last executing test programs:

13m38.864099252s ago: executing program 3 (id=112):
r0 = socket$kcm(0x10, 0x2, 0x0)
recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000580)=""/91, 0x5b}, {&(0x7f0000000ec0)=""/4073, 0xfe9}, {&(0x7f0000000700)=""/237, 0xed}, {&(0x7f0000000600)=""/230, 0xe6}, {&(0x7f00000002c0)=""/177, 0xb1}], 0x5}, 0x0)
sendmsg$inet(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000480)="5c00000012006bab9a3fe3d86e17aa0a8187bae53dca2b007ea23e163ec40028e82fccdc09da15fef6a608649e7531765f0ef82e3c0076a705259a3651f60a84c9f4d4938037e70e4509c5bb0c9246444351db86078475483687054c", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x20000000)
recvmsg$kcm(r0, &(0x7f0000000e80)={0x0, 0x0, 0x0}, 0x40000002)

13m38.168260948s ago: executing program 3 (id=114):
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cgroup.events\x00', 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r2=>0x0})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[], 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r3, 0x2, &(0x7f00000005c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
ioctl$BINDER_FREEZE(0xffffffffffffffff, 0x400c620e, &(0x7f0000000280)={0x0, 0x1, 0x10000})
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10)
fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0xfe44, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="280000001400090a0000000000000000021f4800", @ANYRES32=r2, @ANYBLOB="08000200e4d4c21e080008004c06"], 0x28}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)

13m36.472791784s ago: executing program 3 (id=117):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f0000000540), 0x4)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x0, &(0x7f0000000600), 0x1, 0x563, &(0x7f0000000640)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
r2 = gettid()
r3 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
readv(r3, &(0x7f0000000100)=[{&(0x7f0000000480)=""/4096, 0x1000}], 0x1)
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)=<r4=>0x0)
timer_settime(r4, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socket(0x2b, 0xa, 0x8)

13m35.455329876s ago: executing program 3 (id=125):
r0 = socket$netlink(0x10, 0x3, 0x4)
writev(r0, &(0x7f0000000240)=[{&(0x7f0000000280)="580000001400add427323b472545b45602117fffffff81004e204e227f000001925aa80020007b0009008003000000000000000000ff0000f03ac71002000000ffff", 0x42}], 0x1)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
socket(0x1e, 0x3, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r2 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x70, 0x4)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_usb_connect$uac1(0x2, 0xa6, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000000000106b1d01010000000003010902950003010040000904000000010100000a2401000000020102132406912026082810e50163"], 0x0)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000480)=@abs={0x0, 0x0, 0x8004e24}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffff05850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={0x0, r6}, 0x18)
r7 = socket$inet(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r7, 0x0, 0x40, &(0x7f0000000380)=@raw={'raw\x00', 0x2, 0x3, 0x290, 0xb, 0x0, 0xf0, 0xf8, 0xf0, 0x1f8, 0x1f8, 0x1f8, 0x1f8, 0x1f8, 0x3, 0x0, {[{{@ip={@multicast1, @multicast1, 0x0, 0x0, 'ip6gretap0\x00', 'syzkaller1\x00', {}, {}, 0x11}, 0xb000000, 0xd8, 0xf8, 0x0, {}, [@common=@inet=@l2tp={{0x30}, {0x0, 0x0, 0x0, 0x0, 0x8}}, @common=@unspec=@quota={{0x38}}]}, @unspec=@NOTRACK={0x20}}, {{@uncond, 0x0, 0x98, 0x100, 0x0, {}, [@common=@ttl={{0x28}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2f0)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000640)=[{0x6, 0x0, 0x0, 0xea}]}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000600)=0x1801, 0x4)

13m31.335809126s ago: executing program 3 (id=130):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000240)={[{@grpquota}, {@auto_da_alloc}, {@minixdf}]}, 0x1, 0x50c, &(0x7f0000000ac0)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@xino_auto}]})

13m30.831995846s ago: executing program 3 (id=134):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f00000001c0)={{0x0, 0x0, 0x0, 0x1}, 'syz0\x00', 0xe})
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$UI_ABS_SETUP(r1, 0x401c5504, &(0x7f00000002c0)={0x35, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0e00000004000000040000000c"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x18, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000010000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='GPL\x00', 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
pwrite64(0xffffffffffffffff, &(0x7f0000000140)='2', 0xff10, 0x8001000)
read$FUSE(r1, &(0x7f0000000980)={0x2020}, 0x2020)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000080000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000680)='sched_switch\x00', r7}, 0x10)
ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0105500, &(0x7f0000000000)={0x3, 0x10, 0x6, 0x3, 0x0, 0x100, 0x0})
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x44, r9, 0x1, 0x70bd28, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x30, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4, @dev={0xac, 0x14, 0x14, 0x13}}}, {0x14, 0x2, @in={0x2, 0x0, @private=0xa010102}}}}]}]}, 0x44}}, 0x0)

13m15.729150768s ago: executing program 32 (id=134):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f00000001c0)={{0x0, 0x0, 0x0, 0x1}, 'syz0\x00', 0xe})
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$UI_ABS_SETUP(r1, 0x401c5504, &(0x7f00000002c0)={0x35, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0e00000004000000040000000c"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x18, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000010000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='GPL\x00', 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
pwrite64(0xffffffffffffffff, &(0x7f0000000140)='2', 0xff10, 0x8001000)
read$FUSE(r1, &(0x7f0000000980)={0x2020}, 0x2020)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000080000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000680)='sched_switch\x00', r7}, 0x10)
ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0105500, &(0x7f0000000000)={0x3, 0x10, 0x6, 0x3, 0x0, 0x100, 0x0})
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x44, r9, 0x1, 0x70bd28, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x30, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4, @dev={0xac, 0x14, 0x14, 0x13}}}, {0x14, 0x2, @in={0x2, 0x0, @private=0xa010102}}}}]}]}, 0x44}}, 0x0)

12m50.448840275s ago: executing program 4 (id=179):
syz_open_procfs(0x0, &(0x7f0000000200)='clear_refs\x00')
socket$inet6_sctp(0xa, 0x1, 0x84)
userfaultfd(0x80001)
socket$nl_generic(0x10, 0x3, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x70)
socket$unix(0x1, 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x42, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000080)={r0, 0x3, 0x3})
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000080), 0xfffffebe}], 0x1)

12m50.068445346s ago: executing program 4 (id=234):
syz_open_pts(0xffffffffffffffff, 0x2800)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
openat$binfmt_format(0xffffff9c, &(0x7f0000000040)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
uname(&(0x7f0000000080)=""/209)

12m48.854490523s ago: executing program 4 (id=239):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000002000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CONNECT(r0, &(0x7f00000020c0)={0x6, 0x118, 0xfa00, {{0x7, 0x653, "6ea3237a129f6e5e7411deb528969c025fcd8930153a491738154aa6ff24cfb07d61f33a9a0afc44c47137f98060e7c2870ef83f2e89d9812c97cea806cc43717c3d340fcfbbd6c3ee26f7e5cc3fffcdab584d150ebf8fb751c44f0a470542e8659f05eac544b6cd5623a0e45e713d2254004a7647a0ed223d0b1730287f0614d75b880ac3a94304f6074191547871073c27627d2cc4c672d6babbe361e50cf2f529c10b1dacfb2effaff6f4aaed65cc2d565a472bad2923444a8578d8ad828b41ab7f0f81ce25087463ecc77909bc27f8f972ed3def3ddd23f80af1288317d9b609693b451f3caa144a68037b49e7520c505eaba027facda070119560eb1296", 0x0, 0xff, 0x78, 0x9, 0x1, 0xde, 0xd}}}, 0x120)

12m47.878575111s ago: executing program 4 (id=242):
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f00000000c0)={[{@noauto_da_alloc}, {@init_itable_val={'init_itable', 0x3d, 0x6}}, {@dioread_nolock}, {@grpquota}]}, 0x5, 0x4dd, &(0x7f0000000c40)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000000080)='./bus\x00', 0x10040d0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x20081e, &(0x7f0000000100), 0x1, 0x502, &(0x7f0000000a00)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000300)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000700000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='ext4_es_lookup_extent_enter\x00', r0}, 0x10)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './bus'}}], [], 0x2c})

12m46.284236699s ago: executing program 4 (id=246):
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000280)={0x0, 0x0})
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="a0f1ffff00000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000001b000000b7000000000000009500000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000240)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="a1ab0000000000000e0032000000"], 0x40}, 0x1, 0x0, 0x0, 0x805}, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xff, 0x485, &(0x7f0000001040)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

12m45.461721835s ago: executing program 4 (id=248):
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8)

12m44.254980002s ago: executing program 33 (id=248):
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8)

12m13.986623959s ago: executing program 0 (id=348):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000200100000102000028"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket(0xa, 0x1, 0x0)

12m13.814109823s ago: executing program 0 (id=351):
syz_mount_image$iso9660(&(0x7f0000000500), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0059892743780edac157b7f68dcf3d412c774a83cc5a5eceecffe2ceea101555dd85545184772c40a5e09bceb562baab146d8260bb7dac30d8460258bcf4cb42b8a2efbe5ce35d480b76406a2d8a7f60c8b0e4"], 0x1, 0x523, &(0x7f0000000540)="$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")
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="5c0000001000ffff27bd7000fadb"], 0x5c}, 0x1, 0x0, 0x0, 0x1}, 0x20040040)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file1\x00', 0x10040, 0x0)

12m11.936317934s ago: executing program 0 (id=355):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="280000001000010024bd7000fc0ddf2500000000", @ANYRES32=0x0, @ANYBLOB="1b0b04000300000008001b"], 0x28}, 0x1, 0x0, 0x0, 0x68010}, 0x0)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
write$cgroup_int(r2, &(0x7f0000000100)=0x9, 0x12)

12m11.344188241s ago: executing program 0 (id=358):
r0 = socket$netlink(0x10, 0x3, 0x4)
writev(r0, &(0x7f0000000240)=[{&(0x7f0000000280)="580000001400add427323b472545b45602117fffffff81004e204e227f000001925aa80020007b0009008003000000000000000000ff0000f03ac71002000000ffff", 0x42}], 0x1)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={0x0, r1}, 0x18)
socket(0x1e, 0x3, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r2 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x70, 0x4)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_usb_connect$uac1(0x2, 0xa6, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000000000106b1d01010000000003010902950003010040000904000000010100000a2401000000020102132406912026082810e50163"], 0x0)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000480)=@abs={0x0, 0x0, 0x8004e24}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffff05850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={0x0, r6}, 0x18)
r7 = socket$inet(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r7, 0x0, 0x40, &(0x7f0000000380)=@raw={'raw\x00', 0x2, 0x3, 0x290, 0xb, 0x0, 0xf0, 0xf8, 0xf0, 0x1f8, 0x1f8, 0x1f8, 0x1f8, 0x1f8, 0x3, 0x0, {[{{@ip={@multicast1, @multicast1, 0x0, 0x0, 'ip6gretap0\x00', 'syzkaller1\x00', {}, {}, 0x11}, 0xb000000, 0xd8, 0xf8, 0x0, {}, [@common=@inet=@l2tp={{0x30}, {0x0, 0x0, 0x0, 0x0, 0x8}}, @common=@unspec=@quota={{0x38}}]}, @unspec=@NOTRACK={0x20}}, {{@uncond, 0x0, 0x98, 0x100, 0x0, {}, [@common=@ttl={{0x28}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2f0)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000640)=[{0x6, 0x0, 0x0, 0xea}]}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000600)=0x1801, 0x4)

12m8.796053206s ago: executing program 0 (id=366):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001500)=@newqdisc={0x70, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x9}, {0xffff, 0xffff}, {0xfff1}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x40, 0x2, {{0x1ff, 0x4, 0x0, 0x0, 0xfffffffd, 0x8}, [@TCA_NETEM_ECN={0x8, 0x7, 0x1}, @TCA_NETEM_LOSS={0x1c, 0x5, 0x0, 0x1, [@NETEM_LOSS_GI={0x18, 0x1, {0x80000001, 0x6, 0x8, 0xfffffffe, 0xd99d}}]}]}}}]}, 0x70}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000002c0)={'wlan0\x00'})
sendto$packet(r0, &(0x7f0000000080)="44c33b69ebc9e05e9bdec0c288a8", 0xe, 0x830, &(0x7f0000000440)={0x11, 0x0, r3, 0x1, 0x3, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}}, 0x14)

12m8.323731183s ago: executing program 0 (id=367):
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000280)={0x0, 0x0})
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
sched_setscheduler(0x0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="a0f1ffff00000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000001b000000b7000000000000009500000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000240)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="a1ab0000000000000e0032000000"], 0x40}, 0x1, 0x0, 0x0, 0x805}, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xff, 0x485, &(0x7f0000001040)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

11m53.317427067s ago: executing program 34 (id=367):
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000280)={0x0, 0x0})
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
sched_setscheduler(0x0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="a0f1ffff00000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000001b000000b7000000000000009500000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000240)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="a1ab0000000000000e0032000000"], 0x40}, 0x1, 0x0, 0x0, 0x805}, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xff, 0x485, &(0x7f0000001040)="$eJzs3M9rHFUcAPDvTJL+bhNrrba2Gq1i8UfSpFV78KCi4EFB0EM9xiSttdtGmgi2BI0i9SgF7+JR8C/w5kXUgwheFTxKoWgQmnqKzK9mu9mkSZpkbfbzgc2+t/Nm3/vOzNt9My+zAbSt3uxPErEjIn6LiO4ie3OB3uJpZnpy+Pr05HASs7Nv/JXk5a5NTw5XRav1tpeZw2lE+mkSzyfz6x2/cPHMUK02er7M90+cfa9//MLFp06fHTo1emr03ODx48eODjz7zODTqxJnFte1/R+OHdj3yluXXxs+cfntH7/JmrX3YLG8Po5but4koCZ6s63292yucdmjy2j7nWBnXTrpbGFDWJaOiMh2V1fe/7ujI+Z2Xne8/ElLGwesqey7afPCi6dmgQ0siVa3AGiN6os+O/+tHus09PhfuPpCxKYyPTM9OTxzI/7OSMvXu9aw/t6IODH175fZI5Z7HQIAYAXysc2TzcZ/aezNn4u5jl3lHEpPRNwVEbsj4u6I2BMR90TkZe+NiPuKlWe7l1h/b0N+/vgnvdK0zaskG/89Vzf2m6mLv3zq6ShzO/P4u5KTp2ujR8ptcji6Nmf5gUXq+O6lXz9faFn9+C97ZPVXY8GyAVc6Gy7QjQxNDK3WRrj6ccT+zmbxJzdmArIjYF9E7F/eW++qEqcf//rAQoVuHf8iVmGeafariMeK/T8VDfFXksXnJ/u3RG30SH91VMz30y+XXl+o/tuKfxVk+3/bzcd/Q4nuf5JivrYrarXR8+PLr+PS758teE6z0uN/U/JmPmf98zvFax8MTUycH4jYlLya56tzuvz1wbl1q3xVPov/8KHm/X93uU4W//0RkR3EByPigYh4sGz7QxHxcEQcWiT+H1585N1F4k8iiZbu/5Gmn383jv+epH6+fgWJjjPff7vQjPnS9v+xmMo/awv5598tLLWBt7n5AAAA4I6QRsSOSNK+It27I9K0r6/4H/49sS2tjY1PPHFy7P1zI8U9Aj3RlVZXurrrrocOJFPlOxb5wfJacbX8aHnd+IuOrXm+b3isNtLi2KHdbb+5/0fV/zN/drS6dcCac78WtK/G/p+2qB3A+lvK979zAdiYmvT/ra1oB7D+nP9D+2rW/z9qyBv/w8Y0v///0eQn64CNyPgf2pf+D+1L/4e2dDv39a88Ud0ssPL32bLkO/zbJVH94sVa1rU15l6JtOUht1Ei6zHrW+ncb6gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADcyf4LAAD///ss5ts=")
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

7m31.785235783s ago: executing program 1 (id=1727):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000000)=0x7ff, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x401, @loopback, 0x2}], 0x1c)
sendto$inet6(r0, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)

