last executing test programs:

12m16.218515722s ago: executing program 2 (id=141):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x72f7b000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffa3}, 0x48)

12m13.488433976s ago: executing program 2 (id=148):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='trans=', @ANYRESHEX, @ANYBLOB=',msize=0x000000007fff'])
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe2(&(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x4800)
unshare(0x6020400)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{}, &(0x7f0000000200), 0x0}, 0x20)
setsockopt$inet_tcp_buf(0xffffffffffffffff, 0x6, 0xd, &(0x7f00000002c0)="c2bd5fd7d608834f33dea7a6403decbcfad84a19eea0e5c6bdeeebb4bc3c4ca15d130cd17e79b6b71c6f672461419308dfedbb4abc715f1738e1887b64071a2c2fa37c4706284a736f4e1c61ea59a3efb8986d4d4154f8ff9d8425cd36276faefdae9c9c913c2d4964872c0fa69e80f4664b5928b3578b973e5cc4c147441b68588e5eb3bca2a3afd27098", 0x8b)
write$FUSE_INIT(r1, &(0x7f0000000400)={0x6f, 0x0, 0x0, {0x7, 0x28, 0x80000001, 0x0, 0x0, 0x0, 0x2, 0x1}}, 0xfffffede)
vmsplice(r1, &(0x7f0000000140)=[{&(0x7f0000000100)="eb", 0x20000101}], 0x1, 0x0)

12m11.918457944s ago: executing program 2 (id=150):
r0 = socket$rxrpc(0x21, 0x2, 0xa)
r1 = socket$rxrpc(0x21, 0x2, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000700)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x8000, 0x0, 0x0, 0x0, 0x67, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x48}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x7, 0x0, 0x0, 0x41100, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a5050000000077d8f3b423cdac8d80000000000000002be16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f7535f7866907dc0200000000000000ae669e17fd6587d452d6453559c3421eed73d56615fe6c54c3b3ffe1b4ce25d7c983c044c03bf3a48dfe47ec9dd6c091c30b93bfae76d9ebacd3ed3e26e7a23129d6606fd28a69989d552af6bda9df2c3af36effff9af2551ce896165127cb3f011a7d06602e2fc40848228567ffb400000000003ed38ae89d24e1cebfba2f87925bfacba83109751fe6c05405d027edd68149ee99eef6a6992308a4fc0b7c70bc677d6dd4aed4af7500d7900a820b6347184e9a217b5614cd50cbe43a1ed2526814bc0000e9e086ce48e90defb6670c3df2624f56da648d28ad0a97aec7291c25447c106a99893e10db21901eb397b2f5fd71400fa7a050fbbef9e326ea27e513e96068fd1e8a43e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e49ee52b59d13182e1f24ed200ada10eb1affb87ba55b2d72078e9f40b4ae7d01000000d11cd22c35d32940000088dde499000000fdffffff00000000000f000000ef0000000000000000000000000c52f4ebd2c893bb97a068bd10734a83584898eccb26f7b789cfc4cd995fa3e11a5c74c85404e2df3ad37b729ac83b0dcb4f48f3c3356b9997fc455a17690b6f7f9ccbe4b1701941b18aba6b16455a66c3b84b138efc20a546d3d5227e23b03f2a834391ade2ff3e93ee296c4082ee73e7c353312c9d75711ce1623e9c54bdff59d2a69dcb7d84c235b23a4480c2461b405cfd1a38992f295ad3adc94cd07c850d1ce6d0b2fea02c24e9280333152fb794e4ddea02017a6c139b50101caecaf2abc0847a1ff2f7fc3c2b99a96fc4275ad107274e2934a87a4ddcdb112754ca5bdec0ead14b6c0f19a43a2f05c7f0be31491eb8c9ff68236c8600040000000000000000000066e034c81c3cab64e4fc8dc55ce0ada18dcbf31c6e82893add3bee3e10fc873d1d922b0877cbcd95b839d3059d5140a1f742f6e75741e39e5cb6a193e06a1043375b0f61b5d4e17c81baa31b924d84f224baf1221c15fa12313ffbfa7c2730309f66705b71e6205e7cbf3643561eabb9a63fcd604d5cc27e1317ad94cf438d71873e540be16b6ca205081173bd03c4754fc4674812daab482fd390a1c903b5d28a1eb247b5837d7603b92495d5c569f6433c3fca5206cb0000003fdbbd3892c52c2e7612e05de32322e980a3d69931e2c9312dd517c96f2ee90362476ed8"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
sendmsg$inet(r1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c00}, 0x0)
set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
connect$rxrpc(r0, &(0x7f0000000000)=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @mcast1}}, 0x24)
sendmsg$inet(r0, &(0x7f0000000180)={0x0, 0xfffffffffffffd6b, 0x0, 0x0, &(0x7f00000000c0)=[@ip_tos_int={{0x18, 0x110}}], 0x18, 0x4c00}, 0x0)

12m10.230496762s ago: executing program 2 (id=153):
socket$nl_audit(0x10, 0x3, 0x9)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x85)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00')
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file1\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x6, 0x35d, &(0x7f0000000f00)="$eJzs3c1rO0UYwPEnaZImKW1yEEVBOtiLXpY2ehaDtCAELG0jtoKwbTcasiYlG6oRse3Jq3j3JHgovVnwUND+A71404sI3noRPNiDurJvyeatLzFpfr/2+4GSycw8u7OZSXk27WYv3/3yo0rJ0kp6Q6JJJRERkSuRrEQlEPEfo245IWGH8srMnz+/uL5ZTHoVaiW/8WpOKTU3/8PHn6X8bmfTcpF9//KP3O8Xz148f/nvxodlS5UtVa01lK62a7829G3TULtlq6IptWoaumWoctUy6l77d/52zNreXlPp1d3Z9F7dsCylV5uqYjRVo6Ya9abSP9DLVaVpmppNC25SPF5b0/NDBu+MeDAYk3o9r0+JSKqnpXg8kQEBAICJ6s7/o05KP0z+vyVzhcLymnI6t/P/k5fOGzPvnM75+f9Zol/+/9ov3rY68n/ndKKd/9e884PSzfn/13KH/L83I3pchs7/s2MYDIYzn+ipinQ8c/L/tP/+dR29d7LoFsj/AQAAAAAAAAAAAAAAAAAAAAB4GlzZdsa27UzwGPy0LyHwn+NBGjT/0yKSdGbfZv4fsvXNLUm6F+45c2x+sV/cL3qPfodzETHF+Mfu5qyN4Moj5cjKj+aBH3+wX5xyW/IlKTvxsiQZybrrKRRv2ytvFZaXlMePb12mlA7H5yQjz4Tjv3dXpxOf64z395+QlxdC8Zpk5KcdqYkpu25ke/+fLyn15tuFrviU209Efrv3SQEAAAAAYMQ01dL3/F3TBrV73zKSL7kfExmyKBn5u//5/WLf8/NY5oXYpI8eAAAAAIDHwWp+WtElatTdgmn2K6RkYNMICrGOmriI9O2c6KqJX7flqdAR3nY8CfHuYPJ/j+ub4FW9S1TwjxTOwFtN/h1VZLjxBMfv1kRiw09T5FDcBXAYborKLcJj3YOfdypU384LA7dz5B9Iqyb42Cgx4HWW1d7tRK9ZCfGeGjsy3AJ47qtv/xrdG+T1U38FfHJz5yPTsA/kNpPSVXB20dsUH/svHgAAAAD3rp30BzVvhJvDNxIJ3yyHv9wDAAAAAAAAAAAAAAAAAAAAAAAAAAAAADBCY/lKv67CpI8RAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeFL8FwAA//8GuPOT")
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x2bc3c1f, 0xffffffffffffffff, 0x7, 0x0, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000500)='\x00', 0x89901)
move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
syz_open_procfs(0x0, 0x0)
sendfile(r0, r1, 0x0, 0x3)
read$FUSE(r1, &(0x7f00000003c0)={0x2020}, 0x2020)

12m9.826648035s ago: executing program 2 (id=156):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r4, 0x3ba0, &(0x7f0000000980)={0x48, 0x5, 0x0, 0x0, 0x0})

12m8.54811053s ago: executing program 2 (id=158):
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
ioctl$TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b14, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0xc}, [@ldst={0x3, 0x0, 0x3, 0x1c10a1, 0x0, 0x48}], {0x95, 0x0, 0x9}}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x85}, 0x52)

12m8.194367069s ago: executing program 32 (id=158):
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
ioctl$TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b14, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0xc}, [@ldst={0x3, 0x0, 0x3, 0x1c10a1, 0x0, 0x48}], {0x95, 0x0, 0x9}}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x85}, 0x52)

10m37.6898137s ago: executing program 4 (id=342):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000040)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r3 = add_key$user(&(0x7f0000000100), &(0x7f00000001c0)={'syz', 0x3}, &(0x7f0000000200)="ed", 0x1, 0xffffffffffffffff)
keyctl$set_timeout(0xf, r3, 0x101000)
set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9)

10m36.624733876s ago: executing program 4 (id=344):
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000140)={0x0, 0x0, 0x4000000081, 0xfffffffffffffff9})
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup/syz0\x00', 0x1ff)
r0 = add_key$user(&(0x7f00000001c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000080)="bc5dfc", 0x3, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

10m34.329629431s ago: executing program 4 (id=351):
socket$inet6_tcp(0xa, 0x1, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000240)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7fff0003}]})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180))
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000180), 0xfea7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x11, r0, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c010000", @ANYRES16, @ANYBLOB="2d01620000000900509072fb60cb08000300", @ANYRES16], 0x2c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r5, @ANYBLOB="ff830500000700ffffff", @ANYRES32=r2], 0x4}}, 0x0)
sendfile(r4, r3, 0x0, 0x100000002)

10m32.794118285s ago: executing program 4 (id=355):
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
r1 = creat(&(0x7f0000000140)='./bus\x00', 0x80)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000180)='./bus\x00', 0x0, 0x63d014, 0x0)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r2, 0x0)
syz_mount_image$squashfs(&(0x7f0000000100), &(0x7f0000000780)='./bus\x00', 0x8000, &(0x7f0000004380)=ANY=[@ANYRESOCT=r1, @ANYBLOB="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", @ANYRES64=r1, @ANYRESOCT=r1, @ANYRESHEX=r2, @ANYRESHEX=r0, @ANYRES16=0x0, @ANYRES32=r1, @ANYRESHEX=r0, @ANYRESHEX, @ANYRES8=r0, @ANYBLOB="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"], 0x10, 0x1c4, &(0x7f0000000440)="$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")
rename(&(0x7f0000000000)='./file2\x00', &(0x7f0000000040)='./file1\x00')
syz_genetlink_get_family_id$ethtool(&(0x7f0000000800), r2)
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x2200050, &(0x7f0000000000)=ANY=[], 0x1, 0x1516, &(0x7f0000003140)="$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")
fchdir(0xffffffffffffffff)
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4, 0x1)
creat(0x0, 0x0)
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

10m29.827744714s ago: executing program 4 (id=362):
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB="0500000000", @ANYBLOB="3d000e0080000000ffffffffffff080211000000ffffffffffff0000feffffffffffffff070001000406f0027f"], 0x70}, 0x1, 0x0, 0x0, 0x20004090}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d77f10", 0x8, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

10m29.3881113s ago: executing program 4 (id=363):
syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYRES32=0x41424344, @ANYRES32=0x41424344], 0x0)
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9", 0x5, 0xfffffffffffffffe)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="480000001000050400000000000000", @ANYBLOB="ebffffffffff"], 0x48}, 0x1, 0x0, 0x0, 0x4000011}, 0x0)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

10m28.737605882s ago: executing program 33 (id=363):
syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYRES32=0x41424344, @ANYRES32=0x41424344], 0x0)
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9", 0x5, 0xfffffffffffffffe)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="480000001000050400000000000000", @ANYBLOB="ebffffffffff"], 0x48}, 0x1, 0x0, 0x0, 0x4000011}, 0x0)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

11.91019442s ago: executing program 1 (id=1591):
r0 = socket(0x840000000002, 0x3, 0xff)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000))
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0))
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000040), 0x10, 0x0}, 0x0)
fsopen(&(0x7f0000000200)='udf\x00', 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd6016000000102b00fc01000000"], 0x0)
connect$l2tp6(r0, &(0x7f0000000000)={0xa, 0x0, 0x2c75, @private1={0xfc, 0x1, '\x00', 0x1}, 0xf, 0x4}, 0x20)
sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0xa9df0358c9573a9f)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000004c0)={{{@in6=@private2, @in=@empty, 0x4e22, 0x0, 0x0, 0x0, 0xa, 0x20, 0x20, 0xff}, {0x0, 0xfffffffffffffffe, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x10001}, {0xfffffffffffffffe, 0x2}, 0xffffffff, 0x0, 0x0, 0x0, 0x1}, {{@in=@dev={0xac, 0x14, 0x14, 0x15}, 0x3, 0x2b}, 0x0, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x0, 0x4, 0x0, 0x0, 0xb, 0x0, 0xff}}, 0xe4)
r2 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r2, &(0x7f00000021c0)=[{{0x0, 0x0, 0x0}, 0x4}], 0x1, 0x10000, 0x0)
sendmsg$key(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x88c0)
sched_setaffinity(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(0xffffffffffffffff, 0x4058534c, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)

10.29717298s ago: executing program 3 (id=1594):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a0000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00'], 0x48)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x10, 0x8, &(0x7f0000001340)=@framed={{0xbe, 0xa, 0xa, 0x0, 0x0, 0x79, 0x10, 0x8}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r3}}]}, &(0x7f0000000480)='syzkaller\x00'}, 0x90)

10.29296116s ago: executing program 0 (id=1602):
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQNSD(r0, 0x894b, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x50)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x31, 0x0, 0x0)
r1 = syz_io_uring_setup(0x497, &(0x7f0000000140)={0x0, 0x1f07, 0x0, 0x1, 0x18e}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
socket$inet_tcp(0x2, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100), 0x82000, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
io_uring_enter(r1, 0x26c8, 0x0, 0x1, 0x0, 0x0)

10.29210607s ago: executing program 1 (id=1595):
openat$rtc(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r0 = gettid()
mknod(&(0x7f0000000180)='./file0\x00', 0x1ffa, 0x0)
acct(&(0x7f0000000140)='./file0\x00')
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f0000000580)='./bus\x00', 0x1000404, &(0x7f00000009c0), 0x1, 0x5ee, &(0x7f0000002200)="$eJzs3c9vVNUeAPDvmf6gpbzXQl7ee7zFo4kxkCgtLWCIcQFbQxr8ETdurLQgUqBpa7RoQklwY2LcGGPiyoX4XyiRLStduXDjypAQNSxNHHOnc0unnemPoe2t3M8nGXrvOXNzvpfpt/fMmXPuBFBag9k/lYiDETGdIvrTwlJdZ9QrBxef9/D3D85njxTV6iu/pkj1svz5qf6zr35wT0R8/12KAx2r252dv355fGpqcqa+Pzx3ZXp4dv760UtXxi9OXpy8Ovrc6KmTJ06eGjnW1nndaFJ29tbb7/Z/NPb6V1/8kUa+/mksxel4MXvizYhYdh5bZTAGa/8naXVV36mtbqwgHfXfk+UvceosMCA2JX/9uiLiP9EfHfHoxeuPD18qNDhgW1VTRBUoqdRu/ndvcSDADsv7Afl7+4cr3gdXCumVADvhwZnFAYDV+d+5ODYYPbWxgb0PUywf1kkR0d7IXKN9EXHv7titC3fHbsWK8URgey3cjIj/Nsv/VMv/geiJgVr+VxryP+sXnKv/zMpfbrP9lUPF8h92zmL+96yZ/9Ei/99Ylv9vttn+4KPNt3ob8r+33VMCAAAAAACA0rpzJiKebfb5f2Vp/k80mf/TFxGnt6D9wRX7qz//r9zfgmaAJh6ciXih6fzfSj77d6CjvvWP2nyArnTh0tTksYj4Z0Qcia492f7IGm0c/fjA563qBuvz//JH1v69+lzAehz3O/c0HjMxPjf+uOcNRDy4GfG/pvN/09L1PzW5/md/D6Y32MaBp2+fa1W3fv4D26X6ZcThptf/R3etSGvfn2O41h8YznsFq/3//U++adV+u/nvFhPw+LLr/961838gLb9fz+zm2zg+31ltVddu/787vVq75Ux3vey98bm5mZGI7nS2IyttKB/dfMzw5Kjcy7fyfMjzJcv/I0+tPf7XrP/fGxELK1pJvzWuKc79+8++n1tFpv8Pxcnyf2JT1//Nb4zeHvi2Vfsbu/6fqF3rj9RLjP/Bos/yNO1uLG+Sjp3NqnY6XgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4ElQiYl+kytDSdqUyNBTRFxH/ir2VqWuzc89cuPbO1Ymsrvb9/5X8m377F/dT/v3/A8v2R1fsH4+I/RHxaUdvbX/o/LWpiaJPHgAAAAAAAAAAAAAAAAAAAHaJvhbr/zO/dBQdHbDtOosOAChMk/z/oYg4gJ3n+g/lJf+hvOQ/lJf8h/KS/1Be8h/KS/5Decl/AAAAAAB4ouw/dOfHFBELz/fWHpnuel1XoZEB261SdABAYdziB8rL1B8oL+/xgbROfU/Lg1ocWd1Iq9PnN/IsAAAAAAAAAAAAAGDR4YPW/0NZWf8P5WX9P5RXvv7/UMFxADvPe3wg1rkHQNP1/+seBQAAAAAAAAAAAABspdn565fHp6YmZ2y8tjvC2MmNarV6I/st2C3x/M038qnwuyWemRTLS/K1fhs7vLi/SQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQKO/AgAA//9cvyQ8")
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f00000001c0)={&(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], 0x4, 0x80800})
creat(&(0x7f0000000040)='./file0\x00', 0x51)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000003c0)={0x4, 0x80100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
gettid()
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

9.135130963s ago: executing program 5 (id=1597):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f00000000c0)={0xfffc}, 0x8)
socket$igmp(0x2, 0x3, 0x2)
socket$inet_smc(0x2b, 0x1, 0x0)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
bind$xdp(0xffffffffffffffff, &(0x7f0000000340)={0x2c, 0x1}, 0x10)
socket(0x11, 0x3, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r1, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x4c001)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a44, 0x1700)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
socket(0x2a, 0x800, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000140)=@raw={'raw\x00', 0x8, 0x3, 0x498, 0x320, 0xa, 0x148, 0x368, 0x60, 0x400, 0x2a8, 0x2a8, 0x400, 0x2a8, 0x3, 0x0, {[{{@ip={@multicast2, @multicast2, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x2f8, 0x368, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'veth1_to_team\x00', {0x0, 0x0, 0x2, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x8601, 0x6, './file0\x00'}}]}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f2f7b9f28413d9d8ad470ad2b60c45cb4ea6e7bf902bdc2ff8a9304d9f655c746adc0bdc773506378bc2d27efd6abb05175089830cc46186074d7de46d5af300"}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@MARK={0x28}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x4f8)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, 0x0}, 0x0)

9.134368784s ago: executing program 3 (id=1598):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_TSINFO_GET(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x20048881}, 0x2000c800)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000100)={0x2, 0x40000105, 0x0, 0x0})
openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

9.001876994s ago: executing program 0 (id=1599):
socket$netlink(0x10, 0x3, 0x8000000004)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket$inet_udp(0x2, 0x2, 0x0)
socket$igmp(0x2, 0x3, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$packet(0x11, 0x3, 0x300)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
socket$netlink(0x10, 0x3, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6(0xa, 0x2, 0x0)
setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000000080)=0xfff, 0x4)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
getpeername$packet(r1, &(0x7f0000000000)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000100)=0x14)
sendmmsg(r0, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r2}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x36}], 0x1}}], 0x1, 0x0)

8.900456722s ago: executing program 5 (id=1600):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000010, &(0x7f0000000000)=ANY=[], 0x1, 0x6eb, &(0x7f0000001240)="$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")
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = eventfd2(0x8, 0x1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000000)={0x0, r1})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x89}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000180)=@HCI_EVENT_PKT={0x4, @inquiry_info_with_rssi_and_pscan_mode={{0x22, 0x1}}}, 0x4)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
timer_settime(0x0, 0x0, 0x0, 0x0)
r3 = openat$mixer(0xffffffffffffff9c, &(0x7f0000003fc0), 0x0, 0x0)
ioctl$SOUND_MIXER_WRITE_VOLUME(r3, 0xc0044d08, 0x0)
ioctl$VHOST_RESET_OWNER(r0, 0xaf02, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000100)=ANY=[], 0x32600)

8.765893323s ago: executing program 3 (id=1601):
pwritev(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_EXPRESSIONS={0x30, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @numgen={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_NG_TYPE={0x8}, @NFTA_NG_MODULUS={0x8, 0x2, 0x1, 0x0, 0x48}, @NFTA_NG_DREG={0x8, 0x1, 0x1, 0x0, 0xa}]}}}]}]}], {0x14}}, 0x84}, 0x1, 0x0, 0x0, 0x10}, 0x0)

8.638049613s ago: executing program 0 (id=1603):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './cgroup\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000100), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000280)={0x4c, r3, 0x1, 0x0, 0x0, {0x3d}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd, 0x82}, {0x5, 0x87}}]}, 0x4c}}, 0x8)

