leftover after parsing attributes in process `syz.7.1178'.
[  496.291357][ T9051] ksmbd: Unknown IPC event: 4, ignore.
[  496.404435][ T9051] loop7: detected capacity change from 8192 to 0
[  496.431139][    C0] I/O error, dev loop7, sector 65 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  496.441367][ T9060] FAT-fs (loop7): Directory bread(block 65) failed
[  496.456118][    C0] I/O error, dev loop7, sector 66 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  496.514937][ T9060] FAT-fs (loop7): Directory bread(block 66) failed
[  496.522786][    C1] I/O error, dev loop7, sector 67 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  496.533328][ T9060] FAT-fs (loop7): Directory bread(block 67) failed
[  496.548295][    C1] I/O error, dev loop7, sector 68 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  496.642850][ T9061] siw: device registration error -23
[  496.680792][ T9060] FAT-fs (loop7): Directory bread(block 68) failed
[  496.693029][    C1] I/O error, dev loop7, sector 69 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  496.703646][ T9060] FAT-fs (loop7): Directory bread(block 69) failed
[  496.711323][    C0] I/O error, dev loop7, sector 70 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  496.740469][ T9060] FAT-fs (loop7): Directory bread(block 70) failed
[  496.756685][    C1] I/O error, dev loop7, sector 71 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  496.779672][ T9060] FAT-fs (loop7): Directory bread(block 71) failed
[  496.807878][   T39] hid_parser_main: 44 callbacks suppressed
[  496.807988][   T39] hid-generic 0003:0004:0000.000A: unknown main item tag 0x0
[  496.822356][   T39] hid-generic 0003:0004:0000.000A: unknown main item tag 0x0
[  496.831259][   T39] hid-generic 0003:0004:0000.000A: unknown main item tag 0x0
[  496.838947][   T39] hid-generic 0003:0004:0000.000A: unknown main item tag 0x0
[  496.846886][   T39] hid-generic 0003:0004:0000.000A: unknown main item tag 0x0
[  496.858261][   T39] hid-generic 0003:0004:0000.000A: unknown main item tag 0x0
[  496.867033][   T39] hid-generic 0003:0004:0000.000A: unknown main item tag 0x0
[  496.874999][   T39] hid-generic 0003:0004:0000.000A: unknown main item tag 0x0
[  496.882968][   T39] hid-generic 0003:0004:0000.000A: unknown main item tag 0x0
[  496.890758][   T39] hid-generic 0003:0004:0000.000A: unknown main item tag 0x0
[  497.094565][   T39] hid-generic 0003:0004:0000.000A: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  497.871011][ T5104] Bluetooth: hci3: command tx timeout
[  498.157299][ T8977] 8021q: adding VLAN 0 to HW filter on device batadv0
[  498.176942][ T5865] hid-generic 0003:0004:0000.000B: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  498.217433][ T9079] serio: Serial port ptm0
[  498.732259][ T9090] netdevsim netdevsim8: Direct firmware load for ..€ failed with error -2
[  498.741668][ T9090] netdevsim netdevsim8: Falling back to sysfs fallback for: ..€
[  499.000481][ T9093] siw: device registration error -23
[  499.548948][   T39] hid-generic 0003:0004:0000.000C: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  500.264966][   T39] hid-generic 0003:0004:0000.000D: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  500.292283][ T8977] veth0_vlan: entered promiscuous mode
[  500.374682][ T8977] veth1_vlan: entered promiscuous mode
[  500.692092][ T8977] veth0_macvtap: entered promiscuous mode
[  500.781770][ T9115] serio: Serial port ptm0
[  500.789303][ T8977] veth1_macvtap: entered promiscuous mode
[  500.977708][ T8977] batman_adv: batadv0: Interface activated: batadv_slave_0
[  501.052652][ T9106] netlink: 224 bytes leftover after parsing attributes in process `syz.7.1200'.
[  501.063104][ T9106] ksmbd: Unknown IPC event: 4, ignore.