7m31.532388224s ago: executing program 1 (id=1730):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="18000000000300"/16], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='contention_end\x00', r0}, 0x18)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000002100)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}})
setxattr$system_posix_acl(&(0x7f0000000180)='./file0\x00', &(0x7f0000000100)='system.posix_acl_access\x00', 0x0, 0x0, 0x1)
lremovexattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000380)=ANY=[@ANYBLOB='os2'])
syz_fuse_handle_req(r1, &(0x7f0000006400)="7f73a2cec5d0db4d420442fce4e4191e2ed112a607e662fc1eeef7926d41c5a0f91c64de08fcd231ba34fb2b58307d834cc83ce0f3908b5333fec9af958c900344d938cfa948f432dd5acb1a7a73bdba45cd411b82f7fed6fa3bf23c9abdc4f263fdf3fd68dcbd973b4dc2aef81c7296d7d08e562f89231f57d43e4d7458c8f389810e60c1c20bddfefcf1739824ad409148f4647b52cc98987f7c31bd6f7f44e39ac5f97f75f06dccd331d2828625fbfd3a65fd0d32871b92c0a6aa8895d3b467921c933eeb93cdbd7387abe27c4427d4ab77bbf9558a9a085a74170e875d83f8c5017d46901eb519854e8aaeaf94e6e050fec7c1afd81e26da117484dfb042805ed1ad3fc67a28636f5a35ad72f6106a5c3cbdd25048567ef13b229024142ebeb7a8bf518f017fd49dc31d8652ab7036107f8d5216a142e58f8ed850ba177786e911fa4f9ff952f8ddb66af705c7b97ed4b385d9ea3c0fecfdd5dcf168832726ced26b51f7a5911a35106aaee0e8662497f6c5dce5543690ea32505e79f13bace0f89ad9e8c551578eedc78028c414145dc3be2184e2055c037cc2ae07842a78910815c69d010bfbb850ec8f1a5da8b48ed2f75838dfe8657e5b1b59c561cd5d219a481802939c7abfb216e01173985e3436b7135d2377ba714281dcb3f82c064957e621464e5de29e8248d2400668e5775d8a75d23d7e3fd9fdce31aef258be698b121ac4ff319c6e4f872c4cf1b5f3ebbfb2ebabe113ccffe028d829922ea909a5522e5b632e3b99fb47ba9d0f8e15ca401e3ac671e80dcb56214330e7ffb3a415d6a0b84c56b056a6f2a4ffbb77130a5867b12e061a2539aaf67360af472c21a27855b5387e132ef9bac10b86b1f93974da52b3f4c48011c77eab7481e1838975fec2ae160f6b8c168b80dcfd3e03e8c1ec2a643cf850203e8254112c08ed4c2c6d0715b6bf5f281df7356cc2c9f8baac8b0dc574fc46eef5eaa9530dc0a6a88b3ad315d01a36282c5338cc5c399deb78cad23b22eb71b80d266fa904fc1a6d94f77a1e3a2173abe5dba58af48a75fbadd339eddfe7dc5ecf3fb85284e903ab70dc00663f0a5270ab805556aaf09223679845a1e091f24318d71dff015847107ffd9d7f789e8753abc2a51d5067da21c49fa8b8f66c89afb009cf17200753164786af597b8b6d5b5505d1d716c74fb26cd78679d77330c2cb2bd154423bd6e5b8972e2c576a89806e57686a7019a369de75c99e0bb6704f508adfd5394568a2f8c56a5333c861432e4ed056e5b8f20217c81563f0fb9efa6467459753832814e3118c24b634d6068b35871bcaaadda1d206584324a2bd35050f5fb993e898ca25fe82b3578e325658a4cb91ba32589c6d6720284c610569788acd2907091a968651b3978d797a5e808d4f33be1859de2bb57b5d249725f06d94e32ab46d1b7d1174703bf8dba02d4a5f5a16fb3878d6a2c915df4ea588ad8b0545b62308112d6c7f9bd93e5a51a45af9e990985f8d7dc8925ac1f63210cad488769d4957b03108e5e6f716d80a0bf88349d680067fb0a0bc59edd8ba646a2a86b4c32fd531dbc4879c86ab74e17f49f877c30a36279698a3420f3f236a69a84781fb981a2248bc0dd12dcc464f6b970b27ee634f0fa8c1338bdc3b4193b865727eb856995c08d9b88161b9a15245ec0967000f678e807c953f933edc6e80fcfe963663f7cc801927bc91c238d0b6f0c61ae66a8d210ca577b17677d79ffad404194d733dbcce9b2f163637b7ed1cf4f967ca680bf1db83b1b6f090dd99b8e0d49e7b3cac65864c32cb321d84bf43e7a300a6f4ac27c8091e39e4383fc99617f4b367d7a2e0041176dee5fa85ceb501c3d2a2efc1f489f83fbbbdc4af125fcac9a2ed8db3cc227543b195e36adef6a67a126a28be525e0441d3c5def236da4bb1d5cec084b1f08da02299f72b2a10ea7fdd5eb3c2f999740a287c179db7fa5766f8781b5147a6933623bbaec777152c4e65d262733ce7e864c5c79a56f60075662248f6b765562f718d0767a89de9bd3649957fa54bc9df603158d4ea631d71be5ea93ce64d4718abc196fdc85dddd8656806500660aaf5e3c5c74732872141cf9c542bd32f1ad210cae53fd91bce48a55afe056540d396b0930632d6b252833a91bb4d9020d5ed10d66d2467e324ee68f06926194d378da476f0d4dbb9c452475d938e8c774cc68bd291726a95223ae3866d9a2f3e4e6c319e2b4700ef4640ceedd9ab0a587bdaabd649363f0d93ec1afd6106e791f8d8f1a0d52c085a4c8a89a5c6d8443c63d3757dcca07e1f813aa6c7d007385b54b9a280713e80d8b61630360166c5ef66190fe367d7694112f340f790d8a9cf0f39eef719edbe914c9da3ecae2913a544cdce5bdb9fa462ef83bf3da34e76670612885e66c1cb13c76f72fa796ab1810f507be6dccdb66aad16e88168e0637ce5ea5bbb01ba6731052459600121734f1db7c610920e979e1f2c69be00a33a7cf14e5dec0626d3928040c75db097626e198c17114da8841c9e5cea3ba122dc119d6a2da3144993e7e023849f5360f299675f49353828a592aa8b6c2ec821b0991dc478024a6811656a265431f9aa56feda7e8267d6e3351ce340a79856e59de5db2c919c6726cff7ee678b95390d6c6ddd2ba323be59eb4c42f08a2f9973ff0c45820d59b50b6a153775ed0e9e73e73c6ccb98887bf70d35d97ae8d226c35b4fe8a5d4cda816eac80cdb962e8444a5cb4452ea83da83ccb437c7b00e146d7b71aa86a0933aced67fada0588dfd280066f5a735215691ecdcfd474dd0ae3c644af51a79f8fe7a84b0c2130e619dba270a101b0d1669c9317d5e548a2cc3755d5a37817d8eaae8059713854fb1b5b70991ac62db6453afc3bc4fb78a5cdd56e22b4d7abd70e6370ba28d5cba9478886f232a482cc4a1dda770c0458c8bef5ac19d8f4a24117d6ab0c7d37928c05a9b51cb6b2d8f5e422383dfae0f8152365fea2a948a12899aac9587a01ed162e6e70572d3eb02fec0cf0af4e65757f4bb535aa4fb82a193f79913b09e8a4d1ebe26eb4bd3d1549ecb20a08c501bfb5aa8ceb236a99d6ac3cf7be65475a867c27d301bd62a947c1d03e7247db527d9f7356bd59ea335f3c0afe3de183fc16c77e658aade451f036c34b9ee58ba53672994358355209728a760d76aa2f22d7d4e37732cca6404fde0d067bc97a4020a9f3946893743fe132704285a7e1b01403955d61aa22805dd592e4f4af41bd3c3f3ff2b1f0fa434c141261fc28b2bc1b104c78ed7f27cc9609a3d9ca2b8b976dd2374db05550e85032d7e080fac951aa68eac62a9de55565ab6201508cff33c38286494184219c919958415b50420756d32ea98cd04b6ac9c5f311fc933e48a597285c2f8a3dc008f174854b6ea186af6aa55aeecc10345b7d9bb9d2bbd3c0bb8153f6fbf080f4cd49e07dd850ab3a44cf505fecc8cb52b0540a60598ca941d40bda71b16f703bb30e344d3de13e540bc1205a1d9b3c94658b2199b2f2008c9f106eae565ef605278b8779ece25cda761069c7c72f020b820a39e6d0c441cdb00a41292c3146f39d2a5f7bb2fc8723a318fe3df11ce8a2e81eeabd0dd9245cb0f54a6d048c428c899182804cff8947361c01b009214b7d95617d312fbbfd379925f402bd9cc0cf5c25f14c24c64ccc7d87add9ce615711c9c6df6b0866d001f4669030abde15fd2e4059f25ad1c5543ededdf6d26c5a4f52d6c4448d105bbaad24a88cdc41b7e741c82973dc2578f9f1fd1faf4e522eb08c430f4efc4772fa4f6e504164b7b0b275635446c64fe3764cc13b1903b2a359eaa16c28abd331a34f78354ef286116c7b4a0ed3b8c38e8667f26a4ad8de9e205b9f1b24ec8c46a3c3578655f45d4356bd9504b2c4bceab55e7b02cd53139c1b5f044d9182b1e41c9020ad44eb31b8e8a7bf01e85c182ec849d7ed42d69eda8eb57d58c1c38e4ef4c3266fab97db4047eee31d289e91c53b243f5ad50af8de32c35cdd1165c894cfc9df5f59f55b2acdf81b6ee3db4eeed50c7cad36cf53dd10ad592c6d059f067d76711c067d42a148443a195512ea16f41589b3f1dace5e63d2c1255ea19c8ef1836ed19ff7ccaf96536548c06d4fdc76daf99d960c040e4df0e5a1f39f57bcd6dc294adff4af3a8ef364338049c5991d532a248aef4a0d166de764a4c3b583b6f8c30a8cad255f34f342f2b778fdda98766e11c21f4df0db226e6bfb66e71c342d904e99d506aea721d01456938e02f60e78b2652204819ed4595ee77e987d9646b2720ecdd41869653f7225e23dec28dbf0709a1da684693cb22f5b74f569f2d424499eb246ca8d8cf9ba86b2f1d25ac5e3707d46c46fa5d3008cc01aaf2e645b92dda134010df5ce5ad6ca03c2a30ae023a72688f766bcc821f24fb81d1c9edf5da5d96816476a3afcd4df699cc2b98664af0d1365e589673ee7272e3746d7e95ff6c87e1d5ae8055551724e3ad3c50d852eeac1333a4507d096687c6a7765accefc4b22dcc36a73f231d6c9dc242a5e7a0309415bb10455c2df3bf719c79d73e35ad068f5473b66c7e9bf769919b295d6c9dce8f774a21bb7878fd7d4b887bd2efaee03c73532a35bd23810dfe10e214d4f9cec03c72afa212f009e068852546eca171ce2c7070228901527621eca6771cb75b1613df30ad1582df923e12b91013f73102f130fb33b85d82f038bc1f54e6f126d5077262ca82ea7130995a5b24c4974ca8a1b1d4ae7c3417d05547cdf5e6030c4d02c6cfa0bec697be7df432b8d78926831d00e7bca1a5e67e6d55666cca07c6842950cd793ce986da89185efe61046e863add47c745775b8e3727b074434f1c14c502e44d276b73ad2faad946cef2435fbf1225076c461b76b3f83e24a05cbaf0fed70c3a05f4765c0499a9b7a80805be294053e7f27e2260e1ddd1737d535aeb7692a0c8c169b5c058a9d217776b1a9888dd8175477f4cfa44b83715ab4f6f212153628554f719fcdb6bd376c1d443c2692ba8f2db168c63723eb8c88e9a9612a0934ee66dd63daab19078d61fe68ab10a621460d98d12bd3cc6799b2c35eb1010a457e2f36fccf3b37a96233d844291bf798f630fec23525ffa41e64b17b895c28ff7699cf31e9faab9b2f515d2e14dd3981ac7c21dea76810ab33ac178648ecab1cb09b158f43d1d9a97ab05b52c322d02206922a719a400367796063570b480980d4f9347214d747ce0de4f56902df321e892bac8a79ededdac14b93682b9ca8b95452b68c8ec3fa1ed188237dd1f67a286d988fb8e43889c00f4a87a3e6416bfb34259646296cd5f73d0e00534309af6e8f5e0e54c63fca9822505237f4e3cd95b8adccf45f3709e8427da5d7c3c57c99286a2c094db3f815373a756e9ffd2af88d6e69a8829dd4a7cee75942aea8556ffcd82653fce46daeee574ed7502fb2b1e8dd8d60a5d46b898684a0d715f643ad91505747cca04968e6a1d0c447e036e1ca25419cd8bd785402d88bce5e40532b1806aee693f8b5030cfad71e9f52d0445304aa2af28893b1bc731f37b55bfc6e5846634482cfa3cee7e9d2c8a34a48fcca25393d7b3fe5c5a3c2d53de126654468984ab1777954272c6e25ba392f3c3c2a658518625921196839ddfbaa0bab14836ea12e63542a60db72048bc0770351cc2c30ed6185ce69b61f8160078415e86f9bab5f399bd7ed4b720fd19fa327f440f6054937b0dd6ef511849823e6162e0c7d1f846f9ebafc32583954e7b136303977a191d9974e939fc7cac14134026967b5408fa6907afbdfa41cf80a17c251fc1363725987819f165518f86fee07ca1660c25d04f157ecd43b8b92f93b2c6c02e0c1e715836d70c503e60ceaeaaac61f7b9e07d3fc9904ecfc81ece857754191e57a8991bd0042750b53722f35741641ebd5c5febee02d648fc1d048bf916a8d8f33227fca790602c02dfbd4aad34f2dc8e77e537ad4042a553e5e8a0a15dbee27da24ac13048378899c3a8772a0d8b85c442c8082f464b58fc016e845186bafa8fdf4f04d0d952136d4c7be90a909e3e6adcb3d74ed37da19769cb81114ead1a40dc0368169e5c230eb02a0d1c1a11ffd808f27159baeaa8879a034dcaf6a70b2f99e5859ad9c7465d61b4b51e993d8b93095ca63675dee276ba112bd2f469efdfb79fc8c97b809e0076001b98651bffa6829b2141fb3ff789d0ddc3d73b077d36521841ed9aa5a8a134f5875c444c62efa1f9b0d98a4bb4a62760a15d33824791420a5a89467ec364f30954db77219b849677e0f5bfea9c3d2a3a1e1e76ce3df4c8b9a6a3866b20566e7c68c6d32bad4d70fd2b9235fa7d38475ec1b9c9d746f55b02bdbdee6dcb6238caeed353de28d1e6e2d5126117e5fa82b9d57b703dd527736b51444b0d7d4b77562d4a370a202ed70b4940bf58ef3ff8801f78d632f2d2428fb133a910aaf4757b32d657d831c5575398aa88643e7fb1431ed0dec16a505e2d8583ef3d8787413bbdfe132c921d16cf272ca791e88e196824ea3a5c009a6a21b88dd1d6d6f87733528959ed24a4d3505d469d32a09b1970329add757c533afea8f8314c58400c0f3e25b703d9757c4b04f1b1bf293defb008ea60dcc77b0d3a6e9a1286c761bb3aa0c8f3aed74f8cab11094741c093e495867afb3857d3a92ef0fae7253b2bc3291a9ac0dcdb62c517ce2471ca23d985012f2e860238ccbec834039e8538de07f6086d1ac09027729bcc4e0bbd36e931be4242ec7135d16b01b3da39b1cd1c1d751017df8ffb31875f5a541a94099a4f035044f310fe5356d3b2d9a1eb5bcefd422e546bb3c169b8793df2764e6390dd161d90943a55d40f1984e1e211fd0227296e2b5c6485ad19675dcbce483a88f5c68d44b80ebb716c1aa0017ebafe340a0273b48979c7dd4e426f8c0a736e40c4f844a037742d00a73b67fba3c14051c6278c4dabdc4d8446ab5762e2d9d4f34359da34cdc333735b02e5deb9f71c8af1a5cea228eb70d0d8b371e378f5fd8172e60d9432e38e8eef54758d89e5413693ff2deb95fadfda6ecb6feb3adeae0c08860056a23d122e7b070568ca196b58cf0c5e737be9f2d9c66fa2be4f532c603ea8533cf06152d231cd2513cdcf212af2869ab96488f5cc484cf773c4d6eff8573b9487e51c84c3ea2e03e0bf3bea7717b8c92470a05d6e518265e8d31e23a22dbefbf82bb2a81d6c76372c5f41b19c5bcbea706ebd0b3cb7e52be6f8c70b7fbbfda4de69318cf9186aaba9d94c93b2df2310c44ed93d937db65b5f596dfaf6b52a7a4ae77c4b096d0075189cb568e4bbf6ce9c796839855440e6f060e241f295e4f76b0f162dacb2cb2e47a06961152e0057ed615fe14943822e8d6fa18636f3168f09ff2986dbf1904043ba4fee74b5c4706781568861df4c9b13bf2a815ba7c69a0b60114e19d817c3a038921fbb1b47acb8597bb38f7980f8b628f3565b09d7f7be504264ff143409b54516b4e79bdf7147eac7b1de7e43d76c558d6306bf780095f2bb5b9ffa3846df980001b22171d65463c17f4adbb95274abe315707946e65026a86d1b368586046e0cfd2a99352c16b9bbd91bb839c443e9962ae35a9d0dd6e2a48e773e6ac06597c6e428f5cc14836e6462135972bec63de2e7e3b5306704d44c2d9367308ffc4bb43cf839e37ee5fda8e50383aaf2eb67004645fad98662d6ce3d499ed921c9015ee5691b030f53cf95c346131097fd8fdbf257dbbb4410fb1dd14d64e384ad486ed5903866cb1982c606d41d611d4bb6298fb26cf965a7dbaf57309d46483fd5ff7c4782341446e7ad9695c52f7aa57a0c856214f67b7a7b8def0e915f5eb2ae457e4800d8791faac0133cb3851881aa429826cda874a42b7956a032f3d0615296c4f706ed649690d196ca6a6a2481be470c0a3922c7789276effa51e0221c8e163ce47dd8ba62391882338ad843d5579a6c3cd3ed711d770b8e0be9de4c91120bc01d69f457715fd770d6c335de853c87be3b638953faa0f2284d415c537e01285afe9b7f54d7a432bb7e16cd18621b6e5769b635dba997a5c65279bad6522d189da110e549f51fe20af42fcabf1a900cdea166bfe279855b8fdcb1bfb97049238dd17aec8093ea38b04e04bf43dd1b43658abab3b0b395cecf73d59279b9001e0d4ba93b95de101534ac718336a82216f2112b7aa0235c15594960f4771a0fdc21b4636ce3ddda5dd63291bfedce53347b725f8fe17848319b05cdf4c8d3d198b64deb3e10f6fab3db35ecce06908cd4f26cbda0f8c4a7deeb6ee12e0b5c13dd022851e6da21f44505697a4a974a10e57145bc75960ba59e189768938e89eb0c81071b45345ce428e90c4fc04ba11e75127f96698a4a2dba776a0f0a1576853d39e0ad3addb7bc1f3c030794d1fe621799d34582d07b80114df1039cd2866f1899f19fe34b946571c17f8b3efdc0e857fcf83f1ebc2b99ad59485fef3057e07534d36e7b4350dee86fe84f6f85f75330064301e2f055e017cc187f93bb8e92583b9e6e3999ae5c7ad1521ec77ee0ba476308242f9d6cad4d5ed385924c3806077f0d143bce70b9205b6d59f8f107f50133fd6fa87ddffaabab3a16156d353c28c5b3d92ba8643e4f06b866ea3f7ffc604a234750e5eba551e4787b340ddc90081b74a0d2e7df723e73b09e5cd38568993f171ecd6056aee45496c8d8fc458f8e2e721e359541cbb9dbcb1d801538cb84324fb090e960d53bc81c0020229e38e36c186cfaff1a1bc385e2d5338bd3bd9148730275b36f2dab198ee329b060159efb17ab00e40a940245d8ca47712921db546dde1100c29ff47dab5dd8cf10cca97565ed96901b0309841d7e3d746cde9fb1985cc276e4420636b145a2ee8720ad2fa2c256b995879b95e2e597f6d6fdeac1f2d349e3305322cd4b0df519abf958e874ed6d25bd4eb7418e9e45addd44e4a9e6cdf7b553cb48fc0c2d12683b2a83d2aeeaf03b6718abfaaffa59f38879a1b380668ade3e320ec2db4bdfa4409d09abf35fdd2ff501dafd55fbb2dd2ff2821a47ef41f644f4cc87d4a41576e2618a4da38302aa3ab38516e656b5a64f790a008d0200aede7267bea8bfe554e7d082d11d8ec186e314b070b5ea07b0ae722b4f2ab965bea7f906326710e0909eb1c0ba9959dd97a7b5331494d87b74c04587e4b78c420b8aa8ac99ad6c59d05d35a2e370b2126de5eb8901cc6ba879ee86de290bcf77e0bed67a74932794b3faaa187f5fd23a7932037f0a3d4517a1509eb981752492d13aa7d48d997fb71e65ee97db61d51ede49a215a158890bb60103f5502893a998be6ba800a07ecf9d8e5379b817621047933b3b314b7cb20abb6c30c6d490db451c7ee5c37942b5e886e0b43f21b9ff383ab80461e1a2c9c05f870111d023fc49dc425fae83e848eae43772902f83bdb1af645039e0cc961d6ce39588bd4b00e2a5e55ec02cfcc3ebe3783fbedab8ab64ed2d78202493ff6550471ba6196e73ad2b35f828eceaf8e340b78e9ff0fca04431e56cb7d0c3e366f938f0d7d966ba34458b0ac9dd6dd5c0034f73f902ed2183d7438377b72e81919ce168f294009c734220b4a501ec8e47b2d1f3f69605ce91fc825b5c4ac7b267718cf28c81d485aaa7de1d0dee66f677b6ee9ad02d75099c653decac58e0f1e13f414304b972d6e17d3d1fc0ff30591b82aa785a3dbf24c59bc8efc57fdef33c7c2d051214d9d8f48a9a71ed77ee6a3a2a699bd3882a4a71ccb714c8a911388be571a2a7136b9c308c5c854f6ed7bb74bab77076ff3d48ba989384ee4dc996262fc9e1585d2638107df8615d66f335d147efb64373ad8668fb50e00eba86ef4c65842cbf246496e997fcf0546c043740035af30e05f69d69ae06334e249fc828d5c3d1d58f31f2e439fd6d415be63ac6c88385935bdb11f4e8cba2f0209314253a0e5001fb029cfff63e012c379d8269611eb3868055868087f3916990089d3cb9dd201db0fbc4768a03b4c36c2a58511932468ce65f6b2d5fdaf3b1e669dbb7bd3ed2525d6f81944512d79918b1b14e17e225b3b7cce0bbcc073eec2ca8aa47a260d4842ab5a0e29b163d83ed1392ede695ad64e44f530af80aa4af328f8fbad8e4ea11f71bfc8418a145ae47612f9e7a7d4d037c3249e5d3a1feded9798dbd78af07990aa8d607254194256c1c662479a881f8bb6e6ecc4cb92aacd919fef13e78b58ad44ef3a3e7e0145950706e762c1ac44e78249cd1a29c5dd1f635c596c8046cc432024079ac0eb4b7376d89ac60485300594ce3a2498a374e0ef103a6aa5e0c42df5cbdb6da478bcfece47ff79e79cc2abaa7678a2d6f5f26bf3702d3b07cc5cdf5f402b2b5801c7d5489ecdef4477d111a5040f65cf7ba8586509151890a0a1ff2a093b1b969a4d01fbb29de063138d5407ff358d7c98a8ec79a424d3080d5b9b4533f23dc80ad3fd9baef5d1895576a8af9479c65f772874b9f7b0379d9212f386af9fbe816179316290746a973b5178601b861c1054e9d8f38426edfbe8206765314c723f262fe0e32950f68f00a45582e6e72d0140614035f58e3527eba96d29363f966bda6a29b4453285ad94b3eb51ebfbf5afba8bd6a89fc54e8cfc1d8b91555282e27ebcba8b2aa7f4d397b6b017bbcd80d30fc0180cd93b97541a0b127925d609baae79e4243c34b9660a17ff066c4b906ba554655dc30e47cca38f18e5190ff861dc3cb2bf777052da48bcac3925db0b9e9ce401c1cb2c2a1c51d0c420d357af3c939166cc01759d50f9e65fb04957c7c5c5ac46433e064ec563233d8dc7eea97d9f5c12b4a03a46ce306550f3bd4c7166dea3d4876f7a83b39b207654e6fd2a01abadfb2a3f19436c065088ea49859d5dbc8fdfcf1e0c4857cc512870795fe74989f674f40875a5104713ad3560ee1ce61df8fa6b97937703c7434fbf81009890d98f327954c3f7800e39fe5269e5b030b6cd8312bff2c0c44eb435ab1a3d861a0aaf01e992776d135d33e0b02fb28ca2d06c545366f222f55d28514d883e11aa255681ee7f20d61f73a5c20955ea919c557c1b7403401c34ceb76cde309ab991a13a5b6c3535dff4118b1162a22329be3efba01f08d3f0a9a68becd040c09bf6da005aea6c8120af5c6775925af7e042a1847087067c1b8e1527dc2b9ba6fc3082b47a9e42a7eddb980ecda3f66ab5af600b5f92d1db42032b1fb4a11ed8a4732ea3ec73454ebf0b84acd58a545ccc95b9f413044f47b9e40df58a8225651c379ace7b826cfe7f5bd5205917b606cc7fe266702918eb7da26be268e137aea627ba1b849961692ccc8a6fe2d42957601fc95e393a399c6199a2f1c0adf2187711b9e82023872a99fc25c7144131364ddb03d392961080734533c49911fc91e1a2d2b14f7db46d8133a9b2ab3824b53f620b659c877ca458c1c8d0cef838ec467bf67f2060b688fdb0f8ba0948da364a742d87e2eb2173b2cc019d1c76b53505a87ae986cab70db7885056a3989dd1a3abb6f21d3415f3e53aba7ed09b6864a", 0x2000, &(0x7f0000000440)={&(0x7f0000000200)={0x50, 0xffffffffffffffda, 0x0, {0x7, 0x29, 0x7, 0x1001900, 0x5cd, 0x8, 0x3ff, 0x2, 0x0, 0x0, 0x10, 0x5}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

