last executing test programs:

17m29.33205055s ago: executing program 32 (id=142):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r2, r1, 0x25, 0x0, @void}, 0x10)
syz_emit_ethernet(0xfdef, &(0x7f0000002600)=ANY=[], 0x0)

17m26.294455561s ago: executing program 33 (id=165):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)=@newtfilter={0x58, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0xb, 0x4}, {}, {0x7, 0x300}}, [@filter_kind_options=@f_basic={{0xa}, {0x28, 0x2, [@TCA_BASIC_EMATCHES={0x24, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x18, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0xceb, 0x7, 0x4}, {{0x0, 0x0, 0x1, 0x1}, {0x0, 0x0, 0x1}}}}]}]}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x20041090}, 0x20000040)

16m53.841202272s ago: executing program 34 (id=365):
syz_emit_ethernet(0x4a, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaa"], 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0xf, &(0x7f0000000200)=ANY=[@ANYRESDEC, @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7020000000000008500000051000000bf0900000000000055"], 0x0, 0x9, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x19, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000611824"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @cgroup_sockopt=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.idle_time\x00', 0x275a, 0x0)
write$binfmt_misc(r1, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad44afac11d875397bdb22d0000b420a1a93c5240f45f819ef6167d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0x2000000000001]}})

16m48.295490793s ago: executing program 35 (id=399):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r2, 0x7a7, &(0x7f00000000c0)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, &(0x7f0000000000)={@my=0x1})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r2, 0x7a8, &(0x7f0000000080)={{@local, 0x2}, @local, 0x0, 0x0, 0x5e, 0x200000000000, 0x100000000000006})

16m17.552174592s ago: executing program 36 (id=529):
r0 = socket(0x1, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)=ANY=[@ANYRES32=r2, @ANYRES32=r1, @ANYBLOB='&'], 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r2, &(0x7f0000000180), &(0x7f00000000c0)=@udp6=r0}, 0x20)
bind$unix(r0, &(0x7f00000001c0)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r0, &(0x7f0000001680)=[{{&(0x7f0000000380)=@file={0x1, './file0\x00'}, 0x6e, 0x0}}], 0x1, 0x0)
recvmmsg(r0, &(0x7f0000000d40)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000500)=""/65, 0x41}], 0x1}}], 0x2, 0x0, 0x0)

15m47.224157527s ago: executing program 37 (id=668):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f00000000c0)={0x3, 0x1000}, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000003180)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf84, 0x3}, 0x1c)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r1, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x0)
pselect6(0x40, &(0x7f0000000100)={0x3, 0x80000000, 0x5, 0xfff, 0x6, 0x1ff, 0x0, 0xa}, &(0x7f0000000140)={0x9, 0x6, 0x0, 0x100, 0xcf9, 0x0, 0x4, 0x7}, 0x0, 0x0, 0x0)

15m40.713002374s ago: executing program 38 (id=628):
getrandom(&(0x7f0000000580)=""/265, 0xffffff3f, 0x3)
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000180)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r0, 0x0, r2, 0x0, 0x80, 0x8)
write$tun(r1, &(0x7f00000033c0)=ANY=[], 0x107c)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x15)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x6, 0x7, &(0x7f0000006680))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)

15m23.091704893s ago: executing program 39 (id=781):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$CEC_RECEIVE(0xffffffffffffffff, 0xc0386106, &(0x7f0000000180)={0x0, 0x1, 0xfffffffc, 0x6, 0x4, 0x0, "5debca561a5fbf61048955f6f876b2ff"})
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000800)={r1, r1, r1}, 0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)={'sha384\x00'}})

15m7.970548293s ago: executing program 40 (id=844):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
getsockname$packet(r1, &(0x7f0000000600)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r2, @ANYBLOB="f5ff0f00252155b21c0012000c000100626f6e64000000000c0002000800010001"], 0x3c}}, 0x40000)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000100)={@ipv4={'\x00', '\xff\xff', @multicast2}, 0x56, r2})
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="3c00000010000305000000000007000000000000", @ANYRES32=0x0, @ANYBLOB="0000000006100000140012800b00010062726964676500000400028008000a00", @ANYRES32=r2], 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x440b0)

14m55.011295044s ago: executing program 41 (id=840):
r0 = syz_usb_connect(0x0, 0x48, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000022546940fa0ae803d0990102030109023600010000000009047500038cbb2a0009050a001000010000090588"], 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x11, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
fcntl$lock(0xffffffffffffffff, 0x26, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x1})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{0x77359400}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f00000000c0)={0x44, &(0x7f0000000200)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

14m31.489448604s ago: executing program 42 (id=1020):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000100)=0x1800, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4001, 0x0, @loopback}, 0x1c)
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)

14m16.303888248s ago: executing program 43 (id=1087):
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000640)="985e44efeabe001cabcf3d8673c3a254a9a2d3197970cb347b70a243bf77139a94bc3ae91684aaf7b7dff691deb8f8aef2d915fb3a0794a9a9b431a819bca6122c350637808dde804a048fd8696e524b2934126c443ce93d82e931eb9918e6c082", 0x61}], 0x1}}], 0x1, 0x2090)
syz_emit_ethernet(0x46, &(0x7f00000002c0)=ANY=[@ANYBLOB="ffffffffffffbbbbbbbbbbbb86dd6745208e00103aff00000000000000000000ffb1"], 0x0)
write$binfmt_register(0xffffffffffffffff, &(0x7f0000000300)={0x3a, 'syz2', 0x3a, 'M', 0x3a, 0x8000011000000009, 0x3a, 'B\xd4GGI\x82\\4\xbb\xbb\xbb\xb3\xd4)\xed\x8f\xaa\xf4\xd2{\xc5\t\xa9\xed\xf8e\xaa\xb9\xf5\r\xe3T\x0e\x8a\xd6\x9a_?G\x05\x00\x00\x00\x00\x00\x00\x00\x1e\x9a\xce\xac&x3\x15\x14y\xbf\xc6)\xa8\b/\x01\x00\x00\f\x8e1\xc4\xa1\xb2]I\xa5\x13}9\x1b<B\xc3k\xcd\x01\xe4\x05\n!\x02Y\xc7`ooveu`z\xb9\xf5r\xc0c\x95\xcbQbj5\xb1\x8f\xb9J\xa9#\x13\x92\x05H\x91\xa5\xdfxM\nD\xc70\xa11B\xf1\xab\xccw\x17\xbf\xc8W\xec\xb88\xc9\x1b*h\xc3c\x89n\x89ic\xfd\x9c\xfa~\xb5$VG\x85\xc2\x86\x89}*\x99\xda\x94\xba)\xb9b\xeb\xe9\x0f{V%TD\xbc\xee\x96C\x89No\xc9\n\x91\xe0\xfcqE4\x8c', 0x3a, '\x8c\xf0<\x06\xd3=(\xa0\x96k\xd8cf\x92\xd1\xed\xf5\x00\x00\xb5\xff\xd9o\x1c.\xecU \xc8\x12\xacf\x15I)S\xa5\xdb\x8f!\x8aA\xee$\x0e\x16\xf7wL\x9c~8\x10\xd2\nJ,D;Z \x92\xccY\xd7', 0x3a, './cgroup.cpu/cpuset.cpus/file0'}, 0x147)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYBLOB="6c0000001000010400"/20, @ANYBLOB="5d580000000000001c001a8018000a801400070000000000000000000000000000000001140003006970766c616e310000000000000000001c0012800b0001006970766c616e00004c"], 0x6c}, 0x1, 0x0, 0x0, 0x840}, 0x84)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x207, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bridge0\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f00000002c0)="05031600d3fc142e00004788031c09102c28", 0xfce0, 0x4, &(0x7f0000000140)={0x11, 0x86dd, r1, 0x1, 0x0, 0x6, @multicast}, 0x14)

13m51.404905279s ago: executing program 44 (id=1215):
r0 = syz_kvm_setup_syzos_vm$x86(0xffffffffffffffff, &(0x7f0000bff000/0x400000)=nil)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x100, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_X86_SET_MSR_FILTER(r2, 0x4188aec6, &(0x7f0000002840)={0x1, [{0x1, 0x8, 0xa6, &(0x7f0000000000)="82"}, {0x3, 0x0, 0x80000004, 0x0}, {0x2, 0x0, 0x0, 0x0}, {0x3, 0x0, 0x5, 0x0}, {0x263d94d9bdb317ed, 0x0, 0xbe2, 0x0}, {0x3, 0x0, 0x369, 0x0}, {0x2, 0x0, 0x6, 0x0}, {0x1, 0x0, 0x8, 0x0}, {0x3, 0x0, 0xfff, 0x0}, {0x2, 0x0, 0xfffffff1, 0x0}, {0x2, 0x0, 0xff, 0x0}, {0x2, 0x0, 0x4, 0x0}, {0x0, 0x0, 0x7, 0x0}, {0x1, 0x0, 0x0, 0x0}, {0x2, 0x0, 0x9, 0x0}, {0x0, 0x0, 0x6, 0x0}]})
syz_kvm_setup_syzos_vm$x86(r2, &(0x7f0000bff000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$x86(r0, &(0x7f0000000200)={0x0, &(0x7f0000000400)=[@enable_nested={0x12c, 0x18}], 0x18})
ioctl$KVM_CAP_X86_USER_SPACE_MSR(r2, 0x4068aea3, &(0x7f00000000c0)={0xbc, 0x0, 0x4})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

13m17.861919706s ago: executing program 45 (id=1424):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000880)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x50, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_DESC={0xc, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x1}]}, @NFTA_SET_POLICY={0x8, 0x8, 0x1, 0x0, 0x1}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x78}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSETELEM={0x40, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "d103"}]}]}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x68}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)={0x2c, 0xd, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x1001}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000805}, 0x8000)

12m19.073724044s ago: executing program 46 (id=1759):
socket(0xa, 0x5, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x1000008, 0x4000000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_clone3(&(0x7f0000001c00)={0x43180080, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000180)=[0x0], 0x1}, 0x75)

11m45.176700611s ago: executing program 7 (id=1989):
pipe(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
vmsplice(r1, &(0x7f00000000c0)=[{&(0x7f0000000240)="3d4077e5", 0x4}], 0x1, 0x0)
recvmmsg(r3, &(0x7f0000001440)=[{{&(0x7f0000000280)=@un=@abs, 0x0, &(0x7f0000001400)=[{&(0x7f0000001480)=""/1}, {&(0x7f0000000300)=""/102}, {&(0x7f0000000380)=""/4096}, {&(0x7f0000001380)=""/111}]}}], 0x700, 0x40002002, 0x0)
write$binfmt_misc(r2, &(0x7f0000000040), 0xffc1)
setsockopt$sock_int(r3, 0x1, 0x10, &(0x7f0000000180)=0x55b7, 0x4)
splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0)

11m44.583356297s ago: executing program 7 (id=1995):
openat$nullb(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000200)={<r1=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x7a, &(0x7f0000000340)={r1, @in6={{0xa, 0x3, 0x4, @rand_addr=' \x01\x00'}}}, &(0x7f0000000040)=0x84)
r2 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x800, 0xffffffff, 0xbfdffffc}, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r2, 0x47f6, 0x0, 0x2, 0x0, 0x300)

11m44.251380427s ago: executing program 7 (id=1996):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = io_uring_setup(0x3450, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x10004, 0x0, 0x10000, 0x1000, &(0x7f00004ac000/0x1000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x64, 0x0, 0x0)
r3 = gettid()
process_vm_writev(r3, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

11m41.927514595s ago: executing program 7 (id=2008):
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x414, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0xfd, 0x2c3, &(0x7f0000000440)="$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")
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000940)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x48, 0x0, 0x0, 0x0, &(0x7f0000000140))
openat$kvm(0xffffffffffffff9c, 0x0, 0x200, 0x0)
open(&(0x7f0000000200)='./bus\x00', 0x14507e, 0x1)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f00000000c0)='./bus\x00', 0x0, 0x1c10, 0x0)
r0 = open(&(0x7f0000000140)='./bus\x00', 0xc40, 0x40)
ioctl$BLKROSET(r0, 0x125d, &(0x7f0000000080)=0x3f)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
truncate(&(0x7f00000002c0)='./file1\x00', 0x42d9)

11m40.627341912s ago: executing program 7 (id=2029):
syz_mount_image$fuse(0x0, &(0x7f0000000740)='./file0\x00', 0x2000060, 0x0, 0x3, 0x0, 0x0)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f00000001c0)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000200), 0x1000800, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
syz_mount_image$f2fs(&(0x7f00000004c0), &(0x7f0000000040)='./bus\x00', 0x2008410, &(0x7f0000000f40)=ANY=[@ANYRES64, @ANYRES64, @ANYRES64=0x0, @ANYRES8], 0x1, 0x554a, &(0x7f0000003a00)="$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")
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})

11m38.281665992s ago: executing program 7 (id=2034):
r0 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000001c0)={0x0, <r1=>0x0}, &(0x7f0000000080)=0xc)
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000080)='./file0\x00', 0x1008044, &(0x7f0000000300)={[{@uid={'uid', 0x3d, r1}}, {@nobarrier}, {@umask={'umask', 0x3d, 0x8000000000000000}}, {@session={'session', 0x3d, 0x1}}, {@force}]}, 0x1, 0x5ec, &(0x7f0000000c40)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0xd, &(0x7f0000000080)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41000, 0xa}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xf, 0x4, 0x8, 0x8}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x20000002}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x8782, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x6a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r3, 0x2000002, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8401, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x210e49b, &(0x7f0000000640)={[], [{@uid_eq={'uid', 0x3d, r1}}, {@permit_directio}, {@obj_role={'obj_role', 0x3d, 'session'}}, {@uid_gt={'uid>', r1}}, {@subj_role={'subj_role', 0x3d, '[\xcc!(-'}}]}, 0x41, 0x4d3, &(0x7f00000000c0)="$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")

11m37.414741764s ago: executing program 47 (id=2034):
r0 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000001c0)={0x0, <r1=>0x0}, &(0x7f0000000080)=0xc)
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000080)='./file0\x00', 0x1008044, &(0x7f0000000300)={[{@uid={'uid', 0x3d, r1}}, {@nobarrier}, {@umask={'umask', 0x3d, 0x8000000000000000}}, {@session={'session', 0x3d, 0x1}}, {@force}]}, 0x1, 0x5ec, &(0x7f0000000c40)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0xd, &(0x7f0000000080)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41000, 0xa}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xf, 0x4, 0x8, 0x8}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x20000002}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x8782, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x6a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r3, 0x2000002, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8401, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x210e49b, &(0x7f0000000640)={[], [{@uid_eq={'uid', 0x3d, r1}}, {@permit_directio}, {@obj_role={'obj_role', 0x3d, 'session'}}, {@uid_gt={'uid>', r1}}, {@subj_role={'subj_role', 0x3d, '[\xcc!(-'}}]}, 0x41, 0x4d3, &(0x7f00000000c0)="$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")

11m31.063751561s ago: executing program 8 (id=2061):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000140))
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000040)=0x200000000)
r1 = dup2(r0, r0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000001c0)={0x0, 0x1, 0x0, &(0x7f0000000300)=""/107, 0x0, 0xeeef0000})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x6)
read$FUSE(r1, &(0x7f00000016c0)={0x2020}, 0x2020)
write$vhost_msg_v2(r1, &(0x7f0000000200)={0x2, 0x0, {&(0x7f0000000280)=""/128, 0x80, 0x0, 0x1, 0x2}}, 0x48)

11m30.74742287s ago: executing program 8 (id=2063):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x44}, 0x1, 0x0, 0x0, 0x404c1}, 0x40040d4)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=@newlink={0x58, 0x10, 0xffffffffffffffff, 0x70bd25, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x1414, 0x2021}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x20, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MACADDR_MODE={0x8}, @IFLA_MACVLAN_MODE={0x8, 0x1, 0x10}, @IFLA_MACVLAN_MACADDR={0xa, 0x4, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1b}}]}}}, @IFLA_LINK={0x8}]}, 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x8000002)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0xfffffffffffffedb, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="5400000010000100"/20, @ANYRES32=r2], 0x54}, 0x1, 0x0, 0x0, 0x24000000}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x24044040)

11m30.24411737s ago: executing program 8 (id=2068):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f00000013c0)='./file0/file0\x00', 0x42, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file0\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f00000003c0), 0x0, &(0x7f00000004c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200)
symlink(&(0x7f0000000080)='.\x00', &(0x7f0000000240)='./file0\x00')

11m29.925804049s ago: executing program 8 (id=2072):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f00000002c0)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000280)=0x4, r1, 0x0, 0x1, 0x4}}, 0x20)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000340)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff}, 0x2, 0x6}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f00000005c0)=0x1, r3, 0x0, 0x1, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_BIND(r2, &(0x7f00000000c0)={0x14, 0x88, 0xfa00, {r3, 0x10, 0x0, @in={0x2, 0x4e23, @empty}}}, 0x90)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000180)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0xe, @empty, 0x2}, {0xa, 0x4e23, 0x7, @remote, 0x3}, r1, 0x7}}, 0x48)
close(0x3)

11m29.720813251s ago: executing program 8 (id=2074):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0])
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040))
chdir(&(0x7f0000000080)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x244)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0x810c9365, 0x0)

11m29.641541756s ago: executing program 8 (id=2076):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x4, 0x2000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
syz_genetlink_get_family_id$l2tp(0x0, 0xffffffffffffffff)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket(0x10, 0x803, 0x0)
sendto(r1, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x4008040, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x7, &(0x7f0000000600)=""/191, 0xbf}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400})

11m14.44898093s ago: executing program 48 (id=2076):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x4, 0x2000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
syz_genetlink_get_family_id$l2tp(0x0, 0xffffffffffffffff)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket(0x10, 0x803, 0x0)
sendto(r1, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x4008040, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x7, &(0x7f0000000600)=""/191, 0xbf}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400})

10m34.813009159s ago: executing program 6 (id=2378):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x8031, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x19})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000100)={{&(0x7f0000010000/0x1000)=nil, 0x1000}, 0x5})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
close(r0)

10m33.876588865s ago: executing program 6 (id=2381):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r1 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r1, &(0x7f0000000a00)={'syz1\x00', {0x9, 0x7, 0x5, 0x5}, 0x3f, [0x9, 0x2, 0x18, 0x2, 0x2, 0x400, 0x80400000, 0x0, 0x8, 0x0, 0x6, 0x2, 0xfffffffb, 0x39, 0x747d5e13, 0x800, 0xfffffb9a, 0xfffffffe, 0x0, 0xfffffffb, 0x2004, 0x3, 0x0, 0xf250, 0x80, 0x4800, 0x300000, 0x7, 0xe, 0x4623f, 0x0, 0x10001, 0x1ff, 0x8003, 0x0, 0x3, 0xd, 0x3, 0xba55, 0x8da8, 0x4, 0x200, 0x2, 0x4, 0xe, 0x4, 0x2, 0x6f, 0x8, 0x9, 0x1, 0x199d, 0x6, 0x2, 0x9, 0xfffbffff, 0x4, 0x6, 0x1000, 0x5, 0x3d, 0x8, 0xa, 0x5], [0x1, 0x1e, 0x3, 0x8000, 0xfffffffd, 0x3, 0x0, 0x25, 0x7, 0xfffffffc, 0x8, 0x7fff, 0x72c, 0x1c32, 0x3, 0x6, 0x10000, 0x400, 0x7ffd, 0x3, 0x1, 0xf, 0x5, 0x0, 0x981, 0x4, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x1000001, 0x10, 0xfffffff9, 0xfffffffd, 0x7, 0x1, 0xffffffff, 0x6, 0x8, 0x800, 0x7, 0x6, 0x96, 0xfffffff9, 0x2, 0x0, 0x2, 0x411, 0xc, 0x3, 0x379, 0x9, 0xe, 0x5, 0x7, 0x6, 0x2, 0x1, 0x1, 0x8, 0x7, 0x200, 0x3], [0x401, 0x8000c584, 0xffff, 0xcd3, 0x7, 0x1f, 0x404, 0x4, 0x4008, 0xc, 0x7, 0x9, 0xe8b, 0x5, 0x80000001, 0x8, 0x3f92, 0x1000, 0x0, 0x10, 0x1, 0xfffffff9, 0x0, 0x1000, 0x80040101, 0x5, 0x4, 0x5, 0x200003, 0x2, 0x5, 0x80, 0x9, 0x8001, 0x10000, 0x0, 0x7, 0x400004, 0x3, 0x6d7e, 0x3, 0x8, 0x3, 0xbf23, 0x6, 0x9, 0x956, 0x4, 0x3ff, 0xe, 0x6, 0x100fffd, 0x2005, 0x9, 0x4, 0xea, 0x9, 0x20000005, 0x3, 0xd9, 0x0, 0x7d, 0x401, 0x5], [0x108e, 0xffff, 0x7, 0x3, 0x88, 0x2, 0x4000000, 0x4, 0x4c, 0x2, 0x763, 0xb, 0x402, 0x1, 0x9, 0x4001000, 0x7f, 0x1, 0x3fa9, 0x4, 0x0, 0x5, 0x6, 0x4, 0xe47, 0x4, 0x3, 0x4, 0x2, 0x2851, 0x3b, 0x20000001, 0x5, 0x5, 0xa80a, 0x65f413f9, 0x4, 0x20006, 0x8a5, 0x86, 0x44, 0x409, 0x3, 0x4, 0x4, 0x10, 0x4, 0xffffffff, 0x7fff, 0xffff8a33, 0xfffffff9, 0x401, 0x3, 0x200, 0x7, 0x4edf, 0xfffffffd, 0xa, 0xe, 0x2, 0xf, 0xf, 0x136, 0x7fffffff]}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
readv(r1, &(0x7f0000001240)=[{&(0x7f00000012c0)=""/41, 0x29}], 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)

10m31.333765176s ago: executing program 6 (id=2390):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r1)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
listen(r2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x4}, 0x50)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r4, r3, 0x26}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000f80)={{r4}, &(0x7f0000000f00), &(0x7f0000000f40)=r1}, 0x20)
close_range(r0, 0xffffffffffffffff, 0x0)