[  501.080436][ T8977] batman_adv: batadv0: Interface activated: batadv_slave_1
[  501.179161][ T3720] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  501.244433][ T3720] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  501.315092][ T3720] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  501.350103][ T3720] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  501.816458][ T9130] netdevsim netdevsim7: Direct firmware load for ..€ failed with error -2
[  501.829147][ T9130] netdevsim netdevsim7: Falling back to sysfs fallback for: ..€
[  501.843025][ T9127] loop8: detected capacity change from 0 to 512
[  501.917019][ T9127] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended
[  501.941403][ T9131] siw: device registration error -23
[  502.015764][ T9127] EXT4-fs warning (device loop8): ext4_update_dynamic_rev:1128: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  502.049287][ T9127] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.1209: bg 0: block 248: padding at end of block bitmap is not set
[  502.088293][ T9127] Quota error (device loop8): write_blk: dquota write failed
[  502.096724][ T9127] Quota error (device loop8): qtree_write_dquot: Error -117 occurred while creating quota
[  502.107443][ T9127] EXT4-fs error (device loop8): ext4_acquire_dquot:6937: comm syz.8.1209: Failed to acquire dquot type 1
[  502.149235][ T9127] EXT4-fs (loop8): 1 truncate cleaned up
[  502.157639][ T9127] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback.
[  502.470397][ T7114] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0008-000000000000.
[  502.705751][ T5925] hid_parser_main: 62 callbacks suppressed
[  502.705855][ T5925] hid-generic 0003:0004:0000.000E: unknown main item tag 0x0
[  502.720156][ T5925] hid-generic 0003:0004:0000.000E: unknown main item tag 0x0
[  502.727834][ T5925] hid-generic 0003:0004:0000.000E: unknown main item tag 0x0
[  502.735701][ T5925] hid-generic 0003:0004:0000.000E: unknown main item tag 0x0
[  502.743584][ T5925] hid-generic 0003:0004:0000.000E: unknown main item tag 0x0
[  502.751604][ T5925] hid-generic 0003:0004:0000.000E: unknown main item tag 0x0
[  502.759273][ T5925] hid-generic 0003:0004:0000.000E: unknown main item tag 0x0
[  502.767088][ T5925] hid-generic 0003:0004:0000.000E: unknown main item tag 0x0
[  502.774857][ T5925] hid-generic 0003:0004:0000.000E: unknown main item tag 0x0
[  502.782646][ T5925] hid-generic 0003:0004:0000.000E: unknown main item tag 0x0
[  502.807013][ T5925] hid-generic 0003:0004:0000.000E: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  503.570702][ T9153] serio: Serial port ptm0
[  503.624070][ T9146] loop8: detected capacity change from 0 to 8192
[  504.966773][ T9173] netlink: 20 bytes leftover after parsing attributes in process `syz.8.1221'.
[  505.380138][ T9178] netdevsim netdevsim7: Direct firmware load for ..€ failed with error -2
[  505.389188][ T9178] netdevsim netdevsim7: Falling back to sysfs fallback for: ..€
[  505.434270][ T9162] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1219'.
[  505.444700][ T9162] ksmbd: Unknown IPC event: 4, ignore.
[  506.042735][ T9189] serio: Serial port ptm1
[  507.056715][ T3698] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  507.065530][ T3698] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  507.361016][ T3867] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  507.369237][ T3867] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  508.416005][ T9210] loop8: detected capacity change from 0 to 8192
[  508.546915][ T9219] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1239'.
[  508.565592][ T9210] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  508.648742][ T9222] serio: Serial port ptm0
[  508.649676][ T9210] netlink: 224 bytes leftover after parsing attributes in process `syz.8.1236'.
[  508.662717][ T9210] ksmbd: Unknown IPC event: 4, ignore.
[  508.761256][ T9210] loop8: detected capacity change from 8192 to 0
[  508.803762][    C0] I/O error, dev loop8, sector 65 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  508.813818][ T9210] FAT-fs (loop8): Directory bread(block 65) failed
[  508.825835][    C0] I/O error, dev loop8, sector 66 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  508.839231][ T9210] FAT-fs (loop8): Directory bread(block 66) failed
[  508.852156][    C1] I/O error, dev loop8, sector 67 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  508.904028][ T9210] FAT-fs (loop8): Directory bread(block 67) failed
[  508.919396][    C1] I/O error, dev loop8, sector 68 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  508.956420][ T9210] FAT-fs (loop8): Directory bread(block 68) failed
[  508.964369][    C1] I/O error, dev loop8, sector 69 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  509.007635][ T9210] FAT-fs (loop8): Directory bread(block 69) failed
[  509.015599][    C1] I/O error, dev loop8, sector 70 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  509.074079][ T9210] FAT-fs (loop8): Directory bread(block 70) failed
[  509.089906][    C0] I/O error, dev loop8, sector 71 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  509.105674][ T9210] FAT-fs (loop8): Directory bread(block 71) failed
[  510.366409][ T9253] netlink: 16 bytes leftover after parsing attributes in process `syz.8.1253'.