7m30.562072951s ago: executing program 1 (id=1732):
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x40084, 0x0, 0x20, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
syz_mount_image$fuse(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x8820, &(0x7f0000000240)=ANY=[], 0x1, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x52142, 0x0)
io_setup(0x20fe, &(0x7f0000000540)=<r1=>0x0)
io_submit(r1, 0x3, &(0x7f0000002680)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000200)='p', 0x823b, 0x600}])

7m30.314396641s ago: executing program 1 (id=1737):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x1d0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000140)='ramfs\x00', 0x10, 0x0)
syz_mount_image$fuse(&(0x7f0000000000), 0x0, 0x400a8, &(0x7f0000000380)=ANY=[], 0x1, 0x0, 0x0)
symlinkat(&(0x7f0000000080)='.\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00')
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x104000, 0x0)
mount$bind(&(0x7f0000000480)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0/../file0\x00', 0x0, 0xa1c08, 0x0)
mount$fuse(0x0, &(0x7f00000005c0)='./file0/file0\x00', 0x0, 0x88000, 0x0)
mount$9p_unix(&(0x7f0000000100)='./file0/file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x12d7498, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000002100), 0x280449c, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002000), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000002040), &(0x7f0000002080)='./file0\x00', 0x0, &(0x7f00000020c0)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0)

7m29.029685734s ago: executing program 1 (id=1745):
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x4000, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x800)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000002c00)=ANY=[@ANYBLOB="b0"], 0xb0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno', @ANYRESHEX=r2, @ANYBLOB=',privport'])

7m28.46409423s ago: executing program 1 (id=1750):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f00000001c0)={'batadv_slave_0\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000040)={r0, r2, 0x25, 0x2, @void}, 0x10)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@dellink={0x20, 0x11, 0x1, 0x70bd25, 0x25dfdbff, {0x0, 0x0, 0x0, r2, 0x29229, 0x5c56}}, 0x20}}, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000000c0)={@fallback, 0xffffffffffffffff, 0x0, 0x24}, 0x20)

7m28.166474123s ago: executing program 35 (id=1750):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f00000001c0)={'batadv_slave_0\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000040)={r0, r2, 0x25, 0x2, @void}, 0x10)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@dellink={0x20, 0x11, 0x1, 0x70bd25, 0x25dfdbff, {0x0, 0x0, 0x0, r2, 0x29229, 0x5c56}}, 0x20}}, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000000c0)={@fallback, 0xffffffffffffffff, 0x0, 0x24}, 0x20)

6.788439357s ago: executing program 2 (id=3001):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x7, 0x4, 0x4, 0x7ff}, 0x50)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
socket$inet_icmp(0x2, 0x2, 0x1)
r6 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd824498949714ffaac8a6f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb5447000001000000008f2b9000f22425e4097ed62cbc891061017cfa6fa26fa7088c60897d4a6148a1c1e43f00001bde60beac671e8e8fdecb03588aa623fa71f31bf0f871ab5c2ff88afc60027f4e5b5271ed58e835cf0d0000000098b51fe6b1b8d9dbe87dcff414ed000000000000000000000000000000000000000000000000000000b347abe6352a080f8140e5fd10747b6ecdb3540546bf636e3d6e700e5b0500000000000000eb9e1403e6c8f7a187eaf60f3a17f0f046a307a403c19d9829c90bd2114252581567acae715cbe1b57d5cda432c5b910400623d24195405f2e76ccb7b37b41215c184e731fb1"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r7, r6, 0x26}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r7}, &(0x7f0000000000), &(0x7f0000000080)=r4}, 0x20)
sendmsg$inet(r5, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0)

5.785807908s ago: executing program 7 (id=3003):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000280)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount$binderfs(0x0, &(0x7f00000023c0)='./binderfs\x00', &(0x7f0000002400), 0x4000, 0x0)
sendmmsg$unix(r3, &(0x7f0000001a40), 0x0, 0x40)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x2d)
socket$inet_mptcp(0x2, 0x1, 0x106)
sendmsg$nl_route_sched(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x8000)
r7 = fsopen(&(0x7f0000000340)='ocfs2_dlmfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r7, 0x6, 0x0, 0x0, 0x0)
fsmount(r7, 0x0, 0x1)
fsconfig$FSCONFIG_SET_BINARY(r7, 0x2, 0x0, &(0x7f0000000d80), 0x0)
write$UHID_CREATE(r0, &(0x7f0000000000)={0x0, {'syz0\x00', 'syz0\x00', 'syz0\x00', 0x0, 0x0, 0xfffc, 0x4, 0x4000, 0x0, 0xc08}}, 0x120)

4.445106475s ago: executing program 2 (id=3006):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x64}, 0x1, 0x0, 0x0, 0x94}, 0x24000000)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000180)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWSET={0x40, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xb}, @NFTA_SET_EXPRESSIONS={0x4}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x68}, 0x1, 0x0, 0x0, 0x4044050}, 0x40)

3.612946441s ago: executing program 7 (id=3007):
r0 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001440), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="180100"/12], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = semget$private(0x0, 0x5, 0x0)
semctl$GETALL(r4, 0x0, 0xd, 0x0)
ioctl$IMDELTIMER(r0, 0x80044941, 0x0)

3.476359962s ago: executing program 2 (id=3008):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
syz_io_uring_submit(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
semctl$GETALL(0x0, 0x0, 0xd, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)

2.828390874s ago: executing program 5 (id=3012):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r0, 0x9)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r3, @ANYBLOB="010000000000fbdbdf250100000008000200000000000500050000000000080003000100000048000180050002002000000006000100020000000800060003000000080003"], 0x84}}, 0x20000000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0100000000000000000001000000280001801400040000000000000002000000ffffac1414aa060001000a0080000800060003"], 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)

2.7604531s ago: executing program 5 (id=3013):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = io_uring_setup(0x6b9e, &(0x7f0000000240)={0x0, 0xfffffffe, 0x800, 0x103fc, 0x4000159})
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x2b)
sendmsg$rds(r1, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x4400, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

2.75178278s ago: executing program 6 (id=3014):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), 0xffffffffffffffff)
timer_create(0x3, &(0x7f0000000280)={0x0, 0x10, 0x2, @thr={&(0x7f00000003c0)="a159aca44712749c664e853ee8c6bc3bc39272f6d0e9650e2e3db43f255fd0d21c8b42f168b076f591cc38b9aacf77d3b923726803ef063ad074078e71c48a885aa923367f0e43006db54ba772ea817d683622ac6522f3d614b230f21a02c2ed7280d131e89592b95e399749202e2a44368f9f4626bbc35e2445802ebb220bb1c4fcb8c72285a31ee70f7f6f3be21cef58a1e212ad31e2b1fb1a4dded4e7f2a3ae0590ce68a4ae5b906fb63a925c442a1f65559cea4d843fe53fde123b0c25a970e5e650df835ed018c3d6dcd142ac6096168a11912aebaf5dc5952392e50b0b8e84b06f4de7ca11f11bb55ef975717972a0a18690e66f", &(0x7f00000001c0)="3cc73f48ce7daf743e385e"}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r2}, 0x10)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x2a, &(0x7f00000015c0)=ANY=[], 0x0)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="17092cbd700000000000010000000500070000000000080009000000000008000a0000200000060002000000000014001f0000000000000000000000000000000000140020000000000000000000400000000000000106001b004e"], 0x64}, 0x1, 0x0, 0x0, 0x44}, 0x0)

2.423855846s ago: executing program 2 (id=3015):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
syz_clone(0x80842111, 0x0, 0x0, 0x0, 0x0, 0x0)
recvmsg(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}, 0x40010002)

2.414068987s ago: executing program 7 (id=3016):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0900000004000000dd0000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000750000001801000020646c2500000000002020207b1af8ff00000000bfa10000000000000701"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x16, 0x4, &(0x7f0000000480)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x7b}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0}, &(0x7f0000000080), &(0x7f0000000180)}, 0x20)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x75, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0xa4}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x80)

1.928537575s ago: executing program 5 (id=3017):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0x9, 0x4, 0x6, 0xb}, 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0b00000008000000010001000900000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b70300000000ff80850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000380)={r1}, 0xc)

1.644005058s ago: executing program 5 (id=3018):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000700)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={@cgroup=r1, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)

1.61721847s ago: executing program 7 (id=3019):
socket(0x1e, 0x4, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r0 = getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f00000008c0)='./bus\x00', 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r4 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r4, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
linkat(r4, &(0x7f0000000100)='./file1\x00', r4, &(0x7f0000000240)='./file0\x00', 0x0)
rename(&(0x7f0000000180)='./file1\x00', &(0x7f0000000200)='./file0\x00')

1.515246179s ago: executing program 6 (id=3020):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000010000000180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000001c0)='percpu_alloc_percpu\x00', r0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x1e, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)

1.364490021s ago: executing program 6 (id=3021):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x104000, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x1c0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x29, 0x24, 0x0, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x1805406, 0x0)
mount$fuse(0x0, &(0x7f00000005c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
unshare(0x22020400)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x2a05004, 0x0)
umount2(&(0x7f0000000180)='./file0\x00', 0xb)

1.364261851s ago: executing program 5 (id=3022):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GET_LEASE(r0, 0xc01064c8, &(0x7f0000000340)={0x0, 0x0, 0x0})
r1 = syz_open_dev$dri(&(0x7f0000000000), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000200)={0x0, &(0x7f0000000140)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r1, 0xc02064b9, &(0x7f0000000280)={&(0x7f0000000400)=[0x0], &(0x7f0000000280), 0x1, r2})
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000040)={0x0, 0x1, &(0x7f0000000380)=[r2], &(0x7f00000003c0)=[0x7], &(0x7f0000000300)=[0x0], &(0x7f0000000340)})

1.24030051s ago: executing program 6 (id=3023):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_subtree(r0, &(0x7f0000000200), 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f00000000c0)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r3, &(0x7f0000000c40), 0x12)
write$cgroup_subtree(r1, &(0x7f0000000600)=ANY=[@ANYBLOB='+cpu'], 0x5)

1.193038965s ago: executing program 5 (id=3024):
r0 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001440), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="180100"/12], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = semget$private(0x0, 0x5, 0x0)
semctl$GETALL(r4, 0x0, 0xd, 0x0)
ioctl$IMDELTIMER(r0, 0x80044941, 0x0)

1.104553421s ago: executing program 6 (id=3025):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x4f}, @call={0x85, 0x0, 0x0, 0x7d}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x4a)

245.72731ms ago: executing program 2 (id=3026):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000000), 0xfdef)

214.441742ms ago: executing program 7 (id=3027):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0x25c, &(0x7f0000000440)=ANY=[@ANYBLOB="180200000000000000000000000000001801000020646c2500000000002020007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000180)=r0, 0x4)
sendmsg$inet(r2, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x20000000)

555.49µs ago: executing program 6 (id=3028):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x4, 0xdd, 0xa}, 0x50)

198.92µs ago: executing program 7 (id=3029):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
timer_create(0x3, &(0x7f0000000280)={0x0, 0x10, 0x2, @thr={&(0x7f00000003c0)="a159aca44712749c664e853ee8c6bc3bc39272f6d0e9650e2e3db43f255fd0d21c8b42f168b076f591cc38b9aacf77d3b923726803ef063ad074078e71c48a885aa923367f0e43006db54ba772ea817d683622ac6522f3d614b230f21a02c2ed7280d131e89592b95e399749202e2a44368f9f4626bbc35e2445802ebb220bb1c4fcb8c72285a31ee70f7f6f3be21cef58a1e212ad31e2b1fb1a4dded4e7f2a3ae0590ce68a4ae5b906fb63a925c442a1f65559cea4d843fe53fde123b0c25a970e5e650df835ed018c3d6dcd142ac6096168a11912aebaf5dc5952392e50b0b8e84b06f4de7ca11f11bb55ef975717972a0a18690e66f", &(0x7f00000001c0)="3cc73f48ce7daf743e385e"}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x2a, &(0x7f00000015c0)=ANY=[], 0x0)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16, @ANYBLOB="17092cbd700000000000010000000500070000000000080009000000000008000a0000200000060002000000000014001f0000000000000000000000000000000000140020000000000000000000400000000000000106001b004e"], 0x64}, 0x1, 0x0, 0x0, 0x44}, 0x0)

0s ago: executing program 2 (id=3030):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000011000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @cgroup_sockopt=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x50)

kernel console output (not intermixed with test programs):