10m30.969921627s ago: executing program 6 (id=2393):
r0 = socket(0x10, 0x2, 0x0)
syz_mount_image$udf(&(0x7f0000000080), &(0x7f00000000c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x4040, &(0x7f00000015c0)=ANY=[], 0x2, 0xc2d, &(0x7f00000001c0)="$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")
getdents(0xffffffffffffffff, 0x0, 0x0)
write(r0, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
recvmmsg(r0, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})
creat(&(0x7f0000000100)='./bus\x00', 0x44)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x301400, 0x0)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x49)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x7a00, 0x0, 0x3)
rename(&(0x7f0000000040)='./file1\x00', &(0x7f0000000100)='./file0/file0\x00')

10m26.603343228s ago: executing program 6 (id=2407):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
listen(r1, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x4)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x5e22, 0x0, @empty}, 0x1c)
listen(r3, 0x0)
writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000180)="580000001500add427323b470c45b45602067fffffff81004e22030d00ff0028925aa8002000eaa57b00090080020efffeffe809020000ff0004f03a1c000000ffffffffffffffffffffffe7ee0000000000000000020000", 0x58}], 0x1)

10m25.865165201s ago: executing program 6 (id=2412):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
flock(r1, 0x2)
r2 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
flock(r2, 0x1)
r3 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
flock(r3, 0x1)
flock(r3, 0x1)

10m25.416470738s ago: executing program 49 (id=2412):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
flock(r1, 0x2)
r2 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
flock(r2, 0x1)
r3 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
flock(r3, 0x1)
flock(r3, 0x1)

8m2.127259555s ago: executing program 9 (id=3060):
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$inet6_sctp(0xa, 0x5, 0x84)
syz_open_dev$I2C(0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x0)
socket$netlink(0x10, 0x3, 0xc)
r1 = socket$inet6(0xa, 0x2, 0x88)
bind$inet6(r1, &(0x7f0000002c80)={0xa, 0x14e24, 0x0, @rand_addr, 0xffff}, 0x1c)
connect$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e24, 0x0, @rand_addr, 0xd}, 0x1c)
sendmmsg(r1, &(0x7f00000092c0), 0x4ff, 0x0)

8m1.776745876s ago: executing program 9 (id=3062):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_DEV(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x8000)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$netlink(r1, &(0x7f0000000200)={0x10, 0x0, 0x0, 0x80065c9}, 0xc)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="b80000001300e999000000000000000000000000000000ac1efc0100000008000000000000000000000000000000000a004000"/63, @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="000000000000000000000000000000000900000000000000f8ffffffffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000100"], 0xb8}}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000020000000900010073797a300000000040000000030a09020000000000000000020000000900010073797a30000000000900030073797a3200000000140004800800014000000000080002400000000014000000110001"], 0x88}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000005c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_DELCHAIN={0x2c, 0x5, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x8}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}], {0x14}}, 0x54}, 0x1, 0x0, 0x0, 0x8001}, 0x0)

8m1.53741593s ago: executing program 9 (id=3065):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0x5)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
r2 = accept4$unix(r0, 0x0, 0x0, 0x0)
sendto$packet(r1, &(0x7f0000000600)="5f0efc3e1792a50972d2eb21bdff9ca4ac804c2847fe7bf05ddc63ff512d4074687760a5fbd1fc97772c6f5027dcea15b6658de3b024a6ea22baafb445bf8427c8055d00", 0xffffff3d, 0x0, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000880)=[{{&(0x7f0000000080)={0x2, 0x0, @rand_addr=0xac1414bb}, 0x3804, &(0x7f0000000100)=[{&(0x7f00000000c0)='Q', 0x1}], 0x1}, 0x20000000}, {{&(0x7f0000000180)={0x2, 0x0, @remote}, 0x69, &(0x7f0000000400)=[{&(0x7f0000000240)="b9", 0x26892}], 0xbb}}], 0x2, 0x0)
recvmsg(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000003c0)=""/74, 0x4a}], 0x2d}, 0x10000)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r3, 0xffffffffffffffff, 0x200000000000000)

8m1.283869916s ago: executing program 9 (id=3067):
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000100)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f00000000c0)='./file1\x00')
symlinkat(&(0x7f0000000400)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, r0)
setpgid(0x0, r0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x104)

8m0.942350956s ago: executing program 9 (id=3069):
socket$inet6(0x10, 0x2, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1900000004000000040000000c"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x6, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b707000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet6(0xa, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000080), &(0x7f0000000240)=r2}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x18000000000002a0, 0xd28, 0x0, &(0x7f0000000200)="b9ff03076804268c989e140088a8", 0x0, 0x4ff, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

7m56.724823557s ago: executing program 9 (id=3084):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
r0 = socket(0x40000000015, 0x5, 0x0)
bind$inet(r0, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e24, 0x7f, @dev={0xfe, 0x80, '\x00', 0x26}, 0xca}, 0x1c)
sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
bind$inet(r1, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x0, 0x0, 0x0)

7m56.305714711s ago: executing program 50 (id=3084):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
r0 = socket(0x40000000015, 0x5, 0x0)
bind$inet(r0, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e24, 0x7f, @dev={0xfe, 0x80, '\x00', 0x26}, 0xca}, 0x1c)
sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
bind$inet(r1, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x0, 0x0, 0x0)

6m12.881133394s ago: executing program 4 (id=3424):
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000080)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x3, 0x4}}, 0x10)
bind$tipc(r2, &(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x42, 0x2}}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x1}, 0x10)
r3 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, &(0x7f0000000040)=@name={0x1e, 0x2, 0x0, {{0x42, 0x3}}}, 0x10)
r4 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r4, &(0x7f0000000380)={&(0x7f0000000140)=@nameseq={0x1e, 0x1, 0x2, {0x42, 0x4, 0x4}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4000884}, 0x4)

6m11.771925155s ago: executing program 4 (id=3426):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x2, &(0x7f0000000200)=@raw=[@call={0x85, 0x0, 0x0, 0xbf}, @exit], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)

6m10.744368631s ago: executing program 4 (id=3428):
pipe(&(0x7f00000007c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r2=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r2, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x200000b, 0x204031, 0xffffffffffffffff, 0x42795000)
vmsplice(r1, &(0x7f00000000c0)=[{&(0x7f0000000180)='w', 0x1}], 0x1, 0x1)
close(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000400)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendto$unix(r3, &(0x7f00000004c0)="04", 0x1, 0xd1, 0x0, 0x0)
recvfrom$unix(r4, 0x0, 0x0, 0x10102, 0x0, 0x0)
splice(r0, 0x0, r1, 0x0, 0xfffd, 0x0)

6m9.303894113s ago: executing program 4 (id=3434):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f00000001c0)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
connect$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101)
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000100)='./file0\x00', 0x2a00005, &(0x7f00000002c0)=ANY=[], 0x0, 0x2b7, &(0x7f0000000580)="$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")
chdir(&(0x7f0000000080)='./file1\x00')
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, &(0x7f0000000180))

6m9.016605121s ago: executing program 4 (id=3436):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r1, @ANYBLOB="01000000000000001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r2 = socket(0x10, 0x803, 0x4)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000340)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x2, 0x4, 0x0, 0x0, 0x4, 0x0, 0xfffffffffffffffc, 0x0, 0x0, '\x00', 0x0, 0x38}, 0x94)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x300}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r6}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0x44}}, 0x884)

6m0.434992219s ago: executing program 4 (id=3452):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
select(0xff42, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x700}, 0x0, &(0x7f0000000100), &(0x7f0000000140)={0x77359400})

5m59.813047339s ago: executing program 51 (id=3452):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
select(0xff42, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x700}, 0x0, &(0x7f0000000100), &(0x7f0000000140)={0x77359400})

23.9705467s ago: executing program 2 (id=4300):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(0xffffffffffffffff, 0xc1105518, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x0, 'syz0\x00'}, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x3, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffffffe, 0x8000000000000000, 0x0, 0xfffffffffffffffe, 0x8, 0x0, 0x4, 0xfffffffffffffffd, 0x0, 0xf3, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x6, 0x6, 0x0, 0x14, 0x0, 0x0, 0x7, 0x0, 0x0, 0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3486, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x4, 0x800000, 0x0, 0x101, 0x0, 0xd721, 0x0, 0x4, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x79a2, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4a44e74b]})
r3 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000300)=r3)
ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000040)={0x1, r3})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000100)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f0000000880)=""/99, &(0x7f0000000800)=""/90})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000340)=0xfffffffe)

22.900815878s ago: executing program 0 (id=4302):
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
listen(r0, 0x7)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
listen(r1, 0x100)
r2 = socket$inet(0xa, 0x801, 0x84)
listen(r2, 0x8)
r3 = socket$inet(0xa, 0x5, 0x0)
listen(r3, 0x1)
r4 = socket$inet(0xa, 0x801, 0x84)
listen(r4, 0x8)
r5 = socket$inet(0xa, 0x801, 0x84)
listen(r5, 0x8)
r6 = socket$netlink(0x10, 0x3, 0x4)
writev(r6, &(0x7f0000000040)=[{&(0x7f0000000140)="480000001400190d09004beafd0d8c560a84476080ffe00600000000590000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed5e00000000000000", 0x48}], 0x1)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r6)

22.900531508s ago: executing program 3 (id=4303):
socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8000}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x4000200, 0x0, 0x7, 0x0, 0x0, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f000001b000)=""/102384, 0x18ff0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000400)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
setsockopt$sock_int(r3, 0x1, 0x200000010, &(0x7f0000000000)=0x9, 0x4)
sendto$unix(r2, &(0x7f00000004c0)="0434", 0x2, 0xd1, 0x0, 0x0)
recvfrom$unix(r3, 0x0, 0x0, 0x10102, 0x0, 0x0)

22.899096848s ago: executing program 1 (id=4304):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r3)
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000040)={'wg1\x00', &(0x7f0000000180)=@ethtool_coalesce={0xe, 0x7fffffff, 0x2, 0xe7c1, 0xffffffff, 0x1, 0x401, 0x2, 0x10001, 0xb1c, 0x401, 0x9, 0xfffffffc, 0xfffffffa, 0x401, 0x2, 0x8, 0x1, 0xe71, 0x2, 0x7, 0xffffffff, 0x22}})
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000200)={0x34, r4, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x8}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x17b}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x15cc}]]}, 0x34}}, 0x4000054)

21.892139462s ago: executing program 3 (id=4305):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, &(0x7f0000000280)={&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd87}, &(0x7f0000000240)=0x40)
r3 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r4=>0x0]}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x82, &(0x7f0000000300)={r4, 0x10, 0x7}, 0x8)

19.529663193s ago: executing program 1 (id=4307):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
socket$nl_route(0x10, 0x3, 0x0)
r3 = syz_io_uring_setup(0x1251, &(0x7f0000000100)={0x0, 0x100577, 0x10, 0x2, 0x42}, &(0x7f0000000340), &(0x7f0000011000))
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r3, 0x2, &(0x7f00000001c0)={0x4, 0x0, 0x0, 0x0}, 0x20)
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r3, 0x6, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0), 0x0}, 0x20)

19.528087413s ago: executing program 3 (id=4308):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x1a6cc7, 0x2b0, 0x0, 0x5802, 0x294, 0x140, 0x294, 0x230, 0x378, 0x378, 0x230, 0x378, 0x3, 0x0, {[{{@ipv6={@mcast2, @empty, [0xffffff00, 0xff, 0xff000000, 0xff000000], [0xff, 0xff, 0xff000000, 0xff000000], 'netpci0\x00', 'vlan0\x00', {0xff}, {0xff}, 0x32, 0x0, 0x0, 0x80}, 0x0, 0xa8, 0xf0, 0x52020000}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x7ff, 0x10000, 0x81, '\x00', {0x6}}}}, {{@ipv6={@loopback, @remote, [0x0, 0x0, 0xff, 0xffffff00], [0xff, 0x0, 0x0, 0xffffffff], 'ip6erspan0\x00', 'gre0\x00', {0xff}, {}, 0x16, 0x81, 0x3, 0x20}, 0x0, 0xa8, 0xf0}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x800, 0x401, 0x7, 'pptp\x00', {0x5}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x310)

18.544509576s ago: executing program 1 (id=4309):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000040)='proc\x00', 0x0, &(0x7f0000003cc0)='gid=1\x00nk]e')
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='mountinfo\x00')
read$FUSE(r0, &(0x7f00000021c0)={0x2020}, 0x2020)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x80001)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000340)=<r2=>0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r2, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000000))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000140)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000080)={&(0x7f00006c6000/0x400000)=nil, &(0x7f000018b000/0x3000)=nil, 0x400000, 0x0, 0x6040000})

18.543884986s ago: executing program 2 (id=4310):
bind$l2tp6(0xffffffffffffffff, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x80)
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r3, &(0x7f00000004c0)=@file={0x1, './file0\x00'}, 0x6e)

17.470193155s ago: executing program 3 (id=4311):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xa8f94000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$tipc(0x1e, 0x5, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x30, r4, 0x1, 0x0, 0x0, {{}, {0x0, 0x6}, {0x14}}}, 0x30}}, 0x0)

16.420721201s ago: executing program 2 (id=4312):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x100000a, 0x5d032, 0xffffffffffffffff, 0x0)
r3 = userfaultfd(0x801)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r3, 0xc028aa03, &(0x7f0000000080)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000582000/0x2000)=nil, 0x800000})

15.36298511s ago: executing program 2 (id=4313):
r0 = socket(0x1e, 0x4, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0x0, 0x0, 0xffffffff}, 0x10)
r4 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
sendmmsg(r0, &(0x7f0000003240), 0x4000000000000e4, 0x0)

14.172749966s ago: executing program 2 (id=4314):
syz_mount_image$ext4(&(0x7f0000000ac0)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x3810744, &(0x7f00000000c0)={[{@nombcache}, {@inlinecrypt}, {@usrquota}, {@jqfmt_vfsv1}, {@jqfmt_vfsv0}, {@delalloc}, {@journal_dev={'journal_dev', 0x3d, 0x844d}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@i_version}]}, 0x1, 0x46b, &(0x7f0000000b00)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(0xffffffffffffffff, 0x29, 0x37, &(0x7f0000000340)=ANY=[@ANYBLOB="05000000ebb59dec21a5f75a82e70f99a04eecb52ec8171214a0772d4f8656e64aa04dde5a3444bc2714526878c3bd5c4369f8c9e6c1b230ed831c6b3d491e47bd47b513138317bb16713a23e220e491c5f8542c05cea0a5ca3e2f5df0e41e73d8cc8308986c3f7b109ab18d3232aaff9622db000000000000000000"], 0x8)
r2 = fsopen(&(0x7f0000000300)='devpts\x00', 0x1)
r3 = fcntl$dupfd(r2, 0x0, r2)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000100)='mode\x00', &(0x7f0000000140)='7', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)

14.074991981s ago: executing program 1 (id=4315):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000380)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'sha256-generic\x00'}, 0x58)
r4 = accept4(r3, 0x0, 0x0, 0x0)
recvmmsg(r4, &(0x7f000000a400), 0x6fe, 0x10163, 0x0)

10.6499134s ago: executing program 2 (id=4316):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
ptrace(0x8, r3)
r4 = syz_pidfd_open(r3, 0x0)
process_mrelease(r4, 0x700000000000000)

10.579879035s ago: executing program 1 (id=4317):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r2 = getpgrp(0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000180)=0x10000000005)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x400000000001, 0x0, 0x1, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r4, 0x1, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$IPVS_CMD_ZERO(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x14, r1, 0x1}, 0x14}}, 0x0)

9.484174495s ago: executing program 1 (id=4318):
openat$fuse(0xffffffffffffff9c, &(0x7f0000000240), 0x42, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000180)='./file2\x00', 0x6000, 0x0)
r0 = open(&(0x7f0000000040)='./file2\x00', 0x1, 0x104)
prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x8, 0xf32}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeea, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
ioctl$BTRFS_IOC_DEFRAG(r0, 0x40081271, 0x3)

9.339658244s ago: executing program 0 (id=4319):
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x298, 0x0, 0x168, 0x9, 0x0, 0xb, 0x250, 0x250, 0x250, 0x250, 0x250, 0x3, 0x0, {[{{@ipv6={@remote, @rand_addr=' \x01\x00', [], [], 'veth0_to_bridge\x00', 'sit0\x00', {}, {}, 0x6c}, 0x6000000, 0xa8, 0xf0, 0x0, {0x0, 0x28e}}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@mcast2, 'dvmrp0\x00'}}}, {{@uncond, 0x0, 0xa8, 0xd8}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{}, {0x2}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x2f8)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$netlink(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
socket$unix(0x1, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_io_uring_setup(0x4b7f, &(0x7f00000005c0)={0x0, 0x409f00, 0x800, 0x0, 0x2ff}, 0x0, 0x0)
r0 = syz_io_uring_setup(0xd2, &(0x7f0000000400)={0x0, 0x2000000, 0x0, 0xffffffff, 0x39f}, &(0x7f00000002c0)=<r1=>0x0, &(0x7f0000000300)=<r2=>0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200))
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc})
io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0)

9.274990098s ago: executing program 5 (id=4320):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESHEX, @ANYRES16=0x0, @ANYBLOB="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", @ANYRESDEC, @ANYRES64], 0x8, 0x2ed, &(0x7f0000000a80)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
syz_read_part_table(0x59d, &(0x7f0000000000)="$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")

5.984741628s ago: executing program 5 (id=4321):
r0 = memfd_create(&(0x7f0000000380)='\x1aj~\x97\xc1\x00\x00\x00\xff\x00\x00\x00\x7f\xef_\xd3\xdc=f.z=\x80=8\x1f\x14\xa2&\xbam\v\xa9\f\xf5\x17t\xc9\x80\xf4\xa1\xeb\x907L\x7f \xe3\x19\xcb\xbf\xfc\x00\x00\x00\x00\x15\x00\x00\x00\x00\x00\x00\x00\x00h}\x00\x135V\xd9\xe0\xb0\x17\x01g\xff?\xc8\xfb3\x93\xbc\xcf\xf2\x95\xbeYd,\xb3\x17\xb0L\xe841(\"\xc2K\x11\x81\xef.m\xf7@\xb1\xf9\xee\xce\\\xd9\x03\nHNzF``\xa0\xc4}P\xb3\b\x91\'\x9b~\xcd\xfd\xaa\n\xea\x8dC\x9aQ\n\xce\"\x9cN\xed0\xf0\xc2x\x93h\xe8\\\x18\xd26\xe7\x8d4\x06\xf0\xe3M\xe5\x91\x0f\x85\x97bla\x06\xe1\xba\x1a\x1d \n\fr\xae\x12M\xcb6\xe0\x15\xd5d\x16\xc3\xdf\xa2\x04wB\xd0\x18\xa4\x17|\vH\xf5\xb0\xb5\xc7\x9f`Fz\xa3x\x99\xe17\xd2vAW\xe5\x18)9\xba\xa68A\xf8y\xe6\xac\xda\xc7u\xa9\x00{:\x01\xee,\a:\x06\xad{\x80\xfd\xc7\"\x95\x0f\xe3\x86\x19\xc3\xd2\xf7\x18\xf8\xed\x8b\"\xd8\x8f\xde`\xb0D\xfd\x84\xa3\xd7\xf3R\x8d\x88\xdaJ\xb0\xf8^\xd4>\xc7e\xab\x8f+\xda\x9b\xae\xf2\xca\xb9\xde\xb5\x8f\xdb\xba}\x7f\xf8\xe5i,m\b\xf0\xc7\xe9R\x9cY$\xcb\x00/!Z\xeb\x9bE\xf2\xb9\xcc\xf0\x9c\x02\xfc\x9c\x91q\xba|\x80n\x1f\xffG\xc3\x13\xe7v\xa7\x95md\x0f\xa5\x06\v^n\x84d5o\x02\xb3.\x8dc\x18\xe0\xc2\x9b\xe1D\x0fB] \xdfJGr\xdbc,\xef82%\x97\xe4;u\xa9\xe5\xef*n\xf613\x17\x80[\x90]\xef\xc1\x8e\rD\xd2\xe0\x8c\xf2\x00\x00\x00\x00\x00\x00\x00Gs\xab\x1e\xa13\x93\x8d\x04U\xf5\xb8Th9s3\xc9\xbf\xe5My$\x99.\xf0\xd5\xc8\xb1\xfc4\xe7\x83z\x11a\xb7\xebY\x1d\xcd\x81N\xed\xbd\xa5\xce\xa0f\xe5q2\xbc#w\xe4_\x8a-\xad\xc2/_\xe6\nE\xeb\x9c\x96\xf4`\xa2\x06\xe0\x00\xfb\x99\xbb}\xfb\x052_\x83*B\xf1\xf0\x95\xd2K\xd6\xe5\xb1\x1a\x02,\xbe\xf5\xd0\xd4\xa1A\xf3!\n\xc6b\xeb\x92\xea\xd8\xe1$\xbbUO\x1fS\x02\x9e\xa7|i:\xb1\xf60\xf6M\xe6,\x81=F\xa1\xca\x06\x0e\x14\x89/\xa7\"\x17-h9\x176\x9d\x04\x1el\xdcp\x89\x1b \x93f\x9a\x10\xd9\xa2Y\b\xfalA\xe1\x1bI\xb9\xf8\xa0\xb0\xc2\x04\xedO\n\vj&\xb5\x04\xc3{Yt\xf4rS^\x0e$\xe9\x05\xcd\x9b\x84\x14`\xed\x9e\xbbh\x81h\xf2\xe7\xe2DO\x1a\xe9\xc1\x1cu\xa5\xbd\x90\xbb\x03\xd5\x00\xf2\x83T\xe4\x0eF\x7f\x85\xb5\xe9CJ<F<\xb2aU\x1b\xfc\xeb\x9d\xda\x9b\xd2', 0x2)
openat$rfkill(0xffffffffffffff9c, 0x0, 0xe0000, 0x0)
openat$rfkill(0xffffffffffffff9c, 0x0, 0x100, 0x0)
write(r0, &(0x7f0000000080)="0600", 0x2)
write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000800)=ANY=[], 0x2c)
sendfile(r0, r0, &(0x7f0000001000), 0x200000ffff)
mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f000001a000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
fsconfig$FSCONFIG_SET_FLAG(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, 0x0, 0x40000)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7ffff000)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x33, &(0x7f000002eff0)={0x85c, &(0x7f0000000000)=[{}]}, 0x10)