[  510.568291][ T9257] serio: Serial port ptm0
[  511.989996][ T9267] loop9: detected capacity change from 0 to 8192
[  512.077415][ T9267] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  512.288327][ T9278] netlink: 224 bytes leftover after parsing attributes in process `syz.9.1258'.
[  512.298088][ T9278] ksmbd: Unknown IPC event: 4, ignore.
[  512.377034][ T9284] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1267'.
[  512.390338][ T9267] loop9: detected capacity change from 8192 to 0
[  512.408099][    C0] I/O error, dev loop9, sector 65 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  512.470286][ T9267] FAT-fs (loop9): Directory bread(block 65) failed
[  512.479114][    C0] I/O error, dev loop9, sector 66 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  512.496300][ T9267] FAT-fs (loop9): Directory bread(block 66) failed
[  512.504040][    C1] I/O error, dev loop9, sector 67 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  512.515018][ T9267] FAT-fs (loop9): Directory bread(block 67) failed
[  512.554974][ T9267] FAT-fs (loop9): Directory bread(block 68) failed
[  512.603373][ T9267] FAT-fs (loop9): Directory bread(block 69) failed
[  512.649123][ T9267] FAT-fs (loop9): Directory bread(block 70) failed
[  512.690304][ T9267] FAT-fs (loop9): Directory bread(block 71) failed
[  512.882884][ T9287] serio: Serial port ptm0
[  513.380707][ T9297] siw: device registration error -23
[  514.553387][ T9318] netlink: 16 bytes leftover after parsing attributes in process `syz.9.1281'.
[  514.752564][ T9321] serio: Serial port ptm0
[  515.512114][ T9332] siw: device registration error -23
[  516.681781][ T9356] serio: Serial port ptm0
[  518.700944][ T9385] serio: Serial port ptm0
[  520.381224][ T9411] serio: Serial port ptm0
[  521.024721][ T9420] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1327'.
[  521.034123][ T9420] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1327'.
[  521.043573][ T9420] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1327'.
[  521.094047][ T9401] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1318'.
[  521.103766][ T9401] ksmbd: Unknown IPC event: 4, ignore.
[  522.896664][ T9447] serio: Serial port ptm0
[  523.077629][ T7120] hid_parser_main: 8 callbacks suppressed
[  523.077746][ T7120] hid-generic 0003:0004:0000.000F: unknown main item tag 0x0
[  523.093736][ T7120] hid-generic 0003:0004:0000.000F: unknown main item tag 0x0
[  523.101632][ T7120] hid-generic 0003:0004:0000.000F: unknown main item tag 0x0
[  523.109310][ T7120] hid-generic 0003:0004:0000.000F: unknown main item tag 0x0
[  523.117109][ T7120] hid-generic 0003:0004:0000.000F: unknown main item tag 0x0
[  523.125062][ T7120] hid-generic 0003:0004:0000.000F: unknown main item tag 0x0
[  523.132962][ T7120] hid-generic 0003:0004:0000.000F: unknown main item tag 0x0
[  523.140907][ T7120] hid-generic 0003:0004:0000.000F: unknown main item tag 0x0
[  523.148590][ T7120] hid-generic 0003:0004:0000.000F: unknown main item tag 0x0
[  523.156739][ T7120] hid-generic 0003:0004:0000.000F: unknown main item tag 0x0
[  523.322069][ T7120] hid-generic 0003:0004:0000.000F: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  524.636003][ T9479] serio: Serial port ptm0
[  525.331921][ T9488] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1356'.
[  526.582251][ T9508] serio: Serial port ptm0
[  527.304577][ T9520] netlink: 20 bytes leftover after parsing attributes in process `syz.9.1371'.
