last executing test programs:

10m27.990778105s ago: executing program 1 (id=15):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r4}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @broadcast})

10m26.227466241s ago: executing program 1 (id=18):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
bpf$OBJ_GET_PROG(0x7, &(0x7f00000009c0)=@generic={&(0x7f0000000980)='./file1\x00', 0x0, 0x10}, 0x18)
pipe2$9p(0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000300)='mm_page_alloc\x00'}, 0x18)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="0300000000000000000000040000000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000000)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x4e}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x18)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_MCAST_MSFILTER(r3, 0x29, 0x30, 0x0, 0x5000)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/profiling', 0xa0042, 0x0)
write$tcp_mem(r4, &(0x7f0000000280)={0x11, 0x2d, 0x0, 0x3a, 0xfffffffffffffffe, 0x2c}, 0x48)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r6=>0xffffffffffffffff})
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
splice(r6, 0x0, r7, 0x0, 0x7, 0x9)
write$P9_RWRITE(r7, &(0x7f0000000040)={0xb}, 0x11000)
r8 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
readv(r8, &(0x7f0000000100), 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00'}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$tipc(0x1e, 0x2, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz1\x00', {0x3, 0x2, 0x200, 0xfffa}, 0x3a, [0x8000, 0x3, 0xf, 0x8, 0x80, 0x2, 0x3, 0x7f, 0x20000006, 0x20000000, 0x6, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x5, 0x4, 0x0, 0x7, 0x3c1b, 0x1, 0x24, 0xd, 0x1, 0x0, 0xffffffff, 0xe661, 0x8, 0x7, 0x3, 0x8, 0x4c74, 0x80000000, 0x242, 0x3, 0xe, 0x0, 0x8071, 0x7, 0x6, 0xffffffff, 0x7, 0x5, 0x3e, 0x8f, 0x6, 0x6, 0x0, 0x5, 0x4, 0x8, 0x3ff, 0x1, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x8004, 0x5, 0xfffffff3, 0x129432e2, 0xc8, 0xf9, 0xe, 0x2bf, 0x1, 0x9, 0xfffffffc, 0x4, 0x14001, 0x0, 0xd, 0x2f, 0xe, 0x6, 0x78, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f31, 0x1000d, 0x4e0, 0x2, 0x4, 0xb, 0x4, 0x9, 0x4, 0xd, 0xffff8001, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x9, 0x3, 0x3, 0x9, 0x1, 0x3, 0x3, 0xbc45, 0x48c93690, 0x42, 0x3], [0x5, 0x408, 0x4, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0xd, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x303c, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x24, 0x6d01, 0x6, 0x38, 0x800003, 0x200, 0x83, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0xa9, 0x5, 0x6, 0xac8, 0xc0, 0x4002, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x3, 0x80a2e9, 0x4, 0x25], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x8, 0x6, 0x6, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x6, 0x5, 0x3, 0x0, 0x10000, 0x9, 0x7fff, 0xffff, 0x7, 0x1, 0x78b, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x5, 0x4, 0xc8, 0x1, 0xfffff000, 0x5, 0x3, 0x7e, 0x100, 0x9602, 0x7, 0xaf, 0x8, 0x6, 0x4000226, 0x5, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xf44, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1e, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c)

10m23.109745072s ago: executing program 1 (id=23):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000000)=0x1000, 0x4)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'wg0\x00', <r3=>0x0})
setsockopt$packet_int(r2, 0x107, 0x14, &(0x7f0000000080)=0x8000, 0x4)
sendto$packet(r2, &(0x7f0000000180)="0b03feff4f00020002004788aa96a13bb1000011000088ca1a00", 0x1fffc, 0x0, &(0x7f0000000140)={0x11, 0x0, r3}, 0x14)

10m21.482381949s ago: executing program 1 (id=28):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xf, &(0x7f0000000440)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@local, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x2b, 0x0, 0x0, 0x0, 0x2, 0x0, @rand_addr, @multicast1}, @address_request}}}}, 0x0)

10m19.845998074s ago: executing program 1 (id=32):
r0 = socket(0x1e, 0x4, 0x0)
openat$uhid(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000018010000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r1 = getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r5, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xf}}, 0x10)
sendmmsg$inet(r5, &(0x7f0000001480)=[{{&(0x7f0000000100)={0x2, 0x6e20, @multicast1}, 0x10, 0x0}}], 0x1, 0x2000c044)
sendto$inet(r5, &(0x7f0000000c80)="e8", 0x6200, 0x12000000, 0x0, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmmsg(r0, 0x0, 0x0, 0x9200000000000000)

10m15.970719612s ago: executing program 1 (id=37):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[], 0x0, 0x7ff}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r3}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

9m58.771490709s ago: executing program 32 (id=37):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[], 0x0, 0x7ff}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r3}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

9m31.932568712s ago: executing program 3 (id=82):
socketpair$unix(0x1, 0x1, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x1fffffffffffffcd, 0x0, 0x0, 0x2010000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x18)
utimes(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x200, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
request_key(&(0x7f0000000440)='keyring\x00', &(0x7f0000000480)={'syz', 0x3}, 0x0, 0xfffffffffffffffc)
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x88, &(0x7f0000000140)={[{@nogrpid}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@errors_remount}, {@nodiscard}, {@quota}]}, 0x3, 0x438, &(0x7f0000000580)="$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")
sendmmsg$unix(r3, &(0x7f0000000ec0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x18, 0x80000}}], 0x1, 0x80)

9m20.859347443s ago: executing program 3 (id=87):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000300)=ANY=[], 0x80}, 0x1, 0x0, 0x0, 0x4000850}, 0x24044010)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8e37f3", 0x14, 0x2c, 0x0, @remote, @local, {[], {{0x1100, 0x5, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

9m19.161329137s ago: executing program 3 (id=91):
r0 = creat(&(0x7f00000005c0)='./file0\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r1}, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r3, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r4 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@dev, @in=@empty, 0x0, 0x0, 0x1, 0x4, 0xa}, {0xbd1, 0x0, 0x3}, {0x81, 0x2}, 0x2000000, 0x0, 0x1}, {{@in6=@ipv4={'\x00', '\xff\xff', @local}, 0x8000, 0x33}, 0x0, @in6=@empty, 0x0, 0x3, 0x0, 0x7, 0x0, 0x0, 0x10000}}, 0xe8)
sendmmsg(r4, &(0x7f0000000480), 0x2e9, 0xffe0)
close(0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[], 0x48)
mount$9p_fd(0x0, &(0x7f0000000800)='./file0\x00', &(0x7f00000007c0), 0x0, &(0x7f0000000ac0)=ANY=[@ANYBLOB="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", @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB=',\x00'])
pipe2$9p(&(0x7f00000001c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
r7 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000000180)={0x0, <r8=>0x0}, &(0x7f00000001c0)=0xc)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', 0x0, 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@dfltuid={'dfltuid', 0x3d, r8}}]}})
fstat(r2, &(0x7f0000002c80))
r9 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r9, 0x89f1, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x80, 0x0, 0x0, 0xfffffffd, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @dev={0xac, 0x14, 0x14, 0x2a}}}}})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r9, 0x89f3, &(0x7f0000000940)={'syztnl0\x00', &(0x7f0000000140)={'syztnl1\x00', 0x0, 0x8, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @local}}}})

9m16.594563701s ago: executing program 3 (id=93):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000340)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@usrquota}]}, 0x1, 0x520, &(0x7f0000000380)="$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")
r1 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_hci_HCI_DATA_DIR(r2, 0x0, 0x1, &(0x7f0000000280)=0x7, 0x4)
ftruncate(r1, 0x2007ffc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r4 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
sendmsg$nl_route_sched(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x4}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
sendfile(r1, r1, 0x0, 0x800000009)

9m14.590421818s ago: executing program 3 (id=98):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000a50000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syslog(0x4, &(0x7f0000000000)=""/19, 0xb12288e90d7c8384)

9m12.850772758s ago: executing program 3 (id=101):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000660000000000"], 0x0, 0x7ff}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r3}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

8m56.973101251s ago: executing program 33 (id=101):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000660000000000"], 0x0, 0x7ff}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r3}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

8m28.006990628s ago: executing program 0 (id=148):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r0, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000300)={[{@init_itable_val}, {@stripe={'stripe', 0x3d, 0x2}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@noinit_itable}, {@minixdf}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x105042, 0x40)
write$cgroup_subtree(r2, 0x0, 0x32600)

8m24.239545531s ago: executing program 0 (id=149):
memfd_create(&(0x7f0000000000)='\x103q}2\x9a\xce\xaf\x03\xdfy[\xd9\xffR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1d\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\x15RJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd9DC\x9fF\x9c[M=\xe0^\xa8\xed)\xe8Z\xe8\x99&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xcb\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6;\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97[\xb7\xfa', 0x2)
socket(0x10, 0x2, 0x0)
pipe(&(0x7f0000000480))
socket$netlink(0x10, 0x3, 0x0)
openat$vimc0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$l2tp6(0xa, 0x2, 0x73)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6_sctp(0xa, 0x801, 0x84)
socket$igmp(0x2, 0x3, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0xc)
socket$inet6_udplite(0xa, 0x2, 0x88)
pipe(&(0x7f0000000080))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000440))
socket$pppoe(0x18, 0x1, 0x0)
pipe(&(0x7f00000003c0))
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000001c0)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800050000fcffff08000900fc000000080011000700000008000e00800000000800", @ANYRES32=r0], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)

8m20.221855356s ago: executing program 0 (id=152):
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x6, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000001700000085000000070000009500000000000000839c791759c07fc52aa27f546073bb373d719bee763784c8eeb56761f8a1c24b8724eac4de"], 0x0, 0x4}, 0x94)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000100)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x40, 0x46d, 0xc294, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x50, 0x9, [{{0x9, 0x4, 0x0, 0x6, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x6, 0x4, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x20, 0x20, 0x0, 0xf7}}}}}]}}]}}, 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$CAN_RAW_LOOPBACK(r2, 0x65, 0x3, &(0x7f0000000680), &(0x7f00000006c0)=0x4)

8m16.185556282s ago: executing program 0 (id=156):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x800, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a, 0x2})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000440)="97713b46fbaa2b1044f2d408ffca802db4d770eb9874f493e0ef367e4bde497c403b450c72ff2417d079bb892435a1e107fa5c0ecd207d9e6f2a209bf148e6bc56955cb53347d1499097488fcad724a1"})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000300)={0x4c, 0x0, &(0x7f0000000140)=[@reply_sg={0x40486312, {0x0, 0x0, 0x0, 0x0, 0xa26b1a4fb20b8820, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

8m15.763046499s ago: executing program 0 (id=157):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="380000000201010400000000000000000a02000a0800034000000406080015"], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x60)

8m11.030880798s ago: executing program 0 (id=159):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x601c2, 0x0)
ftruncate(r1, 0x8800000)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_group_source_req(r2, 0x0, 0x2e, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000240), 0x36, 0xcc800)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000c}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xc0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
openat$cgroup_procs(r0, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)

7m53.955349714s ago: executing program 34 (id=159):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x601c2, 0x0)
ftruncate(r1, 0x8800000)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_group_source_req(r2, 0x0, 0x2e, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000240), 0x36, 0xcc800)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000c}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xc0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
openat$cgroup_procs(r0, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)

5m6.759035054s ago: executing program 2 (id=331):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

5m6.209402654s ago: executing program 2 (id=333):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x40, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})

5m5.414845525s ago: executing program 2 (id=334):
unshare(0x6a040000)
r0 = socket$inet6(0xa, 0x1, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000e40)=@base={0xb, 0xe, 0x200cc, 0x6, 0x5}, 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x2, r1}, 0x38)

5m4.125271715s ago: executing program 2 (id=337):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'bridge0\x00', <r1=>0x0})
sendto$packet(r0, 0x0, 0x0, 0x4040, &(0x7f0000000540)={0xc9, 0xf7, r1, 0x1, 0xd7, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1c}}, 0x14)

5m3.53684649s ago: executing program 2 (id=339):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x2}, 0x18)
r1 = openat$sysfs(0xffffff9c, &(0x7f00000037c0)='/sys/kernel/notes', 0x0, 0x0)
r2 = syz_io_uring_setup(0xbdc, &(0x7f0000000080)={0x0, 0xec21, 0x80, 0x1, 0x40000333}, &(0x7f0000000340)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r1, 0x0, &(0x7f0000000600)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1})
io_uring_enter(r2, 0x847ba, 0x2000, 0xe, 0x0, 0x0)

5m1.946816684s ago: executing program 2 (id=341):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000020000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x18)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
syz_clone(0x41200100, 0x0, 0x0, 0x0, 0x0, 0x0)

4m46.317284036s ago: executing program 35 (id=341):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000020000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x18)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
syz_clone(0x41200100, 0x0, 0x0, 0x0, 0x0, 0x0)

2m2.113982426s ago: executing program 7 (id=662):
capset(&(0x7f0000000b00)={0x19980330}, &(0x7f0000000000))
r0 = socket$tipc(0x1e, 0x2, 0x0)
r1 = socket$tipc(0x1e, 0x2, 0x0)
r2 = dup3(r0, r1, 0x0)
setsockopt$TIPC_GROUP_LEAVE(r2, 0x10f, 0x88)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r2, 0x89fb, &(0x7f0000000600)={'sit0\x00', 0x0})

2m0.935204329s ago: executing program 7 (id=665):
r0 = socket$key(0xf, 0x3, 0x2)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x531, &(0x7f0000000640)="$eJzs3cFvI1cZAPBvnDib7GabFDhApZZCi7IVrJ00tI04lCIhOFVClPsSEieK4sRR7LSbqILsX4CEECBxggsXJP4AJLQSF44IqRKcQSoCIdiCBAfoINvjJDjjxFuceNf5/aTZeW/GM9/3vHnjGc/TOIAr69mIeC0i3k/T9IWImMmWF7IpDttT83XvPXh7pTklkaZv/DWJJFvW2VeSzW9km01GxFe/HPGN5HTc+v7B5nK1WtnN6uXG1k65vn9we2Nreb2yXtleXFx4eemVpZeW5gfSzpsR8eoX//i9b//kS6/+4jNv/eHOn299s5nWdLb+ZDse0vhZK9tNL16b7Npg9wMGexQ121PsVKb62+beBeYDAEBvzXP8D0XEJyPihZiJsbNPZwEAAIDHUPr56fh3EpHmm+ixHAAAAHiMFFpjYJNCKRsLMB2FQqnUHsP7kbheqNbqjU+v1fa2V9tjZWejWFjbqFbms7HCs1FMmvWFVvm4/mJXfTEinoyI785MteqllVp1ddhffgAAAMAVcaPr+v8fM+3rfwAAAGDEzA47AQAAAODCuf4HAACA0ef6HwAAAEbaV15/vTmlnd+/Xn1zf2+z9ubt1Up9s7S1t1Jaqe3ulNZrtfXWM/u2zttftVbb+Wxs790tNyr1Rrm+f3Bnq7a33bizEZOX0iAAAADglCc/fv93SUQcfm6qNTVNDDsp4FKMH5WSbJ7T+3//RHv+7iUlBVyKsT5e8+61/OXOE+DxNt69oEdfB0ZPcdgJAEOXnLO+5+CdX2fzTww2HwAAYPDmPpZ///+864GIw8IlpAdcIJ0Yrq6u+//pzLASAS5d6/5/vwN5nCzASCn2NQIQGGX/9/3/c6XpQyUEAAAM3HRrSgql7Ou96SgUSqWIm62fBSgmaxvVynxEPBERv50pXmvWF1pbJn2MEQAAAAAAAAAAAAAAAAAAAAAAAAAAovVU7iRSAAAAYKRFFP6U/LL9LP+5meenu78fmEj+1fpJ4ImIeOuHb3z/7nKjsbvQXP63o+WNH2TLXxzGNxgAAABAt851emv+z2FnAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMCoee/B2yudqY+XTw0q7l++EBGzefHHY7I1n4xiRFz/exLjJ7ZLImJsAPEP70XER/PiJ820jkLmxR/Em3BO/JjN3oW8+DcGEB+usvvN489ref2vEM+25vn9bzzif+ofVO/jXxwd/8Z69P+bfcZ46p2flXvGvxfx1Hj+8acTP+kR/7k+43/9awcHvdalP4qY63z+tI54JyMcl8qNrZ1yff/g9sbW8nplvbK9uLjw8tIrSy8tzZfXNqqV7N/cGN95+ufvn9X+67mff0mWTe/2P5+zv7zPpP+8c/fBhzuVw9Pxbz2XE/9XP85ecTp+IYvzqazcXD/XKR+2yyc989PfPHNW+1eP2198mP//W7122u1UR3m63z8dAOAC1PcPNper1cruyBaaV+mPQBoKj2DhWwPdYZqmabNP5ay6HxH97CeJAbe0kJ/PcaHnEWDYRyYAAGDQjk/6h50JAAAAAAAAAAAAAAAAAAAAXF2X8ZS17pjHj0BOBvEIbQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAgfhvAAAA//89e9P5")
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000004c0)='kfree\x00', r1}, 0xe)
sendmsg$key(r0, &(0x7f0000000400)={0x10000000, 0x0, &(0x7f0000000040)={&(0x7f0000000840)=ANY=[@ANYBLOB="020e0080150000000000000000000000030005000000000002004e24ac1e00010000000000000000030006003c000000020000fc34000000000000000000000001001800000000000800120000000200fcffffff000000000600330000000000000000000000eafffd8000000000000000000000000000aa000000000000000000000000000000000400"], 0xa8}}, 0x2)