  332.608006][ T6775] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  332.629305][ T8842] loop1: detected capacity change from 0 to 512
[  332.732948][ T8842] EXT4-fs (loop1): 1 truncate cleaned up
[  332.746276][ T8842] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  332.960313][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.144016][ T7466] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.171408][ T8856] loop1: detected capacity change from 0 to 128
[  333.207803][ T8856] EXT4-fs: Ignoring removed nobh option
[  333.428581][ T8856] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  333.513069][ T8868] fuse: Bad value for 'fd'
[  333.518484][ T8856] ext4 filesystem being mounted at /175/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  334.778401][ T5790] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  334.822977][ T8885] loop6: detected capacity change from 0 to 512
[  334.876834][ T8885] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  334.985763][ T8885] EXT4-fs error (device loop6): ext4_validate_block_bitmap:430: comm syz.6.722: bg 0: block 5: invalid block bitmap
[  334.988767][ T8885] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6642: Corrupt filesystem
[  334.991581][ T8885] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #11: comm syz.6.722: invalid indirect mapped block 3 (level 2)
[  334.993602][ T8885] EXT4-fs (loop6): 2 truncates cleaned up
[  334.995057][ T8885] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  335.084740][ T8891] loop5: detected capacity change from 0 to 512
[  335.196220][ T8891] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  335.224543][ T8891] ext4 filesystem being mounted at /94/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  335.267635][ T7466] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  335.303073][ T6775] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  335.685825][ T8904] loop5: detected capacity change from 0 to 512
[  335.814479][ T8904] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  335.929109][ T8904] ext4 filesystem being mounted at /95/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  335.992400][ T8917] loop1: detected capacity change from 0 to 128
[  336.017416][ T8917] EXT4-fs: Ignoring removed nobh option
[  336.076711][ T8917] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  336.173563][ T8917] ext4 filesystem being mounted at /179/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  336.507972][ T6775] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  337.422325][ T5790] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  337.452017][ T8941] fuse: Bad value for 'fd'
[  337.467655][ T8941] 9pnet_fd: Insufficient options for proto=fd
[  338.308706][ T8972] loop1: detected capacity change from 0 to 128
[  338.366678][ T8972] EXT4-fs: Ignoring removed nobh option
[  338.468881][ T8972] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  338.493215][ T8972] ext4 filesystem being mounted at /182/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  339.633551][ T5790] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  339.647322][ T8989] 9pnet_fd: Insufficient options for proto=fd
[  339.741782][ T8992] 9pnet_fd: Insufficient options for proto=fd
[  339.928594][ T8997] loop1: detected capacity change from 0 to 1024
[  339.988433][ T8997] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  340.049487][ T8997] ext4 filesystem being mounted at /183/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  340.241582][   T48] EXT4-fs error (device loop1): ext4_map_blocks:718: inode #15: comm kworker/u4:3: lblock 0 mapped to illegal pblock 0 (length 1)
[  340.306827][   T48] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[  340.340432][   T48] EXT4-fs (loop1): This should not happen!! Data will be lost
[  340.340432][   T48] 
[  340.363992][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  340.851807][ T9026] 9pnet_fd: Insufficient options for proto=fd
[  341.062319][ T9029] 9pnet_fd: Insufficient options for proto=fd
[  341.932122][ T9038] loop5: detected capacity change from 0 to 512
[  342.058745][ T9038] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  342.119892][ T9038] ext4 filesystem being mounted at /107/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  342.298434][ T6775] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  342.552845][ T9054] loop6: detected capacity change from 0 to 1024
[  342.586564][ T9054] EXT4-fs (loop6): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  342.616784][ T9054] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  342.647663][ T9054] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  342.686094][ T9054] EXT4-fs error (device loop6): ext4_ext_check_inode:520: inode #3: comm syz.6.771: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 2, max 15(4), depth 0(0)
[  342.744560][ T9054] EXT4-fs (loop6): no journal found
[  342.760077][ T9054] EXT4-fs (loop6): can't get journal size
[  342.783234][ T9062] 9pnet_fd: Insufficient options for proto=fd
[  342.797427][ T9054] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  342.857117][ T9064] loop5: detected capacity change from 0 to 1024
[  342.874842][ T9064] EXT4-fs: Ignoring removed bh option
[  342.883536][ T9064] EXT4-fs: Ignoring removed nomblk_io_submit option
[  342.923587][ T7466] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  342.962344][ T9064] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  343.210653][ T6775] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  344.432597][ T9088] loop1: detected capacity change from 0 to 512
[  344.600652][ T9088] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  344.676714][ T9088] ext4 filesystem being mounted at /190/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  344.735050][ T9097] 9pnet_fd: Insufficient options for proto=fd
[  344.762619][ T9097] sctp: [Deprecated]: syz.5.779 (pid 9097) Use of struct sctp_assoc_value in delayed_ack socket option.
[  344.762619][ T9097] Use struct sctp_sack_info instead
[  345.067304][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.567490][ T9116] bridge0: port 2(bridge_slave_1) entered disabled state
[  345.626091][ T9116] bridge0: port 2(bridge_slave_1) entered blocking state
[  345.634410][ T9116] bridge0: port 2(bridge_slave_1) entered forwarding state
[  346.702999][ T9129] loop1: detected capacity change from 0 to 512
[  346.766085][ T9129] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.790: casefold flag without casefold feature
[  346.797454][ T9129] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.790: couldn't read orphan inode 15 (err -117)
[  346.883573][ T9129] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  347.005751][ T9129] syz.1.790 (pid 9129) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  347.157004][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  347.228929][ T9145] kernel read not supported for file /!se÷ih,i¬PælNnuxselinux (pid: 9145 comm: syz.6.795)
[  347.273042][   T28] audit: type=1800 audit(1756373869.175:12): pid=9145 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.795" name=217365F769682C1769AC50E66C4E6E757873656C696E7578 dev="mqueue" ino=16632 res=0 errno=0
[  347.859242][ T9162] loop1: detected capacity change from 0 to 512
[  348.061461][ T9162] EXT4-fs (loop1): 1 orphan inode deleted
[  348.074183][ T9162] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  348.088404][ T9162] ext4 filesystem being mounted at /195/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  348.155016][ T3490] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  348.435882][ T3490] EXT4-fs error (device loop1): ext4_release_dquot:6974: comm kworker/u4:9: Failed to release dquot type 1
[  350.583270][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  351.315243][ T9216] loop1: detected capacity change from 0 to 128
[  351.340241][ T9216] EXT4-fs: Ignoring removed nobh option
[  351.377038][ T9216] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  351.407941][ T9216] ext4 filesystem being mounted at /198/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  352.543977][ T5790] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  353.406671][ T9264] 9pnet_fd: Insufficient options for proto=fd
[  354.606742][ T9280] fuse: Bad value for 'fd'
[  354.680316][ T9287] loop6: detected capacity change from 0 to 512
[  354.697558][ T9285] loop1: detected capacity change from 0 to 1024
[  354.705048][ T9285] EXT4-fs: Ignoring removed orlov option
[  354.742556][ T9285] EXT4-fs: Ignoring removed nomblk_io_submit option
[  354.764211][ T9287] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  354.854424][ T9287] ext4 filesystem being mounted at /79/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  354.862709][ T9285] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  355.038922][ T7466] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  355.051778][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  355.272047][ T9311] loop1: detected capacity change from 0 to 1024
[  355.292407][ T9311] EXT4-fs: Ignoring removed oldalloc option
[  355.336045][ T9311] EXT4-fs: Ignoring removed orlov option
[  355.366930][ T9311] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  355.447816][ T9311] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  355.546683][ T5803] Bluetooth: hci3: command 0x0406 tx timeout
[  355.720100][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  356.368500][ T9352] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  356.699935][ T9360] netlink: 'syz.1.854': attribute type 7 has an invalid length.
[  356.708011][ T9360] netlink: 'syz.1.854': attribute type 8 has an invalid length.
[  356.722111][ T9360] netlink: 'syz.1.854': attribute type 13 has an invalid length.
[  357.221570][ T9376] loop1: detected capacity change from 0 to 1024
[  357.247143][ T9376] EXT4-fs: Ignoring removed bh option
[  357.280070][ T9375] loop6: detected capacity change from 0 to 2048
[  357.287597][ T9376] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  357.335417][ T9376] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  357.381181][ T9375]  loop6: p1 p2 < > p3 p4 < p5 >
[  357.397533][ T9375] loop6: partition table partially beyond EOD, truncated
[  357.404849][ T9375] loop6: p1 start 8388607 is beyond EOD, truncated
[  357.412075][ T9375] loop6: p2 start 4294902784 is beyond EOD, truncated
[  357.419749][ T9375] loop6: p3 start 3724543488 is beyond EOD, truncated
[  357.432521][ T9375] loop6: p5 start 8388607 is beyond EOD, truncated
[  357.497550][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  357.693833][ T5801] udevd[5801]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[  357.722821][ T9389] loop6: detected capacity change from 0 to 512
[  357.793459][ T9393] loop1: detected capacity change from 0 to 1024
[  357.813309][ T9389] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  357.838024][ T9393] EXT4-fs: Ignoring removed oldalloc option
[  357.858150][ T9393] EXT4-fs: Ignoring removed orlov option
[  357.867871][ T9389] ext4 filesystem being mounted at /82/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  357.900148][ T9393] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  357.939694][ T9393] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  358.017080][ T7466] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  358.106960][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  359.126113][ T9426] block device autoloading is deprecated and will be removed.
[  359.331239][ T9436] loop1: detected capacity change from 0 to 512
[  359.368146][ T9436] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.885: casefold flag without casefold feature
[  359.407033][ T9436] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.885: couldn't read orphan inode 15 (err -117)
[  359.487659][ T9436] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  359.632235][ T9436] overlayfs: fs on './bus' does not support file handles, falling back to index=off,nfs_export=off.
[  359.658974][ T9436] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[  359.860100][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  359.989704][ T9451] Zero length message leads to an empty skb
[  360.052196][ T9455] loop1: detected capacity change from 0 to 512
[  360.154881][ T9455] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  360.221127][ T9455] ext4 filesystem being mounted at /216/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  360.535250][ T9470] loop6: detected capacity change from 0 to 1024
[  360.601729][ T9470] EXT4-fs (loop6): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  360.618365][ T9470] ext4 filesystem being mounted at /84/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  360.754799][ T9470] EXT4-fs error (device loop6): ext4_map_blocks:718: inode #15: block 3: comm syz.6.898: lblock 3 mapped to illegal pblock 3 (length 3)
[  360.857150][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  360.879743][ T9470] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  360.892258][ T9470] EXT4-fs (loop6): This should not happen!! Data will be lost
[  360.892258][ T9470] 
[  360.910908][ T9481] EXT4-fs error (device loop6): ext4_map_blocks:718: inode #15: block 7: comm syz.6.898: lblock 7 mapped to illegal pblock 7 (length 9)
[  360.975586][ T9481] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 7 with max blocks 9 with error 117
[  361.009411][ T9481] EXT4-fs (loop6): This should not happen!! Data will be lost
[  361.009411][ T9481] 
[  361.166408][ T9490] EXT4-fs error (device loop6): ext4_ext_remove_space:2929: inode #15: comm syz.6.898: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[  361.270777][ T9490] EXT4-fs error (device loop6) in ext4_setattr:5645: Corrupt filesystem
[  361.306384][ T9495] loop1: detected capacity change from 0 to 512
[  361.399309][ T9495] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  361.421955][ T7466] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  361.445198][ T9495] ext4 filesystem being mounted at /218/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  361.652741][ T9506] 9pnet_fd: Insufficient options for proto=fd
[  362.085021][ T9512] loop6: detected capacity change from 0 to 512
[  362.194606][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.204089][ T9512] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  362.227144][ T9512] ext4 filesystem being mounted at /86/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  362.979267][ T7466] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  363.191485][ T9518] netlink: 'syz.5.916': attribute type 1 has an invalid length.
[  363.197308][ T9522] loop1: detected capacity change from 0 to 512
[  363.201550][ T9521] loop6: detected capacity change from 0 to 128
[  363.236633][ T9521] EXT4-fs: Ignoring removed nobh option
[  363.237566][ T9518] 8021q: adding VLAN 0 to HW filter on device bond1
[  363.279887][ T9524] vlan2: entered allmulticast mode
[  363.328401][ T9521] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  363.383782][ T9521] ext4 filesystem being mounted at /87/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  363.414001][ T9524] bond1: entered allmulticast mode
[  363.700203][ T9518] bond1: (slave gretap1): making interface the new active one
[  363.711413][ T9518] gretap1: entered allmulticast mode
[  363.721121][ T9518] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  364.057259][ T9518] syz.5.916 (9518) used greatest stack depth: 19920 bytes left
[  364.555966][ T9536] 9pnet_fd: Insufficient options for proto=fd
[  364.658750][ T7466] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  364.959265][ T9547] loop6: detected capacity change from 0 to 512
[  365.199347][ T9547] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  365.226963][ T9547] ext4 filesystem being mounted at /88/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  365.470851][ T9549] xt_CT: You must specify a L4 protocol and not use inversions on it
[  365.748101][ T7466] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  365.931444][ T9562] loop6: detected capacity change from 0 to 128
[  366.539220][ T9567] netlink: 'syz.6.930': attribute type 15 has an invalid length.
[  366.572104][ T9567] netlink: 24 bytes leftover after parsing attributes in process `syz.6.930'.
[  368.078644][ T9583] loop6: detected capacity change from 0 to 1024
[  368.107074][ T9583] EXT4-fs: Ignoring removed oldalloc option
[  368.113119][ T9583] EXT4-fs: Ignoring removed orlov option
[  368.129158][ T9583] EXT4-fs (loop6): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  368.200489][ T9583] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  368.400708][ T7466] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  368.593800][ T9593] loop6: detected capacity change from 0 to 128
[  368.631063][ T9593] EXT4-fs (loop6): Test dummy encryption mode enabled
[  368.667389][ T9593] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  368.710740][ T9593] ext4 filesystem being mounted at /94/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  369.079615][ T7466] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  369.823810][ T9611] loop6: detected capacity change from 0 to 512
[  370.520224][ T9611] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  370.532982][ T9611] ext4 filesystem being mounted at /96/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  370.789546][ T7466] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  371.004799][ T9625] xt_CT: You must specify a L4 protocol and not use inversions on it
[  371.120638][ T9636] loop6: detected capacity change from 0 to 128
[  371.420866][ T9641] syz.6.957 uses obsolete (PF_INET,SOCK_PACKET)
[  371.572815][ T9643] loop6: detected capacity change from 0 to 1024
[  371.584578][ T9643] EXT4-fs: Ignoring removed orlov option
[  371.604593][ T9643] EXT4-fs: Ignoring removed mblk_io_submit option
[  371.632536][ T9643] EXT4-fs (loop6): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  371.672921][ T9643] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  371.795418][ T9643] EXT4-fs (loop6): shut down requested (0)
[  372.540255][ T7466] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.566437][ T9655] loop1: detected capacity change from 0 to 1024
[  372.586428][ T9655] EXT4-fs: Ignoring removed oldalloc option
[  372.592457][ T9655] EXT4-fs: Ignoring removed orlov option
[  372.626700][ T9655] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  372.691981][ T9655] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  372.860109][ T9661] loop6: detected capacity change from 0 to 128
[  373.059916][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  373.427956][ T9667] xt_CT: You must specify a L4 protocol and not use inversions on it
[  374.409230][ T9678] loop6: detected capacity change from 0 to 128
[  374.427398][ T9681] loop1: detected capacity change from 0 to 128
[  374.470804][ T5798] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  374.481461][ T9681] EXT4-fs: Ignoring removed nobh option
[  374.580093][ T9681] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  374.680018][ T9681] ext4 filesystem being mounted at /229/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  375.877491][ T5790] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  376.129385][ T9699] xt_CT: You must specify a L4 protocol and not use inversions on it
[  376.759297][ T9720] loop1: detected capacity change from 0 to 128
[  376.773579][ T9720] EXT4-fs: Ignoring removed nobh option
[  376.839216][ T9720] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  376.866671][ T9720] ext4 filesystem being mounted at /232/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  376.891174][ T9726] bridge0: port 2(bridge_slave_1) entered disabled state
[  376.900096][ T9726] bridge0: port 1(bridge_slave_0) entered disabled state
[  378.012046][ T5790] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  378.125983][ T9739] overlayfs: failed to clone upperpath
[  378.283959][ T9748] netlink: 'syz.2.998': attribute type 1 has an invalid length.
[  378.322897][ T9748] 8021q: adding VLAN 0 to HW filter on device bond1
[  378.432433][ T9748] veth3: entered promiscuous mode
[  378.451129][ T9748] bond1: (slave veth3): Enslaving as an active interface with a down link
[  378.479667][ T9750] vlan2: entered allmulticast mode
[  378.485121][ T9750] bond1: entered allmulticast mode
[  378.500910][ T9750] bond1: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  378.634775][ T9754] xt_CT: You must specify a L4 protocol and not use inversions on it
[  379.073396][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  379.080090][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  383.217410][ T9838] xt_CT: You must specify a L4 protocol and not use inversions on it
[  383.680367][ T9846] loop1: detected capacity change from 0 to 1024
[  383.693063][ T9846] EXT4-fs: Ignoring removed oldalloc option
[  383.707877][ T9846] EXT4-fs: Ignoring removed orlov option
[  383.719474][ T9846] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  383.760575][ T9846] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  383.989288][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  386.247389][ T9924] loop1: detected capacity change from 0 to 512
[  386.331864][ T9924] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  386.394952][ T9924] ext4 filesystem being mounted at /243/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  386.822234][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  386.889337][ T9940] xt_CT: You must specify a L4 protocol and not use inversions on it
[  388.409842][ T9984] loop1: detected capacity change from 0 to 512
[  388.483550][ T9984] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  388.510363][ T9984] ext4 filesystem being mounted at /246/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  388.644096][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  388.942483][ T9993] loop1: detected capacity change from 0 to 512
[  389.021248][ T9993] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  389.060140][ T9993] ext4 filesystem being mounted at /248/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  389.184228][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  390.541169][T10014] fuse: Bad value for 'fd'
[  390.709166][ T5948] kernel write not supported for file /712/clear_refs (pid: 5948 comm: kworker/1:5)
[  390.858893][T10028] loop1: detected capacity change from 0 to 128
[  390.880828][T10028] EXT4-fs: Ignoring removed nobh option
[  390.926997][T10028] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  390.964780][T10028] ext4 filesystem being mounted at /252/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  391.256044][T10041] fuse: Bad value for 'fd'
[  392.554124][T10066] fuse: Bad value for 'fd'
[  393.957665][ T5790] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  394.694185][T10103] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1134'.
[  396.963693][T10131] xt_CT: You must specify a L4 protocol and not use inversions on it
[  397.130375][T10135] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1146'.
[  398.939305][T10162] loop1: detected capacity change from 0 to 512
[  399.112394][T10164] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1155'.
[  399.868578][T10162] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  399.924882][T10162] ext4 filesystem being mounted at /260/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  400.449993][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  400.536241][T10177] fuse: Bad value for 'fd'
[  401.489639][T10189] xt_CT: You must specify a L4 protocol and not use inversions on it
[  402.196236][T10197] loop1: detected capacity change from 0 to 512
[  402.320113][T10200] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1166'.