[  528.813385][ T9543] serio: Serial port ptm0
[  533.764809][ T9619] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  533.776695][ T9617] IPVS: stopping master sync thread 9619 ...
[  534.006269][   T30] audit: type=1326 audit(1758411784.051:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9620 comm="syz.9.1416" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91539 code=0x7ffc0000
[  534.033141][   T30] audit: type=1326 audit(1758411784.061:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9620 comm="syz.9.1416" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f91539 code=0x7ffc0000
[  534.056810][   T30] audit: type=1326 audit(1758411784.061:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9620 comm="syz.9.1416" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91539 code=0x7ffc0000
[  534.079337][ T7120] hid_parser_main: 8 callbacks suppressed
[  534.079675][ T7120] hid-generic 0003:0004:0000.0010: unknown main item tag 0x0
[  534.080087][ T7120] hid-generic 0003:0004:0000.0010: unknown main item tag 0x0
[  534.080265][ T7120] hid-generic 0003:0004:0000.0010: unknown main item tag 0x0
[  534.080440][ T7120] hid-generic 0003:0004:0000.0010: unknown main item tag 0x0
[  534.080619][ T7120] hid-generic 0003:0004:0000.0010: unknown main item tag 0x0
[  534.080801][ T7120] hid-generic 0003:0004:0000.0010: unknown main item tag 0x0
[  534.080980][ T7120] hid-generic 0003:0004:0000.0010: unknown main item tag 0x0
[  534.081158][ T7120] hid-generic 0003:0004:0000.0010: unknown main item tag 0x0
[  534.081334][ T7120] hid-generic 0003:0004:0000.0010: unknown main item tag 0x0
[  534.081509][ T7120] hid-generic 0003:0004:0000.0010: unknown main item tag 0x0
[  534.153162][ T7120] hid-generic 0003:0004:0000.0010: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  534.154314][   T30] audit: type=1326 audit(1758411784.091:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9620 comm="syz.9.1416" exe="/root/syz-executor" sig=0 arch=40000003 syscall=400 compat=1 ip=0xf7f91539 code=0x7ffc0000
[  534.201192][   T30] audit: type=1326 audit(1758411784.091:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9620 comm="syz.9.1416" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91539 code=0x7ffc0000
[  534.224174][   T30] audit: type=1326 audit(1758411784.101:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9620 comm="syz.9.1416" exe="/root/syz-executor" sig=0 arch=40000003 syscall=402 compat=1 ip=0xf7f91539 code=0x7ffc0000
[  534.251001][   T30] audit: type=1326 audit(1758411784.101:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9620 comm="syz.9.1416" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91539 code=0x7ffc0000
[  534.275686][   T30] audit: type=1326 audit(1758411784.101:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9620 comm="syz.9.1416" exe="/root/syz-executor" sig=0 arch=40000003 syscall=375 compat=1 ip=0xf7f91539 code=0x7ffc0000
[  534.298202][   T30] audit: type=1326 audit(1758411784.111:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9620 comm="syz.9.1416" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91539 code=0x7ffc0000
[  534.323522][   T30] audit: type=1326 audit(1758411784.111:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9620 comm="syz.9.1416" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f91539 code=0x7ffc0000
[  534.608016][ T9621] netlink: 'syz.9.1416': attribute type 3 has an invalid length.
[  535.689226][ T9628] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  535.696001][ T9628] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  535.824786][ T9628] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  535.831435][ T9628] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  535.882263][ T9628] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  535.888711][ T9628] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  535.910300][ T9628] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  535.916740][ T9628] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  535.931417][ T9628] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  535.937764][ T9628] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  535.958332][ T9628] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  536.865921][ T7120] hid-generic 0003:0004:0000.0011: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  536.886908][ T9650] IPVS: stopping master sync thread 9653 ...
[  536.915474][ T5104] Bluetooth: hci0: command 0x0406 tx timeout
[  537.182497][ T9657] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1431'.
[  537.192369][ T9657] netem: change failed
[  537.767627][ T9667] sctp: [Deprecated]: syz.1.1436 (pid 9667) Use of int in max_burst socket option.