1m59.432100484s ago: executing program 7 (id=672):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
capset(&(0x7f0000000380)={0x20071026, r0}, &(0x7f00000003c0)={0x200, 0x548, 0x5, 0x8, 0xfffeffff, 0xbd7})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="01000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x1d, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r5 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r5, &(0x7f0000000a00)={'syz1\x00', {0x9, 0x7, 0x5, 0x5}, 0x3f, [0x9, 0x2, 0x8, 0x2, 0x5334, 0x400, 0x80000000, 0x5, 0x8, 0x0, 0x6, 0xf3, 0xfffffffb, 0x39, 0x747d5e13, 0x8, 0xfffffb9a, 0xfffffffc, 0x4, 0xfffffffb, 0x4, 0x3, 0x4, 0xf252, 0x80, 0x800, 0x300000, 0x7, 0x11, 0x4623f, 0x6, 0x0, 0x1ff, 0x8000, 0xfffffffe, 0x3, 0xd, 0x3, 0xba55, 0x8da8, 0x2, 0x200, 0x2, 0x400008, 0xe, 0x4, 0x2, 0xde, 0x8, 0x9, 0x1, 0x199f, 0xa, 0x2, 0x9, 0xffffffff, 0x4, 0x6, 0x1000, 0x5, 0x40, 0x9, 0xa, 0x5], [0x6, 0x1e, 0x3, 0x8000, 0xfffffffe, 0x3, 0x0, 0x25, 0x7, 0xfffffffc, 0x4, 0x7fff, 0x72c, 0x1c33, 0x3, 0x5, 0x10000, 0x400, 0x8001, 0x3, 0x1, 0x297, 0x5, 0x0, 0x985, 0x4, 0x8, 0x3ff, 0x0, 0xfffffffe, 0x0, 0x1000001, 0x10, 0xfffffff9, 0xfffffffd, 0x9, 0x1, 0xffffffff, 0x6, 0x5, 0x800, 0xffff, 0x6, 0x96, 0xfffffff9, 0x2, 0x0, 0x2, 0x401, 0xc, 0x3, 0x379, 0x9, 0xe, 0x5, 0x7, 0x6, 0x2, 0x1, 0x1, 0x8, 0x6, 0x200, 0xffffffff], [0x401, 0xc584, 0xffff, 0xcd3, 0x7, 0x20, 0x404, 0x4, 0x8, 0x10, 0x7, 0x9, 0xe8b, 0x9, 0x80000001, 0x8, 0x3f92, 0x1000, 0x2, 0x10, 0x1, 0xfffffff9, 0xe55, 0x1000, 0x80000001, 0x4, 0xff, 0x5, 0x200003, 0x2, 0x5, 0x80, 0x9, 0x8001, 0x47, 0x0, 0x3, 0x4, 0x3, 0x6d7e, 0x3, 0x8, 0x3, 0xbf23, 0x6, 0x9, 0x95e, 0x0, 0x3ff, 0x3, 0x6, 0x100fffd, 0x2005, 0x9, 0x4, 0xea, 0x9, 0x20000005, 0x6, 0xd9, 0x5, 0x7d, 0x401, 0x5], [0x108e, 0xffff, 0x3, 0x3, 0x88, 0x2, 0x6, 0x4, 0x50, 0x2, 0x763, 0xb, 0x402, 0x800, 0x5, 0x1000, 0x7f, 0x5, 0x3fa6, 0x7, 0x0, 0x5, 0x1e2, 0x4, 0xe47, 0x3, 0x3, 0x4, 0x200, 0x1000, 0x3b, 0x20000002, 0x5, 0x800, 0xa80a, 0x65f413f9, 0xfffffff8, 0x20008, 0x8a8, 0x2, 0x800, 0x409, 0x7, 0x4, 0x4, 0x10, 0x4, 0x0, 0x7fff, 0x8, 0x8, 0x401, 0x1, 0x1fd, 0x7, 0x4edf, 0xfffffffd, 0xa, 0xe, 0x2, 0xf, 0xf, 0x136, 0x6]}, 0x45c)
ioctl$UI_DEV_CREATE(r5, 0x5501)
readv(r5, &(0x7f0000001240)=[{&(0x7f00000012c0)=""/41, 0x29}], 0x1)

1m55.055110151s ago: executing program 7 (id=680):
r0 = socket$kcm(0xf, 0x3, 0x2)
sendmsg$inet(r0, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="020a000202000000e4a17c45c8d260", 0xf}], 0x1}, 0x0)

1m54.011296782s ago: executing program 7 (id=685):
r0 = io_uring_setup(0x5594, &(0x7f0000000100)={0x0, 0x10000000, 0x1, 0x1, 0x1d2})
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000002c0)=[{0x0}], 0x1)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f0000000240)={0x4, 0x0, &(0x7f0000000040)=[{&(0x7f0000002700)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/18, 0x13}, {0x0, 0xfffffe06}], &(0x7f0000000080), 0x3}, 0x20)

1m53.163275312s ago: executing program 7 (id=690):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
capset(&(0x7f0000000380)={0x20071026}, &(0x7f00000003c0)={0x200, 0x548, 0x5, 0x8, 0xfffeffff, 0xbd7})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="01000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x1d, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r4, &(0x7f0000000a00)={'syz1\x00', {0x9, 0x7, 0x5, 0x5}, 0x3f, [0x9, 0x2, 0x8, 0x2, 0x5334, 0x400, 0x80000000, 0x5, 0x8, 0x0, 0x6, 0xf3, 0xfffffffb, 0x39, 0x747d5e13, 0x8, 0xfffffb9a, 0xfffffffc, 0x4, 0xfffffffb, 0x4, 0x3, 0x4, 0xf252, 0x80, 0x800, 0x300000, 0x7, 0x11, 0x4623f, 0x6, 0x0, 0x1ff, 0x8000, 0xfffffffe, 0x3, 0xd, 0x3, 0xba55, 0x8da8, 0x2, 0x200, 0x2, 0x400008, 0xe, 0x4, 0x2, 0xde, 0x8, 0x9, 0x1, 0x199f, 0xa, 0x2, 0x9, 0xffffffff, 0x4, 0x6, 0x1000, 0x5, 0x40, 0x9, 0xa, 0x5], [0x6, 0x1e, 0x3, 0x8000, 0xfffffffe, 0x3, 0x0, 0x25, 0x7, 0xfffffffc, 0x4, 0x7fff, 0x72c, 0x1c33, 0x3, 0x5, 0x10000, 0x400, 0x8001, 0x3, 0x1, 0x297, 0x5, 0x0, 0x985, 0x4, 0x8, 0x3ff, 0x0, 0xfffffffe, 0x0, 0x1000001, 0x10, 0xfffffff9, 0xfffffffd, 0x9, 0x1, 0xffffffff, 0x6, 0x5, 0x800, 0xffff, 0x6, 0x96, 0xfffffff9, 0x2, 0x0, 0x2, 0x401, 0xc, 0x3, 0x379, 0x9, 0xe, 0x5, 0x7, 0x6, 0x2, 0x1, 0x1, 0x8, 0x6, 0x200, 0xffffffff], [0x401, 0xc584, 0xffff, 0xcd3, 0x7, 0x20, 0x404, 0x4, 0x8, 0x10, 0x7, 0x9, 0xe8b, 0x9, 0x80000001, 0x8, 0x3f92, 0x1000, 0x2, 0x10, 0x1, 0xfffffff9, 0xe55, 0x1000, 0x80000001, 0x4, 0xff, 0x5, 0x200003, 0x2, 0x5, 0x80, 0x9, 0x8001, 0x47, 0x0, 0x3, 0x4, 0x3, 0x6d7e, 0x3, 0x8, 0x3, 0xbf23, 0x6, 0x9, 0x95e, 0x0, 0x3ff, 0x3, 0x6, 0x100fffd, 0x2005, 0x9, 0x4, 0xea, 0x9, 0x20000005, 0x6, 0xd9, 0x5, 0x7d, 0x401, 0x5], [0x108e, 0xffff, 0x3, 0x3, 0x88, 0x2, 0x6, 0x4, 0x50, 0x2, 0x763, 0xb, 0x402, 0x800, 0x5, 0x1000, 0x7f, 0x5, 0x3fa6, 0x7, 0x0, 0x5, 0x1e2, 0x4, 0xe47, 0x3, 0x3, 0x4, 0x200, 0x1000, 0x3b, 0x20000002, 0x5, 0x800, 0xa80a, 0x65f413f9, 0xfffffff8, 0x20008, 0x8a8, 0x2, 0x800, 0x409, 0x7, 0x4, 0x4, 0x10, 0x4, 0x0, 0x7fff, 0x8, 0x8, 0x401, 0x1, 0x1fd, 0x7, 0x4edf, 0xfffffffd, 0xa, 0xe, 0x2, 0xf, 0xf, 0x136, 0x6]}, 0x45c)
ioctl$UI_DEV_CREATE(r4, 0x5501)
readv(r4, &(0x7f0000001240)=[{&(0x7f00000012c0)=""/41, 0x29}], 0x1)

1m35.820478784s ago: executing program 36 (id=690):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
capset(&(0x7f0000000380)={0x20071026}, &(0x7f00000003c0)={0x200, 0x548, 0x5, 0x8, 0xfffeffff, 0xbd7})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="01000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x1d, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r4, &(0x7f0000000a00)={'syz1\x00', {0x9, 0x7, 0x5, 0x5}, 0x3f, [0x9, 0x2, 0x8, 0x2, 0x5334, 0x400, 0x80000000, 0x5, 0x8, 0x0, 0x6, 0xf3, 0xfffffffb, 0x39, 0x747d5e13, 0x8, 0xfffffb9a, 0xfffffffc, 0x4, 0xfffffffb, 0x4, 0x3, 0x4, 0xf252, 0x80, 0x800, 0x300000, 0x7, 0x11, 0x4623f, 0x6, 0x0, 0x1ff, 0x8000, 0xfffffffe, 0x3, 0xd, 0x3, 0xba55, 0x8da8, 0x2, 0x200, 0x2, 0x400008, 0xe, 0x4, 0x2, 0xde, 0x8, 0x9, 0x1, 0x199f, 0xa, 0x2, 0x9, 0xffffffff, 0x4, 0x6, 0x1000, 0x5, 0x40, 0x9, 0xa, 0x5], [0x6, 0x1e, 0x3, 0x8000, 0xfffffffe, 0x3, 0x0, 0x25, 0x7, 0xfffffffc, 0x4, 0x7fff, 0x72c, 0x1c33, 0x3, 0x5, 0x10000, 0x400, 0x8001, 0x3, 0x1, 0x297, 0x5, 0x0, 0x985, 0x4, 0x8, 0x3ff, 0x0, 0xfffffffe, 0x0, 0x1000001, 0x10, 0xfffffff9, 0xfffffffd, 0x9, 0x1, 0xffffffff, 0x6, 0x5, 0x800, 0xffff, 0x6, 0x96, 0xfffffff9, 0x2, 0x0, 0x2, 0x401, 0xc, 0x3, 0x379, 0x9, 0xe, 0x5, 0x7, 0x6, 0x2, 0x1, 0x1, 0x8, 0x6, 0x200, 0xffffffff], [0x401, 0xc584, 0xffff, 0xcd3, 0x7, 0x20, 0x404, 0x4, 0x8, 0x10, 0x7, 0x9, 0xe8b, 0x9, 0x80000001, 0x8, 0x3f92, 0x1000, 0x2, 0x10, 0x1, 0xfffffff9, 0xe55, 0x1000, 0x80000001, 0x4, 0xff, 0x5, 0x200003, 0x2, 0x5, 0x80, 0x9, 0x8001, 0x47, 0x0, 0x3, 0x4, 0x3, 0x6d7e, 0x3, 0x8, 0x3, 0xbf23, 0x6, 0x9, 0x95e, 0x0, 0x3ff, 0x3, 0x6, 0x100fffd, 0x2005, 0x9, 0x4, 0xea, 0x9, 0x20000005, 0x6, 0xd9, 0x5, 0x7d, 0x401, 0x5], [0x108e, 0xffff, 0x3, 0x3, 0x88, 0x2, 0x6, 0x4, 0x50, 0x2, 0x763, 0xb, 0x402, 0x800, 0x5, 0x1000, 0x7f, 0x5, 0x3fa6, 0x7, 0x0, 0x5, 0x1e2, 0x4, 0xe47, 0x3, 0x3, 0x4, 0x200, 0x1000, 0x3b, 0x20000002, 0x5, 0x800, 0xa80a, 0x65f413f9, 0xfffffff8, 0x20008, 0x8a8, 0x2, 0x800, 0x409, 0x7, 0x4, 0x4, 0x10, 0x4, 0x0, 0x7fff, 0x8, 0x8, 0x401, 0x1, 0x1fd, 0x7, 0x4edf, 0xfffffffd, 0xa, 0xe, 0x2, 0xf, 0xf, 0x136, 0x6]}, 0x45c)
ioctl$UI_DEV_CREATE(r4, 0x5501)
readv(r4, &(0x7f0000001240)=[{&(0x7f00000012c0)=""/41, 0x29}], 0x1)

56.870910986s ago: executing program 6 (id=805):
r0 = io_uring_setup(0x5594, &(0x7f0000000100)={0x0, 0x10000000, 0x1, 0x1, 0x1d2})
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f0000000240)={0x4, 0x0, &(0x7f0000000040)=[{&(0x7f0000002700)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/18, 0x12}], &(0x7f0000000080), 0x2}, 0x20)

52.487117664s ago: executing program 6 (id=811):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b70300000009000085000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000200)='sched_switch\x00', r0, 0x0, 0x10000000000000}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="940000000001010400000000000000000a0000003c0001802c000180140003000000000000000000000000000000000014000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000cc14000400fe8000000000000000000000000000aa0c0002800500010000000000080007"], 0x94}}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)={0x14, 0x2, 0x1, 0x5, 0x0, 0x0, {0x2, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x20044804}, 0x40040)

50.41251652s ago: executing program 6 (id=813):
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_sctp(0xa, 0x801, 0x84)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xe, 0x4, 0x8, 0x1}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r3}, &(0x7f0000000240), &(0x7f00000003c0)}, 0x20)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r4, r1, 0x25, 0x2, @void}, 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000440)={@random="871000bb00", @multicast, @val={@void, {0x8100, 0x0, 0x1, 0x4}}, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x2, 0x7, 0x24, 0x65, 0x0, 0x9, 0x21, 0x0, @broadcast, @local}, {{0x4e22, 0x4e20, 0x4, 0x1, 0xb, 0x0, 0x0, 0x6, 0x1, "196b36", 0x2, "3571a4"}}}}}}, 0x0)

48.223224255s ago: executing program 6 (id=816):
r0 = socket$kcm(0x21, 0x2, 0xa)
sendmsg$kcm(r0, 0x0, 0xfc00)
r1 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r1, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r2 = socket$kcm(0x21, 0x2, 0xa)
sendmsg$kcm(r2, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0xfc00)

47.183234729s ago: executing program 6 (id=820):
r0 = io_uring_setup(0x5594, &(0x7f0000000100)={0x0, 0x10000000, 0x1, 0x1, 0x1d2})
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f0000000240)={0x4, 0x0, &(0x7f0000000040)=[{&(0x7f0000002700)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/18, 0x12}], &(0x7f0000000080), 0x2}, 0x20)

44.878685416s ago: executing program 6 (id=826):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
flock(0xffffffffffffffff, 0x5)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000009c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
write$UHID_INPUT(r5, &(0x7f0000001040)={0xc, {"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", 0x1000}}, 0x1006)

29.071607613s ago: executing program 37 (id=826):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
flock(0xffffffffffffffff, 0x5)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000009c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
write$UHID_INPUT(r5, &(0x7f0000001040)={0xc, {"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", 0x1000}}, 0x1006)

7.748680008s ago: executing program 5 (id=911):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)=@newtfilter={0x64, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, r2, {0x0, 0x7}, {}, {0xa, 0xfff3}}, [@filter_kind_options=@f_flower={{0xb}, {0x34, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x18, 0x55, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x14, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_HWID={0x5, 0x4, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x2}]}]}, @TCA_FLOWER_KEY_ENC_OPTS={0x18, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x14, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_INDEX={0x8, 0x2, 0x100c}]}]}]}}]}, 0x64}, 0x1, 0x0, 0x0, 0x22044028}, 0x0)

7.290337181s ago: executing program 4 (id=912):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0100000004000000080000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f00000004c0)={[{@acl}, {@barrier}, {@barrier_val}, {@nobarrier}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nodelalloc}, {@acl}, {@noinit_itable}]}, 0xf8, 0x587, &(0x7f0000002100)="$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")
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000a80)='./file1\x00', 0x8, &(0x7f00000008c0)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@sb={'sb', 0x3d, 0x64}}, {@orlov}, {@quota}, {@data_err_abort}, {@nomblk_io_submit}]}, 0x66, 0x50a, &(0x7f0000000200)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f00000008c0)=ANY=[], 0xc, 0x0, &(0x7f0000000000))

6.632219146s ago: executing program 5 (id=914):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x8, 0x7fe2, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000500)={'syzkaller0\x00', 0x7101})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
close(r3)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0xfffffffd, {0x0, 0x0, 0x0, r4, {0xb, 0xd}, {}, {0x8, 0xfff1}}}, 0x24}}, 0x40004)
recvmmsg(r5, &(0x7f0000001480)=[{{0x0, 0x0, &(0x7f0000000bc0)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f0000000540)=""/189, 0xbd}, {&(0x7f0000001ac0)=""/4096, 0x1000}, {&(0x7f0000000940)=""/74, 0x4a}], 0x4}, 0x5d}], 0x1, 0x10022, 0x0)

5.740115278s ago: executing program 8 (id=916):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='kfree\x00', r0}, 0x18)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000300)={'vxcan1\x00'})
bind$can_raw(r1, &(0x7f0000000080), 0x10)

5.28904616s ago: executing program 4 (id=917):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000400000000000000000000850000005000000085000000d000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000001a80)="d8000000180081064e81f782db4cb904021d0800fd007c05e8fe50a10a000600014002020c600e41b0000900ac000a0501000000160012000a00ff120048035c3b61c1d67f6f94007134cf6efb8007a007a290457f01a7cee4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5ae24e25ccca9e00360db79826835d3a71d95667daffffffffff1f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5b7276505de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9000001008af26c8b7b55f4d2a6823a45", 0xd8}], 0x1}, 0x894)

4.92925281s ago: executing program 8 (id=918):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = gettid()
timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)=<r3=>0x0)
r4 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0b00000007000000d7c900000900000001"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r5, <r6=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f0000000340)}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r7}, 0x10)
readahead(r6, 0x1, 0x3)
readv(r4, &(0x7f0000000880)=[{&(0x7f0000000800)=""/116, 0x18}], 0x300)
timer_settime(r3, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x400c800)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xd9}, 0x50)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r8}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000100))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r9}, 0x18)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000340)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000080)={0x0, 0x10, &(0x7f0000000040)=[@in={0x2, 0x4e22, @multicast2}]}, &(0x7f00000000c0)=0x10)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000200))
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r10 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fchdir(r10)