5.984426598s ago: executing program 0 (id=4322):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_io_uring_setup(0x8d2, &(0x7f00000000c0)={0x0, 0x0, 0x3010}, &(0x7f0000000040)=<r4=>0x0, &(0x7f0000000340)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r3, 0x47ba, 0x3e80, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r3, 0x10, 0x0, 0x0)

5.206149808s ago: executing program 3 (id=4323):
socket$nl_route(0x10, 0x3, 0x0)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
unshare(0x2c020400)
syz_io_uring_setup(0x10d, &(0x7f0000000380)={0x0, 0x5885, 0x0, 0x0, 0x2ea}, &(0x7f0000000980), &(0x7f0000000240))

4.959482363s ago: executing program 0 (id=4324):
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000002,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000002,nostrict,uid=', @ANYRESOCT=0x0, @ANYRES16], 0x2, 0xc36, &(0x7f0000002540)="$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")
mkdir(&(0x7f0000000040)='./control\x00', 0x0)
mount(0x0, &(0x7f0000000240)='.\x00', 0x0, 0x2390024, 0x0)
truncate(0x0, 0x9)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2f)
renameat2(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x7)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0}, './cgroup\x00'})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000140)={0x4c, r2, 0x1, 0x70bd2b, 0x4000, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0xffffffffffffff28, 0xb, 0xfffffffa}, {0x6}}]}, 0x4c}}, 0x4040000)

3.886824192s ago: executing program 3 (id=4325):
r0 = openat$dlm_monitor(0xffffffffffffff9c, 0x0, 0x80, 0x0)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r0, 0x0, 0x4001)
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
epoll_create1(0x80000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
r4 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000040)={0xa0000004})
epoll_wait(r4, &(0x7f0000000280)=[{}], 0x1, 0x4000005)
close_range(r2, 0xffffffffffffffff, 0x0)

3.629962138s ago: executing program 0 (id=4326):
syz_emit_ethernet(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000300)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000380)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'trusted:', 'syz', 0x20, 0x1000}, 0x2d, 0xfffffffffffffff9)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), 0x0, 0x0, 0xfffffffffffffffe)

3.429408711s ago: executing program 5 (id=4327):
socket$qrtr(0x2a, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000180)='./mnt\x00', 0x0, &(0x7f00000001c0)={[{@test_dummy_encryption_v1}, {@test_dummy_encryption_v1}, {@nomblk_io_submit}, {@commit}]}, 0x1, 0x241, &(0x7f0000000540)="$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")
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
syz_io_uring_setup(0x10d, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
symlinkat(&(0x7f0000000000)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00')

2.365840749s ago: executing program 0 (id=4328):
openat$kvm(0xffffffffffffff9c, 0x0, 0x28100, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @multicast1}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0x2800, 0x4)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
r1 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r3, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0xea, 0x0, 0xfffd, 0x0, 0x9, 0x5}, {0x12, 0x2, 0x0, 0x401, 0x8001, 0x1400}, 0xa5, 0x5, 0x10000000}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}}, 0x44080)
sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000140)=@newqdisc={0x38, 0x24, 0xd0f, 0x70bd2b, 0x25dfdbfb, {0x60, 0x0, 0x0, r3, {}, {0xffe0, 0xa}, {0x1, 0x5}}, [@qdisc_kind_options=@q_pfifo={{0xa}, {0x8, 0x2, 0x3}}]}, 0x38}, 0x1, 0x0, 0x0, 0x55}, 0xc010)
sendmsg$inet(r0, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0)
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r4=>0x0)
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0xfd8b, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r4, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)

2.342619961s ago: executing program 5 (id=4329):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e1f}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$VIDIOC_QUERYMENU(0xffffffffffffffff, 0xc02c5625, &(0x7f0000000180)={0x8000, 0x2000c5fb, @value=0x3})
r3 = add_key$user(&(0x7f0000000000), &(0x7f00000001c0)={'syz', 0x0}, &(0x7f0000000540)="bc3009bb66682c9d4233b0cc", 0xc, 0xfffffffffffffffe)
r4 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000280)={r3, r4, r3}, &(0x7f00000000c0)=""/83, 0x53, 0x0)

1.248720751s ago: executing program 5 (id=4330):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000000), 0x20000007d, 0x0)
dup3(r5, r4, 0x0)

0s ago: executing program 5 (id=4331):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x200000000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r0 = getpid()
ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x30d)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setresgid(0xee00, 0xee01, 0x0)
r3 = syz_clone(0x100, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp(r3, r3, 0x1, 0xffffffffffffffff, 0xffffffffffffffff)

kernel console output (not intermixed with test programs):

 interface with an up link
[  433.590008][T11978] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1925'.
[  433.641314][T11978] bond5 (unregistering): (slave geneve3): Releasing active interface
[  433.660348][T11978] netdevsim netdevsim2 netdevsim0: unset [1, 1] type 2 family 0 port 20000 - 0
[  433.702167][T11978] netdevsim netdevsim2 netdevsim1: unset [1, 1] type 2 family 0 port 20000 - 0
[  433.752109][T11978] netdevsim netdevsim2 netdevsim2: unset [1, 1] type 2 family 0 port 20000 - 0
[  433.790794][T11978] netdevsim netdevsim2 netdevsim3: unset [1, 1] type 2 family 0 port 20000 - 0
[  433.848175][T11978] bond5 (unregistering): Released all slaves
[  433.995571][T11988] syz.2.1925 (11988) used greatest stack depth: 18992 bytes left
[  434.209047][T11998] loop9: detected capacity change from 0 to 764
[  434.544426][T12006] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1930'.
[  436.088666][ T9973] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  436.288708][ T9973] usb 9-1: Using ep0 maxpacket: 8
[  436.319213][ T9973] usb 9-1: unable to get BOS descriptor or descriptor too short
[  436.353367][ T9973] usb 9-1: unable to read config index 0 descriptor/start: -71
[  436.384538][ T9973] usb 9-1: can't read configurations, error -71
[  437.450992][T12097] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1956'.
[  437.888898][ T4368] device dummy0 left promiscuous mode
[  438.241724][T12129] netlink: 44 bytes leftover after parsing attributes in process `syz.8.1966'.
[  438.316350][T12129] netlink: 43 bytes leftover after parsing attributes in process `syz.8.1966'.
[  438.400860][T12129] netlink: 'syz.8.1966': attribute type 6 has an invalid length.
[  438.498463][T12129] netlink: 'syz.8.1966': attribute type 5 has an invalid length.
[  438.506261][T12129] netlink: 43 bytes leftover after parsing attributes in process `syz.8.1966'.
[  439.120958][T12146] loop8: detected capacity change from 0 to 2048
[  439.263847][T12146] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  439.532534][T12158] EXT4-fs error (device loop8): ext4_validate_block_bitmap:438: comm syz.8.1970: bg 0: block 234: padding at end of block bitmap is not set
[  439.663309][T12158] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 256 with error 28
[  439.730777][T12158] EXT4-fs (loop8): This should not happen!! Data will be lost
[  439.730777][T12158] 
[  439.754289][T12158] EXT4-fs (loop8): Total free blocks count 0
[  439.763415][T12158] EXT4-fs (loop8): Free/Dirty block details
[  439.775089][T12158] EXT4-fs (loop8): free_blocks=0
[  439.783237][T12158] EXT4-fs (loop8): dirty_blocks=272
[  439.794373][T12158] EXT4-fs (loop8): Block reservation details
[  439.829950][T12158] EXT4-fs (loop8): i_reserved_data_blocks=17
[  439.901645][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  439.908084][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  440.100950][ T7818] EXT4-fs (loop8): unmounting filesystem.
[  441.044950][T12191] loop0: detected capacity change from 0 to 2048
[  441.160518][T12191] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #2: comm syz.0.1980: pblk 0 bad header/extent: eh_entries is 0 but eh_depth is > 0 - magic f30a, entries 0, max 4(4), depth 5(5)
[  441.418284][T12191] EXT4-fs (loop0): get root inode failed
[  441.436077][T12191] EXT4-fs (loop0): mount failed
[  441.637886][   T26] audit: type=1326 audit(1770411879.892:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12190 comm="syz.0.1980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d3f79aeb9 code=0x7ffc0000
[  441.763455][   T26] audit: type=1326 audit(1770411879.892:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12190 comm="syz.0.1980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d3f79aeb9 code=0x7ffc0000
[  441.910863][   T26] audit: type=1326 audit(1770411879.892:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12190 comm="syz.0.1980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d3f79aeb9 code=0x7ffc0000
[  442.085808][   T26] audit: type=1326 audit(1770411879.902:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12190 comm="syz.0.1980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d3f79aeb9 code=0x7ffc0000
[  442.181953][   T26] audit: type=1326 audit(1770411879.902:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12190 comm="syz.0.1980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7f9d3f79aeb9 code=0x7ffc0000
[  442.369954][   T26] audit: type=1326 audit(1770411879.902:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12190 comm="syz.0.1980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d3f79aeb9 code=0x7ffc0000
[  442.530619][   T26] audit: type=1326 audit(1770411879.902:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12190 comm="syz.0.1980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d3f79aeb9 code=0x7ffc0000
[  442.695749][   T26] audit: type=1326 audit(1770411879.902:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12190 comm="syz.0.1980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d3f79aeb9 code=0x7ffc0000
[  442.839186][   T26] audit: type=1326 audit(1770411879.902:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12190 comm="syz.0.1980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d3f79aeb9 code=0x7ffc0000
[  443.035917][   T26] audit: type=1326 audit(1770411879.902:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12190 comm="syz.0.1980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f9d3f79aeb9 code=0x7ffc0000
[  443.539694][T12246] netlink: 'syz.9.1998': attribute type 1 has an invalid length.
[  443.676092][T12248] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 20000 - 0
[  443.762684][T12248] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 20000 - 0
[  443.830493][T12248] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 20000 - 0
[  443.899008][T12248] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 20000 - 0
[  443.971934][T12248] bond4: (slave geneve3): making interface the new active one
[  444.039786][T12248] bond4: (slave geneve3): Enslaving as an active interface with an up link
[  445.462493][T12281] loop7: detected capacity change from 0 to 128
[  445.537886][T12281] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  445.641734][T12281] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  445.774349][T12281] Trying to write to read-only block-device loop7
[  445.826847][T12281] Trying to write to read-only block-device loop7
[  445.873933][T12281] Trying to write to read-only block-device loop7
[  445.907995][T12281] Trying to write to read-only block-device loop7
[  445.977692][T12281] Trying to write to read-only block-device loop7
[  446.011546][T12281] Trying to write to read-only block-device loop7
[  446.030774][T12281] Trying to write to read-only block-device loop7
[  446.051006][T12281] Trying to write to read-only block-device loop7
[  446.090052][T12281] Trying to write to read-only block-device loop7
[  446.131895][T12301] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:0
[  446.140317][T12281] Trying to write to read-only block-device loop7
[  446.247059][T12303] tipc: Started in network mode
[  446.275967][T12303] tipc: Node identity 7f000001, cluster identity 4711
[  446.301994][T10025] FAT-fs (loop7): error, corrupted directory (invalid entries)
[  446.303313][T12303] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  446.330076][T10025] FAT-fs (loop7): Filesystem has been set read-only
[  446.336978][T10025] FAT-fs (loop7): error, corrupted directory (invalid entries)
[  446.397510][T12303] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  446.442781][T12303] tipc: Enabled bearer <udp:syz0>, priority 10
[  446.516233][T10025] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)