[  537.767627][ T9667] Use struct sctp_assoc_value instead
[  537.870385][ T5104] Bluetooth: hci4: command 0x0406 tx timeout
[  537.950372][ T5104] Bluetooth: hci1: command 0x0406 tx timeout
[  537.957148][ T5813] Bluetooth: hci2: command 0x0406 tx timeout
[  538.031713][ T5104] Bluetooth: hci3: command 0x0c1a tx timeout
[  538.377125][ T9681] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  538.394694][ T9679] IPVS: stopping master sync thread 9681 ...
[  539.000109][ T5104] Bluetooth: hci0: command 0x0406 tx timeout
[  539.052366][   T30] kauditd_printk_skb: 35 callbacks suppressed
[  539.052448][   T30] audit: type=1326 audit(1758411789.111:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9683 comm="syz.8.1443" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e539 code=0x7ffc0000
[  539.081550][   T30] audit: type=1326 audit(1758411789.111:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9683 comm="syz.8.1443" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e539 code=0x7ffc0000
[  539.127176][   T30] audit: type=1326 audit(1758411789.161:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9683 comm="syz.8.1443" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf701e539 code=0x7ffc0000
[  539.153580][   T30] audit: type=1326 audit(1758411789.161:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9683 comm="syz.8.1443" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e539 code=0x7ffc0000
[  539.177182][   T30] audit: type=1326 audit(1758411789.161:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9683 comm="syz.8.1443" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e539 code=0x7ffc0000
[  539.199803][   T30] audit: type=1326 audit(1758411789.161:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9683 comm="syz.8.1443" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e539 code=0x7ffc0000
[  539.222546][   T30] audit: type=1326 audit(1758411789.161:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9683 comm="syz.8.1443" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf701e539 code=0x7ffc0000
[  539.248807][   T30] audit: type=1326 audit(1758411789.161:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9683 comm="syz.8.1443" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e539 code=0x7ffc0000
[  539.272536][   T30] audit: type=1326 audit(1758411789.171:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9683 comm="syz.8.1443" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e539 code=0x7ffc0000
[  539.294974][   T30] audit: type=1326 audit(1758411789.171:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9683 comm="syz.8.1443" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e539 code=0x7ffc0000
[  539.952204][ T5104] Bluetooth: hci4: command 0x0406 tx timeout
[  540.034711][ T5104] Bluetooth: hci1: command 0x0406 tx timeout
[  540.034917][ T5813] Bluetooth: hci2: command 0x0406 tx timeout
[  540.114111][ T5813] Bluetooth: hci3: command 0x0c1a tx timeout
[  540.336783][ T9698] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  540.731211][ T9706] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  540.731657][ T9705] IPVS: stopping master sync thread 9706 ...
[  541.772196][ T5925] hid_parser_main: 26 callbacks suppressed
[  541.772303][ T5925] hid-generic 0003:0004:0000.0012: unknown main item tag 0x0
[  541.786167][ T5925] hid-generic 0003:0004:0000.0012: unknown main item tag 0x0
[  541.794060][ T5925] hid-generic 0003:0004:0000.0012: unknown main item tag 0x0
[  541.801965][ T5925] hid-generic 0003:0004:0000.0012: unknown main item tag 0x0
[  541.813894][ T5925] hid-generic 0003:0004:0000.0012: unknown main item tag 0x0
[  541.822964][ T5925] hid-generic 0003:0004:0000.0012: unknown main item tag 0x0
[  541.831010][ T5925] hid-generic 0003:0004:0000.0012: unknown main item tag 0x0
[  541.838698][ T5925] hid-generic 0003:0004:0000.0012: unknown main item tag 0x0
[  541.846475][ T5925] hid-generic 0003:0004:0000.0012: unknown main item tag 0x0
[  541.854354][ T5925] hid-generic 0003:0004:0000.0012: unknown main item tag 0x0
[  541.903212][ T5925] hid-generic 0003:0004:0000.0012: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  542.141962][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  542.148651][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  542.190024][ T5813] Bluetooth: hci3: command 0x0c1a tx timeout
[  542.353098][ T9725] netlink: 20 bytes leftover after parsing attributes in process `syz.9.1460'.
[  542.751379][ T9733] IPVS: stopping master sync thread 9735 ...
[  543.646621][ T7120] hid-generic 0003:0004:0000.0013: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  544.721869][ T9763] IPVS: stopping master sync thread 9765 ...
[  546.358613][ T9782] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  547.104288][ T9795] IPVS: stopping master sync thread 9796 ...