4.738718182s ago: executing program 5 (id=919):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
syz_emit_ethernet(0x76, &(0x7f0000000080)={@link_local, @random="86082b9827c1", @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "cb3e02", 0x40, 0x3a, 0x0, @private2, @mcast2, {[], @param_prob={0x4, 0x0, 0x0, 0x0, {0x0, 0x6, '\x00\x00u', 0x0, 0x11, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, [@dstopts={0x0, 0x1, '\x00', [@padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}]}}}}}}}, 0x0)
r1 = add_key$keyring(&(0x7f00000001c0), &(0x7f0000000200)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
syz_emit_ethernet(0x76, &(0x7f0000000140)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa1586dd6000021000403afffe8000000000000000000000000000bbff02000000000000000000000000000103019078300000006d5d296b08002bffff0100000000000000000000000000016fbe6c261ae900200100000000000000000000000000022f0004000500090008"], 0x0)
add_key(&(0x7f0000000140)='ceph\x00', &(0x7f0000000180), &(0x7f0000000040), 0x1d4, r1)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x0, &(0x7f0000000280)}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=<r4=>r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3, 0x0, 0x3}, 0x18)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0x33, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{r5}, &(0x7f00000004c0), &(0x7f0000000500)=r6}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000006000000000000000000850000000700000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, 0x2}, 0x94)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b00000007000000020000000400000005"], 0x87)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_generic(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
r8 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r8, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000100)={0x2, 0x3, 0x0, 0x3, 0xf, 0x0, 0x700, 0x0, [@sadb_key={0x5, 0x9, 0xe0, 0x0, "01d78771b90bd8a3b4914783c58777003d5b9538a9d03e6e9bfdac55"}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @private}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x2, 0xd}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev}}]}, 0x78}, 0x1, 0x7}, 0x0)
r9 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000400), 0x20280, 0x0)
ioctl$IMADDTIMER(r9, 0x80044940, &(0x7f0000000080)=0x14)
unshare(0x62040200)
close(r9)
sendmmsg$inet(r0, 0x0, 0x0, 0xc0)

4.31217031s ago: executing program 4 (id=920):
r0 = socket$inet6(0xa, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$SMC_PNETID_GET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000700)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000900)=0x7)
sendmmsg$inet(r0, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @loopback}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r2, @empty, @dev={0xac, 0x14, 0x14, 0x27}}}}], 0x20}}], 0x1, 0x80)

3.289187159s ago: executing program 8 (id=921):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=@framed, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000010bc0)='kfree\x00', r0}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SCAN(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x8041}, 0x0)

3.192288798s ago: executing program 4 (id=922):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)=@newtfilter={0x64, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, r2, {0x0, 0x7}, {}, {0xa, 0xfff3}}, [@filter_kind_options=@f_flower={{0xb}, {0x34, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x18, 0x55, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x14, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_HWID={0x5, 0x4, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x2}]}]}, @TCA_FLOWER_KEY_ENC_OPTS={0x18, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x14, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_INDEX={0x8, 0x2, 0x100c}]}]}]}}]}, 0x64}, 0x1, 0x0, 0x0, 0x22044028}, 0x0)

2.920194262s ago: executing program 5 (id=923):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000003c0)={0x9c9, 0x0, 0x0, 'queue1\x00', 0x200000})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x3, 0x0, 0x1}, 0x2})

2.289486282s ago: executing program 8 (id=924):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)

1.940274546s ago: executing program 5 (id=925):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', 0xffffffffffffffff, 0x0, 0x3}, 0x18)
ioctl$SIOCSIFHWADDR(r0, 0x8943, &(0x7f0000000100)={'macvtap0\x00', @random="b40007350060"})

1.927775211s ago: executing program 4 (id=926):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='kfree\x00', r0}, 0x18)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000300)={'vxcan1\x00'})
bind$can_raw(r1, &(0x7f0000000080), 0x10)

1.437471426s ago: executing program 8 (id=927):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x8, 0x7fe2, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000500)={'syzkaller0\x00', 0x7101})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
close(r3)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0xfffffffd, {0x0, 0x0, 0x0, r4, {0xb, 0xd}, {}, {0x8, 0xfff1}}}, 0x24}}, 0x40004)
recvmmsg(r5, &(0x7f0000001480)=[{{0x0, 0x0, &(0x7f0000000bc0)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f0000000540)=""/189, 0xbd}, {&(0x7f0000001ac0)=""/4096, 0x1000}, {&(0x7f0000000940)=""/74, 0x4a}], 0x4}, 0x5d}], 0x1, 0x10022, 0x0)

1.096372266s ago: executing program 5 (id=928):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000400)='tlb_flush\x00', r0}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000e00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x31)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300"], 0x0, 0x7, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_clone(0x42a00180, 0x0, 0x0, 0x0, 0x0, 0x0)

1.016657293s ago: executing program 4 (id=929):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000500), 0x400, 0x0)
close(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000340))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
writev(r0, &(0x7f0000000040)=[{&(0x7f0000000100)="89e7ee2c78dad9b4b473fec988cafbe863ca", 0x12}, {&(0x7f0000000440)="9c74dfbf77572856c809ff86bb648d", 0xf}], 0x2)

0s ago: executing program 8 (id=930):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = gettid()
timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)=<r3=>0x0)
r4 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0b00000007000000d7c900000900000001"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r5, <r6=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f0000000340)}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r7}, 0x10)
readahead(r6, 0x1, 0x3)
readv(r4, &(0x7f0000000880)=[{&(0x7f0000000800)=""/116, 0x18}], 0x300)
timer_settime(r3, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x400c800)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xd9}, 0x50)
r8 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000180)='./file2\x00', 0xa00010, &(0x7f00000001c0), 0x21, 0x4bf, &(0x7f00000009c0)="$eJzs3U9vVF0ZAPDn3nbon7fv26Is1KggomgIM+0AlbDCjcYQEiNx5QJqOzRNZzpNZ4q0sijfwUQSV7rwA7gwcWHCyr073bnBhQkq0VATF2PmzhQKnSlF2s6b3t8vObn33DOd5zyd3HPaM+2cAHLrXERsRcSpiLgXEZPd60m3xM1OaT/u5YtH89svHs0n0Wrd+UeStbevxa6vafuo+5yjEfGD70b8ONkbt7GxuTxXrVbWuvVSs7ZaamxsXl6qzS1WFisr5fLszOz09SvXyoeW69nab55/Z+nWD3//uy89++PWN3/a7tZEt213Hoepk3rhVZy24Yi4dRTBBmCom8+pQXeE/0saEZ+JiPPZ/T8ZQ9mrCQCcZK3WZLQmd9cBgJMuzdbAkrQYUeicp2mx2FnDOxPjabXeaF66X19fWeislU1FIb2/VK1Md9cKp6KQtOsz2fnrevmt+pWIOB0RPxsZy+rF+Xp1YZA/+ABAjn30ev7P3gv490hn/gcATrjRQXcAADh25n8AyB/zPwDkj/kfAPLH/A8A+WP+B4D8Mf8DQK58//btdmltdz//euHBxvpy/cHlhUpjuVhbny/O19dWi4v1+mL2mT21dz1ftV5fnbka6w9LzUqjWWpsbN6t1ddXmnezz/W+WykcS1YAwH5On3365yQitm6MZSV27eVgroaTLR10B4CBGRp0B4CBsdsX5Jff8YEeW/S+ofMnQmN7G54cTX+Ao3fx89b/Ia+s/0N+Wf+H/LL+D/nVaiX2/AeAnLHGDxzs/f8evP8PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAjk1kJUmL3b3AJyJNi8WIjyNiKgrJ/aVqZToiPomIP40URtr1mUF3GgD4QOnfku7+XxcnL0y83Xoq+c9IdoyIn/zizs8fzjWbazPt6//sXP/WWMST7vXyIPoPAHk09F6P3pmnd+bxHS9fPJrfKYffx/6ef7uzuWg77na3dFqGYzg7jkYhIsb/lXTrHcl7Z97b1uOI+Fyv/JNsbWSqu/Pp2/HbsT8+1vjpG/HTrK1zbH8vPnsIfYG8edoef272uv/SOJcde9//o9kI9eF2xr/tPeNf+mr8G+oz/p07SICxX0dc/cP3+sZ/HPGF4V7xk1fxkz7xLxwwx7988cvn+7W1fhlxMXrH3x2r1Kytlhobm5eXanOLlcXKSrk8OzM7ff3KtXIpW6Mu7axU7/X3G5c+2S//8T7xR9+R/9cOmP+v/nvvR1/ZJ/43vtr79T+zT/z2nPj1A8afG/9t3+272/EX+uT/rtf/0gHjP/vr5sIBHwoAHIPGxubyXLVaWRv0yU6HPi39ceIk1yeDHZeAo/f6ph90TwAAAAAAAAAAAAAAgH6O49+JBp0jAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJ9f/AgAA//9gOtV4")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
fcntl$setownex(r8, 0xf, &(0x7f0000000100))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00'}, 0x18)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000340)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000080)={0x0, 0x10, &(0x7f0000000040)=[@in={0x2, 0x4e22, @multicast2}]}, &(0x7f00000000c0)=0x10)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000200))
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r9 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fchdir(r9)

kernel console output (not intermixed with test programs):