[  402.551918][T10197] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  402.898037][T10197] ext4 filesystem being mounted at /263/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  403.209346][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  403.817127][T10220] loop1: detected capacity change from 0 to 128
[  403.843351][T10220] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  403.973546][T10220] ext4 filesystem being mounted at /265/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  404.461907][ T5790] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  404.765198][T10225] fuse: Bad value for 'fd'
[  404.878539][T10228] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1177'.
[  406.339600][T10259] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1188'.
[  408.253407][T10288] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1202'.
[  410.068151][T10322] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1213'.
[  410.289129][T10323] xt_CT: You must specify a L4 protocol and not use inversions on it
[  411.983166][T10345] loop1: detected capacity change from 0 to 764
[  412.643032][T10363] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1227'.
[  413.553959][T10368] Driver unsupported XDP return value 0 on prog  (id 239) dev N/A, expect packet loss!
[  414.683624][T10399] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1251'.
[  416.863201][T10425] loop1: detected capacity change from 0 to 128
[  416.880139][T10425] EXT4-fs: Ignoring removed nobh option
[  416.933683][T10425] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  416.961965][T10428] mmap: syz.5.1262 (10428) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  416.995395][T10425] ext4 filesystem being mounted at /283/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  418.860530][ T5790] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  419.349367][T10476] xt_CT: You must specify a L4 protocol and not use inversions on it
[  423.253658][T10548] xt_CT: You must specify a L4 protocol and not use inversions on it
[  424.494725][T10572] fuse: Bad value for 'fd'
[  425.791039][T10594] fuse: Bad value for 'fd'
[  427.051223][T10623] loop1: detected capacity change from 0 to 512
[  427.182365][T10623] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  427.215994][T10623] ext4 filesystem being mounted at /289/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  427.291926][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  427.603849][T10640] fuse: Bad value for 'fd'
[  427.871535][T10646] xt_CT: You must specify a L4 protocol and not use inversions on it
[  431.397830][T10698] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1362'.
[  432.835974][T10700] xt_CT: You must specify a L4 protocol and not use inversions on it
[  433.953059][T10711] loop1: detected capacity change from 0 to 128
[  433.971338][T10711] EXT4-fs: Ignoring removed nobh option
[  434.026875][T10711] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  434.045189][T10717] af_packet: tpacket_rcv: packet too big, clamped from 114 to 4294967272. macoff=96
[  434.050391][T10711] ext4 filesystem being mounted at /294/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  434.928854][ T5790] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  437.616513][T10756] xt_CT: You must specify a L4 protocol and not use inversions on it
[  438.594122][T10770] 8021q: adding VLAN 0 to HW filter on device bond3
[  440.513716][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  440.520809][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  440.791252][T10809] loop1: detected capacity change from 0 to 4096
[  440.820180][T10809] EXT4-fs (loop1): Unsupported encryption level 255
[  441.012729][T10814] xt_CT: You must specify a L4 protocol and not use inversions on it
[  442.029599][T10821] loop1: detected capacity change from 0 to 2048
[  442.062113][T10821] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  442.244500][T10821] ext4 filesystem being mounted at /305/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  442.748654][T10821] fs-verity: sha512 using implementation "sha512-avx2"
[  442.938325][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.243970][T10843] loop1: detected capacity change from 0 to 128
[  443.261518][T10843] EXT4-fs: Ignoring removed nobh option
[  443.453447][T10843] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  443.484581][T10843] ext4 filesystem being mounted at /307/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  444.411906][ T5790] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  444.459407][T10857] netlink: 'syz.5.1424': attribute type 1 has an invalid length.
[  444.606766][T10857] 8021q: adding VLAN 0 to HW filter on device bond2
[  444.661412][T10860] bond2: (slave gretap2): making interface the new active one
[  444.672307][T10860] bond2: (slave gretap2): Enslaving as an active interface with an up link
[  446.122995][T10897] loop1: detected capacity change from 0 to 512
[  446.193918][T10897] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  446.210312][T10897] ext4 filesystem being mounted at /311/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  446.342105][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  448.358870][T10952] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1461'.
[  450.020668][T10978] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[  451.987436][T11024] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1483'.
[  453.383114][T11048] loop1: detected capacity change from 0 to 2048
[  453.476628][T11048]  loop1: p2 p3 p7
[  453.673983][T11063] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1500'.
[  453.698487][T10728] udevd[10728]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[  453.713574][T10514] udevd[10514]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[  453.764701][T11068] udevd[11068]: inotify_add_watch(7, /dev/loop1p7, 10) failed: No such file or directory
[  459.320269][T11161] loop1: detected capacity change from 0 to 128
[  459.327683][T11161] EXT4-fs: Ignoring removed nobh option
[  460.006873][T11161] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  460.087466][T11161] ext4 filesystem being mounted at /335/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  460.232420][T11170] overlayfs: failed to clone upperpath
[  460.446527][T11173] bond_slave_0: entered promiscuous mode
[  460.452807][T11173] bond_slave_1: entered promiscuous mode
[  460.473744][T11173] macvlan2: entered allmulticast mode
[  460.758535][T11173] bond0: entered allmulticast mode
[  460.949017][T11173] bond_slave_0: entered allmulticast mode
[  460.966343][T11173] bond_slave_1: entered allmulticast mode
[  460.992843][T11173] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  461.077420][T11181] (unnamed net_device) (uninitialized): option arp_validate: invalid value (11)
[  461.239778][ T5790] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  463.740051][T11233] loop1: detected capacity change from 0 to 128
[  465.338835][T11263] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1573'.
[  467.639218][T11301] 9pnet_fd: Insufficient options for proto=fd
[  467.734698][T11303] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1587'.
[  469.791243][T11328] loop1: detected capacity change from 0 to 136
[  470.347426][T11347] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1603'.
[  470.621208][T11348] loop1: detected capacity change from 0 to 128
[  470.902811][T11348] EXT4-fs: Ignoring removed nobh option
[  470.974824][T11348] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  471.058166][T11348] ext4 filesystem being mounted at /349/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  472.055926][T11368] 9pnet_fd: Insufficient options for proto=fd
[  472.173795][ T5790] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  472.338383][T11380] xt_CT: You must specify a L4 protocol and not use inversions on it
[  472.710804][T11389] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1621'.
[  474.603554][T11412] loop1: detected capacity change from 0 to 1024
[  474.691527][T11412] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  474.978909][T11425] 9pnet_fd: Insufficient options for proto=fd
[  475.056624][T11426] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1637'.
[  475.843995][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  477.096839][T11447] 9pnet_fd: Insufficient options for proto=fd
[  477.468297][T11459] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1650'.
[  478.437133][T11480] 9pnet_fd: Insufficient options for proto=fd
[  479.540908][T11494] netlink: 'syz.1.1664': attribute type 8 has an invalid length.
[  481.409699][T11529] loop1: detected capacity change from 0 to 164
[  481.485575][T10514] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  481.947964][T11549] loop1: detected capacity change from 0 to 128
[  481.967498][T11549] EXT4-fs: Ignoring removed nobh option
[  482.847345][T11553] overlayfs: disabling nfs_export due to verity=on
[  482.853938][T11553] overlayfs: missing 'lowerdir'
[  482.887158][T11549] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  482.933502][T11549] ext4 filesystem being mounted at /365/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  484.009347][ T5790] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  485.150150][T11588] 9pnet_fd: Insufficient options for proto=fd
[  486.774991][T11609] 9pnet_fd: Insufficient options for proto=fd
[  488.893908][T11644] 9pnet_fd: Insufficient options for proto=fd
[  490.522134][T11670] 9pnet_fd: Insufficient options for proto=fd
[  492.508036][ T6211] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  492.691498][ T6211] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  492.873269][ T6211] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  493.153095][T11716] team0: No ports can be present during mode change
[  493.823245][ T6211] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  494.028612][T11725] 9pnet_fd: Insufficient options for proto=fd
[  494.166597][ T5803] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  494.195183][ T5803] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  494.207047][ T5803] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  494.216895][ T5803] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  494.224888][ T5803] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  494.234530][ T5803] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  494.578239][T11744] team0: No ports can be present during mode change
[  494.919806][T11752] 9pnet_fd: Insufficient options for proto=fd
[  496.355687][ T5102] Bluetooth: hci0: command tx timeout
[  496.512133][T11787] team0: No ports can be present during mode change
[  496.525942][T11726] chnl_net:caif_netlink_parms(): no params data found
[  497.306790][T11798] 9pnet_fd: Insufficient options for proto=fd
[  497.547992][T11808] trusted_key: encrypted_key: keylen parameter is missing
[  497.790006][T11726] bridge0: port 1(bridge_slave_0) entered blocking state
[  497.806778][T11726] bridge0: port 1(bridge_slave_0) entered disabled state
[  497.820769][T11726] bridge_slave_0: entered allmulticast mode
[  497.839640][T11726] bridge_slave_0: entered promiscuous mode
[  497.854852][T11818] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1786'.
[  497.889521][T11818] syz_tun: entered promiscuous mode
[  498.013157][T11726] bridge0: port 2(bridge_slave_1) entered blocking state
[  498.024371][T11825] 9pnet_fd: Insufficient options for proto=fd
[  498.038776][T11726] bridge0: port 2(bridge_slave_1) entered disabled state
[  498.063862][T11726] bridge_slave_1: entered allmulticast mode
[  498.089407][T11726] bridge_slave_1: entered promiscuous mode
[  498.435238][T11726] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  498.503948][ T5102] Bluetooth: hci0: command tx timeout
[  499.228196][T11726] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  499.501808][ T6211] hsr_slave_0: left promiscuous mode
[  499.552081][ T6211] hsr_slave_1: left promiscuous mode
[  499.565374][ T6211] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  499.588964][ T6211] batman_adv: batadv0: Removing interface: batadv_slave_0
[  499.609697][ T6211] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  499.618811][ T6211] batman_adv: batadv0: Removing interface: batadv_slave_1
[  499.632696][ T6211] bridge_slave_1: left allmulticast mode
[  499.639274][ T6211] bridge_slave_1: left promiscuous mode
[  499.650710][ T6211] bridge0: port 2(bridge_slave_1) entered disabled state
[  499.671798][ T6211] bridge_slave_0: left allmulticast mode
[  499.682494][ T6211] bridge_slave_0: left promiscuous mode
[  499.701102][ T6211] bridge0: port 1(bridge_slave_0) entered disabled state
[  499.765302][ T6211] veth1_macvtap: left promiscuous mode
[  499.771580][ T6211] veth0_macvtap: left promiscuous mode
[  499.777954][ T6211] veth1_vlan: left promiscuous mode
[  499.789225][ T6211] veth0_vlan: left promiscuous mode
[  500.203784][ T6211] bond3 (unregistering): Released all slaves
[  500.585602][ T5102] Bluetooth: hci0: command tx timeout
[  500.610440][ T6211] bond2 (unregistering): Released all slaves
[  501.381173][T11878] "syz.6.1806" (11878) uses obsolete ecb(arc4) skcipher
[  501.590857][ T6211] bond1 (unregistering): Released all slaves
[  501.957149][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  501.964214][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  502.162958][ T6211] team0 (unregistering): Port device team_slave_1 removed
[  502.217104][ T6211] team0 (unregistering): Port device team_slave_0 removed
[  502.263100][ T6211] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  502.317496][ T6211] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  502.670857][ T5102] Bluetooth: hci0: command tx timeout
[  503.067758][ T6211] bond0 (unregistering): Released all slaves
[  503.202307][T11726] team0: Port device team_slave_0 added
[  503.379906][T11898] bridge0: port 1(bridge_slave_0) entered disabled state
[  503.427458][T11898] bridge0: port 2(bridge_slave_1) entered disabled state
[  503.440577][T11916] trusted_key: encrypted_key: master key parameter is missing
[  503.572513][T11898] ip6gre1: left allmulticast mode
[  503.578818][T11898] ip6gre2: left allmulticast mode
[  503.590668][T11898] ip6gre3: left allmulticast mode
[  503.596967][T11898] ip6gre4: left allmulticast mode
[  503.614080][T11726] team0: Port device team_slave_1 added
[  503.798911][T11726] batman_adv: batadv0: Adding interface: batadv_slave_0
[  503.825887][T11726] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  503.904323][T11726] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  503.939064][T11726] batman_adv: batadv0: Adding interface: batadv_slave_1
[  503.952674][T11726] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  504.153994][T11726] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  505.344125][T11726] hsr_slave_0: entered promiscuous mode
[  505.371711][T11726] hsr_slave_1: entered promiscuous mode
[  506.897808][T11726] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  506.909802][T11726] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  506.951393][T11726] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  507.305363][T11726] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  507.821049][T11726] 8021q: adding VLAN 0 to HW filter on device bond0
[  507.889733][T11726] 8021q: adding VLAN 0 to HW filter on device team0
[  507.930518][ T6223] bridge0: port 1(bridge_slave_0) entered blocking state
[  507.937859][ T6223] bridge0: port 1(bridge_slave_0) entered forwarding state
[  508.130640][ T6223] bridge0: port 2(bridge_slave_1) entered blocking state
[  508.137943][ T6223] bridge0: port 2(bridge_slave_1) entered forwarding state
[  511.479599][T12035] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1855'.
[  512.031589][T11726] 8021q: adding VLAN 0 to HW filter on device batadv0
[  515.364346][T11726] veth0_vlan: entered promiscuous mode
[  515.434981][T11726] veth1_vlan: entered promiscuous mode
[  515.528447][T11726] veth0_macvtap: entered promiscuous mode
[  515.550172][T11726] veth1_macvtap: entered promiscuous mode
[  515.597497][T11726] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  515.623912][T11726] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  515.644903][T11726] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  515.676690][T11726] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  515.711353][T11726] batman_adv: batadv0: Interface activated: batadv_slave_0
[  515.780325][T11726] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  517.051004][T11726] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  517.061833][T11726] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  517.073782][T11726] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  517.086597][T11726] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  517.097267][T11726] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  517.110546][T11726] batman_adv: batadv0: Interface activated: batadv_slave_1
[  517.680754][T11726] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  517.689877][T11726] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  517.703596][T11726] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  517.712809][T11726] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  520.479050][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  520.498691][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  520.612788][ T1118] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  520.640955][ T1118] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  524.505885][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  524.953095][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  524.965901][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  524.966167][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  528.595776][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  528.605888][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  529.595733][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  530.020185][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  530.327264][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  530.775776][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  535.036126][T12286] 9pnet_fd: Insufficient options for proto=fd
[  536.994377][T12321] overlayfs: failed to clone upperpath
[  537.727981][T12326] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1920'.
[  538.290507][T12345] ksmbd: Unknown IPC event: 6, ignore.
[  543.674652][T12418] loop7: detected capacity change from 0 to 128
[  543.726752][T12418] EXT4-fs: Ignoring removed nobh option
[  543.776985][T12418] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  543.804484][T12418] ext4 filesystem being mounted at /13/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  544.947739][T11726] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  548.677350][T12472] sctp: [Deprecated]: syz.7.1954 (pid 12472) Use of struct sctp_assoc_value in delayed_ack socket option.
[  548.677350][T12472] Use struct sctp_sack_info instead
[  550.104750][T12481] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  551.726252][ T5948] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  552.215561][ T5948] usb 8-1: Using ep0 maxpacket: 8
[  552.255855][ T5948] usb 8-1: config index 0 descriptor too short (expected 30, got 18)
[  552.284524][ T5948] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  552.324587][ T5948] usb 8-1: config 0 has no interfaces?
[  552.341020][ T5948] usb 8-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[  552.367707][ T5948] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  552.395553][ T5948] usb 8-1: Product: syz
[  552.407647][ T5948] usb 8-1: Manufacturer: syz
[  552.425471][ T5948] usb 8-1: SerialNumber: syz
[  552.442573][ T5948] usb 8-1: config 0 descriptor??
[  554.600777][    T9] usb 8-1: USB disconnect, device number 2
[  554.705795][   T28] audit: type=1326 audit(1756374076.515:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12520 comm="syz.5.1973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb220d8ebe9 code=0x7fc00000
[  554.755508][   T28] audit: type=1326 audit(1756374076.625:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12520 comm="syz.5.1973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb220d85ba7 code=0x7fc00000
[  554.805610][   T28] audit: type=1326 audit(1756374076.625:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12520 comm="syz.5.1973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb220d2ade9 code=0x7fc00000
[  554.863208][   T28] audit: type=1326 audit(1756374076.625:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12520 comm="syz.5.1973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fb220d2aeaf code=0x7fc00000
[  554.925535][   T28] audit: type=1326 audit(1756374076.625:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12520 comm="syz.5.1973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fb220d8ebe9 code=0x7fc00000
[  556.046992][    T9] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  557.156136][    T9] usb 8-1: Using ep0 maxpacket: 32
[  557.163346][    T9] usb 8-1: config index 0 descriptor too short (expected 156, got 27)
[  557.171744][    T9] usb 8-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  557.189102][    T9] usb 8-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  557.917961][    T9] usb 8-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  557.931225][    T9] usb 8-1: config 0 interface 0 has no altsetting 0
[  557.941171][    T9] usb 8-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  557.970676][    T9] usb 8-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  558.001237][    T9] usb 8-1: Product: syz
[  558.016073][    T9] usb 8-1: Manufacturer: syz
[  558.020760][    T9] usb 8-1: SerialNumber: syz
[  558.057778][    T9] usb 8-1: config 0 descriptor??
[  558.081144][    T9] ldusb 8-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  558.129217][T12583] fuse: Bad value for 'fd'
[  558.141693][    T9] ldusb 8-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  558.434342][ T5948] usb 8-1: USB disconnect, device number 3
[  558.438479][    C0] ldusb 8-1:0.0: usb_submit_urb failed (-19)
[  558.476923][T12557] ldusb 8-1:0.0: Couldn't submit HID_REQ_SET_REPORT -71
[  558.513958][ T5948] ldusb 8-1:0.0: LD USB Device #0 now disconnected
[  563.012650][T12636] fuse: Bad value for 'fd'
[  563.393708][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  563.400168][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  568.566404][T12684] bridge0: port 3(macsec0) entered blocking state
[  568.578420][T12684] bridge0: port 3(macsec0) entered disabled state
[  568.592666][T12684] macsec0: entered allmulticast mode
[  568.602766][T12684] veth1_macvtap: entered allmulticast mode
[  568.634614][T12684] macsec0: entered promiscuous mode
[  568.899129][ T5102] Bluetooth: hci1: unexpected event for opcode 0x2002
[  569.550149][T12707] overlayfs: failed to clone upperpath
[  570.761085][T12718] netlink: 'syz.7.2020': attribute type 29 has an invalid length.
[  570.782233][T12718] netlink: 'syz.7.2020': attribute type 29 has an invalid length.
[  570.799335][T12718] netlink: 'syz.7.2020': attribute type 29 has an invalid length.
[  571.676756][T12728] bridge0: port 3(macsec0) entered blocking state
[  571.695883][T12728] bridge0: port 3(macsec0) entered disabled state
[  571.703521][T12728] macsec0: entered allmulticast mode
[  571.714295][T12728] veth1_macvtap: entered allmulticast mode
[  571.722075][T12728] macsec0: entered promiscuous mode
[  571.729850][T12728] bridge0: port 3(macsec0) entered blocking state
[  571.736899][T12728] bridge0: port 3(macsec0) entered forwarding state
[  574.824642][T12758] overlayfs: failed to clone upperpath
[  576.835991][T12792] overlayfs: failed to clone upperpath
[  580.874608][T12833] lo speed is unknown, defaulting to 1000
[  580.929569][T12833] lo speed is unknown, defaulting to 1000
[  581.074909][T12833] lo speed is unknown, defaulting to 1000