[  547.864089][ T9806] netlink: 40 bytes leftover after parsing attributes in process `syz.7.1498'.
[  549.987945][ T9806] Set syz1 is full, maxelem 65536 reached
[  550.471077][ T9825] IPVS: stopping master sync thread 9828 ...
[  552.232335][ T9850] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1516'.
[  552.636994][   T30] kauditd_printk_skb: 33 callbacks suppressed
[  552.637076][   T30] audit: type=1326 audit(1758411802.691:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9855 comm="syz.7.1518" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb5539 code=0x7ffc0000
[  552.770772][   T30] audit: type=1326 audit(1758411802.751:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9855 comm="syz.7.1518" exe="/root/syz-executor" sig=0 arch=40000003 syscall=150 compat=1 ip=0xf7fb5539 code=0x7ffc0000
[  552.794063][   T30] audit: type=1326 audit(1758411802.751:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9855 comm="syz.7.1518" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb5539 code=0x7ffc0000
[  552.816623][   T30] audit: type=1326 audit(1758411802.751:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9855 comm="syz.7.1518" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb5539 code=0x7ffc0000
[  553.001384][ T9860] IPVS: stopping master sync thread 9861 ...
[  554.591634][ T9882] netlink: 40 bytes leftover after parsing attributes in process `syz.8.1530'.
[  554.677398][ T9884] netlink: 'syz.7.1531': attribute type 4 has an invalid length.
[  555.079097][ T9890] IPVS: stopping master sync thread 9892 ...
[  556.544796][ T9915] netlink: 16 bytes leftover after parsing attributes in process `syz.9.1545'.
[  556.851628][ T9921] IPVS: stopping master sync thread 9922 ...
[  557.337812][   T30] audit: type=1326 audit(1758411807.381:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9930 comm="syz.5.1552" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000
[  557.460944][   T30] audit: type=1326 audit(1758411807.421:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9930 comm="syz.5.1552" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000
[  557.490563][   T30] audit: type=1326 audit(1758411807.421:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9930 comm="syz.5.1552" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ae539 code=0x7ffc0000
[  557.515980][   T30] audit: type=1326 audit(1758411807.421:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9930 comm="syz.5.1552" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000
[  557.539176][   T30] audit: type=1326 audit(1758411807.421:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9930 comm="syz.5.1552" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000
[  557.563265][   T30] audit: type=1326 audit(1758411807.471:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9930 comm="syz.5.1552" exe="/root/syz-executor" sig=0 arch=40000003 syscall=400 compat=1 ip=0xf70ae539 code=0x7ffc0000
[  557.992609][ T9940] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1557'.
[  558.530943][ T9950] netlink: 16 bytes leftover after parsing attributes in process `syz.9.1561'.
[  558.696951][ T9952] IPVS: stopping master sync thread 9953 ...
[  558.706515][ T9953] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  558.983694][ T9957] netlink: 32 bytes leftover after parsing attributes in process `syz.8.1564'.
[  559.579760][   T30] kauditd_printk_skb: 5 callbacks suppressed
[  559.579842][   T30] audit: type=1326 audit(1758411809.631:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9966 comm="syz.8.1567" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e539 code=0x7ffc0000
[  559.608823][   T30] audit: type=1326 audit(1758411809.631:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9966 comm="syz.8.1567" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf701e539 code=0x7ffc0000
[  559.635702][   T30] audit: type=1326 audit(1758411809.651:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9966 comm="syz.8.1567" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e539 code=0x7ffc0000
[  559.659339][   T30] audit: type=1326 audit(1758411809.691:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9966 comm="syz.8.1567" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e539 code=0x7ffc0000
[  559.918484][   T30] audit: type=1326 audit(1758411809.751:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9966 comm="syz.8.1567" exe="/root/syz-executor" sig=0 arch=40000003 syscall=400 compat=1 ip=0xf701e539 code=0x7ffc0000
[  559.945996][   T30] audit: type=1326 audit(1758411809.751:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9966 comm="syz.8.1567" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e539 code=0x7ffc0000
[  559.970347][   T30] audit: type=1326 audit(1758411809.761:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9966 comm="syz.8.1567" exe="/root/syz-executor" sig=0 arch=40000003 syscall=375 compat=1 ip=0xf701e539 code=0x7ffc0000
[  559.993069][   T30] audit: type=1326 audit(1758411809.761:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9966 comm="syz.8.1567" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e539 code=0x7ffc0000
[  560.925769][ T9985] netlink: 16 bytes leftover after parsing attributes in process `syz.8.1575'.