ns ignored when QUOTA feature is enabled
[  548.304779][ T7389] EXT4-fs (loop4): orphan cleanup on readonly fs
[  548.322312][ T7389] Quota error (device loop4): do_check_range: Getting block 196613 out of range 1-5
[  548.335132][ T7389] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  548.346537][ T7389] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.313: Failed to acquire dquot type 1
[  548.488748][ T7389] EXT4-fs (loop4): 1 truncate cleaned up
[  548.507232][ T7389] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  548.629895][ T3976] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  549.355683][ T3976] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  549.731528][ T7319] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  549.995160][ T3976] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  550.109212][ T7319] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  550.650679][ T3976] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  550.995967][ T7330] bridge0: port 1(bridge_slave_0) entered blocking state
[  551.004583][ T7330] bridge0: port 1(bridge_slave_0) entered disabled state
[  551.013257][ T7330] bridge_slave_0: entered allmulticast mode
[  551.023263][ T7330] bridge_slave_0: entered promiscuous mode
[  551.374399][ T7330] bridge0: port 2(bridge_slave_1) entered blocking state
[  551.382922][ T7330] bridge0: port 2(bridge_slave_1) entered disabled state
[  551.395659][ T7330] bridge_slave_1: entered allmulticast mode
[  551.405969][ T7330] bridge_slave_1: entered promiscuous mode
[  551.487322][ T7319] team0: Port device team_slave_0 added
[  551.509570][ T7314] bridge0: port 1(bridge_slave_0) entered blocking state
[  551.517763][ T7314] bridge0: port 1(bridge_slave_0) entered disabled state
[  551.526878][ T7314] bridge_slave_0: entered allmulticast mode
[  551.537722][ T7314] bridge_slave_0: entered promiscuous mode
[  551.760546][ T7319] team0: Port device team_slave_1 added
[  552.353250][ T7314] bridge0: port 2(bridge_slave_1) entered blocking state
[  552.363381][ T7314] bridge0: port 2(bridge_slave_1) entered disabled state
[  552.371765][ T7314] bridge_slave_1: entered allmulticast mode
[  552.381675][ T7314] bridge_slave_1: entered promiscuous mode
[  552.608258][ T3976] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  552.783772][ T7330] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  552.974259][ T3976] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  553.053814][ T7319] batman_adv: batadv0: Adding interface: batadv_slave_0
[  553.061752][ T7319] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  553.089890][ T7319] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  553.154412][ T7330] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  553.370039][ T3976] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  553.604374][ T7319] batman_adv: batadv0: Adding interface: batadv_slave_1
[  553.612013][ T7319] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  553.639831][ T7319] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  553.683785][ T7314] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  553.843834][ T3976] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  553.936383][ T7314] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  553.967605][ T7330] team0: Port device team_slave_0 added
[  554.179243][ T7330] team0: Port device team_slave_1 added
[  554.927109][ T7314] team0: Port device team_slave_0 added
[  555.094981][ T7319] hsr_slave_0: entered promiscuous mode
[  555.105897][ T7319] hsr_slave_1: entered promiscuous mode
[  555.242214][ T7314] team0: Port device team_slave_1 added
[  555.254443][ T7330] batman_adv: batadv0: Adding interface: batadv_slave_0
[  555.262247][ T7330] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  555.295092][ T7330] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  555.818079][ T7330] batman_adv: batadv0: Adding interface: batadv_slave_1
[  555.825509][ T7330] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  555.853067][ T7330] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  556.014508][ T3976] bridge_slave_1: left allmulticast mode
[  556.022890][ T3976] bridge_slave_1: left promiscuous mode
[  556.030168][ T3976] bridge0: port 2(bridge_slave_1) entered disabled state
[  556.123002][ T3976] bridge_slave_0: left allmulticast mode
[  556.129273][ T3976] bridge_slave_0: left promiscuous mode
[  556.136230][ T3976] bridge0: port 1(bridge_slave_0) entered disabled state
[  556.205118][ T3976] bridge_slave_1: left allmulticast mode
[  556.212714][ T3976] bridge_slave_1: left promiscuous mode
[  556.220075][ T3976] bridge0: port 2(bridge_slave_1) entered disabled state
[  556.330056][ T3976] bridge_slave_0: left allmulticast mode
[  556.336357][ T3976] bridge_slave_0: left promiscuous mode
[  556.343518][ T3976] bridge0: port 1(bridge_slave_0) entered disabled state
[  556.785096][ T5807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  557.711258][ T3976] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  557.780530][ T3976] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  557.806540][ T3976] bond0 (unregistering): Released all slaves
[  560.010392][ T3976] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  560.166022][ T3976] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  560.248135][ T3976] bond0 (unregistering): Released all slaves
[  560.467139][ T7314] batman_adv: batadv0: Adding interface: batadv_slave_0
[  560.476325][ T7314] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  560.507760][ T7314] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  560.649997][ T7314] batman_adv: batadv0: Adding interface: batadv_slave_1
[  560.657527][ T7314] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  560.685517][ T7314] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  562.619223][ T3976] hsr_slave_0: left promiscuous mode
[  562.641946][ T3976] hsr_slave_1: left promiscuous mode
[  562.651392][ T3976] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  562.660860][ T3976] batman_adv: batadv0: Removing interface: batadv_slave_0
[  562.751555][ T3976] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  562.761472][ T3976] batman_adv: batadv0: Removing interface: batadv_slave_1
[  562.971255][ T3976] hsr_slave_0: left promiscuous mode
[  563.006140][ T3976] hsr_slave_1: left promiscuous mode
[  563.015373][ T3976] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  563.023461][ T3976] batman_adv: batadv0: Removing interface: batadv_slave_0
[  563.198627][ T3976] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  563.206799][ T3976] batman_adv: batadv0: Removing interface: batadv_slave_1
[  563.542164][ T3976] veth1_macvtap: left promiscuous mode
[  563.548262][ T3976] veth0_macvtap: left promiscuous mode
[  563.555015][ T3976] veth1_vlan: left promiscuous mode
[  563.561288][ T3976] veth0_vlan: left promiscuous mode
[  563.665509][ T3976] veth1_macvtap: left promiscuous mode
[  563.672001][ T3976] veth0_macvtap: left promiscuous mode
[  563.679848][ T3976] veth1_vlan: left promiscuous mode
[  563.685516][ T3976] veth0_vlan: left promiscuous mode
[  566.330849][ T3976] team0 (unregistering): Port device team_slave_1 removed
[  566.463450][ T3976] team0 (unregistering): Port device team_slave_0 removed
[  567.767677][ T3976] team0 (unregistering): Port device team_slave_1 removed
[  567.990316][ T3976] team0 (unregistering): Port device team_slave_0 removed
[  568.840266][ T7330] hsr_slave_0: entered promiscuous mode
[  568.851173][ T7330] hsr_slave_1: entered promiscuous mode
[  568.860625][ T7330] debugfs: 'hsr0' already exists in 'hsr'
[  568.866656][ T7330] Cannot create hsr debugfs directory
[  569.355306][ T7314] hsr_slave_0: entered promiscuous mode
[  569.366959][ T7314] hsr_slave_1: entered promiscuous mode
[  569.376313][ T7314] debugfs: 'hsr0' already exists in 'hsr'
[  569.382688][ T7314] Cannot create hsr debugfs directory
[  570.184537][ T7465] loop4: detected capacity change from 0 to 512
[  570.306225][ T7465] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  570.321087][ T7465] ext4 filesystem being mounted at /98/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  570.497606][ T7470] netlink: 60 bytes leftover after parsing attributes in process `syz.2.325'.
[  570.601608][ T7472] netlink: 60 bytes leftover after parsing attributes in process `syz.2.325'.
[  571.160302][ T5807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  572.296831][ T7491] netlink: 'syz.4.329': attribute type 10 has an invalid length.
[  572.357491][ T7491] 8021q: adding VLAN 0 to HW filter on device batadv0
[  572.373826][ T7491] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  572.471135][ T7319] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  572.554835][ T7319] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  572.676144][ T7319] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  572.786091][ T7319] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  573.595070][ T7330] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  573.655674][ T7314] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  573.729910][ T7330] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  573.990903][ T7314] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  574.074861][ T7330] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  574.184462][ T7314] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  574.367585][ T7330] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  574.417609][ T7314] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  575.718976][ T7319] 8021q: adding VLAN 0 to HW filter on device bond0
[  575.960341][ T7319] 8021q: adding VLAN 0 to HW filter on device team0
[  576.074804][ T4108] bridge0: port 1(bridge_slave_0) entered blocking state
[  576.082912][ T4108] bridge0: port 1(bridge_slave_0) entered forwarding state
[  576.232233][ T4108] bridge0: port 2(bridge_slave_1) entered blocking state
[  576.239947][ T4108] bridge0: port 2(bridge_slave_1) entered forwarding state
[  576.595192][ T7330] 8021q: adding VLAN 0 to HW filter on device bond0
[  576.824353][ T7314] 8021q: adding VLAN 0 to HW filter on device bond0
[  576.981218][ T7330] 8021q: adding VLAN 0 to HW filter on device team0
[  577.111001][ T7314] 8021q: adding VLAN 0 to HW filter on device team0
[  577.126411][ T4147] bridge0: port 1(bridge_slave_0) entered blocking state
[  577.134588][ T4147] bridge0: port 1(bridge_slave_0) entered forwarding state
[  577.356025][ T4147] bridge0: port 2(bridge_slave_1) entered blocking state
[  577.364041][ T4147] bridge0: port 2(bridge_slave_1) entered forwarding state
[  577.381777][ T4147] bridge0: port 1(bridge_slave_0) entered blocking state
[  577.389933][ T4147] bridge0: port 1(bridge_slave_0) entered forwarding state
[  577.493001][ T4147] bridge0: port 2(bridge_slave_1) entered blocking state
[  577.500975][ T4147] bridge0: port 2(bridge_slave_1) entered forwarding state
[  577.564536][ T7530] loop4: detected capacity change from 0 to 512
[  577.896739][ T7330] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  577.910164][ T7330] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  577.941207][ T7314] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  577.953312][ T7314] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  577.971332][ T7530] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  577.985153][ T7530] ext4 filesystem being mounted at /105/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  578.837311][ T5807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  579.790483][ T7319] 8021q: adding VLAN 0 to HW filter on device batadv0
[  581.462204][ T7330] 8021q: adding VLAN 0 to HW filter on device batadv0
[  581.683063][ T7314] 8021q: adding VLAN 0 to HW filter on device batadv0
[  583.691400][ T7319] veth0_vlan: entered promiscuous mode
[  583.815946][ T7319] veth1_vlan: entered promiscuous mode
[  584.238194][ T7319] veth0_macvtap: entered promiscuous mode
[  584.338159][ T7319] veth1_macvtap: entered promiscuous mode
[  584.601345][ T7319] batman_adv: batadv0: Interface activated: batadv_slave_0
[  584.751681][ T7319] batman_adv: batadv0: Interface activated: batadv_slave_1
[  584.839179][ T3630] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  584.986824][ T3630] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  585.046076][ T7330] veth0_vlan: entered promiscuous mode
[  585.098691][ T4108] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  585.187008][ T4108] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  585.255607][ T7330] veth1_vlan: entered promiscuous mode
[  585.819837][ T7330] veth0_macvtap: entered promiscuous mode
[  585.966154][ T7330] veth1_macvtap: entered promiscuous mode
[  586.146350][ T5824] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  586.161917][ T5824] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  586.182931][ T5824] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  586.270632][ T5824] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  586.300737][ T7330] batman_adv: batadv0: Interface activated: batadv_slave_0
[  586.312328][ T5824] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  586.407137][ T7330] batman_adv: batadv0: Interface activated: batadv_slave_1
[  586.943133][ T4329] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  586.961926][ T4329] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  587.117703][ T4329] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  587.244910][ T4329] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  587.768791][ T7612] loop4: detected capacity change from 0 to 1024
[  587.813851][ T7612] EXT4-fs: Ignoring removed nomblk_io_submit option
[  587.986680][ T5107] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  588.022465][ T5107] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  588.043557][ T5107] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  588.063073][ T5107] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  588.134231][ T5107] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  588.191622][ T7612] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  588.395870][ T5107] Bluetooth: hci0: command tx timeout
[  588.701567][   T30] audit: type=1326 audit(1754591783.933:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7611 comm="syz.4.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  588.725597][   T30] audit: type=1326 audit(1754591783.983:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7611 comm="syz.4.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=195 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  588.990290][   T30] audit: type=1326 audit(1754591784.043:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7611 comm="syz.4.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  589.014149][   T30] audit: type=1326 audit(1754591784.043:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7611 comm="syz.4.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  589.047010][ T7601] chnl_net:caif_netlink_parms(): no params data found
[  589.341674][ T5807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  590.315344][ T5107] Bluetooth: hci2: command tx timeout
[  590.475823][ T5107] Bluetooth: hci0: command tx timeout
[  590.891653][ T7617] chnl_net:caif_netlink_parms(): no params data found
[  591.904964][ T7601] bridge0: port 1(bridge_slave_0) entered blocking state
[  591.913605][ T7601] bridge0: port 1(bridge_slave_0) entered disabled state
[  591.922682][ T7601] bridge_slave_0: entered allmulticast mode
[  591.933598][ T7601] bridge_slave_0: entered promiscuous mode
[  592.039043][ T3630] bridge_slave_1: left allmulticast mode
[  592.049120][ T3630] bridge_slave_1: left promiscuous mode
[  592.056573][ T3630] bridge0: port 2(bridge_slave_1) entered disabled state
[  592.114979][ T3630] bridge_slave_0: left allmulticast mode
[  592.122155][ T3630] bridge_slave_0: left promiscuous mode
[  592.129594][ T3630] bridge0: port 1(bridge_slave_0) entered disabled state
[  592.446982][ T5107] Bluetooth: hci2: command tx timeout
[  592.550334][ T5107] Bluetooth: hci0: command tx timeout
[  593.020931][ T3630] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  593.084480][ T3630] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  593.141649][ T3630] bond0 (unregistering): Released all slaves
[  593.265957][ T7601] bridge0: port 2(bridge_slave_1) entered blocking state
[  593.279862][ T7601] bridge0: port 2(bridge_slave_1) entered disabled state
[  593.288275][ T7601] bridge_slave_1: entered allmulticast mode
[  593.299876][ T7601] bridge_slave_1: entered promiscuous mode
[  593.778526][ T3630] hsr_slave_0: left promiscuous mode
[  593.830019][ T3630] hsr_slave_1: left promiscuous mode
[  593.839450][ T3630] batman_adv: batadv0: Removing interface: batadv_slave_0
[  593.881253][ T3630] batman_adv: batadv0: Removing interface: batadv_slave_1
[  594.480108][ T5824] Bluetooth: hci2: command tx timeout
[  594.584582][ T5812] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  594.647345][ T5812] Bluetooth: hci0: command tx timeout
[  594.654355][ T5812] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  594.721371][ T5812] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  594.859884][ T3630] team0 (unregistering): Port device team_slave_1 removed
[  594.941204][ T3630] team0 (unregistering): Port device team_slave_0 removed
[  595.016127][ T5812] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  595.110008][ T5812] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  595.578650][ T7601] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  596.022615][ T7601] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  596.551070][ T5812] Bluetooth: hci2: command tx timeout
[  596.683910][ T7617] bridge0: port 1(bridge_slave_0) entered blocking state
[  596.693776][ T7617] bridge0: port 1(bridge_slave_0) entered disabled state
[  596.702617][ T7617] bridge_slave_0: entered allmulticast mode
[  596.713003][ T7617] bridge_slave_0: entered promiscuous mode
[  596.735816][ T7601] team0: Port device team_slave_0 added
[  596.830990][ T7601] team0: Port device team_slave_1 added
[  596.954289][ T3976] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  596.982788][ T7617] bridge0: port 2(bridge_slave_1) entered blocking state
[  596.996056][ T7617] bridge0: port 2(bridge_slave_1) entered disabled state
[  597.004593][ T7617] bridge_slave_1: entered allmulticast mode
[  597.014692][ T7617] bridge_slave_1: entered promiscuous mode
[  597.155061][ T3976] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  597.207500][ T5812] Bluetooth: hci4: command tx timeout
[  597.271862][ T5107] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  597.281933][ T5107] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  597.293155][ T5107] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  597.307154][ T5107] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  597.320733][ T5107] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  597.594431][ T3976] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  598.037110][ T3976] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  598.173048][ T7617] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  598.303849][ T7601] batman_adv: batadv0: Adding interface: batadv_slave_0
[  598.312202][ T7601] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  598.339444][ T7601] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  598.403273][ T7673] netlink: 8 bytes leftover after parsing attributes in process `syz.4.352'.
[  598.518272][ T7617] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  598.595506][ T7601] batman_adv: batadv0: Adding interface: batadv_slave_1
[  598.606388][ T7601] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  598.634705][ T7601] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  599.227292][ T7617] team0: Port device team_slave_0 added
[  599.235990][ T7659] chnl_net:caif_netlink_parms(): no params data found
[  599.258338][ T3976] bridge_slave_1: left allmulticast mode
[  599.265054][ T3976] bridge_slave_1: left promiscuous mode
[  599.272932][ T3976] bridge0: port 2(bridge_slave_1) entered disabled state
[  599.284294][ T5107] Bluetooth: hci4: command tx timeout
[  599.299889][ T3976] bridge_slave_0: left allmulticast mode
[  599.306396][ T3976] bridge_slave_0: left promiscuous mode
[  599.317513][ T3976] bridge0: port 1(bridge_slave_0) entered disabled state
[  599.360661][ T5107] Bluetooth: hci5: command tx timeout
[  599.988800][ T3976] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  600.057826][ T3976] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  600.111034][ T3976] bond0 (unregistering): Released all slaves
[  600.201238][ T7617] team0: Port device team_slave_1 added
[  600.905806][ T3976] hsr_slave_0: left promiscuous mode
[  600.921175][ T3976] hsr_slave_1: left promiscuous mode
[  600.930819][ T3976] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  600.938851][ T3976] batman_adv: batadv0: Removing interface: batadv_slave_0
[  600.971962][ T3976] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  600.980174][ T3976] batman_adv: batadv0: Removing interface: batadv_slave_1
[  601.080328][ T3976] veth1_macvtap: left promiscuous mode
[  601.086364][ T3976] veth0_macvtap: left promiscuous mode
[  601.092739][ T3976] veth1_vlan: left promiscuous mode
[  601.098795][ T3976] veth0_vlan: left promiscuous mode
[  601.389708][ T5107] Bluetooth: hci4: command tx timeout
[  601.428961][ T5107] Bluetooth: hci5: command tx timeout
[  602.030519][ T3976] team0 (unregistering): Port device team_slave_1 removed
[  602.067434][ T3976] team0 (unregistering): Port device team_slave_0 removed
[  602.496285][ T7617] batman_adv: batadv0: Adding interface: batadv_slave_0
[  602.503679][ T7617] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  602.531588][ T7617] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  602.567418][ T7617] batman_adv: batadv0: Adding interface: batadv_slave_1
[  602.575768][ T7617] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  602.607467][ T7617] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  602.640917][ T7601] hsr_slave_0: entered promiscuous mode
[  602.651858][ T7601] hsr_slave_1: entered promiscuous mode
[  603.229712][ T7705] loop4: detected capacity change from 0 to 164
[  603.432928][ T7705] process 'wÞ¡ÿ' launched '/dev/fd/6' with NULL argv: empty string added
[  603.445207][ T5107] Bluetooth: hci4: command tx timeout
[  603.514686][ T5107] Bluetooth: hci5: command tx timeout
[  603.590005][ T7705] wÞ¡ÿ: attempt to access beyond end of device
[  603.590005][ T7705] loop4: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  603.604806][ T7705] wÞ¡ÿ: attempt to access beyond end of device
[  603.604806][ T7705] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  603.684385][ T3976] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  603.943700][ T3976] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  603.963988][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  603.971419][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  604.081208][ T7617] hsr_slave_0: entered promiscuous mode
[  604.092029][ T7617] hsr_slave_1: entered promiscuous mode
[  604.101747][ T7617] debugfs: 'hsr0' already exists in 'hsr'
[  604.107858][ T7617] Cannot create hsr debugfs directory
[  604.194282][ T3976] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  604.307565][ T7713] loop4: detected capacity change from 0 to 128