syzkaller
syzkaller login: [  447.538562][ T8927] tipc: Node number set to 2130706433
[  450.302195][ T4283] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  450.314950][ T4283] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  450.323333][ T4283] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  450.342108][ T4283] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  450.349848][ T4283] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  450.358761][ T4283] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  450.761163][T12387] chnl_net:caif_netlink_parms(): no params data found
[  450.884955][T12387] bridge0: port 1(bridge_slave_0) entered blocking state
[  450.892247][T12387] bridge0: port 1(bridge_slave_0) entered disabled state
[  450.901228][T12387] device bridge_slave_0 entered promiscuous mode
[  450.910258][T12387] bridge0: port 2(bridge_slave_1) entered blocking state
[  450.917431][T12387] bridge0: port 2(bridge_slave_1) entered disabled state
[  450.925717][T12387] device bridge_slave_1 entered promiscuous mode
[  450.950901][T12387] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  450.965636][T12387] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  451.011670][T12387] team0: Port device team_slave_0 added
[  451.019997][T12387] team0: Port device team_slave_1 added
[  451.041482][T12387] batman_adv: batadv0: Adding interface: batadv_slave_0
[  451.048741][T12387] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  451.076425][T12387] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  451.100901][T12387] batman_adv: batadv0: Adding interface: batadv_slave_1
[  451.107914][T12387] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  451.142111][T12387] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  451.201104][T12387] device hsr_slave_0 entered promiscuous mode
[  451.208123][T12387] device hsr_slave_1 entered promiscuous mode
[  451.215382][T12387] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  451.223289][T12387] Cannot create hsr debugfs directory
[  451.990017][T12387] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  452.002416][T12387] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  452.015675][T12387] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  452.026224][T12387] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  452.116950][T12387] 8021q: adding VLAN 0 to HW filter on device bond0
[  452.146094][ T9711] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  452.163734][ T9711] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  452.179432][T12387] 8021q: adding VLAN 0 to HW filter on device team0
[  452.194182][ T9715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  452.211389][ T9715] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  452.232982][ T9715] bridge0: port 1(bridge_slave_0) entered blocking state
[  452.240265][ T9715] bridge0: port 1(bridge_slave_0) entered forwarding state
[  452.257687][ T9715] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  452.277253][ T9711] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  452.286944][ T9711] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  452.306812][ T9711] bridge0: port 2(bridge_slave_1) entered blocking state
[  452.314035][ T9711] bridge0: port 2(bridge_slave_1) entered forwarding state
[  452.337078][ T9711] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  452.365012][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  452.378786][ T4283] Bluetooth: hci0: command 0x0409 tx timeout
[  452.392498][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  452.412729][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  452.422413][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  452.444606][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  452.457179][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  452.466514][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  452.485457][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  452.497797][ T9715] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  452.512201][ T9715] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  452.526613][T12387] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  452.921796][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  452.936161][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  452.962097][T12387] 8021q: adding VLAN 0 to HW filter on device batadv0
[  453.442548][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  453.453396][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  453.471790][ T9715] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  453.485413][ T9715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  453.497083][T12387] device veth0_vlan entered promiscuous mode
[  453.515036][ T9715] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  453.526544][ T9715] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  453.556765][T12387] device veth1_vlan entered promiscuous mode
[  453.606280][ T9715] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  453.623656][ T9715] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  453.636826][ T9715] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  453.656905][ T9715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  453.670273][T12387] device veth0_macvtap entered promiscuous mode
[  453.682199][T12387] device veth1_macvtap entered promiscuous mode
[  453.707341][T12387] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  453.718384][T12387] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.729100][T12387] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  453.740305][T12387] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.751174][T12387] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  453.775194][T12387] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.792103][T12387] batman_adv: batadv0: Interface activated: batadv_slave_0
[  453.807747][   T34] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  453.827596][   T34] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  453.839583][   T34] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  453.861899][T12387] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  453.882864][T12387] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.897544][T12387] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  453.914818][T12387] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.934885][T12387] batman_adv: batadv0: Interface activated: batadv_slave_1
[  453.945793][ T6201] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  453.956118][ T6201] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  453.970012][T12387] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  453.981688][T12387] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  453.991188][T12387] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  454.008814][T12387] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  454.139655][ T9715] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  454.147553][ T9715] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  454.178028][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  454.205066][ T9724] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  454.217158][ T9724] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  454.238106][ T6201] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  454.385221][T12475] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2053'.
[  454.420545][T12479] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2036'.
[  454.432586][T12479] 8021q: VLANs not supported on gre0
[  454.459248][ T4283] Bluetooth: hci0: command 0x041b tx timeout
[  456.539356][ T4283] Bluetooth: hci0: command 0x040f tx timeout
[  456.627212][T12541] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2063'.
[  456.687322][T12541] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2063'.
[  456.750476][T12541] netlink: 12 bytes leftover after parsing attributes in process `syz.8.2063'.
[  457.318857][T12560] device bond5 entered promiscuous mode
[  457.358170][T12563] device ip6gre2 entered promiscuous mode
[  457.403957][T12563] bond5: (slave ip6gre2): The slave device specified does not support setting the MAC address
[  457.501397][T12563] bond5: (slave ip6gre2): Error -95 calling set_mac_address
[  457.746999][T12580] loop9: detected capacity change from 0 to 128
[  458.338582][ T8927] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  458.549134][ T8927] usb 1-1: Using ep0 maxpacket: 16
[  458.565117][ T8927] usb 1-1: New USB device found, idVendor=06be, idProduct=a232, bcdDevice=33.f3
[  458.607657][ T8927] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  458.618697][ T4283] Bluetooth: hci0: command 0x0419 tx timeout
[  458.636770][ T8927] usb 1-1: Product: syz
[  458.641487][ T8927] usb 1-1: Manufacturer: syz
[  458.646135][ T8927] usb 1-1: SerialNumber: syz
[  458.653908][ T8927] usb 1-1: config 0 descriptor??
[  459.062913][ T8927] dvb-usb: found a 'AME DTV-5100 USB2.0 DVB-T' in warm state.
[  459.122487][ T8927] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  459.157096][ T8927] dvbdev: DVB: registering new adapter (AME DTV-5100 USB2.0 DVB-T)
[  459.227689][ T8927] usb 1-1: media controller created
[  459.326302][T12592] dtv5100: wlen = 0, aborting.
[  459.375369][ T8927] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  459.537964][ T8927] zl10353_read_register: readreg error (reg=127, ret==0)
[  459.549766][ T8927] dvb-usb: no frontend was attached by 'AME DTV-5100 USB2.0 DVB-T'
[  459.557728][ T8927] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully initialized and connected.
[  459.617751][ T8927] usb 1-1: USB disconnect, device number 3
[  459.711708][ T8927] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully deinitialized and disconnected.
[  459.808346][T12633] batman_adv: batadv0: Adding interface: gretap1
[  459.845750][T12633] batman_adv: batadv0: Interface activated: gretap1
[  462.719552][T12703] bridge0: port 2(bridge_slave_1) entered disabled state
[  462.727120][T12703] bridge0: port 1(bridge_slave_0) entered disabled state
[  463.524303][T12703] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  463.591627][T12703] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  464.651190][T12741] loop0: detected capacity change from 0 to 1024
[  465.219187][T12703] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  465.228125][T12703] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  465.237614][T12703] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  465.246563][T12703] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  465.363789][T12717] netlink: 'syz.2.2113': attribute type 1 has an invalid length.
[  465.395386][T12720] device ip6erspan0 entered promiscuous mode
[  465.442768][T12746] batman_adv: batadv0: Adding interface: gretap1
[  465.469320][T12746] batman_adv: batadv0: Interface activated: gretap1
[  466.525104][T12796] loop6: detected capacity change from 0 to 256
[  466.582789][T12798] 9pnet: p9_errstr2errno: server reported unknown error @í0x0000000000000002
[  466.663138][T12800] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2135'.
[  466.737921][T12800] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[  467.884443][T12836] tipc: Failed to remove unknown binding: 66,0,0/0:784900652/784900653
[  467.892268][T12834] VFS: Lookup of 'file0' in fuse fuse would have caused loop
[  467.913328][T12836] tipc: Failed to remove unknown binding: 66,0,0/0:784900652/784900653
[  468.182016][T12822] loop9: detected capacity change from 0 to 40427
[  468.203113][T12822] F2FS-fs (loop9): build fault injection attr: rate: 690, type: 0x3ffff
[  468.244240][T12822] F2FS-fs (loop9): invalid crc value
[  468.284377][T12822] F2FS-fs (loop9): Found nat_bits in checkpoint
[  468.479081][T12822] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  468.638133][T12822] syz.9.2141: attempt to access beyond end of device
[  468.638133][T12822] loop9: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[  468.779074][ T8291] syz-executor: attempt to access beyond end of device
[  468.779074][ T8291] loop9: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  470.358280][T12888] kvm: pic: single mode not supported
[  470.358872][T12888] kvm: pic: level sensitive irq not supported
[  470.498156][   T26] kauditd_printk_skb: 16 callbacks suppressed
[  470.498172][   T26] audit: type=1804 audit(1770411908.752:127): pid=12895 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.2164" name="bus" dev="ramfs" ino=70798 res=1 errno=0
[  470.699514][T12900] tipc: Failed to remove unknown binding: 66,1,1/2130706433:3910328713/3910328715
[  470.765966][T12903] tipc: Failed to remove unknown binding: 66,1,1/2130706433:3910328713/3910328715
[  470.798031][T12903] tipc: Failed to remove unknown binding: 66,1,1/2130706433:3910328713/3910328715
[  471.003868][ T9711] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  471.228688][ T9711] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  471.494157][ T9711] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  471.554206][T12905] DRBG: could not allocate CTR cipher TFM handle: ctr(aes)
[  471.592467][T12908] DRBG: could not allocate CTR cipher TFM handle: ctr(aes)
[  471.852148][ T9711] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  473.791851][ T4285] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  473.803419][ T4285] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  473.812881][ T4285] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  473.825977][ T4285] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  473.834001][ T4285] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  473.841444][ T4285] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  474.405523][T12957] loop6: detected capacity change from 0 to 32768
[  474.423132][T12957] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 scanned by syz.6.2178 (12957)
[  475.325728][T12957] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  475.406524][T12957] BTRFS info (device loop6): using crc32c (crc32c-intel) checksum algorithm
[  475.443940][T12972] chnl_net:caif_netlink_parms(): no params data found
[  475.449274][T12957] BTRFS info (device loop6): setting nodatasum
[  475.469430][T12957] BTRFS info (device loop6): force zlib compression, level 3
[  475.476988][T12957] BTRFS info (device loop6): setting incompat feature flag for COMPRESS_LZO (0x8)
[  475.555889][T12957] BTRFS info (device loop6): use lzo compression, level 0
[  475.601603][T12957] BTRFS info (device loop6): turning on flush-on-commit
[  475.658984][T12957] BTRFS info (device loop6): enabling auto defrag
[  475.697356][T12957] BTRFS info (device loop6): max_inline at 4096
[  475.707450][T12957] BTRFS info (device loop6): using free space tree
[  475.898603][ T4283] Bluetooth: hci1: command 0x0409 tx timeout
[  476.088745][T12957] BTRFS info (device loop6): enabling ssd optimizations
[  476.343185][T12387] BTRFS info (device loop6): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  477.121315][ T4378] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 9 /dev/loop6 scanned by udevd (4378)
[  477.318502][T13041] netlink: 'syz.0.2196': attribute type 27 has an invalid length.
[  477.326807][T13041] netlink: 'syz.0.2196': attribute type 1 has an invalid length.
[  477.335073][T13041] bridge0: port 1(bridge_slave_0) entered learning state
[  477.617722][T12972] bridge0: port 1(bridge_slave_0) entered blocking state
[  477.671605][T12972] bridge0: port 1(bridge_slave_0) entered disabled state
[  477.723784][T12972] device bridge_slave_0 entered promiscuous mode
[  477.759884][T12972] bridge0: port 2(bridge_slave_1) entered blocking state
[  477.767115][T12972] bridge0: port 2(bridge_slave_1) entered disabled state
[  477.854892][T12972] device bridge_slave_1 entered promiscuous mode
[  477.978499][ T4283] Bluetooth: hci1: command 0x041b tx timeout
[  478.015081][T12972] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  478.116180][T12972] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  478.180361][ T9711] device hsr_slave_0 left promiscuous mode
[  478.197922][ T9711] device hsr_slave_1 left promiscuous mode
[  478.437270][ T9711] device veth1_macvtap left promiscuous mode
[  478.468569][ T9711] device veth0_macvtap left promiscuous mode
[  478.474847][ T9711] device veth1_vlan left promiscuous mode
[  478.521563][ T9711] device veth0_vlan left promiscuous mode
[  478.611633][T13057] loop6: detected capacity change from 0 to 32768
[  478.637524][T13057] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 scanned by syz.6.2195 (13057)
[  478.727301][T13057] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  478.807432][T13057] BTRFS info (device loop6): using sha256 (sha256-avx2) checksum algorithm
[  478.843093][T13057] BTRFS info (device loop6): using free space tree
[  479.988748][T13057] BTRFS info (device loop6): enabling ssd optimizations
[  480.128718][ T4283] Bluetooth: hci1: command 0x040f tx timeout
[  480.348929][   T26] audit: type=1800 audit(1770411918.532:128): pid=13057 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2195" name="bus" dev="loop6" ino=263 res=0 errno=0
[  480.539452][   T26] audit: type=1800 audit(1770411918.572:129): pid=13057 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2195" name="file1" dev="loop6" ino=260 res=0 errno=0
[  481.118775][T12387] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  482.149159][ T4285] Bluetooth: hci1: command 0x0419 tx timeout
[  482.163817][ T4378] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 10 /dev/loop6 scanned by udevd (4378)
[  483.175050][ T9711] bond2 (unregistering): Released all slaves
[  483.321166][ T9711] bond1 (unregistering): Released all slaves
[  483.739794][T13143] loop6: detected capacity change from 0 to 512
[  483.754491][T13143] EXT4-fs: Ignoring removed i_version option
[  483.771882][T13143] EXT4-fs: Ignoring removed bh option
[  483.849968][T13143] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  483.874902][T13143] ext4 filesystem being mounted at /25/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  484.076275][T12387] EXT4-fs (loop6): unmounting filesystem.
[  485.429262][T13165] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input8
[  485.576427][ T9711] bond0 (unregistering): Released all slaves
[  485.786153][T13118] netlink: 830 bytes leftover after parsing attributes in process `syz.2.2208'.
[  485.887450][T12972] team0: Port device team_slave_0 added
[  485.978184][T12972] team0: Port device team_slave_1 added
[  486.055970][T12972] batman_adv: batadv0: Adding interface: batadv_slave_0
[  486.073252][T12972] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  486.278649][T12972] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  486.313983][T12972] batman_adv: batadv0: Adding interface: batadv_slave_1
[  486.354900][T12972] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  486.516423][T12972] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  486.712027][T13193] x_tables: duplicate underflow at hook 2
[  487.192678][T12972] device hsr_slave_0 entered promiscuous mode
[  487.237757][T12972] device hsr_slave_1 entered promiscuous mode
[  487.309736][T12972] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  487.342939][T12972] Cannot create hsr debugfs directory
[  487.942315][T13187] loop9: detected capacity change from 0 to 32768
[  488.000951][T13187] BTRFS error: device /dev/loop9 already registered with a higher generation, found 8 expect 10
[  488.251980][T13226] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2238'.
[  488.330700][T13224] netlink: 'syz.6.2237': attribute type 1 has an invalid length.
[  488.480873][T13228] sch_tbf: burst 88 is lower than device veth7 mtu (1514) !
[  488.507535][ T4378] BTRFS error: device /dev/loop9 already registered with a higher generation, found 8 expect 10
[  488.545389][T13230] 8021q: adding VLAN 0 to HW filter on device batadv1
[  488.571051][T13230] bond1: (slave batadv1): making interface the new active one
[  488.604734][T13230] bond1: (slave batadv1): Enslaving as an active interface with an up link
[  488.659010][T13232] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2237'.
[  488.708354][T13232] 8021q: adding VLAN 0 to HW filter on device bond1
[  488.757874][T13235] device erspan0 entered promiscuous mode
[  489.035290][T13247] loop6: detected capacity change from 0 to 512
[  489.208169][T13247] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  489.227681][T13247] ext4 filesystem being mounted at /35/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  489.329789][T13247] Quota error (device loop6): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8
[  489.344475][T12972] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  489.373790][T13247] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  489.412603][T12972] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  489.422901][T13247] EXT4-fs error (device loop6): ext4_acquire_dquot:6835: comm syz.6.2244: Failed to acquire dquot type 0
[  489.465001][T13269] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  489.498670][T13269] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  489.539812][T13269] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  489.718227][T12387] EXT4-fs (loop6): unmounting filesystem.
[  489.725456][T12972] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  489.803265][T12972] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  490.237129][T13296] loop0: detected capacity change from 0 to 1024
[  490.252751][T12972] 8021q: adding VLAN 0 to HW filter on device bond0
[  490.325564][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  490.368279][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  490.393047][T12972] 8021q: adding VLAN 0 to HW filter on device team0
[  490.442889][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  490.483362][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  490.523766][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  490.530995][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  490.590314][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  490.669099][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  490.698767][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  490.718037][ T9724] bridge0: port 2(bridge_slave_1) entered blocking state
[  490.725232][ T9724] bridge0: port 2(bridge_slave_1) entered forwarding state
[  490.798934][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  490.854288][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  490.884981][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  490.921626][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  490.978368][T12972] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  491.004587][T13303] loop9: detected capacity change from 0 to 8192
[  491.022630][T12972] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  491.070326][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  491.086087][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  491.129381][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  491.172957][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  491.212088][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  491.268211][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  491.325231][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  491.377564][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  491.969601][T13331] input: syz1 as /devices/virtual/input/input9
[  492.327261][T13343] loop6: detected capacity change from 0 to 1024
[  492.376572][T13343] EXT4-fs: Ignoring removed nobh option
[  492.417687][T13343] EXT4-fs: inline encryption not supported
[  492.472969][T13343] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  492.608293][T13343] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  492.681395][T13343] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:3852: comm syz.6.2270: Allocating blocks 385-513 which overlap fs metadata
[  492.777220][ T9727] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  492.789194][ T9727] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  492.814363][T12972] 8021q: adding VLAN 0 to HW filter on device batadv0
[  492.857639][T13343] EXT4-fs (loop6): pa ffff8880548160e0: logic 16, phys. 129, len 24
[  492.866161][T13343] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:4892: group 0, free 0, pa_free 8
[  492.893488][ T9718] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  492.922521][ T9718] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  493.033960][ T9718] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  493.052903][ T9718] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  493.100523][T12387] EXT4-fs (loop6): unmounting filesystem.
[  493.105678][ T9718] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  493.147634][ T9718] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  493.219715][T12972] device veth0_vlan entered promiscuous mode
[  493.279043][T12972] device veth1_vlan entered promiscuous mode
[  493.354018][T13370] netlink: 'syz.6.2276': attribute type 13 has an invalid length.
[  493.489529][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  493.508076][ T9724] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  493.625180][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  493.682612][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  493.742373][T12972] device veth0_macvtap entered promiscuous mode
[  493.782532][T12972] device veth1_macvtap entered promiscuous mode
[  493.820626][T13377] loop9: detected capacity change from 0 to 512
[  493.874199][T12972] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  493.904039][T12972] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  493.906865][T13377] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  493.928636][T12972] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  493.958578][T12972] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  493.993827][T12972] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  494.004930][T13377] ext4 filesystem being mounted at /260/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  494.025309][T12972] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  494.053135][   T26] audit: type=1800 audit(1770411932.312:130): pid=13377 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.2278" name="file1" dev="loop9" ino=15 res=0 errno=0
[  494.064935][T12972] batman_adv: batadv0: Interface activated: batadv_slave_0
[  494.123618][   T26] audit: type=1800 audit(1770411932.352:131): pid=13377 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.2278" name="file2" dev="loop9" ino=16 res=0 errno=0
[  494.154137][ T9727] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  494.166499][ T9727] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  494.186177][ T9727] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  494.207493][ T9727] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  494.229440][T13377] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2278'.
[  494.235662][T12972] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  494.266843][T12972] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  494.309587][T12972] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  494.350081][T12972] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  494.371306][ T8291] EXT4-fs (loop9): unmounting filesystem.
[  494.386954][T12972] batman_adv: batadv0: Interface activated: batadv_slave_1
[  494.431481][ T9727] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  494.446259][ T9727] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  494.480841][T12972] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  494.510437][T12972] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  494.537139][T12972] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  494.561797][T12972] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  494.896230][ T9727] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  494.928499][ T9727] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  495.002138][ T9727] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  495.078841][T13406] 8021q: adding VLAN 0 to HW filter on device bond3
[  495.121253][T13406] bond2: (slave bond3): Enslaving as an active interface with a down link
[  495.181435][ T6241] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  495.199653][ T6241] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  495.266813][ T9727] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  495.874635][T13432] loop3: detected capacity change from 0 to 1024
[  495.906276][T13432] EXT4-fs: Ignoring removed orlov option
[  495.933261][T13432] EXT4-fs: Ignoring removed nomblk_io_submit option
[  496.037856][T13432] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  496.465375][T13445] netlink: 24 bytes leftover after parsing attributes in process `syz.9.2292'.
[  497.315607][T13469] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  497.575766][T12972] EXT4-fs (loop3): unmounting filesystem.
[  498.348632][ T4271] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  498.558612][ T4271] usb 4-1: Using ep0 maxpacket: 32
[  498.567677][ T4271] usb 4-1: config index 0 descriptor too short (expected 29220, got 36)
[  498.629413][ T4271] usb 4-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  498.726114][ T4271] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 81
[  498.760008][ T4271] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  498.795128][ T4271] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  498.827534][ T4271] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  498.883654][ T4271] usb 4-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  498.923700][ T4271] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  498.973108][ T4271] usb 4-1: config 0 descriptor??
[  499.207095][ T4271] usblp 4-1:0.0: usblp0: USB Bidirectional printer dev 7 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  499.272458][ T4271] usb 4-1: USB disconnect, device number 7
[  499.323456][ T4271] usblp0: removed
[  499.808605][ T4271] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  500.008699][ T4271] usb 4-1: Using ep0 maxpacket: 32
[  500.016649][ T4271] usb 4-1: config index 0 descriptor too short (expected 29220, got 36)
[  500.058054][ T4271] usb 4-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  500.080750][ T4271] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 81