[  561.280422][ T9992] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1577'.
[  561.721718][   T30] audit: type=1326 audit(1758411811.771:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9998 comm="syz.5.1580" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000
[  561.744389][   T30] audit: type=1326 audit(1758411811.781:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9998 comm="syz.5.1580" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ae539 code=0x7ffc0000
[  561.905726][T10004] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1582'.
[  563.043098][T10018] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1589'.
[  563.423530][T10021] netlink: 32 bytes leftover after parsing attributes in process `syz.8.1591'.
[  564.552166][T10031] IPVS: stopping master sync thread 10035 ...
[  565.030989][T10037] siw: device registration error -23
[  565.106507][T10018] Set syz1 is full, maxelem 65536 reached
[  565.467096][T10040] =====================================================
[  565.475723][T10040] BUG: KMSAN: uninit-value in ieee802154_max_payload+0x399/0x3c0
[  565.483973][T10040]  ieee802154_max_payload+0x399/0x3c0
[  565.489766][T10040]  ieee802154_header_create+0x99b/0xb90
[  565.495521][T10040]  dgram_sendmsg+0xb3d/0x16d0
[  565.500511][T10040]  ieee802154_sock_sendmsg+0x92/0xd0
[  565.506007][T10040]  __sock_sendmsg+0x333/0x3d0
[  565.511188][T10040]  ____sys_sendmsg+0x7e0/0xd80
[  565.516728][T10040]  ___sys_sendmsg+0x271/0x3b0
[  565.521834][T10040]  __sys_sendmsg+0x1aa/0x300
[  565.527186][T10040]  __ia32_compat_sys_sendmsg+0xa4/0x100
[  565.533733][T10040]  ia32_sys_call+0x3f6c/0x4310
[  565.539018][T10040]  __do_fast_syscall_32+0xb0/0x150
[  565.544592][T10040]  do_fast_syscall_32+0x38/0x80
[  565.550558][T10040]  do_SYSENTER_32+0x1f/0x30
[  565.555250][T10040]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  565.566496][T10040] 
[  565.568938][T10040] Local variable hdr created at:
[  565.575877][T10040]  ieee802154_header_create+0x4e/0xb90
[  565.582343][T10040]  dgram_sendmsg+0xb3d/0x16d0
[  565.587304][T10040] 
[  565.589925][T10040] CPU: 1 UID: 0 PID: 10040 Comm: syz.1.1597 Not tainted syzkaller #0 PREEMPT(none) 
[  565.599707][T10040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  565.610186][T10040] =====================================================
[  565.617240][T10040] Disabling lock debugging due to kernel taint
[  565.625504][T10040] Kernel panic - not syncing: kmsan.panic set ...