[  581.187729][T12833] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  581.607312][T12833] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  581.999345][T12833] lo speed is unknown, defaulting to 1000
[  582.007394][T12833] lo speed is unknown, defaulting to 1000
[  582.018022][T12833] lo speed is unknown, defaulting to 1000
[  582.025778][T12833] lo speed is unknown, defaulting to 1000
[  589.242269][T12909] bridge0: port 4(batadv1) entered blocking state
[  589.251574][T12909] bridge0: port 4(batadv1) entered disabled state
[  589.301995][T12909] batadv1: entered allmulticast mode
[  589.376471][T12909] batadv1: entered promiscuous mode
[  590.663553][   T49] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled
[  590.673542][   T49] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled
[  592.117975][T12938] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2089'.
[  592.127506][T12938] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2089'.
[  592.185538][    T9] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  592.268720][T12940] bridge0: port 3(batadv1) entered blocking state
[  592.279477][T12940] bridge0: port 3(batadv1) entered disabled state
[  592.296789][T12940] batadv1: entered allmulticast mode
[  592.362800][T12940] batadv1: entered promiscuous mode
[  592.385714][    T9] usb 8-1: Using ep0 maxpacket: 32
[  592.404699][    T9] usb 8-1: config index 0 descriptor too short (expected 156, got 27)
[  592.424675][    T9] usb 8-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  592.443196][    T9] usb 8-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  592.454894][    T9] usb 8-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  592.473122][    T9] usb 8-1: config 0 interface 0 has no altsetting 0
[  592.485821][    T9] usb 8-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  592.509749][    T9] usb 8-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  592.525645][    T9] usb 8-1: Product: syz
[  592.532689][    T9] usb 8-1: Manufacturer: syz
[  592.545339][    T9] usb 8-1: SerialNumber: syz
[  592.574409][    T9] usb 8-1: config 0 descriptor??
[  592.595786][    T9] ldusb 8-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  592.644705][    T9] ldusb 8-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  594.336957][  T141] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled
[  594.346373][  T141] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled
[  594.348904][ T5948] usb 8-1: USB disconnect, device number 4
[  594.355717][    C1] ldusb 8-1:0.0: usb_submit_urb failed (-19)
[  594.440948][ T5948] ldusb 8-1:0.0: LD USB Device #0 now disconnected
[  601.425189][T13002] siw: device registration error -23
[  607.225908][T13078] lo speed is unknown, defaulting to 1000
[  608.902274][T13078] lo speed is unknown, defaulting to 1000
[  608.929648][T13078] lo speed is unknown, defaulting to 1000
[  609.019810][T13078] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  609.201112][T13078] lo speed is unknown, defaulting to 1000
[  609.219149][T13078] lo speed is unknown, defaulting to 1000
[  609.239411][T13078] lo speed is unknown, defaulting to 1000
[  609.251660][T13089] loop7: detected capacity change from 0 to 128
[  609.257569][T13078] lo speed is unknown, defaulting to 1000
[  609.307335][T13089] EXT4-fs: Ignoring removed nobh option
[  609.351429][T13089] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  609.936613][T13089] ext4 filesystem being mounted at /54/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  612.123994][T11726] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  612.960114][T13117] overlayfs: failed to clone upperpath
[  613.181851][T13124] fuse: Bad value for 'fd'
[  619.654987][ T5803] Bluetooth: hci0: command 0x0406 tx timeout
[  624.240668][    T9] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  626.797451][    T9] usb 8-1: Using ep0 maxpacket: 16
[  626.814149][    T9] usb 8-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xF3, skipping
[  626.838204][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  626.846771][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  627.105826][    T9] usb 8-1: string descriptor 0 read error: -71
[  627.112212][    T9] usb 8-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  627.185470][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  627.221231][    T9] usb 8-1: config 0 descriptor??
[  627.246692][    T9] usb 8-1: can't set config #0, error -71
[  627.282538][    T9] usb 8-1: USB disconnect, device number 5
[  627.315644][T13232] loop7: detected capacity change from 0 to 128
[  627.327087][T13231] udevd[13231]: setting owner of /dev/bus/usb/008/005 to uid=0, gid=0 failed: No such file or directory
[  627.347142][T13232] EXT4-fs: Ignoring removed nobh option
[  627.388005][T13232] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  627.492765][T13232] ext4 filesystem being mounted at /61/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  629.635201][T11726] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  630.270910][T13263] bond0: entered promiscuous mode
[  630.297066][T13263] bond0: left promiscuous mode
[  633.866691][T13139] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  633.879100][T13139] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  633.881487][T13305] binder: 13304:13305 ioctl c0306201 200000000080 returned -14
[  633.895823][T13139] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  634.006806][T13139] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  634.021114][T13139] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  634.030766][T13139] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  634.895491][T13307] binder_alloc: 13304: binder_alloc_buf, no vma
[  635.317970][T13301] lo speed is unknown, defaulting to 1000
[  635.516159][T13314] loop7: detected capacity change from 0 to 128
[  635.543632][T13314] EXT4-fs: Ignoring removed nobh option
[  635.741395][T13314] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  635.785930][T13314] ext4 filesystem being mounted at /68/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  636.107111][T13139] Bluetooth: hci4: command tx timeout
[  637.055000][T13301] chnl_net:caif_netlink_parms(): no params data found
[  638.667515][T13139] Bluetooth: hci4: command tx timeout
[  638.749455][T11726] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  638.864306][T13333] overlayfs: failed to clone upperpath
[  640.745528][T13139] Bluetooth: hci4: command tx timeout
[  640.939408][T13301] bridge0: port 1(bridge_slave_0) entered blocking state
[  640.959869][T13301] bridge0: port 1(bridge_slave_0) entered disabled state
[  640.990074][T13301] bridge_slave_0: entered allmulticast mode
[  641.017530][T13301] bridge_slave_0: entered promiscuous mode
[  641.038426][T13301] bridge0: port 2(bridge_slave_1) entered blocking state
[  641.055690][T13301] bridge0: port 2(bridge_slave_1) entered disabled state
[  641.095861][T13301] bridge_slave_1: entered allmulticast mode
[  641.145608][T13301] bridge_slave_1: entered promiscuous mode
[  641.288011][T13301] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  642.101551][ T1141] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  642.574260][T13301] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  642.825589][T13139] Bluetooth: hci4: command tx timeout
[  643.541800][ T1141] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  643.675475][   T28] audit: type=1326 audit(1756374165.545:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13369 comm="syz.6.2222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  643.767321][   T28] audit: type=1326 audit(1756374165.545:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13369 comm="syz.6.2222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  643.791270][   T28] audit: type=1326 audit(1756374165.545:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13369 comm="syz.6.2222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  643.824780][   T28] audit: type=1326 audit(1756374165.545:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13369 comm="syz.6.2222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  643.858645][T13301] team0: Port device team_slave_0 added
[  643.870422][T13301] team0: Port device team_slave_1 added
[  643.877323][   T28] audit: type=1326 audit(1756374165.545:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13369 comm="syz.6.2222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  644.701966][   T28] audit: type=1326 audit(1756374165.545:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13369 comm="syz.6.2222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=305 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  644.728674][   T28] audit: type=1326 audit(1756374165.545:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13369 comm="syz.6.2222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  644.751412][   T28] audit: type=1326 audit(1756374165.545:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13369 comm="syz.6.2222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  644.859881][ T1141] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  645.075220][ T1141] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  645.098691][T13301] batman_adv: batadv0: Adding interface: batadv_slave_0
[  645.113715][T13301] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  645.160759][T13301] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  645.183023][T13301] batman_adv: batadv0: Adding interface: batadv_slave_1
[  645.192661][T13301] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  645.244755][T13301] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  645.515957][  T787] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  646.040489][  T787] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  646.070806][  T787] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  646.165520][  T787] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  646.174676][  T787] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  646.194117][  T787] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  646.350849][T13301] hsr_slave_0: entered promiscuous mode
[  646.412688][  T787] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  646.430667][  T787] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  646.438865][  T787] usb 8-1: Product: syz
[  646.443082][  T787] usb 8-1: Manufacturer: syz
[  646.464244][T13301] hsr_slave_1: entered promiscuous mode
[  646.466479][  T787] cdc_wdm 8-1:1.0: skipping garbage
[  646.477620][  T787] cdc_wdm 8-1:1.0: skipping garbage
[  646.483510][T13301] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  646.492675][  T787] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  646.498902][  T787] cdc_wdm 8-1:1.0: Unknown control protocol
[  646.519263][T13301] Cannot create hsr debugfs directory
[  647.575518][  T787] usb 8-1: USB disconnect, device number 6
[  652.100127][T13450] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2247'.
[  656.009536][T13301] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  656.701161][T13301] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  656.934941][T13301] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  657.090920][T13301] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  657.304972][ T1141] hsr_slave_0: left promiscuous mode
[  657.317784][ T1141] hsr_slave_1: left promiscuous mode
[  657.345803][ T1141] batman_adv: batadv0: Removing interface: batadv_slave_0
[  657.361564][ T1141] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  657.384353][ T1141] batman_adv: batadv0: Removing interface: batadv_slave_1
[  657.444964][ T1141] batadv1: left allmulticast mode
[  657.496769][ T1141] batadv1: left promiscuous mode
[  657.505804][ T1141] bridge0: port 4(batadv1) entered disabled state
[  657.527370][ T1141] macsec0: left allmulticast mode
[  657.532482][ T1141] veth1_macvtap: left allmulticast mode
[  657.544929][ T1141] macsec0: left promiscuous mode
[  657.568671][ T1141] bridge0: port 3(macsec0) entered disabled state
[  657.645255][ T1141] bridge_slave_1: left allmulticast mode
[  657.652244][ T1141] bridge_slave_1: left promiscuous mode
[  657.921529][ T1141] bridge0: port 2(bridge_slave_1) entered disabled state
[  658.369243][ T1141] bridge_slave_0: left allmulticast mode
[  658.374960][ T1141] bridge_slave_0: left promiscuous mode
[  658.390563][ T3490] batman_adv: batadv1: adding TT local entry 33:33:00:00:00:01 to non-existent VLAN -1
[  658.424079][ T1141] bridge0: port 1(bridge_slave_0) entered disabled state
[  659.450111][ T1141] veth1_macvtap: left promiscuous mode
[  659.523103][ T1141] veth0_macvtap: left promiscuous mode
[  659.561889][ T1141] veth1_vlan: left promiscuous mode
[  659.575929][ T1141] veth0_vlan: left promiscuous mode
[  659.583440][  T141] batman_adv: batadv1: adding TT local entry 33:33:00:00:00:01 to non-existent VLAN -1
[  660.950838][ T1141] bond1 (unregistering): (slave veth3): Releasing active interface
[  662.358710][ T1141] bond1 (unregistering): Released all slaves
[  662.912475][ T1141] team0 (unregistering): Port device team_slave_1 removed
[  662.974186][ T1141] team0 (unregistering): Port device team_slave_0 removed
[  663.028917][ T1141] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  663.087255][ T1141] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  663.731059][ T1141] bond0 (unregistering): Released all slaves
[  663.841614][   T23] lo speed is unknown, defaulting to 1000
[  663.868826][T13538] tc_dump_action: action bad kind
[  664.311986][T13301] 8021q: adding VLAN 0 to HW filter on device bond0
[  664.379835][T13301] 8021q: adding VLAN 0 to HW filter on device team0
[  664.428646][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  664.435887][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  664.458461][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  664.465710][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  665.970992][T13301] 8021q: adding VLAN 0 to HW filter on device batadv0
[  666.117294][T13301] veth0_vlan: entered promiscuous mode
[  666.159351][T13301] veth1_vlan: entered promiscuous mode
[  666.248600][T13301] veth0_macvtap: entered promiscuous mode
[  666.301587][T13301] veth1_macvtap: entered promiscuous mode
[  666.360517][T13301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  666.376436][T13301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  666.388465][T13301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  666.402904][T13301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  666.412981][T13301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  666.430328][T13301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  666.445012][T13301] batman_adv: batadv0: Interface activated: batadv_slave_0
[  666.453722][T13573] tc_dump_action: action bad kind
[  666.469752][T13301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  666.505192][T13301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  666.525816][T13301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  666.542723][T13301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  666.553686][T13301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  666.577270][T13301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  666.598278][T13301] batman_adv: batadv0: Interface activated: batadv_slave_1
[  666.641561][T13301] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  666.690842][T13301] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  666.724829][T13301] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  666.767634][T13301] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  667.670571][ T6223] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  667.688811][ T6223] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  667.721669][ T1141] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  667.730979][ T1141] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  669.715399][    C0] hrtimer: interrupt took 74116 ns
[  670.295662][T13616] netlink: 44 bytes leftover after parsing attributes in process `syz.6.2292'.
[  670.340123][T13616] netlink: 59 bytes leftover after parsing attributes in process `syz.6.2292'.
[  670.390340][T13616] netlink: 59 bytes leftover after parsing attributes in process `syz.6.2292'.
[  671.934199][   T28] audit: type=1326 audit(1756374193.845:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13634 comm="syz.6.2301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  672.011643][   T28] audit: type=1326 audit(1756374193.845:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13634 comm="syz.6.2301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  672.085702][   T28] audit: type=1326 audit(1756374193.865:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13634 comm="syz.6.2301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  672.160449][   T28] audit: type=1326 audit(1756374193.865:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13634 comm="syz.6.2301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  672.293597][   T28] audit: type=1326 audit(1756374193.865:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13634 comm="syz.6.2301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  672.353852][   T28] audit: type=1326 audit(1756374193.865:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13634 comm="syz.6.2301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  672.431807][   T28] audit: type=1326 audit(1756374193.865:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13634 comm="syz.6.2301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  672.536964][   T28] audit: type=1326 audit(1756374193.865:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13634 comm="syz.6.2301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=50 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  672.614127][   T28] audit: type=1326 audit(1756374193.865:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13634 comm="syz.6.2301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  673.275880][  T787] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  673.834359][T13663] capability: warning: `syz.7.2312' uses 32-bit capabilities (legacy support in use)
[  673.849949][  T787] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  673.873612][  T787] usb 3-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  673.903213][  T787] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  673.930998][  T787] usb 3-1: config 0 descriptor??
[  673.960844][  T787] pwc: Askey VC010 type 2 USB webcam detected.
[  674.468555][  T787] pwc: recv_control_msg error -32 req 02 val 2b00
[  674.647172][  T787] pwc: recv_control_msg error -32 req 02 val 2700
[  674.719820][  T787] pwc: recv_control_msg error -32 req 02 val 2c00
[  674.812547][  T787] pwc: recv_control_msg error -32 req 04 val 1000
[  674.856185][  T787] pwc: recv_control_msg error -32 req 04 val 1300
[  674.884492][  T787] pwc: recv_control_msg error -32 req 04 val 1400
[  674.928636][  T787] pwc: recv_control_msg error -32 req 02 val 2000
[  675.606055][  T787] pwc: recv_control_msg error -71 req 04 val 1500
[  675.622897][  T787] pwc: recv_control_msg error -71 req 02 val 2500
[  676.158274][  T787] pwc: recv_control_msg error -71 req 02 val 2400
[  676.172348][  T787] pwc: recv_control_msg error -71 req 02 val 2600
[  676.187716][T13681] netlink: 72 bytes leftover after parsing attributes in process `syz.7.2318'.
[  676.190589][  T787] pwc: recv_control_msg error -71 req 02 val 2900
[  676.206157][  T787] pwc: recv_control_msg error -71 req 02 val 2800
[  676.224698][  T787] pwc: recv_control_msg error -71 req 04 val 1100
[  676.234035][  T787] pwc: recv_control_msg error -71 req 04 val 1200
[  676.278067][  T787] pwc: Registered as video103.
[  676.306541][  T787] input: PWC snapshot button as /devices/platform/dummy_hcd.2/usb3/3-1/input/input7
[  676.416885][  T787] usb 3-1: USB disconnect, device number 2
[  677.526402][    C0] vcan0: j1939_tp_rxtimer: 0xffff888023828c00: rx timeout, send abort
[  678.036539][    C0] vcan0: j1939_tp_rxtimer: 0xffff888023828c00: abort rx timeout. Force session deactivation
[  681.434493][T13746] netlink: 124 bytes leftover after parsing attributes in process `syz.7.2336'.
[  683.589989][T13753] Set syz0 is full, maxelem 0 reached
[  683.873624][T13766] 9pnet_fd: Insufficient options for proto=fd
[  683.908209][T13765] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2347'.
[  684.020702][T13768] netlink: 72 bytes leftover after parsing attributes in process `syz.7.2348'.
[  686.272529][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  686.280534][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  687.163008][T13800] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2358'.
[  690.367115][T13838] netlink: 72 bytes leftover after parsing attributes in process `syz.7.2375'.
[  691.347656][T13850] overlayfs: failed to clone upperpath
[  699.356575][   T28] audit: type=1326 audit(1756374221.275:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13932 comm="syz.2.2410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2beef8ebe9 code=0x7ffc0000
[  699.444817][   T28] audit: type=1326 audit(1756374221.275:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13932 comm="syz.2.2410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2beef8ebe9 code=0x7ffc0000
[  699.510316][   T28] audit: type=1326 audit(1756374221.315:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13932 comm="syz.2.2410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=69 compat=0 ip=0x7f2beef8ebe9 code=0x7ffc0000
[  699.543139][   T28] audit: type=1326 audit(1756374221.315:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13932 comm="syz.2.2410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2beef8ebe9 code=0x7ffc0000
[  699.571333][   T28] audit: type=1326 audit(1756374221.315:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13932 comm="syz.2.2410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2beef8ebe9 code=0x7ffc0000
[  700.447861][T13946] Set syz0 is full, maxelem 0 reached
[  701.305656][ T5840] usb 3-1: new low-speed USB device number 3 using dummy_hcd
[  701.559360][ T5840] usb 3-1: device descriptor read/64, error -71
[  702.678705][ T5840] usb 3-1: new low-speed USB device number 4 using dummy_hcd
[  702.801554][T13970] netlink: 72 bytes leftover after parsing attributes in process `syz.7.2422'.
[  702.858069][ T5840] usb 3-1: device descriptor read/64, error -71
[  702.980399][ T5840] usb usb3-port1: attempt power cycle
[  704.837112][T13997] netlink: 72 bytes leftover after parsing attributes in process `syz.6.2430'.
[  704.848629][T13997] netlink: 'syz.6.2430': attribute type 1 has an invalid length.
[  705.009197][T13997] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2430'.
[  705.512748][T14003] netlink: 72 bytes leftover after parsing attributes in process `syz.6.2433'.
[  709.322227][T14037] netlink: 72 bytes leftover after parsing attributes in process `syz.6.2442'.
[  709.975894][  T787] usb 3-1: new full-speed USB device number 6 using dummy_hcd
[  710.274821][  T787] usb 3-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  710.316402][  T787] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  710.369030][  T787] usb 3-1: config 0 descriptor??
[  712.698310][  T787] pegasus 3-1:0.0: can't reset MAC
[  712.721434][  T787] pegasus: probe of 3-1:0.0 failed with error -5
[  712.769153][  T787] usb 3-1: USB disconnect, device number 6
[  713.810008][T14065] bridge_slave_0: left allmulticast mode
[  713.816703][T14065] bridge_slave_0: left promiscuous mode
[  713.886977][T14065] bridge0: port 1(bridge_slave_0) entered disabled state
[  714.016370][T14065] bridge_slave_1: left allmulticast mode
[  714.023547][T14065] bridge_slave_1: left promiscuous mode
[  714.029539][T14065] bridge0: port 2(bridge_slave_1) entered disabled state