[  500.117038][ T4271] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  500.167497][ T4271] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  500.208091][ T4271] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  500.251930][ T4271] usb 4-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  500.275114][ T4271] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  500.313144][ T4271] usb 4-1: config 0 descriptor??
[  500.528137][   T26] audit: type=1800 audit(1770411938.782:132): pid=13531 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2316" name="/" dev="fuse" ino=9 res=0 errno=0
[  500.563516][ T4271] usblp 4-1:0.0: usblp0: USB Bidirectional printer dev 8 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  501.341414][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  501.347841][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  501.357960][T13573] netlink: 128 bytes leftover after parsing attributes in process `syz.2.2328'.
[  501.761340][ T9973] usb 4-1: USB disconnect, device number 8
[  501.789401][ T9973] usblp0: removed
[  502.344120][T13600] Invalid option length (64914) for dns_resolver key
[  504.054134][T13621] loop9: detected capacity change from 0 to 2048
[  504.141330][T13621]  loop9: p1 < > p4
[  504.169300][T13621] loop9: p4 size 8388608 extends beyond EOD, truncated
[  504.276934][T13621] isofs_fill_super: bread failed, dev=loop9p1, iso_blknum=16, block=32
[  505.845920][ T4378] udevd[4378]: inotify_add_watch(7, /dev/loop9p1, 10) failed: No such file or directory
[  505.868754][ T4673] udevd[4673]: inotify_add_watch(7, /dev/loop9p4, 10) failed: No such file or directory
[  505.954843][ T4673] udevd[4673]: inotify_add_watch(7, /dev/loop9p4, 10) failed: No such file or directory
[  505.985996][ T4378] udevd[4378]: inotify_add_watch(7, /dev/loop9p1, 10) failed: No such file or directory
[  506.086759][ T4378] udevd[4378]: inotify_add_watch(7, /dev/loop9p1, 10) failed: No such file or directory
[  506.094085][ T4673] udevd[4673]: inotify_add_watch(7, /dev/loop9p4, 10) failed: No such file or directory
[  506.380488][T13655] xt_connbytes: Forcing CT accounting to be enabled
[  506.394129][T13655] set match dimension is over the limit!
[  507.327719][T13643] loop3: detected capacity change from 0 to 32768
[  509.391788][T13758] netlink: 'syz.3.2365': attribute type 1 has an invalid length.
[  509.737953][T13760] bond1: (slave vcan1): The slave device specified does not support setting the MAC address
[  509.910680][T13760] bond1: (slave vcan1): Setting fail_over_mac to active for active-backup mode
[  510.128997][T13760] bond1: (slave vcan1): making interface the new active one
[  510.212000][T13760] bond1: (slave vcan1): Enslaving as an active interface with an up link
[  510.234221][T13761] bond1: (slave vcan2): The slave device specified does not support setting the MAC address
[  510.280549][T13761] bond1: (slave vcan2): Enslaving as a backup interface with an up link
[  510.402622][T13773] overlayfs: metacopy with no lower data found - abort lookup (/file2)
[  510.446700][T13773] overlayfs: failed to look up (file2) for ino (-5)
[  511.699089][   T34] device hsr_slave_0 left promiscuous mode
[  511.733246][   T34] device hsr_slave_1 left promiscuous mode
[  511.887483][   T34] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  511.905643][   T34] batman_adv: batadv0: Removing interface: batadv_slave_0
[  511.980427][   T34] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  512.066528][   T34] batman_adv: batadv0: Removing interface: batadv_slave_1
[  512.096841][   T34] device bridge_slave_1 left promiscuous mode
[  512.117428][   T34] bridge0: port 2(bridge_slave_1) entered disabled state
[  512.160632][   T34] device bridge_slave_0 left promiscuous mode
[  512.177068][   T34] bridge0: port 1(bridge_slave_0) entered disabled state
[  512.451730][   T34] device veth1_macvtap left promiscuous mode
[  512.469334][   T34] device veth0_macvtap left promiscuous mode
[  512.495456][   T34] device veth1_vlan left promiscuous mode
[  512.520280][   T34] device veth0_vlan left promiscuous mode
[  513.249205][T13787] loop0: detected capacity change from 0 to 40427
[  513.349667][T13787] F2FS-fs (loop0): invalid crc value
[  513.372256][T13787] F2FS-fs (loop0): Found nat_bits in checkpoint
[  513.475784][T13830] input: syz1 as /devices/virtual/input/input10
[  513.731276][T13787] F2FS-fs (loop0): Start checkpoint disabled!
[  515.877253][T13859] loop9: detected capacity change from 0 to 1024
[  515.957130][T13859] EXT4-fs: Ignoring removed orlov option
[  515.969047][T13859] EXT4-fs: Ignoring removed nomblk_io_submit option
[  516.063749][T13859] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  516.423949][T13873] loop6: detected capacity change from 0 to 2048
[  516.538979][T13873] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  517.842812][ T8291] EXT4-fs (loop9): unmounting filesystem.
[  518.783164][T13929] loop0: detected capacity change from 0 to 2048
[  518.831975][T13929]  loop0: p1 < > p4
[  518.832857][   T34] team0 (unregistering): Port device team_slave_1 removed
[  518.846891][T13929] loop0: p4 size 8388608 extends beyond EOD, truncated
[  518.907692][T13929] isofs_fill_super: bread failed, dev=loop0p1, iso_blknum=16, block=32
[  519.081226][   T34] team0 (unregistering): Port device team_slave_0 removed
[  519.251053][ T4673] udevd[4673]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  519.266625][ T4378] udevd[4378]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  519.302689][   T34] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  519.347082][ T4673] udevd[4673]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  519.355740][ T4378] udevd[4378]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  519.532450][   T34] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  520.286619][   T34] bond0 (unregistering): Released all slaves
[  520.580934][T12387] UDF-fs: error (device loop6): udf_read_inode: (ino 1317) failed !bh
[  520.635723][T12387] UDF-fs: error (device loop6): udf_read_inode: (ino 1317) failed !bh
[  520.883621][T13942] loop3: detected capacity change from 0 to 2048
[  520.999752][T13942]  loop3: p3 < > p4 < >
[  521.004074][T13942] loop3: partition table partially beyond EOD, truncated
[  521.023686][T13942] loop3: p3 start 4284289 is beyond EOD, truncated
[  521.240648][T13952] netlink: 'syz.2.2411': attribute type 39 has an invalid length.
[  523.047260][T13979] binder: 13978:13979 unknown command 0
[  523.053300][T13979] binder: 13978:13979 ioctl c0306201 200000000080 returned -22
[  524.062494][ T4283] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  524.160857][ T4283] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  524.171322][ T4283] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  524.182672][ T4283] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  524.191367][ T4283] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  524.200230][ T4283] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  525.181363][T14000] loop3: detected capacity change from 0 to 128
[  525.244720][T14000] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 54)
[  525.253439][T14000] FAT-fs (loop3): Filesystem has been set read-only
[  525.295476][T14000] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 54)
[  526.223045][ T4285] Bluetooth: hci0: command 0x0409 tx timeout
[  528.311551][ T4285] Bluetooth: hci0: command 0x041b tx timeout
[  529.440640][T14045] bond1: (slave ip6gretap1): making interface the new active one
[  529.463792][T14045] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  529.672730][T14059] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2444'.
[  529.757764][T14059] 8021q: adding VLAN 0 to HW filter on device bond5
[  530.291733][T13983] chnl_net:caif_netlink_parms(): no params data found
[  530.378678][ T4285] Bluetooth: hci0: command 0x040f tx timeout
[  530.885280][T13983] bridge0: port 1(bridge_slave_0) entered blocking state
[  530.926080][T13983] bridge0: port 1(bridge_slave_0) entered disabled state
[  531.000700][T13983] device bridge_slave_0 entered promiscuous mode
[  531.097536][T14090] Invalid ELF header magic: != ELF
[  531.196320][T14087] device ip6gretap1 entered promiscuous mode
[  531.219987][T14087] bond1: (slave ip6gretap1): no link monitoring support
[  531.289983][T14087] bond1: (slave ip6gretap1): MII and ETHTOOL support not available for slave, and arp_interval/arp_ip_target module parameters not specified, thus bonding will not detect link failures! see bonding.txt for details
[  531.346272][T14087] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  531.394463][T13983] bridge0: port 2(bridge_slave_1) entered blocking state
[  531.416806][T13983] bridge0: port 2(bridge_slave_1) entered disabled state
[  531.463951][T13983] device bridge_slave_1 entered promiscuous mode
[  531.693093][T13983] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  531.756477][T13983] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  532.216607][T13983] team0: Port device team_slave_0 added
[  532.458709][ T4285] Bluetooth: hci0: command 0x0419 tx timeout
[  532.789851][T13983] team0: Port device team_slave_1 added
[  533.269117][T13983] batman_adv: batadv0: Adding interface: batadv_slave_0
[  533.286379][T13983] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  533.419265][T13983] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  533.559541][T13983] batman_adv: batadv0: Adding interface: batadv_slave_1
[  533.566526][T13983] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  533.764943][T13983] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  533.853997][T14134] overlayfs: failed to clone upperpath
[  533.890816][   T34] device hsr_slave_0 left promiscuous mode
[  533.968600][   T34] device hsr_slave_1 left promiscuous mode
[  534.015472][   T34] batman_adv: batadv0: Removing interface: batadv_slave_0
[  534.049420][   T34] batman_adv: batadv0: Removing interface: batadv_slave_1
[  534.100136][   T34] device bridge_slave_1 left promiscuous mode
[  534.106491][   T34] bridge0: port 2(bridge_slave_1) entered disabled state
[  534.138599][ T4285] Bluetooth: hci2: command 0x0406 tx timeout
[  534.187291][T14144] loop9: detected capacity change from 0 to 256
[  534.199849][   T34] device bridge_slave_0 left promiscuous mode
[  534.216415][   T34] bridge0: port 1(bridge_slave_0) entered disabled state
[  534.265934][T14144] exFAT-fs (loop9): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  534.849946][   T34] bond2 (unregistering): (slave bond3): Releasing backup interface
[  534.872015][   T34] bond3 (unregistering): Released all slaves
[  534.887756][   T34] bond2 (unregistering): Released all slaves
[  534.918955][   T34] bond1 (unregistering): (slave batadv1): Releasing active interface
[  535.377797][   T34] bond1 (unregistering): Released all slaves
[  536.581212][   T34] team0 (unregistering): Port device team_slave_1 removed
[  536.655652][   T34] team0 (unregistering): Port device team_slave_0 removed
[  536.731049][   T34] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  536.803185][   T34] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  537.364720][   T34] bond0 (unregistering): Released all slaves
[  537.641671][T14179] netlink: 'syz.9.2474': attribute type 1 has an invalid length.
[  537.703201][T13983] device hsr_slave_0 entered promiscuous mode
[  537.717449][T13983] device hsr_slave_1 entered promiscuous mode
[  537.730618][T13983] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  537.738276][T13983] Cannot create hsr debugfs directory
[  539.576915][T14231] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2486'.
[  539.803327][T14233] netlink: 'syz.0.2484': attribute type 4 has an invalid length.
[  539.933151][T14234] netlink: 'syz.0.2484': attribute type 4 has an invalid length.
[  540.688020][T14254] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2490'.
[  540.718228][T14254] IPv6: addrconf: prefix option has invalid lifetime
[  540.973387][T14265] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2493'.
[  541.604040][T14268] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2495'.
[  543.269149][T14311] x_tables: ip_tables: DNAT target: used from hooks POSTROUTING, but only usable from PREROUTING/OUTPUT
[  543.269884][ T9722] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  543.387061][T14307] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2505'.
[  543.975487][ T9722] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  544.185969][ T9722] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  544.229395][T14330] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[  544.327086][ T9722] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  544.352078][T13983] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  544.367306][T13983] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  544.389515][T13983] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  544.410582][ T9972] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  544.422082][T13983] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  544.610672][ T9972] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  544.648616][ T9972] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 2
[  544.688739][ T9972] usb 10-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  544.721461][ T9972] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  544.742854][ T9972] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  544.758537][ T9972] usb 10-1: Product: syz
[  544.762858][ T9972] usb 10-1: Manufacturer: syz
[  544.767582][ T9972] usb 10-1: SerialNumber: syz
[  544.776209][T13983] 8021q: adding VLAN 0 to HW filter on device bond0
[  544.835972][ T9972] cdc_ncm 10-1:1.0: CDC Union missing and no IAD found
[  544.836981][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  544.858676][ T9972] cdc_ncm 10-1:1.0: bind() failure
[  544.928149][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  545.027389][T13983] 8021q: adding VLAN 0 to HW filter on device team0
[  545.085648][ T9731] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  545.109575][ T9731] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  545.118347][ T9731] bridge0: port 1(bridge_slave_0) entered blocking state
[  545.125538][ T9731] bridge0: port 1(bridge_slave_0) entered forwarding state
[  545.187954][ T9972] usb 10-1: USB disconnect, device number 2
[  545.281004][ T9731] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  545.291058][ T9731] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  545.301496][ T9731] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  545.310466][ T9731] bridge0: port 2(bridge_slave_1) entered blocking state
[  545.317607][ T9731] bridge0: port 2(bridge_slave_1) entered forwarding state
[  545.334231][ T9731] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  545.367239][ T9731] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  545.399753][ T9731] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  545.420992][ T9731] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  545.437672][ T9731] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  545.515701][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  545.546515][ T4285] Bluetooth: hci3: unexpected event for opcode 0x2024
[  545.589966][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  545.760182][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  545.809203][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  545.878269][T13983] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  545.927759][T13983] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  546.093664][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  546.121775][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  546.323453][T14379] netlink: 'syz.3.2522': attribute type 12 has an invalid length.
[  547.500780][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  547.519733][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  547.577328][T13983] 8021q: adding VLAN 0 to HW filter on device batadv0
[  547.667013][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  547.713183][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  548.280233][T13983] device veth0_vlan entered promiscuous mode
[  548.289089][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  548.297687][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  548.347079][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  548.390799][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  548.455055][T13983] device veth1_vlan entered promiscuous mode
[  548.536477][ T9731] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  548.550730][ T9731] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  548.573640][ T9722] device hsr_slave_0 left promiscuous mode
[  548.584337][ T9722] device hsr_slave_1 left promiscuous mode
[  548.595366][ T9722] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  548.604805][ T9722] batman_adv: batadv0: Removing interface: batadv_slave_0
[  548.742847][ T9722] device bridge_slave_1 left promiscuous mode
[  548.762616][ T9722] bridge0: port 2(bridge_slave_1) entered disabled state
[  548.801831][ T9722] device bridge_slave_0 left promiscuous mode
[  548.814965][ T9722] bridge0: port 1(bridge_slave_0) entered disabled state
[  548.864733][ T9722] device veth1_macvtap left promiscuous mode
[  548.871048][ T9722] device veth0_macvtap left promiscuous mode
[  548.877426][ T9722] device veth1_vlan left promiscuous mode
[  548.952638][ T9722] device veth0_vlan left promiscuous mode
[  550.138743][ T4285] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  550.472426][T14452] overlayfs: failed to resolve './file0': -2
[  550.840928][ T9722] team0 (unregistering): Port device team_slave_1 removed
[  550.959627][ T9722] team0 (unregistering): Port device team_slave_0 removed
[  551.079684][ T9722] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  551.164537][ T9722] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  551.392508][T14473] fuse: Bad value for 'fd'
[  551.728955][T14479] sctp: [Deprecated]: syz.0.2559 (pid 14479) Use of struct sctp_assoc_value in delayed_ack socket option.
[  551.728955][T14479] Use struct sctp_sack_info instead
[  551.917928][T14475] loop9: detected capacity change from 0 to 32768
[  552.037724][T14475] XFS (loop9): Mounting V5 Filesystem
[  552.153679][T14475] XFS (loop9): Ending clean mount
[  552.204363][ T8291] XFS (loop9): Unmounting Filesystem
[  552.403467][ T9722] bond0 (unregistering): Released all slaves
[  552.579864][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  552.605695][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  552.647271][T13983] device veth0_macvtap entered promiscuous mode
[  552.685063][T13983] device veth1_macvtap entered promiscuous mode
[  552.900348][T13983] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  552.958414][T13983] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  553.023310][T13983] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  553.074720][T13983] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  553.194514][T13983] batman_adv: batadv0: Interface activated: batadv_slave_0
[  553.228093][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  553.242620][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  553.311642][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  553.338340][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  553.382305][T13983] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  553.424327][T13983] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  553.458712][T13983] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  553.519474][T13983] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  553.569511][T13983] batman_adv: batadv0: Interface activated: batadv_slave_1
[  553.607582][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  553.655824][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  553.731686][T13983] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  553.761522][T13983] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  553.782686][T13983] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  553.819447][T13983] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  554.055493][T14531] bond3: (slave dummy0): Releasing active interface
[  554.145787][T14531] batman_adv: batadv0: Adding interface: dummy0
[  554.178264][T14531] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  554.269306][T14531] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[  554.557461][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  554.605826][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  554.641321][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  554.747701][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  554.790646][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  554.828819][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  555.845276][T14556] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2576'.
[  555.895113][T14556] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  556.459900][T14556] batman_adv: batadv0: Removing interface: batadv_slave_1
[  556.919142][T14565] netlink: 'syz.2.2580': attribute type 1 has an invalid length.
[  556.961340][T14565] 8021q: adding VLAN 0 to HW filter on device bond6
[  557.042173][T14565] bond6: (slave vlan2): Opening slave failed
[  558.146855][T14583] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2582'.
[  558.433268][   T26] audit: type=1326 audit(1770411996.692:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14590 comm="syz.2.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95d9b9aeb9 code=0x7ffc0000
[  558.526960][   T26] audit: type=1326 audit(1770411996.692:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14590 comm="syz.2.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f95d9b3c2d9 code=0x7ffc0000
[  558.653573][   T26] audit: type=1326 audit(1770411996.692:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14590 comm="syz.2.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95d9b9aeb9 code=0x7ffc0000
[  558.747312][T14602] netlink: 'syz.0.2592': attribute type 6 has an invalid length.
[  558.777613][T14602] netlink: 'syz.0.2592': attribute type 6 has an invalid length.
[  558.796529][   T26] audit: type=1326 audit(1770411996.712:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14590 comm="syz.2.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f95d9b3c2d9 code=0x7ffc0000
[  558.870180][T14606] tipc: Failed to remove unknown binding: 66,1,1/0:3422470682/3422470684
[  558.900221][T14606] tipc: Failed to remove unknown binding: 66,1,1/0:3422470682/3422470684
[  558.915717][   T26] audit: type=1326 audit(1770411996.712:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14590 comm="syz.2.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95d9b9aeb9 code=0x7ffc0000
[  558.958468][T14606] tipc: Failed to remove unknown binding: 66,1,1/0:3422470682/3422470684
[  559.076605][   T26] audit: type=1326 audit(1770411996.712:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14590 comm="syz.2.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95d9b9aeb9 code=0x7ffc0000
[  559.238893][   T26] audit: type=1326 audit(1770411996.712:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14590 comm="syz.2.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95d9b9aeb9 code=0x7ffc0000
[  559.311948][T14611] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  559.402831][T14611] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[  559.434907][   T26] audit: type=1326 audit(1770411996.712:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14590 comm="syz.2.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f95d9b3c2d9 code=0x7ffc0000
[  559.490635][T14611] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[  559.568199][T14611] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[  559.633404][   T26] audit: type=1326 audit(1770411996.712:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14590 comm="syz.2.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f95d9b3c2d9 code=0x7ffc0000
[  559.717518][T14611] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready
[  559.736011][   T26] audit: type=1326 audit(1770411996.712:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14590 comm="syz.2.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f95d9b3c2d9 code=0x7ffc0000
[  559.782290][T14611] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[  559.848225][T14611] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[  562.781358][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  562.787794][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  562.867621][T14684] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2616'.
[  562.914072][ T4271] kernel read not supported for file [userfaultfd] (pid: 4271 comm: kworker/0:3)
[  563.432584][ T4271] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  563.527667][T14707] loop1: detected capacity change from 0 to 764
[  563.650363][ T4271] usb 10-1: New USB device found, idVendor=0c45, idProduct=8001, bcdDevice=90.0a
[  563.674225][ T4271] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  563.721908][ T4271] usb 10-1: config 0 descriptor??
[  563.752099][ T4271] gspca_main: sn9c2028-2.14.0 probing 0c45:8001
[  563.963623][ T4271] gspca_sn9c2028: read1 error -71
[  563.978509][ T4271] gspca_sn9c2028: read1 error -71
[  563.999543][ T4271] gspca_sn9c2028: read1 error -71
[  564.014302][ T4271] sn9c2028: probe of 10-1:0.0 failed with error -71
[  564.149691][T14723] fuse: Bad value for 'fd'
[  564.276096][ T4271] usb 10-1: USB disconnect, device number 3
[  564.566541][T14735] device bond2 entered promiscuous mode
[  565.395717][T14769] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2640'.
[  565.411987][T14772] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2642'.
[  565.435571][T14772] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  566.516367][T14772] batman_adv: batadv0: Removing interface: batadv_slave_1
[  567.687608][T14823] netlink: 'syz.0.2658': attribute type 1 has an invalid length.
[  567.772211][T14827] device bond2 entered promiscuous mode
[  567.778955][T14827] 8021q: adding VLAN 0 to HW filter on device bond2
[  567.823919][T14823] device bridge1 entered promiscuous mode
[  567.833043][T14823] bond2: (slave bridge1): Enslaving as a backup interface with an up link
[  567.912252][ T9722] bond2: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  567.928881][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bond2: link becomes ready
[  567.948336][T14834] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2661'.
[  568.055027][T14834] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2661'.
[  568.155257][ T9722] bond2: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  568.172641][T14843] overlayfs: failed to clone upperpath
[  570.149560][T14889] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2675'.
[  571.337953][ T9972] kernel read not supported for file [userfaultfd] (pid: 9972 comm: kworker/0:16)
[  572.934527][T14925] loop1: detected capacity change from 0 to 8192
[  573.002603][T14925]  loop1: p1 p2 p4 < >
[  573.014460][T14925] loop1: partition table partially beyond EOD, truncated
[  573.168746][T14925] loop1: p1 start 16777216 is beyond EOD, truncated
[  573.318327][T14925] loop1: p2 size 515840 extends beyond EOD, truncated
[  573.685115][T14925] loop1: p4 start 16777216 is beyond EOD, truncated
[  574.394554][ T4378] udevd[4378]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[  575.957312][T14983] netlink: 'syz.3.2703': attribute type 1 has an invalid length.
[  575.997187][T14984] loop1: detected capacity change from 0 to 512
[  576.062408][T14984] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  576.101640][T14984] ext4 filesystem being mounted at /25/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  576.125390][T14985] device bond3 entered promiscuous mode
[  576.159169][T14985] 8021q: adding VLAN 0 to HW filter on device bond3
[  576.177676][T14992] device bridge1 entered promiscuous mode
[  576.229626][T14992] bond3: (slave bridge1): Enslaving as a backup interface with an up link
[  576.259576][ T4550] bond3: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  576.317360][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bond3: link becomes ready
[  576.491040][ T4550] bond3: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  576.586413][T13983] EXT4-fs (loop1): unmounting filesystem.
[  576.733682][T15005] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2707'.
[  576.949775][T15017] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  577.168448][T13052] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  577.360843][T13052] usb 2-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  577.418751][T13052] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  577.466429][T13052] usb 2-1: config 0 descriptor??
[  577.495983][T13052] gspca_main: STV06xx-2.14.0 probing 046d:0870
[  578.305512][ T4334] libceph: connect (1)[c::]:6789 error -101
[  578.350574][ T4334] libceph: mon0 (1)[c::]:6789 connect error
[  578.531491][T15052] ceph: No mds server is up or the cluster is laggy
[  578.551065][ T4334] libceph: connect (1)[c::]:6789 error -101
[  578.735571][ T4334] libceph: mon0 (1)[c::]:6789 connect error
[  578.913640][T13052] gspca_stv06xx: HDCS-1020 sensor detected
[  578.988817][T15065] netlink: 'syz.2.2723': attribute type 1 has an invalid length.
[  579.143735][T15065] bond7: (slave ip6gretap1): making interface the new active one
[  579.211799][T15065] bond7: (slave ip6gretap1): Enslaving as an active interface with an up link
[  579.233716][T15070] device bond7 entered promiscuous mode
[  579.244190][T13052] STV06xx: probe of 2-1:0.0 failed with error -71
[  579.268535][T15070] device ip6gretap1 entered promiscuous mode
[  579.275103][T15070] 8021q: adding VLAN 0 to HW filter on device bond7
[  579.277713][T13052] usb 2-1: USB disconnect, device number 2
[  580.061574][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bond7: link becomes ready
[  581.452003][T15117] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2739'.
[  581.558718][T15122] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2739'.
[  581.841428][T15130] netlink: 'syz.1.2744': attribute type 1 has an invalid length.
[  581.961118][T15134] device bond1 entered promiscuous mode
[  581.966955][T15134] 8021q: adding VLAN 0 to HW filter on device bond1
[  582.721773][T15130] device bridge1 entered promiscuous mode
[  582.728251][T15130] bond1: (slave bridge1): Enslaving as a backup interface with an up link