7.101135147s ago: executing program 1 (id=1604):
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000000240)={0x84, 0x467b, 0xffff, {0x1d, 0x1}, {0x53, 0x2}, @ramp={0x0, 0xffee, {0xe8, 0x405, 0x3ff, 0x57c2}}})
syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x8c2b01)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$SOUND_MIXER_READ_RECMASK(r0, 0x80044dfd, &(0x7f0000000040))
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = socket$inet6(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
sendmsg$inet(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000180)="92", 0x1}], 0x1}, 0x0)
sendto$inet6(r1, &(0x7f0000000a00)="fbcd16e2ad33ca3d0c7ae0da527057df053c100eab76e02bc11177820b98218039fd43c79f30f4257d321462ff020c6fa6031a1292245b37679816d66635043f63e2e13d26c9a2ed3f62bfcb6349e7db7076e933d9d3237395e16654d839a46c1f98b386002b64df0c04b27f8c413ba02139407be9bed0095a9e9d03fe904d736acf7108fb120430ce27e442ae3aa4d75a2cae7d94096635e6f48037e7bdf9a812a12abe637cc031121f95de53ab2db1a2135dbd8e0d54fc5ae7459efe648b10cb934f7b51929e94f97f3fbe5236c3528f1ed6941fc126712e5a9ae0d9aa8e12c82eb0c0f3eb22dd46f23d3a4793f3c8c33caac54140dea218bd9dffba47ed706f2f8a167cba8c199df534fcb71afbbc6e1a0b0064510ec6b2d8fed8d1db5a5532be1b9dc00ea8f50f309882007c4743d6c08431144e4af8a3e1733c7348a9980b159cf7dc64cc3b1d0aa7c37bd38e027c6e6ad474c05f5a80b40b3da2ecce8af89639a87c745426ac0651a8329453e43a425104ff50821ef54674f5d261cf9804231db04990ecf90d10068d801ba69ec15282035e28496c3a4c72efcc247bfff0f6b646d69e1331165efeea49f5c4c0c9ca7e501fc460f54ffa9c27d52b9e73e10e993d5c433325f0eae01bc745637296a88c2e42ad3591246d22dc38582b8d9ae05f379683bfb8dbf31f39fd4f8a643838ecac52228b8d4c4c35bc4f06b968212de6f317cee7a00d112ef60a3f88f15f4c14a97ff72667cd613bca2ee5037afb032180c97b064efe9c01eb1b47b2052093e7c83954aa736831f46b046b1ef3db84d10565ad52a613763c5a51459b56b5d86ba2711cfc82ac5b4cab7df6a289d0935017083efd6cd5608e5daefaccd4c708a5e51e5ca0163724885d4054148ce27e09f035f476ff510aa873f7ded0769b1f35afd4a4c8539123e66cc3855a0981a38fa8cd011688cefa18d638b400eb76d92a901af912a8127cb3d623ed61e3587d517f7c84a46cfa017a296911cbbfad228a83fb2c4d8ec48eeedeac15b9ce4108b1874046dd04b808b0d116dd2f85ba485ef440fdb8a5ad5b2b07f6f6f79d0663f64f2812549eace22a89677cb75b7c7feb75016ccb428753b02d5b954f5384afc8663b1e8b20e70d208d01f2379298d1984041f0ec35a9997ddb95aa5a7b34d153dab45c32f165a56b3bfef733e130854a1245434f6b64b075f6a23fb50b8640efe85dfe359a77e15703c679b310a3db93b5681705b044d4386039084ffe92e2a665f4c752af46d0a789d98897eb4d66af1e3f7fec19e0c4461cbba077dc8c38161214a1dfe65d39e7623f5188d778eb7803682c5c963cd937bbc2073ef882b082a6056e1fbfae6424e56b76d29b26aa8251cffea29ab36ef64c8a39a9d0e3cad2d314e7255b9ecb1c6ef952b37b20c30b10b08ab218512bf77cf692dc207c718f3492542ecf04ab4574fcbab6c16884b316148907a399490900b406f0996a16bc47b93492bb2c676f7772be07e6fc11dd0a1371afb08e0ae959e52d80d173f8082fc400a9c829c8d27a2a200e92b3207ea5fc3fe97e3d9b62ba41b860550e167961e12de35d7c92a77f362a3115579ae96edf836503fbb3ac85e9caf3ae14c55c5d306f66034d46bf54a7eb0d6f9279abdfba9e3abae03b3babf4f77b736f1f6b14cb9225008f1d1f986157f72db5f7da882f10238c41aae46458e2da586ac8038042669832f6cb37e5b58edb06002795a003a58457e337c1653a7f03b4192f9bb74545fdf3a55ce1ee2b5aaf45f0197aa777dc3ab67f8537dff4545b351eb06cd811c61281126a013030f67e52f9a601a92da4fc414cb78269625e9e0f3eb903309ab9f602a51372731180c69dbcf599b87306c2564a1a451b8c2c8c48eead981e50f07668b93edb003615b33a1ad1ec492c7da6562355d0c87122bd14f6aa6fa6b851de95606824c937f914dcd4fa8b7aceac6f6ab12cbf0215867eb6c42000258d6ba44d101c40ae77205d8c80ac069d4d1da50f9cca2155fe01664141e6545f3bec8fa0604c763aa228d9abf8ba31b1581bfd89b10513c1d816627d6da4df378664ab9b6e99aeabde0bf27e34fd7e6c984716dd062f2b70ee048d6ee8a78d8a685655cb278ac19bedd16a511bc94dda36325fdeb8ec789d8fa2373c7d072b8e4857c398f066e777307c2bd32096b4d4056e5c4f5b4a25c4376fee01027b4d06174d63aba5709dede034fac4b9c00ad32e3d53a9709c5ffdacba51a9688fc8ad9f9961612166893f6d40a8ad0cfabd49a80309c893b1bbd29312352faca9057e9d5a4caa0268cacc8328e32699aac0832fc0f577df6a68d8d028937ef2914144ae60689cd220a432c11d6c7bc7a22a14973c1b3257fa7526dbf8f2d08489dbca9ef6e5cfd86f454b750c941a61bf8b519f256bcd3bc207b7f3037ee8c2721c12de3b797a1c588549ec092cba185713bebbec68a74f1a1f9775d1ba0644905bafdbfe4b6323c683d25cfb741fe894864828a21036066335b5936945da7086de196c5b32eefbd785d9f486d0ec33588f5a9f6ce30442d5cb405a0bd4969c2317f63a9da0521a9330db531375ef29981c51ac9ca547e367d6d76de3e914f4547850192c30f906518b8a585c0041c2e236408ada50e0e659467d94c975c65d78d3cf0fba851b3295e1ecc812652fd6ad5233239a9c986284d22c2b213822df9cda5a3d25c29a8a51dd795996c54f738b49b54b71b7b2b7173b315f4e655b285fc07a050ea5d47132fbab3c8f330ca171d20748454d0824a837b76e33218bc4d16644a27dbbcb355f8c3fb107e052e24eeceabe4ea62aa6db5b9acf6ac0f0da197da029603979c390c997b8d25d3ab34a2ea9cc810ee82e441b81d4c33db6053cf3c235b84271827c9dd8de6c143d95a13737356ae5e3f30f995df056043d91129015bf4a08519df180a94c4c8a09941b8faf3e517aa78245041ee0e0825e97b62284a70267ccd1a403c3a9d83404de422fae82780be9e57eef1a2d8f987e49ee717f974d724047ced176fabf9d965d124dd83d6b0ae0655859195cb71368ab24b46a80874641090072b26125e6f1e3e970089790cf3237e94e8a34ab3f2ede3c39e84fadd3d9194057a87207fc7256e6a8687e0ed639862c058ebe72bedfb6a7f0706295ef4f71ee75badf5259ba358555950497f49a369d385c674486d2e324939b4b26ea784a4b0e1cb73ce58792042d14dd4593907438b6a58faaa3e2c38e15cd9fb250e6577390908e69dd9f75918e92e8a0857e348a3491db5c54d7b0b1b41672afe4013c785985671c101c95a4d14b0228f1576cbc88f57a0653ce99efca6bae89b49d6d0518601a55006af21dff4b27b8386d2f075a962ceeb2a48bbc5c9b09b56607c06a58e3a1fd7bcbd7d84910ec7b51b515120e2b82ce563ab975088776debe24739633ac2dd1a73c01c776610625ce29a9e0d8df954b39da465b398935c88ad584c274a7e635ed0210157cc3c29f8eb9325fbeeb72e7ce59ea29b6b823032a09ce6819cda124a1958d08da130bfe2e52d4441ba0dc187538570fe092bbc7327eec131791f32d93fa5e2cdade0d02d9a190867d6d6b1d980ee7537f3222821a04c36fe4f334c2b7455396965e12edbb748f8f2bfec3b0f5a270dcd63010a36bbbddc0c9e698bcaf37259c9c726419d98bdd971328f0270dea351245faac3ca1b4e7365340c8d8400618c89897ecbc72e2e28887ed24570b06a7e6e034046a29bbeacddf3903412c4746c3f39106ef995a1659c8493aa53b0dde67ee085bf5ccefa696bb5b780cd8ea55492546d9f186416a78b4138daf303ef3244c1d636df2a0ceaca382b7ca4f171d750abc0240b16f5374dda2367eb336f08195131035e0d58704d6b9ab0f7e2b6b3702f4242ee4906128817585b48d4dba41735b9a5140385247f67dc5c30a5822c71877238afa69683b9d4b3d325b72369815298ce0dbf3e2e82eef74678feef58fbcfd41f9bca031c8fea365f3a16dec4306f9f3023c2d6304490a501d6a2a27c671dbc7043ea259161d312a1e8e935bb838e7994e9224d7ebb4ca65d6afa0ef632722403fcc15ed9edbe2eb6cbb04952e9538493ca2ca567219165702f681983579c9d48ae85d451f5ebb955818dcf9fad96640eaf0d5d36fdf30654ac2d1b1afb2f0314c4d39ab2f8c3661ccdb71d91fb5d3d08d8ff34683d8ce698d1a235cf26f74d69bdb22a72843d0706a6fdad479111472694772daac577fa0b24a8a0e3a92828e62ebf6e896305988014938a174bf78d3e353582695d4af472cf18e1530a37981697bea182b268cc8ff9e50b45c514d40ad607e2cdde284812a356c88b35bd8c91b9a0e52a1d3a1d743c17a18ab48e0016b028a084b969fc807882e76c75711f7225411717fa42623c556c23a07582da2fa822ab670a7105ebe18edc0369745e973f023aa54591fe8fde596f36e9649a55a439085d29110a4a2b10f9a2c8ca72504b131598171ddc64ca4675d6e66896c4045c61e0f05f777458f3e79956d3e801a76cd6de698cf587335f8e3f7aa5f2cd2013570ff70540fa2d3f43a72b7a18f426f717ccd70fd267494c2093d2673deff56c6f0876146129db2b59ec80b18030bc35dcca3f59125dcbf28f2fc42ed775b51918ca4f1a86560eb9f81c6bb98695924bdd0dba9615f786be4b3614d06e774094996bcadde561717bbc6be18538df21db4f30a7f1802356026ee1ec76c0eaaf02112295a7fb0556e2db11aa06c0ee5fc64b38ac01b5455544270e923f263385aa75867fc6ae92d1e788a537f7cb89c64eb6653bce543ba304f85d6602326c566d30bd943ce8678ebda26b06cd74361fb75598475f70346109e53a12580a962311536a38cc2fa3177cc2dcf492d8dabe29fdc3c402f1506d9ebf6b17d078d133f4db921b1fda50713245b0a19ea9ef9e8efd34be15bc1caa76822cfab00de320dc5e396e4c8ff1cf52cf88206fbfec75d9ce64f42f79e2b7aacaf772e4c02f3e197cdabd45bdce7ad71d7a5ed743ac495fdc118da537440d1c5bf37998b26f94d6a40a9a912ef7a9bc7d722d623a2c396b071d98d1e49c6f2eb34d8d28bbcd465f8604a8920cb4cbf6e6080a056cff9a0d9b84382e281fa8d10a17193734f613e22f98739084845e469721363a55bde2273d27ff4c46a877dd3d4dba0c029181b91c848d83d0f7926b902e1ae293fc0d3b874df7a1a1147f204866e906d4345ec04c0f0243dfe8c748766aab31da2fe73a394dbc9af8850f3b1d386fcec2810d6980f844c9fee2ef399228ef7677a7d36e9a1124099fa8a9d0793f154bf45e28a6ec1655c86fe72d94194af77d004906466475573aa15a484539b5e0b733b438d7cacec46ba3d2e69f4421db5af6678c14e7d657a2dce12e0916881041a463cfa05fc316de9f648350c3876d829ce956aca38b1a6cf86833da505fe96b523f98a8737d3209fbbfc7b90b340f0d6968032319c55dcaefc8a75b16ba36e18b2218b2c7daaece8426d9a0fd65c0afdcd731f0efda3e99980b42a97cbc01a4a196428b9307f5d4bdc81434492ed2f2eb347cc0e9b4761da726f9f14d7c94dbcd42fe1e6e2ce5f2b6f8074a41f27da9f533faa9f8e810c789352cee570899c1655fda5cb0b9146b3dca6c97e055302b4888cfb3ceccc6990591f7d796f82b21d2ce05042c2e4e0c712e665c3b7ffc997204157e4f2375c5fcc0f102de2ba2f213336a69a09d3176ddb8c70b222e58c991e1ee26ab8ec1b5cc1161a60", 0x1000, 0x20000000, &(0x7f00000002c0)={0xa, 0x4e21, 0x3, @ipv4={'\x00', '\xff\xff', @multicast1}, 0x30000000}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$SNDCTL_DSP_GETOPTR(r0, 0x800c5012, &(0x7f0000000280))
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='contention_end\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x1, 0x56d, 0x2}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000600), &(0x7f0000001f80), 0xfffffffb, r3}, 0x38)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200), &(0x7f00000004c0), 0x1000, r3}, 0x38)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=@acquire={0x128, 0x17, 0x1, 0x0, 0x0, {{@in6=@remote}, @in6=@private0, {@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@local}, {{@in=@remote, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x3}}}, 0x128}}, 0x0)

7.095736077s ago: executing program 5 (id=1605):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file0\x00', 0xccd0, &(0x7f00000005c0)=ANY=[@ANYRES8=0x0, @ANYRESOCT], 0x1, 0x2e3, &(0x7f0000000280)="$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")
io_setup(0x2007, &(0x7f0000000980)=<r0=>0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
get_mempolicy(0x0, 0x0, 0x1000, &(0x7f0000ff9000/0x4000)=nil, 0x3)
setsockopt$XDP_TX_RING(0xffffffffffffffff, 0x11b, 0x3, &(0x7f0000000180), 0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
io_destroy(r0)

5.668052472s ago: executing program 5 (id=1606):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000000c0)='sched_switch\x00', r1}, 0x18)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r1, 0x2000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bind$inet(0xffffffffffffffff, &(0x7f0000003900)={0x2, 0x4e24, @multicast1}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000000)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=ANY=[@ANYBLOB="380000001000390400"/20, @ANYRES32=r6, @ANYBLOB="059900f3ffffff111800128008000100677470000c000280050005"], 0x38}, 0x1, 0x0, 0x0, 0x80}, 0x8000)

4.541616813s ago: executing program 5 (id=1607):
msgsnd(0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB], 0x48)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
rseq(&(0x7f0000000400), 0x20, 0x0, 0x0)
r3 = fanotify_init(0x200, 0x0)
r4 = dup(0xffffffffffffffff)
fanotify_mark(r3, 0x1, 0x48000047, r4, 0x0)
msgctl$MSG_INFO(0x0, 0xc, &(0x7f0000000100)=""/17)

4.509158126s ago: executing program 1 (id=1608):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a0000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00'], 0x48)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x10, 0x8, &(0x7f0000001340)=@framed={{0xbe, 0xa, 0xa, 0x0, 0x0, 0x79, 0x10, 0x8}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r3}}]}, &(0x7f0000000480)='syzkaller\x00'}, 0x90)

4.278686665s ago: executing program 0 (id=1609):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000580)='tracefs\x00', 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
keyctl$read(0xb, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0, 0x0)
getdents64(r4, 0xfffffffffffffffe, 0x29)

2.914873105s ago: executing program 3 (id=1610):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f00000000c0)={0xfffc}, 0x8)
socket$igmp(0x2, 0x3, 0x2)
socket$inet_smc(0x2b, 0x1, 0x0)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
bind$xdp(0xffffffffffffffff, &(0x7f0000000340)={0x2c, 0x1}, 0x10)
socket(0x11, 0x3, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r1, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x4c001)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a44, 0x1700)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
socket(0x2a, 0x800, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000140)=@raw={'raw\x00', 0x8, 0x3, 0x498, 0x320, 0xa, 0x148, 0x368, 0x60, 0x400, 0x2a8, 0x2a8, 0x400, 0x2a8, 0x3, 0x0, {[{{@ip={@multicast2, @multicast2, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x2f8, 0x368, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'veth1_to_team\x00', {0x0, 0x0, 0x2, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x8601, 0x6, './file0\x00'}}]}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f2f7b9f28413d9d8ad470ad2b60c45cb4ea6e7bf902bdc2ff8a9304d9f655c746adc0bdc773506378bc2d27efd6abb05175089830cc46186074d7de46d5af300"}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@MARK={0x28}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x4f8)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, 0x0}, 0x0)

2.912458825s ago: executing program 5 (id=1618):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = openat(0xffffffffffffff9c, 0x0, 0x2040, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000000)=@usbdevfs_disconnect={0x22})
sched_setscheduler(r1, 0x2, &(0x7f0000000040)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x88, &(0x7f00000000c0)={[{@nogrpid}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@errors_remount}, {@nodiscard}, {@jqfmt_vfsv1}]}, 0x3, 0x438, &(0x7f0000000580)="$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")
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x0)
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)

2.909859605s ago: executing program 1 (id=1611):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_TSINFO_GET(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x20048881}, 0x2000c800)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000100)={0x2, 0x40000105, 0x0, 0x0})
openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

2.781375155s ago: executing program 0 (id=1612):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = timerfd_create(0x0, 0x0)
timerfd_settime(r1, 0x3, &(0x7f00000001c0)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
timerfd_settime(r1, 0x2, &(0x7f0000000340), 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000004700)={'team0\x00', <r4=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000000), 0x4)
getpid()
syz_genetlink_get_family_id$devlink(&(0x7f0000000140), r5)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f00000047c0)={0x60, r3, 0x405, 0x70bd27, 0x25dfdbfe, {}, [{{0x8, 0x1, r4}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)

2.612778769s ago: executing program 3 (id=1613):
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000400)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000002c0)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000004c0)='rcu_utilization\x00', r3}, 0x18)
open(0x0, 0x0, 0x100)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$rds(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$wireguard(&(0x7f00000005c0), r4)
sendmsg$WG_CMD_SET_DEVICE(r4, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000000)=ANY=[@ANYBLOB="ec000000", @ANYRES16=r5, @ANYBLOB="01000000000000000000010000000800050001000000140002007767310000000000000000000000000024000300a0cb879a47f5bc644c0e693fa6d031c74a1553b6e901b9ff2f518c78042fb5420800050000000000900008808c00008024000100975c9d81c983c8209ee781254b899f8ed925ae9f0923c23c62f53c57cdbf691c640009801c000080060001000200"], 0xec}, 0x1, 0x0, 0x0, 0x4084}, 0x20000010)