[  714.046614][T14065] bond0: (slave bond_slave_0): Releasing backup interface
[  714.084553][T14065] bond0: (slave bond_slave_1): Releasing backup interface
[  715.073550][T14065] team0: Port device team_slave_0 removed
[  715.142677][T14065] team0: Port device team_slave_1 removed
[  715.156977][T14065] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  715.173100][T14065] batman_adv: batadv0: Removing interface: batadv_slave_0
[  715.185272][T14065] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  715.207528][T14065] batman_adv: batadv0: Removing interface: batadv_slave_1
[  715.225154][T14065] macsec0: left allmulticast mode
[  715.230877][T14065] veth1_macvtap: left allmulticast mode
[  715.237248][T14065] macsec0: left promiscuous mode
[  715.242815][T14065] bridge0: port 3(macsec0) entered disabled state
[  721.040247][   T28] audit: type=1326 audit(1756374242.955:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14121 comm="syz.6.2466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  721.116038][   T28] audit: type=1326 audit(1756374242.955:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14121 comm="syz.6.2466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  721.221495][   T28] audit: type=1326 audit(1756374242.955:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14121 comm="syz.6.2466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=136 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  721.284691][   T28] audit: type=1326 audit(1756374242.955:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14121 comm="syz.6.2466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  721.382381][   T28] audit: type=1326 audit(1756374242.975:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14121 comm="syz.6.2466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  721.485795][   T28] audit: type=1326 audit(1756374242.975:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14121 comm="syz.6.2466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  721.509547][   T28] audit: type=1326 audit(1756374242.985:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14121 comm="syz.6.2466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  721.532649][   T28] audit: type=1326 audit(1756374242.985:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14121 comm="syz.6.2466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=17 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  721.562622][   T28] audit: type=1326 audit(1756374242.985:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14121 comm="syz.6.2466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794838ebe9 code=0x7ffc0000
[  725.294848][T14166] kvm: kvm [14165]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0xffffffff000006ed
[  725.308297][T14166] kvm: kvm [14165]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0xffffffff000046ed
[  725.319537][T14166] kvm: kvm [14165]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0xffffffff00000101
[  725.330399][T14166] kvm: kvm [14165]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0xffffffff00004101
[  726.017189][T14166] kvm: kvm [14165]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0xc004022
[  726.072264][T14166] kvm: kvm [14165]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x11e) = 0xc000022
[  726.099831][T14166] kvm: kvm [14165]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x52
[  726.115887][T14166] kvm: kvm [14165]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x186) = 0x4052
[  734.573221][T14245] use of bytesused == 0 is deprecated and will be removed in the future,
[  735.049868][T14245] use the actual size instead.
[  736.658805][T14272] PKCS7: Unknown OID: [4] 0.38.11253.6554(bad)
[  736.670802][T14272] PKCS7: Only support pkcs7_signedData type
[  737.429212][   T28] audit: type=1326 audit(1756374259.345:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14288 comm="syz.7.2519" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe334b8ebe9 code=0x0
[  744.813644][T14347] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2538'.
[  745.744380][T14352] overlayfs: missing 'lowerdir'
[  746.843863][T14365] syz_tun: entered promiscuous mode
[  746.850857][T14363] syz_tun: left promiscuous mode
[  747.717921][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  747.724900][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  753.726232][T14455] netlink: 'syz.2.2575': attribute type 10 has an invalid length.
[  753.782188][T14455] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  753.964114][T14462] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2578'.
[  753.975970][  T786] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  754.143617][T14464] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2576'.
[  754.990077][  T786] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  755.003265][  T786] usb 8-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  755.019669][  T786] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  755.035651][  T786] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  755.057015][  T786] usb 8-1: config 0 descriptor??
[  755.078401][  T786] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[  755.301691][  T787] usb 8-1: USB disconnect, device number 7
[  757.807185][ T5102] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  757.818112][ T5102] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  757.827694][ T5102] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  757.856683][ T5102] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  757.879379][ T5102] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  757.890316][ T5102] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  758.600788][T14494] chnl_net:caif_netlink_parms(): no params data found
[  759.692388][T14494] bridge0: port 1(bridge_slave_0) entered blocking state
[  759.723246][T14494] bridge0: port 1(bridge_slave_0) entered disabled state
[  759.743148][T14494] bridge_slave_0: entered allmulticast mode
[  759.772514][T14494] bridge_slave_0: entered promiscuous mode
[  759.796908][T14494] bridge0: port 2(bridge_slave_1) entered blocking state
[  759.812203][T14494] bridge0: port 2(bridge_slave_1) entered disabled state
[  759.826234][T14494] bridge_slave_1: entered allmulticast mode
[  759.834194][T14494] bridge_slave_1: entered promiscuous mode
[  759.940795][T14494] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  759.956298][T13139] Bluetooth: hci1: command tx timeout
[  759.984136][T14494] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  760.203893][T14494] team0: Port device team_slave_0 added
[  761.004299][T14494] team0: Port device team_slave_1 added
[  761.057271][T14494] batman_adv: batadv0: Adding interface: batadv_slave_0
[  761.064299][T14494] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  761.146484][T14494] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  761.215644][T14494] batman_adv: batadv0: Adding interface: batadv_slave_1
[  761.225358][T14494] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  761.255541][T14494] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  761.593000][T14494] hsr_slave_0: entered promiscuous mode
[  761.600996][T14494] hsr_slave_1: entered promiscuous mode
[  761.622305][T14494] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  762.035900][T13139] Bluetooth: hci1: command tx timeout
[  762.372491][T14494] Cannot create hsr debugfs directory
[  763.448766][T14561] ntfs3: nullb0: Primary boot signature is not NTFS.
[  763.457243][T14561] ntfs3: nullb0: try to read out of volume at offset 0x3e7ffffe00
[  764.108777][T14494] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  764.119711][T13139] Bluetooth: hci1: command tx timeout
[  764.610380][T14574] netlink: 108 bytes leftover after parsing attributes in process `syz.7.2610'.
[  764.620755][T14574] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2610'.
[  765.450175][T14494] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  766.285398][T13139] Bluetooth: hci1: command tx timeout
[  766.757506][T14494] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  766.925767][T14494] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  768.154585][T14494] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  768.181966][T14494] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  768.233969][T14494] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  768.282735][T14494] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  769.456684][T14620] netlink: 36 bytes leftover after parsing attributes in process `syz.6.2626'.
[  769.574368][T14494] 8021q: adding VLAN 0 to HW filter on device bond0
[  769.623159][T14494] 8021q: adding VLAN 0 to HW filter on device team0
[  771.219541][   T48] bridge0: port 1(bridge_slave_0) entered blocking state
[  771.226809][   T48] bridge0: port 1(bridge_slave_0) entered forwarding state
[  771.610703][   T48] bridge0: port 2(bridge_slave_1) entered blocking state
[  771.618223][   T48] bridge0: port 2(bridge_slave_1) entered forwarding state
[  772.676170][T14629] syz.2.2629: vmalloc error: size 2768896, failed to allocated page array size 5408, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz2,mems_allowed=0-1
[  772.751688][T14629] CPU: 1 PID: 14629 Comm: syz.2.2629 Not tainted 6.6.102-syzkaller #0
[  772.759907][T14629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  772.770018][T14629] Call Trace:
[  772.773329][T14629]  <TASK>
[  772.776299][T14629]  dump_stack_lvl+0x16c/0x230
[  772.781028][T14629]  ? show_regs_print_info+0x20/0x20
[  772.786272][T14629]  ? load_image+0x3b0/0x3b0
[  772.790847][T14629]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  772.797312][T14629]  ? cpuset_print_current_mems_allowed+0x2e3/0x360
[  772.803866][T14629]  warn_alloc+0x210/0x300
[  772.808259][T14629]  ? zone_watermark_ok_safe+0x230/0x230
[  772.813864][T14629]  ? _raw_spin_unlock+0x28/0x40
[  772.818773][T14629]  ? __vb2_queue_alloc+0x794/0x1410
[  772.824024][T14629]  __vmalloc_node_range+0x662/0x1320
[  772.829390][T14629]  ? free_vm_area+0x50/0x50
[  772.833954][T14629]  vmalloc_user+0x74/0x80
[  772.838340][T14629]  ? vb2_vmalloc_alloc+0xef/0x330
[  772.843405][T14629]  vb2_vmalloc_alloc+0xef/0x330
[  772.848306][T14629]  ? __copy_timestamp+0x1f0/0x1f0
[  772.853373][T14629]  __vb2_queue_alloc+0x794/0x1410
[  772.858454][T14629]  vb2_core_reqbufs+0xa57/0x1140
[  772.863429][T14629]  ? vb2_verify_memory_type+0x570/0x570
[  772.869022][T14629]  ? vb2_reqbufs+0x360/0x5a0
[  772.873659][T14629]  v4l2_m2m_ioctl_reqbufs+0x16c/0x230
[  772.879064][T14629]  __video_do_ioctl+0xcbd/0xdd0
[  772.883938][T14629]  ? video_ioctl2+0x30/0x30
[  772.888459][T14629]  ? __might_fault+0xc6/0x120
[  772.893147][T14629]  ? __might_fault+0xaa/0x120
[  772.897840][T14629]  video_usercopy+0x838/0x1330
[  772.902636][T14629]  ? video_ioctl2+0x30/0x30
[  772.907153][T14629]  ? v4l_printk_ioctl+0x160/0x160
[  772.912238][T14629]  v4l2_ioctl+0x18a/0x1e0
[  772.916595][T14629]  ? v4l2_poll+0x2b0/0x2b0
[  772.921026][T14629]  __se_sys_ioctl+0xfd/0x170
[  772.925635][T14629]  do_syscall_64+0x55/0xb0
[  772.930078][T14629]  ? clear_bhb_loop+0x40/0x90
[  772.934767][T14629]  ? clear_bhb_loop+0x40/0x90
[  772.939454][T14629]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  772.945376][T14629] RIP: 0033:0x7f2beef8ebe9
[  772.949825][T14629] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  772.969447][T14629] RSP: 002b:00007f2befe41038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  772.977874][T14629] RAX: ffffffffffffffda RBX: 00007f2bef1b5fa0 RCX: 00007f2beef8ebe9
[  772.985861][T14629] RDX: 0000200000000240 RSI: 00000000c0145608 RDI: 0000000000000003
[  772.993862][T14629] RBP: 00007f2bef011e19 R08: 0000000000000000 R09: 0000000000000000
[  773.001847][T14629] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  773.009829][T14629] R13: 00007f2bef1b6038 R14: 00007f2bef1b5fa0 R15: 00007fff161e9f48
[  773.017855][T14629]  </TASK>
[  773.032876][T14629] Mem-Info:
[  773.038409][T14629] active_anon:7163 inactive_anon:0 isolated_anon:0
[  773.038409][T14629]  active_file:14758 inactive_file:40100 isolated_file:0
[  773.038409][T14629]  unevictable:768 dirty:68 writeback:0
[  773.038409][T14629]  slab_reclaimable:10904 slab_unreclaimable:98336
[  773.038409][T14629]  mapped:24282 shmem:3884 pagetables:418
[  773.038409][T14629]  sec_pagetables:0 bounce:0
[  773.038409][T14629]  kernel_misc_reclaimable:0
[  773.038409][T14629]  free:1331254 free_pcp:9793 free_cma:0
[  773.154731][T14629] Node 0 active_anon:21552kB inactive_anon:0kB active_file:59032kB inactive_file:160196kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:97128kB dirty:272kB writeback:0kB shmem:7000kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11044kB pagetables:1672kB sec_pagetables:0kB all_unreclaimable? no
[  773.235196][T14629] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  773.300830][T14629] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  773.508424][T14629] lowmem_reserve[]: 0 2525 2526 2526 2526
[  773.528955][T14629] Node 0 DMA32 free:1425272kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:30428kB inactive_anon:0kB active_file:59032kB inactive_file:158872kB unevictable:1536kB writepending:276kB present:3129332kB managed:2589596kB mlocked:0kB bounce:0kB free_pcp:4488kB local_pcp:1524kB free_cma:0kB
[  774.348943][T14629] lowmem_reserve[]: 0 0 1 1 1
[  774.353811][T14629] Node 0 Normal free:12kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1324kB unevictable:0kB writepending:4kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  774.436543][T14629] lowmem_reserve[]: 0 0 0 0 0
[  774.441353][T14629] Node 1 Normal free:3895944kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:22280kB local_pcp:10044kB free_cma:0kB
[  774.497559][   T12] bond1: (slave gretap1): Releasing active interface
[  774.504326][   T12] gretap1 (unregistering): left allmulticast mode
[  774.546649][T14629] lowmem_reserve[]: 0 0 0 0 0
[  774.732497][T14629] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  774.745600][T14629] Node 0 DMA32: 6*4kB (ME) 768*8kB (UME) 1021*16kB (UME) 901*32kB (UME) 347*64kB (UME) 264*128kB (UM) 41*256kB (UM) 23*512kB (UME) 13*1024kB (UM) 10*2048kB (UM) 308*4096kB (UM) = 1424968kB
[  774.767295][   T12] bond2: (slave gretap2): Releasing active interface
[  775.848524][T14629] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[  775.903424][T14629] Node 1 Normal: 262*4kB (UE) 64*8kB (UE) 39*16kB (UE) 56*32kB (UE) 20*64kB (UME) 8*128kB (UME) 2*256kB (ME) 0*512kB 2*1024kB (UE) 2*2048kB (UE) 948*4096kB (M) = 3895944kB
[  775.993849][T14629] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  776.179921][T14629] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  776.190909][T14629] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  776.201708][T14629] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  776.211508][T14629] 59116 total pagecache pages
[  776.216589][T14629] 0 pages in swap cache
[  777.777383][T14629] Free swap  = 124472kB
[  777.781631][T14629] Total swap = 124996kB
[  777.905622][T14629] 2097051 pages RAM
[  777.914176][T14629] 0 pages HighMem/MovableOnly
[  777.924260][T14629] 416138 pages reserved
[  777.942871][T14629] 0 pages cma reserved
[  780.971157][   T12] hsr_slave_0: left promiscuous mode
[  781.042676][   T12] hsr_slave_1: left promiscuous mode
[  781.817057][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  781.844542][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  781.925621][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  781.933126][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  781.962061][   T12] bridge_slave_1: left allmulticast mode
[  781.968820][   T12] bridge_slave_1: left promiscuous mode
[  782.095888][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  782.726376][   T12] bridge_slave_0: left allmulticast mode
[  782.732176][   T12] bridge_slave_0: left promiscuous mode
[  782.752855][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  783.119241][   T12] bond0: left allmulticast mode
[  783.124186][   T12] bond_slave_0: left allmulticast mode
[  783.176498][   T12] bond_slave_1: left allmulticast mode
[  783.202796][   T12] bond_slave_0: left promiscuous mode
[  783.208897][   T12] bond_slave_1: left promiscuous mode
[  783.289227][   T12] veth1_macvtap: left promiscuous mode
[  783.324036][   T12] veth0_macvtap: left promiscuous mode
[  783.333081][   T12] veth1_vlan: left promiscuous mode
[  783.370208][   T12] veth0_vlan: left promiscuous mode
[  785.538790][   T12] bond2 (unregistering): Released all slaves
[  787.893493][   T12] bond1 (unregistering): Released all slaves
[  787.912857][T14756] serio: Serial port ttyS3
[  790.630675][   T12] team0 (unregistering): Port device team_slave_1 removed
[  790.691571][   T12] team0 (unregistering): Port device team_slave_0 removed
[  790.985175][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  791.496066][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  794.031019][T14801] netlink: set zone limit has 8 unknown bytes
[  794.431619][   T12] bond0 (unregistering): Released all slaves
[  795.071375][T14494] 8021q: adding VLAN 0 to HW filter on device batadv0
[  797.992325][T14494] veth0_vlan: entered promiscuous mode
[  798.021803][T14494] veth1_vlan: entered promiscuous mode
[  799.022176][T14494] veth0_macvtap: entered promiscuous mode
[  799.093589][T14494] veth1_macvtap: entered promiscuous mode
[  799.376688][T14494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  799.387859][T14494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  799.398428][T14494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  799.409484][T14494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  799.444806][T14494] batman_adv: batadv0: Interface activated: batadv_slave_0
[  799.487836][T14851] ALSA: mixer_oss: invalid OSS volume ''
[  799.667650][T14494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  799.870653][T14494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  800.075523][T14494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  800.102593][T14494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  800.151193][T14494] batman_adv: batadv0: Interface activated: batadv_slave_1
[  800.236404][T14494] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  800.262913][T14494] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  800.285483][T14494] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  800.405484][T14494] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  801.222296][ T6223] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  801.269938][ T6223] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  801.813129][ T6223] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  801.866409][ T6223] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  809.434153][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  809.440599][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  809.466376][T14921] futex_wake_op: syz.7.2715 tries to shift op by 144; fix this program
[  810.033840][   T11] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  810.133003][ T5102] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  810.151017][ T5102] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  810.197701][ T5102] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  810.207789][ T5102] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  810.216878][ T5102] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  810.224363][ T5102] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  810.842386][   T11] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  811.193754][   T11] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  811.366839][   T11] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  811.922168][T14928] chnl_net:caif_netlink_parms(): no params data found
[  812.266849][T13139] Bluetooth: hci2: command tx timeout
[  814.345583][T13139] Bluetooth: hci2: command tx timeout
[  815.811792][T14928] bridge0: port 1(bridge_slave_0) entered blocking state
[  815.823226][T14928] bridge0: port 1(bridge_slave_0) entered disabled state
[  815.834670][T14928] bridge_slave_0: entered allmulticast mode
[  815.843692][T14928] bridge_slave_0: entered promiscuous mode
[  817.053787][T13139] Bluetooth: hci2: command tx timeout
[  817.210613][T14928] bridge0: port 2(bridge_slave_1) entered blocking state
[  817.416407][ T5861] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  817.486296][T14928] bridge0: port 2(bridge_slave_1) entered disabled state
[  817.495139][T14928] bridge_slave_1: entered allmulticast mode
[  817.967169][T14928] bridge_slave_1: entered promiscuous mode
[  818.772327][ T5861] usb 8-1: Using ep0 maxpacket: 16
[  818.806391][ T5861] usb 8-1: device descriptor read/all, error -71
[  818.963778][T14928] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  819.022500][T14928] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  819.273726][T13139] Bluetooth: hci2: command tx timeout
[  820.015486][ T5863] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  820.335392][ T5863] usb 3-1: Using ep0 maxpacket: 8
[  820.450141][ T5863] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  820.516614][T14928] team0: Port device team_slave_0 added
[  821.675217][T14928] team0: Port device team_slave_1 added
[  821.710823][ T5863] usb 3-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xBE, skipping
[  821.722381][ T5863] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  821.740128][ T5863] usb 3-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46
[  821.760796][ T5863] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35
[  821.805410][ T5863] usb 3-1: Product: syz
[  821.809661][ T5863] usb 3-1: Manufacturer: syz
[  821.814298][ T5863] usb 3-1: SerialNumber: syz
[  821.822827][ T5863] usb 3-1: config 0 descriptor??
[  821.833134][ T5863] radio-si470x 3-1:0.0: could not find interrupt in endpoint
[  821.840842][ T5863] radio-si470x: probe of 3-1:0.0 failed with error -5
[  821.850471][ T5863] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  821.930105][T14928] batman_adv: batadv0: Adding interface: batadv_slave_0
[  821.944535][T14928] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  821.987602][T14928] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  822.112266][ T5897] usb 3-1: USB disconnect, device number 7
[  822.143682][T14928] batman_adv: batadv0: Adding interface: batadv_slave_1
[  822.191592][T14928] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  822.654249][T14928] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  823.195796][T14928] hsr_slave_0: entered promiscuous mode
[  823.213353][T14928] hsr_slave_1: entered promiscuous mode
[  823.221745][T14928] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  823.239067][T14928] Cannot create hsr debugfs directory
[  823.364840][T13139] Bluetooth: hci4: ACL packet for unknown connection handle 347
[  823.620090][   T11] hsr_slave_0: left promiscuous mode
[  823.636518][   T11] hsr_slave_1: left promiscuous mode
[  823.645126][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  823.664413][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  823.688821][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  823.702031][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  823.729935][   T11] batadv1: left allmulticast mode
[  823.742255][   T11] batadv1: left promiscuous mode
[  823.755549][   T11] bridge0: port 3(batadv1) entered disabled state
[  823.777173][   T11] bridge_slave_1: left allmulticast mode
[  823.785370][   T11] bridge_slave_1: left promiscuous mode
[  823.791438][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  823.827221][   T11] bridge_slave_0: left allmulticast mode
[  823.848660][   T11] bridge_slave_0: left promiscuous mode
[  823.871559][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  823.998331][   T11] veth1_macvtap: left promiscuous mode
[  824.003958][   T11] veth0_macvtap: left promiscuous mode