[  604.376388][ T3976] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  604.463572][ T7713] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  604.546863][ T7713] ext4 filesystem being mounted at /124/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  604.973778][ T7668] chnl_net:caif_netlink_parms(): no params data found
[  605.019936][ T7659] bridge0: port 1(bridge_slave_0) entered blocking state
[  605.028047][ T7659] bridge0: port 1(bridge_slave_0) entered disabled state
[  605.036980][ T7659] bridge_slave_0: entered allmulticast mode
[  605.049099][ T7659] bridge_slave_0: entered promiscuous mode
[  605.194224][ T5807] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  605.263369][ T7659] bridge0: port 2(bridge_slave_1) entered blocking state
[  605.271405][ T7659] bridge0: port 2(bridge_slave_1) entered disabled state
[  605.280126][ T7659] bridge_slave_1: entered allmulticast mode
[  605.290280][ T7659] bridge_slave_1: entered promiscuous mode
[  605.598906][ T5107] Bluetooth: hci5: command tx timeout
[  605.816406][ T3976] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  606.280971][ T3976] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  606.373851][ T7659] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  606.466215][ T7732] C: renamed from veth0_to_batadv (while UP)
[  606.502805][ T7732] netlink: 'syz.4.363': attribute type 3 has an invalid length.
[  606.510960][ T7732] netlink: 128 bytes leftover after parsing attributes in process `syz.4.363'.
[  606.559953][ T3976] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  606.710899][ T7659] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  606.823590][ T3976] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  607.313993][ T7659] team0: Port device team_slave_0 added
[  607.323392][ T7739] netlink: 'syz.4.364': attribute type 3 has an invalid length.
[  607.404988][ T7659] team0: Port device team_slave_1 added
[  607.920756][ T7668] bridge0: port 1(bridge_slave_0) entered blocking state
[  607.928944][ T7668] bridge0: port 1(bridge_slave_0) entered disabled state
[  607.936976][ T7668] bridge_slave_0: entered allmulticast mode
[  607.947501][ T7668] bridge_slave_0: entered promiscuous mode
[  607.982039][ T7659] batman_adv: batadv0: Adding interface: batadv_slave_0
[  607.991222][ T7659] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  608.022645][ T7659] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  608.081426][ T7659] batman_adv: batadv0: Adding interface: batadv_slave_1
[  608.089576][ T7659] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  608.117088][ T7659] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  608.239836][ T7668] bridge0: port 2(bridge_slave_1) entered blocking state
[  608.247764][ T7668] bridge0: port 2(bridge_slave_1) entered disabled state
[  608.256636][ T7668] bridge_slave_1: entered allmulticast mode
[  608.266952][ T7668] bridge_slave_1: entered promiscuous mode
[  608.540262][ T3976] bridge_slave_1: left allmulticast mode
[  608.546588][ T3976] bridge_slave_1: left promiscuous mode
[  608.553558][ T3976] bridge0: port 2(bridge_slave_1) entered disabled state
[  608.590025][ T3976] bridge_slave_0: left allmulticast mode
[  608.596257][ T3976] bridge_slave_0: left promiscuous mode
[  608.603607][ T3976] bridge0: port 1(bridge_slave_0) entered disabled state
[  608.637534][ T3976] bridge_slave_1: left allmulticast mode
[  608.645791][ T3976] bridge_slave_1: left promiscuous mode
[  608.655576][ T3976] bridge0: port 2(bridge_slave_1) entered disabled state
[  608.694729][ T3976] bridge_slave_0: left allmulticast mode
[  608.701259][ T3976] bridge_slave_0: left promiscuous mode
[  608.708207][ T3976] bridge0: port 1(bridge_slave_0) entered disabled state
[  609.607864][ T7756] netlink: 4 bytes leftover after parsing attributes in process `syz.4.367'.
[  609.636262][ T3976] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  609.662483][ T3976] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  609.682080][ T3976] bond0 (unregistering): Released all slaves
[  610.005826][ T3976] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  610.050377][ T3976] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  610.105115][ T3976] bond0 (unregistering): Released all slaves
[  610.365429][ T7668] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  610.949443][ T7668] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  611.355420][ T7659] hsr_slave_0: entered promiscuous mode
[  611.367844][ T7659] hsr_slave_1: entered promiscuous mode
[  611.377491][ T7659] debugfs: 'hsr0' already exists in 'hsr'
[  611.384442][ T7659] Cannot create hsr debugfs directory
[  611.419964][ T7668] team0: Port device team_slave_0 added
[  611.458955][ T7668] team0: Port device team_slave_1 added
[  611.987869][ T3976] hsr_slave_0: left promiscuous mode
[  612.011164][ T3976] hsr_slave_1: left promiscuous mode
[  612.021185][ T3976] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  612.029273][ T3976] batman_adv: batadv0: Removing interface: batadv_slave_0
[  612.054359][ T3976] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  612.062693][ T3976] batman_adv: batadv0: Removing interface: batadv_slave_1
[  612.140017][ T3976] hsr_slave_0: left promiscuous mode
[  612.166361][ T3976] hsr_slave_1: left promiscuous mode
[  612.174898][ T3976] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  612.185850][ T3976] batman_adv: batadv0: Removing interface: batadv_slave_0
[  612.234883][ T3976] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  612.243167][ T3976] batman_adv: batadv0: Removing interface: batadv_slave_1
[  612.292790][ T3976] veth1_macvtap: left promiscuous mode
[  612.299514][ T3976] veth0_macvtap: left promiscuous mode
[  612.306263][ T3976] veth1_vlan: left promiscuous mode
[  612.312696][ T3976] veth0_vlan: left promiscuous mode
[  612.326111][ T3976] veth1_macvtap: left promiscuous mode
[  612.335780][ T3976] veth0_macvtap: left promiscuous mode
[  612.341992][ T3976] veth1_vlan: left promiscuous mode
[  612.348042][ T3976] veth0_vlan: left promiscuous mode
[  613.418524][ T3976] team0 (unregistering): Port device team_slave_1 removed
[  613.447832][ T3976] team0 (unregistering): Port device team_slave_0 removed
[  614.287729][ T3976] team0 (unregistering): Port device team_slave_1 removed
[  614.372508][ T3976] team0 (unregistering): Port device team_slave_0 removed
[  614.905396][ T7668] batman_adv: batadv0: Adding interface: batadv_slave_0
[  614.913956][ T7668] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  614.942717][ T7668] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  615.179262][ T7601] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  615.354554][ T7668] batman_adv: batadv0: Adding interface: batadv_slave_1
[  615.362291][ T7668] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  615.393684][ T7668] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  615.423666][ T7601] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  615.557649][ T7617] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  615.612687][ T7617] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  615.638652][ T7601] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  615.690186][ T7617] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  615.781409][ T7617] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  616.017333][ T7601] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  616.429677][ T7668] hsr_slave_0: entered promiscuous mode
[  616.440751][ T7668] hsr_slave_1: entered promiscuous mode
[  616.450200][ T7668] debugfs: 'hsr0' already exists in 'hsr'
[  616.456570][ T7668] Cannot create hsr debugfs directory
[  617.594213][ T7659] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  617.622475][ T7659] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  617.666434][ T7659] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  617.714107][ T7811] bridge0: entered promiscuous mode
[  617.719847][ T7811] macsec1: entered promiscuous mode
[  617.735811][ T7811] bridge0: left promiscuous mode
[  617.850843][ T7659] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  618.534978][ T7617] 8021q: adding VLAN 0 to HW filter on device bond0
[  618.874253][ T7617] 8021q: adding VLAN 0 to HW filter on device team0
[  618.953948][ T1861] bridge0: port 1(bridge_slave_0) entered blocking state
[  618.962143][ T1861] bridge0: port 1(bridge_slave_0) entered forwarding state
[  619.057907][ T7601] 8021q: adding VLAN 0 to HW filter on device bond0
[  619.104006][ T1861] bridge0: port 2(bridge_slave_1) entered blocking state
[  619.111749][ T1861] bridge0: port 2(bridge_slave_1) entered forwarding state
[  619.204521][ T7668] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  619.293277][ T7668] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  619.342598][ T7668] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  619.443856][ T7601] 8021q: adding VLAN 0 to HW filter on device team0
[  619.461784][ T7668] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  619.595932][ T1861] bridge0: port 1(bridge_slave_0) entered blocking state
[  619.604065][ T1861] bridge0: port 1(bridge_slave_0) entered forwarding state
[  619.785144][ T1861] bridge0: port 2(bridge_slave_1) entered blocking state
[  619.793440][ T1861] bridge0: port 2(bridge_slave_1) entered forwarding state
[  619.857850][ T7659] 8021q: adding VLAN 0 to HW filter on device bond0
[  619.982775][ T7617] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  620.283698][ T7659] 8021q: adding VLAN 0 to HW filter on device team0
[  620.443864][ T3630] bridge0: port 1(bridge_slave_0) entered blocking state
[  620.452242][ T3630] bridge0: port 1(bridge_slave_0) entered forwarding state
[  620.651345][ T3630] bridge0: port 2(bridge_slave_1) entered blocking state
[  620.659473][ T3630] bridge0: port 2(bridge_slave_1) entered forwarding state
[  621.510395][ T7668] 8021q: adding VLAN 0 to HW filter on device bond0
[  621.845264][ T7668] 8021q: adding VLAN 0 to HW filter on device team0
[  621.966733][  T754] bridge0: port 1(bridge_slave_0) entered blocking state
[  621.974777][  T754] bridge0: port 1(bridge_slave_0) entered forwarding state
[  622.097335][  T754] bridge0: port 2(bridge_slave_1) entered blocking state
[  622.105395][  T754] bridge0: port 2(bridge_slave_1) entered forwarding state
[  622.587121][ T7836] 9pnet_fd: Insufficient options for proto=fd
[  622.931123][ T7617] 8021q: adding VLAN 0 to HW filter on device batadv0
[  623.356554][ T7601] 8021q: adding VLAN 0 to HW filter on device batadv0
[  623.414538][   T30] audit: type=1326 audit(1754591818.653:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7840 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  623.539434][   T30] audit: type=1326 audit(1754591818.723:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7840 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  623.564014][   T30] audit: type=1326 audit(1754591818.723:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7840 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  623.590882][   T30] audit: type=1326 audit(1754591818.723:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7840 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  623.614474][   T30] audit: type=1326 audit(1754591818.723:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7840 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  623.638544][   T30] audit: type=1326 audit(1754591818.723:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7840 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  623.661831][   T30] audit: type=1326 audit(1754591818.723:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7840 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  623.686525][   T30] audit: type=1326 audit(1754591818.723:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7840 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  623.710154][   T30] audit: type=1326 audit(1754591818.783:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7840 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  623.733875][   T30] audit: type=1326 audit(1754591818.783:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7840 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  623.863825][ T7659] 8021q: adding VLAN 0 to HW filter on device batadv0
[  625.317503][ T7668] 8021q: adding VLAN 0 to HW filter on device batadv0
[  626.672249][ T7617] veth0_vlan: entered promiscuous mode
[  626.826286][ T7617] veth1_vlan: entered promiscuous mode
[  626.935865][ T7601] veth0_vlan: entered promiscuous mode
[  627.222704][ T7617] veth0_macvtap: entered promiscuous mode
[  627.435587][ T7873] netlink: 4 bytes leftover after parsing attributes in process `syz.4.378'.
[  627.446228][    C0] vcan0: j1939_session_tx_dat: 0xffff88804f7be400: queue data error: -100
[  627.456415][    C0] vcan0 (unregistering): j1939_xtp_rx_dpo: no connection found
[  627.464896][    C0] vcan0 (unregistering): j1939_xtp_rx_dpo: no connection found
[  627.473459][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.481822][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.490823][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.499224][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.507906][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.516856][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.526128][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.535608][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.544834][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.553696][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.562670][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.571429][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.580641][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.589869][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.599118][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.607544][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.616512][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.624871][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.633706][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.642118][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.650964][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.659309][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.668264][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.677002][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.686394][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.694784][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.703470][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.711745][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.720806][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.729254][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.738139][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.746586][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.755420][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.763804][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.772908][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.781322][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.790066][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.798497][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.807395][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.815641][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.824697][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.833241][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.842049][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.850638][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.859565][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.867858][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.877153][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.885581][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.894520][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  627.902854][    C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  627.954676][ T7617] veth1_macvtap: entered promiscuous mode
[  628.006245][ T7601] veth1_vlan: entered promiscuous mode
[  628.209727][ T7617] batman_adv: batadv0: Interface activated: batadv_slave_0
[  628.314491][ T7617] batman_adv: batadv0: Interface activated: batadv_slave_1
[  628.415880][ T7659] veth0_vlan: entered promiscuous mode
[  628.498281][ T3820] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  628.528066][ T3820] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  628.615674][ T3820] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  628.675993][ T7659] veth1_vlan: entered promiscuous mode
[  628.723618][ T3976] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  628.767318][ T7601] veth0_macvtap: entered promiscuous mode
[  628.942746][ T7601] veth1_macvtap: entered promiscuous mode
[  629.248992][ T7601] batman_adv: batadv0: Interface activated: batadv_slave_0
[  629.309328][ T7659] veth0_macvtap: entered promiscuous mode
[  629.355724][ T7601] batman_adv: batadv0: Interface activated: batadv_slave_1
[  629.426571][ T7659] veth1_macvtap: entered promiscuous mode
[  629.559881][ T3820] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  629.619186][ T3820] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  629.733155][   T57] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  629.796273][   T57] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  629.871906][ T7659] batman_adv: batadv0: Interface activated: batadv_slave_0
[  630.036850][ T7659] batman_adv: batadv0: Interface activated: batadv_slave_1
[  630.229337][ T3775] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  630.260890][ T7668] veth0_vlan: entered promiscuous mode
[  630.300328][ T3775] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  630.384523][ T3775] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  630.469770][   T14] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  630.521721][ T7668] veth1_vlan: entered promiscuous mode
[  630.619395][ T7887] loop4: detected capacity change from 0 to 512
[  631.011566][ T7887] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  631.025594][ T7887] ext4 filesystem being mounted at /143/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  631.086430][ T7668] veth0_macvtap: entered promiscuous mode
[  631.158032][ T7668] veth1_macvtap: entered promiscuous mode
[  631.222290][ T7887] EXT4-fs (loop4): shut down requested (2)
[  631.440954][ T7668] batman_adv: batadv0: Interface activated: batadv_slave_0
[  631.580177][ T7668] batman_adv: batadv0: Interface activated: batadv_slave_1
[  631.749998][ T3976] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  631.808972][ T3976] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  631.851839][ T5807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  631.902376][ T3976] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  631.957724][ T3775] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  638.761368][   T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  638.769692][   T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  638.977647][   T14] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  638.986646][   T14] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  639.303713][   T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  639.312535][   T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  639.499153][ T3976] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  639.508171][ T3976] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  639.686853][   T14] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  639.695557][   T14] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  639.985316][   T57] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  639.996071][   T57] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  640.387866][ T7999] 9pnet: Could not find request transport: 0xffffffffffffffff
[  640.543479][ T3775] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  640.554611][ T3775] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  640.922103][ T8010] loop5: detected capacity change from 0 to 1024
[  641.077057][ T8010] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  641.211933][ T8010] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  641.222611][ T8010] EXT4-fs (loop5): orphan cleanup on readonly fs
[  641.292916][ T8010] __quota_error: 101 callbacks suppressed
[  641.293021][ T8010] Quota error (device loop5): do_check_range: Getting dqdh_entries 512 out of range 0-14
[  641.323209][ T8010] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  641.334187][ T8010] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.58: Failed to acquire dquot type 0
[  641.356313][ T8010] Quota error (device loop5): do_check_range: Getting dqdh_entries 512 out of range 0-14
[  641.367821][ T8010] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  641.378979][ T8010] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.58: Failed to acquire dquot type 0
[  641.394057][ T8010] EXT4-fs error (device loop5): ext4_free_blocks:6696: comm syz.5.58: Freeing blocks not in datazone - block = 0, count = 4096
[  641.422076][ T8010] Quota error (device loop5): do_check_range: Getting dqdh_entries 512 out of range 0-14
[  641.433884][ T8010] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  641.445948][ T8010] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.58: Failed to acquire dquot type 0
[  641.556159][ T8010] EXT4-fs (loop5): 1 orphan inode deleted
[  641.587711][ T8010] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  642.151168][  T754] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  642.160069][  T754] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  645.000326][ T8031] capability: warning: `syz.8.395' uses 32-bit capabilities (legacy support in use)
[  648.036983][ T8048] netlink: 'syz.4.401': attribute type 39 has an invalid length.
[  648.078124][ T8048] bridge0: port 1(bridge_slave_0) entered disabled state
[  648.295816][   T30] audit: type=1326 audit(1754591843.463:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8047 comm="syz.7.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd65238ebe9 code=0x7ffc0000
[  648.320689][   T30] audit: type=1326 audit(1754591843.513:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8047 comm="syz.7.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd65238ebe9 code=0x7ffc0000
[  648.344050][   T30] audit: type=1326 audit(1754591843.513:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8047 comm="syz.7.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd65238ebe9 code=0x7ffc0000
[  648.374278][   T30] audit: type=1326 audit(1754591843.543:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8047 comm="syz.7.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7fd65238ebe9 code=0x7ffc0000
[  648.399633][   T30] audit: type=1326 audit(1754591843.543:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8047 comm="syz.7.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd65238ebe9 code=0x7ffc0000
[  648.423113][   T30] audit: type=1326 audit(1754591843.543:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8047 comm="syz.7.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=241 compat=0 ip=0x7fd65238ebe9 code=0x7ffc0000