148.197477ms ago: executing program 0 (id=1614):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000002840)=ANY=[@ANYBLOB="b7000000810003c3bfa300000000000007030000f0ffffff720af1fff8ffffff71a4f0ff0000000065040200000000ff2d400400000000003400000001ede4ff7b1300ff000000001d440100000000007a0a00fe00ffffffdb03000040000000b500f7ff350900009500000000000000023bc065b78111c6dfa041b63af4a3912435f1a864a710aad58db6a693002e7f3be361917adef6ee1c8a2a4fc2495f74baaa876156de9078d687348ef1e50becb19bc461e94f4061cff1db39271a7168e51815548000000000000000275dff00000001b6bf01c8e8b19aa0d7f300c095199fe3ff3128e599b0eaebbdbd732c9cd90eec36574a8f6456e2ccae25ea21714eca8cf5d803e04d83b46e21557c0afc646cb7790b3e6440c2fbdb00a3e35208b0bb0d2cd829e654400e2438ec649dc74a28610643a98d9ec21ead2ed51b104d4d91af25b845b9f75dd08d123deda8ebc72f526d8e8afcb913466aaa7f6df70252e79166d858fcd0e06dd31af9612f2460d0b11008e59a5923906f88b53987af1714e72ba7616536fd9aa58f2477184b6a89adaf17b0baf587aef370a2d426a6041bdef728d236619074d6ebdfd1f5089048ddff6da40f9411fe7226a40409d6e37c4f46756d31cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10746443d64364c82770c8204a1deeed4155617572652d950ad31928b0b0c3dc2869f478341d02d0f5ad94b081fcd507acb4b9c65fee7d26b34381fcb59b854e9d5a17f4720082f13d000000225d85ae49cee383dc5049076b98fb6853ab39a21514da60d2ae20cfb91d6a49964757cdf538f9ce2bdb1ab062cd54e67051d355d84ce97bb0c6b4a595e487efbb2d71cde2c10f0bc6980fe78683ac5c0c31032599ddd71063be9261eee52216d009f4c52048ef8c126aeef5f510a8f1aded94a129e4aec6e8d9ab06faffc3a15d96c2ea3e2e04cfe031b287539d0540059fe6c7fe7cd8697502c7596566d674e425da5e87e59602a9f6590521d31d38df9ba60248d9a0d61282dfb15eb6841bb64a1b3045024a982f3c48153baae2c4e7bf37548c7f1a4cad2422ee965a38f7defbd2960242b104e20dc2d9b0c3560811ea6c3560a43364d402ccdd9069bd50b994fd6a34ee18022a579dfc0229cc0dc9881610270928eaeb883418f562ae00003ea96d10f172c0374d6eed826407000000000000004a9c5a90ff59d54d1f92ecc48899b212c55318294270a1ad10c80fef7c24d47afce829ba0f85da6d888f18ea40ab959f6074ab2a40d85d15017ab513cdc6c0e57fb1c1ca571380d7b4ead35a385e0b4a26b702396df7e0c1e02b6e4114f244a9bf93f04bf072f0861f5c0b000000000000eedcf2ba1a950812d7aba582a896a9f1ffa968eacea75caf822a7a63ba34015ea52acb1188883ad2a3b1832371fe5bc621426d1ed0a4a99702cc1b6912a1e717d29135753208165b9cdbae2ed9dc7358f0ebadde0b727f27feeb744ddcc536cbae315c7d851680f6f2f9a6a8906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010aec0e92bed1fe39af169d2a466f4ca2195234648e0a1ca50db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a532869d701723fedcbada1ee7baa19faf67256b56a41fd355b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031bc2f52c8785fe0721719b3d654026c6ea08b83b123145eb6dc5f6a9037d2283c42efc54fa84323a3304f41ff462c8843187f1dd48ef3fa293774d582956ff0f40b10ca94f6feeb2893c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538c6ee6ba65893ff1f928ba7554ba583fef3ec7932f5954f31a878e2fae6691df8b4b7ecd27ce82f7df3e7d1daac43738612e4fee18a22da19fcdb4c2890cda1f96b952511e3a69d040000000000000090205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f62e96753b639a924599c1f69219927ea5301fff0a6063d427f0688430754c02180d61542c2571f983e96735600000554f327a353511ccedde99493c31ac05a7b57f03ca91a01ba2c60ca99e8ebc15ecb4d91675767999d146aef7799738b292fd64bbca48568325b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a7bce14c6d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d40460780000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b91b7d120968308c31db2633d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd0000000069ffe1c2c73e1661261173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ec86a4555d89fe0120f64c62e8e3ed8bcb45202c204bbec8d722824c0ebca8db1ea4a003fe9af5d785d0128171c90d9900ce2532b0f9d01c4b45294fbba468df3e1b393cb4e62e754598e47df6bd06431c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9e0600f86909bc90addb7b9aee813df534aac4b32fd691b8068cd849904568916694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee077515d0a8811922929e085392ab3d1311b8243266d86047f601fa88a000000000000000000000000000006acc19808d7cf29bc974b0ea92499a419aa095e203c1bafbb9b9a7c2bca3f0a18ee4952f2d325a56390578f12205db653a536f0100e0eda300a43a13bd1b9f3322405d1efd78e578dc6b3fb84f3738a4b6caa84feda91f3edb32231ec75300000000000087efa51c5d95ecba4e50e529d1e8c89600e809dc3d0a2f65579e23457949a50f2d0455cf79a43746979f99f6a1527f004f1e37a3926937e84fb478199dc1020f4beb98b88b5e7885e9a617aa6c8e10d4202c5afeb06e2f9115558ea12f92d7ae633d44086b3f03b20d546fa66a72e38207c9d20035ab63de71a30f1240de52536941242d23886ab74a3c6670fdc49c14f34fc4eadd6db8d80eba439772bf60a1db1829f1a57d3f18f4edaeb5d37918e6fddcd821da67a0785585a4443440dc65600e64a6a2744c46570e8f46da1ab990ca053cbfe801000000000000000000000000000000d55d7182af2ea5f8d0ad495e3eb9421963a5a683c3dcb2d300aa3b2cfe946d2348c35f5d67d68ac07c8f84b3679e77c2e629ecec7c12c35d6b6971b8ae13cc00956d2227db60c0a461ed2b3ecfb16d19037c8c88c91dda1f904fbbc864e95ad43d6dd6d5eadbcea25682ba4b91e14c3fbfdfd1d680aa1af102d97681656bf56ff0674237ce097d39008cc3257778de878bcd37467386f993be6d20c93a7791e7f2a155ce379b4cda2500108052aeb9bd03ff6d4c5dbda9ff485d6576a492d436d52edcd420e7deaa4343a0add3941ae7c5f58af43866ca64750f43e583ca1ceb3a805e46beef9dca77a4edcbb42aa0caf0bbd6cec72d85540293cb4849b0610800000000000000000000000000000000f9814d5f6c8673c143ff2f901e71b8818665b56f7a03afe3d900007656859db4cb06aaaf9f02cfab5b9e61cc00e8e19429921b8df4c4c53bddea4cc48737842952ff08aeac15685df194ca89da8cf6d29a2be9779181fd5d105af5786094d9130f5826b18b9667b971a994f3fd069629a1052f441e96884f90c91f4a97429ca27955b5c90f0bd9a46ed044272383d3768871a9c8cfd7948aea445c55684351002ed4a4af45341de8e5e1f33624bd2ec1591dd00bbe05000000f89a928662e9b9449db34394fc5e946fadaee576e28ac0feab4e3585ed43d206218f524083840a78b7236bb7f5e42b5376642f8ad4028d4ead407240e7467d1b37afe20690d7672c7e926fded95cf805516ad836eb730619a05af36fb28329d6feb33219cc9164461a8ba3afd5949b9a6046c53663df30a049414089c1ae8f3476236b05dde8dda4843a62c591f8d2b1a62d0db8dc826219bd87398b33e140792297d023ef52de2e75b9dbbfb8712ccc15c69cfb4c6c1bc2ae74621e536b9d3f09a15dada1561a8192d65cc59d7ed5a6bd61000000000000000000000000000000000000000000000000000000000000000000000000f637782e317d492b2392fd0ea81397a80227f271bad21d688af35a2bd02c15d20f3d62a50e20260642c25f304c8034a5f4d8e45e701dbd84294d1096e715662b8223e10ef454c7702c98c4c38451fc5c702084e3fa9b184e0d0fba44acf3bb8a846cf680dfbf312cddfdb2043288fa6b67fa762c8b75d4478756ef240f2b314e4d77a3afb4fcec92248327004d1dac7ac87a6f8cb04d82acc307d60e4713bd9a8f29091d3048c669a5f5439e0a906ce098d177b9579882586511cfe6a23e57c44d1654899f077b5636e4181f3de6b814bedcac5290ad801800"/3222], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffec2}, 0x48)
socket$nl_route(0x10, 0x3, 0x0)
accept4$nfc_llcp(0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000000100)=0x60, 0x80400)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000001500)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r2}, 0x10)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
vmsplice(r3, &(0x7f0000000380)=[{&(0x7f0000000180)="04", 0x1}], 0x1, 0x6)
ioctl$sock_inet_udp_SIOCINQ(r3, 0x541b, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r4, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r1, &(0x7f00000002c0)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@newlink={0x3c, 0x10, 0x403, 0x70bd25, 0x0, {0x0, 0x0, 0x0, 0x0, 0x500}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_MASTER={0x8, 0xa, r6}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000804}, 0x8000)
syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', &(0x7f0000000080)=@default_ibss_ssid, 0x6, 0x0)

134.115249ms ago: executing program 1 (id=1615):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socket$nl_sock_diag(0x10, 0x3, 0x4)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000000c0)='sched_switch\x00', r1}, 0x18)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount$bpf(0x0, &(0x7f00000003c0)='./bus\x00', 0x0, 0x4001, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000040)={0xfffe, 0x6}, 0x4)
setsockopt$packet_fanout_data(r4, 0x107, 0x16, &(0x7f0000000100)={0x2, &(0x7f0000000180)=[{0x40}, {0x6}]}, 0x10)

0s ago: executing program 3 (id=1616):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x25dfdbff, 0x8000000}, 0xffffffffffffff30)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
r1 = getpid()
r2 = socket$nl_generic(0x10, 0x3, 0x10)
socket$igmp(0x2, 0x3, 0x2)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), r0)
sendmsg$DEVLINK_CMD_RELOAD(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r3, 0x1, 0x70bd26, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r1}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x71, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=ANY=[@ANYBLOB="f800000016008502000000000000000020010000000000000000000000000002a600000200"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe8000000000000000000000000000bb0000000032"], 0xf8}}, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @empty, 0x1}, 0x1c)
sendmsg$nl_xfrm(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=ANY=[], 0x134}}, 0x0)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DAEMON(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0100000000000000000009000000440003800800010002000000140002007663616e300000000000000000000000080003000000000014000600ff"], 0x58}}, 0x0)
sendmsg$IPVS_CMD_GET_SERVICE(r2, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x8004}, 0x4044180)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000000)=@framed={{0x7a, 0xa, 0x0, 0xff00, 0x0, 0x71, 0x10, 0x78}}, &(0x7f0000000480)='syzkaller\x00'}, 0x80)

kernel console output (not intermixed with test programs):