[  582.786651][ T4356] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  582.833297][ T6239] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready
[  583.060953][ T6239] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  583.102753][ T4286] Bluetooth: hci3: unexpected event for opcode 0x2019
[  584.144385][T15177] xt_NFQUEUE: number of queues (8) out of range (got 65537)
[  585.004658][T15197] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2756'.
[  585.032689][T15197] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2756'.
[  585.204612][T15202] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2767'.
[  585.230316][T15202] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2767'.
[  585.257545][T15203] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2757'.
[  585.345839][T15206] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2757'.
[  585.548189][T15210] Unknown status report in ack skb
[  586.246526][T15220] device syzkaller0 entered promiscuous mode
[  586.798216][T15209] loop1: detected capacity change from 0 to 40427
[  586.847475][T15209] F2FS-fs (loop1): Unrecognized mount option "whint_mode=user-based" or missing value
[  592.677746][T15305] Set syz1 is full, maxelem 6117 reached
[  595.306581][   T26] kauditd_printk_skb: 484 callbacks suppressed
[  595.306597][   T26] audit: type=1326 audit(1770412033.562:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15351 comm="syz.1.2799" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe1ded9aeb9 code=0x0
[  597.888610][T15391] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  597.922547][T15391] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  597.989103][T15391] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  598.040583][T15391] device bridge_slave_0 left promiscuous mode
[  598.046913][T15391] bridge0: port 1(bridge_slave_0) entered disabled state
[  598.106021][T15391] device bridge_slave_1 left promiscuous mode
[  598.118046][T15391] bridge0: port 2(bridge_slave_1) entered disabled state
[  598.153336][T15395] netlink: 182 bytes leftover after parsing attributes in process `syz.2.2811'.
[  598.166683][T15391] bond0: (slave bond_slave_0): Releasing backup interface
[  598.211590][T15391] bond0: (slave bond_slave_1): Releasing backup interface
[  598.539669][T15391] team0: Port device team_slave_0 removed
[  598.672621][T15391] team0: Port device team_slave_1 removed
[  598.962849][T15391] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  599.175873][T15391] batman_adv: batadv0: Removing interface: batadv_slave_0
[  599.360266][T15391] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  599.417963][T15391] batman_adv: batadv0: Removing interface: batadv_slave_1
[  599.517332][T15391] bond1: (slave vcan1): Releasing backup interface
[  599.560098][T15391] bond1: (slave vcan2): making interface the new active one
[  599.621280][T15391] bond1: (slave vcan2): Releasing backup interface
[  599.679684][T15391] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[  600.578144][T15391] bond3: (slave bridge1): Removing an active aggregator
[  600.599820][T15391] bond3: (slave bridge1): Releasing backup interface
[  600.641503][T15391] device bridge1 left promiscuous mode
[  600.708084][T15396] team0: Mode changed to "loadbalance"
[  600.769022][T15397] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2810'.
[  601.772791][T15451] loop1: detected capacity change from 0 to 16
[  601.835173][T15451] erofs: (device loop1): mounted with root inode @ nid 36.
[  601.868633][T15454] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2827'.
[  601.944437][T15459] bridge0: port 1(veth0_to_bond) entered blocking state
[  602.010428][T15459] bridge0: port 1(veth0_to_bond) entered disabled state
[  602.076488][T15459] device veth0_to_bond entered promiscuous mode
[  602.268497][ T4380] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  602.458822][ T4380] usb 2-1: Using ep0 maxpacket: 16
[  602.620923][ T4380] usb 2-1: config 0 interface 0 has no altsetting 0
[  602.633314][ T4380] usb 2-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  602.659897][ T4380] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  603.427700][ T4380] usb 2-1: config 0 descriptor??
[  603.849231][ T4380] usbhid 2-1:0.0: can't add hid device: -71
[  603.870621][ T4380] usbhid: probe of 2-1:0.0 failed with error -71
[  603.947756][ T4380] usb 2-1: USB disconnect, device number 3
[  607.921863][T15542] device syzkaller0 entered promiscuous mode
[  609.149961][T15558] overlayfs: failed to clone upperpath
[  610.995771][ T4285] Bluetooth: hci1: command 0x0406 tx timeout
[  613.932851][T15621] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2866'.
[  614.197340][T15623] 8021q: adding VLAN 0 to HW filter on device bond3
[  614.673440][T15645] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2875'.
[  614.842113][T15651] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2873'.
[  615.193708][T15671] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  615.267744][T15671] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  615.302958][T15671] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  615.350003][T15671] device bridge_slave_0 left promiscuous mode
[  615.367933][T15671] bridge0: port 1(bridge_slave_0) entered disabled state
[  615.382999][T15671] device bridge_slave_1 left promiscuous mode
[  615.406990][T15671] bridge0: port 2(bridge_slave_1) entered disabled state
[  615.427236][T15671] bond0: (slave bond_slave_0): Releasing backup interface
[  615.476388][T15671] bond0: (slave bond_slave_1): Releasing backup interface
[  616.611075][T15671] team0: Port device team_slave_0 removed
[  616.723708][T15671] team0: Port device team_slave_1 removed
[  616.750855][T15671] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  616.779647][T15671] batman_adv: batadv0: Removing interface: batadv_slave_0
[  616.807510][T15671] bond1: (slave bridge1): Removing an active aggregator
[  616.816416][ T6239] bond1: Warning: Found an uninitialized port
[  616.837769][T15671] bond1: (slave bridge1): Releasing backup interface
[  616.848908][T15671] device bridge1 left promiscuous mode
[  616.876403][T15672] team0: Mode changed to "loadbalance"
[  616.930974][T15674] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2880'.
[  617.063377][T15680] netlink: 'syz.2.2881': attribute type 10 has an invalid length.
[  617.081520][T15680] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  619.334410][T15738] netlink: 'syz.3.2897': attribute type 2 has an invalid length.
[  620.106898][T15738] netlink: 'syz.3.2897': attribute type 1 has an invalid length.
[  621.985859][T15785] overlayfs: failed to clone upperpath
[  624.085856][T15801] loop1: detected capacity change from 0 to 8
[  624.220938][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  624.227325][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  624.308657][T15801] SQUASHFS error: lzo decompression failed, data probably corrupt
[  624.344537][T15801] SQUASHFS error: Failed to read block 0x91: -5
[  624.358976][T15801] SQUASHFS error: Unable to read metadata cache entry [8f]
[  624.374226][T15801] SQUASHFS error: Unable to read inode 0x11f
[  624.403441][T15805] lo speed is unknown, defaulting to 1000
[  624.410176][T15805] lo speed is unknown, defaulting to 1000
[  624.417431][T15805] lo speed is unknown, defaulting to 1000
[  624.428650][T15805] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  624.444255][T15805] infiniband syz: RDMA CMA: cma_listen_on_dev, error -98
[  624.521965][T15805] lo speed is unknown, defaulting to 1000
[  624.536262][T15805] lo speed is unknown, defaulting to 1000
[  624.549122][T15805] lo speed is unknown, defaulting to 1000
[  624.560141][T15805] lo speed is unknown, defaulting to 1000
[  624.570528][T15805] lo speed is unknown, defaulting to 1000
[  624.583234][T15805] lo speed is unknown, defaulting to 1000
[  625.379311][T15801] loop1: detected capacity change from 0 to 512
[  625.573276][T15801] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  625.589112][T15801] ext4 filesystem being mounted at /59/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  625.693689][T15801] EXT4-fs (loop1): resizing filesystem from 256 to 1 blocks
[  625.833643][T15801] EXT4-fs warning (device loop1): ext4_resize_fs:2051: can't shrink FS - resize aborted
[  626.224403][T13983] EXT4-fs (loop1): unmounting filesystem.
[  628.497745][T15853] rdma_rxe: rxe_register_device failed with error -23
[  628.514486][T15853] rdma_rxe: failed to add lo
[  628.867873][T15867] loop1: detected capacity change from 0 to 128
[  628.946640][T15867] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  628.971349][T15867] ext4 filesystem being mounted at /63/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  629.026014][   T26] audit: type=1326 audit(1770412067.282:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15864 comm="syz.1.2932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  629.057478][   T26] audit: type=1326 audit(1770412067.282:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15864 comm="syz.1.2932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=440 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  629.083770][   T26] audit: type=1326 audit(1770412067.282:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15864 comm="syz.1.2932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  629.285988][   T26] audit: type=1326 audit(1770412067.282:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15864 comm="syz.1.2932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=209 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  629.309432][   T26] audit: type=1326 audit(1770412067.282:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15864 comm="syz.1.2932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  629.371371][T13983] EXT4-fs (loop1): unmounting filesystem.
[  629.781406][   T26] audit: type=1326 audit(1770412067.292:633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15864 comm="syz.1.2932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  630.070994][   T26] audit: type=1326 audit(1770412067.292:634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15864 comm="syz.1.2932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  630.108673][   T26] audit: type=1326 audit(1770412067.292:635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15864 comm="syz.1.2932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  630.303978][   T26] audit: type=1326 audit(1770412067.292:636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15864 comm="syz.1.2932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  630.337140][   T26] audit: type=1326 audit(1770412067.292:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15864 comm="syz.1.2932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fe1ded99d97 code=0x7ffc0000
[  630.398119][T15888] netlink: 'syz.0.2938': attribute type 1 has an invalid length.
[  630.484469][T15889] loop9: detected capacity change from 0 to 8
[  630.570049][T15889] SQUASHFS error: xz decompression failed, data probably corrupt
[  630.578178][T15889] SQUASHFS error: Failed to read block 0x108: -5
[  630.584634][T15889] SQUASHFS error: Unable to read metadata cache entry [106]
[  630.592034][T15889] SQUASHFS error: Unable to read inode 0x101f
[  631.076000][T15888] 8021q: adding VLAN 0 to HW filter on device bond4
[  631.110537][T15890] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2938'.
[  631.317864][T15891] bond4: (slave ip6gretap2): making interface the new active one
[  631.363245][T15901] loop9: detected capacity change from 0 to 512
[  632.025649][T15891] bond4: (slave ip6gretap2): Enslaving as an active interface with an up link
[  632.031007][T15901] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  632.075361][T15901] EXT4-fs (loop9): 1 truncate cleaned up
[  632.081346][T15901] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  632.097732][T15901] EXT4-fs error (device loop9): ext4_generic_delete_entry:2729: inode #2: block 13: comm syz.9.2941: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  632.142088][T15901] EXT4-fs (loop9): Remounting filesystem read-only
[  632.148941][T15901] EXT4-fs error (device loop9) in ext4_delete_entry:2800: Corrupt filesystem
[  632.164106][T15901] EXT4-fs (loop9): Remounting filesystem read-only
[  632.170745][T15901] EXT4-fs warning (device loop9): ext4_rename_delete:3778: inode #2: comm syz.9.2941: Deleting old file: nlink 5, error=-117
[  632.253738][ T8291] EXT4-fs (loop9): unmounting filesystem.
[  633.111282][T15910] 8021q: adding VLAN 0 to HW filter on device bond8
[  633.165965][T15917] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  633.910673][T15917] bond8: (slave macvlan2): making interface the new active one
[  633.969255][T15917] bond8: (slave macvlan2): Enslaving as an active interface with an up link
[  633.978641][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): bond8: link becomes ready
[  634.001744][T15921] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2946'.
[  637.957445][T15978] loop9: detected capacity change from 0 to 256
[  638.067084][T15978] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  638.273077][   T26] kauditd_printk_skb: 3 callbacks suppressed
[  638.273099][   T26] audit: type=1326 audit(1770412332.536:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15976 comm="syz.9.2942" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f760719aeb9 code=0x0
[  638.873078][T15992] md: md2 stopped.
[  639.463872][T16005] netlink: 'syz.3.2965': attribute type 16 has an invalid length.
[  639.504155][T16005] netlink: 'syz.3.2965': attribute type 17 has an invalid length.
[  640.614088][T16013] netlink: 'syz.2.2967': attribute type 1 has an invalid length.
[  640.865802][T16016] 8021q: adding VLAN 0 to HW filter on device bond10
[  640.920448][T16016] bond9: (slave bond10): making interface the new active one
[  640.967032][T16016] bond9: (slave bond10): Enslaving as an active interface with an up link
[  641.001250][T16024] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2967'.
[  641.033867][T16024] 8021q: adding VLAN 0 to HW filter on device bond9
[  641.082508][T16021] bond9: (slave gretap2): Enslaving as a backup interface with an up link
[  641.536608][T16049] xt_time: invalid argument - start or stop time greater than 23:59:59
[  642.276075][T16047] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2975'.
[  643.477003][T16065] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2977'.
[  644.414626][T16072] netlink: 24 bytes leftover after parsing attributes in process `syz.9.2979'.
[  644.875019][ T4285] Bluetooth: hci3: unexpected event for opcode 0x200c
[  645.257253][T16096] loop1: detected capacity change from 0 to 256
[  645.294603][T16096] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  645.548657][T16097] support for the xor transformation has been removed.
[  646.738508][ T9973] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  646.780684][ T4285] Bluetooth: hci0: command 0x0406 tx timeout
[  646.948490][ T9973] usb 10-1: Using ep0 maxpacket: 16
[  646.961160][ T9973] usb 10-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  647.103214][ T9973] usb 10-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid wMaxPacketSize 0
[  647.203672][ T9973] usb 10-1: config 0 interface 0 has no altsetting 0
[  647.247081][ T9973] usb 10-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[  647.387750][ T9973] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  647.463512][ T9973] usb 10-1: config 0 descriptor??
[  647.560953][T16167] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3007'.
[  648.594769][T16167] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3007'.
[  648.745385][T16120] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  648.790647][T16120] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  648.853602][ T9973] nzxt-smart2 0003:1E71:2009.000D: hidraw0: USB HID v0.05 Device [HID 1e71:2009] on usb-dummy_hcd.9-1/input0
[  649.219980][ T9973] usb 10-1: USB disconnect, device number 4
[  652.287246][T16196] fido_id[16196]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.9/usb10/report_descriptor': No such file or directory
[  653.771812][T16231] loop1: detected capacity change from 0 to 128
[  653.892221][T16231] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  653.948854][T16231] ext4 filesystem being mounted at /84/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  653.983703][T16237] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3014'.
[  655.141677][T16263] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3017'.
[  655.692106][T13983] EXT4-fs (loop1): unmounting filesystem.
[  660.514422][T16361] device bond3 left promiscuous mode
[  660.530044][T16361] netdevsim netdevsim9 netdevsim0: unset [1, 0] type 2 family 0 port 20000 - 0
[  660.542486][T16361] netdevsim netdevsim9 netdevsim1: unset [1, 0] type 2 family 0 port 20000 - 0
[  660.554018][T16361] netdevsim netdevsim9 netdevsim2: unset [1, 0] type 2 family 0 port 20000 - 0
[  660.564030][T16361] netdevsim netdevsim9 netdevsim3: unset [1, 0] type 2 family 0 port 20000 - 0
[  660.684241][T16368] overlayfs: failed to clone upperpath
[  662.006441][T16389] netlink: 'syz.9.3044': attribute type 1 has an invalid length.
[  662.179843][T16391] bond6: (slave gretap1): making interface the new active one
[  662.217739][T16391] bond6: (slave gretap1): Enslaving as an active interface with an up link
[  663.824391][T16434] loop9: detected capacity change from 0 to 128
[  664.743213][T16434] FAT-fs (loop9): bogus number of reserved sectors
[  664.749868][T16434] FAT-fs (loop9): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  664.759249][T16434] FAT-fs (loop9): Can't find a valid FAT filesystem
[  664.759767][T16431] loop1: detected capacity change from 0 to 1024
[  664.774030][T16431] EXT4-fs: inline encryption not supported
[  664.808529][T16431] EXT4-fs: Ignoring removed i_version option
[  664.828571][ T4378] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  664.871706][T16431] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  665.055216][T16418] bridge0: port 2(bridge_slave_1) entered disabled state
[  665.062852][T16418] bridge0: port 1(bridge_slave_0) entered disabled state
[  665.109373][T16431] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  665.521099][T13983] EXT4-fs (loop1): unmounting filesystem.
[  666.043229][   T26] audit: type=1326 audit(2000000021.200:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16474 comm="syz.2.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95d9b9aeb9 code=0x7ffc0000
[  666.097674][   T26] audit: type=1326 audit(2000000021.220:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16474 comm="syz.2.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95d9b9aeb9 code=0x7ffc0000
[  666.202889][   T26] audit: type=1326 audit(2000000021.230:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16474 comm="syz.2.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f95d9b9aeb9 code=0x7ffc0000
[  666.288137][   T26] audit: type=1326 audit(2000000021.230:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16474 comm="syz.2.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95d9b9aeb9 code=0x7ffc0000
[  666.322771][   T26] audit: type=1326 audit(2000000021.230:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16474 comm="syz.2.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95d9b9aeb9 code=0x7ffc0000
[  666.375891][   T26] audit: type=1326 audit(2000000021.230:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16474 comm="syz.2.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f95d9b9aeb9 code=0x7ffc0000
[  666.404264][   T26] audit: type=1326 audit(2000000021.230:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16474 comm="syz.2.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95d9b9aeb9 code=0x7ffc0000
[  666.456613][   T26] audit: type=1326 audit(2000000021.230:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16474 comm="syz.2.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95d9b9aeb9 code=0x7ffc0000
[  666.927896][   T26] audit: type=1326 audit(2000000021.230:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16474 comm="syz.2.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f95d9b5b78e code=0x7ffc0000
[  667.264575][   T26] audit: type=1326 audit(2000000021.230:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16474 comm="syz.2.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95d9b9aeb9 code=0x7ffc0000
[  667.735875][T16418] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  668.552874][T16418] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  668.562025][T16418] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  668.571018][T16418] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  668.579985][T16418] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  668.684576][T16418] batman_adv: batadv0: Interface deactivated: gretap1
[  668.727676][T16418] device ip6gretap1 left promiscuous mode
[  668.757455][T16418] device bond2 left promiscuous mode
[  668.762872][T16418] device bridge1 left promiscuous mode
[  668.821389][T16501] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3072'.
[  668.993258][T16517] loop1: detected capacity change from 0 to 8
[  670.054289][T16532] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3080'.
[  670.079709][T16532] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  670.088545][T16532] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  670.097317][T16532] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  670.106349][T16532] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  670.150167][T16532] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3080'.
[  670.585576][T16547] loop1: detected capacity change from 0 to 1024
[  670.613720][T16547] EXT4-fs: Ignoring removed orlov option
[  670.639868][T16547] EXT4-fs: Ignoring removed i_version option
[  670.709042][T16547] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  670.830985][T16547] netlink: 'syz.1.3086': attribute type 3 has an invalid length.
[  670.851690][T16547] netlink: 'syz.1.3086': attribute type 3 has an invalid length.
[  670.927316][T13983] EXT4-fs (loop1): unmounting filesystem.
[  671.114051][T16561] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3090'.
[  671.936127][ T4285] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  671.957521][ T4285] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  671.969173][ T4285] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  671.985869][ T4285] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  671.993709][ T4285] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  672.001156][ T4285] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  672.222763][T16593] overlayfs: failed to clone upperpath
[  672.535980][T16590] lo speed is unknown, defaulting to 1000
[  672.928607][T16590] chnl_net:caif_netlink_parms(): no params data found
[  673.252715][T16590] bridge0: port 1(bridge_slave_0) entered blocking state
[  673.290042][T16590] bridge0: port 1(bridge_slave_0) entered disabled state
[  673.328673][T16590] device bridge_slave_0 entered promiscuous mode
[  673.380285][T16590] bridge0: port 2(bridge_slave_1) entered blocking state
[  673.413893][T16590] bridge0: port 2(bridge_slave_1) entered disabled state
[  673.458680][T16590] device bridge_slave_1 entered promiscuous mode
[  673.535699][T16632] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3113'.
[  673.612638][T16632] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3113'.
[  673.807024][T16590] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  673.966385][T16590] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  674.005644][T16643] 9pnet_fd: Insufficient options for proto=fd
[  674.058743][ T4286] Bluetooth: hci4: command 0x0409 tx timeout
[  674.138677][ T4271] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  674.209694][T16590] team0: Port device team_slave_0 added
[  674.269528][T16590] team0: Port device team_slave_1 added
[  674.330025][ T4271] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  674.356923][ T4271] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  674.393467][T16590] batman_adv: batadv0: Adding interface: batadv_slave_0
[  674.420248][ T4271] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66
[  674.423418][T16590] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  674.488486][ T4271] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  674.508655][T16590] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  674.526752][T16590] batman_adv: batadv0: Adding interface: batadv_slave_1
[  674.534214][T16590] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  674.567480][T16590] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  674.583297][ T4271] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  674.625387][ T4271] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  674.684373][ T4271] usb 2-1: Product: syz
[  674.704408][T16590] device hsr_slave_0 entered promiscuous mode
[  674.710669][ T4271] usb 2-1: Manufacturer: syz
[  674.740204][T16590] device hsr_slave_1 entered promiscuous mode
[  674.787514][ T4271] cdc_wdm: probe of 2-1:1.0 failed with error -22
[  674.797342][T16590] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  674.813000][T16590] Cannot create hsr debugfs directory
[  674.983749][T16660] netlink: 'syz.3.3111': attribute type 1 has an invalid length.
[  675.006465][ T4271] usb 2-1: USB disconnect, device number 4
[  675.019939][T16660] 8021q: adding VLAN 0 to HW filter on device bond5
[  675.049891][T16660] bond5: up delay (35976) is not a multiple of miimon (100), value rounded to 35900 ms
[  675.152779][T16660] bond5: (slave ip6gretap1): Enslaving as an active interface with an up link
[  676.138431][ T4286] Bluetooth: hci4: command 0x041b tx timeout
[  676.831146][T16590] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  676.847227][T16714] sock: sock_set_timeout: `syz.1.3123' (pid 16714) tries to set negative timeout
[  676.861931][T16590] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  676.882298][T16590] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  676.914115][T16590] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  677.065958][T16590] 8021q: adding VLAN 0 to HW filter on device bond0
[  677.122224][T16590] 8021q: adding VLAN 0 to HW filter on device team0
[  677.220623][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  677.230894][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  677.307245][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  677.370038][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  677.408980][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  677.416201][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  677.457595][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  677.490429][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  677.681844][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  677.689073][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  678.429582][ T4286] Bluetooth: hci4: command 0x040f tx timeout
[  678.491418][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  678.602780][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  678.622086][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  678.645733][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  678.681333][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  678.708025][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  678.724218][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  678.753112][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  678.766692][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  678.784201][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  678.797921][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  678.815159][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  678.835099][T16590] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  679.598918][T16760] netlink: 1319 bytes leftover after parsing attributes in process `syz.0.3136'.
[  680.460969][ T4286] Bluetooth: hci4: command 0x0419 tx timeout
[  681.105155][ T9731] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  681.132457][ T9731] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  681.204407][T16590] 8021q: adding VLAN 0 to HW filter on device batadv0
[  681.461448][T16780] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3142'.
[  683.266397][   T26] kauditd_printk_skb: 10 callbacks suppressed
[  683.266414][   T26] audit: type=1326 audit(2000000038.410:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16798 comm="syz.1.3147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  683.378469][   T26] audit: type=1326 audit(2000000038.410:663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16798 comm="syz.1.3147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  683.489567][   T26] audit: type=1326 audit(2000000038.580:664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16798 comm="syz.1.3147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  683.603772][   T26] audit: type=1326 audit(2000000038.580:665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16798 comm="syz.1.3147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  683.665248][   T26] audit: type=1326 audit(2000000038.580:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16798 comm="syz.1.3147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  683.703088][T16817] netlink: 1347 bytes leftover after parsing attributes in process `syz.0.3150'.
[  683.757252][   T26] audit: type=1326 audit(2000000038.690:667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16798 comm="syz.1.3147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  684.202618][ T9731] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  684.222639][ T9731] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  684.347481][ T9718] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  684.383971][ T9718] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  684.431115][ T9718] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  684.460638][ T9718] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  684.510378][T16590] device veth0_vlan entered promiscuous mode
[  684.573891][T16590] device veth1_vlan entered promiscuous mode
[  684.704780][ T4368] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  684.731162][ T4368] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  684.781127][ T4368] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  684.831843][ T4368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  684.875171][T16590] device veth0_macvtap entered promiscuous mode