[  648.446666][   T30] audit: type=1326 audit(1754591843.543:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8047 comm="syz.7.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd65238ebe9 code=0x7ffc0000
[  648.693369][ T8048] bridge_slave_0 (unregistering): left allmulticast mode
[  648.701294][ T8048] bridge_slave_0 (unregistering): left promiscuous mode
[  648.714672][ T8048] bridge0: port 1(bridge_slave_0) entered disabled state
[  649.158152][ T8049] loop7: detected capacity change from 0 to 2048
[  649.356926][ T8049] ext4: Unknown parameter 'euid<00000000000000000000'
[  649.829968][ T8057] loop8: detected capacity change from 0 to 164
[  649.850644][   T30] audit: type=1326 audit(1754591843.743:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8047 comm="syz.7.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fd65238ebe9 code=0x7ffc0000
[  649.875033][   T30] audit: type=1326 audit(1754591843.763:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8047 comm="syz.7.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd65238ebe9 code=0x7ffc0000
[  649.901859][   T30] audit: type=1326 audit(1754591843.783:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8047 comm="syz.7.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fd65238ebe9 code=0x7ffc0000
[  649.961112][ T7601] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  649.997445][ T8057] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  650.073084][ T8055] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  650.121816][ T8055] Symlink component flag not implemented
[  650.128681][ T8055] Symlink component flag not implemented
[  650.135248][ T8055] Symlink component flag not implemented (7)
[  650.141916][ T8055] Symlink component flag not implemented (116)
[  652.020542][ T8072] loop8: detected capacity change from 0 to 1024
[  652.282688][ T8072] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  652.497510][ T8078] capability: warning: `syz.5.410' uses deprecated v2 capabilities in a way that may be insecure
[  652.530222][ T8077] loop6: detected capacity change from 0 to 512
[  652.755997][ T8087] input: syz1 as /devices/virtual/input/input5
[  653.462926][ T8077] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  653.476968][ T8077] ext4 filesystem being mounted at /6/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  654.981908][ T7659] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  655.461090][ T7617] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  655.782691][ T8104] netlink: 'syz.8.416': attribute type 39 has an invalid length.
[  655.811451][ T8104] bridge0: port 1(bridge_slave_0) entered disabled state
[  656.018109][ T8104] bridge_slave_0 (unregistering): left allmulticast mode
[  656.026192][ T8104] bridge_slave_0 (unregistering): left promiscuous mode
[  656.034220][ T8104] bridge0: port 1(bridge_slave_0) entered disabled state
[  657.305027][ T8122] netlink: 28 bytes leftover after parsing attributes in process `syz.8.425'.
[  658.362319][ T8134] input: syz1 as /devices/virtual/input/input6
[  659.307057][ T8136] loop6: detected capacity change from 0 to 128
[  659.900423][ T8141] netlink: 36 bytes leftover after parsing attributes in process `syz.7.429'.
[  659.911176][ T8141] netlink: 12 bytes leftover after parsing attributes in process `syz.7.429'.
[  660.218690][   T30] kauditd_printk_skb: 22 callbacks suppressed
[  660.218878][   T30] audit: type=1800 audit(1754591855.463:302): pid=8136 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.428" name="file2" dev="loop6" ino=1048617 res=0 errno=0
[  660.293285][ T8136] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000100)
[  660.302293][ T8136] FAT-fs (loop6): Filesystem has been set read-only
[  660.309552][ T8136] syz.6.428: attempt to access beyond end of device
[  660.309552][ T8136] loop6: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  660.323921][ T8136] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000100)
[  660.332409][ T8136] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000100)
[  660.791662][ T8136] syz.6.428: attempt to access beyond end of device
[  660.791662][ T8136] loop6: rw=0, sector=2065, nr_sectors = 8 limit=128
[  661.035750][ T8136] syz.6.428: attempt to access beyond end of device
[  661.035750][ T8136] loop6: rw=0, sector=2065, nr_sectors = 8 limit=128
[  661.177497][ T8136] syz.6.428: attempt to access beyond end of device
[  661.177497][ T8136] loop6: rw=0, sector=2065, nr_sectors = 8 limit=128
[  661.246887][ T8136] syz.6.428: attempt to access beyond end of device
[  661.246887][ T8136] loop6: rw=0, sector=2065, nr_sectors = 8 limit=128
[  661.286366][ T8136] syz.6.428: attempt to access beyond end of device
[  661.286366][ T8136] loop6: rw=0, sector=2065, nr_sectors = 8 limit=128
[  661.294924][ T8151] netlink: 'syz.4.435': attribute type 39 has an invalid length.
[  661.362729][ T8136] syz.6.428: attempt to access beyond end of device
[  661.362729][ T8136] loop6: rw=0, sector=2065, nr_sectors = 8 limit=128
[  661.410830][ T8152] loop5: detected capacity change from 0 to 512
[  661.466658][ T8136] syz.6.428: attempt to access beyond end of device
[  661.466658][ T8136] loop6: rw=0, sector=2065, nr_sectors = 8 limit=128
[  661.780618][ T8152] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  661.795589][ T8152] ext4 filesystem being mounted at /7/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  661.936634][ T8161] loop8: detected capacity change from 0 to 128
[  663.044696][ T7601] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  663.364466][ T3775] kworker/u8:15: attempt to access beyond end of device
[  663.364466][ T3775] loop8: rw=1, sector=145, nr_sectors = 16 limit=128
[  663.378309][ T8180] netlink: 224 bytes leftover after parsing attributes in process `syz.6.441'.
[  663.381029][ T3775] kworker/u8:15: attempt to access beyond end of device
[  663.381029][ T3775] loop8: rw=1, sector=169, nr_sectors = 8 limit=128
[  663.389930][ T8180] ksmbd: Unknown IPC event: 3, ignore.
[  664.161580][ T8188] netlink: 36 bytes leftover after parsing attributes in process `syz.8.444'.
[  664.172595][ T8188] netlink: 12 bytes leftover after parsing attributes in process `syz.8.444'.
[  664.571205][ T8194] netlink: 'syz.6.447': attribute type 39 has an invalid length.
[  664.601695][ T8194] bridge0: port 1(bridge_slave_0) entered disabled state
[  664.922277][ T8194] bridge_slave_0 (unregistering): left allmulticast mode
[  664.930015][ T8194] bridge_slave_0 (unregistering): left promiscuous mode
[  664.937976][ T8194] bridge0: port 1(bridge_slave_0) entered disabled state
[  665.274113][ T8201] input: syz1 as /devices/virtual/input/input7
[  665.447885][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  665.455121][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  668.397637][ T8219] loop7: detected capacity change from 0 to 128
[  669.506960][ T8231] loop6: detected capacity change from 0 to 128
[  669.527349][ T8230] netlink: 'syz.5.458': attribute type 3 has an invalid length.
[  669.584006][ T3606] bio_check_eod: 16 callbacks suppressed
[  669.584091][ T3606] kworker/u8:10: attempt to access beyond end of device
[  669.584091][ T3606] loop7: rw=1, sector=145, nr_sectors = 16 limit=128
[  669.605806][ T3606] kworker/u8:10: attempt to access beyond end of device
[  669.605806][ T3606] loop7: rw=1, sector=169, nr_sectors = 8 limit=128
[  669.620819][ T3606] kworker/u8:10: attempt to access beyond end of device
[  669.620819][ T3606] loop7: rw=1, sector=185, nr_sectors = 8 limit=128
[  669.636323][ T3606] kworker/u8:10: attempt to access beyond end of device
[  669.636323][ T3606] loop7: rw=1, sector=201, nr_sectors = 8 limit=128
[  669.651358][ T3606] kworker/u8:10: attempt to access beyond end of device
[  669.651358][ T3606] loop7: rw=1, sector=217, nr_sectors = 8 limit=128
[  669.672587][ T3606] kworker/u8:10: attempt to access beyond end of device
[  669.672587][ T3606] loop7: rw=1, sector=233, nr_sectors = 8 limit=128
[  669.689584][ T3606] kworker/u8:10: attempt to access beyond end of device
[  669.689584][ T3606] loop7: rw=1, sector=249, nr_sectors = 8 limit=128
[  669.704022][ T3606] kworker/u8:10: attempt to access beyond end of device
[  669.704022][ T3606] loop7: rw=1, sector=265, nr_sectors = 8 limit=128
[  669.718628][ T3606] kworker/u8:10: attempt to access beyond end of device
[  669.718628][ T3606] loop7: rw=1, sector=281, nr_sectors = 8 limit=128
[  669.733027][ T3606] kworker/u8:10: attempt to access beyond end of device
[  669.733027][ T3606] loop7: rw=1, sector=297, nr_sectors = 8 limit=128
[  670.002313][ T8231] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  670.109596][ T8231] ext4 filesystem being mounted at /15/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  670.553104][ T8243] netlink: 'syz.5.462': attribute type 39 has an invalid length.
[  670.671573][ T8243] bridge0: port 1(bridge_slave_0) entered disabled state
[  670.857233][ T8243] bridge_slave_0 (unregistering): left allmulticast mode
[  670.865179][ T8243] bridge_slave_0 (unregistering): left promiscuous mode
[  670.874242][ T8243] bridge0: port 1(bridge_slave_0) entered disabled state
[  671.222107][ T7617] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  672.573585][ T8260] input: syz1 as /devices/virtual/input/input8
[  673.926235][ T8263] netlink: 16 bytes leftover after parsing attributes in process `syz.7.468'.
[  674.430716][ T8268] loop6: detected capacity change from 0 to 512
[  675.039366][ T8268] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  675.053745][ T8268] ext4 filesystem being mounted at /17/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  675.325373][   T30] audit: type=1800 audit(1754591870.563:303): pid=8268 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.469" name="file1" dev="loop6" ino=15 res=0 errno=0
[  675.347583][   T30] audit: type=1800 audit(1754591870.593:304): pid=8268 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.469" name="file2" dev="loop6" ino=16 res=0 errno=0
[  675.369774][   T30] audit: type=1800 audit(1754591870.603:305): pid=8268 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.469" name="file1" dev="loop6" ino=15 res=0 errno=0
[  675.570825][ T8281] loop4: detected capacity change from 0 to 128
[  675.727065][ T8281] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  675.799386][ T8281] ext4 filesystem being mounted at /172/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  676.279316][ T7617] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  676.772377][ T8296] netlink: 'syz.6.476': attribute type 39 has an invalid length.
[  676.853792][ T8294] loop7: detected capacity change from 0 to 128
[  676.891393][ T5807] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  676.988934][ T8294] FAT-fs (loop7): Directory bread(block 162) failed
[  676.996135][ T8294] FAT-fs (loop7): Directory bread(block 163) failed
[  677.003979][ T8294] FAT-fs (loop7): Directory bread(block 164) failed
[  677.011480][ T8294] FAT-fs (loop7): Directory bread(block 165) failed
[  677.019450][ T8294] FAT-fs (loop7): Directory bread(block 166) failed
[  677.026579][ T8294] FAT-fs (loop7): Directory bread(block 167) failed
[  677.038280][ T8294] FAT-fs (loop7): Directory bread(block 168) failed
[  677.046978][ T8294] FAT-fs (loop7): Directory bread(block 169) failed
[  677.215213][ T8294] FAT-fs (loop7): Directory bread(block 162) failed
[  677.222830][ T8294] FAT-fs (loop7): Directory bread(block 163) failed
[  677.359813][ T8294] bio_check_eod: 4 callbacks suppressed
[  677.359902][ T8294] syz.7.477: attempt to access beyond end of device
[  677.359902][ T8294] loop7: rw=3, sector=226, nr_sectors = 6 limit=128
[  677.379645][ T8294] syz.7.477: attempt to access beyond end of device
[  677.379645][ T8294] loop7: rw=2051, sector=232, nr_sectors = 2 limit=128
[  679.399306][ T8325] input: syz1 as /devices/virtual/input/input9
[  680.487129][ T8322] loop8: detected capacity change from 0 to 1024
[  680.600228][ T8322] journal_path: Non-blockdev passed as './file1'
[  680.607304][ T8322] EXT4-fs: error: could not find journal device path
[  682.055789][ T8331] netlink: 'syz.6.488': attribute type 6 has an invalid length.
[  682.452166][ T8335] 9pnet: p9_errstr2errno: server reported unknown error ÿÿÿÿÿÿÿÿ0xffffffffffffffff
[  682.620739][ T8338] netlink: 'syz.8.491': attribute type 39 has an invalid length.
[  682.657123][ T8340] loop7: detected capacity change from 0 to 128
[  682.984259][ T8340] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  683.037709][ T8340] ext4 filesystem being mounted at /21/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  683.165640][ T8345] loop6: detected capacity change from 0 to 128
[  683.200190][ T8334] loop4: detected capacity change from 0 to 4096
[  683.263936][ T8345] FAT-fs (loop6): Directory bread(block 162) failed
[  683.278549][ T8345] FAT-fs (loop6): Directory bread(block 163) failed
[  683.294423][ T8345] FAT-fs (loop6): Directory bread(block 164) failed
[  683.304471][ T8345] FAT-fs (loop6): Directory bread(block 165) failed
[  683.311833][ T8345] FAT-fs (loop6): Directory bread(block 166) failed
[  683.319630][ T8345] FAT-fs (loop6): Directory bread(block 167) failed
[  683.326916][ T8345] FAT-fs (loop6): Directory bread(block 168) failed
[  683.334229][ T8345] FAT-fs (loop6): Directory bread(block 169) failed
[  683.443930][ T8345] FAT-fs (loop6): Directory bread(block 162) failed
[  683.451397][ T8345] FAT-fs (loop6): Directory bread(block 163) failed
[  683.499241][ T8345] syz.6.493: attempt to access beyond end of device
[  683.499241][ T8345] loop6: rw=3, sector=226, nr_sectors = 6 limit=128
[  683.514532][ T8345] syz.6.493: attempt to access beyond end of device
[  683.514532][ T8345] loop6: rw=2051, sector=232, nr_sectors = 2 limit=128
[  683.544127][ T8334] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  684.120318][ T7668] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  684.452898][ T5807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  685.064669][ T8360] netlink: 8 bytes leftover after parsing attributes in process `syz.7.496'.
[  685.075846][ T8360] netlink: 4 bytes leftover after parsing attributes in process `syz.7.496'.
[  685.218237][ T8362] loop6: detected capacity change from 0 to 128
[  685.832704][ T8367] input: syz1 as /devices/virtual/input/input10
[  685.846449][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  685.943644][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  689.791869][ T8382] netlink: 'syz.5.504': attribute type 39 has an invalid length.
[  690.156893][ T8388] loop7: detected capacity change from 0 to 128
[  690.297838][ T8388] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  690.397156][ T8391] netlink: 8 bytes leftover after parsing attributes in process `syz.4.508'.
[  690.412195][ T8388] ext4 filesystem being mounted at /24/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  691.106108][ T7668] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  691.619765][ T8391] syz.4.508 (8391) used greatest stack depth: 2016 bytes left
[  692.121800][ T8405] loop8: detected capacity change from 0 to 128
[  692.221379][ T8408] input: syz1 as /devices/virtual/input/input11
[  692.757187][ T8405] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  694.733844][ T8405] ext4 filesystem being mounted at /22/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  694.783439][ T8406] netlink: 8 bytes leftover after parsing attributes in process `syz.7.511'.
[  694.794813][ T8406] netlink: 4 bytes leftover after parsing attributes in process `syz.7.511'.
[  695.936385][ T8418] netlink: 4 bytes leftover after parsing attributes in process `syz.6.515'.
[  696.093361][ T7659] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  696.290108][ T8427] netlink: 20 bytes leftover after parsing attributes in process `syz.4.518'.
[  698.669335][ T8454] input: syz1 as /devices/virtual/input/input12
[  701.196246][ T8459] netlink: 8 bytes leftover after parsing attributes in process `syz.6.527'.
[  701.211662][ T8459] netlink: 4 bytes leftover after parsing attributes in process `syz.6.527'.
[  701.270825][   T24] usb 5-1: new full-speed USB device number 6 using dummy_hcd
[  701.542377][   T24] usb 5-1: config 0 interface 0 has no altsetting 0
[  701.550544][   T24] usb 5-1: New USB device found, idVendor=046d, idProduct=c294, bcdDevice= 0.00
[  701.561208][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  701.747903][   T24] usb 5-1: config 0 descriptor??
[  702.509321][   T24] usb 5-1: can't set config #0, error -71
[  702.524717][   T24] usb 5-1: USB disconnect, device number 6
[  702.592732][ T8470] usb usb1: usbfs: process 8470 (syz.7.533) did not claim interface 0 before use
[  703.765896][ T8485] loop7: detected capacity change from 0 to 512
[  704.107347][ T8485] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  704.121204][ T8485] ext4 filesystem being mounted at /31/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  704.301574][ T8485] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  704.514002][ T8495] tipc: Started in network mode
[  704.519598][ T8495] tipc: Node identity fa288fdc8a28, cluster identity 4711
[  704.528140][ T8495] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  704.646697][ T8489] tipc: Resetting bearer <eth:syzkaller0>
[  704.832811][ T8489] tipc: Disabling bearer <eth:syzkaller0>
[  704.984907][ T8504] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  705.423313][ T8507] loop5: detected capacity change from 0 to 512
[  705.635420][ T8507] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #15: comm syz.5.544: iget: bad extended attribute block 1
[  705.716083][ T8507] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.544: couldn't read orphan inode 15 (err -117)
[  705.754312][ T8507] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  706.339053][ T7404] usb 8-1: new full-speed USB device number 2 using dummy_hcd
[  706.740967][ T8523] loop4: detected capacity change from 0 to 1024
[  707.217769][ T8523] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  708.342242][ T7601] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  709.210832][ T5807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  709.786882][ T7404] usb 8-1: device descriptor read/all, error -71
[  709.879411][ T8534] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  712.064094][ T8566] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  712.578195][ T8574] loop5: detected capacity change from 0 to 512
[  712.812565][ T8574] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #15: comm syz.5.560: iget: bad extended attribute block 1
[  712.870164][ T8574] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.560: couldn't read orphan inode 15 (err -117)
[  713.037020][ T8574] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  713.159008][   T24] usb 7-1: new full-speed USB device number 2 using dummy_hcd
[  713.447718][   T24] usb 7-1: config 0 interface 0 has no altsetting 0
[  713.455302][   T24] usb 7-1: New USB device found, idVendor=046d, idProduct=c294, bcdDevice= 0.00
[  713.466136][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  713.566446][   T24] usb 7-1: config 0 descriptor??
[  713.599517][ T5812] Bluetooth: hci2: command 0x0406 tx timeout
[  713.599657][ T5812] Bluetooth: hci0: command 0x0406 tx timeout
[  714.053048][ T7601] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  714.121260][   T24] usbhid 7-1:0.0: can't add hid device: -71
[  714.128220][   T24] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  714.167517][   T24] usb 7-1: USB disconnect, device number 2
[  714.927353][ T8600] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  716.577660][ T8620] loop6: detected capacity change from 0 to 164
[  716.688948][   T30] audit: type=1326 audit(1754591911.883:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8621 comm="syz.4.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  716.713711][   T30] audit: type=1326 audit(1754591911.883:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8621 comm="syz.4.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  716.737274][   T30] audit: type=1326 audit(1754591911.983:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8621 comm="syz.4.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  716.937027][ T8620] syz.6.577: attempt to access beyond end of device
[  716.937027][ T8620] loop6: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  716.952253][ T8620] syz.6.577: attempt to access beyond end of device
[  716.952253][ T8620] loop6: rw=0, sector=263328, nr_sectors = 4 limit=164
[  717.021188][   T30] audit: type=1326 audit(1754591912.133:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8621 comm="syz.4.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  717.046488][   T30] audit: type=1326 audit(1754591912.133:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8621 comm="syz.4.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  717.071271][   T30] audit: type=1326 audit(1754591912.143:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8621 comm="syz.4.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  717.097603][   T30] audit: type=1326 audit(1754591912.163:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8621 comm="syz.4.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  717.122753][   T30] audit: type=1326 audit(1754591912.163:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8621 comm="syz.4.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  717.140446][ T8619] tipc: Started in network mode
[  717.146264][   T30] audit: type=1326 audit(1754591912.183:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8621 comm="syz.4.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  717.152127][ T8619] tipc: Node identity 2e7632de66e, cluster identity 4711
[  717.176870][   T30] audit: type=1326 audit(1754591912.183:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8621 comm="syz.4.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  717.215725][ T8619] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  717.398746][ T8626] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  717.592476][ T8617] tipc: Resetting bearer <eth:syzkaller0>
[  717.829339][ T8617] tipc: Disabling bearer <eth:syzkaller0>
[  718.064921][ T8633] tipc: Started in network mode
[  718.071921][ T8633] tipc: Node identity 06296a194b41, cluster identity 4711
[  718.081772][ T8633] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  718.305569][ T8624] tipc: Resetting bearer <eth:syzkaller0>
[  718.399516][ T8634] loop8: detected capacity change from 0 to 512
[  718.633849][ T8624] tipc: Disabling bearer <eth:syzkaller0>
[  718.716082][ T5107] Bluetooth: hci4: command 0x0406 tx timeout
[  718.939454][ T8634] EXT4-fs error (device loop8): ext4_orphan_get:1392: inode #15: comm syz.8.579: iget: bad extended attribute block 1
[  719.045240][ T8634] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.579: couldn't read orphan inode 15 (err -117)
[  719.151511][ T8634] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  720.345156][ T8652] loop4: detected capacity change from 0 to 40427
[  720.772564][ T8652] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  720.785974][ T7659] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  720.834015][ T8652] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  722.166650][ T8677] loop7: detected capacity change from 0 to 128