'.
[  296.086859][ T7557] veth0_macvtap: entered promiscuous mode
[  296.111666][ T7557] veth1_macvtap: entered promiscuous mode
[  296.135497][ T7557] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  296.146907][ T7557] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  296.160266][ T7557] batman_adv: batadv0: Interface activated: batadv_slave_0
[  296.187448][ T7557] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  296.217060][ T7557] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  296.230037][ T7557] batman_adv: batadv0: Interface activated: batadv_slave_1
[  296.275007][ T7557] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  296.290248][ T7557] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  296.304812][ T7557] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  296.315610][ T7557] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  297.254168][  T145] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  297.364302][  T145] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  298.840338][ T6072] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  298.890894][ T6072] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  300.062628][ T7882] netlink: 116 bytes leftover after parsing attributes in process `syz.3.424'.
[  300.092579][ T7882] bond0: left promiscuous mode
[  300.097535][ T7882] bond_slave_0: left promiscuous mode
[  300.151985][ T7882] bond_slave_1: left promiscuous mode
[  300.278474][ T7882] team0: Port device bond0 removed
[  300.307657][ T7882] bridge_slave_0: left allmulticast mode
[  300.317380][ T7882] bridge_slave_0: left promiscuous mode
[  300.324274][ T7882] bridge0: port 1(bridge_slave_0) entered disabled state
[  300.336782][ T7882] bridge_slave_1: left allmulticast mode
[  300.342982][ T7882] bridge_slave_1: left promiscuous mode
[  300.348968][ T7882] bridge0: port 2(bridge_slave_1) entered disabled state
[  300.369205][ T7882] bond0: (slave bond_slave_0): Releasing backup interface
[  300.392374][ T7882] bond0: (slave bond_slave_1): Releasing backup interface
[  300.414821][ T7882] team_slave_0: left promiscuous mode
[  300.438779][ T7882] team0: Port device team_slave_0 removed
[  300.447369][ T7882] team_slave_1: left promiscuous mode
[  300.455610][ T7882] team0: Port device team_slave_1 removed
[  300.462530][ T7882] batman_adv: batadv0: Removing interface: batadv_slave_0
[  300.474238][ T7882] batman_adv: batadv0: Removing interface: batadv_slave_1
[  300.584991][ T7885] team0: Mode changed to "broadcast"
[  303.528690][ T7924] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  303.576719][ T7924] netlink: 'syz.1.430': attribute type 9 has an invalid length.
[  303.844184][ T7929] loop5: detected capacity change from 0 to 1024
[  304.041315][   T27] kauditd_printk_skb: 5 callbacks suppressed
[  304.041331][   T27] audit: type=1326 audit(1755584198.988:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7911 comm="syz.3.428" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f183918ebe9 code=0x0
[  304.071321][ T7929] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  304.107794][ T7929] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  304.232511][ T7929] JBD2: no valid journal superblock found
[  304.291358][ T7929] EXT4-fs (loop5): Could not load journal inode
[  304.584567][ T7942] loop0: detected capacity change from 0 to 256
[  304.662332][ T7942] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  304.740027][ T7942] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  305.485795][ T7942] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  305.503890][ T7944] netlink: 12 bytes leftover after parsing attributes in process `syz.1.433'.
[  305.551233][ T7947] syz.5.435 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  305.653917][ T7944] vlan2: entered promiscuous mode
[  305.659308][ T7944] team0: entered promiscuous mode
[  305.665076][ T7944] team_slave_0: entered promiscuous mode
[  305.681402][ T7944] team_slave_1: entered promiscuous mode
[  305.861559][ T7947] netlink: 96 bytes leftover after parsing attributes in process `syz.5.435'.
[  307.292574][ T7952] loop3: detected capacity change from 0 to 32768
[  308.995730][ T7980] xt_CT: You must specify a L4 protocol and not use inversions on it
[  311.949715][ T7985] loop5: detected capacity change from 0 to 8
[  311.983780][ T7985] SQUASHFS error: zlib decompression failed, data probably corrupt
[  311.993010][ T7985] SQUASHFS error: Failed to read block 0x9b: -5
[  311.999394][ T7985] SQUASHFS error: Unable to read metadata cache entry [99]
[  312.007119][ T7985] SQUASHFS error: Unable to read inode 0x127
[  313.504075][ T8013] loop0: detected capacity change from 0 to 22
[  313.530714][   T27] audit: type=1326 audit(1755584208.548:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8004 comm="syz.1.447" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff5fe38ebe9 code=0x0
[  313.609585][ T8013] MTD: Attempt to mount non-MTD device "/dev/loop0"
[  313.653947][ T8013] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  315.284299][ T8030] netlink: 4 bytes leftover after parsing attributes in process `syz.1.451'.
[  316.328713][ T8044] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  316.402150][ T8049] Falling back ldisc for ttyS3.
[  316.634533][ T8055] netlink: 176 bytes leftover after parsing attributes in process `syz.1.457'.
[  316.650549][ T8055] ip6gretap0: entered promiscuous mode
[  316.664223][ T8055] netlink: 176 bytes leftover after parsing attributes in process `syz.1.457'.
[  317.194678][ T8068] sctp: [Deprecated]: syz.1.459 (pid 8068) Use of struct sctp_assoc_value in delayed_ack socket option.
[  317.194678][ T8068] Use struct sctp_sack_info instead
[  317.563194][ T8065] netlink: 12 bytes leftover after parsing attributes in process `syz.0.458'.
[  317.696597][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  317.729049][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  318.025321][ T8065] vlan2: entered promiscuous mode
[  318.030615][ T8065] team0: entered promiscuous mode
[  318.756417][ T8085] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  319.352706][ T8087] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  321.271316][ T6360] usb 2-1: new full-speed USB device number 4 using dummy_hcd
[  321.337662][ T8111] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  321.980289][ T6360] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 10
[  322.009955][ T6360] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  322.036651][ T6360] usb 2-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=33.f9
[  322.053937][ T6360] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  322.069969][ T6360] usb 2-1: Product: syz
[  322.077624][ T6360] usb 2-1: Manufacturer: syz
[  322.091550][ T6360] usb 2-1: SerialNumber: syz
[  322.112393][ T6360] usb 2-1: config 0 descriptor??
[  322.134060][ T6360] input: KB Gear Tablet as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input8
[  322.365413][ T5851] IPVS: starting estimator thread 0...
[  322.487568][ T6360] usb 2-1: USB disconnect, device number 4
[  322.501611][ T8121] IPVS: using max 18 ests per chain, 43200 per kthread
[  324.969968][ T8148] loop3: detected capacity change from 0 to 256
[  325.815598][ T8144] netlink: 'syz.1.477': attribute type 5 has an invalid length.
[  325.826610][ T8148] exFAT-fs (loop3): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[  325.874577][ T8144] netlink: 3657 bytes leftover after parsing attributes in process `syz.1.477'.
[  325.965253][ T8158] loop0: detected capacity change from 0 to 16
[  325.992499][ T8158] erofs: (device loop0): mounted with root inode @ nid 36.
[  326.112466][ T8158] erofs: (device loop0): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36
[  326.186702][ T8158] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -3 in[47, 4049] out[1851]
[  326.224580][ T8158] erofs: (device loop0): z_erofs_read_folio: read error -117 @ 43 of nid 36
[  326.269369][ T8162] erofs: (device loop0): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36
[  326.298378][ T8166] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  326.314763][ T8162] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -3 in[47, 4049] out[1851]
[  326.333948][ T8162] erofs: (device loop0): z_erofs_read_folio: read error -117 @ 43 of nid 36
[  328.971855][ T8186] netlink: 12 bytes leftover after parsing attributes in process `syz.3.484'.
[  330.116202][ T8197] netlink: 4 bytes leftover after parsing attributes in process `syz.0.486'.
[  332.825726][ T8234] syz.5.492: attempt to access beyond end of device
[  332.825726][ T8234] loop5: rw=0, sector=0, nr_sectors = 1 limit=0
[  332.838731][ T8234] exFAT-fs (loop5): unable to read boot sector
[  332.844991][ T8234] exFAT-fs (loop5): failed to read boot sector
[  332.851303][ T8234] exFAT-fs (loop5): failed to recognize exfat type
[  337.090701][ T8270] xt_socket: unknown flags 0x48
[  339.667184][ T8285] loop3: detected capacity change from 0 to 22
[  340.059578][ T8285] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  340.141489][ T8285] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  341.291570][ T8296] netlink: 'syz.1.508': attribute type 1 has an invalid length.
[  341.365656][ T8296] 8021q: adding VLAN 0 to HW filter on device bond2
[  341.386412][ T8294] sit0: entered promiscuous mode
[  341.423874][ T8294] netlink: 21 bytes leftover after parsing attributes in process `syz.5.507'.
[  341.602348][ T8300] 8021q: adding VLAN 0 to HW filter on device bond2
[  341.649406][ T8300] bond2: (slave ipip0): The slave device specified does not support setting the MAC address
[  341.682408][ T8300] bond2: (slave ipip0): Error -95 calling set_mac_address
[  341.815652][ T8296] bond2: (slave ip6erspan0): making interface the new active one
[  341.863346][ T8296] bond2: (slave ip6erspan0): Enslaving as an active interface with an up link
[  343.219678][   T27] audit: type=1326 audit(1755584238.238:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8322 comm="syz.5.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23c5f8ebe9 code=0x7ffc0000
[  343.269880][ T8323] loop5: detected capacity change from 0 to 1024
[  343.361664][   T27] audit: type=1326 audit(1755584238.238:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8322 comm="syz.5.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7f23c5f8ebe9 code=0x7ffc0000
[  343.487647][   T27] audit: type=1326 audit(1755584238.238:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8322 comm="syz.5.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23c5f8ebe9 code=0x7ffc0000
[  343.513530][ T8323] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  343.522828][   T27] audit: type=1326 audit(1755584238.238:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8322 comm="syz.5.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23c5f8ebe9 code=0x7ffc0000
[  344.175101][ T8323] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  344.191428][  T789] IPVS: starting estimator thread 0...
[  344.202903][   T27] audit: type=1326 audit(1755584238.238:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8322 comm="syz.5.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f23c5f8ebe9 code=0x7ffc0000
[  344.263980][   T27] audit: type=1326 audit(1755584238.238:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8322 comm="syz.5.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f23c5f8ec23 code=0x7ffc0000
[  344.287693][ T8332] IPVS: using max 19 ests per chain, 45600 per kthread
[  344.302203][ T8323] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  344.367647][ T8323] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #3: block 2: comm syz.5.512: lblock 2 mapped to illegal pblock 2 (length 1)
[  344.421363][   T27] audit: type=1326 audit(1755584238.238:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8322 comm="syz.5.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f23c5f8d69f code=0x7ffc0000
[  344.479565][ T8323] Quota error (device loop5): qtree_write_dquot: dquota write failed
[  344.493827][ T8323] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #3: block 48: comm syz.5.512: lblock 0 mapped to illegal pblock 48 (length 1)
[  344.509010][   T27] audit: type=1326 audit(1755584238.288:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8322 comm="syz.5.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f23c5f8ec77 code=0x7ffc0000
[  344.557556][   T27] audit: type=1326 audit(1755584238.288:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8322 comm="syz.5.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f23c5f8d550 code=0x7ffc0000
[  344.615162][ T8323] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.512: Failed to acquire dquot type 0
[  344.630762][ T8323] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  344.647340][ T8323] EXT4-fs error (device loop5): ext4_evict_inode:252: inode #11: comm syz.5.512: mark_inode_dirty error
[  344.690816][ T8323] EXT4-fs warning (device loop5): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  344.736369][ T8323] EXT4-fs (loop5): 1 orphan inode deleted
[  344.792472][ T3472] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:8: lblock 1 mapped to illegal pblock 1 (length 1)
[  344.814042][ T3472] EXT4-fs error (device loop5): ext4_release_dquot:6974: comm kworker/u4:8: Failed to release dquot type 0
[  344.814111][ T8323] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  345.408781][ T8323] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.471915][ T8323] EXT4-fs error (device loop5): __ext4_get_inode_loc:4483: comm syz.5.512: Invalid inode table block 1 in block_group 0
[  345.510287][ T8323] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  345.520511][ T8323] EXT4-fs error (device loop5): ext4_quota_off:7222: inode #3: comm syz.5.512: mark_inode_dirty error
[  346.458943][ T8350] loop1: detected capacity change from 0 to 2048
[  346.643181][ T8350] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  346.717682][ T8350] NILFS (loop1): mounting unchecked fs
[  346.876451][ T8350] NILFS (loop1): recovery complete
[  346.907839][ T8365] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  346.985810][ T8367] netlink: 'syz.5.520': attribute type 1 has an invalid length.
[  347.993721][ T8367] 8021q: adding VLAN 0 to HW filter on device bond1
[  348.118286][ T8367] bond1: (slave ip6erspan0): making interface the new active one
[  348.129010][ T8367] bond1: (slave ip6erspan0): Enslaving as an active interface with an up link
[  348.421126][ T8385] loop1: detected capacity change from 0 to 128
[  349.390359][ T8399] netlink: 20 bytes leftover after parsing attributes in process `syz.0.524'.
[  350.925723][ T8413] netlink: 4 bytes leftover after parsing attributes in process `syz.1.530'.
[  351.019824][ T8415] netlink: 24 bytes leftover after parsing attributes in process `syz.0.531'.
[  351.041030][ T8413] netlink: 24 bytes leftover after parsing attributes in process `syz.1.530'.
[  351.135749][ T8413] netlink: 4 bytes leftover after parsing attributes in process `syz.1.530'.
[  351.469873][ T8426] tipc: Started in network mode
[  351.481951][ T8426] tipc: Node identity ac14140f, cluster identity 4711
[  351.500431][ T8426] tipc: New replicast peer: 255.255.255.255
[  351.530030][ T8426] tipc: Enabled bearer <udp:syz2>, priority 10
[  351.683742][ T8428] loop1: detected capacity change from 0 to 4096
[  352.086627][ T8428] __ntfs_error: 24 callbacks suppressed
[  352.086920][ T8428] ntfs: (device loop1): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk.
[  352.443676][ T8428] ntfs: (device loop1): ntfs_read_locked_inode(): $DATA attribute is missing.
[  352.520192][ T8428] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -2.  Marking corrupt inode 0x1 as bad.  Run chkdsk.
[  352.534396][ T8428] ntfs: (device loop1): load_system_files(): Failed to load $MFTMirr.  Will not be able to remount read-write.  Run ntfsfix and/or chkdsk.
[  352.702017][ T6360] tipc: Node number set to 2886997007
[  353.455455][ T8428] ntfs: volume version 3.1.
[  353.838762][ T6380] libceph: connect (1)[c::]:6789 error -101
[  354.635588][ T6380] libceph: mon0 (1)[c::]:6789 connect error
[  354.645705][ T8445] ceph: No mds server is up or the cluster is laggy
[  354.667293][ T6380] libceph: connect (1)[c::]:6789 error -101
[  354.673690][ T6380] libceph: mon0 (1)[c::]:6789 connect error
[  354.944666][ T6360] libceph: connect (1)[c::]:6789 error -101
[  354.953164][ T6360] libceph: mon0 (1)[c::]:6789 connect error
[  356.340048][   T27] audit: type=1800 audit(1755584251.358:162): pid=8491 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.542" name="bus" dev="overlay" ino=742 res=0 errno=0
[  356.461808][   T27] audit: type=1804 audit(1755584251.378:163): pid=8486 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.542" name="/newroot/137/bus/bus" dev="overlay" ino=742 res=1 errno=0
[  357.063647][   T27] audit: type=1804 audit(1755584252.088:164): pid=8486 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.542" name="/newroot/137/bus/bus" dev="overlay" ino=742 res=1 errno=0
[  357.420837][ T8502] loop1: detected capacity change from 0 to 2048
[  358.314707][ T8502] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  358.978657][   T27] audit: type=1326 audit(1755584253.988:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8524 comm="syz.1.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5fe38ebe9 code=0x7ffc0000
[  359.050069][   T27] audit: type=1326 audit(1755584253.998:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8524 comm="syz.1.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5fe38ebe9 code=0x7ffc0000
[  359.100723][   T27] audit: type=1326 audit(1755584253.998:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8524 comm="syz.1.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff5fe38ebe9 code=0x7ffc0000
[  359.188972][   T27] audit: type=1326 audit(1755584253.998:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8524 comm="syz.1.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5fe38ebe9 code=0x7ffc0000
[  359.254650][   T27] audit: type=1326 audit(1755584253.998:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8524 comm="syz.1.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff5fe38ebe9 code=0x7ffc0000
[  359.341975][   T27] audit: type=1326 audit(1755584253.998:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8524 comm="syz.1.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5fe38ebe9 code=0x7ffc0000
[  359.432768][   T27] audit: type=1326 audit(1755584253.998:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8524 comm="syz.1.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5fe38ebe9 code=0x7ffc0000
[  359.531336][   T27] audit: type=1326 audit(1755584253.998:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8524 comm="syz.1.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff5fe38ebe9 code=0x7ffc0000
[  359.667502][   T27] audit: type=1326 audit(1755584253.998:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8524 comm="syz.1.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5fe38ebe9 code=0x7ffc0000
[  359.770300][   T27] audit: type=1326 audit(1755584254.028:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8524 comm="syz.1.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5fe38ebe9 code=0x7ffc0000
[  360.808707][ T8554] netlink: 4 bytes leftover after parsing attributes in process `syz.1.556'.
[  366.417384][ T8597] loop5: detected capacity change from 0 to 128
[  366.661441][   T27] kauditd_printk_skb: 26 callbacks suppressed
[  366.661458][   T27] audit: type=1326 audit(1755584261.678:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8601 comm="syz.3.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183918ebe9 code=0x7ffc0000
[  366.791108][   T27] audit: type=1326 audit(1755584261.688:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8601 comm="syz.3.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f183918ebe9 code=0x7ffc0000
[  366.851509][   T27] audit: type=1326 audit(1755584261.688:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8601 comm="syz.3.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183918ebe9 code=0x7ffc0000
[  366.918181][   T27] audit: type=1326 audit(1755584261.688:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8601 comm="syz.3.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183918ebe9 code=0x7ffc0000
[  366.954378][ T6073] kworker/u4:12: attempt to access beyond end of device
[  366.954378][ T6073] loop5: rw=1, sector=145, nr_sectors = 216 limit=128
[  366.997319][   T27] audit: type=1326 audit(1755584261.698:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8601 comm="syz.3.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f183918ebe9 code=0x7ffc0000
[  367.083652][   T27] audit: type=1326 audit(1755584261.698:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8601 comm="syz.3.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183918ebe9 code=0x7ffc0000
[  367.195522][   T27] audit: type=1326 audit(1755584261.698:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8601 comm="syz.3.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=90 compat=0 ip=0x7f183918ebe9 code=0x7ffc0000
[  367.210218][ T8616] loop3: detected capacity change from 0 to 1024
[  367.300737][ T8616] EXT4-fs: Ignoring removed nomblk_io_submit option
[  367.374679][   T27] audit: type=1326 audit(1755584261.698:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8601 comm="syz.3.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183918ebe9 code=0x7ffc0000
[  367.475510][ T8616] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  367.511863][   T27] audit: type=1326 audit(1755584261.698:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8601 comm="syz.3.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183918ebe9 code=0x7ffc0000
[  367.598122][   T27] audit: type=1326 audit(1755584261.708:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8601 comm="syz.3.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f183918ebe9 code=0x7ffc0000
[  368.195252][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  369.384591][ T8639] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  371.333909][ T8656] loop5: detected capacity change from 0 to 8192
[  371.406829][ T8656]  loop5: p1 p2 p3 < > p4 < p5 p6 >
[  371.424087][ T8656] loop5: partition table partially beyond EOD, truncated
[  371.431940][ T6380] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  371.447724][ T8656] loop5: p1 start 67108864 is beyond EOD, truncated
[  371.455966][ T8656] loop5: p2 size 61546 extends beyond EOD, truncated
[  371.483177][ T8656] loop5: p3 start 100859904 is beyond EOD, truncated
[  371.493631][ T8656] loop5: p5 start 67108864 is beyond EOD, truncated
[  371.501052][ T8656] loop5: p6 size 61546 extends beyond EOD, truncated
[  371.641406][ T6380] usb 6-1: Using ep0 maxpacket: 16
[  371.660388][ T6380] usb 6-1: config 0 has an invalid interface number: 105 but max is 0
[  371.701262][ T6380] usb 6-1: config 0 has an invalid descriptor of length 18, skipping remainder of the config
[  371.739594][ T6380] usb 6-1: config 0 has no interface number 0
[  371.755554][ T8677] loop3: detected capacity change from 0 to 128
[  371.770048][ T8676] loop1: detected capacity change from 0 to 1024
[  371.791318][ T6380] usb 6-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  371.800848][ T6380] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  371.845569][ T6380] usb 6-1: Product: syz
[  371.849900][ T6380] usb 6-1: Manufacturer: syz
[  371.881304][ T6380] usb 6-1: SerialNumber: syz
[  371.889838][ T6380] usb 6-1: config 0 descriptor??
[  371.914899][ T8676] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  372.034652][   T48] kworker/u4:3: attempt to access beyond end of device
[  372.034652][   T48] loop3: rw=1, sector=145, nr_sectors = 896 limit=128
[  372.039631][ T8676] EXT4-fs error (device loop1): ext4_generic_delete_entry:2729: inode #2: block 16: comm syz.1.586: bad entry in directory: inode out of bounds - offset=12, inode=129, rec_len=12, size=1024 fake=1
[  372.083642][ T8676] EXT4-fs error (device loop1) in ext4_delete_entry:2800: Corrupt filesystem
[  372.098892][ T8676] EXT4-fs warning (device loop1): ext4_rename_delete:3778: inode #2: comm syz.1.586: Deleting old file: nlink 4, error=-117
[  372.204384][ T6380] usb 6-1: Found UVC 0.00 device syz (046d:08d3)
[  372.250655][ T6380] usb 6-1: No valid video chain found.
[  372.450899][ T6380] usb 6-1: USB disconnect, device number 2
[  372.579534][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.782834][ T8690] loop1: detected capacity change from 0 to 1024
[  372.805771][ T8690] EXT4-fs: Ignoring removed nomblk_io_submit option
[  372.858929][ T8690] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  372.993831][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  377.652450][ T8737] netlink: 4 bytes leftover after parsing attributes in process `syz.3.594'.
[  380.026551][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  381.136071][ T8765] vlan2: entered promiscuous mode
[  381.161586][ T8765] vlan2: entered allmulticast mode
[  381.167023][ T8765] hsr_slave_1: entered allmulticast mode
[  381.532394][ T8767] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  381.621634][ T8767] kvm: pic: non byte read
[  381.908261][ T8773] netlink: 1 bytes leftover after parsing attributes in process `syz.3.604'.
[  382.296819][ T8785] loop1: detected capacity change from 0 to 512
[  382.452965][ T8785] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=e000c018, mo2=0002]
[  382.493503][ T8793] mmap: syz.5.610 (8793): VmData 37605376 exceed data ulimit 9. Update limits or use boot option ignore_rlimit_data.
[  382.542990][ T8785] System zones: 0-2, 18-18, 34-35
[  382.681939][ T8785] EXT4-fs error (device loop1): ext4_quota_enable:7129: inode #4: comm syz.1.608: iget: bad i_size value: 5910974510929920
[  382.841357][ T8785] EXT4-fs error (device loop1): ext4_quota_enable:7132: comm syz.1.608: Bad quota inode: 4, type: 1
[  382.904511][ T8785] EXT4-fs warning (device loop1): ext4_enable_quotas:7173: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  383.071894][ T8785] EXT4-fs (loop1): mount failed
[  383.176889][ T8796] loop5: detected capacity change from 0 to 512