[  684.934794][T16590] device veth1_macvtap entered promiscuous mode
[  685.038147][T16590] batman_adv: batadv0: Interface activated: batadv_slave_0
[  685.089394][ T4368] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  685.113279][ T4368] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  685.163373][ T4368] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  685.209754][ T4368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  685.253018][T16590] batman_adv: batadv0: Interface activated: batadv_slave_1
[  685.286955][ T4550] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  685.329399][ T4550] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  685.352529][T16590] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  685.367810][T16590] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  685.404587][T16590] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  685.446816][T16590] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  685.661680][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  685.668080][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  685.720119][ T6201] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  685.728012][ T6201] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  685.754026][ T4368] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  685.839121][ T9722] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  685.887774][ T9722] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  685.915915][ T9722] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  686.365366][T16865] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  686.373792][T16865] IPv6: NLM_F_CREATE should be set when creating new route
[  690.435384][T16867] bridge0: port 2(bridge_slave_1) entered disabled state
[  690.442916][T16867] bridge0: port 1(bridge_slave_0) entered disabled state
[  691.334896][T16867] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  691.429040][T16867] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  692.806618][T16867] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  692.815760][T16867] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  692.826439][T16867] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  692.839388][T16867] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  692.995610][T16907] netlink: 44 bytes leftover after parsing attributes in process `syz.3.3172'.
[  693.013102][T16907] netem: unknown loss type 12
[  693.284773][T16931] 8021q: adding VLAN 0 to HW filter on device bond2
[  693.335009][T16937] bond2: (slave ip6gretap1): Enslaving as an active interface with an up link
[  693.728825][ T4368] IPv6: ADDRCONF(NETDEV_CHANGE): bond2: link becomes ready
[  694.460294][T16959] device bridge2 entered promiscuous mode
[  694.474612][T16959] team0: Port device bridge2 added
[  694.488223][T16959] bridge0: port 3(team0) entered blocking state
[  694.531468][T16959] bridge0: port 3(team0) entered disabled state
[  694.558098][T16959] device team0 entered promiscuous mode
[  694.586402][T16959] device team_slave_0 entered promiscuous mode
[  694.636140][T16959] device team_slave_1 entered promiscuous mode
[  694.667068][T16965] netlink: 'syz.4.3184': attribute type 1 has an invalid length.
[  697.709238][T17014] xt_nat: multiple ranges no longer supported
[  698.628721][T16994] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  698.637674][T16994] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  698.689056][T16994] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  698.718653][T16994] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  699.800339][T16994] batman_adv: batadv0: Interface deactivated: gretap1
[  700.949220][T17049] netlink: 'syz.1.3209': attribute type 11 has an invalid length.
[  702.220594][T17056] IPv6: NLM_F_CREATE should be specified when creating new route
[  702.228506][T17056] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  702.235762][T17056] IPv6: NLM_F_CREATE should be set when creating new route
[  703.121686][T17083] netlink: 'syz.1.3216': attribute type 1 has an invalid length.
[  703.129663][T17083] netlink: 'syz.1.3216': attribute type 2 has an invalid length.
[  705.938573][ T4380] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  706.944529][ T4380] usb 2-1: Using ep0 maxpacket: 16
[  706.952034][ T4380] usb 2-1: config 0 has no interfaces?
[  707.040823][ T4380] usb 2-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27
[  707.118512][ T4380] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  707.126589][ T4380] usb 2-1: Product: syz
[  707.234725][ T4380] usb 2-1: Manufacturer: syz
[  707.271378][ T4380] usb 2-1: SerialNumber: syz
[  707.334338][ T4380] usb 2-1: config 0 descriptor??
[  708.836937][T17127] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3228'.
[  709.959171][T17198] device bond3 entered promiscuous mode
[  709.997691][T17198] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  710.032060][T17198] bond3: (slave macvlan2): making interface the new active one
[  710.058798][T17198] device macvlan2 entered promiscuous mode
[  710.077710][T17198] device bond0 entered promiscuous mode
[  710.126394][T17198] device bond_slave_0 entered promiscuous mode
[  710.136662][T17198] device bond_slave_1 entered promiscuous mode
[  710.171293][T17198] bond3: (slave macvlan2): Enslaving as an active interface with an up link
[  710.183365][ T8926] usb 2-1: USB disconnect, device number 5
[  710.252767][T17184] lo speed is unknown, defaulting to 1000
[  710.263068][T17202] netlink: 'syz.3.3242': attribute type 1 has an invalid length.
[  710.323993][T17202] 8021q: adding VLAN 0 to HW filter on device bond6
[  710.335809][T17204] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3242'.
[  710.345620][T17204] device bond6 entered promiscuous mode
[  710.448098][T17202] bond6: (slave dummy0): making interface the new active one
[  711.255452][T17202] device dummy0 entered promiscuous mode
[  711.337487][T17202] bond6: (slave dummy0): Enslaving as an active interface with an up link
[  711.360324][ T9718] IPv6: ADDRCONF(NETDEV_CHANGE): bond6: link becomes ready
[  711.539889][   T26] audit: type=1326 audit(2000000066.690:668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17215 comm="syz.1.3245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  711.608890][   T26] audit: type=1326 audit(2000000066.690:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17215 comm="syz.1.3245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  711.889031][   T26] audit: type=1326 audit(2000000066.690:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17215 comm="syz.1.3245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  711.912303][   T26] audit: type=1326 audit(2000000066.690:671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17215 comm="syz.1.3245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  711.935403][   T26] audit: type=1326 audit(2000000066.690:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17215 comm="syz.1.3245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  712.682168][   T26] audit: type=1326 audit(2000000066.690:673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17215 comm="syz.1.3245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  712.705117][   T26] audit: type=1326 audit(2000000066.690:674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17215 comm="syz.1.3245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  712.738428][   T26] audit: type=1326 audit(2000000066.690:675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17215 comm="syz.1.3245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  712.888419][   T26] audit: type=1326 audit(2000000066.690:676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17215 comm="syz.1.3245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  713.022981][   T26] audit: type=1326 audit(2000000066.690:677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17215 comm="syz.1.3245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  720.678739][T17296] lo speed is unknown, defaulting to 1000
[  720.831931][T17302] smc: removing ib device syz1
[  720.874425][T17296] lo speed is unknown, defaulting to 1000
[  720.925653][T17296] lo speed is unknown, defaulting to 1000
[  721.016507][T17296] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  721.262812][T17296] lo speed is unknown, defaulting to 1000
[  721.307000][T17296] lo speed is unknown, defaulting to 1000
[  721.324822][T17313] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  721.339533][T17313] SET target dimension over the limit!
[  721.449037][T17296] lo speed is unknown, defaulting to 1000
[  721.695811][T17296] lo speed is unknown, defaulting to 1000
[  721.984545][T17296] lo speed is unknown, defaulting to 1000
[  722.010411][T17296] lo speed is unknown, defaulting to 1000
[  722.017238][T17296] lo speed is unknown, defaulting to 1000
[  722.039520][T17296] lo speed is unknown, defaulting to 1000
[  723.577450][T17331] No such timeout policy "syz1"
[  724.446333][T17339] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3276'.
[  724.496486][T17339] bond0: invalid ARP target 0.0.0.0 specified for addition
[  724.528395][T17339] bond0: option arp_ip_target: invalid value (0)
[  730.096089][T17422] device bond3 entered promiscuous mode
[  730.115209][T17422] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  730.178869][T17422] bond3: (slave macvlan2): Enslaving as an active interface with a down link
[  731.941822][T17448] lo speed is unknown, defaulting to 1000
[  731.999455][T17448] lo speed is unknown, defaulting to 1000
[  735.911117][T17488] netlink: 'syz.3.3314': attribute type 1 has an invalid length.
[  735.954192][T17488] 8021q: adding VLAN 0 to HW filter on device bond7
[  735.961868][T17491] device bond7 entered promiscuous mode
[  736.007864][T17491] bond6: (slave dummy0): Releasing active interface
[  736.018197][T17491] device dummy0 left promiscuous mode
[  736.080961][T17491] bond7: (slave dummy0): making interface the new active one
[  736.093621][T17491] device dummy0 entered promiscuous mode
[  736.103381][T17491] bond7: (slave dummy0): Enslaving as an active interface with an up link
[  736.160624][ T9727] IPv6: ADDRCONF(NETDEV_CHANGE): bond7: link becomes ready
[  736.204076][T17487] device bond7 left promiscuous mode
[  736.218193][T17487] device dummy0 left promiscuous mode
[  742.287608][T17547] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[  743.111151][T17559] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3331'.
[  743.784299][T17568] libceph: resolve '½@½Ée2²âOAq§¨­cz' (ret=-3): failed
[  744.085464][T17566] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3331'.
[  747.109245][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  747.115617][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  747.263457][T17606] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3341'.
[  747.306312][T17606] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3341'.
[  748.350487][T17614] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check.
[  749.938138][ T6241] device hsr_slave_0 left promiscuous mode
[  750.005686][ T6241] device hsr_slave_1 left promiscuous mode
[  750.266462][ T6241] bond4 (unregistering): Released all slaves
[  751.388130][ T6241] bond3 (unregistering): (slave veth7): Releasing active interface
[  751.430970][ T6241] bond3 (unregistering): (slave veth7): the permanent HWaddr of slave - 2a:41:bc:29:42:21 - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  751.565529][ T6241] device dummy0 entered promiscuous mode
[  753.600802][   T26] kauditd_printk_skb: 4 callbacks suppressed
[  753.600819][   T26] audit: type=1326 audit(2000000108.750:682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17669 comm="syz.1.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  754.476568][   T26] audit: type=1326 audit(2000000108.790:683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17669 comm="syz.1.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  754.657248][   T26] audit: type=1326 audit(2000000108.800:684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17669 comm="syz.1.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  755.004101][   T26] audit: type=1326 audit(2000000108.800:685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17669 comm="syz.1.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  755.658404][   T26] audit: type=1326 audit(2000000108.800:686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17669 comm="syz.1.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  755.771738][T17673] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  755.822855][   T26] audit: type=1326 audit(2000000108.800:687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17669 comm="syz.1.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  755.876294][ T6241] bond3 (unregistering): (slave dummy0): Releasing active interface
[  755.908814][ T6241] device dummy0 left promiscuous mode
[  755.929417][ T6241] bond3 (unregistering): Released all slaves
[  755.947487][   T26] audit: type=1326 audit(2000000108.810:688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17669 comm="syz.1.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  756.052989][   T26] audit: type=1326 audit(2000000108.810:689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17669 comm="syz.1.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  756.143579][   T26] audit: type=1326 audit(2000000108.810:690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17669 comm="syz.1.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  756.265828][   T26] audit: type=1326 audit(2000000108.820:691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17669 comm="syz.1.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1ded9aeb9 code=0x7ffc0000
[  757.400727][T17689] netlink: 'syz.3.3362': attribute type 29 has an invalid length.
[  758.608414][ T6241] bond2 (unregistering): Released all slaves
[  758.628536][ T6241] bond1 (unregistering): Released all slaves
[  760.382338][ T6241] bond0 (unregistering): Released all slaves
[  760.514541][T17663] netlink: 56 bytes leftover after parsing attributes in process `syz.2.3356'.
[  760.524395][T17663] tc_dump_action: action bad kind
[  760.636757][T17689] netlink: 'syz.3.3362': attribute type 29 has an invalid length.
[  761.851817][T17720] loop1: detected capacity change from 0 to 1024
[  761.943782][T17720] EXT4-fs (loop1): orphan cleanup on readonly fs
[  762.005660][T17720] EXT4-fs (loop1): 1 truncate cleaned up
[  762.014678][T17720] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  762.064140][T17728] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3370'.
[  762.073269][T17728] device team0 left promiscuous mode
[  762.133339][T17728] device team_slave_0 left promiscuous mode
[  762.143767][T17728] device team_slave_1 left promiscuous mode
[  762.164151][T17728] bridge0: port 3(team0) entered disabled state
[  762.238158][T17728] device bridge_slave_1 left promiscuous mode
[  762.278865][T17728] bridge0: port 2(bridge_slave_1) entered disabled state
[  762.311664][T17728] device bridge_slave_0 left promiscuous mode
[  762.333253][T17728] bridge0: port 1(bridge_slave_0) entered disabled state
[  763.095919][T17758] loop4: detected capacity change from 0 to 64
[  765.029068][T13983] EXT4-fs (loop1): unmounting filesystem.
[  765.306734][   T26] kauditd_printk_skb: 14 callbacks suppressed
[  765.306750][   T26] audit: type=1326 audit(2000000120.450:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17788 comm="syz.4.3388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec1fd9aeb9 code=0x7ffc0000
[  765.352682][   T26] audit: type=1326 audit(2000000120.450:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17788 comm="syz.4.3388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec1fd9aeb9 code=0x7ffc0000
[  765.382653][   T26] audit: type=1326 audit(2000000120.450:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17788 comm="syz.4.3388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec1fd9aeb9 code=0x7ffc0000
[  765.542340][   T26] audit: type=1326 audit(2000000120.460:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17788 comm="syz.4.3388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec1fd9aeb9 code=0x7ffc0000
[  765.618369][   T26] audit: type=1326 audit(2000000120.460:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17788 comm="syz.4.3388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fec1fd9aeb9 code=0x7ffc0000
[  765.641241][   T26] audit: type=1326 audit(2000000120.460:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17788 comm="syz.4.3388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec1fd9aeb9 code=0x7ffc0000
[  765.703297][   T26] audit: type=1326 audit(2000000120.460:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17788 comm="syz.4.3388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec1fd9aeb9 code=0x7ffc0000
[  765.824971][   T26] audit: type=1326 audit(2000000120.460:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17788 comm="syz.4.3388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec1fd9aeb9 code=0x7ffc0000
[  765.977576][   T26] audit: type=1326 audit(2000000120.460:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17788 comm="syz.4.3388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec1fd9aeb9 code=0x7ffc0000
[  766.185470][   T26] audit: type=1326 audit(2000000120.470:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17788 comm="syz.4.3388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fec1fd9aeb9 code=0x7ffc0000
[  767.285192][T17823] loop1: detected capacity change from 0 to 512
[  767.790629][T17823] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  767.944349][T17823] ext4 filesystem being mounted at /151/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  767.975957][ T6241] bond1: (slave ip6gretap1): Releasing active interface
[  769.463871][T13983] EXT4-fs (loop1): unmounting filesystem.
[  772.608034][ T6241] bond6: (slave gretap1): Releasing active interface
[  772.955604][T17903] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3414'.
[  773.254747][T17913] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3416'.
[  773.353821][T17916] lo speed is unknown, defaulting to 1000
[  773.650481][T17916] lo speed is unknown, defaulting to 1000
[  774.775169][T17934] fuse: Bad value for 'fd'
[  775.454400][ T6241] device hsr_slave_0 left promiscuous mode
[  775.498984][ T6241] device hsr_slave_1 left promiscuous mode
[  776.461330][ T6241] bond6 (unregistering): Released all slaves
[  777.992008][T17974] loop4: detected capacity change from 0 to 512
[  780.666643][T17994] ipt_REJECT: ECHOREPLY no longer supported.
[  781.200990][ T6241] bond5 (unregistering): Released all slaves
[  781.562436][ T6241] bond4 (unregistering): (slave geneve3): Releasing active interface
[  781.590221][ T6241] bond4 (unregistering): Released all slaves
[  781.615714][ T6241] bond3 (unregistering): Released all slaves
[  781.666942][ T6241] bond2 (unregistering): Released all slaves
[  781.700445][ T6241] bond1 (unregistering): Released all slaves
[  782.267116][T18008] loop1: detected capacity change from 0 to 8
[  782.299860][T18008] unable to read fragment index table
[  782.338172][T18008] loop1: detected capacity change from 0 to 512
[  782.349506][T18008] EXT4-fs: Ignoring removed oldalloc option
[  782.356071][T18008] EXT4-fs: old and new quota format mixing
[  786.074267][ T6241] bond0 (unregistering): Released all slaves
[  786.322160][T17947] kthread_run failed with err -4
[  787.200538][T18039] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3450'.
[  787.739975][T18054] xt_hashlimit: max too large, truncated to 1048576
[  787.754291][T18054] xt_limit: Overflow, try lower: 0/0
[  788.561715][T18058] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3458'.
[  788.572800][T18058] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3458'.
[  788.948427][   T26] kauditd_printk_skb: 44 callbacks suppressed
[  788.948448][   T26] audit: type=1326 audit(2000000144.070:760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18066 comm="syz.3.3462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  789.802043][   T26] audit: type=1326 audit(2000000144.070:761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18066 comm="syz.3.3462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  789.825847][   T26] audit: type=1326 audit(2000000144.980:762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18066 comm="syz.3.3462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  789.912898][T18073] loop1: detected capacity change from 0 to 512
[  790.011474][   T26] audit: type=1326 audit(2000000144.980:763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18066 comm="syz.3.3462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  790.130075][   T26] audit: type=1326 audit(2000000144.980:764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18066 comm="syz.3.3462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  790.190576][   T26] audit: type=1326 audit(2000000144.980:765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18066 comm="syz.3.3462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  790.221297][ T4286] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  790.234791][ T4286] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  790.257408][T18073] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  790.305169][T18090] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3465'.
[  790.444997][ T4286] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  790.470407][ T4286] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  790.482335][ T4286] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  790.491339][ T4286] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  790.742976][T18073] ext4 filesystem being mounted at /165/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  790.984419][T18085] lo speed is unknown, defaulting to 1000
[  791.053704][T18085] lo speed is unknown, defaulting to 1000
[  791.118518][   T26] audit: type=1326 audit(2000000145.000:766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18066 comm="syz.3.3462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  791.268746][   T26] audit: type=1326 audit(2000000145.000:767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18066 comm="syz.3.3462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  791.314107][T13983] EXT4-fs (loop1): unmounting filesystem.
[  791.353881][   T26] audit: type=1326 audit(2000000145.000:768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18066 comm="syz.3.3462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  791.458422][   T26] audit: type=1326 audit(2000000145.000:769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18066 comm="syz.3.3462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  791.734832][T18085] chnl_net:caif_netlink_parms(): no params data found
[  791.827846][T18112] MTD: Couldn't look up '/dev/nullb0': -2
[  791.945367][T18111] loop1: detected capacity change from 0 to 1024
[  792.538871][ T4286] Bluetooth: hci4: command 0x0409 tx timeout
[  792.609561][T18085] bridge0: port 1(bridge_slave_0) entered blocking state
[  792.627137][T18085] bridge0: port 1(bridge_slave_0) entered disabled state
[  792.645615][T18085] device bridge_slave_0 entered promiscuous mode
[  792.660695][T18121] vcan0: tx drop: invalid da for name 0x0000000000000015
[  792.700517][T18085] bridge0: port 2(bridge_slave_1) entered blocking state
[  792.708004][T18085] bridge0: port 2(bridge_slave_1) entered disabled state
[  792.717041][T18085] device bridge_slave_1 entered promiscuous mode
[  792.728143][T18111] hfsplus: inconsistency in B*Tree (1,0,1,0,1)
[  792.751738][T18085] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  792.774413][T18113] hfsplus: inconsistency in B*Tree (1,0,1,0,1)
[  792.783256][T18113] hfsplus: inconsistency in B*Tree (1,0,1,0,1)
[  792.819199][T18111] hfsplus: inconsistency in B*Tree (1,0,1,0,1)
[  792.881610][T18085] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  792.997554][ T9724] hfsplus: b-tree write err: -5, ino 4
[  793.022060][ T9724] hfsplus: inconsistency in B*Tree (1,0,1,0,1)
[  793.057730][T18085] team0: Port device team_slave_0 added
[  793.113102][T18085] team0: Port device team_slave_1 added
[  793.206886][T18085] batman_adv: batadv0: Adding interface: batadv_slave_0
[  793.218974][T18085] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  793.285656][T18085] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  793.913948][T18085] batman_adv: batadv0: Adding interface: batadv_slave_1
[  793.926728][T18085] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  793.969064][T18085] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  794.128082][T18085] device hsr_slave_0 entered promiscuous mode
[  794.156302][T18085] device hsr_slave_1 entered promiscuous mode
[  794.618419][ T4286] Bluetooth: hci4: command 0x041b tx timeout
[  795.280101][T18151] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3478'.
[  795.507227][T18153] loop1: detected capacity change from 0 to 128
[  795.553739][T18153] FAT-fs (loop1): Unrecognized mount option "18446744073709551615˙˙˙" or missing value
[  796.698395][ T4286] Bluetooth: hci4: command 0x040f tx timeout
[  798.349847][T18180] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3483'.
[  798.788702][ T4286] Bluetooth: hci4: command 0x0419 tx timeout
[  800.736637][T18219] VFS: Mount too revealing
[  803.866660][T18085] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  804.146736][T18085] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  804.163297][T18085] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  804.176068][T18085] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  806.636285][ T6241] device hsr_slave_0 left promiscuous mode
[  806.682203][ T6241] device hsr_slave_1 left promiscuous mode
[  806.690122][ T6241] batman_adv: batadv0: Removing interface: batadv_slave_0
[  806.751879][ T6241] batman_adv: batadv0: Removing interface: batadv_slave_1
[  806.773932][ T6241] device bridge_slave_1 left promiscuous mode
[  806.784041][ T6241] bridge0: port 2(bridge_slave_1) entered disabled state
[  806.793029][ T6241] device bridge_slave_0 left promiscuous mode
[  806.799353][ T6241] bridge0: port 1(bridge_slave_0) entered disabled state
[  808.544882][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  808.551351][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  812.577338][ T6241] team0 (unregistering): Port device team_slave_1 removed
[  812.695366][ T6241] team0 (unregistering): Port device team_slave_0 removed
[  812.819435][ T6241] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  812.892818][ T6241] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  813.868524][T18333] xt_addrtype: ipv6 BLACKHOLE matching not supported
[  813.972911][T18334] xt_CT: You must specify a L4 protocol and not use inversions on it
[  814.868554][T18336] ceph: No mds server is up or the cluster is laggy
[  817.242698][ T6241] bond0 (unregistering): Released all slaves
[  818.085821][T18282] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  818.155388][T18085] 8021q: adding VLAN 0 to HW filter on device bond0
[  818.253246][ T9715] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  818.362512][ T9715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  818.414042][T18085] 8021q: adding VLAN 0 to HW filter on device team0
[  818.475981][ T9711] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  818.505596][ T9711] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  818.567849][ T9711] bridge0: port 1(bridge_slave_0) entered blocking state
[  818.575090][ T9711] bridge0: port 1(bridge_slave_0) entered forwarding state
[  818.651824][ T9711] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  818.683374][ T9711] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  818.704058][ T9711] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  818.745782][ T9711] bridge0: port 2(bridge_slave_1) entered blocking state
[  818.753013][ T9711] bridge0: port 2(bridge_slave_1) entered forwarding state
[  818.824351][ T9711] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  818.851728][ T9715] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  818.861856][T18381] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3534'.
[  818.871265][ T9715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  818.941414][ T9715] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  819.019495][ T9715] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  819.100828][T18085] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  819.142246][T18085] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  819.218645][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  819.237318][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  819.256352][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  819.287603][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  820.269438][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  820.288897][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  820.323250][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  820.526954][T18401] netlink: 'syz.1.3538': attribute type 39 has an invalid length.
[  824.926556][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  825.047724][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  825.102861][T18085] 8021q: adding VLAN 0 to HW filter on device batadv0
[  835.964717][T18508] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  835.974149][T18508] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  835.983777][T18508] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  835.993055][T18508] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  836.338088][T18508] device bond1 left promiscuous mode
[  836.462130][T18508] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  836.471369][T18508] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  836.480684][T18508] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  836.489677][T18508] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  837.026213][T18508] device bond3 left promiscuous mode
[  837.101043][T18537] kthread_run failed with err -4
[  837.471884][T18594] netlink: 'syz.2.3576': attribute type 1 has an invalid length.
[  837.530154][T18594] 8021q: adding VLAN 0 to HW filter on device bond11