[  722.301384][ T8678] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  722.945889][ T8677] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  723.050746][ T8683] loop6: detected capacity change from 0 to 512
[  723.142316][ T8677] ext4 filesystem being mounted at /41/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  723.324092][ T8683] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  723.714671][ T8683] EXT4-fs (loop6): orphan cleanup on readonly fs
[  723.751879][ T5107] Bluetooth: hci5: command 0x0406 tx timeout
[  723.940607][ T8683] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.591: bg 0: block 248: padding at end of block bitmap is not set
[  724.066690][ T8693] loop8: detected capacity change from 0 to 164
[  724.186381][ T8683] Quota error (device loop6): write_blk: dquota write failed
[  724.196244][ T8683] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  724.207406][ T8683] EXT4-fs error (device loop6): ext4_acquire_dquot:6933: comm syz.6.591: Failed to acquire dquot type 1
[  724.273639][ T5807] syz-executor: attempt to access beyond end of device
[  724.273639][ T5807] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  724.288625][ T5807] CPU: 0 UID: 0 PID: 5807 Comm: syz-executor Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(none) 
[  724.288780][ T5807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  724.288876][ T5807] Call Trace:
[  724.288928][ T5807]  <TASK>
[  724.288981][ T5807]  __dump_stack+0x26/0x30
[  724.289164][ T5807]  dump_stack_lvl+0x1df/0x270
[  724.289352][ T5807]  dump_stack+0x1e/0x25
[  724.289516][ T5807]  f2fs_handle_critical_error+0xa6f/0xc20
[  724.289752][ T5807]  f2fs_stop_checkpoint+0x65/0x80
[  724.289943][ T5807]  f2fs_write_end_io+0x101c/0x1bc0
[  724.290172][ T5807]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  724.290362][ T5807]  bio_endio+0xe27/0xf80
[  724.290571][ T5807]  submit_bio_noacct+0x214/0x2710
[  724.290861][ T5807]  submit_bio+0x5a9/0x5d0
[  724.291089][ T5807]  f2fs_submit_write_bio+0x92/0x250
[  724.291263][ T5807]  __submit_merged_bio+0x16f/0x6a0
[  724.291435][ T5807]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  724.291631][ T5807]  __submit_merged_write_cond+0x458/0x9a0
[  724.291846][ T5807]  f2fs_write_data_pages+0x4bb2/0x5480
[  724.292173][ T5807]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  724.292361][ T5807]  ? __pfx_lru_cache_disable+0x1/0x10
[  724.292557][ T5807]  ? filter_irq_stacks+0x49/0x190
[  724.292765][ T5807]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  724.292957][ T5807]  ? stack_depot_save_flags+0x35/0x7b0
[  724.293141][ T5807]  ? kmsan_get_metadata+0xfb/0x160
[  724.293323][ T5807]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  724.293565][ T5807]  ? kmsan_get_metadata+0xfb/0x160
[  724.293732][ T5807]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  724.293909][ T5807]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  724.294097][ T5807]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  724.294286][ T5807]  do_writepages+0x3f2/0x860
[  724.294440][ T5807]  ? _raw_spin_unlock+0x30/0x50
[  724.294629][ T5807]  ? wbc_attach_and_unlock_inode+0x131/0x680
[  724.294865][ T5807]  filemap_fdatawrite+0x207/0x260
[  724.295120][ T5807]  f2fs_sync_dirty_inodes+0x2ab/0x9e0
[  724.295359][ T5807]  f2fs_write_checkpoint+0xfe2/0x2b00
[  724.295699][ T5807]  kill_f2fs_super+0x2ff/0x970
[  724.295921][ T5807]  ? __pfx_kill_f2fs_super+0x10/0x10
[  724.296122][ T5807]  deactivate_locked_super+0xcb/0x3c0
[  724.296302][ T5807]  deactivate_super+0x12f/0x140
[  724.296464][ T5807]  cleanup_mnt+0x6fb/0x780
[  724.296656][ T5807]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  724.296909][ T5807]  ? __pfx___cleanup_mnt+0x10/0x10
[  724.297132][ T5807]  __cleanup_mnt+0x22/0x30
[  724.297343][ T5807]  task_work_run+0x209/0x2b0
[  724.297532][ T5807]  exit_to_user_mode_loop+0x2a6/0x330
[  724.297711][ T5807]  do_syscall_64+0x1e3/0x210
[  724.297892][ T5807]  ? irqentry_exit+0x16/0x60
[  724.298053][ T5807]  ? clear_bhb_loop+0x40/0x90
[  724.298215][ T5807]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  724.298380][ T5807] RIP: 0033:0x7f941c18ff17
[  724.298480][ T5807] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  724.298612][ T5807] RSP: 002b:00007fff5e00f208 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  724.298749][ T5807] RAX: 0000000000000000 RBX: 00007f941c211c05 RCX: 00007f941c18ff17
[  724.298866][ T5807] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff5e00f2c0
[  724.298965][ T5807] RBP: 00007fff5e00f2c0 R08: 0000000000000000 R09: 0000000000000000
[  724.299059][ T5807] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff5e010350
[  724.299157][ T5807] R13: 00007f941c211c05 R14: 00000000000b03f9 R15: 00007fff5e010390
[  724.299295][ T5807]  </TASK>
[  724.669510][ T5807] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  724.729748][ T8693] syz.8.592: attempt to access beyond end of device
[  724.729748][ T8693] loop8: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  724.745215][ T8693] syz.8.592: attempt to access beyond end of device
[  724.745215][ T8693] loop8: rw=0, sector=263328, nr_sectors = 4 limit=164
[  724.864697][ T8683] EXT4-fs (loop6): 1 truncate cleaned up
[  725.139685][ T7668] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  725.141694][ T8683] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  726.462684][ T8697] netlink: 8 bytes leftover after parsing attributes in process `syz.5.593'.
[  726.472750][ T8697] netlink: 4 bytes leftover after parsing attributes in process `syz.5.593'.
[  726.668154][ T7617] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  726.839276][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  726.846111][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  727.086092][ T8705] input: syz1 as /devices/virtual/input/input13
[  729.672472][ T8734] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  730.545769][ T8732] loop5: detected capacity change from 0 to 40427
[  731.042628][ T8732] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  731.071660][ T8732] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  731.693927][ T8753] loop8: detected capacity change from 0 to 164
[  732.280551][ T8753] syz.8.606: attempt to access beyond end of device
[  732.280551][ T8753] loop8: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  732.280878][ T8753] syz.8.606: attempt to access beyond end of device
[  732.280878][ T8753] loop8: rw=0, sector=263328, nr_sectors = 4 limit=164
[  734.524637][ T7601] syz-executor: attempt to access beyond end of device
[  734.524637][ T7601] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  734.524891][ T7601] CPU: 1 UID: 0 PID: 7601 Comm: syz-executor Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(none) 
[  734.525043][ T7601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  734.525130][ T7601] Call Trace:
[  734.525180][ T7601]  <TASK>
[  734.525232][ T7601]  __dump_stack+0x26/0x30
[  734.525416][ T7601]  dump_stack_lvl+0x1df/0x270
[  734.525631][ T7601]  dump_stack+0x1e/0x25
[  734.525803][ T7601]  f2fs_handle_critical_error+0xa6f/0xc20
[  734.526025][ T7601]  f2fs_stop_checkpoint+0x65/0x80
[  734.526214][ T7601]  f2fs_write_end_io+0x101c/0x1bc0
[  734.526451][ T7601]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  734.526643][ T7601]  bio_endio+0xe27/0xf80
[  734.526845][ T7601]  submit_bio_noacct+0x214/0x2710
[  734.527098][ T7601]  submit_bio+0x5a9/0x5d0
[  734.527308][ T7601]  f2fs_submit_write_bio+0x92/0x250
[  734.527482][ T7601]  __submit_merged_bio+0x16f/0x6a0
[  734.527651][ T7601]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  734.527834][ T7601]  __submit_merged_write_cond+0x458/0x9a0
[  734.528025][ T7601]  f2fs_write_data_pages+0x4bb2/0x5480
[  734.528338][ T7601]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  734.528521][ T7601]  ? __pfx_lru_cache_disable+0x1/0x10
[  734.528720][ T7601]  ? filter_irq_stacks+0x49/0x190
[  734.528919][ T7601]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  734.529086][ T7601]  ? stack_depot_save_flags+0x35/0x7b0
[  734.529252][ T7601]  ? kmsan_get_metadata+0xfb/0x160
[  734.529426][ T7601]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  734.529662][ T7601]  ? kmsan_get_metadata+0xfb/0x160
[  734.529826][ T7601]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  734.529998][ T7601]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  734.530192][ T7601]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  734.530376][ T7601]  do_writepages+0x3f2/0x860
[  734.530531][ T7601]  ? _raw_spin_unlock+0x30/0x50
[  734.530742][ T7601]  ? wbc_attach_and_unlock_inode+0x131/0x680
[  734.530966][ T7601]  filemap_fdatawrite+0x207/0x260
[  734.531208][ T7601]  f2fs_sync_dirty_inodes+0x2ab/0x9e0
[  734.531438][ T7601]  f2fs_write_checkpoint+0xfe2/0x2b00
[  734.531784][ T7601]  kill_f2fs_super+0x2ff/0x970
[  734.532007][ T7601]  ? __pfx_kill_f2fs_super+0x10/0x10
[  734.532212][ T7601]  deactivate_locked_super+0xcb/0x3c0
[  734.532391][ T7601]  deactivate_super+0x12f/0x140
[  734.532556][ T7601]  cleanup_mnt+0x6fb/0x780
[  734.532755][ T7601]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  734.532999][ T7601]  ? __pfx___cleanup_mnt+0x10/0x10
[  734.533199][ T7601]  __cleanup_mnt+0x22/0x30
[  734.533389][ T7601]  task_work_run+0x209/0x2b0
[  734.533586][ T7601]  exit_to_user_mode_loop+0x2a6/0x330
[  734.533767][ T7601]  do_syscall_64+0x1e3/0x210
[  734.533929][ T7601]  ? irqentry_exit+0x16/0x60
[  734.534069][ T7601]  ? clear_bhb_loop+0x40/0x90
[  734.534225][ T7601]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  734.534383][ T7601] RIP: 0033:0x7ff2f638ff17
[  734.534500][ T7601] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  734.534637][ T7601] RSP: 002b:00007ffe4f824848 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  734.534782][ T7601] RAX: 0000000000000000 RBX: 00007ff2f6411c05 RCX: 00007ff2f638ff17
[  734.534881][ T7601] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe4f824900
[  734.534969][ T7601] RBP: 00007ffe4f824900 R08: 0000000000000000 R09: 0000000000000000
[  734.535058][ T7601] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe4f825990
[  734.535153][ T7601] R13: 00007ff2f6411c05 R14: 00000000000b2bf0 R15: 00007ffe4f8259d0
[  734.535288][ T7601]  </TASK>
[  734.535909][ T7601] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  737.954811][ T8796] input: syz1 as /devices/virtual/input/input14
[  738.688460][ T8809] netlink: 8 bytes leftover after parsing attributes in process `syz.4.619'.
[  738.688599][ T8809] netlink: 312 bytes leftover after parsing attributes in process `syz.4.619'.
[  738.688722][ T8809] netlink: 8 bytes leftover after parsing attributes in process `syz.4.619'.
[  739.552213][   T30] audit: type=1326 audit(1754591934.803:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8818 comm="syz.7.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd65238ebe9 code=0x7ffc0000
[  739.552477][   T30] audit: type=1326 audit(1754591934.803:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8818 comm="syz.7.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd65238ebe9 code=0x7ffc0000
[  739.643892][   T30] audit: type=1326 audit(1754591934.883:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8818 comm="syz.7.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd65238ebe9 code=0x7ffc0000
[  739.647850][   T30] audit: type=1326 audit(1754591934.903:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8818 comm="syz.7.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd65238ebe9 code=0x7ffc0000
[  739.653198][   T30] audit: type=1326 audit(1754591934.913:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8818 comm="syz.7.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd65238ebe9 code=0x7ffc0000
[  739.698247][   T30] audit: type=1326 audit(1754591934.953:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8818 comm="syz.7.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd65238ebe9 code=0x7ffc0000
[  739.698787][   T30] audit: type=1326 audit(1754591934.953:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8818 comm="syz.7.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd65238ebe9 code=0x7ffc0000
[  739.754126][   T30] audit: type=1326 audit(1754591935.013:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8818 comm="syz.7.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=140 compat=0 ip=0x7fd65238ebe9 code=0x7ffc0000
[  739.754405][   T30] audit: type=1326 audit(1754591935.013:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8818 comm="syz.7.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd65238ebe9 code=0x7ffc0000
[  739.754644][   T30] audit: type=1326 audit(1754591935.013:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8818 comm="syz.7.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd65238ebe9 code=0x7ffc0000
[  741.500233][ T8840] syzkaller1: entered promiscuous mode
[  741.506822][ T8840] syzkaller1: entered allmulticast mode
[  742.872415][ T8854] Can't find ip_set type hash:ip,p/rt
[  743.733549][ T8860] hub 6-0:1.0: USB hub found
[  743.750897][ T8860] hub 6-0:1.0: 1 port detected
[  748.540168][ T8902] input: syz1 as /devices/virtual/input/input15
[  749.400013][ T8908] syzkaller1: entered promiscuous mode
[  749.406440][ T8908] syzkaller1: entered allmulticast mode
[  751.964162][   T30] kauditd_printk_skb: 28 callbacks suppressed
[  751.964373][   T30] audit: type=1326 audit(1754591947.133:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8927 comm="syz.5.648" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff2f638ebe9 code=0x0
[  753.108104][ T1879] IPVS: starting estimator thread 0...
[  753.209112][ T8943] IPVS: using max 192 ests per chain, 9600 per kthread
[  754.795574][ T8956] input: syz1 as /devices/virtual/input/input16
[  758.334635][ T5868] IPVS: starting estimator thread 0...
[  758.721529][ T8988] IPVS: using max 192 ests per chain, 9600 per kthread
[  758.937140][ T8992] loop7: detected capacity change from 0 to 512
[  759.150928][ T8992] Quota error (device loop7): v2_read_file_info: Free block number 1 out of range (1, 6).
[  759.168959][ T8992] EXT4-fs warning (device loop7): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  759.190092][ T8992] EXT4-fs (loop7): mount failed
[  759.604748][ T9003] netlink: 'syz.5.668': attribute type 13 has an invalid length.
[  760.209674][ T9003] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  761.203281][ T9016] input: syz1 as /devices/virtual/input/input17
[  762.311956][ T9025] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  763.348649][    C1] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  764.918599][ T9044] loop6: detected capacity change from 0 to 128
[  765.235636][ T9044] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  765.329501][ T9044] ext4 filesystem being mounted at /61/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  765.379457][ T9046] program syz.4.682 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  765.941994][ T7617] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  767.226893][ T5868] IPVS: starting estimator thread 0...
[  767.329749][ T9076] IPVS: using max 192 ests per chain, 9600 per kthread
[  767.560693][ T9079] input: syz1 as /devices/virtual/input/input18
[  768.933084][ T9096] loop6: detected capacity change from 0 to 128
[  769.056711][ T9096] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  769.141172][ T9096] ext4 filesystem being mounted at /64/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  769.844595][ T7617] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  770.289018][ T1879] IPVS: starting estimator thread 0...
[  770.399052][ T9111] IPVS: using max 192 ests per chain, 9600 per kthread
[  772.702280][ T9137] loop5: detected capacity change from 0 to 128
[  772.993599][ T9137] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  773.024607][ T9137] ext4 filesystem being mounted at /64/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  773.891135][ T7601] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  779.280927][ T9174] netlink: 'syz.5.723': attribute type 4 has an invalid length.
[  781.973756][ T9187] lo speed is unknown, defaulting to 1000
[  781.980351][ T9187] lo speed is unknown, defaulting to 1000
[  781.987825][ T9187] lo speed is unknown, defaulting to 1000
[  782.012559][ T9187] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  782.057646][ T9187] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  782.850817][ T9187] lo speed is unknown, defaulting to 1000
[  782.860033][ T9187] lo speed is unknown, defaulting to 1000
[  782.869042][ T9187] lo speed is unknown, defaulting to 1000
[  782.877900][ T9187] lo speed is unknown, defaulting to 1000
[  782.886785][ T9187] lo speed is unknown, defaulting to 1000
[  785.979533][ T5107] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  786.030654][ T5107] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  786.064273][ T5107] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  786.155834][ T5107] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  786.190267][ T5107] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  786.382703][ T9214] lo speed is unknown, defaulting to 1000
[  786.530048][ T9218] netlink: 324 bytes leftover after parsing attributes in process `syz.8.738'.
[  788.334987][ T5107] Bluetooth: hci3: command tx timeout
[  788.387582][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  788.395112][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  790.430642][ T5107] Bluetooth: hci3: command tx timeout
[  792.319806][ T9214] chnl_net:caif_netlink_parms(): no params data found
[  792.479757][ T5107] Bluetooth: hci3: command tx timeout
[  794.601671][ T5107] Bluetooth: hci3: command tx timeout
[  795.720638][ T9264] netlink: 316 bytes leftover after parsing attributes in process `syz.5.752'.
[  796.907842][ T9214] bridge0: port 1(bridge_slave_0) entered blocking state
[  796.916863][ T9214] bridge0: port 1(bridge_slave_0) entered disabled state
[  796.925595][ T9214] bridge_slave_0: entered allmulticast mode
[  796.935901][ T9214] bridge_slave_0: entered promiscuous mode
[  797.275151][ T9214] bridge0: port 2(bridge_slave_1) entered blocking state
[  797.283116][ T9214] bridge0: port 2(bridge_slave_1) entered disabled state
[  797.291505][ T9214] bridge_slave_1: entered allmulticast mode
[  797.302140][ T9214] bridge_slave_1: entered promiscuous mode
[  798.017010][ T9214] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  798.314518][ T9214] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  798.442017][ T3630] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  799.740922][ T9302] netlink: 316 bytes leftover after parsing attributes in process `syz.4.766'.
[  799.976195][ T3630] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  800.340123][ T9214] team0: Port device team_slave_0 added
[  800.525841][ T3630] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  800.843084][ T9214] team0: Port device team_slave_1 added
[  801.131992][ T3630] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  802.405020][ T9214] batman_adv: batadv0: Adding interface: batadv_slave_0
[  802.413205][ T9214] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  802.441806][ T9214] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  803.546556][ T9214] batman_adv: batadv0: Adding interface: batadv_slave_1
[  803.554887][ T9214] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  803.584051][ T9214] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  803.930195][ T3630] bridge_slave_1: left allmulticast mode
[  803.936204][ T3630] bridge_slave_1: left promiscuous mode
[  803.944757][ T3630] bridge0: port 2(bridge_slave_1) entered disabled state
[  804.306137][ T3630] bridge_slave_0: left allmulticast mode
[  804.313705][ T3630] bridge_slave_0: left promiscuous mode
[  804.330183][ T3630] bridge0: port 1(bridge_slave_0) entered disabled state
[  804.400631][ T9327] loop5: detected capacity change from 0 to 512
[  804.505677][ T9327] vfat: Unknown parameter 'context'
[  806.939798][ T9340] netlink: 316 bytes leftover after parsing attributes in process `syz.8.778'.
[  807.648126][ T3630] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  807.748988][ T3630] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  807.785341][ T3630] bond0 (unregistering): Released all slaves
[  808.543700][ T3630] tipc: Left network mode
[  809.279042][ T9348] macvtap0: refused to change device tx_queue_len
[  809.319610][ T9214] hsr_slave_0: entered promiscuous mode
[  809.331181][ T9214] hsr_slave_1: entered promiscuous mode
[  809.344833][ T9214] debugfs: 'hsr0' already exists in 'hsr'
[  809.351457][ T9214] Cannot create hsr debugfs directory
[  809.673532][ T9359] loop4: detected capacity change from 0 to 164
[  810.268956][ T3630] hsr_slave_0: left promiscuous mode
[  810.337253][ T3630] hsr_slave_1: left promiscuous mode
[  810.347585][ T3630] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  810.355551][ T3630] batman_adv: batadv0: Removing interface: batadv_slave_0
[  810.512317][ T3630] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  810.523618][ T3630] batman_adv: batadv0: Removing interface: batadv_slave_1
[  810.762522][ T3630] veth1_macvtap: left promiscuous mode
[  810.777953][ T3630] veth0_macvtap: left promiscuous mode
[  810.784700][ T3630] veth1_vlan: left promiscuous mode
[  810.791056][ T3630] veth0_vlan: left promiscuous mode
[  813.391437][ T3630] team0 (unregistering): Port device team_slave_1 removed
[  813.666738][ T3630] team0 (unregistering): Port device team_slave_0 removed
[  818.595102][ T9390] lo speed is unknown, defaulting to 1000
[  820.953786][ T9214] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  821.130458][ T9214] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  821.263914][ T9214] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  821.400103][ T9214] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  822.026730][ T9431] netlink: 60 bytes leftover after parsing attributes in process `syz.4.802'.
[  822.109007][ T9429] netlink: 60 bytes leftover after parsing attributes in process `syz.4.802'.
[  825.083096][ T9214] 8021q: adding VLAN 0 to HW filter on device bond0
[  825.149083][ T9450] loop8: detected capacity change from 0 to 128
[  825.541283][ T9450] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  825.705078][ T9450] ext4 filesystem being mounted at /90/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  826.170389][ T9214] 8021q: adding VLAN 0 to HW filter on device team0
[  826.478599][ T3775] bridge0: port 1(bridge_slave_0) entered blocking state
[  826.486410][ T3775] bridge0: port 1(bridge_slave_0) entered forwarding state
[  826.899580][ T3775] bridge0: port 2(bridge_slave_1) entered blocking state
[  826.907647][ T3775] bridge0: port 2(bridge_slave_1) entered forwarding state
[  827.176401][ T7659] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  827.549114][ T9460] loop5: detected capacity change from 0 to 128
[  830.890807][ T9479] netlink: 60 bytes leftover after parsing attributes in process `syz.8.815'.
[  831.169718][ T9476] netlink: 60 bytes leftover after parsing attributes in process `syz.8.815'.
[  832.613293][ T9497] loop5: detected capacity change from 0 to 128
[  832.921928][ T9497] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  832.990721][ T9497] ext4 filesystem being mounted at /94/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  833.075178][ T9214] 8021q: adding VLAN 0 to HW filter on device batadv0