[  383.192256][ T8796] EXT4-fs: Ignoring removed oldalloc option
[  383.217837][ T8798] netlink: 16 bytes leftover after parsing attributes in process `syz.0.611'.
[  383.254477][ T8798] netlink: 8 bytes leftover after parsing attributes in process `syz.0.611'.
[  383.268165][ T8796] EXT4-fs error (device loop5): ext4_xattr_inode_iget:436: comm syz.5.612: Parent and EA inode have the same ino 15
[  383.292307][ T8796] EXT4-fs (loop5): Remounting filesystem read-only
[  383.322654][ T8796] EXT4-fs warning (device loop5): ext4_evict_inode:272: xattr delete (err -5)
[  383.370573][ T8798] bridge3: entered promiscuous mode
[  383.376752][ T8796] EXT4-fs (loop5): 1 orphan inode deleted
[  383.403184][ T8796] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  383.415717][ T8798] bridge3: entered allmulticast mode
[  383.486916][ T8798] netlink: 'syz.0.611': attribute type 4 has an invalid length.
[  383.685139][ T8806] syzkaller0: entered promiscuous mode
[  383.705551][ T8806] syzkaller0: entered allmulticast mode
[  383.722646][ T7557] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  384.019821][ T8813] kvm: pic: non byte write
[  384.050680][ T8813] kvm: pic: non byte write
[  385.178612][ T8816] loop5: detected capacity change from 0 to 40427
[  386.166065][ T8816] F2FS-fs (loop5): invalid crc value
[  386.298558][ T8816] F2FS-fs (loop5): Found nat_bits in checkpoint
[  386.592374][ T8816] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  387.635837][ T7557] syz-executor: attempt to access beyond end of device
[  387.635837][ T7557] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  387.680403][ T7557] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  391.092481][ T8855] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  391.099538][ T8855] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  391.169104][ T8855] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  391.185733][ T8855] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  391.205949][ T8855] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  391.213659][ T8855] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  391.270103][ T8855] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  391.297376][ T8855] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  392.680837][ T8873] netlink: 'syz.5.632': attribute type 10 has an invalid length.
[  392.688938][ T8873] netlink: 40 bytes leftover after parsing attributes in process `syz.5.632'.
[  392.725625][ T8873] team0: Port device geneve0 added
[  393.091012][ T8880] loop1: detected capacity change from 0 to 256
[  393.132005][ T5792] Bluetooth: hci0: command 0x0406 tx timeout
[  393.291570][ T5103] Bluetooth: hci2: command 0x0406 tx timeout
[  393.298058][ T5795] Bluetooth: hci3: command 0x0406 tx timeout
[  393.304548][ T5792] Bluetooth: hci1: command 0x0406 tx timeout
[  395.241347][ T5795] Bluetooth: hci0: command 0x0406 tx timeout
[  398.863025][ T5795] Bluetooth: hci3: command 0x0406 tx timeout
[  398.863074][ T5103] Bluetooth: hci2: command 0x0406 tx timeout
[  398.875689][ T5792] Bluetooth: hci1: command 0x0406 tx timeout
[  399.281401][   T27] kauditd_printk_skb: 4 callbacks suppressed
[  399.281419][   T27] audit: type=1326 audit(1755584294.288:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8886 comm="syz.0.637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f836898ebe9 code=0x7ffc0000
[  399.779785][   T27] audit: type=1326 audit(1755584294.288:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8886 comm="syz.0.637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f836898ebe9 code=0x7ffc0000
[  400.046843][   T27] audit: type=1326 audit(1755584294.508:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8886 comm="syz.0.637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f836898ebe9 code=0x7ffc0000
[  400.092094][   T27] audit: type=1326 audit(1755584295.108:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8886 comm="syz.0.637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f836898ebe9 code=0x7ffc0000
[  400.242794][   T27] audit: type=1326 audit(1755584295.108:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8886 comm="syz.0.637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f836898ebe9 code=0x7ffc0000
[  400.268348][   T27] audit: type=1326 audit(1755584295.248:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8886 comm="syz.0.637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f836898ebe9 code=0x7ffc0000
[  400.308596][   T27] audit: type=1326 audit(1755584295.248:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8886 comm="syz.0.637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f836898ebe9 code=0x7ffc0000
[  400.391741][   T27] audit: type=1326 audit(1755584295.248:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8886 comm="syz.0.637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f836898ebe9 code=0x7ffc0000
[  400.453585][   T27] audit: type=1326 audit(1755584295.248:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8886 comm="syz.0.637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f836898ebe9 code=0x7ffc0000
[  400.503954][   T27] audit: type=1326 audit(1755584295.258:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8886 comm="syz.0.637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f836898ebe9 code=0x7ffc0000
[  403.303108][ T8920] Bluetooth: MGMT ver 1.22
[  404.268978][ T8926] loop1: detected capacity change from 0 to 4096
[  405.818309][ T8943] capability: warning: `syz.5.649' uses deprecated v2 capabilities in a way that may be insecure
[  406.008607][ T8947] tipc: Started in network mode
[  406.021622][ T8947] tipc: Node identity 080211000001, cluster identity 4711
[  406.043118][ T8947] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  406.198705][ T8950] overlayfs: missing 'lowerdir'
[  406.471820][ T8945] netlink: 4 bytes leftover after parsing attributes in process `syz.1.652'.
[  406.481632][ T8945] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  407.173753][ T5851] tipc: Node number set to 134418688
[  407.214534][ T8945] batman_adv: batadv0: Removing interface: batadv_slave_1
[  407.716309][ T8965] netlink: 2028 bytes leftover after parsing attributes in process `syz.3.657'.
[  407.965477][ T8965] netlink: 24 bytes leftover after parsing attributes in process `syz.3.657'.
[  412.494622][   T27] kauditd_printk_skb: 12 callbacks suppressed
[  412.494639][   T27] audit: type=1326 audit(1755584307.518:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.3.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183918ebe9 code=0x7ffc0000
[  412.552203][   T27] audit: type=1326 audit(1755584307.548:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.3.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183918ebe9 code=0x7ffc0000
[  412.587579][   T27] audit: type=1326 audit(1755584307.548:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.3.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f183918ebe9 code=0x7ffc0000
[  412.808163][   T27] audit: type=1326 audit(1755584307.548:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.3.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183918ebe9 code=0x7ffc0000
[  412.836924][   T27] audit: type=1326 audit(1755584307.548:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.3.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183918ebe9 code=0x7ffc0000
[  412.998600][   T27] audit: type=1326 audit(1755584307.548:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.3.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f183918ebe9 code=0x7ffc0000
[  413.686613][   T27] audit: type=1326 audit(1755584307.548:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.3.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183918ebe9 code=0x7ffc0000
[  414.454353][   T27] audit: type=1326 audit(1755584307.548:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.3.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=207 compat=0 ip=0x7f183918ebe9 code=0x7ffc0000
[  415.022554][   T27] audit: type=1326 audit(1755584307.728:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.3.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183918ebe9 code=0x7ffc0000
[  415.491369][   T27] audit: type=1326 audit(1755584307.728:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9001 comm="syz.3.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183918ebe9 code=0x7ffc0000
[  415.559834][ T9022] kthread_run failed with err -4
[  422.049885][ T6380] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  422.097328][ T6380] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  425.555219][ T9072] input: syz0 as /devices/virtual/input/input10
[  425.587601][ T9072] netlink: 60 bytes leftover after parsing attributes in process `syz.1.684'.
[  430.501060][ T9113] tipc: Started in network mode
[  430.506400][ T9113] tipc: Node identity fad0b2d6c026, cluster identity 4711
[  430.514684][ T9113] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  430.555982][ T9113] syzkaller0: entered promiscuous mode
[  431.059181][ T9113] syzkaller0: entered allmulticast mode
[  431.178421][ T9113] tipc: Resetting bearer <eth:syzkaller0>
[  431.218236][ T9112] tipc: Resetting bearer <eth:syzkaller0>
[  431.262261][ T9112] tipc: Disabling bearer <eth:syzkaller0>
[  432.404003][ T5103] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  432.418828][ T5103] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  432.428689][ T5103] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  432.439896][ T5103] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  432.451511][ T5103] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  432.459511][ T5103] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  433.211080][ T9135] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  433.236356][ T9135] syzkaller0: entered promiscuous mode
[  433.250319][ T9135] syzkaller0: entered allmulticast mode
[  433.370531][ T9141] tipc: Resetting bearer <eth:syzkaller0>
[  433.385386][ T9128] chnl_net:caif_netlink_parms(): no params data found
[  433.403975][ T9134] tipc: Resetting bearer <eth:syzkaller0>
[  433.445846][ T9134] tipc: Disabling bearer <eth:syzkaller0>
[  434.301721][   T28] usb 2-1: new low-speed USB device number 5 using dummy_hcd
[  434.543659][   T28] usb 2-1: config index 0 descriptor too short (expected 6427, got 27)
[  434.554577][ T5103] Bluetooth: hci1: command tx timeout
[  434.827582][   T28] usb 2-1: config 0 has an invalid interface number: 21 but max is 0
[  434.862327][ T9128] bridge0: port 1(bridge_slave_0) entered blocking state
[  434.872770][   T28] usb 2-1: config 0 has no interface number 0
[  434.879329][   T28] usb 2-1: config 0 interface 21 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  434.901035][ T9128] bridge0: port 1(bridge_slave_0) entered disabled state
[  434.909968][   T28] usb 2-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4
[  434.923305][ T9128] bridge_slave_0: entered allmulticast mode
[  434.929484][   T28] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  434.939613][ T9128] bridge_slave_0: entered promiscuous mode
[  434.957476][   T28] usb 2-1: config 0 descriptor??
[  435.157427][ T9128] bridge0: port 2(bridge_slave_1) entered blocking state
[  435.190872][ T9128] bridge0: port 2(bridge_slave_1) entered disabled state
[  435.199552][ T6372] usb 2-1: USB disconnect, device number 5
[  435.694160][ T9128] bridge_slave_1: entered allmulticast mode
[  435.726665][ T9128] bridge_slave_1: entered promiscuous mode
[  436.066488][ T9128] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  436.317790][ T9128] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  436.591800][ T5103] Bluetooth: hci1: command tx timeout
[  436.949576][ T9128] team0: Port device team_slave_0 added
[  437.111784][ T9128] team0: Port device team_slave_1 added
[  437.511211][ T9178] ptrace attach of "./syz-executor exec"[5785] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[  437.840739][ T9179] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  438.042277][ T9128] batman_adv: batadv0: Adding interface: batadv_slave_0
[  438.049427][ T9128] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  438.149653][ T9128] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  438.163234][ T9128] batman_adv: batadv0: Adding interface: batadv_slave_1
[  438.170415][ T9128] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  438.199526][ T9128] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  438.414339][ T9128] hsr_slave_0: entered promiscuous mode
[  438.437215][ T9128] hsr_slave_1: entered promiscuous mode
[  438.465416][ T9128] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  438.493560][ T9128] Cannot create hsr debugfs directory
[  438.651549][ T5103] Bluetooth: hci1: command tx timeout
[  440.079803][ T9128] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  440.186319][ T9207] xt_TPROXY: Can be used only with -p tcp or -p udp
[  440.584186][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  440.649196][ T9128] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  440.741757][ T5103] Bluetooth: hci1: command tx timeout
[  440.856301][ T9128] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  441.236082][ T9128] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  441.273445][ T9214] loop3: detected capacity change from 0 to 2048
[  441.299994][ T9214] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  442.128732][ T9128] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  442.214454][ T9128] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  442.253984][ T9128] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  442.286806][ T9128] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  444.327253][ T9128] 8021q: adding VLAN 0 to HW filter on device bond0
[  444.678242][ T9128] 8021q: adding VLAN 0 to HW filter on device team0
[  444.713346][   T48] bridge0: port 1(bridge_slave_0) entered blocking state
[  444.721199][   T48] bridge0: port 1(bridge_slave_0) entered forwarding state
[  444.753133][   T48] bridge0: port 2(bridge_slave_1) entered blocking state
[  444.760449][   T48] bridge0: port 2(bridge_slave_1) entered forwarding state
[  444.853270][ T9128] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  445.133659][ T9128] 8021q: adding VLAN 0 to HW filter on device batadv0
[  445.238982][ T9253] block device autoloading is deprecated and will be removed.
[  447.688530][ T9128] veth0_vlan: entered promiscuous mode
[  448.013061][ T9128] veth1_vlan: entered promiscuous mode
[  448.070092][ T9128] veth0_macvtap: entered promiscuous mode
[  448.096522][ T9128] veth1_macvtap: entered promiscuous mode
[  448.174428][ T9128] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  448.186816][ T9128] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.197243][ T9128] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  448.208395][ T9128] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.233470][ T9128] batman_adv: batadv0: Interface activated: batadv_slave_0
[  448.255084][ T9128] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  448.291285][ T9128] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.323026][ T9128] batman_adv: batadv0: Interface activated: batadv_slave_1
[  448.346458][ T9128] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  448.366787][ T9128] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  448.389517][ T9128] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  448.421241][ T9128] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  448.647284][ T3472] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  448.672909][ T3472] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  448.791313][ T3495] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  448.799979][ T3495] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  449.810143][ T9285] loop1: detected capacity change from 0 to 2048
[  449.955929][ T9285] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  450.597504][ T9289] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  450.894014][ T9297] netlink: 'syz.1.736': attribute type 1 has an invalid length.
[  450.977149][ T9297] netlink: 'syz.1.736': attribute type 2 has an invalid length.
[  452.080408][ T9308] tipc: Cannot configure node identity twice
[  453.927482][ T9325] loop1: detected capacity change from 0 to 1024
[  453.945190][ T9325] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  454.422810][ T9325] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  457.636433][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  461.662708][ T9387] syzkaller0: entered promiscuous mode
[  461.668441][ T9387] syzkaller0: entered allmulticast mode
[  462.074406][ T9397] Cannot find add_set index 0 as target
[  465.833444][ T9413] syz.3.770 (9413) used greatest stack depth: 20040 bytes left
[  466.321889][ T6380] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  466.648067][ T6380] usb 6-1: Using ep0 maxpacket: 8
[  466.703430][ T6380] usb 6-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  466.756677][ T6380] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  466.791619][ T6380] usb 6-1: Product: syz
[  466.796136][ T6380] usb 6-1: Manufacturer: syz
[  466.810089][ T6380] usb 6-1: SerialNumber: syz
[  466.828561][ T6380] usb 6-1: config 0 descriptor??
[  467.058424][ T6380] usb 6-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  467.156865][ T9437] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  467.195194][ T9437] syzkaller0: entered promiscuous mode
[  467.209936][ T9437] syzkaller0: entered allmulticast mode
[  467.427655][ T9437] tipc: Resetting bearer <eth:syzkaller0>
[  467.489695][ T9436] tipc: Resetting bearer <eth:syzkaller0>
[  467.547563][ T9436] tipc: Disabling bearer <eth:syzkaller0>
[  468.015926][ T9449] loop1: detected capacity change from 0 to 8192
[  468.738016][ T6380] dvb_usb_rtl28xxu: probe of 6-1:0.0 failed with error -71
[  468.835257][ T6380] usb 6-1: USB disconnect, device number 3
[  469.512540][ T9468] loop1: detected capacity change from 0 to 256
[  475.091910][ T6381] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  475.283974][ T6381] usb 6-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  475.312918][ T6381] usb 6-1: config 220 has 1 interface, different from the descriptor's value: 3
[  475.338565][ T6381] usb 6-1: config 220 interface 0 has no altsetting 0
[  475.410096][ T6381] usb 6-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  475.431547][ T6381] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  475.462206][ T6381] usb 6-1: Product: syz
[  475.466469][ T6381] usb 6-1: Manufacturer: syz
[  475.491259][ T6381] usb 6-1: SerialNumber: syz
[  475.908665][ T6379] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  475.992492][ T9501] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  476.035129][ T9501] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  476.121374][ T6379] usb 4-1: Using ep0 maxpacket: 8
[  476.136548][ T9522] CIFS: VFS: Malformed UNC in devname
[  476.182444][ T6379] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  476.219632][ T6379] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  476.244188][ T6379] usb 4-1: Product: syz
[  476.248848][ T6379] usb 4-1: Manufacturer: syz
[  476.265673][ T6379] usb 4-1: SerialNumber: syz
[  476.276936][ T6379] usb 4-1: config 0 descriptor??
[  476.349063][ T6381] usb 6-1: Found UVC 7.01 device syz (8086:0b07)
[  476.364044][ T9528] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  476.372827][ T6381] usb 6-1: No valid video chain found.
[  476.382216][ T6381] usb 6-1: USB disconnect, device number 4
[  476.515643][ T6379] usb 4-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  478.623758][ T6379] dvb_usb_rtl28xxu: probe of 4-1:0.0 failed with error -71
[  478.686611][ T6379] usb 4-1: USB disconnect, device number 6
[  481.654395][ T9572] tipc: Started in network mode
[  481.659581][ T9572] tipc: Node identity 66c8dec36857, cluster identity 4711
[  481.722486][ T9572] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  481.735277][ T9574] syzkaller0: entered promiscuous mode
[  481.800219][ T9574] syzkaller0: entered allmulticast mode
[  481.940648][ T9572] tipc: Resetting bearer <eth:syzkaller0>
[  482.012463][ T9571] tipc: Resetting bearer <eth:syzkaller0>
[  482.259436][ T9571] tipc: Disabling bearer <eth:syzkaller0>
[  483.715966][ T9584] loop5: detected capacity change from 0 to 2048
[  483.780358][ T9584] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  484.103211][ T9598] netlink: 'syz.3.817': attribute type 1 has an invalid length.
[  484.186839][ T9598] loop3: detected capacity change from 0 to 2048
[  486.374711][ T9608] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(5)
[  486.382030][ T9608] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  486.393716][ T9613] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  486.571907][ T9608] vhci_hcd vhci_hcd.0: Device attached
[  486.704046][ T9608] vhci_hcd vhci_hcd.0: pdev(5) rhport(3) sockfd(7)
[  486.710759][ T9608] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  487.206940][ T9613] vhci_hcd vhci_hcd.0: pdev(5) rhport(2) sockfd(10)
[  487.214074][ T9613] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  487.223671][ T9608] vhci_hcd vhci_hcd.0: Device attached
[  487.231696][ T9613] vhci_hcd vhci_hcd.0: Device attached
[  487.244093][ T9621] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  487.253186][ T6381] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  487.260923][ T9616] vhci_hcd vhci_hcd.0: pdev(5) rhport(4) sockfd(15)
[  487.267687][ T9616] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  487.276461][ T6379] vhci_hcd: vhci_device speed not set
[  487.303796][ T9616] vhci_hcd vhci_hcd.0: Device attached
[  487.351643][ T6379] usb 43-1: new full-speed USB device number 2 using vhci_hcd
[  487.364389][ T9611] vhci_hcd: connection reset by peer
[  487.373008][ T9615] vhci_hcd: connection closed
[  487.385857][   T11] vhci_hcd: stop threads
[  487.409798][ T9617] vhci_hcd: connection closed
[  487.417556][   T11] vhci_hcd: release socket
[  487.433054][ T9619] vhci_hcd: connection closed
[  487.461314][ T6381] usb 4-1: Using ep0 maxpacket: 32
[  487.490641][   T11] vhci_hcd: disconnect device
[  487.501960][ T6381] usb 4-1: config 0 has an invalid interface number: 184 but max is 0
[  487.510219][ T6381] usb 4-1: config 0 has no interface number 0
[  487.511027][   T11] vhci_hcd: stop threads
[  487.532294][   T11] vhci_hcd: release socket
[  487.542405][   T11] vhci_hcd: disconnect device
[  487.565416][   T11] vhci_hcd: stop threads
[  487.565899][ T6381] usb 4-1: config 0 interface 184 has no altsetting 0
[  487.569990][   T11] vhci_hcd: release socket
[  487.596385][   T11] vhci_hcd: disconnect device
[  487.602002][   T11] vhci_hcd: stop threads
[  487.606628][   T11] vhci_hcd: release socket
[  487.613770][   T11] vhci_hcd: disconnect device
[  487.626232][ T6381] usb 4-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  487.640256][ T6381] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  487.671416][ T6381] usb 4-1: Product: syz
[  487.675794][ T6381] usb 4-1: Manufacturer: syz
[  487.680550][ T6381] usb 4-1: SerialNumber: syz
[  487.725142][ T6381] usb 4-1: config 0 descriptor??
[  488.283068][ T6381] smsc75xx v1.0.0
[  488.506584][ T9635] 9pnet_fd: p9_fd_create_unix (9635): address too long: ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  490.526941][ T6381] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[  490.620429][    C0] vkms_vblank_simulate: vblank timer overrun
[  490.724640][ T6381] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  490.883254][ T9650] xt_CT: No such helper "netbios-ns"
[  491.245525][ T6381] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  491.259044][ T6381] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[  491.269916][ T6381] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  491.280133][ T6381] smsc75xx: probe of 4-1:0.184 failed with error -71
[  491.509123][ T6381] usb 4-1: USB disconnect, device number 7
[  492.111790][ T9664] loop3: detected capacity change from 0 to 512
[  492.168394][ T9664] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  493.248074][ T6379] vhci_hcd: vhci_device speed not set
[  494.100056][ T9664] EXT4-fs (loop3): failed to open journal device unknown-block(0,0) -6
[  494.693660][ T9678] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  495.079563][ T9683] loop5: detected capacity change from 0 to 512
[  495.127471][ T9683] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  495.206964][ T9683] EXT4-fs (loop5): 1 truncate cleaned up
[  495.235645][ T9683] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  495.483428][   T27] audit: type=1800 audit(1755584390.508:247): pid=9683 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.839" name="file1" dev="loop5" ino=15 res=0 errno=0
[  497.527435][ T9693] loop3: detected capacity change from 0 to 32768
[  497.787892][ T9693] 
[  497.787892][ T9693]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  497.787892][ T9693] 
[  498.602381][ T9700] CIFS: VFS: Malformed UNC in devname
[  499.066030][ T9128] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  499.232797][ T5791] 
[  499.232797][ T5791]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  499.232797][ T5791] 
[  499.312378][ T5791] 
[  499.312378][ T5791]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  499.312378][ T5791] 
[  503.421799][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  503.977528][ T5851] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  504.231915][ T5851] usb 6-1: Using ep0 maxpacket: 16
[  504.317053][ T5851] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  504.748846][ T9742] loop1: detected capacity change from 0 to 512
[  504.761636][ T5851] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  504.811426][ T9742] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  504.871736][ T5851] usb 6-1: string descriptor 0 read error: -71
[  504.891667][ T5851] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  504.900990][ T5851] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  504.940783][ T5851] usb 6-1: can't set config #1, error -71
[  504.949922][ T9742] EXT4-fs (loop1): 1 truncate cleaned up