[  565.632102][T10040] CPU: 1 UID: 0 PID: 10040 Comm: syz.1.1597 Tainted: G    B               syzkaller #0 PREEMPT(none) 
[  565.643246][T10040] Tainted: [B]=BAD_PAGE
[  565.647497][T10040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  565.657726][T10040] Call Trace:
[  565.661127][T10040]  <TASK>
[  565.664161][T10040]  __dump_stack+0x26/0x30
[  565.668703][T10040]  dump_stack_lvl+0x53/0x270
[  565.673499][T10040]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  565.679507][T10040]  dump_stack+0x1e/0x25
[  565.683861][T10040]  vpanic+0x361/0xc50
[  565.688065][T10040]  panic+0x15d/0x160
[  565.692184][T10040]  kmsan_report+0x31c/0x320
[  565.696868][T10040]  ? do_fast_syscall_32+0x38/0x80
[  565.702061][T10040]  ? __msan_warning+0x1b/0x30
[  565.706893][T10040]  ? ieee802154_max_payload+0x399/0x3c0
[  565.712650][T10040]  ? ieee802154_header_create+0x99b/0xb90
[  565.718546][T10040]  ? dgram_sendmsg+0xb3d/0x16d0
[  565.723609][T10040]  ? ieee802154_sock_sendmsg+0x92/0xd0
[  565.729301][T10040]  ? __sock_sendmsg+0x333/0x3d0
[  565.734344][T10040]  ? ____sys_sendmsg+0x7e0/0xd80
[  565.739485][T10040]  ? ___sys_sendmsg+0x271/0x3b0
[  565.744541][T10040]  ? __sys_sendmsg+0x1aa/0x300
[  565.749493][T10040]  ? __ia32_compat_sys_sendmsg+0xa4/0x100
[  565.755518][T10040]  ? ia32_sys_call+0x3f6c/0x4310
[  565.760605][T10040]  ? __do_fast_syscall_32+0xb0/0x150
[  565.766053][T10040]  ? do_fast_syscall_32+0x38/0x80
[  565.771245][T10040]  ? do_SYSENTER_32+0x1f/0x30
[  565.776096][T10040]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  565.782794][T10040]  ? cfg802154_pernet_exit+0x1a1/0x230
[  565.788458][T10040]  ? filter_irq_stacks+0x49/0x190
[  565.793653][T10040]  ? kmsan_get_metadata+0xfb/0x160
[  565.798947][T10040]  ? kmsan_internal_memmove_metadata+0x91/0x230
[  565.805373][T10040]  ? kmsan_get_metadata+0xfb/0x160
[  565.810668][T10040]  ? kmsan_internal_memmove_metadata+0x181/0x230
[  565.817191][T10040]  ? __msan_memcpy+0x108/0x1c0
[  565.822120][T10040]  ? kmsan_get_metadata+0xfb/0x160
[  565.827504][T10040]  __msan_warning+0x1b/0x30
[  565.832202][T10040]  ieee802154_max_payload+0x399/0x3c0
[  565.837797][T10040]  ieee802154_header_create+0x99b/0xb90
[  565.843624][T10040]  ? kmsan_get_metadata+0xfb/0x160
[  565.848932][T10040]  ? __pfx_ieee802154_header_create+0x10/0x10
[  565.855172][T10040]  dgram_sendmsg+0xb3d/0x16d0
[  565.860072][T10040]  ? __pfx_dgram_sendmsg+0x10/0x10
[  565.865354][T10040]  ieee802154_sock_sendmsg+0x92/0xd0
[  565.870823][T10040]  ? __pfx_ieee802154_sock_sendmsg+0x10/0x10
[  565.877053][T10040]  ? __pfx_ieee802154_sock_sendmsg+0x10/0x10
[  565.883230][T10040]  __sock_sendmsg+0x333/0x3d0
[  565.888085][T10040]  ____sys_sendmsg+0x7e0/0xd80
[  565.893085][T10040]  ___sys_sendmsg+0x271/0x3b0
[  565.897973][T10040]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  565.903981][T10040]  ? __rcu_read_unlock+0x6d/0xd0
[  565.909087][T10040]  ? __fget_files+0x3b4/0x4a0
[  565.914046][T10040]  ? __fget_files+0x3b9/0x4a0
[  565.918923][T10040]  ? kmsan_get_metadata+0xfb/0x160
[  565.924219][T10040]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  565.930308][T10040]  __sys_sendmsg+0x1aa/0x300
[  565.935134][T10040]  __ia32_compat_sys_sendmsg+0xa4/0x100
[  565.940898][T10040]  ia32_sys_call+0x3f6c/0x4310
[  565.945828][T10040]  __do_fast_syscall_32+0xb0/0x150
[  565.951116][T10040]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  565.957070][T10040]  do_fast_syscall_32+0x38/0x80
[  565.962082][T10040]  do_SYSENTER_32+0x1f/0x30
[  565.966742][T10040]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  565.973286][T10040] RIP: 0023:0xf70de539
[  565.977494][T10040] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  565.997383][T10040] RSP: 002b:00000000f54ce55c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[  566.005973][T10040] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080002480
[  566.014085][T10040] RDX: 0000000004040044 RSI: 0000000000000000 RDI: 0000000000000000
[  566.022183][T10040] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  566.030280][T10040] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  566.038367][T10040] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  566.046492][T10040]  </TASK>
[  566.050077][T10040] Kernel Offset: disabled
[  566.054482][T10040] Rebooting in 86400 seconds..