[  833.609284][ T9508] loop8: detected capacity change from 0 to 512
[  833.726739][ T9508] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  833.827865][ T9508] EXT4-fs (loop8): 1 orphan inode deleted
[  833.835088][ T9508] EXT4-fs (loop8): 1 truncate cleaned up
[  833.843869][ T9508] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  833.938729][   T30] audit: type=1326 audit(1754592029.173:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9506 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d9458ebe9 code=0x7ffc0000
[  833.962022][   T30] audit: type=1326 audit(1754592029.173:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9506 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8d9458ebe9 code=0x7ffc0000
[  833.967540][ T7601] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  833.984875][   T30] audit: type=1326 audit(1754592029.173:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9506 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d9458ebe9 code=0x7ffc0000
[  834.018891][   T30] audit: type=1326 audit(1754592029.173:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9506 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8d9458ebe9 code=0x7ffc0000
[  834.042220][   T30] audit: type=1326 audit(1754592029.183:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9506 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d9458ebe9 code=0x7ffc0000
[  834.065414][   T30] audit: type=1326 audit(1754592029.183:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9506 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f8d9458ebe9 code=0x7ffc0000
[  834.088227][   T30] audit: type=1326 audit(1754592029.183:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9506 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d9458ebe9 code=0x7ffc0000
[  834.111795][   T30] audit: type=1326 audit(1754592029.183:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9506 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8d9458ebe9 code=0x7ffc0000
[  834.136175][   T30] audit: type=1326 audit(1754592029.183:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9506 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d9458ebe9 code=0x7ffc0000
[  834.160248][   T30] audit: type=1326 audit(1754592029.183:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9506 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8d9458ebe9 code=0x7ffc0000
[  834.451316][ T9508] veth0_to_team: entered promiscuous mode
[  835.231947][ T9515] infiniband syz2: set down
[  835.236709][ T9515] infiniband syz2: added syzkaller0
[  835.390349][ T9528] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  835.439106][ T9501] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  835.457930][ T9501] EXT4-fs (loop8): Remounting filesystem read-only
[  835.628942][ T7659] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  835.818834][ T9515] RDS/IB: syz2: added
[  835.823331][ T9515] smc: adding ib device syz2 with port count 1
[  835.831530][ T9515] smc:    ib device syz2 port 1 has pnetid 
[  839.126023][ T9214] veth0_vlan: entered promiscuous mode
[  839.346435][ T9214] veth1_vlan: entered promiscuous mode
[  839.896381][ T3606] smc: removing ib device syz2
[  840.043008][ T9214] veth0_macvtap: entered promiscuous mode
[  840.194256][ T9214] veth1_macvtap: entered promiscuous mode
[  840.552008][ T9214] batman_adv: batadv0: Interface activated: batadv_slave_0
[  840.803345][ T9214] batman_adv: batadv0: Interface activated: batadv_slave_1
[  841.340291][   T57] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  841.450827][   T57] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  841.501561][ T4329] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  841.699555][ T4329] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  844.936188][ T9588] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  846.450303][ T5812] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  846.491535][ T5812] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  846.503380][ T5812] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  846.598162][ T5812] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  846.631461][ T5812] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  846.955730][ T9605] lo speed is unknown, defaulting to 1000
[  848.708648][ T5107] Bluetooth: hci5: command tx timeout
[  849.498524][ T9646] pimreg: entered allmulticast mode
[  849.617895][ T9605] chnl_net:caif_netlink_parms(): no params data found
[  849.647454][ T9646] pimreg: left allmulticast mode
[  849.705788][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  849.713112][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  850.868714][ T5107] Bluetooth: hci5: command tx timeout
[  851.175824][   T57] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  851.619829][   T57] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  851.881524][   T57] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  852.147377][   T57] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  852.840453][   T57] bridge_slave_1: left allmulticast mode
[  852.846612][   T57] bridge_slave_1: left promiscuous mode
[  852.855765][   T57] bridge0: port 2(bridge_slave_1) entered disabled state
[  852.930382][ T5812] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  852.943216][ T5812] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  852.951901][ T8559] Bluetooth: hci5: command tx timeout
[  852.969103][ T5812] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  852.983164][ T5812] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  852.995093][ T5812] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  853.025625][   T57] bridge_slave_0: left allmulticast mode
[  853.032333][   T57] bridge_slave_0: left promiscuous mode
[  853.039337][   T57] bridge0: port 1(bridge_slave_0) entered disabled state
[  853.693336][   T57] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  853.767796][   T57] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  853.836489][   T57] bond0 (unregistering): Released all slaves
[  853.956478][ T9670] bond0: (slave batadv0): Releasing backup interface
[  854.026522][ T9670] bridge_slave_1: left allmulticast mode
[  854.033480][ T9670] bridge_slave_1: left promiscuous mode
[  854.040755][ T9670] bridge0: port 2(bridge_slave_1) entered disabled state
[  854.143055][ T9670] bond0: (slave bond_slave_0): Releasing backup interface
[  854.239842][ T9670] bond0: (slave bond_slave_1): Releasing backup interface
[  854.388102][ T9670] team0: Port device team_slave_0 removed
[  854.444231][ T9670] team0: Port device team_slave_1 removed
[  854.455536][ T9670] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  854.463642][ T9670] batman_adv: batadv0: Removing interface: batadv_slave_0
[  854.507437][ T9670] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  854.515621][ T9670] batman_adv: batadv0: Removing interface: batadv_slave_1
[  854.716359][ T9669] lo speed is unknown, defaulting to 1000
[  854.855859][ T9672] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  855.029972][ T5812] Bluetooth: hci3: command tx timeout
[  855.035791][ T5812] Bluetooth: hci5: command tx timeout
[  855.253811][   T57] hsr_slave_0: left promiscuous mode
[  855.306335][   T57] hsr_slave_1: left promiscuous mode
[  855.317343][   T57] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  855.325444][   T57] batman_adv: batadv0: Removing interface: batadv_slave_0
[  855.412238][   T57] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  855.422105][   T57] batman_adv: batadv0: Removing interface: batadv_slave_1
[  855.597866][   T57] veth1_macvtap: left promiscuous mode
[  855.604098][   T57] veth0_macvtap: left promiscuous mode
[  855.610439][   T57] veth1_vlan: left promiscuous mode
[  855.616122][   T57] veth0_vlan: left promiscuous mode
[  856.669949][   T57] team0 (unregistering): Port device team_slave_1 removed
[  856.780515][   T57] team0 (unregistering): Port device team_slave_0 removed
[  857.111607][ T5812] Bluetooth: hci3: command tx timeout
[  857.137546][ T9688] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  857.391589][ T9605] bridge0: port 1(bridge_slave_0) entered blocking state
[  857.403491][ T9605] bridge0: port 1(bridge_slave_0) entered disabled state
[  857.411357][ T9605] bridge_slave_0: entered allmulticast mode
[  857.421213][ T9605] bridge_slave_0: entered promiscuous mode
[  857.709239][ T9605] bridge0: port 2(bridge_slave_1) entered blocking state
[  857.716924][ T9605] bridge0: port 2(bridge_slave_1) entered disabled state
[  857.724995][ T9605] bridge_slave_1: entered allmulticast mode
[  857.735128][ T9605] bridge_slave_1: entered promiscuous mode
[  858.062529][ T9707] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  858.236973][ T9605] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  858.333438][ T9710] lo speed is unknown, defaulting to 1000
[  858.381997][ T9605] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  859.208625][ T5812] Bluetooth: hci3: command tx timeout
[  859.245628][ T9605] team0: Port device team_slave_0 added
[  859.344025][ T9669] chnl_net:caif_netlink_parms(): no params data found
[  859.376774][ T9605] team0: Port device team_slave_1 added
[  859.878417][   T30] kauditd_printk_skb: 16 callbacks suppressed
[  859.878499][   T30] audit: type=1326 audit(1754592055.123:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9724 comm="syz.4.874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  859.988694][ T9605] batman_adv: batadv0: Adding interface: batadv_slave_0
[  859.996352][ T9605] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  860.032605][ T9605] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  860.079850][ T9726] ipip0: entered promiscuous mode
[  860.119058][   T30] audit: type=1326 audit(1754592055.173:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9724 comm="syz.4.874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  860.144434][   T30] audit: type=1326 audit(1754592055.173:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9724 comm="syz.4.874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  860.174693][   T30] audit: type=1326 audit(1754592055.193:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9724 comm="syz.4.874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  860.200225][   T30] audit: type=1326 audit(1754592055.193:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9724 comm="syz.4.874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  860.225115][   T30] audit: type=1326 audit(1754592055.193:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9724 comm="syz.4.874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=30 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  860.249921][   T30] audit: type=1326 audit(1754592055.203:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9724 comm="syz.4.874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  860.279055][   T30] audit: type=1326 audit(1754592055.203:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9724 comm="syz.4.874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  860.279309][   T30] audit: type=1326 audit(1754592055.203:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9724 comm="syz.4.874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  860.279587][   T30] audit: type=1326 audit(1754592055.203:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9724 comm="syz.4.874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f941c18ebe9 code=0x7ffc0000
[  860.287744][ T9605] batman_adv: batadv0: Adding interface: batadv_slave_1
[  860.372587][ T9605] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  860.400291][ T9605] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  860.780036][ T9736] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  861.199316][ T9605] hsr_slave_0: entered promiscuous mode
[  861.210422][ T9605] hsr_slave_1: entered promiscuous mode
[  861.220267][ T9605] debugfs: 'hsr0' already exists in 'hsr'
[  861.226669][ T9605] Cannot create hsr debugfs directory
[  861.279064][ T5812] Bluetooth: hci3: command tx timeout
[  862.056943][ T9669] bridge0: port 1(bridge_slave_0) entered blocking state
[  862.065643][ T9669] bridge0: port 1(bridge_slave_0) entered disabled state
[  862.082981][ T9669] bridge_slave_0: entered allmulticast mode
[  862.093408][ T9669] bridge_slave_0: entered promiscuous mode
[  862.154290][ T9749] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  862.217308][ T9669] bridge0: port 2(bridge_slave_1) entered blocking state
[  862.225871][ T9669] bridge0: port 2(bridge_slave_1) entered disabled state
[  862.234507][ T9669] bridge_slave_1: entered allmulticast mode
[  862.244563][ T9669] bridge_slave_1: entered promiscuous mode
[  862.434512][ T9751] lo speed is unknown, defaulting to 1000
[  863.173302][ T9669] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  863.555827][ T9669] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  863.980138][ T9669] team0: Port device team_slave_0 added
[  864.070276][ T9669] team0: Port device team_slave_1 added
[  864.614779][ T9669] batman_adv: batadv0: Adding interface: batadv_slave_0
[  864.623216][ T9669] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  864.652696][ T9669] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  864.867326][ T9669] batman_adv: batadv0: Adding interface: batadv_slave_1
[  864.876171][ T9669] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  864.903962][ T9669] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  865.571111][ T9669] hsr_slave_0: entered promiscuous mode
[  865.581796][ T9669] hsr_slave_1: entered promiscuous mode
[  865.590999][ T9669] debugfs: 'hsr0' already exists in 'hsr'
[  865.597138][ T9669] Cannot create hsr debugfs directory
[  865.610811][ T9605] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  865.795647][ T9605] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  865.887381][ T9605] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  866.051507][ T9605] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  866.060378][ T9785] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  866.350923][ T9791] lo speed is unknown, defaulting to 1000
[  867.342682][ T9803] netlink: 'syz.8.896': attribute type 6 has an invalid length.
[  868.878909][ T9812] syzkaller0: entered promiscuous mode
[  868.884977][ T9812] syzkaller0: entered allmulticast mode
[  869.577158][ T9605] 8021q: adding VLAN 0 to HW filter on device bond0
[  869.727107][ T9605] 8021q: adding VLAN 0 to HW filter on device team0
[  869.756182][ T9669] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  869.866872][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[  869.874766][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[  869.902569][ T9669] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  869.985007][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[  869.992727][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[  870.061260][ T9669] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  870.170428][ T9669] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  870.312217][ T9824] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  870.578139][ T9829] netlink: 'syz.4.908': attribute type 6 has an invalid length.
[  870.669732][ T9831] lo speed is unknown, defaulting to 1000
[  872.527748][ T9848] loop4: detected capacity change from 0 to 1024
[  872.606303][ T9669] 8021q: adding VLAN 0 to HW filter on device bond0
[  872.612197][ T9848] EXT4-fs: Ignoring removed orlov option
[  872.815370][ T9669] 8021q: adding VLAN 0 to HW filter on device team0
[  872.833340][ T9848] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  872.890975][  T754] bridge0: port 1(bridge_slave_0) entered blocking state
[  872.898817][  T754] bridge0: port 1(bridge_slave_0) entered forwarding state
[  872.916784][  T754] bridge0: port 2(bridge_slave_1) entered blocking state
[  872.924668][  T754] bridge0: port 2(bridge_slave_1) entered forwarding state
[  873.151336][ T9848] EXT4-fs: Ignoring sb option on remount
[  873.157735][ T9848] EXT4-fs: Ignoring removed orlov option
[  873.164895][ T9848] EXT4-fs: Ignoring removed nomblk_io_submit option
[  873.172338][ T9848] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[  873.341369][ T9848] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000.
[  873.496549][ T9855] syzkaller0: entered promiscuous mode
[  873.502547][ T9855] syzkaller0: entered allmulticast mode
[  873.624335][ T9605] 8021q: adding VLAN 0 to HW filter on device batadv0
[  874.063141][ T5807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  874.572063][ T9866] netlink: 'syz.4.917': attribute type 6 has an invalid length.
[  875.055693][ T9874] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  875.462542][ T9878] lo speed is unknown, defaulting to 1000
[  876.869880][ T9669] 8021q: adding VLAN 0 to HW filter on device batadv0
[  877.631241][ T9669] veth0_vlan: entered promiscuous mode
[  877.790311][ T9898] macvtap0: refused to change device tx_queue_len
[  877.799884][ T9669] veth1_vlan: entered promiscuous mode
[  877.814397][ T9605] veth0_vlan: entered promiscuous mode
[  877.999977][ T9605] veth1_vlan: entered promiscuous mode
[  878.366729][ T9669] veth0_macvtap: entered promiscuous mode
[  878.490975][ T9901] syzkaller0: entered promiscuous mode
[  878.497041][ T9901] syzkaller0: entered allmulticast mode
[  878.573160][ T9669] veth1_macvtap: entered promiscuous mode
[  878.992273][ T9605] veth0_macvtap: entered promiscuous mode
[  879.232224][ T9906] lo speed is unknown, defaulting to 1000
[  879.317193][ T9908] tipc: Started in network mode
[  879.323712][ T9908] tipc: Node identity e6805e5a41b3, cluster identity 4711
[  879.332029][ T9908] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  879.405299][ T9605] veth1_macvtap: entered promiscuous mode
[  879.518949][ T9903] tipc: Resetting bearer <eth:syzkaller0>
[  879.525553][ T9905] =====================================================
[  879.535139][ T9905] BUG: KMSAN: kernel-infoleak-after-free in _copy_to_user+0xcc/0x120
[  879.544282][ T9905]  _copy_to_user+0xcc/0x120
[  879.549456][ T9905]  copy_siginfo_to_user+0x3f/0x140
[  879.554853][ T9905]  x64_setup_rt_frame+0x1392/0x2590
[  879.561081][ T9905]  arch_do_signal_or_restart+0x63c/0xbf0
[  879.567158][ T9905]  irqentry_exit_to_user_mode+0x62/0xa0
[  879.573430][ T9905]  irqentry_exit+0x16/0x60
[  879.578833][ T9905]  exc_page_fault+0x76/0xb0
[  879.590180][ T9905]  asm_exc_page_fault+0x2b/0x30
[  879.595431][ T9905] 
[  879.597846][ T9905] Uninit was stored to memory at:
[  879.606235][ T9905]  __dequeue_signal+0x4d6/0x970
[  879.611913][ T9905]  dequeue_signal+0x1c0/0x840
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  879.616904][ T9905]  get_signal+0xbf8/0x2a20
[  879.621857][ T9905]  arch_do_signal_or_restart+0x53/0xbf0
[  879.628417][ T9905]  irqentry_exit_to_user_mode+0x62/0xa0
[  879.634170][ T9905]  irqentry_exit+0x16/0x60
[  879.639015][ T9905]  exc_page_fault+0x76/0xb0
[  879.643961][ T9905]  asm_exc_page_fault+0x2b/0x30
[  879.649372][ T9905] 
[  879.652148][ T9905] Uninit was created at:
[  879.656930][ T9905]  kmem_cache_free+0x2a1/0xec0
[  879.662446][ T9905]  __sigqueue_free+0x23a/0x270
[  879.667703][ T9905]  __dequeue_signal+0x66b/0x970
[  879.676446][ T9905]  dequeue_signal+0x1c0/0x840
[  879.682478][ T9905]  get_signal+0xbf8/0x2a20
[  879.687269][ T9905]  arch_do_signal_or_restart+0x53/0xbf0
[  879.702785][ T9905]  exit_to_user_mode_loop+0xec/0x330
[  879.708730][ T9905]  do_syscall_64+0x1e3/0x210
[  879.713950][ T9905]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  879.720951][ T9905] 
[  879.723370][ T9905] Bytes 12-15 of 48 are uninitialized
[  879.729676][ T9905] Memory access of size 48 starts at ffff88804b9bfe28
[  879.737029][ T9905] Data copied to user address 00007ffe4f8252b0
[  879.743973][ T9905] 
[  879.746594][ T9905] CPU: 0 UID: 0 PID: 9905 Comm: syz.5.928 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(none) 
[  879.758968][ T9905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  879.769842][ T9905] =====================================================
[  879.777178][ T9905] Disabling lock debugging due to kernel taint
[  879.783993][ T9905] Kernel panic - not syncing: kmsan.panic set ...
[  879.790853][ T9905] CPU: 0 UID: 0 PID: 9905 Comm: syz.5.928 Tainted: G    B               6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(none) 
[  879.805200][ T9905] Tainted: [B]=BAD_PAGE
[  879.809574][ T9905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  879.820077][ T9905] Call Trace:
[  879.823741][ T9905]  <TASK>
[  879.826794][ T9905]  __dump_stack+0x26/0x30
[  879.831455][ T9905]  dump_stack_lvl+0x53/0x270
[  879.836361][ T9905]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  879.842603][ T9905]  dump_stack+0x1e/0x25
[  879.847334][ T9905]  vpanic+0x361/0xc50
[  879.851744][ T9905]  panic+0x15d/0x160
[  879.856264][ T9905]  kmsan_report+0x31c/0x320
[  879.861517][ T9905]  ? kmsan_internal_check_memory+0x16c/0x230
[  879.868156][ T9905]  ? kmsan_copy_to_user+0xf1/0x190
[  879.873915][ T9905]  ? _copy_to_user+0xcc/0x120
[  879.878857][ T9905]  ? copy_siginfo_to_user+0x3f/0x140
[  879.884517][ T9905]  ? x64_setup_rt_frame+0x1392/0x2590
[  879.890313][ T9905]  ? arch_do_signal_or_restart+0x63c/0xbf0
[  879.896475][ T9905]  ? irqentry_exit_to_user_mode+0x62/0xa0
[  879.902750][ T9905]  ? irqentry_exit+0x16/0x60
[  879.907538][ T9905]  ? exc_page_fault+0x76/0xb0
[  879.912635][ T9905]  ? asm_exc_page_fault+0x2b/0x30
[  879.918045][ T9905]  ? kmsan_get_metadata+0xfb/0x160
[  879.923676][ T9905]  ? kmsan_internal_check_memory+0x9c/0x230
[  879.930121][ T9905]  ? copy_fpstate_to_sigframe+0x126f/0x13d0
[  879.936564][ T9905]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  879.942581][ T9905]  ? kmsan_get_metadata+0xfb/0x160
[  879.948168][ T9905]  ? kmsan_get_metadata+0xfb/0x160
[  879.954016][ T9905]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  879.960268][ T9905]  kmsan_internal_check_memory+0x16c/0x230
[  879.966458][ T9905]  kmsan_copy_to_user+0xf1/0x190
[  879.971769][ T9905]  _copy_to_user+0xcc/0x120
[  879.976722][ T9905]  copy_siginfo_to_user+0x3f/0x140
[  879.982593][ T9905]  x64_setup_rt_frame+0x1392/0x2590
[  879.988623][ T9905]  arch_do_signal_or_restart+0x63c/0xbf0
[  879.994831][ T9905]  irqentry_exit_to_user_mode+0x62/0xa0
[  880.001043][ T9905]  irqentry_exit+0x16/0x60
[  880.005744][ T9905]  exc_page_fault+0x76/0xb0
[  880.010582][ T9905]  asm_exc_page_fault+0x2b/0x30
[  880.015610][ T9905] RIP: 0033:0x7ff2f625125d
[  880.020251][ T9905] Code: 41 5d 41 5e 41 5f c3 66 0f 1f 44 00 00 80 3d 62 6b 36 00 00 48 8b 47 18 48 8b 4f 28 74 1f 48 8b 30 89 f2 83 c6 02 48 8d 04 f0 <89> 57 04 48 39 c1 0f 92 c0 88 47 48 c3 66 0f 1f 44 00 00 8b 10 8d
[  880.043168][ T9905] RSP: 002b:00007ffe4f825718 EFLAGS: 00010206
[  880.050230][ T9905] RAX: 00007ff2f5ff3bd8 RBX: 00007ff2f65b5fa0 RCX: 00007ff2f61ff000
[  880.058829][ T9905] RDX: 000000000003e979 RSI: 000000000003e97b RDI: 00007ff2f65b6038
[  880.069833][ T9905] RBP: 00007ff2f65b7da0 R08: 00007ff2f65b5fa0 R09: 7fffffffffffffff
[  880.078441][ T9905] R10: 3fffffffffffffff R11: 0000000000000293 R12: 00000000000d6b6f
[  880.087006][ T9905] R13: 00007ffe4f825810 R14: ffffffffffffffff R15: 00007ffe4f825830
[  880.095533][ T9905]  </TASK>
[  880.099161][ T9905] Kernel Offset: disabled
[  880.103559][ T9905] Rebooting in 86400 seconds..