[  504.960747][ T5851] usb 6-1: USB disconnect, device number 5
[  504.987171][ T9742] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  505.024118][   T27] audit: type=1800 audit(1755584400.038:248): pid=9742 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.853" name="file1" dev="loop1" ino=15 res=0 errno=0
[  505.137717][ T9748] netlink: 277 bytes leftover after parsing attributes in process `syz.0.862'.
[  505.353631][ T9750] loop5: detected capacity change from 0 to 32768
[  505.370350][ T9750] 
[  505.370350][ T9750]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  505.370350][ T9750] 
[  507.181335][ T9128] 
[  507.181335][ T9128]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  507.181335][ T9128] 
[  507.205132][ T9128] 
[  507.205132][ T9128]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  507.205132][ T9128] 
[  507.215871][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  509.034570][ T9774] netlink: 184 bytes leftover after parsing attributes in process `syz.5.857'.
[  509.066475][ T9774] bond0: entered allmulticast mode
[  509.077478][ T9776] loop1: detected capacity change from 0 to 764
[  509.084617][ T9774] bond_slave_0: entered allmulticast mode
[  509.090766][ T9774] bond_slave_1: entered allmulticast mode
[  509.159828][ T9776] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  510.388927][ T9785] rdma_op ffff888020f8f9f0 conn xmit_rdma 0000000000000000
[  514.586061][   T28] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  515.486357][ T3472] Bluetooth: hci4: Frame reassembly failed (-84)
[  515.497178][ T3472] Bluetooth: hci4: Frame reassembly failed (-84)
[  515.504084][   T28] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  515.633744][   T28] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  515.643482][   T28] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  515.672268][   T28] usb 2-1: config 0 descriptor??
[  515.723618][   T28] pwc: Askey VC010 type 2 USB webcam detected.
[  516.761464][   T28] pwc: recv_control_msg error -32 req 02 val 2b00
[  516.779606][   T28] pwc: recv_control_msg error -32 req 02 val 2700
[  516.801300][   T28] pwc: recv_control_msg error -32 req 02 val 2c00
[  516.812463][   T28] pwc: recv_control_msg error -32 req 04 val 1000
[  516.853067][ T9843] warning: `syz.3.880' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  517.021291][   T28] pwc: recv_control_msg error -32 req 04 val 1300
[  517.031074][   T28] pwc: recv_control_msg error -32 req 04 val 1400
[  517.040069][   T28] pwc: recv_control_msg error -32 req 02 val 2000
[  517.062327][   T28] pwc: recv_control_msg error -32 req 02 val 2100
[  517.279076][   T28] pwc: recv_control_msg error -32 req 04 val 1500
[  517.311900][   T28] pwc: recv_control_msg error -32 req 02 val 2500
[  517.321647][ T9846] netlink: 'syz.3.880': attribute type 10 has an invalid length.
[  517.381612][   T28] pwc: recv_control_msg error -32 req 02 val 2400
[  517.445548][   T28] pwc: recv_control_msg error -32 req 02 val 2600
[  517.455843][ T5103] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  517.719149][ T9846] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  517.767679][   T28] pwc: recv_control_msg error -71 req 02 val 2800
[  517.859677][   T28] pwc: recv_control_msg error -71 req 04 val 1100
[  517.891277][   T28] pwc: recv_control_msg error -71 req 04 val 1200
[  517.922206][   T28] pwc: Registered as video103.
[  517.939884][   T28] input: PWC snapshot button as /devices/platform/dummy_hcd.1/usb2/2-1/input/input11
[  517.973478][ T9848] netlink: 'syz.0.882': attribute type 1 has an invalid length.
[  518.003531][   T28] usb 2-1: USB disconnect, device number 6
[  518.194632][ T9853] netdevsim netdevsim0 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  518.236333][ T9853] netdevsim netdevsim0 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  518.265530][ T9853] netdevsim netdevsim0 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  518.291382][ T9853] netdevsim netdevsim0 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  518.322971][ T9853] bond1: (slave geneve2): making interface the new active one
[  518.337915][ T9853] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  518.363222][ T9848] netlink: 28 bytes leftover after parsing attributes in process `syz.0.882'.
[  518.385798][ T9848] 8021q: adding VLAN 0 to HW filter on device bond1
[  519.075603][ T9866] netlink: 'syz.3.884': attribute type 1 has an invalid length.
[  519.701944][ T9866] 8021q: adding VLAN 0 to HW filter on device bond1
[  519.861904][ T9864] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  519.900217][ T9864] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  519.914532][ T9864] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  519.933212][ T9864] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  519.982225][ T9864] bond1: (slave geneve2): making interface the new active one
[  520.259268][ T9864] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  521.539866][ T9885] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  522.148081][ T9890] netlink: 8 bytes leftover after parsing attributes in process `syz.5.891'.
[  522.178399][ T9890] netlink: 4 bytes leftover after parsing attributes in process `syz.5.891'.
[  523.664071][ T9902] loop5: detected capacity change from 0 to 764
[  524.906902][ T9902] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  525.962556][ T9922] capability: warning: `syz.5.902' uses 32-bit capabilities (legacy support in use)
[  529.754405][ T9952] netlink: 20 bytes leftover after parsing attributes in process `syz.5.910'.
[  530.733118][ T6072] tipc: Disabling bearer <udp:syz2>
[  530.770532][ T6072] tipc: Left network mode
[  532.584277][ T6072] bond1: (slave ip6erspan0): Releasing active interface
[  532.982051][ T9970] tipc: Started in network mode
[  532.987461][ T9970] tipc: Node identity 0265b563daa5, cluster identity 4711
[  533.003985][ T9970] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  533.305786][ T9972] syzkaller0: entered promiscuous mode
[  533.381687][ T9972] syzkaller0: entered allmulticast mode
[  533.547914][ T9969] tipc: Resetting bearer <eth:syzkaller0>
[  534.260379][ T9631] tipc: Node number set to 3636508003
[  534.412637][ T9969] tipc: Disabling bearer <eth:syzkaller0>
[  537.227287][T10000] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  537.303073][T10000] kvm: pic: non byte read
[  537.333785][T10000] kvm: pic: level sensitive irq not supported
[  537.333861][T10000] kvm: pic: non byte read
[  537.371039][T10013] loop1: detected capacity change from 0 to 512
[  537.391846][T10013] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  537.777792][T10013] EXT4-fs (loop1): failed to open journal device unknown-block(0,0) -6
[  540.255016][ T6072] hsr_slave_0: left promiscuous mode
[  540.286297][ T6072] hsr_slave_1: left promiscuous mode
[  540.732581][ T6072] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  540.766649][ T6072] batman_adv: batadv0: Removing interface: batadv_slave_0
[  540.807622][ T6072] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  540.875397][ T6072] batman_adv: batadv0: Removing interface: batadv_slave_1
[  541.004220][ T6072] bridge_slave_1: left allmulticast mode
[  541.073665][ T6072] bridge_slave_1: left promiscuous mode
[  541.079953][ T6072] bridge0: port 2(bridge_slave_1) entered disabled state
[  541.091549][ T6072] bridge_slave_0: left allmulticast mode
[  541.107437][ T6072] bridge_slave_0: left promiscuous mode
[  541.130143][ T6072] bridge0: port 1(bridge_slave_0) entered disabled state
[  541.256845][ T6072] veth1_macvtap: left promiscuous mode
[  541.262986][ T6072] veth0_macvtap: left promiscuous mode
[  541.276873][ T6072] veth1_vlan: left promiscuous mode
[  541.286973][ T6072] veth0_vlan: left promiscuous mode
[  543.033591][ T6072] bond1 (unregistering): Released all slaves
[  543.174298][ T6072] team0 (unregistering): Port device geneve0 removed
[  547.302107][ T6072] team0 (unregistering): Port device team_slave_1 removed
[  547.520411][ T6072] team0 (unregistering): Port device team_slave_0 removed
[  548.592794][ T6072] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  548.633465][T10069] netlink: 292 bytes leftover after parsing attributes in process `syz.5.937'.
[  548.851030][ T6072] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  552.770053][ T6072] bond0 (unregistering): Released all slaves
[  554.444566][T10108] netlink: 2384 bytes leftover after parsing attributes in process `syz.1.945'.
[  556.806587][T10132] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  558.233277][T10132] syzkaller0: entered promiscuous mode
[  558.244243][T10132] syzkaller0: entered allmulticast mode
[  559.703449][T10134] tipc: Resetting bearer <eth:syzkaller0>
[  559.779910][T10131] tipc: Resetting bearer <eth:syzkaller0>
[  559.841538][T10131] tipc: Disabling bearer <eth:syzkaller0>
[  559.894194][ T6072] IPVS: stop unused estimator thread 0...
[  559.925066][T10140] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  559.952870][T10140] syzkaller0: entered promiscuous mode
[  559.969314][T10140] syzkaller0: entered allmulticast mode
[  560.927755][T10148] tipc: Resetting bearer <eth:syzkaller0>
[  560.947411][T10138] tipc: Resetting bearer <eth:syzkaller0>
[  561.011925][T10138] tipc: Disabling bearer <eth:syzkaller0>
[  561.245068][T10161] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  561.254468][T10161] syzkaller0: entered promiscuous mode
[  561.270415][T10161] syzkaller0: entered allmulticast mode
[  561.355562][T10162] xt_recent: hitcount (16385) is larger than allowed maximum (255)
[  562.062768][T10164] tipc: Resetting bearer <eth:syzkaller0>
[  562.120565][T10160] tipc: Resetting bearer <eth:syzkaller0>
[  562.165048][T10160] tipc: Disabling bearer <eth:syzkaller0>
[  562.565703][T10176] xt_TCPMSS: Only works on TCP SYN packets
[  563.498414][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  563.637113][T10184] xt_socket: unknown flags 0x50
[  564.271034][T10170] kvm: kvm [10167]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x800
[  564.338382][T10186] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  564.368156][T10170] kvm: kvm [10167]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x800
[  564.384076][T10170] kvm: kvm [10167]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x800
[  564.722720][T10196] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  565.987996][T10211] xt_recent: hitcount (16385) is larger than allowed maximum (255)
[  567.706940][T10218] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  570.602836][T10240] kvm: kvm [10238]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x800
[  570.634158][T10240] kvm: kvm [10238]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x800
[  570.667004][T10240] kvm: kvm [10238]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x800
[  570.874924][T10251] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  570.894781][T10251] syzkaller0: entered promiscuous mode
[  570.900442][T10251] syzkaller0: entered allmulticast mode
[  571.021946][T10251] tipc: Resetting bearer <eth:syzkaller0>
[  571.049265][T10250] tipc: Resetting bearer <eth:syzkaller0>
[  571.099925][T10250] tipc: Disabling bearer <eth:syzkaller0>
[  572.124993][ T6372] IPVS: starting estimator thread 0...
[  572.399089][T10272] IPVS: using max 19 ests per chain, 45600 per kthread
[  574.078788][T10291] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  574.106946][T10291] syzkaller0: entered promiscuous mode
[  574.122946][T10291] syzkaller0: entered allmulticast mode
[  574.211969][T10291] tipc: Resetting bearer <eth:syzkaller0>
[  574.253903][T10290] tipc: Resetting bearer <eth:syzkaller0>
[  574.373651][T10290] tipc: Disabling bearer <eth:syzkaller0>
[  575.013305][T10299] kvm: kvm [10298]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x800
[  575.039554][T10299] kvm: kvm [10298]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x800
[  575.058463][T10299] kvm: kvm [10298]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x800
[  577.540290][T10329] overlayfs: failed to clone upperpath
[  577.587816][T10328] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  577.605316][T10328] syzkaller0: entered promiscuous mode
[  577.610950][T10328] syzkaller0: entered allmulticast mode
[  578.375848][T10333] tipc: Resetting bearer <eth:syzkaller0>
[  578.410319][T10327] tipc: Resetting bearer <eth:syzkaller0>
[  578.601892][T10327] tipc: Disabling bearer <eth:syzkaller0>
[  581.363002][T10357] loop1: detected capacity change from 0 to 1024
[  581.428884][T10192] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  587.545055][T10410] loop3: detected capacity change from 0 to 1024
[  590.433966][ T3495] hfsplus: b-tree write err: -5, ino 3
[  590.538027][T10425] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1027'.
[  594.779664][T10459] netlink: 'syz.3.1036': attribute type 1 has an invalid length.
[  594.824649][T10459] 8021q: adding VLAN 0 to HW filter on device bond2
[  595.750763][T10459] bond2: (slave veth3): Enslaving as an active interface with a down link
[  596.062504][T10468] vlan3: entered allmulticast mode
[  596.068102][T10468] macvtap0: entered allmulticast mode
[  596.083198][T10468] bond2: (slave vlan3): Opening slave failed
[  597.172129][T10458] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  597.691834][ T6372] usb 2-1: new full-speed USB device number 7 using dummy_hcd
[  597.955838][ T6372] usb 2-1: config index 0 descriptor too short (expected 149, got 148)
[  598.048395][ T6372] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  598.186259][ T6372] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  598.216610][ T6372] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[  598.248766][ T6372] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  598.294614][ T6372] usb 2-1: SerialNumber: syz
[  598.345785][ T6372] usb 2-1: 0:2 : does not exist
[  598.611310][ T6379] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  599.750698][T10496] xt_CT: You must specify a L4 protocol and not use inversions on it
[  599.881316][ T6379] usb 6-1: Using ep0 maxpacket: 16
[  599.910038][ T6379] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  599.935043][ T6379] usb 6-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  599.949731][ T6379] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  599.959117][ T6379] usb 6-1: Product: syz
[  599.963719][ T6379] usb 6-1: Manufacturer: syz
[  599.968500][ T6379] usb 6-1: SerialNumber: syz
[  600.005280][ T6379] r8152-cfgselector 6-1: config 0 descriptor??
[  601.235097][ T9631] usb 2-1: USB disconnect, device number 7
[  601.363215][ T6379] r8152-cfgselector 6-1: Unknown version 0x0000
[  601.373849][ T6379] r8152-cfgselector 6-1: USB disconnect, device number 6
[  602.557449][T10532] netlink: 'syz.5.1055': attribute type 1 has an invalid length.
[  602.603125][T10532] 8021q: adding VLAN 0 to HW filter on device bond1
[  603.082526][   T27] audit: type=1326 audit(1755584497.948:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10536 comm="syz.3.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183918ebe9 code=0x7fc00000
[  603.273432][   T27] audit: type=1326 audit(1755584497.948:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10536 comm="syz.3.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183918ebe9 code=0x7fc00000
[  603.470150][   T27] audit: type=1326 audit(1755584497.948:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10536 comm="syz.3.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183918ebe9 code=0x7fc00000
[  603.709269][T10532] bond1: (slave ip6erspan0): making interface the new active one
[  603.929598][   T27] audit: type=1326 audit(1755584497.958:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10536 comm="syz.3.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183918ebe9 code=0x7fc00000
[  603.962278][   T27] audit: type=1326 audit(1755584497.958:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10536 comm="syz.3.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183918ebe9 code=0x7fc00000
[  603.973563][T10532] bond1: (slave ip6erspan0): Enslaving as an active interface with an up link
[  604.046782][   T27] audit: type=1326 audit(1755584498.128:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10536 comm="syz.3.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183918ebe9 code=0x7fc00000
[  604.267240][T10546] gretap1: entered promiscuous mode
[  604.293854][   T27] audit: type=1326 audit(1755584498.128:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10536 comm="syz.3.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183918ebe9 code=0x7fc00000
[  604.328265][   T27] audit: type=1326 audit(1755584498.138:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10536 comm="syz.3.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183918ebe9 code=0x7fc00000
[  604.358433][   T27] audit: type=1326 audit(1755584498.148:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10536 comm="syz.3.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183918ebe9 code=0x7fc00000
[  604.383484][T10546] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  604.441143][   T27] audit: type=1326 audit(1755584498.148:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10536 comm="syz.3.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183918ebe9 code=0x7fc00000
[  604.475369][T10532] macvlan2: entered promiscuous mode
[  604.535976][T10532] macvlan2: entered allmulticast mode
[  604.630237][T10532] bond1: entered promiscuous mode
[  604.657185][T10532] ip6erspan0: entered promiscuous mode
[  604.863891][T10532] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  604.882498][T10532] bond1: (slave macvlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  604.910042][T10532] bond1: left promiscuous mode
[  604.920279][T10532] ip6erspan0: left promiscuous mode
[  604.990699][T10554] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1061'.
[  605.063667][T10554] bond_slave_0: entered promiscuous mode
[  605.070375][T10554] bond_slave_1: entered promiscuous mode
[  605.076420][T10554] dummy0: entered promiscuous mode
[  605.126065][T10554] macvtap1: entered promiscuous mode
[  605.134026][T10554] bond0: entered promiscuous mode
[  605.146760][T10554] macvtap1: entered allmulticast mode
[  605.152398][T10554] bond0: entered allmulticast mode
[  605.157983][T10554] bond_slave_0: entered allmulticast mode
[  605.168127][T10554] bond_slave_1: entered allmulticast mode
[  605.175719][T10554] dummy0: entered allmulticast mode
[  605.183374][T10554] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  605.225111][T10556] macvtap1: left promiscuous mode
[  605.230744][T10556] bond0: left promiscuous mode
[  605.236940][T10556] macvtap1: left allmulticast mode
[  605.251488][T10556] bond0: left allmulticast mode
[  605.259275][T10556] bond_slave_0: left allmulticast mode
[  605.279683][T10556] bond_slave_1: left allmulticast mode
[  605.299384][T10556] dummy0: left allmulticast mode
[  609.634943][T10595] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  609.661948][T10595] syzkaller0: entered promiscuous mode
[  609.667597][T10595] syzkaller0: entered allmulticast mode
[  609.802089][T10595] tipc: Resetting bearer <eth:syzkaller0>
[  609.834428][T10594] tipc: Resetting bearer <eth:syzkaller0>
[  610.052895][T10594] tipc: Disabling bearer <eth:syzkaller0>
[  612.779994][   T28] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  612.994258][T10626] netlink: 'syz.0.1083': attribute type 1 has an invalid length.
[  613.044490][T10626] 8021q: adding VLAN 0 to HW filter on device bond2
[  613.075116][T10630] bond2: (slave ip6erspan0): making interface the new active one
[  613.089531][T10630] bond2: (slave ip6erspan0): Enslaving as an active interface with an up link
[  613.111459][   T28] usb 6-1: Using ep0 maxpacket: 16
[  613.149534][   T28] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  613.183153][   T28] usb 6-1: config 0 has no interfaces?
[  613.188926][   T28] usb 6-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  613.246119][   T28] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  613.308101][   T28] usb 6-1: config 0 descriptor??
[  614.004500][T10626] gretap1: entered promiscuous mode
[  614.022682][T10626] bond2: (slave gretap1): Enslaving as an active interface with an up link
[  614.044467][T10630] macvlan2: entered promiscuous mode
[  614.050343][T10630] macvlan2: entered allmulticast mode
[  614.066683][T10630] bond2: entered promiscuous mode
[  614.247976][T10630] ip6erspan0: entered promiscuous mode
[  614.279971][T10630] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  614.388827][T10630] bond2: (slave macvlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  614.732648][T10630] bond2: left promiscuous mode
[  614.737594][T10630] ip6erspan0: left promiscuous mode
[  614.750350][ T9631] usb 6-1: USB disconnect, device number 7
[  618.014276][T10673] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  618.627027][T10652] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1090'.
[  618.722168][T10677] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  618.797170][T10677] syzkaller0: entered promiscuous mode
[  618.812913][T10677] syzkaller0: entered allmulticast mode
[  618.966047][T10677] tipc: Resetting bearer <eth:syzkaller0>
[  618.985485][T10675] tipc: Resetting bearer <eth:syzkaller0>
[  619.049926][T10675] tipc: Disabling bearer <eth:syzkaller0>
[  621.192801][T10709] netlink: 'syz.3.1103': attribute type 2 has an invalid length.
[  621.201732][T10709] netlink: 'syz.3.1103': attribute type 11 has an invalid length.
[  621.218795][T10709] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1103'.
[  624.347568][T10737] dvmrp8: entered allmulticast mode
[  624.897814][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  626.441431][T10749] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  626.476145][T10749] syzkaller0: entered promiscuous mode
[  626.483545][T10749] syzkaller0: entered allmulticast mode
[  626.511305][T10747] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  626.552174][T10755] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  626.559288][T10752] syzkaller0: entered promiscuous mode
[  626.575289][T10752] syzkaller0: entered allmulticast mode
[  626.600110][T10755] syzkaller0: entered promiscuous mode
[  626.631197][T10755] syzkaller0: entered allmulticast mode
[  626.661701][T10751] tipc: Resetting bearer <eth:syzkaller0>
[  626.718086][T10747] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  626.776725][T10747] tipc: Resetting bearer <eth:syzkaller0>
[  626.790938][T10748] tipc: Resetting bearer <eth:syzkaller0>
[  626.832499][T10748] tipc: Disabling bearer <eth:syzkaller0>
[  626.849358][T10755] tipc: Resetting bearer <eth:syzkaller0>
[  626.890601][T10746] tipc: Resetting bearer <eth:syzkaller0>
[  627.012459][T10746] tipc: Disabling bearer <eth:syzkaller0>
[  627.039068][T10754] tipc: Resetting bearer <eth:syzkaller0>
[  627.188323][T10754] tipc: Disabling bearer <eth:syzkaller0>
[  627.571528][ T6372] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  628.622865][ T6372] usb 2-1: Using ep0 maxpacket: 16
[  628.662629][ T6372] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  628.680955][ T6372] usb 2-1: config 0 has no interfaces?
[  628.693175][ T6372] usb 2-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  628.727035][ T6372] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  628.843802][T10777] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  628.853216][T10777] syzkaller0: entered promiscuous mode
[  628.858934][T10777] syzkaller0: entered allmulticast mode
[  628.869124][ T6372] usb 2-1: config 0 descriptor??
[  629.938914][ T6379] tipc: Node number set to 245358275
[  630.084530][T10775] tipc: Resetting bearer <eth:syzkaller0>
[  630.322777][T10775] tipc: Disabling bearer <eth:syzkaller0>
[  630.349697][   T28] usb 2-1: USB disconnect, device number 8
[  638.334438][T10863] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  638.343210][T10863] syzkaller0: entered promiscuous mode
[  638.348766][T10863] syzkaller0: entered allmulticast mode
[  639.127711][T10872] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1146'.
[  639.224850][T10868] tipc: Resetting bearer <eth:syzkaller0>
[  639.380952][T10861] tipc: Resetting bearer <eth:syzkaller0>
[  640.230390][T10861] tipc: Disabling bearer <eth:syzkaller0>
[  640.247139][T10879] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  641.479701][T10894] loop1: detected capacity change from 0 to 4096
[  645.200107][T10937] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  645.252010][T10941] syzkaller0: entered promiscuous mode
[  645.281653][T10941] syzkaller0: entered allmulticast mode
[  645.382618][T10943] loop1: detected capacity change from 0 to 128
[  645.394946][T10943] EXT4-fs: Ignoring removed nobh option
[  645.557502][T10944] tipc: Resetting bearer <eth:syzkaller0>
[  645.875516][T10943] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  645.962960][T10943] ext4 filesystem being mounted at /304/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  646.102894][T10934] tipc: Resetting bearer <eth:syzkaller0>
[  646.273499][ T5785] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  646.406894][T10934] tipc: Disabling bearer <eth:syzkaller0>
[  647.016349][T10954] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  647.063581][T10957] syzkaller0: entered promiscuous mode
[  647.069249][T10957] syzkaller0: entered allmulticast mode
[  647.133627][T10956] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  647.205252][T10956] syzkaller0: entered promiscuous mode
[  647.210794][T10956] syzkaller0: entered allmulticast mode
[  647.305631][T10954] tipc: Resetting bearer <eth:syzkaller0>
[  647.345963][T10953] tipc: Resetting bearer <eth:syzkaller0>
[  647.399859][T10953] tipc: Disabling bearer <eth:syzkaller0>
[  647.431582][T10956] tipc: Resetting bearer <eth:syzkaller0>
[  647.468438][T10955] tipc: Resetting bearer <eth:syzkaller0>
[  647.527898][T10959] syz.0.1167 (10959) used greatest stack depth: 17672 bytes left
[  647.552598][T10955] tipc: Disabling bearer <eth:syzkaller0>