[  838.405545][T18606] Error parsing options; rc = [-22]
[  839.141936][ T6201] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  839.151891][ T6201] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  839.241719][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  839.878578][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  839.945549][T18085] device veth0_vlan entered promiscuous mode
[  839.986529][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  840.014580][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  840.266814][T18085] device veth1_vlan entered promiscuous mode
[  840.810764][ T4368] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  840.877910][ T4368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  840.896571][T18085] device veth0_macvtap entered promiscuous mode
[  840.987399][ T4380] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  841.032867][T18640] netlink: 'syz.0.3585': attribute type 2 has an invalid length.
[  841.033732][T18085] device veth1_macvtap entered promiscuous mode
[  841.116866][T18085] batman_adv: batadv0: Interface activated: batadv_slave_0
[  841.125813][ T4368] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  841.141050][ T4368] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  841.303520][ T4368] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  841.311952][ T4380] usb 2-1: config 0 has no interfaces?
[  841.323791][ T4380] usb 2-1: New USB device found, idVendor=10d6, idProduct=2200, bcdDevice= 0.02
[  841.343661][ T4368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  842.082777][ T4380] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  842.090960][ T4380] usb 2-1: SerialNumber: syz
[  842.100020][ T4380] usb 2-1: config 0 descriptor??
[  842.143711][T18085] batman_adv: batadv0: Interface activated: batadv_slave_1
[  842.172243][ T4368] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  842.191630][ T4368] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  842.405380][T18085] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  842.437893][T18085] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  842.484052][T18085] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  842.534257][T18085] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  843.239126][ T1894] usb 2-1: USB disconnect, device number 6
[  843.282864][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  843.303248][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  844.279558][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  844.304303][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  844.342190][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  844.423416][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  847.075373][T18703] netlink: 9 bytes leftover after parsing attributes in process `syz.1.3599'.
[  847.153643][T18703] device gretap0 entered promiscuous mode
[  848.845857][T18724] Cannot find add_set index 0 as target
[  852.104556][T18759] MPTCP: kernel_bind error, err=-99
[  852.905429][T18766] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3615'.
[  852.964155][T18766] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3615'.
[  852.996047][T18766] netlink: 63 bytes leftover after parsing attributes in process `syz.1.3615'.
[  858.953292][T18849] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3634'.
[  864.497640][T18894] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  865.011302][T18904] netlink: 'syz.0.3648': attribute type 3 has an invalid length.
[  865.019476][T18904] netlink: 'syz.0.3648': attribute type 3 has an invalid length.
[  865.493224][T18917] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  865.519850][T18917] CIFS mount error: No usable UNC path provided in device string!
[  865.519850][T18917] 
[  865.530806][T18917] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  867.098551][ T4286] Bluetooth: hci1: command 0x0406 tx timeout
[  869.223942][T18963] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3660'.
[  869.259038][T18954] lo speed is unknown, defaulting to 1000
[  870.028839][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  870.035315][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  872.972600][T19016] bond5: (slave bridge0): Enslaving as an active interface with an up link
[  873.042382][T19015] bond5: (slave bridge3): Enslaving as an active interface with a down link
[  873.496305][T19019] loop5: detected capacity change from 0 to 4096
[  874.377603][T18085] ntfs3: loop5: ntfs_evict_inode r=5 failed, -22.
[  874.428533][T18085] ntfs3: loop5: Mark volume as dirty due to NTFS errors
[  875.873704][T19057] loop5: detected capacity change from 0 to 1024
[  877.136823][T19057] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  877.512222][T19086] netlink: 'syz.2.3692': attribute type 1 has an invalid length.
[  878.364771][T19088] bond12: (slave ip6gretap2): Enslaving as a backup interface with an up link
[  881.875254][   T26] kauditd_printk_skb: 44 callbacks suppressed
[  881.875271][   T26] audit: type=1326 audit(2000000237.020:814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19115 comm="syz.3.3699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  881.958512][T19128] overlayfs: failed to clone upperpath
[  883.071862][   T26] audit: type=1326 audit(2000000237.060:815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19115 comm="syz.3.3699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  884.603794][   T26] audit: type=1326 audit(2000000237.060:816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19115 comm="syz.3.3699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  885.449120][   T26] audit: type=1326 audit(2000000237.060:817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19115 comm="syz.3.3699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  885.618610][   T26] audit: type=1326 audit(2000000237.100:818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19115 comm="syz.3.3699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  886.219974][   T26] audit: type=1326 audit(2000000237.100:819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19115 comm="syz.3.3699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  886.324892][   T26] audit: type=1326 audit(2000000237.100:820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19115 comm="syz.3.3699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  886.668634][   T26] audit: type=1326 audit(2000000237.100:821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19115 comm="syz.3.3699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  887.796730][   T26] audit: type=1326 audit(2000000237.100:822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19115 comm="syz.3.3699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  888.905165][   T26] audit: type=1326 audit(2000000237.100:823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19115 comm="syz.3.3699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  889.152142][T19198] loop5: detected capacity change from 0 to 1024
[  889.191854][   T26] audit: type=1326 audit(2000000237.100:824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19115 comm="syz.3.3699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  889.262617][T19198] EXT4-fs: Ignoring removed orlov option
[  889.625510][   T26] audit: type=1326 audit(2000000237.100:825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19115 comm="syz.3.3699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  890.013298][T19198] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  890.138304][ T4286] Bluetooth: hci1: command 0x2021 tx timeout
[  890.162473][   T26] audit: type=1326 audit(2000000237.100:826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19115 comm="syz.3.3699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  890.339903][   T26] audit: type=1326 audit(2000000237.100:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19115 comm="syz.3.3699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  890.488001][   T26] audit: type=1326 audit(2000000237.100:828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19115 comm="syz.3.3699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  890.722102][   T26] audit: type=1326 audit(2000000237.100:829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19115 comm="syz.3.3699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  890.804337][T19225] Invalid ELF header type: 3 != 1
[  891.269468][T19225] ptrace attach of "./syz-executor exec"[19226] was attempted by "./syz-executor exec"[19225]
[  891.928329][   T26] audit: type=1326 audit(2000000237.100:830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19115 comm="syz.3.3699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f2a8f39aeb9 code=0x7ffc0000
[  892.078278][   T26] audit: type=1326 audit(2000000245.220:831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19199 comm="syz.3.3719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a8f39aeb9 code=0x7fc00000
[  892.135647][T19231] loop1: detected capacity change from 0 to 1024
[  892.537230][T19237] xt_CT: You must specify a L4 protocol and not use inversions on it
[  894.334728][T18085] EXT4-fs (loop5): unmounting filesystem.
[  894.408034][T19229] lo speed is unknown, defaulting to 1000
[  899.416949][T19278] lo speed is unknown, defaulting to 1000
[  903.077914][T19310] netlink: 92 bytes leftover after parsing attributes in process `syz.2.3729'.
[  905.920121][T19335] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3753'.
[  908.209139][T19365] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3759'.
[  908.232023][   T26] kauditd_printk_skb: 60 callbacks suppressed
[  908.232037][   T26] audit: type=1804 audit(2000000263.380:892): pid=19366 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3760" name="bus" dev="ramfs" ino=89482 res=1 errno=0
[  908.301503][T19368] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3759'.
[  908.391838][   T26] audit: type=1804 audit(2000000263.410:893): pid=19366 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.3760" name="bus" dev="ramfs" ino=89482 res=1 errno=0
[  909.266043][T19381] device syzkaller0 entered promiscuous mode
[  913.018642][ T4286] Bluetooth: hci4: command 0x0406 tx timeout
[  913.161487][T19431] DRBG: could not allocate CTR cipher TFM handle: ctr(aes)
[  914.246909][T19456] loop5: detected capacity change from 0 to 64
[  914.267208][   T26] audit: type=1804 audit(2000000269.410:894): pid=19450 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.3774" name="/newroot/236/file1" dev="fuse" ino=1 res=1 errno=0
[  917.160532][T19468] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3778'.
[  918.102277][T19477] loop1: detected capacity change from 0 to 2048
[  919.579755][T19494] xt_cgroup: invalid path, errno=-2
[  924.844087][T19539] 9pnet: p9_errstr2errno: server reported unknown error 0x0000000000000007
[  926.176424][T19560] sctp: [Deprecated]: syz.0.3800 (pid 19560) Use of struct sctp_assoc_value in delayed_ack socket option.
[  926.176424][T19560] Use struct sctp_sack_info instead
[  929.291667][T19570] virt_wifi0 speed is unknown, defaulting to 1000
[  929.298160][T19570] virt_wifi0 speed is unknown, defaulting to 1000
[  929.307596][T19570] virt_wifi0 speed is unknown, defaulting to 1000
[  929.321738][T19570] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  929.349900][T19570] virt_wifi0 speed is unknown, defaulting to 1000
[  929.357127][T19570] virt_wifi0 speed is unknown, defaulting to 1000
[  929.364530][T19570] virt_wifi0 speed is unknown, defaulting to 1000
[  929.372286][T19570] virt_wifi0 speed is unknown, defaulting to 1000
[  929.382124][T19570] virt_wifi0 speed is unknown, defaulting to 1000
[  929.457636][T19577] loop5: detected capacity change from 0 to 512
[  930.508538][T19577] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  930.618492][T19577] EXT4-fs (loop5): invalid journal inode
[  930.638997][T19591] netlink: 'syz.0.3808': attribute type 1 has an invalid length.
[  930.729714][T19577] EXT4-fs (loop5): can't get journal size
[  930.830468][T19591] 8021q: adding VLAN 0 to HW filter on device bond6
[  931.400784][T19577] EXT4-fs (loop5): 1 truncate cleaned up
[  931.406530][T19577] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  931.423204][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  931.430238][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  931.453608][T19592] bond6: (slave ip6gretap3): making interface the new active one
[  931.479312][T19592] bond6: (slave ip6gretap3): Enslaving as an active interface with an up link
[  931.582395][T19593] device veth3 entered promiscuous mode
[  931.641059][T19593] bond6: (slave veth3): Enslaving as an active interface with a down link
[  931.847164][ T9722] IPv6: ADDRCONF(NETDEV_CHANGE): bond6: link becomes ready
[  932.108658][T19600] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3809'.
[  932.459889][T19604] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3809'.
[  932.471383][T18085] EXT4-fs (loop5): unmounting filesystem.
[  933.739677][T19622] 9pnet: p9_errstr2errno: server reported unknown error 0x0000000000000009
[  935.946406][T19653] bad cache= option: no%e
[  935.946406][T19653] 
[  935.953602][T19653] CIFS: VFS: bad cache= option: no%e
[  943.901281][   T26] audit: type=1326 audit(2000000299.050:895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19745 comm="syz.5.3848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfb39aeb9 code=0x7ffc0000
[  944.021198][   T26] audit: type=1326 audit(2000000299.050:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19745 comm="syz.5.3848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfb39aeb9 code=0x7ffc0000
[  944.121795][   T26] audit: type=1326 audit(2000000299.070:897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19745 comm="syz.5.3848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfb39aeb9 code=0x7ffc0000
[  944.225688][   T26] audit: type=1326 audit(2000000299.070:898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19745 comm="syz.5.3848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f5dfb39aeb9 code=0x7ffc0000
[  944.318289][   T26] audit: type=1326 audit(2000000299.070:899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19745 comm="syz.5.3848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfb39aeb9 code=0x7ffc0000
[  944.401971][   T26] audit: type=1326 audit(2000000299.070:900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19745 comm="syz.5.3848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfb39aeb9 code=0x7ffc0000
[  945.032437][   T26] audit: type=1326 audit(2000000299.070:901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19745 comm="syz.5.3848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfb39aeb9 code=0x7ffc0000
[  945.688352][   T26] audit: type=1326 audit(2000000299.070:902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19745 comm="syz.5.3848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfb39aeb9 code=0x7ffc0000
[  945.826395][   T26] audit: type=1326 audit(2000000299.070:903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19745 comm="syz.5.3848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=201 compat=0 ip=0x7f5dfb39aeb9 code=0x7ffc0000
[  945.861926][   T26] audit: type=1326 audit(2000000299.070:904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19745 comm="syz.5.3848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfb39aeb9 code=0x7ffc0000
[  946.212203][T19778] loop5: detected capacity change from 0 to 512
[  949.058639][T19806] Error parsing options; rc = [-22]
[  953.981585][ T4286] Bluetooth: hci2: command 0x2020 tx timeout
[  958.446504][T19900] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3882'.
[  958.552043][T19903] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3882'.
[  958.635952][T19900] netlink: 63 bytes leftover after parsing attributes in process `syz.3.3882'.
[  960.038260][T19931] futex_wake_op: syz.5.3892 tries to shift op by 32; fix this program
[  961.708719][ T4285] Bluetooth: hci4: command 0x2020 tx timeout
[  964.995996][T19967] ceph: No mds server is up or the cluster is laggy
[  968.898513][T19996] device bridge1 entered promiscuous mode
[  970.099163][T20009] device syzkaller0 entered promiscuous mode
[  976.998674][T20070] netlink: 'syz.5.3925': attribute type 1 has an invalid length.
[  977.125711][T20070] 8021q: adding VLAN 0 to HW filter on device bond1
[  977.167851][T20073] bond1: (slave ip6gretap1): making interface the new active one
[  978.522004][T20073] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  978.548382][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready
[  978.599370][T20076] device veth3 entered promiscuous mode
[  978.624179][T20076] bond1: (slave veth3): Enslaving as an active interface with a down link
[  978.702452][T20070] bond1: (slave erspan0): Enslaving as an active interface with an up link
[  981.059156][T20102] device bond_slave_0 entered promiscuous mode
[  981.066339][T20102] device bond_slave_1 entered promiscuous mode
[  981.078649][T20102] device vlan2 entered promiscuous mode
[  981.084567][T20102] device bond0 entered promiscuous mode
[  983.195204][   T26] kauditd_printk_skb: 69 callbacks suppressed
[  983.195221][   T26] audit: type=1326 audit(2000000338.340:974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20112 comm="syz.0.3939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d3f79aeb9 code=0x7ffc0000
[  983.323373][   T26] audit: type=1326 audit(2000000338.340:975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20112 comm="syz.0.3939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d3f79aeb9 code=0x7ffc0000
[  983.881678][   T26] audit: type=1326 audit(2000000338.360:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20112 comm="syz.0.3939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f9d3f79aeb9 code=0x7ffc0000
[  984.468475][   T26] audit: type=1326 audit(2000000338.360:977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20112 comm="syz.0.3939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d3f79aeb9 code=0x7ffc0000
[  984.705564][T20137] loop1: detected capacity change from 0 to 40427
[  984.725380][   T26] audit: type=1326 audit(2000000338.360:978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20112 comm="syz.0.3939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d3f79aeb9 code=0x7ffc0000
[  984.753146][   T26] audit: type=1326 audit(2000000338.360:979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20112 comm="syz.0.3939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f9d3f79aeb9 code=0x7ffc0000
[  984.778140][T20137] F2FS-fs (loop1): invalid crc value
[  984.787713][   T26] audit: type=1326 audit(2000000338.360:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20112 comm="syz.0.3939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d3f79aeb9 code=0x7ffc0000
[  984.810983][   T26] audit: type=1326 audit(2000000338.360:981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20112 comm="syz.0.3939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d3f79aeb9 code=0x7ffc0000
[  984.835409][T20137] F2FS-fs (loop1): Found nat_bits in checkpoint
[  984.862528][   T26] audit: type=1326 audit(2000000338.360:982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20112 comm="syz.0.3939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f9d3f79aeb9 code=0x7ffc0000
[  984.890193][T20137] F2FS-fs (loop1): Start checkpoint disabled!
[  984.905373][   T26] audit: type=1326 audit(2000000338.360:983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20112 comm="syz.0.3939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d3f79aeb9 code=0x7ffc0000
[  984.928653][T20137] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  988.951863][   T46] kworker/u4:3: attempt to access beyond end of device
[  988.951863][   T46] loop1: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  991.288565][T20176] futex_wake_op: syz.0.3953 tries to shift op by 36; fix this program
[  992.051485][T20186] loop5: detected capacity change from 0 to 128
[  992.093726][T20186] FAT-fs (loop5): Unrecognized mount option "18446744073709551615˙˙˙" or missing value
[  993.107294][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  993.135070][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  997.806248][T20238] batman_adv: batadv0: Removing interface: dummy0
[  997.820286][T20238] device veth0_to_bond left promiscuous mode
[  997.826540][T20238] bridge0: port 1(veth0_to_bond) entered disabled state
[  997.835991][T20238] bond0: (slave wlan1): Releasing backup interface
[  997.844656][T20238] bond2: (slave veth3): Releasing active interface
[  997.852954][T20238] bond3: (slave veth5): Releasing active interface
[  997.860970][T20238] batman_adv: batadv0: Removing interface: gretap1
[  997.869664][T20238] bond7: (slave ip6gretap1): Releasing active interface
[  997.876691][T20238] device ip6gretap1 left promiscuous mode
[  997.885710][T20238] bond8: (slave macvlan2): Releasing backup interface
[  997.894121][T20238] bond9: (slave bond10): Releasing backup interface
[  997.900872][T20238] bond9: (slave bond10): the permanent HWaddr of slave - fa:bb:31:86:94:4b - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  997.917920][T20238] bond9: (slave gretap2): making interface the new active one
[  997.933327][T20238] bond9: (slave gretap2): Releasing backup interface
[  997.944096][T20238] bond12: (slave ip6gretap2): Releasing backup interface
[  998.454475][T20245] loop5: detected capacity change from 0 to 1024
[  998.490899][T20245] ext4: Unknown parameter 'nouser_xattr'
[  999.937860][T20264] netlink: 34 bytes leftover after parsing attributes in process `syz.1.3973'.
[ 1007.100107][T20311] fuse: Bad value for 'fd'
[ 1008.667196][T20332] netlink: 'syz.0.3986': attribute type 5 has an invalid length.
[ 1008.763639][T20325] loop1: detected capacity change from 0 to 256
[ 1008.907711][T20325] exfat: Unknown parameter '@'
[ 1008.998065][T20332] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.3986'.
[ 1011.794365][T20363] ip6t_rpfilter: only valid in 'raw' or 'mangle' table, not ''
[ 1015.256727][ T4285] Bluetooth: hci2: unexpected subevent 0x0e length: 30 > 15
[ 1024.460750][T20483] xt_CONNSECMARK: invalid mode: 0
[ 1026.158478][T20493] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4028'.
[ 1026.351067][T20500] netlink: 168 bytes leftover after parsing attributes in process `syz.3.4031'.
[ 1026.682203][T20506] netlink: 32 bytes leftover after parsing attributes in process `syz.3.4033'.
[ 1026.787695][T20507] netlink: 32 bytes leftover after parsing attributes in process `syz.3.4033'.
[ 1027.900713][T20521] lo speed is unknown, defaulting to 1000
[ 1027.907411][T20521] virt_wifi0 speed is unknown, defaulting to 1000
[ 1031.039368][T20550] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4043'.
[ 1031.565494][T20573] netlink: 32 bytes leftover after parsing attributes in process `syz.1.4048'.
[ 1031.673113][T20573] netlink: 32 bytes leftover after parsing attributes in process `syz.1.4048'.
[ 1031.855618][T20578] netlink: 20 bytes leftover after parsing attributes in process `syz.5.4049'.
[ 1033.072646][   T26] kauditd_printk_skb: 4 callbacks suppressed
[ 1033.072664][   T26] audit: type=1804 audit(2000000388.220:988): pid=20589 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.4051" name="bus" dev="ramfs" ino=91075 res=1 errno=0
[ 1033.244754][   T26] audit: type=1804 audit(2000000388.250:989): pid=20589 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.4051" name="bus" dev="ramfs" ino=91075 res=1 errno=0
[ 1034.695311][T20612] lo speed is unknown, defaulting to 1000
[ 1034.890093][T20612] virt_wifi0 speed is unknown, defaulting to 1000
[ 1036.580629][T20641] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[ 1039.290610][T20670] lo speed is unknown, defaulting to 1000
[ 1039.297553][T20670] virt_wifi0 speed is unknown, defaulting to 1000
[ 1039.521800][T20687] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4074'.
[ 1039.575329][T20687] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4074'.
[ 1039.747338][T20682] lo speed is unknown, defaulting to 1000
[ 1039.765977][T20682] virt_wifi0 speed is unknown, defaulting to 1000
[ 1043.162883][T20730] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1043.177118][T20730] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1043.278779][T20730] device bridge1 left promiscuous mode
[ 1043.293152][T20730] device veth3 left promiscuous mode
[ 1043.726196][T20739] fuse: Bad value for 'fd'
[ 1044.603700][T20747] loop1: detected capacity change from 0 to 512
[ 1044.686531][T20747] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1044.831739][T20747] EXT4-fs (loop1): 1 truncate cleaned up
[ 1044.837568][T20747] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1044.961813][T20747] syz.1.4090 (pid 20747) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[ 1045.700085][T20747] fscrypt (loop1, inode 18): Error -12 getting encryption context
[ 1045.740625][T20747] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5933: Out of memory
[ 1045.761365][T20747] EXT4-fs error (device loop1): ext4_dirty_inode:6137: inode #18: comm syz.1.4090: mark_inode_dirty error
[ 1046.053871][T13983] EXT4-fs (loop1): unmounting filesystem.
[ 1050.765510][T20822] sch_tbf: burst 480 is lower than device lo mtu (65550) !
[ 1050.865534][T20826] virtio-fs: tag </dev/md0> not found
[ 1051.766699][T20835] lo speed is unknown, defaulting to 1000
[ 1051.805172][T20835] virt_wifi0 speed is unknown, defaulting to 1000
[ 1052.840731][T20849] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4111'.
[ 1052.876889][T20849] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4111'.
[ 1054.425935][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.448859][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[ 1055.817238][T20891] ptrace attach of "./syz-executor exec"[18085] was attempted by "./syz-executor exec"[20891]
[ 1057.420494][T20889] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4123'.
[ 1057.452521][T20889] IPv6: ADDRCONF(NETDEV_CHANGE): gre3: link becomes ready
[ 1057.488382][ T4285] Bluetooth: hci3: unexpected event for opcode 0x0c58
[ 1057.822129][T20907] virtio-fs: tag </dev/md0> not found
[ 1058.332177][T20895] lo speed is unknown, defaulting to 1000
[ 1058.460352][T20895] virt_wifi0 speed is unknown, defaulting to 1000
[ 1063.151999][T20946] lo speed is unknown, defaulting to 1000
[ 1063.206696][T20946] virt_wifi0 speed is unknown, defaulting to 1000
[ 1066.890287][T21012] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4146'.
[ 1067.059593][T21012] device veth5 entered promiscuous mode
[ 1067.067422][T21012] bridge4: port 1(veth5) entered blocking state
[ 1067.173580][T21012] bridge4: port 1(veth5) entered disabled state
[ 1067.581990][T21012] bridge4: port 1(veth5) entered blocking state
[ 1067.588524][T21012] bridge4: port 1(veth5) entered forwarding state
[ 1067.621582][ T6201] bridge4: port 1(veth5) entered disabled state
[ 1068.817035][ T9727] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1068.839032][ T9727] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1068.861418][ T9727] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1076.524338][T21158] netlink: 'syz.5.4178': attribute type 1 has an invalid length.
[ 1076.600856][T21158] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1076.627435][T21162] device vlan2 entered promiscuous mode
[ 1076.748189][T21162] device bond2 entered promiscuous mode
[ 1076.860036][T21158] bond2: (slave bridge2): making interface the new active one
[ 1076.907299][T21158] device bridge2 entered promiscuous mode
[ 1076.940906][T21158] bond2: (slave bridge2): Enslaving as an active interface with an up link
[ 1077.850499][ T9727] IPv6: ADDRCONF(NETDEV_CHANGE): bond2: link becomes ready
[ 1077.901553][ T9727] IPv6: ADDRCONF(NETDEV_CHANGE): vlan2: link becomes ready
[ 1081.864239][T21214] netlink: 'syz.0.4190': attribute type 4 has an invalid length.
[ 1081.875239][ T4285] Bluetooth: hci3: unexpected event for opcode 0x0000
[ 1084.959569][   T26] audit: type=1800 audit(2000000440.100:990): pid=21247 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.4200" name="regulatory.db" dev="sda1" ino=448 res=0 errno=0
[ 1084.961811][T21247] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[ 1084.989629][T21247] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[ 1084.999302][T21247] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[ 1085.900722][ T4285] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[ 1085.910191][ T4285] Bluetooth: hci3: Injecting HCI hardware error event
[ 1085.927013][ T4286] Bluetooth: hci3: hardware error 0x00
[ 1087.931977][T21272] lo speed is unknown, defaulting to 1000
[ 1087.950139][T21272] virt_wifi0 speed is unknown, defaulting to 1000
[ 1089.629854][ T4286] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1091.458613][T21315] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4219'.
[ 1096.882632][T21379] netlink: 27 bytes leftover after parsing attributes in process `syz.0.4232'.
[ 1100.459372][T21429] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[ 1100.832371][T21434] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4253'.
[ 1101.306923][T21443] device veth13 entered promiscuous mode
[ 1101.326221][T21443] bridge1: port 1(veth13) entered blocking state
[ 1101.338992][T21443] bridge1: port 1(veth13) entered disabled state
[ 1101.347828][T21443] bridge1: port 1(veth13) entered blocking state
[ 1101.354351][T21443] bridge1: port 1(veth13) entered forwarding state
[ 1101.387605][ T9726] bridge1: port 1(veth13) entered disabled state
[ 1105.735963][T21497] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4255'.
[ 1110.516471][T21543] ip6t_REJECT: ECHOREPLY is not supported
[ 1110.739504][T21541] lo speed is unknown, defaulting to 1000
[ 1110.746259][T21541] virt_wifi0 speed is unknown, defaulting to 1000
[ 1115.661962][ T4286] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[ 1115.683722][ T4286] Bluetooth: hci0: Injecting HCI hardware error event
[ 1115.699523][ T4285] Bluetooth: hci0: hardware error 0x00
[ 1115.789244][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[ 1115.796626][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.125785][T21601] lo speed is unknown, defaulting to 1000
[ 1116.259384][T21601] virt_wifi0 speed is unknown, defaulting to 1000
[ 1117.818435][ T4285] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1127.369312][T21714] syz.1.4304 (21714) used greatest stack depth: 17200 bytes left
Connection to us-central1-ssh-serialport.googleapis.com closed by remote host.