[  824.018284][  T141] batman_adv: batadv1: adding TT local entry 33:33:00:00:00:01 to non-existent VLAN -1
[  824.038622][   T11] veth1_vlan: left promiscuous mode
[  824.044016][   T11] veth0_vlan: left promiscuous mode
[  824.382598][   T28] audit: type=1326 audit(1756374346.295:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15032 comm="syz.7.2749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe334b8ebe9 code=0x7ffc0000
[  824.434680][   T28] audit: type=1326 audit(1756374346.295:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15032 comm="syz.7.2749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe334b8ebe9 code=0x7ffc0000
[  824.494462][   T28] audit: type=1326 audit(1756374346.295:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15032 comm="syz.7.2749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe334b8ebe9 code=0x7ffc0000
[  824.550514][   T28] audit: type=1326 audit(1756374346.295:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15032 comm="syz.7.2749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe334b8ebe9 code=0x7ffc0000
[  824.619630][   T28] audit: type=1326 audit(1756374346.295:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15032 comm="syz.7.2749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe334b8ebe9 code=0x7ffc0000
[  824.684527][   T28] audit: type=1326 audit(1756374346.305:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15032 comm="syz.7.2749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fe334b8ebe9 code=0x7ffc0000
[  824.744170][   T28] audit: type=1326 audit(1756374346.305:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15032 comm="syz.7.2749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe334b8ebe9 code=0x7ffc0000
[  824.782059][   T28] audit: type=1326 audit(1756374346.305:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15032 comm="syz.7.2749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=50 compat=0 ip=0x7fe334b8ebe9 code=0x7ffc0000
[  824.816960][T15035] kvm: kvm [15034]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4000
[  824.823353][   T28] audit: type=1326 audit(1756374346.305:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15032 comm="syz.7.2749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe334b8ebe9 code=0x7ffc0000
[  824.865570][T15035] kvm: kvm [15034]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000
[  824.910979][T15035] kvm: kvm [15034]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x11e) = 0xbe706111
[  824.911979][   T28] audit: type=1326 audit(1756374346.305:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15032 comm="syz.7.2749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe334b8ebe9 code=0x7ffc0000
[  824.962140][T15035] kvm: kvm [15034]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x186) = 0x4000
[  824.981180][T15035] kvm: kvm [15034]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x187) = 0x4000
[  826.375485][ T5793] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  827.505439][ T5793] usb 6-1: Using ep0 maxpacket: 32
[  827.625625][ T5793] usb 6-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  827.634752][ T5793] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  827.647701][ T5793] usb 6-1: config 0 descriptor??
[  827.789690][   T11] team0 (unregistering): Port device team_slave_1 removed
[  827.865228][ T5793] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  827.902476][   T11] team0 (unregistering): Port device team_slave_0 removed
[  827.912170][ T5793] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  827.939663][ T5793] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  827.959925][ T5793] usb 6-1: media controller created
[  828.024687][ T5793] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  828.037551][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  828.096447][T15046] az6027: more than 2 i2c messages at a time is not handled yet. TODO.
[  828.139307][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  829.553783][   T11] bond0 (unregistering): Released all slaves
[  829.674877][T15063] netlink: 24 bytes leftover after parsing attributes in process `syz.7.2760'.
[  830.017009][T15071] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2761'.
[  830.124969][ T5793] az6027: usb out operation failed. (-71)
[  830.151594][ T5793] az6027: usb out operation failed. (-71)
[  830.174047][ T5793] stb0899_attach: Driver disabled by Kconfig
[  830.190594][ T5793] az6027: no front-end attached
[  830.190594][ T5793] 
[  830.200121][ T5793] az6027: usb out operation failed. (-71)
[  830.205999][ T5793] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  830.215163][ T5793] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.5/usb6/6-1/input/input8
[  830.229302][ T5793] dvb-usb: schedule remote query interval to 400 msecs.
[  830.255460][ T5793] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  830.479868][ T5793] usb 6-1: USB disconnect, device number 7
[  831.083617][ T5793] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  834.529942][T14928] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  834.835402][T14928] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  834.884844][T14928] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  834.905060][T14928] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  835.843565][T14928] 8021q: adding VLAN 0 to HW filter on device bond0
[  835.893552][T14928] 8021q: adding VLAN 0 to HW filter on device team0
[  835.913031][ T1141] bridge0: port 1(bridge_slave_0) entered blocking state
[  835.920292][ T1141] bridge0: port 1(bridge_slave_0) entered forwarding state
[  836.005336][ T1118] bridge0: port 2(bridge_slave_1) entered blocking state
[  836.012544][ T1118] bridge0: port 2(bridge_slave_1) entered forwarding state
[  836.753130][T14928] 8021q: adding VLAN 0 to HW filter on device batadv0
[  838.809232][T14928] veth0_vlan: entered promiscuous mode
[  839.608320][T14928] veth1_vlan: entered promiscuous mode
[  839.715587][T15149] netlink: 72 bytes leftover after parsing attributes in process `syz.2.2778'.
[  839.733195][T14928] veth0_macvtap: entered promiscuous mode
[  839.753804][T14928] veth1_macvtap: entered promiscuous mode
[  839.803579][T14928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  839.839412][T14928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  839.874812][T14928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  839.889239][T14928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  839.977600][T14928] batman_adv: batadv0: Interface activated: batadv_slave_0
[  840.028704][T14928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  840.055025][T14928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  840.072684][T14928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  840.084098][T14928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  840.270379][T14928] batman_adv: batadv0: Interface activated: batadv_slave_1
[  841.043570][T14928] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  841.125490][T14928] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  841.134259][T14928] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  841.183700][T14928] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  841.748600][ T1118] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  841.862957][ T1118] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  841.945543][T13139] Bluetooth: hci4: command 0x0406 tx timeout
[  841.954972][ T1118] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  841.974486][ T1118] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  842.635664][ T5863] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  842.935825][ T5863] usb 3-1: Using ep0 maxpacket: 16
[  843.051329][ T5863] usb 3-1: config 1 has an invalid interface number: 105 but max is 0
[  843.085004][ T5863] usb 3-1: config 1 has no interface number 0
[  843.109567][ T5863] usb 3-1: config 1 interface 105 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  843.138108][ T5863] usb 3-1: config 1 interface 105 has no altsetting 0
[  843.176773][ T5863] usb 3-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[  843.201085][ T5863] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  843.248379][ T5863] usb 3-1: Product: syz
[  843.252752][ T5863] usb 3-1: Manufacturer: syz
[  843.260330][ T5863] usb 3-1: SerialNumber: syz
[  843.272658][T15164] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  843.656115][ T5863] aqc111: probe of 3-1:1.105 failed with error -22
[  845.703911][T15184] netlink: 72 bytes leftover after parsing attributes in process `syz.6.2786'.
[  845.729214][ T5863] usb 3-1: USB disconnect, device number 8
[  850.117573][T15214] netlink: 72 bytes leftover after parsing attributes in process `syz.7.2797'.
[  853.432504][T15247] netlink: 72 bytes leftover after parsing attributes in process `syz.7.2807'.
[  854.484806][T15253] tipc: Started in network mode
[  854.489843][T15253] tipc: Node identity ac14140f, cluster identity 4711
[  854.497930][T15253] tipc: New replicast peer: 255.255.255.255
[  854.505482][T15253] tipc: Enabled bearer <udp:syz2>, priority 10
[  855.003465][ T5863] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  855.185490][ T5863] usb 3-1: Using ep0 maxpacket: 16
[  856.221407][  T787] tipc: Node number set to 2886997007
[  856.232335][ T5863] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  859.361032][T15291] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  860.602144][ T5863] usb 3-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  860.623362][ T5863] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  861.357054][ T5863] r8152-cfgselector 3-1: config 0 descriptor??
[  861.393978][ T5863] r8152-cfgselector 3-1: can't set config #0, error -71
[  861.430742][ T5863] r8152-cfgselector 3-1: Unknown version 0x0000
[  861.448828][ T5863] r8152-cfgselector 3-1: USB disconnect, device number 9
[  864.486134][T15325] netlink: 72 bytes leftover after parsing attributes in process `syz.7.2829'.
[  866.780814][T15354] netlink: 72 bytes leftover after parsing attributes in process `syz.5.2840'.
[  870.600980][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  870.608117][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  870.789857][T15383] tipc: Started in network mode
[  870.795005][T15383] tipc: Node identity ac14140f, cluster identity 4711
[  870.809460][T15383] tipc: New replicast peer: 255.255.255.255
[  870.817994][T15383] tipc: Enabled bearer <udp:syz2>, priority 10
[  871.937065][ T5793] tipc: Node number set to 2886997007
[  873.445627][  T787] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  873.655723][  T787] usb 3-1: Using ep0 maxpacket: 32
[  873.716413][  T787] usb 3-1: config 0 has an invalid interface number: 247 but max is 0
[  873.871448][  T787] usb 3-1: config 0 has no interface number 0
[  874.004468][  T787] usb 3-1: New USB device found, idVendor=1d50, idProduct=60c6, bcdDevice=62.9b
[  874.414072][  T787] usb 3-1: New USB device strings: Mfr=1, Product=3, SerialNumber=0
[  874.423737][  T787] usb 3-1: Product: syz
[  874.428465][  T787] usb 3-1: Manufacturer: syz
[  874.444686][  T787] usb 3-1: config 0 descriptor??
[  874.454039][T15410] XFS (nullb0): Invalid superblock magic number
[  875.590716][  T787] usb 3-1: USB disconnect, device number 10
[  876.761418][T15440] netlink: 68 bytes leftover after parsing attributes in process `syz.5.2861'.
[  880.744692][T15461] XFS (nullb0): Invalid superblock magic number
[  882.928035][ T5102] Bluetooth: hci1: command 0x0406 tx timeout
[  890.439375][T15558] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2895'.
[  890.474427][T15554] netlink: 32 bytes leftover after parsing attributes in process `syz.6.2896'.
[  890.493530][T15557] netlink: 47 bytes leftover after parsing attributes in process `syz.7.2897'.
[  890.616050][T15553] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  893.745700][ T5897] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  894.086204][ T5897] usb 8-1: config 3 has an invalid interface number: 168 but max is 0
[  894.110529][ T5897] usb 8-1: config 3 has no interface number 0
[  894.134784][ T5897] usb 8-1: config 3 interface 168 altsetting 0 has an invalid endpoint with address 0xA1, skipping
[  894.175362][ T5897] usb 8-1: New USB device found, idVendor=06cd, idProduct=0135, bcdDevice=a8.a4
[  894.194711][ T5897] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  894.225541][T15585] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  894.482970][ T5897] usb 8-1: string descriptor 0 read error: -71
[  894.508979][ T5897] keyspan 8-1:3.168: Keyspan 2 port adapter converter detected
[  894.518962][ T5897] keyspan 8-1:3.168: found no endpoint descriptor for endpoint 81
[  894.527652][ T5897] keyspan 8-1:3.168: found no endpoint descriptor for endpoint 1
[  894.546351][ T5897] keyspan 8-1:3.168: found no endpoint descriptor for endpoint 84
[  894.554993][ T5897] keyspan 8-1:3.168: found no endpoint descriptor for endpoint 2
[  894.664561][ T5897] usb 8-1: Keyspan 2 port adapter converter now attached to ttyUSB0
[  894.773848][ T5897] keyspan 8-1:3.168: found no endpoint descriptor for endpoint 88
[  895.692424][ T5897] keyspan 8-1:3.168: found no endpoint descriptor for endpoint 6
[  895.758925][ T5897] usb 8-1: Keyspan 2 port adapter converter now attached to ttyUSB1
[  895.851411][ T5897] usb 8-1: USB disconnect, device number 10
[  895.896948][ T5897] keyspan_2 ttyUSB0: Keyspan 2 port adapter converter now disconnected from ttyUSB0
[  896.093120][ T5897] keyspan_2 ttyUSB1: Keyspan 2 port adapter converter now disconnected from ttyUSB1
[  896.105089][ T5897] keyspan 8-1:3.168: device disconnected
[  902.129724][T15653] libceph: resolve '4..' (ret=-3): failed
[  902.188050][ T5897] usb 6-1: new full-speed USB device number 8 using dummy_hcd
[  902.452909][ T5897] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  902.558472][ T5897] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  902.672762][ T5897] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[  902.766363][ T5897] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  902.842277][ T5897] usb 6-1: SerialNumber: syz
[  902.911228][ T5897] usb 6-1: 0:2 : does not exist
[  904.244845][ T5897] usb 6-1: USB disconnect, device number 8
[  905.109792][T15681] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  911.272886][T15730] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  912.080575][T15741] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  917.708747][T15776] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  920.722084][T15789] ipvlan0: entered promiscuous mode
[  924.926484][T15831] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2971'.
[  926.615880][T15847] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2977'.
[  928.103970][T15851] workqueue: Failed to create a rescuer kthread for wq "xfs-buf/nullb0": -EINTR
[  928.105066][T15853] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  929.943464][T15878] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2985'.
[  930.657300][T15881] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  932.120215][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  932.128491][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  933.494042][T15919] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2997'.
[  934.282600][T15899] Bluetooth: hci2: command 0x0406 tx timeout
[  938.068839][T15963] netlink: 36 bytes leftover after parsing attributes in process `syz.5.3012'.
[  939.864068][T15992] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1046.435386][    C1] ------------[ cut here ]------------
[ 1046.442703][    C1] WARNING: CPU: 1 PID: 0 at kernel/rcu/tree_stall.h:1001 rcu_check_gp_start_stall+0x2dc/0x460
[ 1046.453107][    C1] Modules linked in:
[ 1046.457047][    C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.6.102-syzkaller #0
[ 1046.464800][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1046.474958][    C1] RIP: 0010:rcu_check_gp_start_stall+0x2dc/0x460
[ 1046.481426][    C1] Code: ff ff ff 48 c7 c7 80 c4 ee 96 be 04 00 00 00 e8 7a a8 6c 00 48 89 df b8 01 00 00 00 87 05 bc 98 7e 15 85 c0 0f 85 19 ff ff ff <0f> 0b 48 81 ff 40 54 d3 8c 74 47 48 c7 c0 dc bc 4a 8e 48 c1 e8 03
[ 1046.501164][    C1] RSP: 0018:ffffc900001f0bb8 EFLAGS: 00010046
[ 1046.507278][    C1] RAX: 0000000000000000 RBX: ffffffff8cd35440 RCX: ffffffff81702bb6
[ 1046.515281][    C1] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffffff8cd35440
[ 1046.523284][    C1] RBP: ffffc900001f0e30 R08: 0000000000000003 R09: 0000000000000004
[ 1046.531292][    C1] R10: dffffc0000000000 R11: fffffbfff2ddd890 R12: 0000000000002904
[ 1046.539307][    C1] R13: 1ffff110171e7a6a R14: 0000000000000a02 R15: dffffc0000000000
[ 1046.547420][    C1] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[ 1046.556388][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1046.563021][    C1] CR2: 00007fff161e9ec0 CR3: 000000002d27e000 CR4: 00000000003506e0
[ 1046.571049][    C1] Call Trace:
[ 1046.574378][    C1]  <IRQ>
[ 1046.577266][    C1]  rcu_core+0x612/0x1720
[ 1046.581574][    C1]  ? ktime_get+0x7f/0x280
[ 1046.585959][    C1]  ? rcu_cpu_kthread_park+0x90/0x90
[ 1046.591203][    C1]  ? kvm_sched_clock_read+0x11/0x20
[ 1046.596450][    C1]  ? sched_clock+0x3f/0x60
[ 1046.600908][    C1]  ? sched_clock_cpu+0x75/0x430
[ 1046.605795][    C1]  ? ktime_get+0x7f/0x280
[ 1046.610165][    C1]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[ 1046.616187][    C1]  ? lock_chain_count+0x20/0x20
[ 1046.621083][    C1]  handle_softirqs+0x280/0x820
[ 1046.625883][    C1]  ? __irq_exit_rcu+0xc7/0x190
[ 1046.630687][    C1]  ? do_softirq+0x180/0x180
[ 1046.635231][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[ 1046.640477][    C1]  __irq_exit_rcu+0xc7/0x190
[ 1046.645109][    C1]  ? irq_exit_rcu+0x20/0x20
[ 1046.649665][    C1]  irq_exit_rcu+0x9/0x20
[ 1046.653938][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[ 1046.659623][    C1]  </IRQ>
[ 1046.662594][    C1]  <TASK>
[ 1046.665586][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1046.671647][    C1] RIP: 0010:pv_native_safe_halt+0x13/0x20
[ 1046.677412][    C1] Code: cc cc cc cc cc cc cc f3 0f 1e fa 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 66 90 0f 00 2d e3 e6 3a 00 f3 0f 1e fa fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc 66 0f 1f 00 55 41 57 41 56
[ 1046.697086][    C1] RSP: 0018:ffffc90000187de0 EFLAGS: 000002c6
[ 1046.703286][    C1] RAX: 093a7693d29d3a00 RBX: ffffffff8161914b RCX: 093a7693d29d3a00
[ 1046.711294][    C1] RDX: 0000000000000001 RSI: ffffffff8aaab9c0 RDI: ffffffff8afc66c0
[ 1046.719317][    C1] RBP: ffffc90000187f20 R08: ffff8880b8f36d4b R09: 1ffff110171e6da9
[ 1046.727351][    C1] R10: dffffc0000000000 R11: ffffed10171e6daa R12: ffffffff8e4a8828
[ 1046.735363][    C1] R13: 0000000000000001 R14: 0000000000000001 R15: 1ffff1100374b780
[ 1046.743369][    C1]  ? do_idle+0x1eb/0x510
[ 1046.747698][    C1]  default_idle+0x13/0x20
[ 1046.752076][    C1]  default_idle_call+0x6c/0xa0
[ 1046.756888][    C1]  do_idle+0x1eb/0x510
[ 1046.761018][    C1]  ? idle_inject_timer_fn+0x60/0x60
[ 1046.766264][    C1]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[ 1046.771972][    C1]  cpu_startup_entry+0x43/0x60
[ 1046.776777][    C1]  start_secondary+0xee/0xf0
[ 1046.781406][    C1]  secondary_startup_64_no_verify+0x179/0x17b
[ 1046.787556][    C1]  </TASK>
[ 1046.790607][    C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1046.797921][    C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.6.102-syzkaller #0
[ 1046.805674][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1046.815757][    C1] Call Trace:
[ 1046.819063][    C1]  <IRQ>
[ 1046.821929][    C1]  dump_stack_lvl+0x16c/0x230
[ 1046.826654][    C1]  ? show_regs_print_info+0x20/0x20
[ 1046.831894][    C1]  ? load_image+0x3b0/0x3b0
[ 1046.836459][    C1]  panic+0x2c0/0x710
[ 1046.840409][    C1]  ? bpf_jit_dump+0xd0/0xd0
[ 1046.844969][    C1]  ? secondary_startup_64_no_verify+0x179/0x17b
[ 1046.851265][    C1]  __warn+0x2e0/0x470
[ 1046.855288][    C1]  ? rcu_check_gp_start_stall+0x2dc/0x460
[ 1046.861057][    C1]  ? rcu_check_gp_start_stall+0x2dc/0x460
[ 1046.866827][    C1]  report_bug+0x2be/0x4f0
[ 1046.871204][    C1]  ? rcu_check_gp_start_stall+0x2dc/0x460
[ 1046.876972][    C1]  ? rcu_check_gp_start_stall+0x2dc/0x460
[ 1046.882735][    C1]  ? rcu_check_gp_start_stall+0x2de/0x460
[ 1046.888496][    C1]  handle_bug+0xcf/0x120
[ 1046.892795][    C1]  exc_invalid_op+0x1a/0x50
[ 1046.897336][    C1]  asm_exc_invalid_op+0x1a/0x20
[ 1046.902231][    C1] RIP: 0010:rcu_check_gp_start_stall+0x2dc/0x460
[ 1046.908605][    C1] Code: ff ff ff 48 c7 c7 80 c4 ee 96 be 04 00 00 00 e8 7a a8 6c 00 48 89 df b8 01 00 00 00 87 05 bc 98 7e 15 85 c0 0f 85 19 ff ff ff <0f> 0b 48 81 ff 40 54 d3 8c 74 47 48 c7 c0 dc bc 4a 8e 48 c1 e8 03
[ 1046.928238][    C1] RSP: 0018:ffffc900001f0bb8 EFLAGS: 00010046
[ 1046.934339][    C1] RAX: 0000000000000000 RBX: ffffffff8cd35440 RCX: ffffffff81702bb6
[ 1046.942351][    C1] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffffff8cd35440
[ 1046.950368][    C1] RBP: ffffc900001f0e30 R08: 0000000000000003 R09: 0000000000000004
[ 1046.958388][    C1] R10: dffffc0000000000 R11: fffffbfff2ddd890 R12: 0000000000002904
[ 1046.966401][    C1] R13: 1ffff110171e7a6a R14: 0000000000000a02 R15: dffffc0000000000
[ 1046.974425][    C1]  ? rcu_check_gp_start_stall+0x2c6/0x460
[ 1046.980207][    C1]  ? rcu_check_gp_start_stall+0x2c6/0x460
[ 1046.985976][    C1]  rcu_core+0x612/0x1720
[ 1046.990273][    C1]  ? ktime_get+0x7f/0x280
[ 1046.994643][    C1]  ? rcu_cpu_kthread_park+0x90/0x90
[ 1046.999886][    C1]  ? kvm_sched_clock_read+0x11/0x20
[ 1047.005122][    C1]  ? sched_clock+0x3f/0x60
[ 1047.009575][    C1]  ? sched_clock_cpu+0x75/0x430
[ 1047.014460][    C1]  ? ktime_get+0x7f/0x280
[ 1047.018832][    C1]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[ 1047.024866][    C1]  ? lock_chain_count+0x20/0x20
[ 1047.029762][    C1]  handle_softirqs+0x280/0x820
[ 1047.034565][    C1]  ? __irq_exit_rcu+0xc7/0x190
[ 1047.039376][    C1]  ? do_softirq+0x180/0x180
[ 1047.043924][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[ 1047.049167][    C1]  __irq_exit_rcu+0xc7/0x190
[ 1047.053793][    C1]  ? irq_exit_rcu+0x20/0x20
[ 1047.058357][    C1]  irq_exit_rcu+0x9/0x20
[ 1047.062639][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[ 1047.068314][    C1]  </IRQ>
[ 1047.071274][    C1]  <TASK>
[ 1047.074235][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1047.080266][    C1] RIP: 0010:pv_native_safe_halt+0x13/0x20
[ 1047.086042][    C1] Code: cc cc cc cc cc cc cc f3 0f 1e fa 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 66 90 0f 00 2d e3 e6 3a 00 f3 0f 1e fa fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc 66 0f 1f 00 55 41 57 41 56
[ 1047.105690][    C1] RSP: 0018:ffffc90000187de0 EFLAGS: 000002c6
[ 1047.111791][    C1] RAX: 093a7693d29d3a00 RBX: ffffffff8161914b RCX: 093a7693d29d3a00
[ 1047.119802][    C1] RDX: 0000000000000001 RSI: ffffffff8aaab9c0 RDI: ffffffff8afc66c0
[ 1047.127812][    C1] RBP: ffffc90000187f20 R08: ffff8880b8f36d4b R09: 1ffff110171e6da9
[ 1047.135820][    C1] R10: dffffc0000000000 R11: ffffed10171e6daa R12: ffffffff8e4a8828
[ 1047.143834][    C1] R13: 0000000000000001 R14: 0000000000000001 R15: 1ffff1100374b780
[ 1047.151861][    C1]  ? do_idle+0x1eb/0x510
[ 1047.156157][    C1]  default_idle+0x13/0x20
[ 1047.160537][    C1]  default_idle_call+0x6c/0xa0
[ 1047.165341][    C1]  do_idle+0x1eb/0x510
[ 1047.169458][    C1]  ? idle_inject_timer_fn+0x60/0x60
[ 1047.174707][    C1]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[ 1047.180404][    C1]  cpu_startup_entry+0x43/0x60
[ 1047.185210][    C1]  start_secondary+0xee/0xf0
[ 1047.189848][    C1]  secondary_startup_64_no_verify+0x179/0x17b
[ 1047.196001][    C1]  </TASK>
[ 1047.199333][    C1] Kernel Offset: disabled
[ 1047.204329][    C1] Rebooting in 86400 seconds..