[  647.620245][T10963] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  647.636931][T10963] syzkaller0: entered promiscuous mode
[  647.643986][T10963] syzkaller0: entered allmulticast mode
[  647.707660][T10963] tipc: Resetting bearer <eth:syzkaller0>
[  647.726622][T10961] tipc: Resetting bearer <eth:syzkaller0>
[  648.310241][T10961] tipc: Disabling bearer <eth:syzkaller0>
[  652.164555][T11009] netlink: 'syz.0.1181': attribute type 2 has an invalid length.
[  652.172448][T11009] netlink: 212408 bytes leftover after parsing attributes in process `syz.0.1181'.
[  654.371261][T11030] tipc: Failed to remove unknown binding: 66,1,1/0:481951626/481951628
[  654.387355][T11030] tipc: Failed to remove unknown binding: 66,1,1/0:481951626/481951628
[  654.403435][T11030] tipc: Failed to remove unknown binding: 66,1,1/0:481951626/481951628
[  655.532787][T11026] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1186'.
[  658.089374][T11054] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  665.685329][T11094] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1211'.
[  665.937507][T11094] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1211'.
[  669.410243][T11131] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  669.451001][T11134] loop5: detected capacity change from 0 to 1024
[  670.589020][   T23] tipc: Node number set to 989246166
[  670.595991][T11131] tipc: Resetting bearer <eth:syzkaller0>
[  670.658346][T11139] lo speed is unknown, defaulting to 1000
[  670.665210][T11139] lo speed is unknown, defaulting to 1000
[  670.676343][T11139] lo speed is unknown, defaulting to 1000
[  670.692812][T11139] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  670.713278][T11139] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  670.770839][T11139] lo speed is unknown, defaulting to 1000
[  670.794674][T11139] lo speed is unknown, defaulting to 1000
[  670.803417][T11139] lo speed is unknown, defaulting to 1000
[  670.821602][T11130] tipc: Resetting bearer <eth:syzkaller0>
[  670.875757][T11130] tipc: Disabling bearer <eth:syzkaller0>
[  670.898656][T11139] lo speed is unknown, defaulting to 1000
[  671.930086][T11148] loop1: detected capacity change from 0 to 1024
[  672.684790][T11152] netlink: 'syz.3.1217': attribute type 4 has an invalid length.
[  672.700046][T11148] loop1: detected capacity change from 0 to 256
[  672.721913][T10192] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  672.749972][T11148] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  672.903801][T11156] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1218'.
[  672.924966][T11148] FAT-fs (loop1): Directory bread(block 64) failed
[  672.932103][T11148] FAT-fs (loop1): Directory bread(block 65) failed
[  673.013681][T11148] FAT-fs (loop1): Directory bread(block 66) failed
[  673.052588][T11148] FAT-fs (loop1): Directory bread(block 67) failed
[  673.060080][T11148] FAT-fs (loop1): Directory bread(block 68) failed
[  673.067273][T11148] FAT-fs (loop1): Directory bread(block 69) failed
[  673.072223][T11158] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1218'.
[  673.074350][T11148] FAT-fs (loop1): Directory bread(block 70) failed
[  673.090357][T11148] FAT-fs (loop1): Directory bread(block 71) failed
[  673.099678][T11148] FAT-fs (loop1): Directory bread(block 72) failed
[  673.106742][T11148] FAT-fs (loop1): Directory bread(block 73) failed
[  675.513896][T11178] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  675.566241][T11178] syzkaller0: entered promiscuous mode
[  675.588583][T11178] syzkaller0: entered allmulticast mode
[  675.688758][T11178] tipc: Resetting bearer <eth:syzkaller0>
[  675.719817][T11176] tipc: Resetting bearer <eth:syzkaller0>
[  675.798764][T11176] tipc: Disabling bearer <eth:syzkaller0>
[  677.261554][T11195] loop3: detected capacity change from 0 to 512
[  677.305158][T11195] EXT4-fs: Ignoring removed nomblk_io_submit option
[  677.391953][T11195] EXT4-fs: Ignoring removed nomblk_io_submit option
[  677.438098][T11195] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  677.580895][T11195] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  677.589237][T11195] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2
[  677.609976][T11195] EXT4-fs (loop3): 1 truncate cleaned up
[  677.631647][T11195] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  677.772161][T11195] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  678.065834][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  680.654954][T11228] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  680.663938][T11228] syzkaller0: entered promiscuous mode
[  680.669848][T11228] syzkaller0: entered allmulticast mode
[  680.712777][T11228] tipc: Resetting bearer <eth:syzkaller0>
[  680.837515][T11227] tipc: Resetting bearer <eth:syzkaller0>
[  683.085747][T11227] tipc: Disabling bearer <eth:syzkaller0>
[  683.328350][T11248] netlink: 'syz.5.1239': attribute type 2 has an invalid length.
[  685.161082][T11267] autofs4:pid:11267:autofs_fill_super: called with bogus options
[  687.243213][T11281] xt_CT: You must specify a L4 protocol and not use inversions on it
[  688.548912][T11289] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  688.697122][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  690.408077][T11298] netlink: 'syz.0.1254': attribute type 4 has an invalid length.
[  691.315808][T11305] netlink: 'syz.1.1255': attribute type 2 has an invalid length.
[  697.812692][T11341] loop1: detected capacity change from 0 to 1024
[  698.998331][T11349] lo speed is unknown, defaulting to 1000
[  699.004872][T11349] lo speed is unknown, defaulting to 1000
[  699.026414][T11349] lo speed is unknown, defaulting to 1000
[  699.147763][T11349] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  699.343106][T11349] lo speed is unknown, defaulting to 1000
[  699.367473][T11349] lo speed is unknown, defaulting to 1000
[  699.382841][T11349] lo speed is unknown, defaulting to 1000
[  699.390681][T11349] lo speed is unknown, defaulting to 1000
[  699.760160][T11359] loop3: detected capacity change from 0 to 64
[  701.169416][ T6379] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  701.393521][ T6379] usb 2-1: Using ep0 maxpacket: 32
[  701.418325][ T6379] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  701.433691][ T6379] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.00
[  701.443606][ T6379] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  701.454938][ T6379] usb 2-1: config 0 descriptor??
[  701.668228][T11389] trusted_key: syz.0.1275 sent an empty control message without MSG_MORE.
[  701.937569][ T6379] koneplus 0003:1E7D:2D51.0003: unknown main item tag 0x0
[  701.958922][ T6379] koneplus 0003:1E7D:2D51.0003: unknown main item tag 0x0
[  701.984192][ T6379] koneplus 0003:1E7D:2D51.0003: unknown main item tag 0x0
[  702.001749][ T6379] koneplus 0003:1E7D:2D51.0003: unknown main item tag 0x0
[  702.012057][ T6379] koneplus 0003:1E7D:2D51.0003: unknown main item tag 0x0
[  702.035051][ T6379] koneplus 0003:1E7D:2D51.0003: hidraw0: USB HID v0.00 Device [HID 1e7d:2d51] on usb-dummy_hcd.1-1/input0
[  702.725493][ T6379] koneplus 0003:1E7D:2D51.0003: couldn't init struct koneplus_device
[  702.751755][ T6379] koneplus 0003:1E7D:2D51.0003: couldn't install mouse
[  702.775653][ T6379] koneplus: probe of 0003:1E7D:2D51.0003 failed with error -71
[  702.806831][ T6379] usb 2-1: USB disconnect, device number 9
[  702.828341][T11394] fido_id[11394]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  704.100613][T11401] siw: device registration error -23
[  708.206599][T11428] loop1: detected capacity change from 0 to 8
[  708.219783][T11428] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  708.841689][T10192] udevd[10192]: incorrect cramfs checksum on /dev/loop1
[  709.124709][T11433] program syz.1.1287 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  713.069775][T11466] dummy0: entered promiscuous mode
[  713.076137][T11466] vlan2: entered promiscuous mode
[  714.482514][T11468] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1295'.
[  714.492762][T11475] Device name cannot be null; rc = [-22]
[  714.561963][T11468] vlan2: entered promiscuous mode
[  714.571011][T11468] dummy0: entered promiscuous mode
[  718.075348][T11497] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  719.167387][T11514] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1315'.
[  720.085856][T11519] Device name cannot be null; rc = [-22]
[  720.826555][T11529] UBIFS error (pid: 11529): cannot open "./file0", error -22
[  722.026425][T11541] overlayfs: failed to clone upperpath
[  724.822955][T11545] kvm: kvm [11544]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0xffe80000a01f
[  724.837212][T11545] kvm: kvm [11544]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0xffe8000048b7
[  724.867974][T11545] kvm: kvm [11544]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0xffe800004863
[  724.884676][T11545] kvm: kvm [11544]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0xffe800008e3d
[  724.906901][T11545] kvm: kvm [11544]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0xffe800003b87
[  724.922316][T11545] kvm: kvm [11544]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0xffe800009035
[  724.963209][T11545] kvm_intel: kvm [11544]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0xffe80000b327
[  724.985233][T11545] kvm: kvm [11544]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0xffe800002924
[  730.864934][T11598] loop5: detected capacity change from 0 to 128
[  731.544154][T11598] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  731.557044][T11598] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  733.395804][T11603] Device name cannot be null; rc = [-22]
[  735.440386][T11619] netlink: 'syz.5.1334': attribute type 10 has an invalid length.
[  735.494872][T11619] bridge0: port 2(bridge_slave_1) entered disabled state
[  735.502400][T11619] bridge0: port 1(bridge_slave_0) entered disabled state
[  735.543043][T11619] bridge0: port 2(bridge_slave_1) entered blocking state
[  735.550576][T11619] bridge0: port 2(bridge_slave_1) entered forwarding state
[  735.558180][T11619] bridge0: port 1(bridge_slave_0) entered blocking state
[  735.565613][T11619] bridge0: port 1(bridge_slave_0) entered forwarding state
[  735.600956][T11619] bridge0: entered allmulticast mode
[  735.628445][T11619] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  736.723355][   T27] kauditd_printk_skb: 42 callbacks suppressed
[  736.723371][   T27] audit: type=1326 audit(1755584766.271:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11635 comm="syz.1.1339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5fe38ebe9 code=0x7ffc0000
[  736.783817][   T27] audit: type=1326 audit(1755584766.271:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11635 comm="syz.1.1339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5fe38ebe9 code=0x7ffc0000
[  736.864635][   T27] audit: type=1326 audit(1755584766.318:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11635 comm="syz.1.1339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff5fe38ebe9 code=0x7ffc0000
[  736.939535][   T27] audit: type=1326 audit(1755584766.318:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11635 comm="syz.1.1339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5fe38ebe9 code=0x7ffc0000
[  736.986047][   T27] audit: type=1326 audit(1755584766.318:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11635 comm="syz.1.1339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff5fe38ebe9 code=0x7ffc0000
[  737.138546][   T27] audit: type=1326 audit(1755584766.318:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11635 comm="syz.1.1339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5fe38ebe9 code=0x7ffc0000
[  737.162693][   T27] audit: type=1326 audit(1755584766.318:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11635 comm="syz.1.1339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7ff5fe38ebe9 code=0x7ffc0000
[  737.217592][   T27] audit: type=1326 audit(1755584766.318:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11635 comm="syz.1.1339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5fe38ebe9 code=0x7ffc0000
[  737.958460][   T27] audit: type=1326 audit(1755584766.318:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11635 comm="syz.1.1339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5fe38ebe9 code=0x7ffc0000
[  738.038809][   T27] audit: type=1326 audit(1755584766.337:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11635 comm="syz.1.1339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7ff5fe38ebe9 code=0x7ffc0000
[  741.682150][T11667] loop1: detected capacity change from 0 to 8
[  741.689800][T11667] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  741.939238][T10192] udevd[10192]: incorrect cramfs checksum on /dev/loop1
[  745.821415][T11700] loop1: detected capacity change from 0 to 65
[  745.838850][T11700] BFS-fs: bfs_fill_super(): Superblock is corrupted on loop1
[  746.835753][T11703] loop5: detected capacity change from 0 to 2048
[  746.914734][T11703] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  752.408488][T11735] overlayfs: failed to clone upperpath
[  754.446488][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  754.874313][T11749] loop5: detected capacity change from 0 to 1024
[  755.639137][ T6071] hfsplus: b-tree write err: -5, ino 4
[  755.707406][T11757] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1367'.
[  755.979794][T11764] xt_TCPMSS: Only works on TCP SYN packets
[  758.491080][T11784] netlink: '+}[@': attribute type 10 has an invalid length.
[  758.499184][T11784] netlink: 40 bytes leftover after parsing attributes in process `+}[@'.
[  758.566096][T11784] geneve0: entered promiscuous mode
[  758.576979][T11784] team0: Port device geneve0 added
[  760.413701][T11791] loop5: detected capacity change from 0 to 128
[  760.435609][T11791] EXT4-fs: Ignoring removed nobh option
[  761.347918][T11791] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  761.373388][T11791] ext4 filesystem being mounted at /145/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  762.883227][ T9128] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  764.304530][T11820] loop1: detected capacity change from 0 to 512
[  764.316005][T11820] EXT4-fs: Ignoring removed nobh option
[  764.358795][T11820] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.1384: iget: bad i_size value: 38620345925642
[  764.411356][T11820] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.1384: couldn't read orphan inode 15 (err -117)
[  764.471164][T11820] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  764.996305][T11825] EXT4-fs error (device loop1): ext4_validate_block_bitmap:430: comm syz.1.1384: bg 0: block 5: invalid block bitmap
[  765.053179][T11825] overlayfs: failed to verify origin (/, ino=2, err=-28)
[  765.060864][T11825] overlayfs: failed to verify upper root origin
[  765.408318][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  768.441947][T11844] loop1: detected capacity change from 0 to 512
[  768.507261][T11844] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  768.599375][T11844] EXT4-fs (loop1): 1 truncate cleaned up
[  768.626732][T11844] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  768.658632][   T27] kauditd_printk_skb: 28 callbacks suppressed
[  768.658649][   T27] audit: type=1800 audit(1755584796.148:339): pid=11844 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1389" name="file1" dev="loop1" ino=15 res=0 errno=0
[  770.566378][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  775.982374][T11911] loop5: detected capacity change from 0 to 64
[  776.518105][T11911] MINIX-fs: bad superblock or unable to read bitmaps
[  779.537989][T11936] loop5: detected capacity change from 0 to 512
[  779.621244][T11936] EXT4-fs: Ignoring removed mblk_io_submit option
[  779.708623][T11936] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  779.782908][T11936] EXT4-fs (loop5): DAX unsupported by block device.
[  781.353404][T11942] loop5: detected capacity change from 0 to 1024
[  782.699010][  T145] hfsplus: b-tree write err: -5, ino 4
[  783.590652][T11957] fuse: Bad value for 'fd'
[  784.008574][T11955] loop5: detected capacity change from 0 to 131072
[  784.018009][T11955] F2FS-fs (loop5): Wrong CP boundary, start(512) end(1536) blocks(0)
[  784.026646][T11955] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  784.037312][T11955] F2FS-fs (loop5): invalid crc value
[  784.058655][T11955] F2FS-fs (loop5): Found nat_bits in checkpoint
[  784.117489][T11955] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  784.124956][T11955] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[  784.504161][T11966] netlink: zone id is out of range
[  785.354708][T11976] netlink: 'syz.0.1422': attribute type 1 has an invalid length.
[  786.345554][T11980] bond3: (slave ip6gretap1): Enslaving as a backup interface with an up link
[  786.892927][   T58] bond3: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  786.894391][T11981] 8021q: adding VLAN 0 to HW filter on device bond3
[  788.726500][T11985] bond3 (unregistering): (slave ip6gretap1): Removing an active aggregator
[  788.752484][T11985] bond3 (unregistering): (slave ip6gretap1): Releasing backup interface
[  788.774274][T11985] bond3 (unregistering): Released all slaves
[  790.576109][T12017] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1433'.
[  793.965148][T12039] netlink: 'syz.5.1438': attribute type 1 has an invalid length.
[  796.277086][T12059] loop1: detected capacity change from 0 to 64
[  796.323177][T12053] 8021q: adding VLAN 0 to HW filter on device bond4
[  796.357357][T12053] bond3: (slave bond4): making interface the new active one
[  796.658188][T12053] bond3: (slave bond4): Enslaving as an active interface with an up link
[  796.688896][T12055] bond3: (slave gretap2): Enslaving as a backup interface with an up link
[  797.187479][T12039] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1438'.
[  797.210893][T12039] 8021q: adding VLAN 0 to HW filter on device bond3
[  797.846639][T12076] hub 9-0:1.0: USB hub found
[  797.851690][T12076] hub 9-0:1.0: 1 port detected
[  798.844203][T12083] loop1: detected capacity change from 0 to 512
[  798.853805][T12083] EXT4-fs: Ignoring removed nobh option
[  798.895826][T12083] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  799.015528][T12083] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.1449: iget: bad i_size value: 38620345925642
[  799.046025][T12083] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.1449: couldn't read orphan inode 15 (err -117)
[  799.966748][T12083] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  801.404962][T12088] EXT4-fs error (device loop1): ext4_validate_block_bitmap:430: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[  801.458812][   T58] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 12 with error 28
[  801.518196][   T58] EXT4-fs (loop1): This should not happen!! Data will be lost
[  801.518196][   T58] 
[  801.546361][   T58] EXT4-fs (loop1): Total free blocks count 0
[  801.559667][   T58] EXT4-fs (loop1): Free/Dirty block details
[  801.628474][   T58] EXT4-fs (loop1): free_blocks=0
[  801.641700][   T58] EXT4-fs (loop1): dirty_blocks=12
[  801.653752][   T58] EXT4-fs (loop1): Block reservation details
[  801.666683][   T58] EXT4-fs (loop1): i_reserved_data_blocks=12
[  801.721959][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  805.589448][T12135] loop5: detected capacity change from 0 to 32768
[  805.597113][T12135] XFS: ikeep mount option is deprecated.
[  806.178828][T12135] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  807.423703][T12135] XFS (loop5): Ending clean mount
[  807.436504][T12135] XFS (loop5): Quotacheck needed: Please wait.
[  807.561358][T12135] XFS (loop5): Quotacheck: Done.
[  810.017201][   T27] audit: type=1107 audit(1755584834.827:340): pid=12164 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  812.298605][ T9128] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  813.345816][T12192] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1475'.
[  814.853900][T12208] loop1: detected capacity change from 0 to 512
[  815.051697][T12208] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #2: block 3: comm syz.1.1476: lblock 0 mapped to illegal pblock 3 (length 1)
[  815.085102][T12208] EXT4-fs (loop1): Remounting filesystem read-only
[  815.092100][T12208] EXT4-fs warning (device loop1): dx_probe:823: inode #2: lblock 0: comm syz.1.1476: error -117 reading directory block
[  815.106056][T12208] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[  815.120933][T12208] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  815.410423][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  815.632834][   T27] audit: type=1107 audit(1755584840.084:341): pid=12212 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  816.221159][T12220] loop1: detected capacity change from 0 to 32768
[  816.228978][T12220] XFS: ikeep mount option is deprecated.
[  816.248160][T12220] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  816.310147][T12220] XFS (loop1): Ending clean mount
[  816.325427][T12220] XFS (loop1): Quotacheck needed: Please wait.
[  816.412606][T12220] XFS (loop1): Quotacheck: Done.
[  819.639017][T12246] lo speed is unknown, defaulting to 1000
[  819.674049][T12246] lo speed is unknown, defaulting to 1000
[  819.735249][ T5785] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  819.759417][T12251] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1489'.
[  820.253779][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  821.066906][T12266] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  821.073708][T12266] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  821.098417][T12266] vhci_hcd vhci_hcd.0: Device attached
[  821.121951][T12266] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  821.157442][T12266] vhci_hcd vhci_hcd.0: pdev(1) rhport(2) sockfd(9)
[  821.164046][T12266] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  821.189866][T12266] vhci_hcd vhci_hcd.0: Device attached
[  821.210207][T12272] vhci_hcd vhci_hcd.0: pdev(1) rhport(3) sockfd(11)
[  821.216989][T12272] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  821.249258][T12272] vhci_hcd vhci_hcd.0: Device attached
[  821.331136][T12266] vhci_hcd vhci_hcd.0: pdev(1) rhport(4) sockfd(13)
[  821.337923][T12266] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  821.345544][ T6372] vhci_hcd: vhci_device speed not set
[  821.357043][T12266] vhci_hcd vhci_hcd.0: Device attached
[  821.376842][T12266] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  821.401749][T12266] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  821.438029][ T6372] usb 35-1: new full-speed USB device number 2 using vhci_hcd
[  821.491947][T12275] vhci_hcd: connection closed
[  821.493965][T12273] vhci_hcd: connection closed
[  821.499476][T12267] vhci_hcd: connection reset by peer
[  821.510021][T12270] vhci_hcd: connection closed
[  821.527160][ T6072] vhci_hcd: stop threads
[  821.549190][ T6072] vhci_hcd: release socket
[  821.554625][ T6072] vhci_hcd: disconnect device
[  821.564834][ T6072] vhci_hcd: stop threads
[  821.584296][ T6072] vhci_hcd: release socket
[  821.594085][ T6072] vhci_hcd: disconnect device
[  821.685400][ T6072] vhci_hcd: stop threads
[  821.693461][ T6072] vhci_hcd: release socket
[  821.709304][ T6072] vhci_hcd: disconnect device
[  821.780446][ T6072] vhci_hcd: stop threads
[  821.784799][ T6072] vhci_hcd: release socket
[  821.801303][ T6072] vhci_hcd: disconnect device
[  821.974986][T12282] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1495'.
[  822.864873][T12294] loop1: detected capacity change from 0 to 128
[  822.914202][T12294] EXT4-fs: Ignoring removed nobh option
[  823.017668][T12294] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  823.034804][T12294] ext4 filesystem being mounted at /387/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  823.948252][ T5785] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  825.669896][T12315] loop1: detected capacity change from 0 to 128
[  826.197217][T12315] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  827.054354][T12315] ext4 filesystem being mounted at /388/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  827.245038][ T6372] vhci_hcd: vhci_device speed not set
[  827.860862][ T5785] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  829.642889][T12338] loop5: detected capacity change from 0 to 1024
[  833.162052][   T58] Bluetooth: hci4: Frame reassembly failed (-84)
[  835.197726][ T5103] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  839.899582][T12416] loop1: detected capacity change from 0 to 512
[  839.920128][T12416] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  839.958944][T12416] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ee018, mo2=0002]
[  839.967215][T12416] System zones: 1-12
[  840.008011][T12416] EXT4-fs (loop1): 1 truncate cleaned up
[  840.016032][T12416] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  840.169537][T12420] netlink: 264 bytes leftover after parsing attributes in process `syz.5.1528'.
[  840.197861][T12420] bridge0: port 3(macvlan1) entered blocking state
[  840.387105][T12420] bridge0: port 3(macvlan1) entered disabled state
[  840.405810][T12420] macvlan1: entered allmulticast mode
[  840.411961][T12420] veth1_vlan: entered allmulticast mode
[  840.423948][T12420] macvlan1: entered promiscuous mode
[  840.434015][T12420] bridge0: port 3(macvlan1) entered blocking state
[  840.441027][T12420] bridge0: port 3(macvlan1) entered forwarding state
[  842.687548][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  844.629659][T12444] workqueue: Failed to create a rescuer kthread for wq "ceph-completion": -EINTR
[  849.114632][T12477] loop5: detected capacity change from 0 to 40427
[  849.170265][T12477] F2FS-fs (loop5): invalid crc value
[  849.186541][T12477] F2FS-fs (loop5): Found nat_bits in checkpoint
[  849.226154][T12477] F2FS-fs (loop5): Start checkpoint disabled!
[  849.259448][T12477] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  849.445165][T12484] syz.5.1540: attempt to access beyond end of device
[  849.445165][T12484] loop5: rw=2049, sector=77824, nr_sectors = 984 limit=40427
[  850.001586][   T27] audit: type=1800 audit(1755584871.626:342): pid=12484 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1540" name="file1" dev="loop5" ino=10 res=0 errno=0
[  850.886913][T12480] loop1: detected capacity change from 0 to 2048
[  850.898567][T12480] UDF-fs: bad mount option "" or missing value
[  851.366296][T12494] loop1: detected capacity change from 0 to 1024
[  851.430975][   T48] kworker/u4:3: attempt to access beyond end of device
[  851.430975][   T48] loop5: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  851.724852][   T48] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  852.210565][   T48] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  856.692288][T12524] netlink: 'syz.3.1554': attribute type 10 has an invalid length.
[  856.734242][T12524] netlink: 'syz.3.1554': attribute type 10 has an invalid length.
[  856.791381][T12524] 8021q: adding VLAN 0 to HW filter on device bond0
[  856.895600][T12524] bond0: entered promiscuous mode
[  856.902166][T12524] mac80211_hwsim hwsim3 wlan1: entered promiscuous mode
[  857.856614][T12524] team0: Port device bond0 added
[  860.290617][T12535] loop5: detected capacity change from 0 to 2048
[  860.466059][T12535]  loop5: p1 < > p3
[  860.476904][T12535] loop5: p3 size 134217728 extends beyond EOD, truncated
[  863.320229][T12566] bond0: (slave dummy0): Releasing backup interface
[  863.351269][T12566] dummy0: left promiscuous mode
[  863.398065][T12566] bridge_slave_0: left allmulticast mode
[  863.427580][T12566] bridge_slave_0: left promiscuous mode
[  863.445809][T12566] bridge0: port 1(bridge_slave_0) entered disabled state
[  863.478975][T12566] bridge_slave_1: left allmulticast mode
[  863.498123][T12566] bridge_slave_1: left promiscuous mode
[  863.520027][T12566] bridge0: port 2(bridge_slave_1) entered disabled state
[  863.788684][T12566] bond0: (slave bond_slave_0): Releasing backup interface
[  863.806964][T12566] bond_slave_0: left promiscuous mode
[  863.833249][T12566] bond0: (slave bond_slave_1): Releasing backup interface
[  864.070662][T12566] bond_slave_1: left promiscuous mode
[  864.501858][T12566] team_slave_0: left promiscuous mode
[  864.574465][T12566] team0: Port device team_slave_0 removed
[  864.592232][T12566] team_slave_1: left promiscuous mode
[  864.616049][T12566] team0: Port device team_slave_1 removed
[  864.644154][T12566] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  864.656199][T12566] batman_adv: batadv0: Removing interface: batadv_slave_0
[  864.708233][T12566] team0: Port device gretap1 removed
[  864.748357][T12566] bond1: (slave veth3): Releasing backup interface
[  864.784079][T12566] bond2: (slave ip6erspan0): Releasing active interface
[  864.814952][T12568] team0: Mode changed to "loadbalance"
[  865.024313][T12574] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1566'.
[  865.068168][T12574] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1566'.
[  865.311726][T12576] netlink: 'syz.5.1566': attribute type 10 has an invalid length.
[  865.320655][T12576] bridge0: port 4(team0) entered blocking state
[  865.333868][T12576] bridge0: port 4(team0) entered disabled state
[  865.342212][T12576] team0: entered allmulticast mode
[  865.353024][T12576] team_slave_0: entered allmulticast mode
[  865.360634][T12576] team_slave_1: entered allmulticast mode
[  865.373466][T12576] team0: entered promiscuous mode
[  865.381162][T12576] team_slave_0: entered promiscuous mode
[  865.392708][T12576] team_slave_1: entered promiscuous mode
[  865.403905][T12576] bridge0: port 4(team0) entered blocking state
[  865.411057][T12576] bridge0: port 4(team0) entered forwarding state
[  866.128373][T12594] loop5: detected capacity change from 0 to 2048
[  866.160324][T12594] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  866.286644][T12594] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  868.827058][T12617] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1576'.
[  868.854626][T12617] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1576'.
[  868.878008][T12617] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1576'.
[  868.879433][ T9128] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  872.388295][T12648] loop5: detected capacity change from 0 to 512
[  876.557330][T12663] GUP no longer grows the stack in syz.1.1586 (12663): 200000005000-200000008000 (200000004000)
[  876.568735][T12663] CPU: 0 PID: 12663 Comm: syz.1.1586 Not tainted 6.6.102-syzkaller #0
[  876.577201][T12663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  876.587384][T12663] Call Trace:
[  876.590879][T12663]  <TASK>
[  876.593931][T12663]  dump_stack_lvl+0x16c/0x230
[  876.598652][T12663]  ? show_regs_print_info+0x20/0x20
[  876.603990][T12663]  ? load_image+0x3b0/0x3b0
[  876.608520][T12663]  ? find_vma+0x12e/0x1b0
[  876.613005][T12663]  fixup_user_fault+0x652/0x710
[  876.617923][T12663]  fault_in_user_writeable+0x71/0xe0
[  876.623277][T12663]  futex_lock_pi+0x21b/0x8d0
[  876.627923][T12663]  ? fixup_pi_state_owner+0x5c0/0x5c0
[  876.633388][T12663]  ? userfaultfd_unmap_prep+0x3d0/0x3d0
[  876.639168][T12663]  ? mas_find_setup+0x493/0x590
[  876.644352][T12663]  do_futex+0x23d/0x3e0
[  876.648559][T12663]  ? __ia32_sys_get_robust_list+0x90/0x90
[  876.654431][T12663]  __se_sys_futex+0x36f/0x3f0
[  876.659164][T12663]  ? __x64_sys_futex+0xf0/0xf0
[  876.663977][T12663]  ? __x64_sys_futex+0x21/0xf0
[  876.668789][T12663]  do_syscall_64+0x55/0xb0
[  876.673249][T12663]  ? clear_bhb_loop+0x40/0x90
[  876.678152][T12663]  ? clear_bhb_loop+0x40/0x90
[  876.682972][T12663]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  876.688980][T12663] RIP: 0033:0x7ff5fe38ebe9
[  876.693540][T12663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  876.713386][T12663] RSP: 002b:00007ff5ff180038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  876.722306][T12663] RAX: ffffffffffffffda RBX: 00007ff5fe5b6090 RCX: 00007ff5fe38ebe9
[  876.730570][T12663] RDX: 00000000fffffffd RSI: 000000000000008d RDI: 0000200000004000
[  876.738774][T12663] RBP: 00007ff5fe411e19 R08: 0000000000000000 R09: 0000000000000000
[  876.747238][T12663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  876.755958][T12663] R13: 00007ff5fe5b6128 R14: 00007ff5fe5b6090 R15: 00007ffc6bbee238
[  876.764187][T12663]  </TASK>
[  876.785438][T12666] lo speed is unknown, defaulting to 1000
[  876.792308][T12666] lo speed is unknown, defaulting to 1000
[  876.861514][T12663] lo speed is unknown, defaulting to 1000
[  876.869578][T12663] lo speed is unknown, defaulting to 1000
[  878.153507][T12675] loop5: detected capacity change from 0 to 16
[  878.180206][T12675] MTD: Attempt to mount non-MTD device "/dev/loop5"
[  880.289337][T12691] IPVS: length: 209 != 24
[  880.406837][T12682] bond0: (slave bridge0): Releasing backup interface
[  880.438993][T12682] bridge0: left allmulticast mode
[  880.453893][T12682] bridge0: port 4(team0) entered disabled state
[  880.460572][T12682] bridge0: port 3(macvlan1) entered disabled state
[  880.467426][T12682] bridge0: port 2(bridge_slave_1) entered disabled state
[  880.474798][T12682] bridge0: port 1(bridge_slave_0) entered disabled state
[  880.490667][T12682] team0: left allmulticast mode
[  880.498120][T12682] team_slave_0: left allmulticast mode
[  880.505809][T12682] team_slave_1: left allmulticast mode
[  880.511370][T12682] team0: left promiscuous mode
[  880.516611][T12682] team_slave_0: left promiscuous mode
[  880.522399][T12682] team_slave_1: left promiscuous mode
[  880.528622][T12682] bridge0: port 4(team0) entered disabled state
[  880.541274][T12682] bridge_slave_0: left allmulticast mode
[  880.557491][T12682] bridge0: port 1(bridge_slave_0) entered disabled state
[  880.582156][T12682] bridge_slave_1: left allmulticast mode
[  880.588232][T12682] bridge_slave_1: left promiscuous mode
[  880.611926][T12682] bridge0: port 2(bridge_slave_1) entered disabled state
[  880.623477][T12682] macvlan1: left promiscuous mode
[  880.654018][T12682] bond0: (slave bond_slave_0): Releasing backup interface
[  880.676816][T12682] bond_slave_0: left allmulticast mode
[  880.724829][T12682] bond0: (slave bond_slave_1): Releasing backup interface
[  880.747169][T12682] bond_slave_1: left allmulticast mode
[  880.823749][T12682] team0: Port device team_slave_0 removed
[  880.870932][T12682] team0: Port device team_slave_1 removed
[  880.910680][T12682] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  880.918310][T12682] batman_adv: batadv0: Removing interface: batadv_slave_0
[  880.957779][T12682] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  880.966092][T12682] batman_adv: batadv0: Removing interface: batadv_slave_1
[  880.991608][T12682] macvlan1: left allmulticast mode
[  881.006213][T12682] veth1_vlan: left allmulticast mode
[  881.012063][T12682] bridge0: port 3(macvlan1) entered disabled state
[  881.099895][T12682] bond1: (slave ip6erspan0): Releasing active interface
[  881.116899][T12682] bond1: (slave ip6erspan0): the permanent HWaddr of slave - 52:71:f8:d3:9d:47 - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  881.154728][T12682] bond1: (slave gretap1): making interface the new active one
[  881.183210][T12682] bond1: (slave gretap1): Releasing active interface
[  881.216389][T12682] bond3: (slave bond4): Releasing backup interface
[  881.225242][T12682] bond3: (slave bond4): the permanent HWaddr of slave - ba:e9:b9:41:bf:5f - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  881.248582][T12682] bond3: (slave gretap2): making interface the new active one
[  881.282623][T12682] bond3: (slave gretap2): Releasing backup interface
[  881.368008][T12682] syz.5.1590 (12682) used greatest stack depth: 16784 bytes left
[  882.894486][T12710] loop1: detected capacity change from 0 to 1024
[  882.941409][T12710] EXT4-fs (loop1): first meta block group too large: 33024 (group descriptor block count 1)
[  883.028958][T12717] loop5: detected capacity change from 0 to 1024
[  885.005041][T12732] loop5: detected capacity change from 0 to 128
[  885.748616][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  886.716118][T12741] gtp0: entered promiscuous mode
[  888.427944][T12755] overlayfs: failed to clone lowerpath
[  889.310665][T12766] geneve0: left promiscuous mode
[  889.349350][T12766] team0: Port device geneve0 removed
[  889.390764][T12766] bond0: (slave wlan1): Releasing backup interface
[  889.415505][T12766] bond1: (slave geneve2): Releasing active interface
[  889.621053][T12774] loop5: detected capacity change from 0 to 512
[  890.368681][T12774] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  890.493265][T12766] netdevsim netdevsim0 netdevsim0: unset [1, 1] type 2 family 0 port 20000 - 0
[  890.559597][T12774] EXT4-fs (loop5): 1 truncate cleaned up
[  890.567157][T12774] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  890.620026][T12766] netdevsim netdevsim0 netdevsim1: unset [1, 1] type 2 family 0 port 20000 - 0
[  890.638572][T12766] netdevsim netdevsim0 netdevsim2: unset [1, 1] type 2 family 0 port 20000 - 0
[  890.914074][T12766] netdevsim netdevsim0 netdevsim3: unset [1, 1] type 2 family 0 port 20000 - 0
[  891.513942][T12766] bond2: (slave ip6erspan0): Releasing active interface
[  891.541729][T12766] bond2: (slave ip6erspan0): the permanent HWaddr of slave - 76:42:40:c7:a5:e2 - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  891.565788][T12766] bond2: (slave gretap1): making interface the new active one
[  891.597972][T12766] bond2: (slave gretap1): Releasing active interface
[  891.658396][T12768] team0: Mode changed to "loadbalance"
[  892.197387][T12785] netlink: 'syz.0.1614': attribute type 1 has an invalid length.
[  892.930104][    C1] ------------[ cut here ]------------
[  892.936046][    C1] WARNING: CPU: 1 PID: 12770 at net/mac80211/tx.c:5031 __ieee80211_beacon_get+0x1233/0x1600
[  892.941146][T12790] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1616'.
[  892.946788][    C1] Modules linked in:
[  892.958862][   T42] ------------[ cut here ]------------
[  892.960412][    C1] CPU: 1 PID: 12770 Comm: syz.5.1618 Not tainted 6.6.102-syzkaller #0
[  892.960439][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  892.966666][   T42] WARNING: CPU: 0 PID: 42 at net/mac80211/chan.c:92 ieee80211_vif_use_reserved_switch+0x10e8/0x28f0
[  892.974921][    C1] RIP: 0010:__ieee80211_beacon_get+0x1233/0x1600
[  892.974972][    C1] Code: 24 4c 89 e7 e8 fe 37 d5 f7 45 31 f6 4c 8b bc 24 a0 00 00 00 e9 7a fe ff ff e8 89 12 98 f7 0f 0b e9 f6 f7 ff ff e8 7d 12 98 f7 <0f> 0b e9 48 fb ff ff e8 71 12 98 f7 48 c7 c7 c0 00 24 8e 4c 89 e6
[  892.974990][    C1] RSP: 0018:ffffc900001f0a18 EFLAGS: 00010246
[  892.975010][    C1] RAX: ffffffff89ed78a3 RBX: ffffffff89ed66a6 RCX: ffff88801877bc00
[  892.975028][    C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  892.986139][   T42] Modules linked in:
[  892.996673][    C1] RBP: 0000000000000000 R08: ffff88801877bc00 R09: 0000000000000003
[  892.996697][    C1] R10: 0000000000000007 R11: 0000000000000100 R12: ffff888068ef63c0
[  892.996715][    C1] R13: dffffc0000000000 R14: ffff888068ef68b0 R15: ffff88805f75e824
[  892.996734][    C1] FS:  00007faf55e046c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  892.996754][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  892.996773][    C1] CR2: 0000200000e41030 CR3: 000000002d53a000 CR4: 00000000003506e0
[  893.003261][   T42] 
[  893.023204][    C1] Call Trace:
[  893.023221][    C1]  <IRQ>
[  893.023238][    C1]  ? __ieee80211_beacon_get+0x36/0x1600
[  893.023293][    C1]  ieee80211_beacon_get_tim+0xb8/0x560
[  893.023336][    C1]  ? ieee80211_beacon_get_template_ema_list+0x90/0x90
[  893.023388][    C1]  mac80211_hwsim_beacon_tx+0x3c7/0x780
[  893.029756][   T42] CPU: 0 PID: 42 Comm: kworker/u4:2 Not tainted 6.6.102-syzkaller #0
[  893.037984][    C1]  __iterate_interfaces+0x243/0x500
[  893.038020][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[  893.038052][    C1]  ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[  893.038083][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[  893.038112][    C1]  ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
[  893.038146][    C1]  mac80211_hwsim_beacon+0xbb/0x1b0
[  893.038177][    C1]  __hrtimer_run_queues+0x51e/0xc40
[  893.038213][    C1]  ? hw_scan_work+0xf40/0xf40
[  893.038249][    C1]  ? hrtimer_interrupt+0x9c0/0x9c0
[  893.038273][    C1]  ? ktime_get_update_offsets_now+0x3d2/0x3f0
[  893.038313][    C1]  hrtimer_run_softirq+0x187/0x2b0
[  893.047915][   T42] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  893.050393][    C1]  handle_softirqs+0x280/0x820
[  893.058654][   T42] Workqueue: phy16 ieee80211_csa_finalize_work
[  893.066817][    C1]  ? __irq_exit_rcu+0xc7/0x190
[  893.066855][    C1]  ? do_softirq+0x180/0x180
[  893.074921][   T42] 
[  893.074935][   T42] RIP: 0010:ieee80211_vif_use_reserved_switch+0x10e8/0x28f0
[  893.084069][    C1]  __irq_exit_rcu+0xc7/0x190
[  893.090748][   T42] Code: 48 89 df e8 ca b4 ea f7 e9 dc fc ff ff e8 b0 6d 93 f7 eb 24 e8 a9 6d 93 f7 c7 04 24 f4 ff ff ff e9 e4 f5 ff ff e8 98 6d 93 f7 <0f> 0b 0f 0b e9 cf f5 ff ff e8 8a 6d 93 f7 48 8b 7c 24 08 4c 8b 7c
[  893.099160][    C1]  ? irq_exit_rcu+0x20/0x20
[  893.099207][    C1]  irq_exit_rcu+0x9/0x20
[  893.099228][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  893.099262][    C1]  </IRQ>
[  893.099270][    C1]  <TASK>
[  893.099281][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  893.099320][    C1] RIP: 0010:__unix_dgram_recvmsg+0x108/0xd60
[  893.101675][   T42] RSP: 0018:ffffc90000b2f9c0 EFLAGS: 00010293
[  893.105245][    C1] Code: e8 6d d0 62 f8 44 89 f8 83 e0 01 75 50 48 89 5c 24 78 44 89 fe 83 e6 40 31 ff e8 53 d0 62 f8 44 89 f8 83 e0 40 4c 89 74 24 28 <4c> 89 6c 24 38 44 89 7c 24 34 75 31 e8 87 cc 62 f8 49 8d 9e 50 04
[  893.108344][   T42] 
[  893.114338][    C1] RSP: 0018:ffffc9000e8bf700 EFLAGS: 00000246
[  893.120138][   T42] RAX: ffffffff89f2198e RBX: 0000000000000001 RCX: ffff88801c659e00
[  893.127625][    C1] 
[  893.127641][    C1] RAX: 0000000000000000 RBX: ffff888078ad6600 RCX: 0000000000000002
[  893.133444][   T42] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  893.141738][    C1] RDX: ffff88801877bc00 RSI: 0000000000000000 RDI: 0000000000000000
[  893.141760][    C1] RBP: ffffc9000e8bf898 R08: ffffc9000e8bf9ff R09: 0000000000000000
[  893.141778][    C1] R10: ffffc9000e8bf980 R11: fffff52001d17f40 R12: dffffc0000000000
[  893.147071][   T42] RBP: dffffc0000000000 R08: ffff888068ef55af R09: 1ffff1100d1deab5
[  893.153672][    C1] R13: 1ffff92001d17ef0 R14: ffff888024d38800 R15: 0000000000000002
[  893.153733][    C1]  ? unix_unhash+0x10/0x10
[  893.153768][    C1]  ? verify_lock_unused+0x140/0x140
[  893.153796][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[  893.153835][    C1]  ? exc_page_fault+0x8f/0x110
[  893.153878][    C1]  ? mark_lock+0x94/0x320
[  893.153905][    C1]  ? unix_dgram_recvmsg+0xad/0xd0
[  893.153935][    C1]  ? unix_dgram_sendmsg+0x1720/0x1720
[  893.161837][   T42] R10: dffffc0000000000 R11: ffffed100d1deab6 R12: 0000000000000001
[  893.168005][    C1]  sock_recvmsg_nosec+0x82/0xd0
[  893.175309][   T42] R13: ffff888068ef65d9 R14: ffff8880617c2c70 R15: ffff8880617c2ce8
[  893.180645][    C1]  ____sys_recvmsg+0x49b/0x5b0
[  893.186317][   T42] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  893.190902][    C1]  ? __sys_recvmsg_sock+0x50/0x50
[  893.196207][   T42] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  893.202316][    C1]  ? import_iovec+0x73/0xa0
[  893.207466][   T42] CR2: 000000110c344f4b CR3: 000000006ce3c000 CR4: 00000000003506f0
[  893.217857][    C1]  ___sys_recvmsg+0x1b6/0x510
[  893.222747][   T42] Call Trace:
[  893.222763][   T42]  <TASK>
[  893.229387][    C1]  ? __sys_recvmsg+0x270/0x270
[  893.234249][   T42]  ieee80211_link_use_reserved_context+0x383/0x5c0
[  893.238809][    C1]  ? __lock_acquire+0x7c80/0x7c80
[  893.241138][   T42]  ieee80211_csa_finalize+0x59a/0xf00
[  893.248547][    C1]  ? __might_fault+0xc6/0x120
[  893.248570][    C1]  ? __might_fault+0xaa/0x120
[  893.253249][   T42]  ? mutex_lock_nested+0x20/0x20
[  893.273110][    C1]  do_recvmmsg+0x360/0x7d0
[  893.273168][    C1]  ? __sys_recvmmsg+0x280/0x280
[  893.273212][    C1]  ? __ia32_sys_get_robust_list+0x90/0x90
[  893.273233][    C1]  ? rcu_read_lock_sched_held+0x8a/0x100
[  893.273274][    C1]  __x64_sys_recvmmsg+0x191/0x240
[  893.273310][    C1]  ? do_recvmmsg+0x7d0/0x7d0
[  893.273344][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[  893.273379][    C1]  do_syscall_64+0x55/0xb0
[  893.273403][    C1]  ? clear_bhb_loop+0x40/0x90
[  893.273426][    C1]  ? clear_bhb_loop+0x40/0x90
[  893.277956][   T42]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  893.282457][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  893.282495][    C1] RIP: 0033:0x7faf54f8ebe9
[  893.282515][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  893.282533][    C1] RSP: 002b:00007faf55e04038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  893.288197][   T42]  ? ieee80211_csa_finalize_work+0x140/0x140
[  893.291342][    C1] RAX: ffffffffffffffda RBX: 00007faf551b6090 RCX: 00007faf54f8ebe9
[  893.291361][    C1] RDX: 03fffffffffffeda RSI: 00002000000000c0 RDI: 0000000000000004
[  893.291378][    C1] RBP: 00007faf55011e19 R08: 0000000000000000 R09: 0000000000000000
[  893.294528][   T42]  ? read_lock_is_recursive+0x20/0x20
[  893.300671][    C1] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  893.300692][    C1] R13: 00007faf551b6128 R14: 00007faf551b6090 R15: 00007ffdf7e2bce8
[  893.300727][    C1]  </TASK>
[  893.306913][   T42]  ieee80211_csa_finalize_work+0xf6/0x140
[  893.313105][    C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  893.313119][    C1] CPU: 1 PID: 12770 Comm: syz.5.1618 Not tainted 6.6.102-syzkaller #0
[  893.313140][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  893.313153][    C1] Call Trace:
[  893.313166][    C1]  <IRQ>
[  893.313175][    C1]  dump_stack_lvl+0x16c/0x230
[  893.313210][    C1]  ? show_regs_print_info+0x20/0x20
[  893.313240][    C1]  ? load_image+0x3b0/0x3b0
[  893.313293][    C1]  panic+0x2c0/0x710
[  893.313334][    C1]  ? bpf_jit_dump+0xd0/0xd0
[  893.313386][    C1]  __warn+0x2e0/0x470
[  893.313412][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[  893.313447][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[  893.313482][    C1]  report_bug+0x2be/0x4f0
[  893.313510][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[  893.313546][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[  893.313581][    C1]  ? __ieee80211_beacon_get+0x1235/0x1600
[  893.313617][    C1]  handle_bug+0xcf/0x120
[  893.313653][    C1]  exc_invalid_op+0x1a/0x50
[  893.313682][    C1]  asm_exc_invalid_op+0x1a/0x20
[  893.313718][    C1] RIP: 0010:__ieee80211_beacon_get+0x1233/0x1600
[  893.313756][    C1] Code: 24 4c 89 e7 e8 fe 37 d5 f7 45 31 f6 4c 8b bc 24 a0 00 00 00 e9 7a fe ff ff e8 89 12 98 f7 0f 0b e9 f6 f7 ff ff e8 7d 12 98 f7 <0f> 0b e9 48 fb ff ff e8 71 12 98 f7 48 c7 c7 c0 00 24 8e 4c 89 e6
[  893.313776][    C1] RSP: 0018:ffffc900001f0a18 EFLAGS: 00010246
[  893.313797][    C1] RAX: ffffffff89ed78a3 RBX: ffffffff89ed66a6 RCX: ffff88801877bc00
[  893.313815][    C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  893.313830][    C1] RBP: 0000000000000000 R08: ffff88801877bc00 R09: 0000000000000003
[  893.313845][    C1] R10: 0000000000000007 R11: 0000000000000100 R12: ffff888068ef63c0
[  893.313861][    C1] R13: dffffc0000000000 R14: ffff888068ef68b0 R15: ffff88805f75e824
[  893.313884][    C1]  ? __ieee80211_beacon_get+0x36/0x1600
[  893.313921][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[  893.313963][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[  893.314000][    C1]  ? __ieee80211_beacon_get+0x36/0x1600
[  893.314046][    C1]  ieee80211_beacon_get_tim+0xb8/0x560
[  893.314086][    C1]  ? ieee80211_beacon_get_template_ema_list+0x90/0x90
[  893.314136][    C1]  mac80211_hwsim_beacon_tx+0x3c7/0x780
[  893.314176][    C1]  __iterate_interfaces+0x243/0x500
[  893.314203][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[  893.314232][    C1]  ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[  893.314264][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[  893.314292][    C1]  ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
[  893.314327][    C1]  mac80211_hwsim_beacon+0xbb/0x1b0
[  893.314357][    C1]  __hrtimer_run_queues+0x51e/0xc40
[  893.314392][    C1]  ? hw_scan_work+0xf40/0xf40
[  893.314428][    C1]  ? hrtimer_interrupt+0x9c0/0x9c0
[  893.314452][    C1]  ? ktime_get_update_offsets_now+0x3d2/0x3f0
[  893.314492][    C1]  hrtimer_run_softirq+0x187/0x2b0
[  893.314524][    C1]  handle_softirqs+0x280/0x820
[  893.314553][    C1]  ? __irq_exit_rcu+0xc7/0x190
[  893.314582][    C1]  ? do_softirq+0x180/0x180
[  893.314617][    C1]  __irq_exit_rcu+0xc7/0x190
[  893.314640][    C1]  ? irq_exit_rcu+0x20/0x20
[  893.314677][    C1]  irq_exit_rcu+0x9/0x20
[  893.314698][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  893.314733][    C1]  </IRQ>
[  893.314741][    C1]  <TASK>
[  893.314750][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  893.314786][    C1] RIP: 0010:__unix_dgram_recvmsg+0x108/0xd60
[  893.314815][    C1] Code: e8 6d d0 62 f8 44 89 f8 83 e0 01 75 50 48 89 5c 24 78 44 89 fe 83 e6 40 31 ff e8 53 d0 62 f8 44 89 f8 83 e0 40 4c 89 74 24 28 <4c> 89 6c 24 38 44 89 7c 24 34 75 31 e8 87 cc 62 f8 49 8d 9e 50 04
[  893.314834][    C1] RSP: 0018:ffffc9000e8bf700 EFLAGS: 00000246
[  893.314853][    C1] RAX: 0000000000000000 RBX: ffff888078ad6600 RCX: 0000000000000002
[  893.314869][    C1] RDX: ffff88801877bc00 RSI: 0000000000000000 RDI: 0000000000000000
[  893.314885][    C1] RBP: ffffc9000e8bf898 R08: ffffc9000e8bf9ff R09: 0000000000000000
[  893.314900][    C1] R10: ffffc9000e8bf980 R11: fffff52001d17f40 R12: dffffc0000000000
[  893.314917][    C1] R13: 1ffff92001d17ef0 R14: ffff888024d38800 R15: 0000000000000002
[  893.314972][    C1]  ? unix_unhash+0x10/0x10
[  893.314998][    C1]  ? verify_lock_unused+0x140/0x140
[  893.315025][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[  893.315059][    C1]  ? exc_page_fault+0x8f/0x110
[  893.315100][    C1]  ? mark_lock+0x94/0x320
[  893.315125][    C1]  ? unix_dgram_recvmsg+0xad/0xd0
[  893.315154][    C1]  ? unix_dgram_sendmsg+0x1720/0x1720
[  893.315187][    C1]  sock_recvmsg_nosec+0x82/0xd0
[  893.315220][    C1]  ____sys_recvmsg+0x49b/0x5b0
[  893.315274][    C1]  ? __sys_recvmsg_sock+0x50/0x50
[  893.315326][    C1]  ? import_iovec+0x73/0xa0
[  893.315377][    C1]  ___sys_recvmsg+0x1b6/0x510
[  893.315417][    C1]  ? __sys_recvmsg+0x270/0x270
[  893.315476][    C1]  ? __lock_acquire+0x7c80/0x7c80
[  893.315511][    C1]  ? __might_fault+0xc6/0x120
[  893.315531][    C1]  ? __might_fault+0xaa/0x120
[  893.315556][    C1]  do_recvmmsg+0x360/0x7d0
[  893.315601][    C1]  ? __sys_recvmmsg+0x280/0x280
[  893.315653][    C1]  ? __ia32_sys_get_robust_list+0x90/0x90
[  893.315675][    C1]  ? rcu_read_lock_sched_held+0x8a/0x100
[  893.315719][    C1]  __x64_sys_recvmmsg+0x191/0x240
[  893.315757][    C1]  ? do_recvmmsg+0x7d0/0x7d0
[  893.315793][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[  893.315830][    C1]  do_syscall_64+0x55/0xb0
[  893.315855][    C1]  ? clear_bhb_loop+0x40/0x90
[  893.315875][    C1]  ? clear_bhb_loop+0x40/0x90
[  893.315900][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  893.315935][    C1] RIP: 0033:0x7faf54f8ebe9
[  893.315955][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  893.315975][    C1] RSP: 002b:00007faf55e04038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  893.315999][    C1] RAX: ffffffffffffffda RBX: 00007faf551b6090 RCX: 00007faf54f8ebe9
[  893.316016][    C1] RDX: 03fffffffffffeda RSI: 00002000000000c0 RDI: 0000000000000004
[  893.316031][    C1] RBP: 00007faf55011e19 R08: 0000000000000000 R09: 0000000000000000
[  893.316046][    C1] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  893.316060][    C1] R13: 00007faf551b6128 R14: 00007faf551b6090 R15: 00007ffdf7e2bce8
[  893.316097][    C1]  </TASK>
[  893.333454][    C1] Kernel Offset: disabled